$ rpki-client -vvf rpki.apnic.net/member_repository/A91BA941/9B3D2548A0A011EF9052325FC4F9AE02/cxfXd72qYzPNlqgQS5TeD6R1IRM.mft File: cxfXd72qYzPNlqgQS5TeD6R1IRM.mft (raw, json) Hash identifier: g2AUkFuK4Lq4Zpv1rrnIG9WZbVL84z10PKxg0l4mVk4= Subject key identifier: 3F:A9:2D:0B:F1:4D:4A:A0:34:52:7F:FA:A4:64:1C:57:BC:09:89:52 Authority key identifier: 73:17:D7:77:BD:AA:63:33:CD:96:A8:10:4B:94:DE:0F:A4:75:21:13 Certificate issuer: /CN=A91BA941/serialNumber=7317D777BDAA6333CD96A8104B94DE0FA4752113 Certificate serial: 08 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cxfXd72qYzPNlqgQS5TeD6R1IRM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BA941/9B3D2548A0A011EF9052325FC4F9AE02/cxfXd72qYzPNlqgQS5TeD6R1IRM.mft Manifest number: 07 Signing time: Thu 21 Nov 2024 06:14:03 +0000 Manifest this update: Thu 21 Nov 2024 06:14:03 +0000 Manifest next update: Thu 28 Nov 2024 06:14:03 +0000 Files and hashes: 1: cxfXd72qYzPNlqgQS5TeD6R1IRM.crl (hash: NYwb6rO8RQx+ibCGxWAk+L/AJ8ve81weEJvbveoltiU=) 2: 48A5FCA4A0A211EF81FA6876C4F9AE02.roa (hash: qoLr9a7iksL0671YOYMx4/5JujCNxl4357DegF9sWEQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BA941/9B3D2548A0A011EF9052325FC4F9AE02/cxfXd72qYzPNlqgQS5TeD6R1IRM.crl rsync://rpki.apnic.net/member_repository/A91BA941/9B3D2548A0A011EF9052325FC4F9AE02/cxfXd72qYzPNlqgQS5TeD6R1IRM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cxfXd72qYzPNlqgQS5TeD6R1IRM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 05:18:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8 (0x8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BA941/serialNumber=7317D777BDAA6333CD96A8104B94DE0FA4752113 Validity Not Before: Nov 21 06:14:03 2024 GMT Not After : Nov 28 06:14:03 2024 GMT Subject: CN=673ecfab-58ca Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:20:fe:fc:16:f8:6c:5f:28:05:d5:e3:22:08: f6:e4:41:a7:cc:d8:31:1c:c8:18:9a:ca:68:2a:58: db:cc:06:5f:83:79:e2:87:69:7d:66:ea:69:d4:14: 12:32:6e:31:06:ef:97:2d:fd:a6:7a:ad:6f:04:a0: 26:71:20:ac:0e:98:c9:0a:9e:0a:50:90:74:97:7a: b9:df:d7:3a:6c:0f:d3:dc:f6:3a:9b:89:cb:1e:ea: cf:ce:dc:97:07:07:3c:b5:84:db:82:db:56:03:71: b3:c5:5b:cd:c2:2b:2d:3a:51:98:52:57:ff:6e:00: fe:f1:80:c6:cb:b4:d3:a8:99:64:18:66:3e:50:44: 72:34:f9:16:2b:b6:ac:19:2e:7e:ce:db:25:27:db: 5c:25:bf:4e:da:e2:e8:58:4f:88:cf:5b:5c:4d:75: f6:21:03:9b:71:00:13:40:24:a8:a1:7d:e4:8b:91: 15:c1:7b:11:5f:f7:42:16:af:d3:88:65:9d:45:a2: 9b:d3:0e:2c:e0:c3:3f:6b:c4:6a:b6:29:a3:f1:99: 50:19:38:66:72:62:e4:38:36:c4:15:5f:f8:51:b6: d7:b0:cd:6b:9d:bb:76:a7:6b:c6:3d:c3:9c:4c:ba: c7:42:33:77:33:b2:22:f1:59:a4:9d:3b:3e:2b:6d: a6:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:A9:2D:0B:F1:4D:4A:A0:34:52:7F:FA:A4:64:1C:57:BC:09:89:52 X509v3 Authority Key Identifier: keyid:73:17:D7:77:BD:AA:63:33:CD:96:A8:10:4B:94:DE:0F:A4:75:21:13 