$ rpki-client -vvf rpki.apnic.net/member_repository/A91C9E72/E6B44902848011EFAAD8E233C4F9AE02/c9kAkk5wFUjm4yA4gPbAlypMKRo.mft File: c9kAkk5wFUjm4yA4gPbAlypMKRo.mft (raw, json) Hash identifier: 0Le/bTcoj2tXTCYYaCqjRp7kZ5EpPueZ+kKhkz9xy/U= Subject key identifier: B2:B9:1C:C2:8C:5C:B5:E2:6E:7D:1A:1D:9B:06:37:15:9A:E3:A5:28 Authority key identifier: 73:D9:00:92:4E:70:15:48:E6:E3:20:38:80:F6:C0:97:2A:4C:29:1A Certificate issuer: /CN=A91C9E72/serialNumber=73D900924E701548E6E3203880F6C0972A4C291A Certificate serial: 1E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/c9kAkk5wFUjm4yA4gPbAlypMKRo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C9E72/E6B44902848011EFAAD8E233C4F9AE02/c9kAkk5wFUjm4yA4gPbAlypMKRo.mft Manifest number: 1C Signing time: Sat 23 Nov 2024 05:50:40 +0000 Manifest this update: Sat 23 Nov 2024 05:50:40 +0000 Manifest next update: Sat 30 Nov 2024 05:50:40 +0000 Files and hashes: 1: c9kAkk5wFUjm4yA4gPbAlypMKRo.crl (hash: mDvtASJBBdODNgSV26K/7UaBSTZ889yBi+ALcYhX+wE=) 2: 5440C4C8848111EF9F3ECE34C4F9AE02.roa (hash: 3hnmn/EG7rhYM2a7/Cnm16lA4qC355sf3kWBw8CmIQU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C9E72/E6B44902848011EFAAD8E233C4F9AE02/c9kAkk5wFUjm4yA4gPbAlypMKRo.crl rsync://rpki.apnic.net/member_repository/A91C9E72/E6B44902848011EFAAD8E233C4F9AE02/c9kAkk5wFUjm4yA4gPbAlypMKRo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/c9kAkk5wFUjm4yA4gPbAlypMKRo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 30 (0x1e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C9E72/serialNumber=73D900924E701548E6E3203880F6C0972A4C291A Validity Not Before: Nov 23 05:50:40 2024 GMT Not After : Nov 30 05:50:40 2024 GMT Subject: CN=67416d30-2d39 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:0f:01:5e:be:6f:7f:b7:b7:4a:61:a5:37:7e: d5:93:6b:74:84:75:28:65:ec:f6:68:54:9f:a4:fb: 02:a7:4c:e2:f8:e1:ba:80:0a:88:a2:4a:12:c6:78: bf:31:14:78:f4:03:26:92:dd:07:cb:81:72:59:d1: bf:c7:00:5d:8c:b3:4a:9e:1a:32:8f:18:0e:a3:11: 6a:5a:b5:c6:50:36:8c:d5:3d:1e:63:37:86:aa:32: ad:61:47:4a:2b:b9:8a:54:ac:91:c8:37:ed:2a:7d: 45:8e:34:89:65:7e:7c:21:29:b2:07:44:55:c0:63: 10:3f:79:84:98:92:3b:07:fd:6a:9d:6c:ae:e8:0a: 4e:9c:90:0c:30:e0:5f:0e:d8:20:f1:dc:3c:52:77: 4a:b4:85:6e:cf:45:21:5d:06:c2:c2:1d:75:74:19: a3:df:fe:9b:18:96:a4:34:ba:cb:ba:cb:52:6f:90: 15:33:3e:8e:b2:20:48:d1:fc:ad:d3:06:2c:cd:5f: 13:5b:e3:de:0d:c5:04:19:76:15:8d:97:a9:e6:3a: 0d:3e:b3:bd:e6:61:fa:2a:fe:c9:96:35:e0:8a:ba: 75:7e:1d:fb:b0:0e:6c:30:da:71:c1:30:df:eb:b4: 9b:ed:e0:f7:ec:26:70:70:75:9c:8c:60:16:77:0f: 69:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:B9:1C:C2:8C:5C:B5:E2:6E:7D:1A:1D:9B:06:37:15:9A:E3:A5:28 X509v3 Authority Key Identifier: keyid:73:D9:00:92:4E:70:15:48:E6:E3:20:38:80:F6:C0:97:2A:4C:29:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C9E72/E6B44902848011EFAAD8E233C4F9AE02/c9kAkk5wFUjm4yA4gPbAlypMKRo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/c9kAkk5wFUjm4yA4gPbAlypMKRo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C9E72/E6B44902848011EFAAD8E233C4F9AE02/c9kAkk5wFUjm4yA4gPbAlypMKRo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 32:5f:02:6a:9c:2a:62:0f:a8:e0:44:e3:96:6e:9f:fb:c1:55: 7b:d6:10:71:13:9d:37:16:26:13:0c:f6:9c:6e:ce:4e:14:1d: 20:fd:c2:0b:65:f7:f7:c0:79:39:9a:11:3b:93:bb:71:ef:0a: e5:8a:62:b4:61:3b:45:bf:75:f9:69:62:37:a5:d9:86:90:7c: 7c:83:50:9e:44:4e:95:42:1c:16:7d:53:dd:1e:91:9b:0d:41: 7f:ed:79:ac:7e:6f:42:66:9d:07:13:9b:5c:80:07:b7:6c:42: ad:52:1a:65:f8:3d:95:b6:19:38:05:a5:f5:00:00:a2:00:d5: aa:c2:b0:d8:c0:66:ba:82:6e:8e:27:72:0b:05:6c:1a:f4:86: fc:7d:e1:a4:98:9a:c3:79:5e:b4:74:b5:fb:0e:f5:fd:c8:a2: 91:ed:62:6c:97:e2:9c:1d:43:44:f5:e7:a9:0a:73:38:29:dc: 6a:0c:39:48:fd:41:c0:78:cc:bb:ff:ea:57:96:dd:2a:16:11: ed:ce:5c:b6:02:24:cb:41:45:96:f8:bf:10:a8:06:a7:fc:c6: 3b:2c:cd:48:c7:ca:cd:ed:aa:30:45:3d:b6:18:fd:48:f4:17: 65:bc:2c:0d:aa:d9:bd:9d:91:c2:39:45:f7:ab:68:3b:df:b7: e3:13:e9:ec -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBHjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD OUU3MjExMC8GA1UEBRMoNzNEOTAwOTI0RTcwMTU0OEU2RTMyMDM4ODBGNkMwOTcy QTRDMjkxQTAeFw0yNDExMjMwNTUwNDBaFw0yNDExMzAwNTUwNDBaMBgxFjAUBgNV BAMTDTY3NDE2ZDMwLTJkMzkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDmDwFevm9/t7dKYaU3ftWTa3SEdShl7PZoVJ+k+wKnTOL44bqACoiiShLGeL8x FHj0AyaS3QfLgXJZ0b/HAF2Ms0qeGjKPGA6jEWpatcZQNozVPR5jN4aqMq1hR0or uYpUrJHIN+0qfUWONIllfnwhKbIHRFXAYxA/eYSYkjsH/WqdbK7oCk6ckAww4F8O 2CDx3DxSd0q0hW7PRSFdBsLCHXV0GaPf/psYlqQ0usu6y1JvkBUzPo6yIEjR/K3T BizNXxNb494NxQQZdhWNl6nmOg0+s73mYfoq/smWNeCKunV+HfuwDmww2nHBMN/r tJvt4PfsJnBwdZyMYBZ3D2mPAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUsrkcwoxc teJufRodmwY3FZrjpSgwHwYDVR0jBBgwFoAUc9kAkk5wFUjm4yA4gPbAlypMKRow DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUM5RTcyL0U2QjQ0OTAyODQ4 MDExRUZBQUQ4RTIzM0M0RjlBRTAyL2M5a0FrazV3RlVqbTR5QTRnUGJBbHlwTUtS by5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvYzlrQWtrNXdGVWptNHlBNGdQYkFseXBNS1JvLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUM5 RTcyL0U2QjQ0OTAyODQ4MDExRUZBQUQ4RTIzM0M0RjlBRTAyL2M5a0FrazV3RlVq bTR5QTRnUGJBbHlwTUtSby5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBADJfAmqcKmIPqOBE45Zun/vBVXvWEHETnTcWJhMM9pxuzk4UHSD9wgtl 9/fAeTmaETuTu3HvCuWKYrRhO0W/dflpYjel2YaQfHyDUJ5ETpVCHBZ9U90ekZsN QX/teax+b0JmnQcTm1yAB7dsQq1SGmX4PZW2GTgFpfUAAKIA1arCsNjAZrqCbo4n cgsFbBr0hvx94aSYmsN5XrR0tfsO9f3IopHtYmyX4pwdQ0T156kKczgp3GoMOUj9 QcB4zLv/6leW3SoWEe3OXLYCJMtBRZb4vxCoBqf8xjsszUjHys3tqjBFPbYY/Uj0 F2W8LA2q2b2dkcI5RferaDvft+MT6ew= -----END CERTIFICATE-----Generated at Sat Nov 23 07:45:05 2024 by rpki-client on console-ams.rpki-client.org