$ rpki-client -vvf rpki.apnic.net/member_repository/A91CB8BA/2B732E70BA8511EABA838E30C4F9AE02/RwqTRJ5hH6mtBaKJ1hiCILX8_Do.mft File: RwqTRJ5hH6mtBaKJ1hiCILX8_Do.mft (raw, json) Hash identifier: 3ga4Hn2x6ynExDB4j/E3CbMZOrZx5fDa5EUoFOKwZqA= Subject key identifier: AF:47:83:5D:1B:F6:D3:7E:B9:E7:2D:54:3D:08:03:8A:BF:BF:CB:F5 Authority key identifier: 47:0A:93:44:9E:61:1F:A9:AD:05:A2:89:D6:18:82:20:B5:FC:FC:3A Certificate issuer: /CN=A91CB8BA/serialNumber=470A93449E611FA9AD05A289D6188220B5FCFC3A Certificate serial: 0863 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RwqTRJ5hH6mtBaKJ1hiCILX8_Do.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CB8BA/2B732E70BA8511EABA838E30C4F9AE02/RwqTRJ5hH6mtBaKJ1hiCILX8_Do.mft Manifest number: 0853 Signing time: Wed 20 Nov 2024 20:24:32 +0000 Manifest this update: Wed 20 Nov 2024 20:24:32 +0000 Manifest next update: Wed 27 Nov 2024 20:24:32 +0000 Files and hashes: 1: RwqTRJ5hH6mtBaKJ1hiCILX8_Do.crl (hash: sbzG00bHM4CRnFxE4TtixwzMVsdoxXLMuHkPxJPYGpw=) 2: 465DBB30BA8811EAAF996D39C4F9AE02.roa (hash: du/ABNiztJ+wl4AYQemdjr1Syqe2MqjRsEOHqvNS/Lw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CB8BA/2B732E70BA8511EABA838E30C4F9AE02/RwqTRJ5hH6mtBaKJ1hiCILX8_Do.crl rsync://rpki.apnic.net/member_repository/A91CB8BA/2B732E70BA8511EABA838E30C4F9AE02/RwqTRJ5hH6mtBaKJ1hiCILX8_Do.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RwqTRJ5hH6mtBaKJ1hiCILX8_Do.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 19:45:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2147 (0x863) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CB8BA/serialNumber=470A93449E611FA9AD05A289D6188220B5FCFC3A Validity Not Before: Nov 20 20:24:32 2024 GMT Not After : Nov 27 20:24:32 2024 GMT Subject: CN=673e4580-86ae Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:c7:49:d5:1c:4b:2c:bd:14:82:e1:64:b0:cb: 0a:d5:10:9e:8d:83:ed:c2:45:bd:18:ae:ab:5d:7e: 38:a0:3e:71:d7:09:c1:ac:be:17:60:df:39:ca:89: 82:74:26:18:e4:a6:9d:76:b7:07:b1:75:63:1f:ca: 2c:6a:72:65:e8:64:76:8b:43:dd:76:66:a4:0e:0d: cd:68:06:c5:0f:74:34:1b:42:06:f8:33:c1:f2:9c: e2:57:84:57:07:71:91:6e:f0:2c:d2:49:21:71:a7: 00:0b:ab:79:62:42:47:6e:76:1b:5b:91:59:5f:d1: 85:f0:79:14:cb:f1:91:f1:90:08:12:0b:9d:7f:82: ce:b4:0b:31:c4:29:2d:02:39:f1:a2:12:3a:ac:2e: 61:0a:dc:84:71:5e:ee:f8:fa:96:89:bc:dc:d8:06: 4f:2a:db:29:9d:80:1e:02:8a:d1:f1:fd:25:4a:44: 25:ca:65:04:83:1c:d7:69:57:ee:ad:81:4e:b6:fe: ef:7b:0a:d7:d3:45:f1:2a:73:1e:3b:6d:38:f3:15: 3b:0a:13:68:4f:cf:ae:60:aa:71:fd:92:e6:93:5e: db:a3:b4:3f:23:bb:22:61:c5:92:ab:da:32:f0:4c: c2:b8:a8:8b:01:55:ed:16:7b:f4:b2:c0:88:a1:de: d7:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:47:83:5D:1B:F6:D3:7E:B9:E7:2D:54:3D:08:03:8A:BF:BF:CB:F5 X509v3 Authority Key Identifier: keyid:47:0A:93:44:9E:61:1F:A9:AD:05:A2:89:D6:18:82:20:B5:FC:FC:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CB8BA/2B732E70BA8511EABA838E30C4F9AE02/RwqTRJ5hH6mtBaKJ1hiCILX8_Do.