$ rpki-client -vvf rpki.apnic.net/member_repository/A91CD096/E5042C2ACA3211E9A739B753C4F9AE02/Ci5d8bLD15feoVNn-qncOITNGzM.mft File: Ci5d8bLD15feoVNn-qncOITNGzM.mft (raw, json) Hash identifier: X5deoUMhfJO4RsuAvAyAUGXmfWns9XZcxGO9O0st1G4= Subject key identifier: 8D:73:F5:3E:8E:EA:F3:83:28:E8:01:A0:BF:9C:22:6A:BA:15:26:93 Authority key identifier: 0A:2E:5D:F1:B2:C3:D7:97:DE:A1:53:67:FA:A9:DC:38:84:CD:1B:33 Certificate issuer: /CN=A91CD096/serialNumber=0A2E5DF1B2C3D797DEA15367FAA9DC3884CD1B33 Certificate serial: 0D1C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ci5d8bLD15feoVNn-qncOITNGzM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CD096/E5042C2ACA3211E9A739B753C4F9AE02/Ci5d8bLD15feoVNn-qncOITNGzM.mft Manifest number: 0D12 Signing time: Fri 22 Nov 2024 17:58:48 +0000 Manifest this update: Fri 22 Nov 2024 17:58:48 +0000 Manifest next update: Fri 29 Nov 2024 17:58:48 +0000 Files and hashes: 1: Ci5d8bLD15feoVNn-qncOITNGzM.crl (hash: ScwnfdFpHzT4G0wD415vHlh8ouZTumvkgJlSA0+Y9z0=) 2: F4B8310CFC3511EB8D17450AC4F9AE02.roa (hash: 76KLiTJFCiPr4RQVE2/WVukIFpeZPQCC1K72TsdrRZA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CD096/E5042C2ACA3211E9A739B753C4F9AE02/Ci5d8bLD15feoVNn-qncOITNGzM.crl rsync://rpki.apnic.net/member_repository/A91CD096/E5042C2ACA3211E9A739B753C4F9AE02/Ci5d8bLD15feoVNn-qncOITNGzM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ci5d8bLD15feoVNn-qncOITNGzM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 17:58:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3356 (0xd1c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CD096/serialNumber=0A2E5DF1B2C3D797DEA15367FAA9DC3884CD1B33 Validity Not Before: Nov 22 17:58:48 2024 GMT Not After : Nov 29 17:58:48 2024 GMT Subject: CN=6740c658-9d1f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:8d:aa:db:cc:78:0f:c3:d3:3d:c5:ba:9c:73: 34:42:41:48:e4:64:65:62:9f:3f:d5:53:a1:6c:ea: 9a:f5:d1:29:19:6c:de:61:c8:58:1a:cf:fe:c0:e7: a4:0d:68:f0:a2:7c:9c:54:7e:dd:0d:92:b7:c5:75: f8:b3:bf:04:9c:ff:12:dc:61:0d:30:21:09:39:36: 59:0a:12:d0:c6:98:18:e2:d4:ec:ee:b4:68:56:a1: 06:03:27:d5:48:3c:09:15:5a:40:30:91:6f:55:4c: 4d:15:a5:97:cb:73:90:d4:32:e9:71:24:d0:5c:06: 15:c1:e6:7f:9f:ad:dc:46:7c:de:2b:53:76:32:ac: f5:5a:40:53:66:b2:58:08:d9:35:a7:3f:66:3e:ab: f9:a1:84:0e:9c:cc:bf:d7:88:6a:fb:e5:69:f1:3b: c9:cf:8f:63:02:66:d9:82:6a:f4:83:a5:6e:e6:11: 0f:ff:96:96:72:da:a0:e8:e6:64:cf:d4:04:9d:43: ca:2b:3d:50:cc:aa:ca:db:9c:6e:10:49:94:05:05: 0f:b8:57:76:64:d0:e1:82:3e:95:58:13:32:d2:da: 38:21:63:6a:f3:64:ee:7e:02:8a:85:bf:6d:c8:b1: 87:3e:91:a1:e8:c7:51:7e:93:59:68:90:60:51:eb: 7e:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:73:F5:3E:8E:EA:F3:83:28:E8:01:A0:BF:9C:22:6A:BA:15:26:93 X509v3 Authority Key Identifier: keyid:0A:2E:5D:F1:B2:C3:D7:97:DE:A1:53:67:FA:A9:DC:38:84:CD:1B:33 