$ rpki-client -vvf rpki.apnic.net/member_repository/A91B65AC/CB74F8BEE1E011EEAF6E1E68C4F9AE02/oQ9Xg8j5ptlNKbSqkMVuAWu1FFY.mft File: oQ9Xg8j5ptlNKbSqkMVuAWu1FFY.mft (raw, json) Hash identifier: 0vwccDPn1Imop7Vg5zAr/ndceZDgFQlgxdvG4oJhU+Q= Subject key identifier: 01:7B:01:1F:4E:B4:AB:1D:96:75:60:4C:E8:28:A0:E0:E2:FF:F7:20 Authority key identifier: A1:0F:57:83:C8:F9:A6:D9:4D:29:B4:AA:90:C5:6E:01:6B:B5:14:56 Certificate issuer: /CN=A91B65AC/serialNumber=A10F5783C8F9A6D94D29B4AA90C56E016BB51456 Certificate serial: 85 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/oQ9Xg8j5ptlNKbSqkMVuAWu1FFY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B65AC/CB74F8BEE1E011EEAF6E1E68C4F9AE02/oQ9Xg8j5ptlNKbSqkMVuAWu1FFY.mft Manifest number: 83 Signing time: Sat 23 Nov 2024 04:38:46 +0000 Manifest this update: Sat 23 Nov 2024 04:38:46 +0000 Manifest next update: Sat 30 Nov 2024 04:38:46 +0000 Files and hashes: 1: oQ9Xg8j5ptlNKbSqkMVuAWu1FFY.crl (hash: 1wbJ6QfqeliY3FGUif5xtRe8kwrHOTb+ZUZFk99LGYQ=) 2: 48005D9EE5AE11EE9ECE4023C4F9AE02.roa (hash: gkDhVsMy2wpjgH+HYZGfejjLuVLx5h/KbFkHjnnS0sg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B65AC/CB74F8BEE1E011EEAF6E1E68C4F9AE02/oQ9Xg8j5ptlNKbSqkMVuAWu1FFY.crl rsync://rpki.apnic.net/member_repository/A91B65AC/CB74F8BEE1E011EEAF6E1E68C4F9AE02/oQ9Xg8j5ptlNKbSqkMVuAWu1FFY.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/oQ9Xg8j5ptlNKbSqkMVuAWu1FFY.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 133 (0x85) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B65AC/serialNumber=A10F5783C8F9A6D94D29B4AA90C56E016BB51456 Validity Not Before: Nov 23 04:38:46 2024 GMT Not After : Nov 30 04:38:46 2024 GMT Subject: CN=67415c56-f6a7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:e4:0b:e4:38:fe:5c:5a:18:96:70:cf:98:c3: 84:54:52:bd:c7:43:80:00:c2:21:79:58:15:5b:c8: 7a:21:ba:31:1b:d5:a9:89:2f:14:e5:89:6d:af:14: f4:7b:c7:d7:5d:66:de:0c:8c:14:96:fd:30:99:3e: d5:4e:21:35:82:a8:0f:83:02:5f:67:f1:7c:8c:f8: a0:ef:90:07:35:74:49:7a:3b:f0:de:9a:24:6e:90: 8f:52:51:23:bf:57:d9:9c:54:a2:1a:2d:69:90:dc: d8:12:d8:e6:3c:0f:9d:35:a4:c0:9f:0f:6b:23:30: 0f:95:40:f9:92:b0:f7:da:e9:c4:a1:75:b8:06:65: f1:00:13:9c:f6:11:af:a3:da:56:df:33:02:14:ea: 46:05:41:6a:d4:c6:55:99:1b:81:ac:b1:ca:24:64: 5f:e4:39:8f:48:bc:e5:a4:db:98:b5:23:56:58:e2: 4b:0a:4f:f2:58:88:34:96:b3:bc:ff:6f:84:ad:30: e4:6d:a1:ef:c8:5b:f2:b2:03:5f:7d:f0:8a:c1:20: 9f:c2:93:1e:c9:3f:77:90:3f:a7:9f:01:73:03:1b: ad:c3:af:6f:fd:29:44:cb:57:94:91:50:53:52:bf: cc:81:e0:27:4a:38:a9:1e:85:2c:be:97:42:ab:eb: 81:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:7B:01:1F:4E:B4:AB:1D:96:75:60:4C:E8:28:A0:E0:E2:FF:F7:20 X509v3 Authority Key Identifier: keyid:A1:0F:57:83:C8:F9:A6:D9:4D:29:B4:AA:90:C5:6E:01:6B:B5:14:56 