$ rpki-client -vvf rpki.apnic.net/member_repository/A91BC966/A1952BA21C1111EAB6C3C76DC4F9AE02/sqJd3hqeyRtZmGpTL3iDVDYYMkg.mft File: sqJd3hqeyRtZmGpTL3iDVDYYMkg.mft (raw, json) Hash identifier: SjvdVL226PrLmbMkM8e66LzVg8vYcQCGZ0r/FBAk9Xg= Subject key identifier: A2:F9:F0:F9:B0:F7:75:E2:48:2A:B3:F5:84:45:F9:22:47:3F:A4:1B Authority key identifier: B2:A2:5D:DE:1A:9E:C9:1B:59:98:6A:53:2F:78:83:54:36:18:32:48 Certificate issuer: /CN=A91BC966/serialNumber=B2A25DDE1A9EC91B59986A532F78835436183248 Certificate serial: 0BB4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sqJd3hqeyRtZmGpTL3iDVDYYMkg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BC966/A1952BA21C1111EAB6C3C76DC4F9AE02/sqJd3hqeyRtZmGpTL3iDVDYYMkg.mft Manifest number: 0B8E Signing time: Fri 22 Nov 2024 18:50:09 +0000 Manifest this update: Fri 22 Nov 2024 18:50:09 +0000 Manifest next update: Fri 29 Nov 2024 18:50:09 +0000 Files and hashes: 1: sqJd3hqeyRtZmGpTL3iDVDYYMkg.crl (hash: e4kd6kGoRZiXOny/0AZ8jVgo1BuTjPehe2G1DyNKsnc=) 2: A6A53FA2D67E11EEAA2CA218C4F9AE02.roa (hash: FvGgX1gCx1cBSjoXto+3irDwcPXWVzclj/ITlffBz0s=) 3: 5DA849821C1211EA819EA46EC4F9AE02.roa (hash: Df93j4Weq1kxcdV8kr7v+ET5zpZ4VWBdiPOhaQQF/zs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BC966/A1952BA21C1111EAB6C3C76DC4F9AE02/sqJd3hqeyRtZmGpTL3iDVDYYMkg.crl rsync://rpki.apnic.net/member_repository/A91BC966/A1952BA21C1111EAB6C3C76DC4F9AE02/sqJd3hqeyRtZmGpTL3iDVDYYMkg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sqJd3hqeyRtZmGpTL3iDVDYYMkg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 18:35:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2996 (0xbb4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BC966/serialNumber=B2A25DDE1A9EC91B59986A532F78835436183248 Validity Not Before: Nov 22 18:50:09 2024 GMT Not After : Nov 29 18:50:09 2024 GMT Subject: CN=6740d261-f922 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:a8:59:66:29:c5:45:e9:48:13:54:1a:21:5f: ce:a1:dd:66:1d:21:4d:74:50:cd:5a:4e:cb:52:62: d4:5f:2f:58:31:e0:53:86:fe:c7:95:e1:92:07:df: 60:9f:86:2e:39:87:85:61:5c:13:f2:3d:56:9b:da: 2c:51:0c:f7:40:2f:2a:5a:bc:c6:55:6e:25:f4:af: 97:a9:c0:85:db:f3:2e:c5:ca:ee:76:d4:14:05:75: be:ab:23:ea:90:18:d5:b1:c7:c6:cd:79:29:ab:47: 4b:31:b0:4e:3b:bd:06:b2:e6:d2:18:7d:e2:e6:cf: 93:7c:12:7c:01:b2:a5:e0:39:d3:8d:bb:3b:d0:18: b3:4d:5f:01:99:24:3b:9f:5a:0a:03:2f:fe:86:d2: 01:3e:ae:3a:d6:7a:aa:7b:a1:94:50:6c:a7:af:7b: dd:53:b5:53:e8:81:bf:18:82:44:df:eb:a7:b6:9f: 98:f4:21:fa:dc:97:6e:4a:1b:98:4b:26:bd:bf:b7: c7:94:76:07:82:54:47:9e:f1:77:b5:61:e7:eb:ce: a1:c8:6f:b8:e1:dd:99:75:3b:c4:6e:24:d6:aa:59: 89:ea:8f:94:10:23:ac:0f:9d:1d:97:82:91:da:63: b9:63:67:19:bb:f0:85:0a:19:d7:63:e5:d3:f5:1a: 64:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:F9:F0:F9:B0:F7:75:E2:48:2A:B3:F5:84:45:F9:22:47:3F:A4:1B X509v3 Authority Key Identifier: keyid:B2:A2:5D:DE:1A:9E:C9:1B:59:98:6A:53:2F:78:83:54:36:18:32:48 