$ rpki-client -vvf rpki.apnic.net/member_repository/A91C40D6/05F86014C53711EEB67AEB79C4F9AE02/du8ZOVeobWTTw83rngdGdG70KQo.mft File: du8ZOVeobWTTw83rngdGdG70KQo.mft (raw, json) Hash identifier: pYuBQmiuxyvaIFp3xenQFUY4n3/JhGm6uHOylgkl7pw= Subject key identifier: 4E:62:E8:D2:0E:4C:FB:46:27:27:A3:9A:7A:5D:83:F6:81:AF:D3:3D Authority key identifier: 76:EF:19:39:57:A8:6D:64:D3:C3:CD:EB:9E:07:46:74:6E:F4:29:0A Certificate issuer: /CN=A91C40D6/serialNumber=76EF193957A86D64D3C3CDEB9E0746746EF4290A Certificate serial: 9B Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/du8ZOVeobWTTw83rngdGdG70KQo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C40D6/05F86014C53711EEB67AEB79C4F9AE02/du8ZOVeobWTTw83rngdGdG70KQo.mft Manifest number: 98 Signing time: Wed 20 Nov 2024 20:11:54 +0000 Manifest this update: Wed 20 Nov 2024 20:11:53 +0000 Manifest next update: Wed 27 Nov 2024 20:11:53 +0000 Files and hashes: 1: du8ZOVeobWTTw83rngdGdG70KQo.crl (hash: q8tA0dc0jxArxBxldqFhESpQpf3sbvo18jN0BHJyYyQ=) 2: DF4EFA76CA7811EE838E0A73C4F9AE02.roa (hash: /FORfGBg9zOxItBO8An19jk30uxSaavKCQfEXQzUIIw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C40D6/05F86014C53711EEB67AEB79C4F9AE02/du8ZOVeobWTTw83rngdGdG70KQo.crl rsync://rpki.apnic.net/member_repository/A91C40D6/05F86014C53711EEB67AEB79C4F9AE02/du8ZOVeobWTTw83rngdGdG70KQo.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/du8ZOVeobWTTw83rngdGdG70KQo.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 19:45:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 155 (0x9b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C40D6/serialNumber=76EF193957A86D64D3C3CDEB9E0746746EF4290A Validity Not Before: Nov 20 20:11:53 2024 GMT Not After : Nov 27 20:11:53 2024 GMT Subject: CN=673e4289-6bae Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:fd:c9:c3:e4:fd:d4:50:49:88:fc:5f:ab:a2: bf:86:47:95:11:27:59:b0:10:90:30:bf:0f:dc:3f: 26:86:1f:4c:2e:a4:ed:09:bc:c2:5e:c5:08:4f:09: 7d:b7:40:85:1c:b4:1e:cb:3a:e4:df:5a:ad:4d:f1: cd:77:53:b4:e3:3d:05:45:56:15:e8:58:e1:b0:3b: b1:1b:3d:f1:52:39:eb:f5:9d:88:4b:a7:14:11:f1: 75:44:a0:e1:73:06:bf:42:f7:35:12:a4:d5:a0:65: cf:36:ea:b5:7b:e5:4c:03:15:f7:d0:be:c6:2f:c1: 45:5e:90:23:8b:cb:4f:0b:de:bc:b6:e6:31:17:f8: 74:98:4f:40:a1:14:ff:e8:88:01:a4:f1:e3:e3:29: c1:3f:a2:ac:30:78:49:35:52:8e:f1:f1:36:de:be: e9:45:2c:fd:20:31:a0:d8:cc:92:c8:2d:28:65:17: d9:c5:e3:33:cd:e3:cf:53:38:07:f2:25:28:0a:ea: 5a:f7:0e:5d:cc:eb:7c:6d:a0:de:e9:83:7c:67:dc: 9e:ad:28:c6:3e:7c:9e:b1:3d:01:52:44:cf:fd:b6: 00:e2:4a:c5:83:65:e7:53:2a:bc:a9:49:06:59:3b: f8:b1:ac:db:41:96:28:03:9a:f6:ef:4c:2b:51:c7: 30:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:62:E8:D2:0E:4C:FB:46:27:27:A3:9A:7A:5D:83:F6:81:AF:D3:3D X509v3 Authority Key Identifier: keyid:76:EF:19:39:57:A8:6D:64:D3:C3:CD:EB:9E:07:46:74:6E:F4:29:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C40D6/05F86014C53711EEB67AEB79C4F9AE02/du8ZOVeobWTTw83rngdGdG70KQo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/du8ZOVeobWTTw83rngdGdG70KQo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C40D6/05F86014C53711EEB67AEB79C4F9AE02/du8ZOVeobWTTw83rngdGdG70KQo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4b:51:69:e1:99:5d:33:df:49:20:ef:59:a5:ef:43:ec:ca:d2: 9e:62:c1:6b:a4:e8:16:7c:a4:0b:20:67:57:95:86:f4:e5:28: 5a:27:f3:ad:f9:f4:60:7c:4e:ae:ff:a7:65:e0:30:20:c3:90: 39:7a:cb:a7:94:71:aa:4e:ad:9b:63:5b:26:47:ca:bd:15:96: e4:a3:31:3c:3c:fb:cd:9d:e6:20:41:96:7c:ce:8b:c5:95:35: 07:80:a0:3a:12:ca:2d:df:c9:06:12:5f:d2:59:45:c4:13:08: b0:a6:e2:da:37:54:ec:6c:28:c4:9a:ca:53:b6:e8:4f:f5:ad: 27:11:bc:08:04:b3:29:4f:2e:20:0d:78:0c:14:1a:f2:bf:04: 68:ee:2f:81:fa:b6:a1:c8:f9:e2:de:1e:93:c7:3d:e0:c6:2d: 5b:73:be:a7:9a:a2:ee:a6:b8:3d:0b:2f:1d:2f:0c:81:e9:fa: 72:dc:ff:b2:c6:7e:3a:3a:cf:6a:6a:d1:fe:ba:f9:c0:5e:db: a3:7e:b6:ea:b0:42:62:55:2a:d5:48:c9:48:d3:e3:03:91:2d: c2:ba:c4:2f:89:45:d3:f6:ce:36:cd:21:bc:45:ef:da:e7:61: eb:ba:79:fd:e3:4e:10:ec:c0:d9:11:d8:28:95:07:bf:4f:f9: 9a:f4:b3:c2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzQwRDYxMTAvBgNVBAUTKDc2RUYxOTM5NTdBODZENjREM0MzQ0RFQjlFMDc0Njc0 NkVGNDI5MEEwHhcNMjQxMTIwMjAxMTUzWhcNMjQxMTI3MjAxMTUzWjAYMRYwFAYD VQQDEw02NzNlNDI4OS02YmFlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0v3Jw+T91FBJiPxfq6K/hkeVESdZsBCQML8P3D8mhh9MLqTtCbzCXsUITwl9 t0CFHLQeyzrk31qtTfHNd1O04z0FRVYV6FjhsDuxGz3xUjnr9Z2IS6cUEfF1RKDh cwa/Qvc1EqTVoGXPNuq1e+VMAxX30L7GL8FFXpAji8tPC968tuYxF/h0mE9AoRT/ 6IgBpPHj4ynBP6KsMHhJNVKO8fE23r7pRSz9IDGg2MySyC0oZRfZxeMzzePPUzgH 8iUoCupa9w5dzOt8baDe6YN8Z9yerSjGPnyesT0BUkTP/bYA4krFg2XnUyq8qUkG WTv4sazbQZYoA5r270wrUccwJwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFE5i6NIO TPtGJyejmnpdg/aBr9M9MB8GA1UdIwQYMBaAFHbvGTlXqG1k08PN654HRnRu9CkK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNDBENi8wNUY4NjAxNEM1 MzcxMUVFQjY3QUVCNzlDNEY5QUUwMi9kdThaT1Zlb2JXVFR3ODNybmdkR2RHNzBL UW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2R1OFpPVmVvYldUVHc4M3JuZ2RHZEc3MEtRby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NDBENi8wNUY4NjAxNEM1MzcxMUVFQjY3QUVCNzlDNEY5QUUwMi9kdThaT1Zlb2JX VFR3ODNybmdkR2RHNzBLUW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBLUWnhmV0z30kg71ml70PsytKeYsFrpOgWfKQLIGdXlYb05ShaJ/Ot +fRgfE6u/6dl4DAgw5A5esunlHGqTq2bY1smR8q9FZbkozE8PPvNneYgQZZ8zovF lTUHgKA6Esot38kGEl/SWUXEEwiwpuLaN1TsbCjEmspTtuhP9a0nEbwIBLMpTy4g DXgMFBryvwRo7i+B+rahyPni3h6Txz3gxi1bc76nmqLuprg9Cy8dLwyB6fpy3P+y xn46Os9qatH+uvnAXtujfrbqsEJiVSrVSMlI0+MDkS3CusQviUXT9s42zSG8Re/a 52Hrunn9404Q7MDZEdgolQe/T/ma9LPC -----END CERTIFICATE-----Generated at Wed Nov 20 21:34:58 2024 by rpki-client on console-ams.rpki-client.org