$ rpki-client -vvf rpki.apnic.net/member_repository/A91B9011/3888E0C4C73A11EB90075510C4F9AE02/1RZ7lweHQQlX4l2fh1CFYPAFd24.mft File: 1RZ7lweHQQlX4l2fh1CFYPAFd24.mft (raw, json) Hash identifier: W/KtpRRs1k7Lczr9YaCaFCjMc/1Y8jLSG9fwF0/Fswg= Subject key identifier: 43:F7:2B:41:DB:2C:08:DC:36:5F:A5:A3:64:A8:5D:9B:01:1D:C8:8F Authority key identifier: D5:16:7B:97:07:87:41:09:57:E2:5D:9F:87:50:85:60:F0:05:77:6E Certificate issuer: /CN=A91B9011/serialNumber=D5167B970787410957E25D9F87508560F005776E Certificate serial: 0558 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1RZ7lweHQQlX4l2fh1CFYPAFd24.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B9011/3888E0C4C73A11EB90075510C4F9AE02/1RZ7lweHQQlX4l2fh1CFYPAFd24.mft Manifest number: 0554 Signing time: Fri 22 Nov 2024 22:58:14 +0000 Manifest this update: Fri 22 Nov 2024 22:58:13 +0000 Manifest next update: Fri 29 Nov 2024 22:58:13 +0000 Files and hashes: 1: 1RZ7lweHQQlX4l2fh1CFYPAFd24.crl (hash: Ta5ROtg+KzlngCdbBD6BZEar7yKOgOkLpMIPc8+PUzs=) 2: 438893AC55BE11EDBDE51983C4F9AE02.roa (hash: BLZihm/TeabqF4tkohMfsqoOF09WEG/Ggs7uUhIWlKs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B9011/3888E0C4C73A11EB90075510C4F9AE02/1RZ7lweHQQlX4l2fh1CFYPAFd24.crl rsync://rpki.apnic.net/member_repository/A91B9011/3888E0C4C73A11EB90075510C4F9AE02/1RZ7lweHQQlX4l2fh1CFYPAFd24.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1RZ7lweHQQlX4l2fh1CFYPAFd24.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1368 (0x558) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B9011/serialNumber=D5167B970787410957E25D9F87508560F005776E Validity Not Before: Nov 22 22:58:13 2024 GMT Not After : Nov 29 22:58:13 2024 GMT Subject: CN=67410c86-c5da Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:b1:37:ee:cd:98:80:57:c2:81:51:dd:31:7e: 19:7c:fb:c1:db:35:61:b1:40:19:de:a2:53:70:08: d4:78:e4:dd:b3:d6:70:00:54:e4:88:15:f7:68:28: c8:f2:61:c4:b9:d7:ce:76:70:2c:3a:5b:22:b4:e1: 37:6c:a8:02:1c:68:46:7e:a2:97:97:af:f2:af:d9: 54:e0:fd:bb:01:9b:37:07:36:dc:17:91:63:53:b8: 8e:2a:01:c4:73:ec:af:c1:c4:12:d5:11:13:b3:d8: 4e:86:a5:e8:fd:8f:8f:c3:66:05:62:f0:ee:47:be: d1:a3:5e:f7:c4:b5:47:49:c0:f9:b8:45:24:e2:2c: ad:1f:68:b7:b7:ff:a0:25:d9:87:d5:2d:8f:c1:8a: 56:d6:44:fc:c8:5d:e1:3a:8c:8d:1c:5b:7e:f8:04: 08:0b:28:13:f9:29:a7:bc:7e:63:70:20:00:12:c8: f3:45:08:f2:fa:09:77:1f:01:db:3a:ce:43:12:76: 77:49:0c:4b:20:e1:26:cb:41:c4:5b:02:0e:01:fd: 28:9c:c2:50:bd:e9:0e:88:0e:0b:e6:53:34:8e:36: b0:29:46:c1:4e:ce:30:f8:74:cf:09:74:2d:20:44: 31:97:c0:49:d6:4c:28:e4:a5:52:70:ba:5e:31:2a: 12:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:F7:2B:41:DB:2C:08:DC:36:5F:A5:A3:64:A8:5D:9B:01:1D:C8:8F X509v3 Authority Key Identifier: keyid:D5:16:7B:97:07:87:41:09:57:E2:5D:9F:87:50:85:60:F0:05:77:6E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B9011/3888E0C4C73A11EB90075510C4F9AE02/1RZ7lweHQQlX4l2fh1CFYPAFd24.