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B65AC/CB74F8BEE1E011EEAF6E1E68C4F9AE02/oQ9Xg8j5ptlNKbSqkMVuAWu1FFY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/oQ9Xg8j5ptlNKbSqkMVuAWu1FFY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B65AC/CB74F8BEE1E011EEAF6E1E68C4F9AE02/oQ9Xg8j5ptlNKbSqkMVuAWu1FFY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8c:28:c1:e6:69:1c:7c:5c:fa:33:61:d7:1a:b6:93:bd:50:ff: 8f:7e:73:f2:54:fc:2a:8d:b5:2b:40:67:19:03:73:5b:52:7d: f1:44:5e:27:62:e4:be:6d:fe:ad:0c:ec:f3:fb:54:98:1c:c9: e0:6c:87:d2:f1:51:af:f6:5c:8e:84:e7:93:af:3d:4f:86:2a: 59:12:6f:f4:04:39:be:94:52:b8:fa:1d:56:de:cb:5a:b3:86: 03:bb:ca:fc:39:79:a3:3f:65:e4:c9:7e:33:2f:d0:44:4f:5c: 9e:6f:15:30:4f:97:ea:e7:57:b8:40:01:61:2e:c9:d8:06:2d: ea:cf:96:0b:77:aa:8f:26:a1:c4:1a:13:6b:ae:0f:bf:22:9a: f3:41:67:11:c8:30:e9:58:38:3a:36:17:59:de:22:8f:ea:68: 06:6c:dd:a9:e7:62:69:7c:bd:ff:bb:16:f2:e5:9e:bf:5e:5b: 74:e8:bf:a2:de:21:cc:88:7d:7d:d4:7a:03:aa:02:14:21:47: 7e:4e:9c:74:ae:44:cb:10:7b:31:76:e7:18:d6:63:d9:a7:f3: a6:56:bd:da:81:59:4c:13:bb:14:cf:4f:50:b3:54:3b:4b:44: 67:b2:49:39:07:72:88:49:ac:18:9a:f2:84:57:18:84:ff:ba: 7f:bd:1f:49 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjY1QUMxMTAvBgNVBAUTKEExMEY1NzgzQzhGOUE2RDk0RDI5QjRBQTkwQzU2RTAx NkJCNTE0NTYwHhcNMjQxMTIzMDQzODQ2WhcNMjQxMTMwMDQzODQ2WjAYMRYwFAYD VQQDEw02NzQxNWM1Ni1mNmE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAreQL5Dj+XFoYlnDPmMOEVFK9x0OAAMIheVgVW8h6IboxG9WpiS8U5YltrxT0 e8fXXWbeDIwUlv0wmT7VTiE1gqgPgwJfZ/F8jPig75AHNXRJejvw3pokbpCPUlEj v1fZnFSiGi1pkNzYEtjmPA+dNaTAnw9rIzAPlUD5krD32unEoXW4BmXxABOc9hGv o9pW3zMCFOpGBUFq1MZVmRuBrLHKJGRf5DmPSLzlpNuYtSNWWOJLCk/yWIg0lrO8 /2+ErTDkbaHvyFvysgNfffCKwSCfwpMeyT93kD+nnwFzAxutw69v/SlEy1eUkVBT Ur/MgeAnSjipHoUsvpdCq+uBbwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAF7AR9O tKsdlnVgTOgooODi//cgMB8GA1UdIwQYMBaAFKEPV4PI+abZTSm0qpDFbgFrtRRW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNjVBQy9DQjc0RjhCRUUx RTAxMUVFQUY2RTFFNjhDNEY5QUUwMi9vUTlYZzhqNXB0bE5LYlNxa01WdUFXdTFG RlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL29ROVhnOGo1cHRsTktiU3FrTVZ1QVd1MUZGWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NjVBQy9DQjc0RjhCRUUxRTAxMUVFQUY2RTFFNjhDNEY5QUUwMi9vUTlYZzhqNXB0 bE5LYlNxa01WdUFXdTFGRlkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCMKMHmaRx8XPozYdcatpO9UP+PfnPyVPwqjbUrQGcZA3NbUn3xRF4n YuS+bf6tDOzz+1SYHMngbIfS8VGv9lyOhOeTrz1PhipZEm/0BDm+lFK4+h1W3sta s4YDu8r8OXmjP2XkyX4zL9BET1yebxUwT5fq51e4QAFhLsnYBi3qz5YLd6qPJqHE GhNrrg+/IprzQWcRyDDpWDg6NhdZ3iKP6mgGbN2p52JpfL3/uxby5Z6/Xlt06L+i 3iHMiH191HoDqgIUIUd+Tpx0rkTLEHsxducY1mPZp/OmVr3agVlME7sUz09Qs1Q7 S0Rnskk5B3KISawYmvKEVxiE/7p/vR9J -----END CERTIFICATE-----Generated at Sat Nov 23 06:13:21 2024 by rpki-client on console-ams.rpki-client.org