$ rpki-client -vvf rpki.apnic.net/member_repository/A91B758E/DDEC8124D53D11EE8F1E8A85C4F9AE02/07yEKALa0i1cMMKCZffRCL1HjnA.mft File: 07yEKALa0i1cMMKCZffRCL1HjnA.mft (raw, json) Hash identifier: b2GuFJvq7yTNeTEHyOlBXFhYhEX6oSVzXvvf7bPD/8A= Subject key identifier: DD:AA:56:8A:75:0C:C8:E9:29:6D:4F:C3:F6:E3:B6:64:FF:A3:AC:C5 Authority key identifier: D3:BC:84:28:02:DA:D2:2D:5C:30:C2:82:65:F7:D1:08:BD:47:8E:70 Certificate issuer: /CN=A91B758E/serialNumber=D3BC842802DAD22D5C30C28265F7D108BD478E70 Certificate serial: 8C Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/07yEKALa0i1cMMKCZffRCL1HjnA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B758E/DDEC8124D53D11EE8F1E8A85C4F9AE02/07yEKALa0i1cMMKCZffRCL1HjnA.mft Manifest number: 8A Signing time: Thu 21 Nov 2024 04:40:46 +0000 Manifest this update: Thu 21 Nov 2024 04:40:45 +0000 Manifest next update: Thu 28 Nov 2024 04:40:45 +0000 Files and hashes: 1: 07yEKALa0i1cMMKCZffRCL1HjnA.crl (hash: 5z8Ps0eNOFcq0nXPRm+b6ga5MO+wzqiCUH2Tf8lNWCc=) 2: 9E0AD9B0D53E11EEA0454A0BC4F9AE02.roa (hash: R7fWNIo1N2lKM0xCDWt1MXlQDp9EYpgL3Lp7EB7mFwI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B758E/DDEC8124D53D11EE8F1E8A85C4F9AE02/07yEKALa0i1cMMKCZffRCL1HjnA.crl rsync://rpki.apnic.net/member_repository/A91B758E/DDEC8124D53D11EE8F1E8A85C4F9AE02/07yEKALa0i1cMMKCZffRCL1HjnA.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/07yEKALa0i1cMMKCZffRCL1HjnA.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 02:50:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 140 (0x8c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B758E/serialNumber=D3BC842802DAD22D5C30C28265F7D108BD478E70 Validity Not Before: Nov 21 04:40:45 2024 GMT Not After : Nov 28 04:40:45 2024 GMT Subject: CN=673eb9cd-62d4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:37:e4:b1:9a:54:e0:86:84:fd:b8:3b:26:b7: c6:8f:07:2b:07:95:59:ce:7c:0a:f9:e0:fe:65:d7: 92:65:75:4c:b2:49:97:a4:65:70:b1:23:33:fc:09: ac:4f:06:d6:0d:7c:91:60:2b:62:f9:0c:91:98:ff: 27:30:1d:0b:29:fd:ef:91:7a:a9:3d:19:0b:56:fd: 54:92:47:f6:c4:01:85:bb:31:68:30:52:0a:30:0c: 44:3c:ef:81:1d:3d:87:9a:28:07:9e:29:89:88:5d: ef:3b:ee:a2:96:a5:4f:cf:12:a7:35:8c:fa:c5:62: 17:38:f1:af:a6:c4:8d:b5:95:29:b9:ae:08:a7:e5: a3:ea:ab:6e:f9:42:fb:89:3e:b0:6d:1b:aa:07:10: a4:3f:39:6c:b8:b0:26:9b:3f:67:f4:0c:aa:48:c8: 37:f8:8f:8f:11:c5:fd:3c:69:df:18:55:62:3b:74: 13:f3:79:d5:57:df:25:80:87:33:ba:97:d8:b0:21: 27:64:ea:4f:fe:1d:e8:c4:7a:2c:d2:dd:0d:e2:65: 86:cf:f0:33:17:05:71:48:3f:da:63:13:5a:96:24: 98:9f:b1:11:d6:86:36:59:a2:f8:a4:88:00:e7:d2: f0:b3:b0:b6:20:8e:8a:ef:65:c7:4a:9b:58:65:81: 15:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:AA:56:8A:75:0C:C8:E9:29:6D:4F:C3:F6:E3:B6:64:FF:A3:AC:C5 X509v3 Authority Key Identifier: keyid:D3:BC:84:28:02:DA:D2:2D:5C:30:C2:82:65:F7:D1:08:BD:47:8E:70 