$ rpki-client -vvf rpki.apnic.net/member_repository/A91B6C85/28707CBE288611EF8F1FB185C4F9AE02/7TFghH3ErtktjFnRmEZbHL7y3yI.mft File: 7TFghH3ErtktjFnRmEZbHL7y3yI.mft (raw, json) Hash identifier: /X7cT0m47DwNT4peOkX+LulSB95NsAqtTP4daBNNpcM= Subject key identifier: 7A:F1:C9:46:A2:23:F1:CB:92:59:26:F5:B8:84:91:19:60:79:86:77 Authority key identifier: ED:31:60:84:7D:C4:AE:D9:2D:8C:59:D1:98:46:5B:1C:BE:F2:DF:22 Certificate issuer: /CN=A91B6C85/serialNumber=ED3160847DC4AED92D8C59D198465B1CBEF2DF22 Certificate serial: 56 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7TFghH3ErtktjFnRmEZbHL7y3yI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B6C85/28707CBE288611EF8F1FB185C4F9AE02/7TFghH3ErtktjFnRmEZbHL7y3yI.mft Manifest number: 56 Signing time: Sat 23 Nov 2024 05:07:48 +0000 Manifest this update: Sat 23 Nov 2024 05:07:48 +0000 Manifest next update: Sat 30 Nov 2024 05:07:48 +0000 Files and hashes: 1: 7TFghH3ErtktjFnRmEZbHL7y3yI.crl (hash: NoF4EYLbprsb4dSA3DvjTSjYkGpe8EQES5a/gvNQwiE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B6C85/28707CBE288611EF8F1FB185C4F9AE02/7TFghH3ErtktjFnRmEZbHL7y3yI.crl rsync://rpki.apnic.net/member_repository/A91B6C85/28707CBE288611EF8F1FB185C4F9AE02/7TFghH3ErtktjFnRmEZbHL7y3yI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7TFghH3ErtktjFnRmEZbHL7y3yI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 86 (0x56) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B6C85/serialNumber=ED3160847DC4AED92D8C59D198465B1CBEF2DF22 Validity Not Before: Nov 23 05:07:48 2024 GMT Not After : Nov 30 05:07:48 2024 GMT Subject: CN=67416324-8bc0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:09:d1:46:11:37:a8:d1:42:23:68:18:19:6d: ff:87:90:dd:c7:92:d3:35:0c:72:db:d0:82:38:49: fb:f0:39:0a:9d:d7:99:09:b6:29:4f:45:28:c9:7b: a1:c5:87:f4:4a:4f:8e:e6:97:6a:b4:a3:69:5a:0e: bb:53:e4:8e:70:6b:99:88:b2:f0:d2:2d:80:6b:7c: 42:2c:70:7d:44:d7:b7:2a:59:8b:f1:3e:ce:f6:5b: cd:58:a4:fb:c8:a6:ed:ae:d1:4c:85:f1:20:52:0b: 0d:45:97:b2:f6:31:de:cb:99:4d:81:6c:ef:4a:fe: d2:2c:5a:25:90:6f:ce:60:4c:b7:ea:31:cf:db:86: 07:0c:8b:22:20:83:46:ec:85:0e:1b:c6:82:cb:ee: 61:60:42:7c:91:41:4a:45:ad:18:4f:58:5a:44:31: 7c:2f:bc:87:18:2c:e3:50:28:f5:47:8f:fb:4a:8a: 52:ae:44:0c:52:a9:3a:18:f3:be:99:f9:2a:2b:f0: b3:3b:22:a7:d3:10:af:d4:d5:c0:bb:32:4c:1a:1e: c2:9f:69:d8:30:a5:6d:0f:f6:e1:94:fb:c9:e3:d6: 26:2d:15:03:43:4f:ba:a7:df:b4:d4:6f:24:49:c5: 2b:c3:a0:ca:db:43:8d:05:b2:1d:6f:6b:d5:1f:fa: 53:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:F1:C9:46:A2:23:F1:CB:92:59:26:F5:B8:84:91:19:60:79:86:77 X509v3 Authority Key Identifier: keyid:ED:31:60:84:7D:C4:AE:D9:2D:8C:59:D1:98:46:5B:1C:BE:F2:DF:22 