$ rpki-client -vvf rpki.apnic.net/member_repository/A91AA618/557EAB3C3ABE11EF8619D220C4F9AE02/pSvwKHcZGUlxLT2tKdSreid57EM.mft File: pSvwKHcZGUlxLT2tKdSreid57EM.mft (raw, json) Hash identifier: RxvmBQkQ9kiz78sLolP7/B+bFEcyqW7NlHRceidfZf4= Subject key identifier: C2:F2:13:EB:7D:88:65:EE:A7:3C:20:58:C9:53:FA:B4:49:1C:EC:5C Authority key identifier: A5:2B:F0:28:77:19:19:49:71:2D:3D:AD:29:D4:AB:7A:27:79:EC:43 Certificate issuer: /CN=A91AA618/serialNumber=A52BF02877191949712D3DAD29D4AB7A2779EC43 Certificate serial: 4D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pSvwKHcZGUlxLT2tKdSreid57EM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AA618/557EAB3C3ABE11EF8619D220C4F9AE02/pSvwKHcZGUlxLT2tKdSreid57EM.mft Manifest number: 4C Signing time: Sat 23 Nov 2024 05:16:40 +0000 Manifest this update: Sat 23 Nov 2024 05:16:39 +0000 Manifest next update: Sat 30 Nov 2024 05:16:39 +0000 Files and hashes: 1: pSvwKHcZGUlxLT2tKdSreid57EM.crl (hash: x4ZKh3CSXWsF0c08Mrwe5MrwthYUArvSKC3ojtAkgMY=) 2: 88F562E83DAD11EFAA46E417C4F9AE02.roa (hash: y+CwsCOmzO2omqt+7OucZwgkShxhjQvdzFrUFNJogYw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AA618/557EAB3C3ABE11EF8619D220C4F9AE02/pSvwKHcZGUlxLT2tKdSreid57EM.crl rsync://rpki.apnic.net/member_repository/A91AA618/557EAB3C3ABE11EF8619D220C4F9AE02/pSvwKHcZGUlxLT2tKdSreid57EM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pSvwKHcZGUlxLT2tKdSreid57EM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 77 (0x4d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AA618/serialNumber=A52BF02877191949712D3DAD29D4AB7A2779EC43 Validity Not Before: Nov 23 05:16:39 2024 GMT Not After : Nov 30 05:16:39 2024 GMT Subject: CN=67416538-dbea Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:5c:c0:e8:f2:33:79:83:ac:df:59:1e:21:99: a8:13:e8:33:b6:9c:52:77:5c:8a:76:c8:e6:12:68: 91:7d:0b:79:40:35:2f:86:8c:1a:e6:c4:58:8c:bd: 2c:71:00:ec:84:c8:1e:1f:48:a9:8d:a0:cb:bf:da: 54:7b:d0:da:d9:9a:56:7a:26:0d:0c:0c:ba:8a:d5: cc:a1:83:5e:8a:99:61:06:80:aa:17:3b:e7:a4:25: 28:5e:e5:22:d1:ce:47:44:6f:a5:13:1b:ed:54:d8: 14:ad:1f:d6:ea:86:40:cf:f7:f7:26:97:7f:e4:f7: 7a:20:a1:51:e4:28:53:e1:85:34:ec:9c:d0:b7:93: 68:82:5b:8b:23:48:1b:f1:66:f3:dc:21:db:7e:32: 11:38:12:5e:a9:35:c5:bf:1a:59:67:0f:6f:9e:2b: 43:cc:b9:a6:65:5a:8a:ee:d0:d9:22:72:50:03:bd: 53:c5:ce:77:80:c1:b7:eb:a2:77:35:74:2c:06:db: ba:1b:e4:7c:8e:30:2d:2a:d0:aa:a8:39:d0:2b:ea: 88:7f:da:aa:dc:c1:78:9a:7e:db:3f:97:94:55:e7: 5d:d1:a8:b9:1e:d7:7c:38:13:30:e8:64:30:68:b9: b3:41:20:20:80:1d:e5:11:cb:3d:de:2f:0e:03:15: 1a:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:F2:13:EB:7D:88:65:EE:A7:3C:20:58:C9:53:FA:B4:49:1C:EC:5C X509v3 Authority Key Identifier: keyid:A5:2B:F0:28:77:19:19:49:71:2D:3D:AD:29:D4:AB:7A:27:79:EC:43 