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CD096/E5042C2ACA3211E9A739B753C4F9AE02/Ci5d8bLD15feoVNn-qncOITNGzM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ci5d8bLD15feoVNn-qncOITNGzM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CD096/E5042C2ACA3211E9A739B753C4F9AE02/Ci5d8bLD15feoVNn-qncOITNGzM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3e:0c:b7:e1:2b:6f:74:78:ad:50:c8:7d:2a:7b:6f:cd:e0:16: fa:07:de:6e:73:a6:ad:27:bb:f1:a8:ed:5e:06:d3:9f:d6:12: 8a:43:af:1b:bb:2c:38:f3:a0:53:bc:9a:c8:96:07:67:69:b1: a2:3c:92:09:91:d5:aa:69:d3:71:3d:88:c7:77:b2:86:cd:a7: 74:4c:42:6f:7b:94:1b:fb:2a:fd:c3:c9:05:2a:5d:46:de:98: c4:73:0b:78:e7:c8:aa:31:fd:9e:81:c1:88:05:c1:24:61:c8: cd:f9:5c:36:39:de:04:31:8c:43:2a:90:18:30:5d:82:4e:2f: 05:f8:50:aa:2a:94:14:7d:b0:5b:a5:ed:05:a5:87:ae:56:da: 45:7c:bb:41:2c:d8:35:5a:44:eb:a1:7d:ec:33:e3:70:bf:2d: a8:50:74:26:3a:85:0c:10:15:a8:7d:35:25:84:43:53:92:51: 6b:55:c8:86:05:24:ec:17:1d:9b:b9:63:53:5c:78:1b:21:9e: 2a:db:85:d6:84:85:ad:45:b1:99:a0:22:39:25:da:94:d5:55: 24:e9:08:22:d9:4b:7e:f0:2d:9e:e1:58:b1:25:01:e8:9a:69: d6:11:fd:b8:6b:2f:85:eb:71:b2:53:f9:b9:c2:5f:a7:30:d2: fe:32:61:f9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDRwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0QwOTYxMTAvBgNVBAUTKDBBMkU1REYxQjJDM0Q3OTdERUExNTM2N0ZBQTlEQzM4 ODRDRDFCMzMwHhcNMjQxMTIyMTc1ODQ4WhcNMjQxMTI5MTc1ODQ4WjAYMRYwFAYD VQQDEw02NzQwYzY1OC05ZDFmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3o2q28x4D8PTPcW6nHM0QkFI5GRlYp8/1VOhbOqa9dEpGWzeYchYGs/+wOek DWjwonycVH7dDZK3xXX4s78EnP8S3GENMCEJOTZZChLQxpgY4tTs7rRoVqEGAyfV SDwJFVpAMJFvVUxNFaWXy3OQ1DLpcSTQXAYVweZ/n63cRnzeK1N2Mqz1WkBTZrJY CNk1pz9mPqv5oYQOnMy/14hq++Vp8TvJz49jAmbZgmr0g6Vu5hEP/5aWctqg6OZk z9QEnUPKKz1QzKrK25xuEEmUBQUPuFd2ZNDhgj6VWBMy0to4IWNq82TufgKKhb9t yLGHPpGh6MdRfpNZaJBgUet+swIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFI1z9T6O 6vODKOgBoL+cImq6FSaTMB8GA1UdIwQYMBaAFAouXfGyw9eX3qFTZ/qp3DiEzRsz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRDA5Ni9FNTA0MkMyQUNB MzIxMUU5QTczOUI3NTNDNEY5QUUwMi9DaTVkOGJMRDE1ZmVvVk5uLXFuY09JVE5H ek0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NpNWQ4YkxEMTVmZW9WTm4tcW5jT0lUTkd6TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RDA5Ni9FNTA0MkMyQUNBMzIxMUU5QTczOUI3NTNDNEY5QUUwMi9DaTVkOGJMRDE1 ZmVvVk5uLXFuY09JVE5Hek0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA+DLfhK290eK1QyH0qe2/N4Bb6B95uc6atJ7vxqO1eBtOf1hKKQ68b uyw486BTvJrIlgdnabGiPJIJkdWqadNxPYjHd7KGzad0TEJve5Qb+yr9w8kFKl1G 3pjEcwt458iqMf2egcGIBcEkYcjN+Vw2Od4EMYxDKpAYMF2CTi8F+FCqKpQUfbBb pe0FpYeuVtpFfLtBLNg1WkTroX3sM+Nwvy2oUHQmOoUMEBWofTUlhENTklFrVciG BSTsFx2buWNTXHgbIZ4q24XWhIWtRbGZoCI5JdqU1VUk6Qgi2Ut+8C2e4VixJQHo mmnWEf24ay+F63GyU/m5wl+nMNL+MmH5 -----END CERTIFICATE-----Generated at Fri Nov 22 19:50:17 2024 by rpki-client on console-ams.rpki-client.org