$ rpki-client -vvf rpki.apnic.net/member_repository/A91B829A/1F23E058057F11EAA5516B3FC4F9AE02/iV5rynpcNtnzBEctDScTpILJ2yU.mft File: iV5rynpcNtnzBEctDScTpILJ2yU.mft (raw, json) Hash identifier: IjYP9OFzvBgWQpGMwQkfRFr8QGPf2nfSCp7wdZVb3no= Subject key identifier: E9:60:D8:D3:44:DC:F9:FB:67:52:75:35:6E:4D:2D:C9:31:A5:27:10 Authority key identifier: 89:5E:6B:CA:7A:5C:36:D9:F3:04:47:2D:0D:27:13:A4:82:C9:DB:25 Certificate issuer: /CN=A91B829A/serialNumber=895E6BCA7A5C36D9F304472D0D2713A482C9DB25 Certificate serial: 0BEB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iV5rynpcNtnzBEctDScTpILJ2yU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B829A/1F23E058057F11EAA5516B3FC4F9AE02/iV5rynpcNtnzBEctDScTpILJ2yU.mft Manifest number: 0BE2 Signing time: Fri 22 Nov 2024 18:26:52 +0000 Manifest this update: Fri 22 Nov 2024 18:26:52 +0000 Manifest next update: Fri 29 Nov 2024 18:26:52 +0000 Files and hashes: 1: iV5rynpcNtnzBEctDScTpILJ2yU.crl (hash: YaypHK1Tde3wzVtsXmU29aLsIsB35Krkgp010TN4lHQ=) 2: 37759456617811ECBB095A62C4F9AE02.roa (hash: 6MjYNuehYHSmyo52GdaYKFT6NgoN+zvp+XeYBlIJd3E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B829A/1F23E058057F11EAA5516B3FC4F9AE02/iV5rynpcNtnzBEctDScTpILJ2yU.crl rsync://rpki.apnic.net/member_repository/A91B829A/1F23E058057F11EAA5516B3FC4F9AE02/iV5rynpcNtnzBEctDScTpILJ2yU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iV5rynpcNtnzBEctDScTpILJ2yU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 18:26:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3051 (0xbeb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B829A/serialNumber=895E6BCA7A5C36D9F304472D0D2713A482C9DB25 Validity Not Before: Nov 22 18:26:52 2024 GMT Not After : Nov 29 18:26:52 2024 GMT Subject: CN=6740ccec-e8d2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:34:84:fd:e4:d9:b7:da:1d:2d:61:9e:9c:c0: a1:44:18:ca:95:3b:cf:ad:37:43:a3:05:d9:a2:db: b5:bd:5b:59:82:df:4d:9a:00:a9:39:b9:cd:8e:1f: 36:cd:5f:32:fd:16:bb:a1:e2:67:fb:7f:e4:d2:0d: db:c8:34:b6:48:81:5c:8e:d3:e4:46:4e:99:c4:77: 32:fd:d7:7e:2f:5b:52:d5:6b:b5:d6:f1:07:19:f5: 67:76:55:88:4f:90:f2:42:e6:bf:2b:86:cb:ce:a7: ed:7b:0c:e7:c9:a9:ad:00:2a:34:a2:bc:1a:b1:c7: 27:3c:7b:ea:05:58:69:7b:b7:0c:3a:7a:2b:44:f8: 95:cc:76:c7:fb:ac:1a:99:60:e3:41:d6:50:b3:ad: 9b:9e:98:6a:c0:c4:ba:24:54:c9:b1:8b:22:ec:77: df:9b:93:2c:69:49:98:9d:3b:ad:23:56:ea:0d:01: 8e:be:71:b9:69:79:53:89:03:ac:4a:02:39:14:25: 5c:ec:76:44:b7:5f:b5:12:fe:a2:d8:13:4c:d7:db: 08:e2:bf:fa:98:79:de:c1:40:b3:e1:5b:5d:fb:1d: 64:5e:2c:3e:a9:72:33:d3:cb:ec:dd:1e:3c:0a:c4: e3:18:93:15:91:8b:41:c2:71:a5:39:4e:03:fe:79: 33:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:60:D8:D3:44:DC:F9:FB:67:52:75:35:6E:4D:2D:C9:31:A5:27:10 X509v3 Authority Key Identifier: keyid:89:5E:6B:CA:7A:5C:36:D9:F3:04:47:2D:0D:27:13:A4:82:C9:DB:25 