$ rpki-client -vvf rpki.apnic.net/member_repository/A91CBDC8/669763F018E011EAA0C38E7BC4F9AE02/m2fIchTtmWVAcRkL688LjZ-hr04.mft File: m2fIchTtmWVAcRkL688LjZ-hr04.mft (raw, json) Hash identifier: YdaE5nJpFBxTxLsNb+VyKxuY9dWp+DGy1dp/8BDlkd8= Subject key identifier: E7:86:8F:0F:F0:C5:87:7B:8F:14:38:88:A4:1B:16:42:D5:0E:ED:82 Authority key identifier: 9B:67:C8:72:14:ED:99:65:40:71:19:0B:EB:CF:0B:8D:9F:A1:AF:4E Certificate issuer: /CN=A91CBDC8/serialNumber=9B67C87214ED99654071190BEBCF0B8D9FA1AF4E Certificate serial: 0B9D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m2fIchTtmWVAcRkL688LjZ-hr04.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CBDC8/669763F018E011EAA0C38E7BC4F9AE02/m2fIchTtmWVAcRkL688LjZ-hr04.mft Manifest number: 0B8B Signing time: Fri 22 Nov 2024 18:47:27 +0000 Manifest this update: Fri 22 Nov 2024 18:47:27 +0000 Manifest next update: Fri 29 Nov 2024 18:47:27 +0000 Files and hashes: 1: m2fIchTtmWVAcRkL688LjZ-hr04.crl (hash: A8mmScnXIiumE5GcWXu9nkI/DVwrfHdhSGnvS/75NAM=) 2: D5CA565EDFFD11EE97B62A3CC4F9AE02.roa (hash: fVvCznpXW6qnGN8NuPwfsmhlodEIIX2CleOocrP3LSs=) 3: D6AAA3B2DFFD11EE97B62A3CC4F9AE02.roa (hash: q8cGmT+t8au+UKuDCZxswiTd5/kAq6SR+g4dGKCxO/A=) 4: 10BAC44C646511EFBC52E778C4F9AE02.roa (hash: Z67/J9vff1oW6NI34pKliaQWv/9nuKIHlmULd9ZQaKg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CBDC8/669763F018E011EAA0C38E7BC4F9AE02/m2fIchTtmWVAcRkL688LjZ-hr04.crl rsync://rpki.apnic.net/member_repository/A91CBDC8/669763F018E011EAA0C38E7BC4F9AE02/m2fIchTtmWVAcRkL688LjZ-hr04.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m2fIchTtmWVAcRkL688LjZ-hr04.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 18:35:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2973 (0xb9d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CBDC8/serialNumber=9B67C87214ED99654071190BEBCF0B8D9FA1AF4E Validity Not Before: Nov 22 18:47:27 2024 GMT Not After : Nov 29 18:47:27 2024 GMT Subject: CN=6740d1bf-e0aa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:81:43:6d:f2:7f:c8:15:81:3d:80:a1:83:e5: d3:d3:c0:c0:6a:83:a5:64:2d:b8:07:ba:c5:26:a5: 6e:ff:da:2e:df:6f:f0:a9:c2:d1:44:e3:56:ec:de: f3:e3:fe:e8:4f:8d:78:55:ab:cd:fe:39:b8:00:1f: 15:4b:6d:20:ff:54:8f:52:4d:c8:d6:96:3c:ef:9e: ac:67:58:0f:a5:65:46:fc:6e:60:4e:18:7d:f8:aa: 17:44:d5:15:60:12:45:6a:b0:1a:3a:5b:b0:1e:a2: 11:5f:67:b2:2c:2a:0d:ae:24:9b:4d:54:ae:50:be: 2c:b7:90:1c:22:41:5c:95:81:b6:ca:01:86:3c:b0: 92:6d:a4:77:04:48:17:dc:e3:7e:b0:4a:3e:fa:af: c3:48:97:af:94:6b:7c:2c:2f:2a:e6:63:84:0c:ab: 04:b8:91:f6:72:2f:59:8f:5f:d3:a1:1c:7a:c8:61: a8:57:9d:fc:84:91:b5:c8:ec:a4:c4:d3:63:b7:22: 45:ae:0b:7b:19:11:7e:c7:22:cc:bf:5b:ce:d6:ce: b9:89:39:df:87:72:e3:42:f0:66:75:bd:ad:39:2e: 72:55:fd:03:a0:a8:83:72:37:4a:34:dd:36:92:15: ce:45:ca:85:40:d8:a2:4c:1d:02:31:3b:8b:2b:a4: f7:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:86:8F:0F:F0:C5:87:7B:8F:14:38:88:A4:1B:16:42:D5:0E:ED:82 X509v3 Authority Key Identifier: keyid:9B:67:C8:72:14:ED:99:65:40:71:19:0B:EB:CF:0B:8D:9F:A1:AF:4E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CBDC8/669763F018E011EAA0C38E7BC4F9AE02/m2fIchTtmWVAcRkL688LjZ-hr04.