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1RZ7lweHQQlX4l2fh1CFYPAFd24.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B9011/3888E0C4C73A11EB90075510C4F9AE02/1RZ7lweHQQlX4l2fh1CFYPAFd24.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 63:fb:29:b0:d1:03:e3:bb:56:99:96:2d:6b:d9:09:d3:9a:42: ff:0a:7f:9a:c1:eb:5e:5f:b3:3a:a7:fb:71:2a:f8:ea:76:9e: 94:b2:44:19:6e:ba:7b:af:3f:63:f6:15:42:3d:b2:00:26:60: c4:e3:25:de:4f:88:09:79:24:8c:76:25:88:7d:8b:23:67:fd: ed:25:c1:9d:db:af:d5:7c:58:bb:93:ff:52:bb:77:9b:8c:44: c7:52:57:fa:5c:c5:6f:8a:9f:6c:ca:ff:b4:32:87:ca:75:c0: 22:12:69:f9:61:27:85:65:62:4c:a8:cb:fd:48:d4:a0:35:52: 07:53:6b:55:08:da:3f:3b:1e:98:91:42:63:7b:d9:9e:42:54: 9d:6d:4a:b7:a6:99:a1:fa:46:59:3c:3c:a4:66:66:d4:44:cf: 8c:11:bb:6b:fb:b6:76:7d:36:51:5b:63:3a:55:d9:7e:a1:bb: 13:f1:91:e2:2d:48:cd:89:b1:54:ec:03:04:8c:22:63:e9:0d: 74:73:ed:8d:d2:14:1b:87:1b:38:2b:7d:76:8c:37:ae:71:83: 30:f4:4e:40:ea:79:dd:22:12:b5:25:01:58:b0:0b:1f:51:78: c1:f9:45:b0:26:5a:75:d7:2b:9f:bb:0b:be:47:2b:88:ba:ca: 29:9b:2b:e3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBVgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjkwMTExMTAvBgNVBAUTKEQ1MTY3Qjk3MDc4NzQxMDk1N0UyNUQ5Rjg3NTA4NTYw RjAwNTc3NkUwHhcNMjQxMTIyMjI1ODEzWhcNMjQxMTI5MjI1ODEzWjAYMRYwFAYD VQQDEw02NzQxMGM4Ni1jNWRhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwLE37s2YgFfCgVHdMX4ZfPvB2zVhsUAZ3qJTcAjUeOTds9ZwAFTkiBX3aCjI 8mHEudfOdnAsOlsitOE3bKgCHGhGfqKXl6/yr9lU4P27AZs3BzbcF5FjU7iOKgHE c+yvwcQS1RETs9hOhqXo/Y+Pw2YFYvDuR77Ro173xLVHScD5uEUk4iytH2i3t/+g JdmH1S2PwYpW1kT8yF3hOoyNHFt++AQICygT+SmnvH5jcCAAEsjzRQjy+gl3HwHb Os5DEnZ3SQxLIOEmy0HEWwIOAf0onMJQvekOiA4L5lM0jjawKUbBTs4w+HTPCXQt IEQxl8BJ1kwo5KVScLpeMSoS6QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEP3K0Hb LAjcNl+lo2SoXZsBHciPMB8GA1UdIwQYMBaAFNUWe5cHh0EJV+Jdn4dQhWDwBXdu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCOTAxMS8zODg4RTBDNEM3 M0ExMUVCOTAwNzU1MTBDNEY5QUUwMi8xUlo3bHdlSFFRbFg0bDJmaDFDRllQQUZk MjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFSWjdsd2VIUVFsWDRsMmZoMUNGWVBBRmQyNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC OTAxMS8zODg4RTBDNEM3M0ExMUVCOTAwNzU1MTBDNEY5QUUwMi8xUlo3bHdlSFFR bFg0bDJmaDFDRllQQUZkMjQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBj+ymw0QPju1aZli1r2QnTmkL/Cn+aweteX7M6p/txKvjqdp6UskQZ brp7rz9j9hVCPbIAJmDE4yXeT4gJeSSMdiWIfYsjZ/3tJcGd26/VfFi7k/9Su3eb jETHUlf6XMVvip9syv+0MofKdcAiEmn5YSeFZWJMqMv9SNSgNVIHU2tVCNo/Ox6Y kUJje9meQlSdbUq3ppmh+kZZPDykZmbURM+MEbtr+7Z2fTZRW2M6Vdl+obsT8ZHi LUjNibFU7AMEjCJj6Q10c+2N0hQbhxs4K312jDeucYMw9E5A6nndIhK1JQFYsAsf UXjB+UWwJlp11yufuwu+RyuIusopmyvj -----END CERTIFICATE-----Generated at Sat Nov 23 00:08:49 2024 by rpki-client on console-ams.rpki-client.org