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BA941/9B3D2548A0A011EF9052325FC4F9AE02/cxfXd72qYzPNlqgQS5TeD6R1IRM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cxfXd72qYzPNlqgQS5TeD6R1IRM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BA941/9B3D2548A0A011EF9052325FC4F9AE02/cxfXd72qYzPNlqgQS5TeD6R1IRM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 23:9f:78:d6:39:c7:d3:c7:d7:a4:d8:09:72:4c:1c:14:de:79: 98:c5:3c:b7:ca:f2:8a:d9:bd:48:45:df:32:03:8b:63:0c:32: 19:5b:8f:39:88:08:69:57:8f:70:f6:58:2b:b4:52:25:5f:b1: e5:61:7a:97:d2:3e:de:f1:02:6d:32:f8:50:a7:03:8c:6d:aa: fe:65:d3:fc:bc:e1:39:60:e8:31:ed:27:b9:f2:a5:ee:60:4f: 23:df:a6:c1:7a:4f:eb:75:30:6d:e1:0a:b0:bd:1a:fa:bc:f8: 14:7c:80:4b:77:ee:25:1b:f3:08:9f:42:29:91:19:6b:dd:14: 61:24:76:5a:9b:82:cf:25:72:14:da:72:42:b4:f2:a2:97:e3: c8:55:24:0e:e6:07:37:87:62:9c:1f:96:15:da:59:79:24:1b: 91:85:4b:4a:d0:f1:bc:cc:f1:e2:a0:c1:8a:40:c5:d5:2d:e5: 4c:08:ce:31:6f:23:c5:ee:22:40:75:4f:9b:eb:e1:da:46:8b: a9:3c:1c:1e:c8:6d:f6:f2:4a:85:e0:0f:97:80:0e:eb:81:85: 6c:c2:25:07:46:b9:52:15:f4:59:cf:e2:9b:7b:f6:6c:a9:f5: 0f:43:11:15:f8:8f:29:92:2a:14:22:87:82:0e:4f:6e:b7:73: 9d:b2:a2:8a -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBCDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC QTk0MTExMC8GA1UEBRMoNzMxN0Q3NzdCREFBNjMzM0NEOTZBODEwNEI5NERFMEZB NDc1MjExMzAeFw0yNDExMjEwNjE0MDNaFw0yNDExMjgwNjE0MDNaMBgxFjAUBgNV BAMTDTY3M2VjZmFiLTU4Y2EwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCxIP78FvhsXygF1eMiCPbkQafM2DEcyBiaymgqWNvMBl+DeeKHaX1m6mnUFBIy bjEG75ct/aZ6rW8EoCZxIKwOmMkKngpQkHSXernf1zpsD9Pc9jqbicse6s/O3JcH Bzy1hNuC21YDcbPFW83CKy06UZhSV/9uAP7xgMbLtNOomWQYZj5QRHI0+RYrtqwZ Ln7O2yUn21wlv07a4uhYT4jPW1xNdfYhA5txABNAJKihfeSLkRXBexFf90IWr9OI ZZ1FopvTDizgwz9rxGq2KaPxmVAZOGZyYuQ4NsQVX/hRttewzWudu3ana8Y9w5xM usdCM3czsiLxWaSdOz4rbaaZAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUP6ktC/FN SqA0Un/6pGQcV7wJiVIwHwYDVR0jBBgwFoAUcxfXd72qYzPNlqgQS5TeD6R1IRMw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUJBOTQxLzlCM0QyNTQ4QTBB MDExRUY5MDUyMzI1RkM0RjlBRTAyL2N4ZlhkNzJxWXpQTmxxZ1FTNVRlRDZSMUlS TS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvY3hmWGQ3MnFZelBObHFnUVM1VGVENlIxSVJNLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUJB OTQxLzlCM0QyNTQ4QTBBMDExRUY5MDUyMzI1RkM0RjlBRTAyL2N4ZlhkNzJxWXpQ TmxxZ1FTNVRlRDZSMUlSTS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBACOfeNY5x9PH16TYCXJMHBTeeZjFPLfK8orZvUhF3zIDi2MMMhlbjzmI CGlXj3D2WCu0UiVfseVhepfSPt7xAm0y+FCnA4xtqv5l0/y84Tlg6DHtJ7nype5g TyPfpsF6T+t1MG3hCrC9Gvq8+BR8gEt37iUb8wifQimRGWvdFGEkdlqbgs8lchTa ckK08qKX48hVJA7mBzeHYpwflhXaWXkkG5GFS0rQ8bzM8eKgwYpAxdUt5UwIzjFv I8XuIkB1T5vr4dpGi6k8HB7IbfbySoXgD5eADuuBhWzCJQdGuVIV9FnP4pt79myp 9Q9DERX4jymSKhQih4IOT263c52yooo= -----END CERTIFICATE-----Generated at Thu Nov 21 07:40:38 2024 by rpki-client on console-ams.rpki-client.org