$ rpki-client -vvf rpki.apnic.net/member_repository/A91C0E5D/0D0FFBDC91D711EB86FA3426C4F9AE02/Ar6z5iH6umNCHtP4hPonC80zHXc.mft File: Ar6z5iH6umNCHtP4hPonC80zHXc.mft (raw, json) Hash identifier: 6+BnjwLWDVELKfmal8b1MKgWLMwCEFOA9uhzjgu3F8w= Subject key identifier: E5:E9:4D:09:C0:6A:FC:50:C8:34:7D:1E:2F:0C:45:4F:64:F4:6E:2C Authority key identifier: 02:BE:B3:E6:21:FA:BA:63:42:1E:D3:F8:84:FA:27:0B:CD:33:1D:77 Certificate issuer: /CN=A91C0E5D/serialNumber=02BEB3E621FABA63421ED3F884FA270BCD331D77 Certificate serial: 05E8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ar6z5iH6umNCHtP4hPonC80zHXc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C0E5D/0D0FFBDC91D711EB86FA3426C4F9AE02/Ar6z5iH6umNCHtP4hPonC80zHXc.mft Manifest number: 05DF Signing time: Fri 22 Nov 2024 22:30:16 +0000 Manifest this update: Fri 22 Nov 2024 22:30:16 +0000 Manifest next update: Fri 29 Nov 2024 22:30:16 +0000 Files and hashes: 1: Ar6z5iH6umNCHtP4hPonC80zHXc.crl (hash: vUDtS+W2gRgHEqzqVYYXynN5F2J7uNHvfMkHHKlq9Es=) 2: C34EB9A6C28311EB9370913FC4F9AE02.roa (hash: KhQ2m3GyJCUcdrixe5p4++jj5LNUmAcZqQ2RRuKTkdM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C0E5D/0D0FFBDC91D711EB86FA3426C4F9AE02/Ar6z5iH6umNCHtP4hPonC80zHXc.crl rsync://rpki.apnic.net/member_repository/A91C0E5D/0D0FFBDC91D711EB86FA3426C4F9AE02/Ar6z5iH6umNCHtP4hPonC80zHXc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ar6z5iH6umNCHtP4hPonC80zHXc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1512 (0x5e8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C0E5D/serialNumber=02BEB3E621FABA63421ED3F884FA270BCD331D77 Validity Not Before: Nov 22 22:30:16 2024 GMT Not After : Nov 29 22:30:16 2024 GMT Subject: CN=674105f8-f42a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:15:b5:f4:e5:d6:1d:7f:cf:e9:2b:0d:be:a8: a1:6b:9f:c1:72:4b:65:a2:5c:b5:7b:72:0c:3e:d6: b9:4f:6b:3a:b5:22:b2:88:bb:e0:36:bf:bf:8a:f3: b7:b2:3d:74:1c:10:8b:62:92:5d:4a:b3:36:b0:4f: 2e:9a:08:f8:87:5e:9f:69:de:64:b2:f0:89:36:2a: 14:e0:ff:47:b1:31:01:07:24:42:52:62:dc:16:3b: ea:39:e1:de:c3:1f:39:7b:22:7c:91:e9:6b:9d:b0: 57:b0:30:ee:c5:e7:77:fd:0a:53:c6:5c:6f:12:b2: 31:25:cd:91:2a:e5:17:f4:3b:c9:5f:4a:8d:a4:00: c1:c7:86:74:f9:de:41:78:db:e6:7f:a5:22:d9:8f: 10:74:63:16:bc:04:4c:a2:aa:51:e0:d2:95:ef:e2: 73:14:3a:aa:6c:0a:86:d8:e4:8d:c0:5b:14:42:60: c5:25:95:53:ba:16:45:dc:a8:7a:31:4f:34:5a:be: 39:6e:35:33:80:69:d4:f7:6f:63:4f:f3:a5:fa:3d: 64:24:10:ac:3c:dd:b0:21:ca:93:3a:a8:55:81:80: cf:5e:88:96:e2:0f:e8:4b:32:31:44:37:11:d9:02: 02:a1:98:2e:3a:bc:34:0b:3d:12:69:9a:46:0c:4c: ab:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:E9:4D:09:C0:6A:FC:50:C8:34:7D:1E:2F:0C:45:4F:64:F4:6E:2C X509v3 Authority Key Identifier: keyid:02:BE:B3:E6:21:FA:BA:63:42:1E:D3:F8:84:FA:27:0B:CD:33:1D:77 