$ rpki-client -vvf rpki.apnic.net/member_repository/A91C53FD/688E57EEFF3211EEA55D8E53C4F9AE02/IZNBmOgzEGHSdbjPx5RY0y-r1sk.mft File: IZNBmOgzEGHSdbjPx5RY0y-r1sk.mft (raw, json) Hash identifier: cAUr+YZXj5m6VH/4tPz9cnAEvaepP22hSgfGbpn58XM= Subject key identifier: C6:97:7F:62:99:D5:AA:14:40:0D:EC:A3:7A:52:D4:F3:73:44:63:8C Authority key identifier: 21:93:41:98:E8:33:10:61:D2:75:B8:CF:C7:94:58:D3:2F:AB:D6:C9 Certificate issuer: /CN=A91C53FD/serialNumber=21934198E8331061D275B8CFC79458D32FABD6C9 Certificate serial: 72 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IZNBmOgzEGHSdbjPx5RY0y-r1sk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C53FD/688E57EEFF3211EEA55D8E53C4F9AE02/IZNBmOgzEGHSdbjPx5RY0y-r1sk.mft Manifest number: 70 Signing time: Sat 23 Nov 2024 04:51:25 +0000 Manifest this update: Sat 23 Nov 2024 04:51:25 +0000 Manifest next update: Sat 30 Nov 2024 04:51:25 +0000 Files and hashes: 1: IZNBmOgzEGHSdbjPx5RY0y-r1sk.crl (hash: oei6t0d1/XCOajk1pC0sRiSbHnxeyyPw6najuvxhtbA=) 2: B15E8BECFF3211EEA8607454C4F9AE02.roa (hash: M9Q8RXEiuL/wyMNZhN9zbPG+N0QQluDkDpfmSIoYCRg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C53FD/688E57EEFF3211EEA55D8E53C4F9AE02/IZNBmOgzEGHSdbjPx5RY0y-r1sk.crl rsync://rpki.apnic.net/member_repository/A91C53FD/688E57EEFF3211EEA55D8E53C4F9AE02/IZNBmOgzEGHSdbjPx5RY0y-r1sk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IZNBmOgzEGHSdbjPx5RY0y-r1sk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 114 (0x72) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C53FD/serialNumber=21934198E8331061D275B8CFC79458D32FABD6C9 Validity Not Before: Nov 23 04:51:25 2024 GMT Not After : Nov 30 04:51:25 2024 GMT Subject: CN=67415f4d-e464 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:ef:34:2d:ba:6a:a0:69:7e:7b:7e:bf:2e:08: 34:32:fa:12:1b:e8:50:92:a1:a9:38:a9:ae:0d:62: c0:44:68:84:d2:b5:85:a5:05:3d:10:24:29:c3:a9: b2:3c:21:7a:ea:64:5e:a1:9b:bc:ea:9d:4f:5d:08: 83:b5:f8:66:34:f4:be:fa:e5:42:1b:7f:76:c2:82: d1:d9:ef:a4:11:ab:1b:9d:40:ba:a8:ea:90:94:e5: 21:34:78:ab:4b:52:e6:05:c1:a9:7a:57:c6:5f:09: 9d:d6:b6:6a:1a:03:0c:83:72:a1:af:82:17:0a:9e: 59:11:ff:1c:be:e1:5a:08:32:ae:78:f8:55:7f:4c: 53:f3:94:9d:e0:9c:31:7b:c8:eb:94:71:0c:b5:15: 6e:dc:a7:84:4f:a8:fb:8e:bb:29:53:84:ff:18:87: 3f:6e:4e:02:b6:02:90:c3:71:f9:28:52:f2:ba:28: d7:c8:c7:2f:8e:12:18:8f:55:0d:82:37:d7:df:36: bd:02:f8:d9:82:26:ec:79:3c:21:f1:0f:47:39:be: c4:f9:f9:89:70:f0:bb:e8:68:af:e8:44:b1:ba:a5: 56:de:37:84:a9:19:64:d7:64:1b:b2:3f:f4:e6:9a: 92:3d:37:c4:37:ed:68:76:1d:9d:84:1f:f0:f0:b7: 43:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:97:7F:62:99:D5:AA:14:40:0D:EC:A3:7A:52:D4:F3:73:44:63:8C X509v3 Authority Key Identifier: keyid:21:93:41:98:E8:33:10:61:D2:75:B8:CF:C7:94:58:D3:2F:AB:D6:C9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C53FD/688E57EEFF3211EEA55D8E53C4F9AE02/IZNBmOgzEGHSdbjPx5RY0y-r1sk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IZNBmOgzEGHSdbjPx5RY0y-r1sk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C53FD/688E57EEFF3211EEA55D8E53C4F9AE02/IZNBmOgzEGHSdbjPx5RY0y-r1sk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6c:1d:55:cb:d6:eb:5f:43:8c:33:b0:3d:67:fc:1c:37:74:1f: fc:30:f4:a8:7d:95:1c:f2:c7:03:92:76:9f:07:47:6f:f0:52: cd:99:b0:c6:c9:f7:01:68:f1:f8:1f:80:83:9a:55:12:4b:ab: 6f:26:e9:3a:ae:98:ad:59:b5:d3:46:32:60:a8:b6:34:26:f2: ef:93:cd:cf:41:87:c7:ae:ba:b4:a5:0b:a0:a5:c2:eb:db:f4: 8e:0f:47:d0:31:21:9c:d7:a4:d2:30:1b:2d:47:bf:96:1a:8f: 7d:c8:c8:7a:00:dc:28:31:5e:09:e5:0e:ca:66:f6:b7:a6:87: 9d:d3:ee:f4:0b:d4:94:4c:e1:7a:11:94:ed:30:d5:13:c2:e9: c4:53:3b:1f:bb:7f:eb:c8:bc:b0:14:6f:5a:8f:aa:1a:66:b6: 4a:0b:5b:6f:bf:8b:83:a3:fa:20:99:c0:ba:d1:c8:ee:87:aa: fe:e3:69:65:a3:3e:8b:6e:a2:d6:d3:83:ec:5a:81:6d:48:39: 2a:a8:61:37:98:54:d5:8f:59:60:e2:85:9d:fb:d9:29:f6:61: 73:75:42:ca:8c:1d:b4:cc:0b:48:1a:bf:3a:20:76:85:64:79: 1c:09:d8:be:dc:26:c0:87:c8:19:bf:8d:1f:e4:46:a0:84:22: ac:3c:65:11 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBcjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD NTNGRDExMC8GA1UEBRMoMjE5MzQxOThFODMzMTA2MUQyNzVCOENGQzc5NDU4RDMy RkFCRDZDOTAeFw0yNDExMjMwNDUxMjVaFw0yNDExMzAwNDUxMjVaMBgxFjAUBgNV BAMTDTY3NDE1ZjRkLWU0NjQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDT7zQtumqgaX57fr8uCDQy+hIb6FCSoak4qa4NYsBEaITStYWlBT0QJCnDqbI8 IXrqZF6hm7zqnU9dCIO1+GY09L765UIbf3bCgtHZ76QRqxudQLqo6pCU5SE0eKtL UuYFwal6V8ZfCZ3WtmoaAwyDcqGvghcKnlkR/xy+4VoIMq54+FV/TFPzlJ3gnDF7 yOuUcQy1FW7cp4RPqPuOuylThP8Yhz9uTgK2ApDDcfkoUvK6KNfIxy+OEhiPVQ2C N9ffNr0C+NmCJux5PCHxD0c5vsT5+Ylw8LvoaK/oRLG6pVbeN4SpGWTXZBuyP/Tm mpI9N8Q37Wh2HZ2EH/Dwt0PvAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUxpd/YpnV qhRADeyjelLU83NEY4wwHwYDVR0jBBgwFoAUIZNBmOgzEGHSdbjPx5RY0y+r1skw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUM1M0ZELzY4OEU1N0VFRkYz MjExRUVBNTVEOEU1M0M0RjlBRTAyL0laTkJtT2d6RUdIU2RialB4NVJZMHktcjFz ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvSVpOQm1PZ3pFR0hTZGJqUHg1UlkweS1yMXNrLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUM1 M0ZELzY4OEU1N0VFRkYzMjExRUVBNTVEOEU1M0M0RjlBRTAyL0laTkJtT2d6RUdI U2RialB4NVJZMHktcjFzay5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAGwdVcvW619DjDOwPWf8HDd0H/ww9Kh9lRzyxwOSdp8HR2/wUs2ZsMbJ 9wFo8fgfgIOaVRJLq28m6TqumK1ZtdNGMmCotjQm8u+Tzc9Bh8euurSlC6Clwuvb 9I4PR9AxIZzXpNIwGy1Hv5Yaj33IyHoA3CgxXgnlDspm9remh53T7vQL1JRM4XoR lO0w1RPC6cRTOx+7f+vIvLAUb1qPqhpmtkoLW2+/i4Oj+iCZwLrRyO6Hqv7jaWWj PotuotbTg+xagW1IOSqoYTeYVNWPWWDihZ372Sn2YXN1QsqMHbTMC0gavzogdoVk eRwJ2L7cJsCHyBm/jR/kRqCEIqw8ZRE= -----END CERTIFICATE-----Generated at Sat Nov 23 06:13:22 2024 by rpki-client on console-ams.rpki-client.org