$ rpki-client -vvf rpki.apnic.net/member_repository/A91C064C/683C9D98672D11EE9C809F12C4F9AE02/r8MXR2fk6vxN7g9JJaHGXNxZ-io.mft File: r8MXR2fk6vxN7g9JJaHGXNxZ-io.mft (raw, json) Hash identifier: D1wu+G3d6F/MePQ+1hAduT0D9gvHZWHrMfvT/TE841Y= Subject key identifier: 59:9F:F8:4F:9E:B1:93:55:30:41:43:A5:39:CC:08:7A:7E:D0:7F:0A Authority key identifier: AF:C3:17:47:67:E4:EA:FC:4D:EE:0F:49:25:A1:C6:5C:DC:59:FA:2A Certificate issuer: /CN=A91C064C/serialNumber=AFC3174767E4EAFC4DEE0F4925A1C65CDC59FA2A Certificate serial: D9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r8MXR2fk6vxN7g9JJaHGXNxZ-io.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C064C/683C9D98672D11EE9C809F12C4F9AE02/r8MXR2fk6vxN7g9JJaHGXNxZ-io.mft Manifest number: D5 Signing time: Sat 23 Nov 2024 03:44:48 +0000 Manifest this update: Sat 23 Nov 2024 03:44:48 +0000 Manifest next update: Sat 30 Nov 2024 03:44:48 +0000 Files and hashes: 1: r8MXR2fk6vxN7g9JJaHGXNxZ-io.crl (hash: QTOIpGx7ntrRjgLr+ymQBhcT20+y1rsZLJFpKwEJLzI=) 2: 583FA34E672E11EEB31AC02CC4F9AE02.roa (hash: UDY5XZZpboPOe4PuKIjoZcv8Z+maPhsL8V3N8OWNJu4=) 3: 810B798472CC11EEA1A5574DC4F9AE02.roa (hash: QxDb9utS5i/B8urK72tRRFJFcT0cVUwBUSamNqzNfT0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C064C/683C9D98672D11EE9C809F12C4F9AE02/r8MXR2fk6vxN7g9JJaHGXNxZ-io.crl rsync://rpki.apnic.net/member_repository/A91C064C/683C9D98672D11EE9C809F12C4F9AE02/r8MXR2fk6vxN7g9JJaHGXNxZ-io.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r8MXR2fk6vxN7g9JJaHGXNxZ-io.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 217 (0xd9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C064C/serialNumber=AFC3174767E4EAFC4DEE0F4925A1C65CDC59FA2A Validity Not Before: Nov 23 03:44:48 2024 GMT Not After : Nov 30 03:44:48 2024 GMT Subject: CN=67414fb0-33df Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:53:12:8f:cd:6c:76:92:09:15:1f:42:f1:8e: c9:86:ee:53:21:3d:7a:f8:11:54:59:2a:42:39:c2: 46:47:28:68:56:74:80:bc:3d:d6:aa:75:86:94:61: 89:96:6f:2b:98:a3:3d:99:4e:eb:e1:6c:81:cb:29: bc:8f:1c:92:d6:87:5c:d3:26:4b:59:0d:a7:b3:78: f3:da:bb:41:c4:5b:78:f2:02:6e:5d:12:e6:4d:1b: de:c5:7f:d1:c2:eb:91:34:7f:52:e1:1d:66:83:fb: 7c:32:86:dc:60:ac:f5:5b:50:38:fe:15:63:7a:49: 0a:b2:1c:08:4a:89:30:ba:91:4b:3e:79:b6:3d:49: 11:5e:89:ac:4d:54:98:aa:5c:a6:26:cb:0f:26:ed: 9c:b2:91:48:0a:33:32:e0:82:d6:46:17:78:fb:53: 78:d9:0e:0f:c0:a0:64:21:b3:47:7f:d2:fa:ec:ed: 3a:64:de:8e:2c:dc:32:88:17:53:6a:ad:b8:ce:55: 5b:e7:ec:8b:1d:64:eb:07:90:6f:19:ba:33:75:a9: 37:4e:86:05:b9:9e:98:34:c6:f3:90:bd:23:34:cd: 71:bd:f1:8d:ee:d7:21:34:46:0c:2f:a3:20:ed:b7: 92:18:16:be:5d:31:63:c2:36:6b:65:7e:1a:e9:cd: d9:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:9F:F8:4F:9E:B1:93:55:30:41:43:A5:39:CC:08:7A:7E:D0:7F:0A X509v3 Authority Key Identifier: keyid:AF:C3:17:47:67:E4:EA:FC:4D:EE:0F:49:25:A1:C6:5C:DC:59:FA:2A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C064C/683C9D98672D11EE9C809F12C4F9AE02/r8MXR2fk6vxN7g9JJaHGXNxZ-io.