$ rpki-client -vvf rpki.apnic.net/member_repository/A91B59E5/DD9F1F7C3C0111EE91CBE157C4F9AE02/5Hv3AlRTJpfSDQ0xEPYlNw1l-oM.mft File: 5Hv3AlRTJpfSDQ0xEPYlNw1l-oM.mft (raw, json) Hash identifier: VPYk/k97Uqc/NzyKtBW0ZGggvBEvU5qRgOyWcE1jc78= Subject key identifier: 2E:DF:2E:71:02:47:4F:FE:BA:96:82:F3:C6:BC:1D:C1:04:36:E9:1E Authority key identifier: E4:7B:F7:02:54:53:26:97:D2:0D:0D:31:10:F6:25:37:0D:65:FA:83 Certificate issuer: /CN=A91B59E5/serialNumber=E47BF70254532697D20D0D3110F625370D65FA83 Certificate serial: 015F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5Hv3AlRTJpfSDQ0xEPYlNw1l-oM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B59E5/DD9F1F7C3C0111EE91CBE157C4F9AE02/5Hv3AlRTJpfSDQ0xEPYlNw1l-oM.mft Manifest number: 0135 Signing time: Mon 25 Nov 2024 03:20:06 +0000 Manifest this update: Mon 25 Nov 2024 03:20:05 +0000 Manifest next update: Mon 02 Dec 2024 03:20:05 +0000 Files and hashes: 1: 5Hv3AlRTJpfSDQ0xEPYlNw1l-oM.crl (hash: 9FhjYLqZ/FVe+EKW1X5/EoztTV25YbpDmCHNGEN2M/4=) 2: 78194D869FEB11EFA48D4A35C4F9AE02.roa (hash: onARy1IUO8mfXdyJmF4auxFuXxWKXPNT6D84qmuUilE=) 3: 6B9DBFEC9FEB11EFA3663935C4F9AE02.roa (hash: ZhJN/WIzWFH8OUMOITUUcPH22maZa3kYpdMRp5Gb/Jw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B59E5/DD9F1F7C3C0111EE91CBE157C4F9AE02/5Hv3AlRTJpfSDQ0xEPYlNw1l-oM.crl rsync://rpki.apnic.net/member_repository/A91B59E5/DD9F1F7C3C0111EE91CBE157C4F9AE02/5Hv3AlRTJpfSDQ0xEPYlNw1l-oM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5Hv3AlRTJpfSDQ0xEPYlNw1l-oM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 02 Dec 2024 03:20:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 351 (0x15f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B59E5/serialNumber=E47BF70254532697D20D0D3110F625370D65FA83 Validity Not Before: Nov 25 03:20:05 2024 GMT Not After : Dec 2 03:20:05 2024 GMT Subject: CN=6743ece6-7204 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:76:77:f7:81:11:60:30:1c:4c:41:b9:a3:0e: 0b:d5:74:dd:bd:37:57:70:84:ad:e7:10:71:82:81: 13:33:f3:1b:a1:60:28:0f:34:49:22:cc:dc:9b:a9: 9d:6f:55:95:27:e3:cd:40:60:35:b2:01:3b:c0:03: 92:9d:6e:e6:eb:21:2b:73:a8:b7:f5:9e:66:5e:db: a1:3f:5d:09:00:d3:6d:00:59:58:bf:9d:89:9b:78: a3:01:86:42:54:96:c4:cd:45:73:1d:fc:c8:b7:f2: 8f:4b:32:c6:76:41:eb:dc:27:f1:44:81:cd:45:c8: 98:6c:9c:9a:d5:67:91:c7:4d:d9:4f:2d:92:49:dc: 2f:82:41:29:f0:b7:0c:05:9c:07:1c:3a:b3:39:f3: 6a:52:2e:21:89:31:dc:0e:67:12:9f:25:ac:33:77: 20:45:fb:b0:24:cf:33:00:07:fd:50:c6:62:75:7a: 75:88:0c:fa:4e:69:b5:42:fd:08:9f:d9:c6:c4:23: bd:58:81:4b:74:64:6a:38:34:df:4b:6a:0f:0f:e0: f9:a0:8d:f7:22:77:00:57:a2:be:17:99:8b:4e:90: c0:97:b1:e0:72:8d:44:70:7f:0d:99:94:a5:57:47: 38:53:e5:e5:96:cd:32:52:e6:87:93:5c:58:dc:e3: 0f:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:DF:2E:71:02:47:4F:FE:BA:96:82:F3:C6:BC:1D:C1:04:36:E9:1E X509v3 Authority Key Identifier: keyid:E4:7B:F7:02:54:53:26:97:D2:0D:0D:31:10:F6:25:37:0D:65:FA:83 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B59E5/DD9F1F7C3C0111EE91CBE157C4F9AE02/5Hv3AlRTJpfSDQ0xEPYlNw1l-oM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5Hv3AlRTJpfSDQ0xEPYlNw1l-oM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B59E5/DD9F1F7C3C0111EE91CBE157C4F9AE02/5Hv3AlRTJpfSDQ0xEPYlNw1l-oM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 61:4b:8d:12:90:31:9c:47:7e:93:70:24:c0:cd:c6:92:ab:42: a4:65:40:76:a6:f4:ea:4b:52:a2:f7:fd:c8:13:8c:6b:7a:8b: fd:d0:a4:5a:ea:b2:17:ff:36:73:ff:bf:ea:3b:58:b9:66:7e: 64:07:ef:c5:4c:f6:6a:6d:37:f6:63:0b:27:d4:93:c0:38:71: 22:d7:7e:93:68:29:8a:bd:eb:56:d1:80:9c:92:ba:36:cf:fd: f4:ab:0d:75:7a:bc:c0:2c:75:1f:44:ab:8f:7b:62:ab:d8:b8: be:45:11:79:9b:c9:6a:fa:ed:9f:3d:ea:4d:45:9c:4d:37:f4: d1:e6:9d:46:f0:c2:d7:18:1d:a0:f9:24:1b:0d:27:dc:0e:61: c2:45:7b:a1:a0:05:dc:2a:6b:8e:12:57:3b:71:d8:13:47:00: df:43:7a:11:e6:e8:f3:a5:01:bd:ee:63:65:c4:bc:7c:d8:6c: 16:b9:33:65:f5:fc:ff:ec:62:d8:97:7f:09:63:10:9d:a7:b4: 88:e2:73:09:a7:b9:2b:c5:c1:2d:11:38:07:2e:a1:92:fc:d3: db:69:e1:68:ff:ff:79:d2:71:6f:33:45:7d:7c:97:46:f7:0e: a3:4b:79:7f:73:92:58:0c:a9:77:2c:41:1a:4d:7c:32:37:57: 8b:e9:f5:a0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAV8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjU5RTUxMTAvBgNVBAUTKEU0N0JGNzAyNTQ1MzI2OTdEMjBEMEQzMTEwRjYyNTM3 MEQ2NUZBODMwHhcNMjQxMTI1MDMyMDA1WhcNMjQxMjAyMDMyMDA1WjAYMRYwFAYD VQQDEw02NzQzZWNlNi03MjA0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwHZ394ERYDAcTEG5ow4L1XTdvTdXcISt5xBxgoETM/MboWAoDzRJIszcm6md b1WVJ+PNQGA1sgE7wAOSnW7m6yErc6i39Z5mXtuhP10JANNtAFlYv52Jm3ijAYZC VJbEzUVzHfzIt/KPSzLGdkHr3CfxRIHNRciYbJya1WeRx03ZTy2SSdwvgkEp8LcM BZwHHDqzOfNqUi4hiTHcDmcSnyWsM3cgRfuwJM8zAAf9UMZidXp1iAz6Tmm1Qv0I n9nGxCO9WIFLdGRqODTfS2oPD+D5oI33IncAV6K+F5mLTpDAl7Hgco1EcH8NmZSl V0c4U+Xlls0yUuaHk1xY3OMPawIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFC7fLnEC R0/+upaC88a8HcEENukeMB8GA1UdIwQYMBaAFOR79wJUUyaX0g0NMRD2JTcNZfqD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNTlFNS9ERDlGMUY3QzND MDExMUVFOTFDQkUxNTdDNEY5QUUwMi81SHYzQWxSVEpwZlNEUTB4RVBZbE53MWwt b00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVIdjNBbFJUSnBmU0RRMHhFUFlsTncxbC1vTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NTlFNS9ERDlGMUY3QzNDMDExMUVFOTFDQkUxNTdDNEY5QUUwMi81SHYzQWxSVEpw ZlNEUTB4RVBZbE53MWwtb00ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBhS40SkDGcR36TcCTAzcaSq0KkZUB2pvTqS1Ki9/3IE4xreov90KRa 6rIX/zZz/7/qO1i5Zn5kB+/FTPZqbTf2Ywsn1JPAOHEi136TaCmKvetW0YCckro2 z/30qw11erzALHUfRKuPe2Kr2Li+RRF5m8lq+u2fPepNRZxNN/TR5p1G8MLXGB2g +SQbDSfcDmHCRXuhoAXcKmuOElc7cdgTRwDfQ3oR5ujzpQG97mNlxLx82GwWuTNl 9fz/7GLYl38JYxCdp7SI4nMJp7krxcEtETgHLqGS/NPbaeFo//950nFvM0V9fJdG 9w6jS3l/c5JYDKl3LEEaTXwyN1eL6fWg -----END CERTIFICATE-----Generated at Mon Nov 25 04:43:58 2024 by rpki-client on console-ams.rpki-client.org