$ rpki-client -vvf rpki.apnic.net/member_repository/A91BB1F3/4297D05245AE11EFB6237870C4F9AE02/dQ-le1kVZTnLFuVKYKbO21sQ654.mft File: dQ-le1kVZTnLFuVKYKbO21sQ654.mft (raw, json) Hash identifier: eHRVXBounN2zTs5YE2AmEHrYG1s/VbUFNYxf6XYV+GM= Subject key identifier: 94:AD:B6:56:50:9B:BA:1E:0B:5D:28:E6:D8:5D:A0:7F:01:21:55:D5 Authority key identifier: 75:0F:A5:7B:59:15:65:39:CB:16:E5:4A:60:A6:CE:DB:5B:10:EB:9E Certificate issuer: /CN=A91BB1F3/serialNumber=750FA57B59156539CB16E54A60A6CEDB5B10EB9E Certificate serial: 43 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dQ-le1kVZTnLFuVKYKbO21sQ654.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BB1F3/4297D05245AE11EFB6237870C4F9AE02/dQ-le1kVZTnLFuVKYKbO21sQ654.mft Manifest number: 42 Signing time: Sat 23 Nov 2024 05:21:36 +0000 Manifest this update: Sat 23 Nov 2024 05:21:35 +0000 Manifest next update: Sat 30 Nov 2024 05:21:35 +0000 Files and hashes: 1: dQ-le1kVZTnLFuVKYKbO21sQ654.crl (hash: U+rxywN6eEfRh9x1Z1ZcGux9YW0Rfuyq8A8bddXUG14=) 2: F9E4E14645AE11EF8870C771C4F9AE02.roa (hash: vqfBcf5vpMBkoptdR186vKEyoOUdk3eFKxuU70CJf2Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BB1F3/4297D05245AE11EFB6237870C4F9AE02/dQ-le1kVZTnLFuVKYKbO21sQ654.crl rsync://rpki.apnic.net/member_repository/A91BB1F3/4297D05245AE11EFB6237870C4F9AE02/dQ-le1kVZTnLFuVKYKbO21sQ654.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dQ-le1kVZTnLFuVKYKbO21sQ654.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 67 (0x43) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BB1F3/serialNumber=750FA57B59156539CB16E54A60A6CEDB5B10EB9E Validity Not Before: Nov 23 05:21:35 2024 GMT Not After : Nov 30 05:21:35 2024 GMT Subject: CN=67416660-bc44 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:c6:64:06:dc:ff:2d:70:23:7b:ee:b7:e8:02: ef:41:6e:ef:2b:a9:a2:ee:fc:ed:2a:67:12:1f:b1: 6f:8a:81:36:b7:6a:43:36:2d:8b:05:2b:95:41:d6: 6c:1d:ae:ae:2c:a1:84:2e:df:9a:a1:25:1b:7a:6d: 0a:0e:7c:a0:e7:b6:41:02:b0:fe:e7:f9:a1:ef:76: b4:b1:14:4a:86:d9:8d:6b:a1:74:60:29:96:1f:66: 61:f3:da:c3:ae:77:ae:a2:61:99:e0:8f:91:19:6d: c9:e5:f7:87:45:06:ed:61:b7:14:63:2b:8e:92:f0: 5e:8b:97:b1:19:e5:22:fb:e3:f3:2f:24:b6:62:af: aa:24:05:6b:48:e9:9d:ef:4a:f7:c8:a3:71:24:7c: 87:57:1a:e3:f6:63:ae:b8:1c:7f:54:a4:fc:e1:71: fc:73:10:93:e3:8b:66:76:d4:ed:ab:f9:8c:18:8a: fe:63:2d:26:72:d5:38:84:ea:99:41:90:c2:c3:b9: f9:c3:2d:9e:6a:0b:58:53:db:7e:e8:b1:fa:3f:50: 12:f6:c0:b6:61:82:f9:19:81:38:0b:a3:46:90:34: 47:72:05:04:24:c5:19:e2:22:0a:67:21:a1:d4:e0: 89:b7:51:25:82:84:4e:2f:aa:23:98:13:67:5b:fb: c6:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:AD:B6:56:50:9B:BA:1E:0B:5D:28:E6:D8:5D:A0:7F:01:21:55:D5 X509v3 Authority Key Identifier: keyid:75:0F:A5:7B:59:15:65:39:CB:16:E5:4A:60:A6:CE:DB:5B:10:EB:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BB1F3/4297D05245AE11EFB6237870C4F9AE02/dQ-le1kVZTnLFuVKYKbO21sQ654.