$ rpki-client -vvf rpki.apnic.net/member_repository/A91AF5F7/44FCE568C78411EBAD4C9659C4F9AE02/Cid9JqnCQCuKHNRXeTXk88JZwZ8.mft File: Cid9JqnCQCuKHNRXeTXk88JZwZ8.mft (raw, json) Hash identifier: I2giKPYSU6ERIEQKtRQZo+o/9aIP2uLXo1YZ7887bjs= Subject key identifier: A7:3E:D6:F3:AA:F2:0A:AE:3C:7D:EE:D4:DD:40:20:18:D9:01:BB:9E Authority key identifier: 0A:27:7D:26:A9:C2:40:2B:8A:1C:D4:57:79:35:E4:F3:C2:59:C1:9F Certificate issuer: /CN=A91AF5F7/serialNumber=0A277D26A9C2402B8A1CD4577935E4F3C259C19F Certificate serial: 0572 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Cid9JqnCQCuKHNRXeTXk88JZwZ8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AF5F7/44FCE568C78411EBAD4C9659C4F9AE02/Cid9JqnCQCuKHNRXeTXk88JZwZ8.mft Manifest number: 0562 Signing time: Wed 20 Nov 2024 22:58:35 +0000 Manifest this update: Wed 20 Nov 2024 22:58:34 +0000 Manifest next update: Wed 27 Nov 2024 22:58:34 +0000 Files and hashes: 1: Cid9JqnCQCuKHNRXeTXk88JZwZ8.crl (hash: xi539ZEEmLw/krRuTrjLJbTN+HXEXCaxdleDagOS/pY=) 2: 4D38774A86E611EF9D6F5581C4F9AE02.roa (hash: 7ioLjk8VeJvEHBuoWRfrT57B74IDRpNgRa9+NJtrnGo=) 3: 0DD6AB9CA4F011EC96AF7B65C4F9AE02.roa (hash: /5KvjYunF83kIcMiJK5ao0UnFWTIm9b33GuRAVT7yXE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AF5F7/44FCE568C78411EBAD4C9659C4F9AE02/Cid9JqnCQCuKHNRXeTXk88JZwZ8.crl rsync://rpki.apnic.net/member_repository/A91AF5F7/44FCE568C78411EBAD4C9659C4F9AE02/Cid9JqnCQCuKHNRXeTXk88JZwZ8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Cid9JqnCQCuKHNRXeTXk88JZwZ8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:33:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1394 (0x572) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AF5F7/serialNumber=0A277D26A9C2402B8A1CD4577935E4F3C259C19F Validity Not Before: Nov 20 22:58:34 2024 GMT Not After : Nov 27 22:58:34 2024 GMT Subject: CN=673e699a-4578 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:16:60:3e:dd:ea:12:55:8b:6f:69:b0:8a:4d: ae:a8:3a:21:c1:1e:8a:b0:38:f5:23:88:01:64:c6: 4d:e6:81:8f:03:2f:4f:28:85:d3:2f:7a:00:66:e3: 4e:c9:30:69:67:97:3e:1d:70:c1:2c:86:b0:60:ec: d2:2a:fa:be:56:62:7c:d8:84:4f:bf:07:cd:ec:67: 02:cd:51:9c:33:23:08:53:1e:93:4c:4b:0a:47:20: dd:c0:80:60:cc:62:43:11:f3:94:c4:92:e0:d2:fd: 2c:ec:13:cb:76:db:f4:25:0a:2e:c7:f7:c5:62:a4: 63:06:55:25:e7:d4:34:9d:74:43:94:ad:06:ed:53: b2:c9:54:e7:b1:0c:7b:58:93:3a:b4:14:d7:0a:50: 99:6b:a2:d4:67:80:6c:f9:c3:b5:8a:1d:0a:76:70: 2b:b7:0c:78:ed:a8:6c:69:89:7e:d9:43:12:8e:c5: 2b:44:05:44:8c:a1:fd:c9:51:40:05:2e:3c:28:a0: 84:e8:81:45:8a:98:8a:94:06:b2:25:b7:ce:3e:05: a1:db:c7:bb:c2:f8:28:01:f1:d7:2f:d8:6e:f6:c0: 2d:12:0c:aa:d4:83:c5:b1:af:1f:ca:84:aa:c1:10: 4e:f6:9d:b0:45:26:79:42:d7:91:59:13:a6:dc:84: dd:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:3E:D6:F3:AA:F2:0A:AE:3C:7D:EE:D4:DD:40:20:18:D9:01:BB:9E X509v3 Authority Key Identifier: keyid:0A:27:7D:26:A9:C2:40:2B:8A:1C:D4:57:79:35:E4:F3:C2:59:C1:9F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AF5F7/44FCE568C78411EBAD4C9659C4F9AE02/Cid9JqnCQCuKHNRXeTXk88JZwZ8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Cid9JqnCQCuKHNRXeTXk88JZwZ8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AF5F7/44FCE568C78411EBAD4C9659C4F9AE02/Cid9JqnCQCuKHNRXeTXk88JZwZ8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6f:24:30:1c:d9:fd:bc:c0:6e:d9:f4:cc:7b:75:20:a4:4f:17: 5a:8b:f6:c4:41:01:10:1f:30:31:df:91:7f:8d:1a:7d:b6:52: ef:64:bb:d1:1e:65:69:f8:d4:dd:1e:98:0a:d8:f4:66:54:93: b8:bb:be:ae:a8:bd:70:12:6f:5f:6c:6e:6b:72:9a:ec:cd:16: 7c:3a:0a:f4:88:47:28:d3:ec:58:66:88:28:25:bb:42:2f:62: 40:cb:be:0a:d6:36:90:52:f3:f7:21:1e:79:36:59:44:ca:af: aa:f0:62:ed:b7:67:20:91:6a:43:9a:ed:f9:03:1a:43:3c:9f: 67:ea:f4:37:2b:0e:a6:e3:18:ca:7b:71:f1:b4:3d:6f:7c:af: 6c:84:c3:ff:82:59:f9:46:43:b7:d9:21:7e:4e:8d:81:ad:47: 10:16:da:de:9b:a9:7c:23:ec:aa:f4:1a:32:a9:37:7d:db:37: ae:fb:4b:50:a8:ca:ff:9e:6c:22:17:57:60:a5:d2:21:20:14: 96:29:41:45:88:78:2a:ca:24:a7:33:2a:07:9b:87:f5:23:0c: 80:aa:5a:ab:dd:4a:5c:b3:74:14:e4:80:05:d6:f2:78:83:c0: 29:16:27:6a:da:08:77:06:ba:03:30:2e:b3:33:c5:72:6c:68: d1:75:63:27 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBXIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUY1RjcxMTAvBgNVBAUTKDBBMjc3RDI2QTlDMjQwMkI4QTFDRDQ1Nzc5MzVFNEYz QzI1OUMxOUYwHhcNMjQxMTIwMjI1ODM0WhcNMjQxMTI3MjI1ODM0WjAYMRYwFAYD VQQDEw02NzNlNjk5YS00NTc4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxxZgPt3qElWLb2mwik2uqDohwR6KsDj1I4gBZMZN5oGPAy9PKIXTL3oAZuNO yTBpZ5c+HXDBLIawYOzSKvq+VmJ82IRPvwfN7GcCzVGcMyMIUx6TTEsKRyDdwIBg zGJDEfOUxJLg0v0s7BPLdtv0JQoux/fFYqRjBlUl59Q0nXRDlK0G7VOyyVTnsQx7 WJM6tBTXClCZa6LUZ4Bs+cO1ih0KdnArtwx47ahsaYl+2UMSjsUrRAVEjKH9yVFA BS48KKCE6IFFipiKlAayJbfOPgWh28e7wvgoAfHXL9hu9sAtEgyq1IPFsa8fyoSq wRBO9p2wRSZ5QteRWROm3ITdEQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKc+1vOq 8gquPH3u1N1AIBjZAbueMB8GA1UdIwQYMBaAFAonfSapwkArihzUV3k15PPCWcGf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRjVGNy80NEZDRTU2OEM3 ODQxMUVCQUQ0Qzk2NTlDNEY5QUUwMi9DaWQ5SnFuQ1FDdUtITlJYZVRYazg4Slp3 WjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NpZDlKcW5DUUN1S0hOUlhlVFhrODhKWndaOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB RjVGNy80NEZDRTU2OEM3ODQxMUVCQUQ0Qzk2NTlDNEY5QUUwMi9DaWQ5SnFuQ1FD dUtITlJYZVRYazg4Slp3WjgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBvJDAc2f28wG7Z9Mx7dSCkTxdai/bEQQEQHzAx35F/jRp9tlLvZLvR HmVp+NTdHpgK2PRmVJO4u76uqL1wEm9fbG5rcprszRZ8Ogr0iEco0+xYZogoJbtC L2JAy74K1jaQUvP3IR55NllEyq+q8GLtt2cgkWpDmu35AxpDPJ9n6vQ3Kw6m4xjK e3HxtD1vfK9shMP/gln5RkO32SF+To2BrUcQFtrem6l8I+yq9BoyqTd92zeu+0tQ qMr/nmwiF1dgpdIhIBSWKUFFiHgqyiSnMyoHm4f1IwyAqlqr3Upcs3QU5IAF1vJ4 g8ApFidq2gh3BroDMC6zM8VybGjRdWMn -----END CERTIFICATE-----Generated at Wed Nov 20 23:55:50 2024 by rpki-client on console-ams.rpki-client.org