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AA618/557EAB3C3ABE11EF8619D220C4F9AE02/pSvwKHcZGUlxLT2tKdSreid57EM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pSvwKHcZGUlxLT2tKdSreid57EM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AA618/557EAB3C3ABE11EF8619D220C4F9AE02/pSvwKHcZGUlxLT2tKdSreid57EM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 74:d5:c7:86:a6:7a:6f:d4:5b:8a:50:7f:0c:e3:1d:75:0a:e5: 07:ea:c1:2a:40:42:84:cd:cd:c4:22:a2:89:78:51:2e:04:ab: 5b:52:58:dd:6d:61:13:e2:8f:e9:89:a2:ec:37:f0:3a:f6:e5: 2f:7f:e7:73:3f:aa:8c:ee:78:72:d9:fb:fe:ba:82:83:47:db: 81:44:80:a1:b4:8d:fb:e5:24:52:13:41:b6:dd:8a:c2:6a:8c: 05:d7:48:8b:48:1c:ea:b0:9d:57:d1:83:23:0f:97:07:62:ab: d7:aa:24:56:61:73:b0:65:50:0c:c4:5b:a1:da:1b:7d:d6:ba: f1:cd:19:aa:13:51:05:eb:0e:bc:d5:f2:0f:c1:34:fa:4a:d9: d3:8a:10:0d:68:af:fb:e6:50:d1:6b:d9:34:0a:69:b7:6f:1b: 81:c7:48:c3:71:af:5e:50:5f:af:82:a6:65:3b:19:fb:5b:f2: 94:a1:31:fd:09:be:1b:1b:e4:49:96:83:13:e9:06:8c:38:21: 1f:cd:9c:9b:f0:60:0f:d2:d9:52:b6:04:97:94:8a:47:ec:d9: 5f:0c:4d:ba:fc:e7:3d:01:1a:48:ef:84:63:04:42:2b:94:ce: 88:ed:14:1d:73:b1:72:61:fa:d5:dc:35:20:ad:40:60:83:b1: ba:8c:d9:23 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBTTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB QTYxODExMC8GA1UEBRMoQTUyQkYwMjg3NzE5MTk0OTcxMkQzREFEMjlENEFCN0Ey Nzc5RUM0MzAeFw0yNDExMjMwNTE2MzlaFw0yNDExMzAwNTE2MzlaMBgxFjAUBgNV BAMTDTY3NDE2NTM4LWRiZWEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC2XMDo8jN5g6zfWR4hmagT6DO2nFJ3XIp2yOYSaJF9C3lANS+GjBrmxFiMvSxx AOyEyB4fSKmNoMu/2lR70NrZmlZ6Jg0MDLqK1cyhg16KmWEGgKoXO+ekJShe5SLR zkdEb6UTG+1U2BStH9bqhkDP9/cml3/k93ogoVHkKFPhhTTsnNC3k2iCW4sjSBvx ZvPcIdt+MhE4El6pNcW/GllnD2+eK0PMuaZlWoru0NkiclADvVPFzneAwbfronc1 dCwG27ob5HyOMC0q0KqoOdAr6oh/2qrcwXiafts/l5RV513RqLke13w4EzDoZDBo ubNBICCAHeURyz3eLw4DFRqpAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUwvIT632I Ze6nPCBYyVP6tEkc7FwwHwYDVR0jBBgwFoAUpSvwKHcZGUlxLT2tKdSreid57EMw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUFBNjE4LzU1N0VBQjNDM0FC RTExRUY4NjE5RDIyMEM0RjlBRTAyL3BTdndLSGNaR1VseExUMnRLZFNyZWlkNTdF TS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvcFN2d0tIY1pHVWx4TFQydEtkU3JlaWQ1N0VNLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUFB NjE4LzU1N0VBQjNDM0FCRTExRUY4NjE5RDIyMEM0RjlBRTAyL3BTdndLSGNaR1Vs eExUMnRLZFNyZWlkNTdFTS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAHTVx4amem/UW4pQfwzjHXUK5QfqwSpAQoTNzcQiool4US4Eq1tSWN1t YRPij+mJouw38Dr25S9/53M/qozueHLZ+/66goNH24FEgKG0jfvlJFITQbbdisJq jAXXSItIHOqwnVfRgyMPlwdiq9eqJFZhc7BlUAzEW6HaG33WuvHNGaoTUQXrDrzV 8g/BNPpK2dOKEA1or/vmUNFr2TQKabdvG4HHSMNxr15QX6+CpmU7Gftb8pShMf0J vhsb5EmWgxPpBow4IR/NnJvwYA/S2VK2BJeUikfs2V8MTbr85z0BGkjvhGMEQiuU zojtFB1zsXJh+tXcNSCtQGCDsbqM2SM= -----END CERTIFICATE-----Generated at Sat Nov 23 06:13:19 2024 by rpki-client on console-ams.rpki-client.org