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B6C85/28707CBE288611EF8F1FB185C4F9AE02/7TFghH3ErtktjFnRmEZbHL7y3yI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7TFghH3ErtktjFnRmEZbHL7y3yI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B6C85/28707CBE288611EF8F1FB185C4F9AE02/7TFghH3ErtktjFnRmEZbHL7y3yI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8c:5a:8c:b0:3a:e8:35:c6:8a:98:f7:0f:5e:df:d8:da:29:b2: 09:5b:12:b9:dc:d5:02:95:5e:c1:62:63:e8:51:35:0b:23:b1: 03:f8:87:81:78:a4:8a:8c:2a:b8:eb:2f:84:f2:26:42:04:c7: a2:e8:b0:54:ad:d8:72:7e:a4:e1:42:a5:1a:1a:7a:cd:6d:e6: 10:3f:24:c0:69:20:aa:c1:db:cd:c9:06:ce:1d:01:86:40:f6: 95:c6:66:2f:c3:32:4f:74:44:01:6f:3d:e0:d6:03:95:e8:d8: f2:07:21:73:39:83:8c:01:b3:b1:e6:fe:44:42:93:4d:c4:62: 4d:55:52:7b:26:e8:9d:52:50:19:d3:40:80:2a:d7:c6:3a:b6: 3a:4a:68:f7:7e:7f:bc:d3:31:76:9d:d2:52:2d:68:3e:77:90: 49:92:32:3c:8c:7c:7b:13:49:21:4a:2b:31:c1:e1:66:e7:89: 53:26:79:f9:f2:16:77:c8:cf:ae:f6:4b:67:12:f8:56:d0:74: ef:9b:ae:ea:9a:5a:78:3e:54:36:90:d2:4e:ba:32:98:01:e4: af:b1:e3:a2:86:3f:c4:68:b2:90:96:b4:61:21:8c:be:80:78: 57:73:d3:47:c3:2b:70:38:fe:99:bb:5b:b7:ad:8e:05:0e:a1: ca:cf:9b:1a -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBVjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC NkM4NTExMC8GA1UEBRMoRUQzMTYwODQ3REM0QUVEOTJEOEM1OUQxOTg0NjVCMUNC RUYyREYyMjAeFw0yNDExMjMwNTA3NDhaFw0yNDExMzAwNTA3NDhaMBgxFjAUBgNV BAMTDTY3NDE2MzI0LThiYzAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDcCdFGETeo0UIjaBgZbf+HkN3HktM1DHLb0II4SfvwOQqd15kJtilPRSjJe6HF h/RKT47ml2q0o2laDrtT5I5wa5mIsvDSLYBrfEIscH1E17cqWYvxPs72W81YpPvI pu2u0UyF8SBSCw1Fl7L2Md7LmU2BbO9K/tIsWiWQb85gTLfqMc/bhgcMiyIgg0bs hQ4bxoLL7mFgQnyRQUpFrRhPWFpEMXwvvIcYLONQKPVHj/tKilKuRAxSqToY876Z +Sor8LM7IqfTEK/U1cC7MkwaHsKfadgwpW0P9uGU+8nj1iYtFQNDT7qn37TUbyRJ xSvDoMrbQ40Fsh1va9Uf+lNHAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUevHJRqIj 8cuSWSb1uISRGWB5hncwHwYDVR0jBBgwFoAU7TFghH3ErtktjFnRmEZbHL7y3yIw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUI2Qzg1LzI4NzA3Q0JFMjg4 NjExRUY4RjFGQjE4NUM0RjlBRTAyLzdURmdoSDNFcnRrdGpGblJtRVpiSEw3eTN5 SS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvN1RGZ2hIM0VydGt0akZuUm1FWmJITDd5M3lJLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUI2 Qzg1LzI4NzA3Q0JFMjg4NjExRUY4RjFGQjE4NUM0RjlBRTAyLzdURmdoSDNFcnRr dGpGblJtRVpiSEw3eTN5SS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAIxajLA66DXGipj3D17f2NopsglbErnc1QKVXsFiY+hRNQsjsQP4h4F4 pIqMKrjrL4TyJkIEx6LosFSt2HJ+pOFCpRoaes1t5hA/JMBpIKrB283JBs4dAYZA 9pXGZi/DMk90RAFvPeDWA5Xo2PIHIXM5g4wBs7Hm/kRCk03EYk1VUnsm6J1SUBnT QIAq18Y6tjpKaPd+f7zTMXad0lItaD53kEmSMjyMfHsTSSFKKzHB4WbniVMmefny FnfIz672S2cS+FbQdO+bruqaWng+VDaQ0k66MpgB5K+x46KGP8RospCWtGEhjL6A eFdz00fDK3A4/pm7W7etjgUOocrPmxo= -----END CERTIFICATE-----Generated at Sat Nov 23 06:13:21 2024 by rpki-client on console-ams.rpki-client.org