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RwqTRJ5hH6mtBaKJ1hiCILX8_Do.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CB8BA/2B732E70BA8511EABA838E30C4F9AE02/RwqTRJ5hH6mtBaKJ1hiCILX8_Do.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 52:e8:f3:e4:83:0c:28:e9:b0:03:1b:90:4f:af:60:58:31:09: 79:9e:df:f3:ac:62:d3:b0:7a:ee:c9:57:87:48:db:7e:64:f6: c5:6d:3d:25:c1:bc:72:28:d8:f7:2e:45:be:0c:4f:b7:06:0d: 6d:1f:68:06:6c:75:cd:e6:1b:0c:74:2a:66:fa:e5:d3:31:4b: d7:a8:09:79:d5:6b:37:2b:93:15:b2:3f:8e:18:73:7a:83:0c: 83:ff:bb:67:56:52:09:81:10:2b:06:21:c8:86:ec:51:5d:8f: 98:01:a9:ae:c2:79:cc:66:d8:0b:35:89:52:7f:e2:28:8e:1d: ed:d1:c9:5d:55:3e:82:7d:f0:12:55:b0:47:9b:d5:f3:77:da: 0e:64:ce:50:81:f9:70:16:d5:64:4d:e9:d8:23:c4:1f:1f:7c: 47:39:92:25:c3:e7:23:6b:d3:41:1f:d6:1b:c2:1e:eb:51:65: d4:12:42:e6:74:91:d0:e3:82:86:1f:8f:ef:43:88:f1:3c:0e: 91:c3:c6:0a:4f:03:42:f3:04:58:14:e2:46:1a:15:6f:e4:37: ad:7c:cb:a8:be:ef:5c:fa:83:21:c4:4c:b9:e6:c9:c6:dd:89: 97:01:22:6c:03:eb:18:f7:24:54:54:3d:cb:3d:3c:9d:0b:9e: 2e:12:9d:2b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCGMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0I4QkExMTAvBgNVBAUTKDQ3MEE5MzQ0OUU2MTFGQTlBRDA1QTI4OUQ2MTg4MjIw QjVGQ0ZDM0EwHhcNMjQxMTIwMjAyNDMyWhcNMjQxMTI3MjAyNDMyWjAYMRYwFAYD VQQDEw02NzNlNDU4MC04NmFlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA38dJ1RxLLL0UguFksMsK1RCejYPtwkW9GK6rXX44oD5x1wnBrL4XYN85yomC dCYY5KaddrcHsXVjH8osanJl6GR2i0PddmakDg3NaAbFD3Q0G0IG+DPB8pziV4RX B3GRbvAs0kkhcacAC6t5YkJHbnYbW5FZX9GF8HkUy/GR8ZAIEgudf4LOtAsxxCkt AjnxohI6rC5hCtyEcV7u+PqWibzc2AZPKtspnYAeAorR8f0lSkQlymUEgxzXaVfu rYFOtv7vewrX00XxKnMeO2048xU7ChNoT8+uYKpx/ZLmk17bo7Q/I7siYcWSq9oy 8EzCuKiLAVXtFnv0ssCIod7XlwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFK9Hg10b 9tN+uectVD0IA4q/v8v1MB8GA1UdIwQYMBaAFEcKk0SeYR+prQWiidYYgiC1/Pw6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQjhCQS8yQjczMkU3MEJB ODUxMUVBQkE4MzhFMzBDNEY5QUUwMi9Sd3FUUko1aEg2bXRCYUtKMWhpQ0lMWDhf RG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1J3cVRSSjVoSDZtdEJhS0oxaGlDSUxYOF9Eby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD QjhCQS8yQjczMkU3MEJBODUxMUVBQkE4MzhFMzBDNEY5QUUwMi9Sd3FUUko1aEg2 bXRCYUtKMWhpQ0lMWDhfRG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBS6PPkgwwo6bADG5BPr2BYMQl5nt/zrGLTsHruyVeHSNt+ZPbFbT0l wbxyKNj3LkW+DE+3Bg1tH2gGbHXN5hsMdCpm+uXTMUvXqAl51Ws3K5MVsj+OGHN6 gwyD/7tnVlIJgRArBiHIhuxRXY+YAamuwnnMZtgLNYlSf+Iojh3t0cldVT6CffAS VbBHm9Xzd9oOZM5QgflwFtVkTenYI8QfH3xHOZIlw+cja9NBH9Ybwh7rUWXUEkLm dJHQ44KGH4/vQ4jxPA6Rw8YKTwNC8wRYFOJGGhVv5DetfMuovu9c+oMhxEy55snG 3YmXASJsA+sY9yRUVD3LPTydC54uEp0r -----END CERTIFICATE-----Generated at Wed Nov 20 21:35:02 2024 by rpki-client on console-ams.rpki-client.org