$ rpki-client -vvf rpki.apnic.net/member_repository/A91AADAF/87159C968CF311EF9F3EA40FC4F9AE02/aMK1iNFoWlh0LYouGIhl2zEQPPc.mft File: aMK1iNFoWlh0LYouGIhl2zEQPPc.mft (raw, json) Hash identifier: WLhQP4jV6qSRhZmvWXjXZjB4fbhQNvbKGRI9GtHHzYk= Subject key identifier: D7:98:AA:45:44:0B:1E:F2:87:02:94:CB:35:D6:7A:90:C3:94:D0:03 Authority key identifier: 68:C2:B5:88:D1:68:5A:58:74:2D:8A:2E:18:88:65:DB:31:10:3C:F7 Certificate issuer: /CN=A91AADAF/serialNumber=68C2B588D1685A58742D8A2E188865DB31103CF7 Certificate serial: 1A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aMK1iNFoWlh0LYouGIhl2zEQPPc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AADAF/87159C968CF311EF9F3EA40FC4F9AE02/aMK1iNFoWlh0LYouGIhl2zEQPPc.mft Manifest number: 18 Signing time: Mon 25 Nov 2024 05:56:12 +0000 Manifest this update: Mon 25 Nov 2024 05:56:11 +0000 Manifest next update: Mon 02 Dec 2024 05:56:11 +0000 Files and hashes: 1: aMK1iNFoWlh0LYouGIhl2zEQPPc.crl (hash: t3MVF02hp53HC4TOaG+4pdR6mmXbV4tc5i8SiPfXqYc=) 2: 01BA52A28CF411EFAE6F7F10C4F9AE02.roa (hash: EDXTUfDV5y3+rKMOJtb6JOA7sYGQ4kz4K9vrUd4nHN0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AADAF/87159C968CF311EF9F3EA40FC4F9AE02/aMK1iNFoWlh0LYouGIhl2zEQPPc.crl rsync://rpki.apnic.net/member_repository/A91AADAF/87159C968CF311EF9F3EA40FC4F9AE02/aMK1iNFoWlh0LYouGIhl2zEQPPc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aMK1iNFoWlh0LYouGIhl2zEQPPc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 02 Dec 2024 05:31:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 26 (0x1a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AADAF/serialNumber=68C2B588D1685A58742D8A2E188865DB31103CF7 Validity Not Before: Nov 25 05:56:11 2024 GMT Not After : Dec 2 05:56:11 2024 GMT Subject: CN=6744117b-8f9e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:1c:8c:5b:b4:1a:64:12:9e:78:87:a9:00:66: cb:a9:16:71:37:5b:66:16:2f:a2:fb:bb:e2:35:a6: 13:e2:0d:57:e9:8e:63:95:4f:6e:60:6c:fe:90:74: 2e:83:13:34:ad:92:8f:5b:cd:ee:9f:37:d0:5c:6e: 98:b5:4e:7c:ef:80:55:b8:70:67:39:a2:ad:59:4d: 3b:8a:c3:49:60:73:36:48:94:a0:fe:3f:c8:6a:13: 1d:cb:4c:cf:25:13:1a:ca:f6:ac:38:52:42:40:50: 64:e6:ed:72:73:d1:73:e1:b5:31:86:7c:b4:b2:a3: a8:32:30:ee:26:54:d8:81:42:ca:42:ca:e1:e6:02: ca:0c:5d:d4:da:04:5e:3e:5c:f7:0b:ea:a8:a5:0d: 8a:3e:c7:ca:d8:a9:20:37:89:2f:cb:29:23:00:18: fe:6d:41:a0:8f:85:56:94:72:34:d6:49:9b:d9:6d: 03:1d:6e:88:d6:f8:19:23:1d:f5:b1:f3:7f:c9:b6: 27:c5:65:83:52:59:48:00:e7:9b:b8:ec:ee:58:92: cc:bf:df:e7:f0:92:8e:ff:1e:98:6d:bd:5f:17:bb: a2:a2:50:af:bb:50:ae:33:a6:f6:4c:3e:de:07:3e: 04:d8:0a:4a:18:ef:87:2e:e2:80:5c:b0:f1:15:3d: d2:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:98:AA:45:44:0B:1E:F2:87:02:94:CB:35:D6:7A:90:C3:94:D0:03 X509v3 Authority Key Identifier: keyid:68:C2:B5:88:D1:68:5A:58:74:2D:8A:2E:18:88:65:DB:31:10:3C:F7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AADAF/87159C968CF311EF9F3EA40FC4F9AE02/aMK1iNFoWlh0LYouGIhl2zEQPPc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aMK1iNFoWlh0LYouGIhl2zEQPPc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AADAF/87159C968CF311EF9F3EA40FC4F9AE02/aMK1iNFoWlh0LYouGIhl2zEQPPc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b0:36:16:da:be:06:53:53:4a:e0:be:49:80:ce:45:de:6f:77: c0:39:f0:f2:c3:55:b2:65:26:39:33:f9:88:0b:73:b4:12:3d: f3:19:cf:78:f0:78:54:f1:9b:49:a1:0a:4f:d3:09:44:e8:28: e6:32:b4:27:dc:ae:3a:3d:f0:67:f9:c9:9f:f4:0b:a6:d0:fd: 74:be:58:68:39:4c:75:93:a1:5e:5e:42:a7:96:d1:d4:d0:88: 36:5a:ee:85:be:e2:57:2e:d0:fa:9c:4e:1a:3f:c6:a7:24:28: 5d:ba:cc:f7:4f:3d:e1:66:c8:89:bd:48:4c:e4:fb:29:7e:bf: de:40:ed:0d:3d:ee:75:b5:2a:8b:ff:ff:8f:aa:39:ec:b0:b0: 1b:d2:09:79:75:ff:e1:49:3f:bb:c4:d1:61:d8:38:2c:13:46: df:47:1e:22:85:9e:dd:5c:1a:64:9b:e4:26:27:c0:e7:2c:bd: c6:69:bc:85:07:5e:9a:89:5f:26:e9:4d:ca:9b:03:d1:45:67: ff:0a:21:e0:52:02:1e:6c:97:f1:f8:b9:6d:6a:8a:4c:e8:27: d3:9a:f1:1f:b2:80:46:f9:80:e7:5c:02:57:1b:22:e2:9c:f7: 1f:1f:a7:d3:8b:fa:e0:15:53:09:70:07:ad:c6:11:e1:6b:ce: f4:4d:aa:90 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBGjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB QURBRjExMC8GA1UEBRMoNjhDMkI1ODhEMTY4NUE1ODc0MkQ4QTJFMTg4ODY1REIz MTEwM0NGNzAeFw0yNDExMjUwNTU2MTFaFw0yNDEyMDIwNTU2MTFaMBgxFjAUBgNV BAMTDTY3NDQxMTdiLThmOWUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC6HIxbtBpkEp54h6kAZsupFnE3W2YWL6L7u+I1phPiDVfpjmOVT25gbP6QdC6D EzStko9bze6fN9Bcbpi1TnzvgFW4cGc5oq1ZTTuKw0lgczZIlKD+P8hqEx3LTM8l ExrK9qw4UkJAUGTm7XJz0XPhtTGGfLSyo6gyMO4mVNiBQspCyuHmAsoMXdTaBF4+ XPcL6qilDYo+x8rYqSA3iS/LKSMAGP5tQaCPhVaUcjTWSZvZbQMdbojW+BkjHfWx 83/JtifFZYNSWUgA55u47O5Yksy/3+fwko7/HphtvV8Xu6KiUK+7UK4zpvZMPt4H PgTYCkoY74cu4oBcsPEVPdJ3AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU15iqRUQL HvKHApTLNdZ6kMOU0AMwHwYDVR0jBBgwFoAUaMK1iNFoWlh0LYouGIhl2zEQPPcw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUFBREFGLzg3MTU5Qzk2OENG MzExRUY5RjNFQTQwRkM0RjlBRTAyL2FNSzFpTkZvV2xoMExZb3VHSWhsMnpFUVBQ Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvYU1LMWlORm9XbGgwTFlvdUdJaGwyekVRUFBjLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUFB REFGLzg3MTU5Qzk2OENGMzExRUY5RjNFQTQwRkM0RjlBRTAyL2FNSzFpTkZvV2xo MExZb3VHSWhsMnpFUVBQYy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBALA2Ftq+BlNTSuC+SYDORd5vd8A58PLDVbJlJjkz+YgLc7QSPfMZz3jw eFTxm0mhCk/TCUToKOYytCfcrjo98Gf5yZ/0C6bQ/XS+WGg5THWToV5eQqeW0dTQ iDZa7oW+4lcu0PqcTho/xqckKF26zPdPPeFmyIm9SEzk+yl+v95A7Q097nW1Kov/ /4+qOeywsBvSCXl1/+FJP7vE0WHYOCwTRt9HHiKFnt1cGmSb5CYnwOcsvcZpvIUH XpqJXybpTcqbA9FFZ/8KIeBSAh5sl/H4uW1qikzoJ9Oa8R+ygEb5gOdcAlcbIuKc 9x8fp9OL+uAVUwlwB63GEeFrzvRNqpA= -----END CERTIFICATE-----Generated at Mon Nov 25 07:19:51 2024 by rpki-client on console-ams.rpki-client.org