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dQ-le1kVZTnLFuVKYKbO21sQ654.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BB1F3/4297D05245AE11EFB6237870C4F9AE02/dQ-le1kVZTnLFuVKYKbO21sQ654.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ab:85:8d:f7:e5:52:e9:26:cd:37:3b:e0:60:83:42:b2:bd:b6: 4e:ac:1f:85:64:a6:52:81:0f:f1:cb:f0:1e:c2:6f:ac:15:0a: 1c:f3:43:b2:9d:ae:4f:9b:d4:22:1b:aa:c5:52:20:72:6b:82: 2f:4f:85:1e:64:0b:d9:79:3f:b7:cb:03:fc:12:cb:61:f5:3a: fa:2e:ce:19:0b:7a:d0:2c:19:65:c8:77:2f:43:2d:09:4d:b1: ee:f8:69:21:52:58:31:95:d6:2a:b7:36:f8:73:e5:10:87:73: 97:3f:41:0a:cf:7e:4b:ca:6e:12:fd:0c:0f:ed:09:0e:5e:43: 2e:26:90:cb:67:ed:28:e7:55:22:b4:19:a2:ec:a0:05:9a:62: cd:d4:1a:b1:50:be:d2:ae:52:f2:9c:98:45:df:a3:f4:65:89: 99:30:24:a1:7b:95:fc:22:21:b1:2e:8e:bf:cf:5a:a4:d6:2a: 55:7b:97:a9:fb:35:fa:39:26:0e:67:a4:32:bf:1d:0c:2d:72: 45:0c:d7:93:d5:66:48:ac:4c:dd:22:88:77:cf:d5:ed:d0:34: 44:b7:40:5c:25:b6:4a:d8:8c:7e:5e:61:e3:4c:36:90:90:1c: 7a:e2:d7:96:af:82:16:d9:6b:ae:d8:bc:90:c9:ee:e3:85:21: 42:67:bd:db -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBQzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC QjFGMzExMC8GA1UEBRMoNzUwRkE1N0I1OTE1NjUzOUNCMTZFNTRBNjBBNkNFREI1 QjEwRUI5RTAeFw0yNDExMjMwNTIxMzVaFw0yNDExMzAwNTIxMzVaMBgxFjAUBgNV BAMTDTY3NDE2NjYwLWJjNDQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC0xmQG3P8tcCN77rfoAu9Bbu8rqaLu/O0qZxIfsW+KgTa3akM2LYsFK5VB1mwd rq4soYQu35qhJRt6bQoOfKDntkECsP7n+aHvdrSxFEqG2Y1roXRgKZYfZmHz2sOu d66iYZngj5EZbcnl94dFBu1htxRjK46S8F6Ll7EZ5SL74/MvJLZir6okBWtI6Z3v SvfIo3EkfIdXGuP2Y664HH9UpPzhcfxzEJPji2Z21O2r+YwYiv5jLSZy1TiE6plB kMLDufnDLZ5qC1hT237osfo/UBL2wLZhgvkZgTgLo0aQNEdyBQQkxRniIgpnIaHU 4Im3USWChE4vqiOYE2db+8arAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUlK22VlCb uh4LXSjm2F2gfwEhVdUwHwYDVR0jBBgwFoAUdQ+le1kVZTnLFuVKYKbO21sQ654w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUJCMUYzLzQyOTdEMDUyNDVB RTExRUZCNjIzNzg3MEM0RjlBRTAyL2RRLWxlMWtWWlRuTEZ1VktZS2JPMjFzUTY1 NC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvZFEtbGUxa1ZaVG5MRnVWS1lLYk8yMXNRNjU0LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUJC MUYzLzQyOTdEMDUyNDVBRTExRUZCNjIzNzg3MEM0RjlBRTAyL2RRLWxlMWtWWlRu TEZ1VktZS2JPMjFzUTY1NC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAKuFjfflUukmzTc74GCDQrK9tk6sH4VkplKBD/HL8B7Cb6wVChzzQ7Kd rk+b1CIbqsVSIHJrgi9PhR5kC9l5P7fLA/wSy2H1OvouzhkLetAsGWXIdy9DLQlN se74aSFSWDGV1iq3Nvhz5RCHc5c/QQrPfkvKbhL9DA/tCQ5eQy4mkMtn7SjnVSK0 GaLsoAWaYs3UGrFQvtKuUvKcmEXfo/RliZkwJKF7lfwiIbEujr/PWqTWKlV7l6n7 Nfo5Jg5npDK/HQwtckUM15PVZkisTN0iiHfP1e3QNES3QFwltkrYjH5eYeNMNpCQ HHri15avghbZa67YvJDJ7uOFIUJnvds= -----END CERTIFICATE-----Generated at Sat Nov 23 06:13:21 2024 by rpki-client on console-ams.rpki-client.org