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B758E/DDEC8124D53D11EE8F1E8A85C4F9AE02/07yEKALa0i1cMMKCZffRCL1HjnA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/07yEKALa0i1cMMKCZffRCL1HjnA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B758E/DDEC8124D53D11EE8F1E8A85C4F9AE02/07yEKALa0i1cMMKCZffRCL1HjnA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 34:81:0a:38:cd:a1:e9:c1:1c:9c:fc:f7:a0:2b:39:89:b0:cd: aa:f8:30:b1:a9:7e:6a:d1:0e:af:61:b4:cb:6e:15:84:b3:25: ff:c1:58:a1:a1:11:75:b4:f5:03:ac:61:fc:f5:11:4b:e6:3c: 6e:06:5f:87:17:db:43:eb:24:26:93:68:76:cd:5b:74:bb:c6: 69:fb:20:39:28:e9:80:d2:01:b7:10:b5:2a:42:c2:c9:03:a5: 46:f5:9c:68:17:0d:6c:59:84:3f:85:4e:3b:73:8f:33:e7:b0: 75:03:32:3e:70:01:fd:23:a7:cc:71:e2:26:ca:b2:ea:d9:01: bb:bd:9e:22:a1:61:33:c1:55:0d:15:78:27:e7:7c:8e:1e:2d: 65:4c:28:ea:cb:84:2e:7c:21:9e:f8:c1:ef:99:62:20:07:68: b1:a8:63:92:ad:83:68:ea:08:d3:4d:f7:27:d4:81:a1:77:7a: 48:88:01:52:87:33:3b:57:c3:c6:91:cd:83:ea:4f:ea:9a:31: 3a:2b:e3:03:65:09:0b:0e:9c:fc:dd:ec:43:21:22:3f:34:d6: 98:83:97:f7:a2:31:ba:8d:51:da:6e:aa:09:28:a5:42:cc:40: 48:4c:1d:f5:0b:a6:20:fe:d5:aa:82:74:32:f1:80:05:32:5e: 9d:84:4e:09 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qjc1OEUxMTAvBgNVBAUTKEQzQkM4NDI4MDJEQUQyMkQ1QzMwQzI4MjY1RjdEMTA4 QkQ0NzhFNzAwHhcNMjQxMTIxMDQ0MDQ1WhcNMjQxMTI4MDQ0MDQ1WjAYMRYwFAYD VQQDEw02NzNlYjljZC02MmQ0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApzfksZpU4IaE/bg7JrfGjwcrB5VZznwK+eD+ZdeSZXVMskmXpGVwsSMz/Ams TwbWDXyRYCti+QyRmP8nMB0LKf3vkXqpPRkLVv1Ukkf2xAGFuzFoMFIKMAxEPO+B HT2HmigHnimJiF3vO+6ilqVPzxKnNYz6xWIXOPGvpsSNtZUpua4Ip+Wj6qtu+UL7 iT6wbRuqBxCkPzlsuLAmmz9n9AyqSMg3+I+PEcX9PGnfGFViO3QT83nVV98lgIcz upfYsCEnZOpP/h3oxHos0t0N4mWGz/AzFwVxSD/aYxNaliSYn7ER1oY2WaL4pIgA 59Lws7C2II6K72XHSptYZYEVPQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFN2qVop1 DMjpKW1Pw/bjtmT/o6zFMB8GA1UdIwQYMBaAFNO8hCgC2tItXDDCgmX30Qi9R45w MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNzU4RS9EREVDODEyNEQ1 M0QxMUVFOEYxRThBODVDNEY5QUUwMi8wN3lFS0FMYTBpMWNNTUtDWmZmUkNMMUhq bkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzA3eUVLQUxhMGkxY01NS0NaZmZSQ0wxSGpuQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NzU4RS9EREVDODEyNEQ1M0QxMUVFOEYxRThBODVDNEY5QUUwMi8wN3lFS0FMYTBp MWNNTUtDWmZmUkNMMUhqbkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA0gQo4zaHpwRyc/PegKzmJsM2q+DCxqX5q0Q6vYbTLbhWEsyX/wVih oRF1tPUDrGH89RFL5jxuBl+HF9tD6yQmk2h2zVt0u8Zp+yA5KOmA0gG3ELUqQsLJ A6VG9ZxoFw1sWYQ/hU47c48z57B1AzI+cAH9I6fMceImyrLq2QG7vZ4ioWEzwVUN FXgn53yOHi1lTCjqy4QufCGe+MHvmWIgB2ixqGOSrYNo6gjTTfcn1IGhd3pIiAFS hzM7V8PGkc2D6k/qmjE6K+MDZQkLDpz83exDISI/NNaYg5f3ojG6jVHabqoJKKVC zEBITB31C6Yg/tWqgnQy8YAFMl6dhE4J -----END CERTIFICATE-----Generated at Thu Nov 21 05:37:16 2024 by rpki-client on console-ams.rpki-client.org