$ rpki-client -vvf rpki.apnic.net/member_repository/A91B1A23/AC533DEE289611EBBAAD5721C4F9AE02/J8OQD7137iLLcempDoFXTN5GRK0.mft File: J8OQD7137iLLcempDoFXTN5GRK0.mft (raw, json) Hash identifier: 0VoUKb0x06DK2Jl3QKcJltAMgT6195+HT+ZJlcLB9Jc= Subject key identifier: 20:9C:B7:CE:04:77:1B:51:52:20:D7:25:AD:25:76:A4:3C:A8:4C:13 Authority key identifier: 27:C3:90:0F:BD:77:EE:22:CB:71:E9:A9:0E:81:57:4C:DE:46:44:AD Certificate issuer: /CN=A91B1A23/serialNumber=27C3900FBD77EE22CB71E9A90E81574CDE4644AD Certificate serial: 06EE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/J8OQD7137iLLcempDoFXTN5GRK0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B1A23/AC533DEE289611EBBAAD5721C4F9AE02/J8OQD7137iLLcempDoFXTN5GRK0.mft Manifest number: 06E8 Signing time: Fri 22 Nov 2024 21:32:22 +0000 Manifest this update: Fri 22 Nov 2024 21:32:22 +0000 Manifest next update: Fri 29 Nov 2024 21:32:22 +0000 Files and hashes: 1: J8OQD7137iLLcempDoFXTN5GRK0.crl (hash: 2EqkDElsC95+MxEl7LZLj/lOTmj2lMJPrJeOuHrS9RQ=) 2: 594EEA2CAEA711EE961B0558C4F9AE02.roa (hash: 1OottJ+jVSIpn9/qIbqYxFLpDRPxTkPCkdhUb2jBhmM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B1A23/AC533DEE289611EBBAAD5721C4F9AE02/J8OQD7137iLLcempDoFXTN5GRK0.crl rsync://rpki.apnic.net/member_repository/A91B1A23/AC533DEE289611EBBAAD5721C4F9AE02/J8OQD7137iLLcempDoFXTN5GRK0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/J8OQD7137iLLcempDoFXTN5GRK0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1774 (0x6ee) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B1A23/serialNumber=27C3900FBD77EE22CB71E9A90E81574CDE4644AD Validity Not Before: Nov 22 21:32:22 2024 GMT Not After : Nov 29 21:32:22 2024 GMT Subject: CN=6740f866-50d3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:02:e9:fc:ac:13:0e:f2:5c:e3:9c:ef:10:4d: 63:60:55:b7:c9:c8:9f:48:b4:79:b3:85:dc:63:69: bb:d3:95:ee:d0:56:5f:e2:6d:79:0c:b4:a8:54:47: 05:e2:35:70:35:d0:d9:2f:cf:73:dd:b3:e1:bc:56: b7:bb:57:7e:cb:cf:f6:ee:13:54:80:fe:a3:09:87: d4:2f:a8:37:f3:7c:16:1c:22:4e:58:7c:50:4d:cd: 8f:76:de:31:bc:a9:e9:84:e9:e6:50:92:c9:2c:dc: 3a:79:9b:76:69:da:68:2a:ff:01:c2:38:10:ef:ae: 72:1b:52:ef:f2:9b:db:3c:cd:90:9c:7d:66:c2:03: 60:e2:35:55:11:98:4d:4a:39:f8:da:81:4c:71:e4: b0:23:1c:68:65:f1:c8:7e:7f:c8:12:5e:b8:02:fb: fe:12:27:15:ec:e6:ae:d7:17:b4:d7:e3:85:4f:15: b8:de:3c:88:da:23:de:62:d3:8e:eb:73:bc:27:f4: 12:b3:c8:43:50:95:b8:be:5d:f2:fb:e9:8e:47:44: d4:58:eb:fe:ad:02:51:9d:fc:5d:d5:02:42:3d:ac: 79:bf:cf:b7:c4:d4:bb:de:0a:c4:be:9d:a0:00:93: 09:76:1b:26:3b:f3:d5:3f:70:52:10:0a:df:4a:b0: 45:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:9C:B7:CE:04:77:1B:51:52:20:D7:25:AD:25:76:A4:3C:A8:4C:13 X509v3 Authority Key Identifier: keyid:27:C3:90:0F:BD:77:EE:22:CB:71:E9:A9:0E:81:57:4C:DE:46:44:AD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B1A23/AC533DEE289611EBBAAD5721C4F9AE02/J8OQD7137iLLcempDoFXTN5GRK0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/J8OQD7137iLLcempDoFXTN5GRK0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B1A23/AC533DEE289611EBBAAD5721C4F9AE02/J8OQD7137iLLcempDoFXTN5GRK0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 04:3b:12:d8:6c:fe:b2:db:76:9c:f8:38:80:5b:8f:ad:b4:1c: 4b:89:c8:93:63:1e:e3:44:f6:aa:12:46:c5:d1:80:29:f2:ec: dc:0c:ec:13:87:2f:17:d4:1f:b1:46:f9:dc:03:80:a4:e8:d6: 33:72:92:f6:a5:36:ae:f3:93:6c:4d:23:9e:9f:e6:c2:c5:ec: 63:f9:60:6b:fb:31:d7:2f:f4:67:3d:39:f8:c3:72:2c:96:63: 97:c9:77:f4:41:7c:48:03:28:d9:fa:17:ff:c3:80:ed:d5:92: 8a:ae:66:30:78:70:03:f2:a4:8d:91:c6:1a:64:ca:5f:e9:d1: 77:4a:38:56:f2:0d:fc:44:cf:e1:86:b7:d7:ad:70:0e:a2:f5: d0:38:b1:3f:f1:77:8c:3b:7d:73:16:64:a9:59:95:72:f8:07: 78:5d:5a:d5:63:02:6e:be:d1:10:d7:04:af:67:ff:94:2c:d3: 13:17:7c:f9:a1:06:3e:7b:50:3f:0f:d6:a4:39:fa:d0:bd:d3: 2c:a1:20:71:0b:d6:31:8c:c7:6d:51:b8:7b:36:20:01:80:1b: a2:c4:32:f7:1d:29:ef:af:30:00:05:3d:2c:1f:8f:00:a8:43: ce:fb:43:30:80:c4:ed:dd:24:d5:74:45:6d:62:7c:9e:4d:e0: 30:34:01:4a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBu4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjFBMjMxMTAvBgNVBAUTKDI3QzM5MDBGQkQ3N0VFMjJDQjcxRTlBOTBFODE1NzRD REU0NjQ0QUQwHhcNMjQxMTIyMjEzMjIyWhcNMjQxMTI5MjEzMjIyWjAYMRYwFAYD VQQDEw02NzQwZjg2Ni01MGQzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtALp/KwTDvJc45zvEE1jYFW3ycifSLR5s4XcY2m705Xu0FZf4m15DLSoVEcF 4jVwNdDZL89z3bPhvFa3u1d+y8/27hNUgP6jCYfUL6g383wWHCJOWHxQTc2Pdt4x vKnphOnmUJLJLNw6eZt2adpoKv8BwjgQ765yG1Lv8pvbPM2QnH1mwgNg4jVVEZhN Sjn42oFMceSwIxxoZfHIfn/IEl64Avv+EicV7Oau1xe01+OFTxW43jyI2iPeYtOO 63O8J/QSs8hDUJW4vl3y++mOR0TUWOv+rQJRnfxd1QJCPax5v8+3xNS73grEvp2g AJMJdhsmO/PVP3BSEArfSrBFxQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCCct84E dxtRUiDXJa0ldqQ8qEwTMB8GA1UdIwQYMBaAFCfDkA+9d+4iy3HpqQ6BV0zeRkSt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMUEyMy9BQzUzM0RFRTI4 OTYxMUVCQkFBRDU3MjFDNEY5QUUwMi9KOE9RRDcxMzdpTExjZW1wRG9GWFRONUdS SzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0o4T1FENzEzN2lMTGNlbXBEb0ZYVE41R1JLMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MUEyMy9BQzUzM0RFRTI4OTYxMUVCQkFBRDU3MjFDNEY5QUUwMi9KOE9RRDcxMzdp TExjZW1wRG9GWFRONUdSSzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAEOxLYbP6y23ac+DiAW4+ttBxLiciTYx7jRPaqEkbF0YAp8uzcDOwT hy8X1B+xRvncA4Ck6NYzcpL2pTau85NsTSOen+bCxexj+WBr+zHXL/RnPTn4w3Is lmOXyXf0QXxIAyjZ+hf/w4Dt1ZKKrmYweHAD8qSNkcYaZMpf6dF3SjhW8g38RM/h hrfXrXAOovXQOLE/8XeMO31zFmSpWZVy+Ad4XVrVYwJuvtEQ1wSvZ/+ULNMTF3z5 oQY+e1A/D9akOfrQvdMsoSBxC9YxjMdtUbh7NiABgBuixDL3HSnvrzAABT0sH48A qEPO+0MwgMTt3STVdEVtYnyeTeAwNAFK -----END CERTIFICATE-----Generated at Sat Nov 23 00:08:48 2024 by rpki-client on console-ams.rpki-client.org