$ rpki-client -vvf rpki.apnic.net/member_repository/A91B53A5/2580A8D64B6511E7B469C07AC4F9AE02/2fwVW2_aEGxpmlabEgOEkJWKoy8.mft File: 2fwVW2_aEGxpmlabEgOEkJWKoy8.mft (raw, json) Hash identifier: n2KBldS6jIVFbsawkJUtzb6vw1zneaMH+STyd4it7uM= Subject key identifier: 81:88:60:0F:5A:6F:7F:09:AC:C5:3D:8C:37:18:17:2F:66:A0:8C:50 Authority key identifier: D9:FC:15:5B:6F:DA:10:6C:69:9A:56:9B:12:03:84:90:95:8A:A3:2F Certificate issuer: /CN=A91B53A5/serialNumber=D9FC155B6FDA106C699A569B12038490958AA32F Certificate serial: 19E9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2fwVW2_aEGxpmlabEgOEkJWKoy8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B53A5/2580A8D64B6511E7B469C07AC4F9AE02/2fwVW2_aEGxpmlabEgOEkJWKoy8.mft Manifest number: 19D0 Signing time: Wed 20 Nov 2024 16:21:13 +0000 Manifest this update: Wed 20 Nov 2024 16:21:12 +0000 Manifest next update: Wed 27 Nov 2024 16:21:12 +0000 Files and hashes: 1: 2fwVW2_aEGxpmlabEgOEkJWKoy8.crl (hash: gtVf0TaSXmpFeq9Sxtxe0aExFBuofjNcil9TtKBOCFo=) 2: 47DA377EC00411EEA69FDF66C4F9AE02.roa (hash: ZaucDKOp41yvMRZsY3xkixi0KnjP4q75MqT0VlWEJdI=) 3: C443D86A55A311E7896BED09C4F9AE02.roa (hash: RAjaQS5QbqXtrUMbAxpVJSZQfE94i9hS979yM5B3+jI=) 4: A9286C0E6D4411E7AF539270C4F9AE02.roa (hash: CvwZ78Bx6JW2ZSeXfa9JVVvETeg0+qlUbSWAQnUGr1k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B53A5/2580A8D64B6511E7B469C07AC4F9AE02/2fwVW2_aEGxpmlabEgOEkJWKoy8.crl rsync://rpki.apnic.net/member_repository/A91B53A5/2580A8D64B6511E7B469C07AC4F9AE02/2fwVW2_aEGxpmlabEgOEkJWKoy8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2fwVW2_aEGxpmlabEgOEkJWKoy8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 16:21:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6633 (0x19e9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B53A5/serialNumber=D9FC155B6FDA106C699A569B12038490958AA32F Validity Not Before: Nov 20 16:21:12 2024 GMT Not After : Nov 27 16:21:12 2024 GMT Subject: CN=673e0c79-1387 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:c1:aa:d8:05:02:cb:bf:5e:ed:a9:f2:18:a4: 22:65:3c:e1:17:b3:64:19:fe:7f:14:37:53:f4:be: 81:52:f3:47:7d:b4:42:30:32:57:36:48:90:a0:d8: 73:09:b6:a9:f9:d2:ae:9d:4b:3e:9e:b4:92:22:30: 86:26:60:ed:d4:41:6b:e1:9f:20:2d:41:df:7c:a1: 7a:f3:31:7e:d0:c5:37:83:79:50:99:b7:f4:94:09: b5:c3:83:73:2a:0c:ec:92:3e:bd:d9:7a:40:84:e4: e5:8d:6a:de:17:aa:94:7c:20:a4:59:04:fc:00:49: 79:4c:df:0e:64:87:f0:3f:81:11:69:a1:08:d8:4f: d3:ed:36:50:b7:7e:cf:82:a9:c5:10:9f:ca:16:5f: d2:63:7f:ec:33:0e:1b:23:2a:c1:66:62:34:83:93: ee:00:f1:d8:9b:8e:86:eb:b9:87:c5:c6:aa:ba:a0: c3:b7:82:d1:68:ac:12:a0:4b:3b:17:c2:b5:71:18: 5c:d4:9a:34:63:68:be:cc:c6:61:8d:65:da:87:e9: 6c:87:cd:33:db:fc:ce:2d:77:d6:da:56:a3:1f:d5: c3:5d:ad:6d:fa:24:d8:19:8d:3d:42:c8:d5:b9:4c: a4:5e:56:21:07:90:f8:80:77:a8:22:ee:6c:c4:b8: 82:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:88:60:0F:5A:6F:7F:09:AC:C5:3D:8C:37:18:17:2F:66:A0:8C:50 X509v3 Authority