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m2fIchTtmWVAcRkL688LjZ-hr04.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CBDC8/669763F018E011EAA0C38E7BC4F9AE02/m2fIchTtmWVAcRkL688LjZ-hr04.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6b:ef:8d:38:f2:8d:b5:d4:ed:0b:63:1a:ce:5f:3b:45:70:6c: bd:47:38:83:92:e3:2c:22:db:95:48:b6:53:74:96:fc:d8:b6: ef:17:fb:d4:be:f4:46:d1:f1:80:8e:12:27:41:08:48:a2:aa: 14:7c:e9:f4:ec:18:7f:b6:69:5e:66:54:dc:74:92:03:88:01: 6f:85:4e:21:6f:e9:ca:08:12:5d:f5:eb:56:be:df:1d:91:31: da:c7:4f:24:91:d7:4b:51:d9:5d:bf:1d:a7:75:e1:a1:df:ec: 22:02:a1:55:ea:1f:64:7e:1c:f5:41:e9:82:c8:2e:df:9a:68: 26:6b:64:14:8c:a7:c4:97:40:ad:47:cf:a3:9b:09:a9:d4:10: d7:ea:b0:92:ae:49:c6:b3:96:67:a2:57:66:71:0c:1d:a4:8c: b1:e8:04:f2:fa:9e:2b:1c:ba:69:21:55:f9:c6:2b:70:3a:d7: 3b:6f:f0:89:17:1b:c2:06:32:a7:3f:7f:78:d7:84:6e:c8:3d: 8c:d0:9c:0e:18:3e:56:43:6c:2e:f5:8b:77:ed:09:ee:00:40: 2e:e2:59:e9:74:07:98:1d:ad:ad:49:16:2a:50:3f:01:e9:b0: a8:2e:41:d7:d3:64:36:d4:3f:ab:d5:64:54:18:4e:e7:f0:b3: 07:ea:bf:78 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC50wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0JEQzgxMTAvBgNVBAUTKDlCNjdDODcyMTRFRDk5NjU0MDcxMTkwQkVCQ0YwQjhE OUZBMUFGNEUwHhcNMjQxMTIyMTg0NzI3WhcNMjQxMTI5MTg0NzI3WjAYMRYwFAYD VQQDEw02NzQwZDFiZi1lMGFhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzIFDbfJ/yBWBPYChg+XT08DAaoOlZC24B7rFJqVu/9ou32/wqcLRRONW7N7z 4/7oT414VavN/jm4AB8VS20g/1SPUk3I1pY8756sZ1gPpWVG/G5gThh9+KoXRNUV YBJFarAaOluwHqIRX2eyLCoNriSbTVSuUL4st5AcIkFclYG2ygGGPLCSbaR3BEgX 3ON+sEo++q/DSJevlGt8LC8q5mOEDKsEuJH2ci9Zj1/ToRx6yGGoV538hJG1yOyk xNNjtyJFrgt7GRF+xyLMv1vO1s65iTnfh3LjQvBmdb2tOS5yVf0DoKiDcjdKNN02 khXORcqFQNiiTB0CMTuLK6T3eQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOeGjw/w xYd7jxQ4iKQbFkLVDu2CMB8GA1UdIwQYMBaAFJtnyHIU7ZllQHEZC+vPC42foa9O MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQkRDOC82Njk3NjNGMDE4 RTAxMUVBQTBDMzhFN0JDNEY5QUUwMi9tMmZJY2hUdG1XVkFjUmtMNjg4TGpaLWhy MDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL20yZkljaFR0bVdWQWNSa0w2ODhMalotaHIwNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD QkRDOC82Njk3NjNGMDE4RTAxMUVBQTBDMzhFN0JDNEY5QUUwMi9tMmZJY2hUdG1X VkFjUmtMNjg4TGpaLWhyMDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBr74048o211O0LYxrOXztFcGy9RziDkuMsItuVSLZTdJb82LbvF/vU vvRG0fGAjhInQQhIoqoUfOn07Bh/tmleZlTcdJIDiAFvhU4hb+nKCBJd9etWvt8d kTHax08kkddLUdldvx2ndeGh3+wiAqFV6h9kfhz1QemCyC7fmmgma2QUjKfEl0Ct R8+jmwmp1BDX6rCSrknGs5ZnoldmcQwdpIyx6ATy+p4rHLppIVX5xitwOtc7b/CJ FxvCBjKnP39414RuyD2M0JwOGD5WQ2wu9Yt37QnuAEAu4lnpdAeYHa2tSRYqUD8B 6bCoLkHX02Q21D+r1WRUGE7n8LMH6r94 -----END CERTIFICATE-----Generated at Fri Nov 22 19:50:17 2024 by rpki-client on console-ams.rpki-client.org