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B829A/1F23E058057F11EAA5516B3FC4F9AE02/iV5rynpcNtnzBEctDScTpILJ2yU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iV5rynpcNtnzBEctDScTpILJ2yU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B829A/1F23E058057F11EAA5516B3FC4F9AE02/iV5rynpcNtnzBEctDScTpILJ2yU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 95:d2:75:be:29:2c:a7:0b:8f:8f:bb:f1:86:be:9f:de:51:6d: ed:28:5e:5b:ae:62:31:80:d5:f1:11:04:44:ae:38:72:82:2e: f0:06:e3:75:09:43:8d:23:c6:7a:1d:78:30:8e:93:13:46:9d: 65:7e:ab:c6:ce:6b:3e:f0:f2:65:10:c2:0b:4c:b1:fd:0a:ba: 02:72:5c:dc:0d:7c:5d:11:76:da:a7:18:3b:f9:28:90:44:09: 55:e0:ce:56:71:d9:67:52:e7:a2:01:1d:09:3a:aa:b0:0d:29: d1:d0:fe:30:58:0c:b7:35:c8:6c:d3:14:c9:51:51:0e:0e:02: b3:dd:04:27:44:7c:b5:94:f8:f7:05:99:a9:e8:96:67:1f:3b: 7f:3b:1d:cf:69:bb:5e:6e:ff:ca:6e:7b:11:73:bd:c5:c3:33: c4:af:43:b2:88:3c:41:07:38:b4:ef:c0:6f:28:c8:5b:c7:3a: ef:cc:24:4b:07:9e:20:5c:54:58:48:82:21:6f:f5:42:71:48: 0b:47:50:d1:11:d8:e2:c8:e1:f6:39:21:ef:a9:a3:d9:79:d1: fd:3b:76:52:fa:31:2f:da:fe:5f:c3:02:fe:ab:3f:88:b9:da: e3:28:c4:0c:37:8f:a0:66:9f:a7:d2:2a:ab:ec:61:97:ef:20: f5:05:c9:5b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC+swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjgyOUExMTAvBgNVBAUTKDg5NUU2QkNBN0E1QzM2RDlGMzA0NDcyRDBEMjcxM0E0 ODJDOURCMjUwHhcNMjQxMTIyMTgyNjUyWhcNMjQxMTI5MTgyNjUyWjAYMRYwFAYD VQQDEw02NzQwY2NlYy1lOGQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqDSE/eTZt9odLWGenMChRBjKlTvPrTdDowXZotu1vVtZgt9NmgCpObnNjh82 zV8y/Ra7oeJn+3/k0g3byDS2SIFcjtPkRk6ZxHcy/dd+L1tS1Wu11vEHGfVndlWI T5DyQua/K4bLzqftewznyamtACo0orwasccnPHvqBVhpe7cMOnorRPiVzHbH+6wa mWDjQdZQs62bnphqwMS6JFTJsYsi7Hffm5MsaUmYnTutI1bqDQGOvnG5aXlTiQOs SgI5FCVc7HZEt1+1Ev6i2BNM19sI4r/6mHnewUCz4Vtd+x1kXiw+qXIz08vs3R48 CsTjGJMVkYtBwnGlOU4D/nkz/QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOlg2NNE 3Pn7Z1J1NW5NLckxpScQMB8GA1UdIwQYMBaAFIlea8p6XDbZ8wRHLQ0nE6SCydsl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCODI5QS8xRjIzRTA1ODA1 N0YxMUVBQTU1MTZCM0ZDNEY5QUUwMi9pVjVyeW5wY050bnpCRWN0RFNjVHBJTEoy eVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lWNXJ5bnBjTnRuekJFY3REU2NUcElMSjJ5VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC ODI5QS8xRjIzRTA1ODA1N0YxMUVBQTU1MTZCM0ZDNEY5QUUwMi9pVjVyeW5wY050 bnpCRWN0RFNjVHBJTEoyeVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCV0nW+KSynC4+Pu/GGvp/eUW3tKF5brmIxgNXxEQRErjhygi7wBuN1 CUONI8Z6HXgwjpMTRp1lfqvGzms+8PJlEMILTLH9CroCclzcDXxdEXbapxg7+SiQ RAlV4M5WcdlnUueiAR0JOqqwDSnR0P4wWAy3Nchs0xTJUVEODgKz3QQnRHy1lPj3 BZmp6JZnHzt/Ox3Pabtebv/KbnsRc73FwzPEr0OyiDxBBzi078BvKMhbxzrvzCRL B54gXFRYSIIhb/VCcUgLR1DREdjiyOH2OSHvqaPZedH9O3ZS+jEv2v5fwwL+qz+I udrjKMQMN4+gZp+n0iqr7GGX7yD1Bclb -----END CERTIFICATE-----Generated at Fri Nov 22 19:50:16 2024 by rpki-client on console-ams.rpki-client.org