$ rpki-client -vvf rpki.apnic.net/member_repository/A91B5CC0/CFA79F1A503F11ED81D0756BC4F9AE02/_i41K0L3TxDVdoNTA6LpeOHEN7Y.mft File: _i41K0L3TxDVdoNTA6LpeOHEN7Y.mft (raw, json) Hash identifier: VUdD2uYrFVGKfn0NYCM52F6K+IlSSuQi/oOEr+wYMkM= Subject key identifier: 94:61:4B:B8:AF:79:02:91:CD:C5:3B:23:17:00:B4:08:56:34:8B:45 Authority key identifier: FE:2E:35:2B:42:F7:4F:10:D5:76:83:53:03:A2:E9:78:E1:C4:37:B6 Certificate issuer: /CN=A91B5CC0/serialNumber=FE2E352B42F74F10D576835303A2E978E1C437B6 Certificate serial: 018D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_i41K0L3TxDVdoNTA6LpeOHEN7Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B5CC0/CFA79F1A503F11ED81D0756BC4F9AE02/_i41K0L3TxDVdoNTA6LpeOHEN7Y.mft Manifest number: 018A Signing time: Sat 23 Nov 2024 01:57:29 +0000 Manifest this update: Sat 23 Nov 2024 01:57:28 +0000 Manifest next update: Sat 30 Nov 2024 01:57:28 +0000 Files and hashes: 1: _i41K0L3TxDVdoNTA6LpeOHEN7Y.crl (hash: 7b71seD6ML45YyLAt18f5w7DZGFToqD+n2WJZTVSDM4=) 2: FA13BAAC504611ED9AE40711C4F9AE02.roa (hash: ezVuFYLFE5nPFWmkFpb3o3Zc1r5CWJVIlBRAQm/fLig=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B5CC0/CFA79F1A503F11ED81D0756BC4F9AE02/_i41K0L3TxDVdoNTA6LpeOHEN7Y.crl rsync://rpki.apnic.net/member_repository/A91B5CC0/CFA79F1A503F11ED81D0756BC4F9AE02/_i41K0L3TxDVdoNTA6LpeOHEN7Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_i41K0L3TxDVdoNTA6LpeOHEN7Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 01:57:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 397 (0x18d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B5CC0/serialNumber=FE2E352B42F74F10D576835303A2E978E1C437B6 Validity Not Before: Nov 23 01:57:28 2024 GMT Not After : Nov 30 01:57:28 2024 GMT Subject: CN=67413688-6b6a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:cd:f3:56:aa:d3:4a:dc:ef:93:1e:59:90:a0: f1:59:d7:bc:93:1a:ed:df:ee:a5:e6:63:52:25:0d: b3:3b:e2:95:39:0a:58:a0:b5:b0:bf:9f:fa:e7:86: e1:1a:52:6d:37:5a:e7:0e:f3:2d:f4:b1:ec:1e:8f: 9d:b8:3f:26:1e:73:fb:04:34:63:ef:51:2f:40:99: e9:b6:5a:a8:d0:ee:f1:c2:53:e8:52:b5:6d:9b:c9: 01:95:69:1b:f1:51:38:c3:41:f9:cd:3c:80:39:7b: bb:84:ad:6c:d9:c9:0d:c1:e3:f2:f1:60:78:70:8e: b1:c7:03:2d:fa:93:57:13:ff:2b:40:e7:e0:ff:87: 34:e9:05:92:b1:15:be:68:22:33:3b:cc:40:74:74: dd:20:b9:58:f4:eb:49:b7:e7:9d:d0:83:86:69:e5: 34:51:e2:b6:25:6d:e7:b2:71:0c:16:a9:72:a4:d8: 96:3f:82:29:0e:49:ac:79:96:11:ba:a1:81:11:1a: 64:74:64:4b:c3:35:d6:f6:b8:8c:14:34:02:2d:27: 44:10:d0:ed:61:c8:91:be:d0:d9:f2:a7:f6:7d:0a: 04:0f:ee:b6:06:9f:f7:52:6e:1f:9e:3b:b4:81:f9: b7:d4:3e:24:75:16:ff:f0:28:c0:64:f7:fe:82:c4: 4b:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:61:4B:B8:AF:79:02:91:CD:C5:3B:23:17:00:B4:08:56:34:8B:45 X509v3 Authority Key Identifier: keyid:FE:2E:35:2B:42:F7:4F:10:D5:76:83:53:03:A2:E9:78:E1:C4:37:B6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B5CC0/CFA79F1A503F11ED81D0756BC4F9AE02/_i41K0L3TxDVdoNTA6LpeOHEN7Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_i41K0L3TxDVdoNTA6LpeOHEN7Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B5CC0/CFA79F1A503F11ED81D0756BC4F9AE02/_i41K0L3TxDVdoNTA6LpeOHEN7Y.