$ rpki-client -vvf rpki.apnic.net/member_repository/A91C24C5/D1E2D968835911EEB25CF144C4F9AE02/imIbx3o91BcMuRA_-HiLyQkAgtE.mft File: imIbx3o91BcMuRA_-HiLyQkAgtE.mft (raw, json) Hash identifier: CELkwKbvuSwoopAwIIulFfuWHNfhK9rXjujBwArz9qs= Subject key identifier: C1:AF:FC:09:59:6F:5B:D4:3E:19:B2:EC:56:D9:31:FE:39:5C:F3:5D Authority key identifier: 8A:62:1B:C7:7A:3D:D4:17:0C:B9:10:3F:F8:78:8B:C9:09:00:82:D1 Certificate issuer: /CN=A91C24C5/serialNumber=8A621BC77A3DD4170CB9103FF8788BC9090082D1 Certificate serial: C2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/imIbx3o91BcMuRA_-HiLyQkAgtE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C24C5/D1E2D968835911EEB25CF144C4F9AE02/imIbx3o91BcMuRA_-HiLyQkAgtE.mft Manifest number: C0 Signing time: Sat 23 Nov 2024 03:56:52 +0000 Manifest this update: Sat 23 Nov 2024 03:56:52 +0000 Manifest next update: Sat 30 Nov 2024 03:56:52 +0000 Files and hashes: 1: imIbx3o91BcMuRA_-HiLyQkAgtE.crl (hash: C16cuWWFyWa3I1FOahcKhg3luoOXys3t+mzBfmplxWE=) 2: 872F5E22835A11EE9FFEC146C4F9AE02.roa (hash: tjxh3rndOUkMSOmtwJhWl1k7jDHiKVupPT8znN9YBZ8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C24C5/D1E2D968835911EEB25CF144C4F9AE02/imIbx3o91BcMuRA_-HiLyQkAgtE.crl rsync://rpki.apnic.net/member_repository/A91C24C5/D1E2D968835911EEB25CF144C4F9AE02/imIbx3o91BcMuRA_-HiLyQkAgtE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/imIbx3o91BcMuRA_-HiLyQkAgtE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 194 (0xc2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C24C5/serialNumber=8A621BC77A3DD4170CB9103FF8788BC9090082D1 Validity Not Before: Nov 23 03:56:52 2024 GMT Not After : Nov 30 03:56:52 2024 GMT Subject: CN=67415284-e3b5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:01:76:54:35:a4:31:6d:01:8d:73:10:ba:03: 30:6c:d1:d5:b7:e5:b7:6c:2e:8b:9f:d1:22:92:96: 93:4c:06:42:0e:3a:43:fb:5d:2c:de:f9:12:ce:e5: 1f:9e:8d:22:0a:94:a5:db:81:98:90:fe:2f:4c:1e: bd:45:76:d4:58:c7:0a:37:13:59:45:3a:79:6d:7a: 1c:81:dc:b0:39:c6:4d:bb:56:d0:4c:95:b4:77:48: 8e:fa:e4:2f:35:be:3d:c5:49:a0:76:b4:cd:a6:cc: b9:a9:0e:5a:d4:07:a7:05:90:32:d8:2a:47:7e:71: 69:22:de:04:f7:8a:de:3b:2d:ce:6f:15:a6:9f:41: 0c:10:f5:87:72:9d:f5:2f:fb:d0:47:13:f6:b0:8f: 42:ae:6d:1a:28:70:43:ac:b7:33:90:d0:88:43:50: 7e:46:e3:07:f9:1b:db:97:69:7f:c0:d1:39:6a:eb: ce:33:cb:e7:08:3c:ba:79:08:50:1a:62:29:d6:1b: 46:b8:a4:7b:28:a4:19:91:c5:0c:19:b4:b8:54:56: 51:e9:e9:63:e2:10:a2:14:35:4f:73:21:c1:cb:62: 94:4c:eb:f0:63:c5:a8:4f:6a:dd:37:1a:a9:b2:81: 4c:0a:28:c9:fd:60:6d:69:63:3c:33:26:9d:fe:f1: 04:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:AF:FC:09:59:6F:5B:D4:3E:19:B2:EC:56:D9:31:FE:39:5C:F3:5D X509v3 Authority Key Identifier: keyid:8A:62:1B:C7:7A:3D:D4:17:0C:B9:10:3F:F8:78:8B:C9:09:00:82:D1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C24C5/D1E2D968835911EEB25CF144C4F9AE02/imIbx3o91BcMuRA_-HiLyQkAgtE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/imIbx3o91BcMuRA_-HiLyQkAgtE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C24C5/D1E2D968835911EEB25CF144C4F9AE02/imIbx3o91BcMuRA_-HiLyQkAgtE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 05:b8:b2:23:6e:3a:b1:ca:53:d9:eb:b5:77:54:20:c3:b7:e0: 46:4d:6a:75:04:20:46:a0:b5:4f:13:d1:cf:dd:ea:5d:ad:b3: fe:bc:b5:6b:54:36:a5:3b:ec:5b:19:23:05:94:d8:40:21:3a: f5:24:27:4f:12:2a:e8:32:8f:e9:64:31:f8:91:f0:06:b0:22: 77:a1:ad:f3:d2:62:18:1f:ec:2b:85:cb:aa:20:f7:bb:79:7d: 9e:39:3e:7c:12:5c:aa:db:02:1d:f7:56:fe:eb:06:06:07:41: 98:7a:de:ed:23:89:6a:7a:3a:c0:cc:04:85:af:39:46:27:13: 02:ee:ad:97:8f:27:f6:f7:95:24:6e:d8:50:6c:02:ff:d8:d2: 96:bc:f9:14:57:3f:80:2a:04:16:dd:03:a7:55:33:a8:c5:8d: 9f:9d:0c:6c:29:d5:c4:66:76:e5:0b:84:36:d6:56:31:1f:57: 4b:b0:2e:f6:74:20:1f:f9:e9:de:72:ff:33:a7:2d:70:23:ac: e3:c4:eb:db:5a:b3:26:21:eb:59:4c:33:c6:e8:4f:3c:f4:e1: 80:81:49:70:e3:b8:09:9b:88:f5:ea:d4:94:88:7a:3d:bb:16: a0:97:5d:27:15:33:0d:60:f1:b9:6a:4e:ce:e9:a7:e3:c5:57: 67:08:e0:5d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAMIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzI0QzUxMTAvBgNVBAUTKDhBNjIxQkM3N0EzREQ0MTcwQ0I5MTAzRkY4Nzg4QkM5 MDkwMDgyRDEwHhcNMjQxMTIzMDM1NjUyWhcNMjQxMTMwMDM1NjUyWjAYMRYwFAYD VQQDEw02NzQxNTI4NC1lM2I1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqgF2VDWkMW0BjXMQugMwbNHVt+W3bC6Ln9EikpaTTAZCDjpD+10s3vkSzuUf no0iCpSl24GYkP4vTB69RXbUWMcKNxNZRTp5bXocgdywOcZNu1bQTJW0d0iO+uQv Nb49xUmgdrTNpsy5qQ5a1AenBZAy2CpHfnFpIt4E94reOy3ObxWmn0EMEPWHcp31 L/vQRxP2sI9Crm0aKHBDrLczkNCIQ1B+RuMH+Rvbl2l/wNE5auvOM8vnCDy6eQhQ GmIp1htGuKR7KKQZkcUMGbS4VFZR6elj4hCiFDVPcyHBy2KUTOvwY8WoT2rdNxqp soFMCijJ/WBtaWM8Myad/vEEMQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMGv/AlZ b1vUPhmy7FbZMf45XPNdMB8GA1UdIwQYMBaAFIpiG8d6PdQXDLkQP/h4i8kJAILR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMjRDNS9EMUUyRDk2ODgz NTkxMUVFQjI1Q0YxNDRDNEY5QUUwMi9pbUlieDNvOTFCY011UkFfLUhpTHlRa0Fn dEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2ltSWJ4M285MUJjTXVSQV8tSGlMeVFrQWd0RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MjRDNS9EMUUyRDk2ODgzNTkxMUVFQjI1Q0YxNDRDNEY5QUUwMi9pbUlieDNvOTFC Y011UkFfLUhpTHlRa0FndEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAFuLIjbjqxylPZ67V3VCDDt+BGTWp1BCBGoLVPE9HP3epdrbP+vLVr VDalO+xbGSMFlNhAITr1JCdPEiroMo/pZDH4kfAGsCJ3oa3z0mIYH+wrhcuqIPe7 eX2eOT58Elyq2wId91b+6wYGB0GYet7tI4lqejrAzASFrzlGJxMC7q2Xjyf295Uk bthQbAL/2NKWvPkUVz+AKgQW3QOnVTOoxY2fnQxsKdXEZnblC4Q21lYxH1dLsC72 dCAf+enecv8zpy1wI6zjxOvbWrMmIetZTDPG6E889OGAgUlw47gJm4j16tSUiHo9 uxagl10nFTMNYPG5ak7O6afjxVdnCOBd -----END CERTIFICATE-----Generated at Sat Nov 23 06:13:22 2024 by rpki-client on console-ams.rpki-client.org