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BC966/A1952BA21C1111EAB6C3C76DC4F9AE02/sqJd3hqeyRtZmGpTL3iDVDYYMkg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sqJd3hqeyRtZmGpTL3iDVDYYMkg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BC966/A1952BA21C1111EAB6C3C76DC4F9AE02/sqJd3hqeyRtZmGpTL3iDVDYYMkg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 62:1c:63:44:31:7b:9c:b4:69:3a:92:dc:3e:82:60:f2:e4:f5: 9e:9e:2d:6d:ae:e9:9c:0e:e7:71:ca:97:b1:b8:69:3c:58:2e: 0d:bc:b2:b3:0c:e4:c2:e2:32:b8:44:c2:ab:f9:52:ef:8f:19: be:ff:f0:1b:ce:5f:8e:b8:f7:49:2e:be:f5:5b:e3:36:cf:ff: 34:13:2e:50:e4:dc:91:77:f4:8d:f0:b8:24:67:92:63:fb:21: 91:1c:22:98:25:45:ba:e3:cd:bb:58:4a:22:37:fc:62:39:3b: 6b:ac:3e:5c:6e:75:77:54:26:c4:35:37:99:99:95:b4:52:19: 1e:2a:53:d9:63:2b:ab:be:a6:3b:23:65:6f:40:99:e2:dd:05: dc:31:6c:0b:13:53:ed:25:10:65:d2:f2:47:59:88:3d:0d:8b: 27:e1:38:68:b6:9e:ab:f9:27:be:29:e2:8c:9f:a6:f4:1a:d0: ae:ea:70:84:bb:9c:8a:4b:be:e7:03:81:b0:8a:75:81:6b:cb: b7:40:5e:1d:8a:c2:a3:f3:e6:a7:35:76:e0:b5:cb:8c:b6:46: 99:21:49:96:64:37:92:d7:bf:4f:58:e8:80:60:34:8f:ff:7e: fa:cd:0d:9e:11:00:ea:e4:04:08:d3:65:f6:70:3b:51:cb:77: f3:9a:55:e9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC7QwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkM5NjYxMTAvBgNVBAUTKEIyQTI1RERFMUE5RUM5MUI1OTk4NkE1MzJGNzg4MzU0 MzYxODMyNDgwHhcNMjQxMTIyMTg1MDA5WhcNMjQxMTI5MTg1MDA5WjAYMRYwFAYD VQQDEw02NzQwZDI2MS1mOTIyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAp6hZZinFRelIE1QaIV/Ood1mHSFNdFDNWk7LUmLUXy9YMeBThv7HleGSB99g n4YuOYeFYVwT8j1Wm9osUQz3QC8qWrzGVW4l9K+XqcCF2/MuxcrudtQUBXW+qyPq kBjVscfGzXkpq0dLMbBOO70GsubSGH3i5s+TfBJ8AbKl4DnTjbs70BizTV8BmSQ7 n1oKAy/+htIBPq461nqqe6GUUGynr3vdU7VT6IG/GIJE3+untp+Y9CH63JduShuY Sya9v7fHlHYHglRHnvF3tWHn686hyG+44d2ZdTvEbiTWqlmJ6o+UECOsD50dl4KR 2mO5Y2cZu/CFChnXY+XT9RpkXQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKL58Pmw 93XiSCqz9YRF+SJHP6QbMB8GA1UdIwQYMBaAFLKiXd4anskbWZhqUy94g1Q2GDJI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQzk2Ni9BMTk1MkJBMjFD MTExMUVBQjZDM0M3NkRDNEY5QUUwMi9zcUpkM2hxZXlSdFptR3BUTDNpRFZEWVlN a2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3NxSmQzaHFleVJ0Wm1HcFRMM2lEVkRZWU1rZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC Qzk2Ni9BMTk1MkJBMjFDMTExMUVBQjZDM0M3NkRDNEY5QUUwMi9zcUpkM2hxZXlS dFptR3BUTDNpRFZEWVlNa2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBiHGNEMXuctGk6ktw+gmDy5PWeni1trumcDudxypexuGk8WC4NvLKz DOTC4jK4RMKr+VLvjxm+//Abzl+OuPdJLr71W+M2z/80Ey5Q5NyRd/SN8LgkZ5Jj +yGRHCKYJUW64827WEoiN/xiOTtrrD5cbnV3VCbENTeZmZW0UhkeKlPZYyurvqY7 I2VvQJni3QXcMWwLE1PtJRBl0vJHWYg9DYsn4Thotp6r+Se+KeKMn6b0GtCu6nCE u5yKS77nA4GwinWBa8u3QF4disKj8+anNXbgtcuMtkaZIUmWZDeS179PWOiAYDSP /376zQ2eEQDq5AQI02X2cDtRy3fzmlXp -----END CERTIFICATE-----Generated at Fri Nov 22 19:50:16 2024 by rpki-client on console-ams.rpki-client.org