$ rpki-client -vvf rpki.apnic.net/member_repository/A91CB8BA/320901C4BA8511EABA838E30C4F9AE02/ki1g6hk5Zxd7xsOaQGhZijt1ptM.mft File: ki1g6hk5Zxd7xsOaQGhZijt1ptM.mft (raw, json) Hash identifier: ZfgPbBu4qAM3YVG9GyLF1PJ68zUN7dI9aK0DGBlXSIo= Subject key identifier: 9D:3E:99:32:EB:F3:56:BB:C5:94:67:A5:A5:8A:FA:AD:27:E6:D4:6F Authority key identifier: 92:2D:60:EA:19:39:67:17:7B:C6:C3:9A:40:68:59:8A:3B:75:A6:D3 Certificate issuer: /CN=A91CB8BA/serialNumber=922D60EA193967177BC6C39A4068598A3B75A6D3 Certificate serial: 084B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ki1g6hk5Zxd7xsOaQGhZijt1ptM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CB8BA/320901C4BA8511EABA838E30C4F9AE02/ki1g6hk5Zxd7xsOaQGhZijt1ptM.mft Manifest number: 0844 Signing time: Fri 22 Nov 2024 20:27:44 +0000 Manifest this update: Fri 22 Nov 2024 20:27:43 +0000 Manifest next update: Fri 29 Nov 2024 20:27:43 +0000 Files and hashes: 1: ki1g6hk5Zxd7xsOaQGhZijt1ptM.crl (hash: RWagOXjtK0OLkhsM0KqqEppNjkTWh2lRqFCOu2k68m4=) 2: 0B6B9DE6BAAE11EA8F1DA435C4F9AE02.roa (hash: tyyxw+5bE3FwtI8AaQTMQ/hBxm6hPpyY75mzwxt5W7s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CB8BA/320901C4BA8511EABA838E30C4F9AE02/ki1g6hk5Zxd7xsOaQGhZijt1ptM.crl rsync://rpki.apnic.net/member_repository/A91CB8BA/320901C4BA8511EABA838E30C4F9AE02/ki1g6hk5Zxd7xsOaQGhZijt1ptM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ki1g6hk5Zxd7xsOaQGhZijt1ptM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:27:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2123 (0x84b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CB8BA/serialNumber=922D60EA193967177BC6C39A4068598A3B75A6D3 Validity Not Before: Nov 22 20:27:43 2024 GMT Not After : Nov 29 20:27:43 2024 GMT Subject: CN=6740e93f-0cc1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:1e:b8:07:ee:80:96:19:6d:ee:3f:49:5e:db: b5:03:ad:14:06:71:0e:85:64:82:04:f7:6f:b3:4b: db:14:a6:c5:e9:31:2e:98:d0:b0:e0:93:31:ac:70: 8a:d4:d4:c0:e7:43:63:cd:54:4a:9f:93:1d:c1:c3: 12:84:2e:46:0d:fb:2e:de:cf:5d:f4:49:64:ff:13: df:ac:4b:ad:90:a3:07:6e:23:db:7a:73:01:f8:7f: d9:4b:30:6c:aa:1a:f4:7c:03:0b:ee:29:4c:cb:3c: 21:50:c1:c7:6d:9b:28:33:66:a0:08:29:13:44:d9: c1:e6:32:3f:72:65:71:3b:bb:6c:36:20:5c:74:74: 1a:17:e7:21:b9:88:f5:96:b7:8f:5d:5d:50:05:7b: cc:64:eb:9e:a9:fc:3a:6c:32:1b:cb:a3:9c:41:dc: 39:b2:73:a2:fa:ab:19:18:98:55:f5:53:a6:2e:67: 2d:3e:1b:10:74:26:42:c4:d4:67:68:9c:e9:f4:99: 02:1d:fb:cf:aa:75:87:e3:4f:61:41:6a:af:95:a1: 2a:2a:5d:96:b1:19:f2:12:eb:63:fe:e8:3c:87:05: 24:2c:31:ba:d8:4c:d8:6e:b1:e8:61:5c:be:70:6b: 97:63:53:e1:93:67:65:da:2c:5b:2a:e4:d7:22:67: 97:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:3E:99:32:EB:F3:56:BB:C5:94:67:A5:A5:8A:FA:AD:27:E6:D4:6F X509v3 Authority Key Identifier: keyid:92:2D:60:EA:19:39:67:17:7B:C6:C3:9A:40:68:59:8A:3B:75:A6:D3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CB8BA/320901C4BA8511EABA838E30C4F9AE02/ki1g6hk5Zxd7xsOaQGhZijt1ptM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ki1g6hk5Zxd7xsOaQGhZijt1ptM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CB8BA/320901C4BA8511EABA838E30C4F9AE02/ki1g6hk5Zxd7xsOaQGhZijt1ptM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 98:6e:50:cd:85:d2:1b:b8:e0:00:88:56:5e:d3:e9:22:4c:f1: 02:f6:1a:f8:48:1e:53:e2:d3:c4:f6:ec:5b:76:c7:5d:9d:6c: 84:5f:f8:6c:ea:e9:f2:20:31:10:0a:b5:2f:07:55:5f:13:c4: 3e:b4:eb:c4:e0:db:34:28:d7:0b:4d:79:43:22:b0:12:68:21: 70:d1:95:90:32:88:91:41:66:a6:d5:c9:77:1c:f8:fc:66:5d: 7e:54:71:a9:c9:d7:5e:0b:89:17:01:3e:91:4f:e6:9f:88:53: 7a:6a:0f:2e:e5:c0:64:f7:bd:aa:c7:0c:e3:18:73:0c:c9:6d: 9e:62:c6:23:61:c8:5c:30:d7:2a:83:62:cc:d2:3b:47:d0:22: d9:da:6d:c2:8a:89:ff:86:7c:6e:25:aa:45:36:bd:50:c8:c1: 01:57:9a:82:03:38:66:f5:05:2a:88:ed:86:3f:b3:1d:b1:ca: ba:71:83:e6:73:df:f2:ff:d0:6c:5c:07:e2:7c:b3:65:47:36: 0b:f5:07:10:db:70:bc:7e:53:79:ab:88:b2:e8:34:d2:b9:d5: f2:2c:78:cd:54:ef:2a:73:7e:14:c8:9f:78:75:6e:50:f0:0d: 9a:31:41:ff:03:75:d1:21:94:bc:8d:0e:61:2e:d6:53:c9:ba: f6:b7:7d:9c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCEswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0I4QkExMTAvBgNVBAUTKDkyMkQ2MEVBMTkzOTY3MTc3QkM2QzM5QTQwNjg1OThB M0I3NUE2RDMwHhcNMjQxMTIyMjAyNzQzWhcNMjQxMTI5MjAyNzQzWjAYMRYwFAYD VQQDEw02NzQwZTkzZi0wY2MxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArh64B+6Alhlt7j9JXtu1A60UBnEOhWSCBPdvs0vbFKbF6TEumNCw4JMxrHCK 1NTA50NjzVRKn5MdwcMShC5GDfsu3s9d9Elk/xPfrEutkKMHbiPbenMB+H/ZSzBs qhr0fAML7ilMyzwhUMHHbZsoM2agCCkTRNnB5jI/cmVxO7tsNiBcdHQaF+chuYj1 lrePXV1QBXvMZOueqfw6bDIby6OcQdw5snOi+qsZGJhV9VOmLmctPhsQdCZCxNRn aJzp9JkCHfvPqnWH409hQWqvlaEqKl2WsRnyEutj/ug8hwUkLDG62EzYbrHoYVy+ cGuXY1Phk2dl2ixbKuTXImeXdQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJ0+mTLr 81a7xZRnpaWK+q0n5tRvMB8GA1UdIwQYMBaAFJItYOoZOWcXe8bDmkBoWYo7dabT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQjhCQS8zMjA5MDFDNEJB ODUxMUVBQkE4MzhFMzBDNEY5QUUwMi9raTFnNmhrNVp4ZDd4c09hUUdoWmlqdDFw dE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tpMWc2aGs1WnhkN3hzT2FRR2haaWp0MXB0TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD QjhCQS8zMjA5MDFDNEJBODUxMUVBQkE4MzhFMzBDNEY5QUUwMi9raTFnNmhrNVp4 ZDd4c09hUUdoWmlqdDFwdE0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCYblDNhdIbuOAAiFZe0+kiTPEC9hr4SB5T4tPE9uxbdsddnWyEX/hs 6unyIDEQCrUvB1VfE8Q+tOvE4Ns0KNcLTXlDIrASaCFw0ZWQMoiRQWam1cl3HPj8 Zl1+VHGpyddeC4kXAT6RT+afiFN6ag8u5cBk972qxwzjGHMMyW2eYsYjYchcMNcq g2LM0jtH0CLZ2m3Cion/hnxuJapFNr1QyMEBV5qCAzhm9QUqiO2GP7Mdscq6cYPm c9/y/9BsXAfifLNlRzYL9QcQ23C8flN5q4iy6DTSudXyLHjNVO8qc34UyJ94dW5Q 8A2aMUH/A3XRIZS8jQ5hLtZTybr2t32c -----END CERTIFICATE-----Generated at Fri Nov 22 22:14:40 2024 by rpki-client on console-ams.rpki-client.org