Key Identifier: keyid:D9:FC:15:5B:6F:DA:10:6C:69:9A:56:9B:12:03:84:90:95:8A:A3:2F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B53A5/2580A8D64B6511E7B469C07AC4F9AE02/2fwVW2_aEGxpmlabEgOEkJWKoy8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2fwVW2_aEGxpmlabEgOEkJWKoy8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B53A5/2580A8D64B6511E7B469C07AC4F9AE02/2fwVW2_aEGxpmlabEgOEkJWKoy8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a5:22:e3:48:3d:78:09:00:08:f3:7a:37:d3:f9:31:0a:ab:cf: ca:f9:e5:c7:a8:c2:06:c5:ee:34:a1:04:39:cd:22:79:68:9b: ab:31:59:8a:6d:63:9d:c7:26:b4:be:b2:cf:dc:d8:1f:0e:1c: d3:95:e4:5b:f8:03:f3:ba:c8:d4:f1:64:fa:00:d3:6f:4a:07: bc:34:9f:c7:04:8c:a2:1b:5d:41:21:fc:10:33:69:ff:b9:7d: 51:8b:c7:4c:1a:41:89:9d:93:b7:bc:b1:6e:9e:14:94:04:71: fb:48:dc:e9:9b:0a:57:3b:8e:56:df:67:6a:df:55:c5:69:70: d4:26:55:f6:f4:ba:f1:14:90:45:34:14:89:5b:fe:87:72:99: 78:b0:76:c1:8d:6c:24:78:01:35:b4:e0:8d:1e:6f:b1:7f:8b: a9:f8:1f:5c:64:cf:96:59:ef:1f:ef:45:ca:a1:63:89:a0:8f: 22:1e:73:51:2f:a8:95:f2:13:39:ff:50:39:ac:4b:a7:9a:03: 6d:33:a1:d2:03:36:10:b3:8e:78:b0:b4:c8:ed:a4:a4:ec:09: da:d7:2a:3d:b5:69:b3:50:3c:a2:04:72:36:22:43:22:52:14: e7:2b:c7:e5:02:dc:5b:77:8f:87:b6:ba:84:f4:32:91:20:75: f6:6a:4f:02 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICGekwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjUzQTUxMTAvBgNVBAUTKEQ5RkMxNTVCNkZEQTEwNkM2OTlBNTY5QjEyMDM4NDkw OTU4QUEzMkYwHhcNMjQxMTIwMTYyMTEyWhcNMjQxMTI3MTYyMTEyWjAYMRYwFAYD VQQDEw02NzNlMGM3OS0xMzg3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwMGq2AUCy79e7anyGKQiZTzhF7NkGf5/FDdT9L6BUvNHfbRCMDJXNkiQoNhz Cbap+dKunUs+nrSSIjCGJmDt1EFr4Z8gLUHffKF68zF+0MU3g3lQmbf0lAm1w4Nz Kgzskj692XpAhOTljWreF6qUfCCkWQT8AEl5TN8OZIfwP4ERaaEI2E/T7TZQt37P gqnFEJ/KFl/SY3/sMw4bIyrBZmI0g5PuAPHYm46G67mHxcaquqDDt4LRaKwSoEs7 F8K1cRhc1Jo0Y2i+zMZhjWXah+lsh80z2/zOLXfW2lajH9XDXa1t+iTYGY09QsjV uUykXlYhB5D4gHeoIu5sxLiC3wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIGIYA9a b38JrMU9jDcYFy9moIxQMB8GA1UdIwQYMBaAFNn8FVtv2hBsaZpWmxIDhJCViqMv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNTNBNS8yNTgwQThENjRC NjUxMUU3QjQ2OUMwN0FDNEY5QUUwMi8yZndWVzJfYUVHeHBtbGFiRWdPRWtKV0tv eTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJmd1ZXMl9hRUd4cG1sYWJFZ09Fa0pXS295OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NTNBNS8yNTgwQThENjRCNjUxMUU3QjQ2OUMwN0FDNEY5QUUwMi8yZndWVzJfYUVH eHBtbGFiRWdPRWtKV0tveTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQClIuNIPXgJAAjzejfT+TEKq8/K+eXHqMIGxe40oQQ5zSJ5aJurMVmK bWOdxya0vrLP3NgfDhzTleRb+APzusjU8WT6ANNvSge8NJ/HBIyiG11BIfwQM2n/ uX1Ri8dMGkGJnZO3vLFunhSUBHH7SNzpmwpXO45W32dq31XFaXDUJlX29LrxFJBF NBSJW/6Hcpl4sHbBjWwkeAE1tOCNHm+xf4up+B9cZM+WWe8f70XKoWOJoI8iHnNR L6iV8hM5/1A5rEunmgNtM6HSAzYQs454sLTI7aSk7Ana1yo9tWmzUDyiBHI2IkMi UhTnK8flAtxbd4+HtrqE9DKRIHX2ak8C -----END CERTIFICATE-----Generated at Wed Nov 20 19:06:05 2024 by rpki-client on console-ams.rpki-client.org