$ rpki-client -vvf rpki.apnic.net/member_repository/A91C9327/1366319A170011ED93A20647C4F9AE02/sjZrmQQ2twaLXyVculqgXp29v30.mft File: sjZrmQQ2twaLXyVculqgXp29v30.mft (raw, json) Hash identifier: cnlX8Jkry3BXxcMKh6ThqH2r5ACURujD6Y4RIJcsYrY= Subject key identifier: D3:04:A4:53:06:72:33:24:AD:EE:EF:62:27:1B:1C:15:2B:AE:FA:2A Authority key identifier: B2:36:6B:99:04:36:B7:06:8B:5F:25:5C:BA:5A:A0:5E:9D:BD:BF:7D Certificate issuer: /CN=A91C9327/serialNumber=B2366B990436B7068B5F255CBA5AA05E9DBDBF7D Certificate serial: 0204 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sjZrmQQ2twaLXyVculqgXp29v30.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C9327/1366319A170011ED93A20647C4F9AE02/sjZrmQQ2twaLXyVculqgXp29v30.mft Manifest number: 0201 Signing time: Sat 23 Nov 2024 01:37:05 +0000 Manifest this update: Sat 23 Nov 2024 01:37:05 +0000 Manifest next update: Sat 30 Nov 2024 01:37:05 +0000 Files and hashes: 1: sjZrmQQ2twaLXyVculqgXp29v30.crl (hash: HE3am4z3D9CaQExtRwyHiOmooQf5YEZyJMXep70dUEc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C9327/1366319A170011ED93A20647C4F9AE02/sjZrmQQ2twaLXyVculqgXp29v30.crl rsync://rpki.apnic.net/member_repository/A91C9327/1366319A170011ED93A20647C4F9AE02/sjZrmQQ2twaLXyVculqgXp29v30.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sjZrmQQ2twaLXyVculqgXp29v30.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 01:37:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 516 (0x204) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C9327/serialNumber=B2366B990436B7068B5F255CBA5AA05E9DBDBF7D Validity Not Before: Nov 23 01:37:05 2024 GMT Not After : Nov 30 01:37:05 2024 GMT Subject: CN=674131c1-864a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:21:f2:77:81:ce:7d:45:cd:c3:fe:a2:98:48: 28:cf:b9:b9:7b:eb:7a:76:3d:66:82:10:11:64:d5: 6e:1c:73:43:be:dd:f3:46:3a:60:c3:79:1f:eb:75: c8:18:a1:48:f1:dd:ae:ea:16:f1:ec:15:1a:ce:c0: 4b:dd:a5:6d:3e:f5:66:6d:a3:11:5c:aa:ab:61:04: 01:0c:56:43:7e:2e:35:3b:c1:ec:7b:15:3a:ab:a6: 23:c8:74:dd:d4:64:30:3c:c0:37:c1:f1:05:07:c7: 63:b2:c0:37:f2:99:b9:af:79:db:50:ed:49:86:61: 02:2a:be:9d:73:f9:85:48:ac:f8:e3:af:d8:b7:87: a7:da:19:c6:54:0f:d4:d1:c5:6d:63:bb:45:5a:f8: 64:c1:61:71:73:0a:a6:7b:05:07:85:cb:0c:4b:ca: 84:39:99:ea:66:91:cc:b0:d7:ef:14:dc:1e:9d:f4: d8:f1:59:c8:5c:5f:54:76:86:e9:9c:ad:90:a1:22: 94:02:d2:df:41:c2:2b:4d:dd:c0:aa:20:47:e6:29: 52:3c:86:e8:40:0d:5a:cb:12:ab:39:d0:dc:a2:06: 09:3f:63:17:1d:69:a2:0f:ab:04:da:bc:a3:1d:75: 5c:6b:b2:2e:98:13:b3:7e:ed:3c:4d:d6:6a:13:4d: 03:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:04:A4:53:06:72:33:24:AD:EE:EF:62:27:1B:1C:15:2B:AE:FA:2A X509v3 Authority Key Identifier: keyid:B2:36:6B:99:04:36:B7:06:8B:5F:25:5C:BA:5A:A0:5E:9D:BD:BF:7D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C9327/1366319A170011ED93A20647C4F9AE02/sjZrmQQ2twaLXyVculqgXp29v30.