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 13:2f:b4:3d:4e:ec:3f:ff:e7:04:fd:52:38:f4:ff:88:f5:ac: 83:44:d0:a2:31:96:07:be:e1:54:5e:87:f8:3d:43:fd:9a:af: 85:7e:39:12:82:ae:23:64:a0:88:d8:40:07:c8:be:40:e4:77: d8:a2:33:36:96:be:6e:be:7a:a3:b6:aa:3b:55:14:76:ba:b6: c7:c4:ab:e2:c7:d3:94:7d:9d:60:c5:a9:ff:19:be:46:20:0f: c7:bb:13:98:7e:6d:d2:d8:40:d5:3c:34:de:52:7f:1a:2c:b4: fd:3f:67:06:e7:ed:8b:00:b0:67:f9:e0:23:65:f1:de:c5:c7: 7a:24:88:57:bd:9d:a8:3c:15:20:80:d9:4f:6e:bf:0b:89:3a: c4:b3:20:3b:92:ba:1e:a5:53:6a:ad:85:16:aa:cf:c0:e1:de: e7:1b:a6:1f:5f:76:de:93:16:7a:0c:de:aa:25:dc:b4:87:e8: e1:83:24:0c:14:c8:91:86:73:23:ca:97:fd:a7:68:9b:3d:21: 8b:c0:0c:a2:6b:b1:cf:7f:db:9e:9e:b9:3b:13:1c:dc:46:ec: c3:ad:02:7c:cd:41:dd:77:c7:05:78:b9:f1:60:7f:50:5b:99: cc:94:99:59:d7:ac:4b:e7:c1:d3:50:48:fb:a0:74:24:21:36: 71:a3:d1:97 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAY0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjVDQzAxMTAvBgNVBAUTKEZFMkUzNTJCNDJGNzRGMTBENTc2ODM1MzAzQTJFOTc4 RTFDNDM3QjYwHhcNMjQxMTIzMDE1NzI4WhcNMjQxMTMwMDE1NzI4WjAYMRYwFAYD VQQDEw02NzQxMzY4OC02YjZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtM3zVqrTStzvkx5ZkKDxWde8kxrt3+6l5mNSJQ2zO+KVOQpYoLWwv5/654bh GlJtN1rnDvMt9LHsHo+duD8mHnP7BDRj71EvQJnptlqo0O7xwlPoUrVtm8kBlWkb 8VE4w0H5zTyAOXu7hK1s2ckNwePy8WB4cI6xxwMt+pNXE/8rQOfg/4c06QWSsRW+ aCIzO8xAdHTdILlY9OtJt+ed0IOGaeU0UeK2JW3nsnEMFqlypNiWP4IpDkmseZYR uqGBERpkdGRLwzXW9riMFDQCLSdEENDtYciRvtDZ8qf2fQoED+62Bp/3Um4fnju0 gfm31D4kdRb/8CjAZPf+gsRLewIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJRhS7iv eQKRzcU7IxcAtAhWNItFMB8GA1UdIwQYMBaAFP4uNStC908Q1XaDUwOi6XjhxDe2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNUNDMC9DRkE3OUYxQTUw M0YxMUVEODFEMDc1NkJDNEY5QUUwMi9faTQxSzBMM1R4RFZkb05UQTZMcGVPSEVO N1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL19pNDFLMEwzVHhEVmRvTlRBNkxwZU9IRU43WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NUNDMC9DRkE3OUYxQTUwM0YxMUVEODFEMDc1NkJDNEY5QUUwMi9faTQxSzBMM1R4 RFZkb05UQTZMcGVPSEVON1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQATL7Q9Tuw//+cE/VI49P+I9ayDRNCiMZYHvuFUXof4PUP9mq+FfjkS gq4jZKCI2EAHyL5A5HfYojM2lr5uvnqjtqo7VRR2urbHxKvix9OUfZ1gxan/Gb5G IA/HuxOYfm3S2EDVPDTeUn8aLLT9P2cG5+2LALBn+eAjZfHexcd6JIhXvZ2oPBUg gNlPbr8LiTrEsyA7kroepVNqrYUWqs/A4d7nG6YfX3bekxZ6DN6qJdy0h+jhgyQM FMiRhnMjypf9p2ibPSGLwAyia7HPf9uenrk7ExzcRuzDrQJ8zUHdd8cFeLnxYH9Q W5nMlJlZ16xL58HTUEj7oHQkITZxo9GX -----END CERTIFICATE-----Generated at Sat Nov 23 03:58:48 2024 by rpki-client on console-ams.rpki-client.org