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C0E5D/0D0FFBDC91D711EB86FA3426C4F9AE02/Ar6z5iH6umNCHtP4hPonC80zHXc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ar6z5iH6umNCHtP4hPonC80zHXc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C0E5D/0D0FFBDC91D711EB86FA3426C4F9AE02/Ar6z5iH6umNCHtP4hPonC80zHXc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 02:bd:5d:67:97:86:22:68:a9:e1:b6:81:f2:55:0f:df:dd:08: 95:90:d0:56:82:d6:77:b2:f9:eb:c2:85:3f:d5:26:93:d6:36: f8:9f:89:11:19:ef:08:13:48:b8:91:04:c0:5f:41:ae:2b:77: d0:fb:3a:61:4b:6d:71:40:07:a6:a0:5f:f6:2b:08:da:97:ee: d1:2b:fb:46:65:ee:a9:61:83:0e:7b:d3:62:5a:cf:dd:27:66: 24:87:81:dc:85:a5:94:ff:03:cd:0d:ee:38:95:b9:d2:59:ad: 7f:7c:db:5f:19:2e:e1:d0:e2:6b:2f:35:9a:87:b8:29:a2:bb: 3e:dc:2b:24:db:41:a0:f6:ca:62:a9:e1:25:ad:ea:4f:53:79: 2c:a3:64:61:af:b7:f1:0f:7c:cf:3d:39:a2:6a:e7:6d:99:79: e6:6f:c2:bb:f6:6e:12:10:d4:a0:81:6c:2e:61:1f:5b:47:04: d6:e8:25:25:1f:d3:8f:21:9b:01:ce:f6:23:58:18:bc:ca:65: 73:25:94:5f:31:10:81:d7:0c:cb:fa:2c:ae:d3:05:0c:67:6f: ed:c2:e8:92:c9:d2:18:89:43:4e:af:8e:41:56:10:ad:b8:82: 0f:2e:e2:eb:dd:b1:57:33:3c:44:4f:d8:b3:80:88:a6:7c:e4: 2c:4b:8a:c2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBegwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzBFNUQxMTAvBgNVBAUTKDAyQkVCM0U2MjFGQUJBNjM0MjFFRDNGODg0RkEyNzBC Q0QzMzFENzcwHhcNMjQxMTIyMjIzMDE2WhcNMjQxMTI5MjIzMDE2WjAYMRYwFAYD VQQDEw02NzQxMDVmOC1mNDJhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyxW19OXWHX/P6SsNvqiha5/Bcktloly1e3IMPta5T2s6tSKyiLvgNr+/ivO3 sj10HBCLYpJdSrM2sE8umgj4h16fad5ksvCJNioU4P9HsTEBByRCUmLcFjvqOeHe wx85eyJ8kelrnbBXsDDuxed3/QpTxlxvErIxJc2RKuUX9DvJX0qNpADBx4Z0+d5B eNvmf6Ui2Y8QdGMWvARMoqpR4NKV7+JzFDqqbAqG2OSNwFsUQmDFJZVTuhZF3Kh6 MU80Wr45bjUzgGnU929jT/Ol+j1kJBCsPN2wIcqTOqhVgYDPXoiW4g/oSzIxRDcR 2QICoZguOrw0Cz0SaZpGDEyrjwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOXpTQnA avxQyDR9Hi8MRU9k9G4sMB8GA1UdIwQYMBaAFAK+s+Yh+rpjQh7T+IT6JwvNMx13 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMEU1RC8wRDBGRkJEQzkx RDcxMUVCODZGQTM0MjZDNEY5QUUwMi9BcjZ6NWlINnVtTkNIdFA0aFBvbkM4MHpI WGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FyNno1aUg2dW1OQ0h0UDRoUG9uQzgwekhYYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MEU1RC8wRDBGRkJEQzkxRDcxMUVCODZGQTM0MjZDNEY5QUUwMi9BcjZ6NWlINnVt TkNIdFA0aFBvbkM4MHpIWGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQACvV1nl4YiaKnhtoHyVQ/f3QiVkNBWgtZ3svnrwoU/1SaT1jb4n4kR Ge8IE0i4kQTAX0GuK3fQ+zphS21xQAemoF/2Kwjal+7RK/tGZe6pYYMOe9NiWs/d J2Ykh4HchaWU/wPNDe44lbnSWa1/fNtfGS7h0OJrLzWah7gpors+3Csk20Gg9spi qeElrepPU3kso2Rhr7fxD3zPPTmiaudtmXnmb8K79m4SENSggWwuYR9bRwTW6CUl H9OPIZsBzvYjWBi8ymVzJZRfMRCB1wzL+iyu0wUMZ2/twuiSydIYiUNOr45BVhCt uIIPLuLr3bFXMzxET9izgIimfOQsS4rC -----END CERTIFICATE-----Generated at Sat Nov 23 00:08:49 2024 by rpki-client on console-ams.rpki-client.org