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sjZrmQQ2twaLXyVculqgXp29v30.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C9327/1366319A170011ED93A20647C4F9AE02/sjZrmQQ2twaLXyVculqgXp29v30.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1a:14:e8:f8:4e:b5:9c:68:c5:bc:20:9c:86:60:6d:1d:04:9a: 5f:d6:c4:7c:a5:fd:4c:d1:f2:25:87:72:1c:04:ed:44:ef:27: 49:4d:d5:66:9d:5c:43:cf:a2:d4:91:60:ad:de:df:cd:a6:bd: 81:81:06:1c:ba:0e:00:05:c9:a9:8d:19:fc:23:11:ea:2a:cb: 9d:a3:34:c3:c3:7e:6d:eb:c4:ef:69:54:7d:f3:a7:85:8f:0f: b0:35:6b:be:a1:a5:60:ee:89:2d:69:da:cb:c0:98:60:6b:05: 6a:83:16:fc:8c:8e:1c:ed:a5:25:9a:5a:f9:c4:04:cb:42:82: a8:8a:45:c7:1d:9b:4d:85:3d:92:b9:e1:4e:d8:ec:aa:38:3e: 65:27:db:71:7b:46:8c:47:19:bc:62:b3:f2:be:49:fe:36:2e: b7:a8:ba:8d:32:44:00:83:d8:11:62:51:52:f1:63:86:53:ac: 45:fe:a4:25:d5:06:e3:d0:42:a8:13:e7:90:74:b7:79:e6:34: be:7b:b9:34:10:77:82:24:68:8d:af:79:c3:25:ec:39:84:2a: a1:9f:03:68:75:8d:02:77:0a:f3:4c:2e:77:81:14:31:90:1b: 0b:72:1f:ef:48:59:af:e5:18:94:85:30:d5:81:0a:35:c4:dc: 13:93:98:b7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAgQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzkzMjcxMTAvBgNVBAUTKEIyMzY2Qjk5MDQzNkI3MDY4QjVGMjU1Q0JBNUFBMDVF OURCREJGN0QwHhcNMjQxMTIzMDEzNzA1WhcNMjQxMTMwMDEzNzA1WjAYMRYwFAYD VQQDEw02NzQxMzFjMS04NjRhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAriHyd4HOfUXNw/6imEgoz7m5e+t6dj1mghARZNVuHHNDvt3zRjpgw3kf63XI GKFI8d2u6hbx7BUazsBL3aVtPvVmbaMRXKqrYQQBDFZDfi41O8HsexU6q6YjyHTd 1GQwPMA3wfEFB8djssA38pm5r3nbUO1JhmECKr6dc/mFSKz446/Yt4en2hnGVA/U 0cVtY7tFWvhkwWFxcwqmewUHhcsMS8qEOZnqZpHMsNfvFNwenfTY8VnIXF9Udobp nK2QoSKUAtLfQcIrTd3AqiBH5ilSPIboQA1ayxKrOdDcogYJP2MXHWmiD6sE2ryj HXVca7IumBOzfu08TdZqE00D6wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNMEpFMG cjMkre7vYicbHBUrrvoqMB8GA1UdIwQYMBaAFLI2a5kENrcGi18lXLpaoF6dvb99 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOTMyNy8xMzY2MzE5QTE3 MDAxMUVEOTNBMjA2NDdDNEY5QUUwMi9zalpybVFRMnR3YUxYeVZjdWxxZ1hwMjl2 MzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3NqWnJtUVEydHdhTFh5VmN1bHFnWHAyOXYzMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD OTMyNy8xMzY2MzE5QTE3MDAxMUVEOTNBMjA2NDdDNEY5QUUwMi9zalpybVFRMnR3 YUxYeVZjdWxxZ1hwMjl2MzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAaFOj4TrWcaMW8IJyGYG0dBJpf1sR8pf1M0fIlh3IcBO1E7ydJTdVm nVxDz6LUkWCt3t/Npr2BgQYcug4ABcmpjRn8IxHqKsudozTDw35t68TvaVR986eF jw+wNWu+oaVg7oktadrLwJhgawVqgxb8jI4c7aUlmlr5xATLQoKoikXHHZtNhT2S ueFO2OyqOD5lJ9txe0aMRxm8YrPyvkn+Ni63qLqNMkQAg9gRYlFS8WOGU6xF/qQl 1Qbj0EKoE+eQdLd55jS+e7k0EHeCJGiNr3nDJew5hCqhnwNodY0CdwrzTC53gRQx kBsLch/vSFmv5RiUhTDVgQo1xNwTk5i3 -----END CERTIFICATE-----Generated at Sat Nov 23 03:58:51 2024 by rpki-client on console-ams.rpki-client.org