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r8MXR2fk6vxN7g9JJaHGXNxZ-io.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C064C/683C9D98672D11EE9C809F12C4F9AE02/r8MXR2fk6vxN7g9JJaHGXNxZ-io.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1a:c5:b3:2f:f5:90:53:bf:73:88:50:a8:9d:4b:b3:0a:12:0e: df:b7:6d:84:41:cc:3d:e2:49:97:6f:f0:bd:10:42:b4:ef:e8: 48:fb:42:e5:21:66:0e:f1:20:3a:13:9a:e4:1b:b1:5c:b4:23: 70:2a:68:1c:77:a3:5f:28:b8:3a:00:b5:af:34:38:48:0b:f9: 60:de:41:af:41:f3:61:b5:b3:0a:1a:f5:ae:4e:b0:57:29:a7: d2:8b:b4:21:18:9b:c9:c5:b5:20:a0:5b:e6:33:1f:0d:60:37: 4c:ca:c1:74:a1:7c:50:c5:df:78:2b:ee:cc:d4:e3:df:9a:04: 71:70:69:7a:04:00:bd:13:fe:3a:fa:db:d8:3b:e7:8a:37:95: 3b:f1:c9:2f:6b:96:f8:a6:be:9f:48:1f:e1:af:8e:e0:b4:2b: 7f:34:50:2f:09:06:3b:bd:21:43:7f:02:1a:a8:ea:cf:2c:21: 85:6e:2b:39:81:7a:a2:97:9b:90:de:b2:e5:b2:0d:07:46:53: 0e:88:91:f0:74:21:21:13:4b:9a:47:e9:57:c3:47:1a:b6:ee: aa:2d:05:89:df:0e:55:f6:b9:13:ef:e6:16:49:43:f8:e9:41: cc:58:29:78:a2:54:43:11:8a:69:bb:7f:98:3f:1d:17:03:80: af:d5:1a:9f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICANkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzA2NEMxMTAvBgNVBAUTKEFGQzMxNzQ3NjdFNEVBRkM0REVFMEY0OTI1QTFDNjVD REM1OUZBMkEwHhcNMjQxMTIzMDM0NDQ4WhcNMjQxMTMwMDM0NDQ4WjAYMRYwFAYD VQQDEw02NzQxNGZiMC0zM2RmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA31MSj81sdpIJFR9C8Y7Jhu5TIT16+BFUWSpCOcJGRyhoVnSAvD3WqnWGlGGJ lm8rmKM9mU7r4WyByym8jxyS1odc0yZLWQ2ns3jz2rtBxFt48gJuXRLmTRvexX/R wuuRNH9S4R1mg/t8MobcYKz1W1A4/hVjekkKshwISokwupFLPnm2PUkRXomsTVSY qlymJssPJu2cspFICjMy4ILWRhd4+1N42Q4PwKBkIbNHf9L67O06ZN6OLNwyiBdT aq24zlVb5+yLHWTrB5BvGbozdak3ToYFuZ6YNMbzkL0jNM1xvfGN7tchNEYML6Mg 7beSGBa+XTFjwjZrZX4a6c3ZSwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFmf+E+e sZNVMEFDpTnMCHp+0H8KMB8GA1UdIwQYMBaAFK/DF0dn5Or8Te4PSSWhxlzcWfoq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMDY0Qy82ODNDOUQ5ODY3 MkQxMUVFOUM4MDlGMTJDNEY5QUUwMi9yOE1YUjJmazZ2eE43ZzlKSmFIR1hOeFot aW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3I4TVhSMmZrNnZ4TjdnOUpKYUhHWE54Wi1pby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MDY0Qy82ODNDOUQ5ODY3MkQxMUVFOUM4MDlGMTJDNEY5QUUwMi9yOE1YUjJmazZ2 eE43ZzlKSmFIR1hOeFotaW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAaxbMv9ZBTv3OIUKidS7MKEg7ft22EQcw94kmXb/C9EEK07+hI+0Ll IWYO8SA6E5rkG7FctCNwKmgcd6NfKLg6ALWvNDhIC/lg3kGvQfNhtbMKGvWuTrBX KafSi7QhGJvJxbUgoFvmMx8NYDdMysF0oXxQxd94K+7M1OPfmgRxcGl6BAC9E/46 +tvYO+eKN5U78ckva5b4pr6fSB/hr47gtCt/NFAvCQY7vSFDfwIaqOrPLCGFbis5 gXqil5uQ3rLlsg0HRlMOiJHwdCEhE0uaR+lXw0catu6qLQWJ3w5V9rkT7+YWSUP4 6UHMWCl4olRDEYppu3+YPx0XA4Cv1Rqf -----END CERTIFICATE-----Generated at Sat Nov 23 06:13:22 2024 by rpki-client on console-ams.rpki-client.org