$ rpki-client -vvf rpki.apnic.net/member_repository/A91CD40B/741A1E2C855B11EFB0576D40C4F9AE02/aLMj2oThIFRmzrWv19YHcmdbBTE.mft File: aLMj2oThIFRmzrWv19YHcmdbBTE.mft (raw, json) Hash identifier: OSGrBoR03wTqTN/v4lMxouhy+8kO73EJq1wjvaYm4Y4= Subject key identifier: 0C:05:81:D1:54:15:E3:CA:04:26:01:0B:FA:C0:BD:77:79:80:16:00 Authority key identifier: 68:B3:23:DA:84:E1:20:54:66:CE:B5:AF:D7:D6:07:72:67:5B:05:31 Certificate issuer: /CN=A91CD40B/serialNumber=68B323DA84E1205466CEB5AFD7D60772675B0531 Certificate serial: 1B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aLMj2oThIFRmzrWv19YHcmdbBTE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CD40B/741A1E2C855B11EFB0576D40C4F9AE02/aLMj2oThIFRmzrWv19YHcmdbBTE.mft Manifest number: 1B Signing time: Mon 25 Nov 2024 05:50:40 +0000 Manifest this update: Mon 25 Nov 2024 05:50:40 +0000 Manifest next update: Mon 02 Dec 2024 05:50:40 +0000 Files and hashes: 1: aLMj2oThIFRmzrWv19YHcmdbBTE.crl (hash: BgA5dcihE5h5CZCufsFjFc5y8a2F8XQZiLE0ooHu2eM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CD40B/741A1E2C855B11EFB0576D40C4F9AE02/aLMj2oThIFRmzrWv19YHcmdbBTE.crl rsync://rpki.apnic.net/member_repository/A91CD40B/741A1E2C855B11EFB0576D40C4F9AE02/aLMj2oThIFRmzrWv19YHcmdbBTE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aLMj2oThIFRmzrWv19YHcmdbBTE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 02 Dec 2024 05:31:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27 (0x1b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CD40B/serialNumber=68B323DA84E1205466CEB5AFD7D60772675B0531 Validity Not Before: Nov 25 05:50:40 2024 GMT Not After : Dec 2 05:50:40 2024 GMT Subject: CN=67441030-30a9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:3b:76:a1:65:18:a6:eb:f0:72:47:9f:81:45: 3f:23:6a:da:a1:6f:79:aa:0b:14:8d:a6:1e:c8:a4: 01:bf:df:af:7d:88:a9:63:5a:c2:ca:0c:13:ef:3e: b8:8f:f3:86:16:6c:fd:25:6c:0d:4e:2d:11:d9:32: 85:06:92:2b:34:08:ba:48:91:54:9d:7c:cf:40:96: 3a:fd:17:86:8d:bd:b4:c9:15:a9:11:45:10:5b:6e: bf:7d:94:e2:a2:76:62:51:34:28:e4:0f:65:13:9e: 73:23:86:81:45:75:85:7d:c4:9a:d1:8d:57:c7:ee: 44:9e:45:8c:75:02:37:a3:cd:af:3a:ec:1f:a1:8c: e2:ca:c6:33:d9:b0:62:f7:63:ce:2c:6f:d3:13:01: c0:0c:e5:fb:49:3c:31:0a:cd:41:08:58:44:4b:02: cd:b5:66:e0:3a:b7:5d:2f:f7:3e:0b:ac:7b:54:ed: 05:5a:07:ee:b8:71:07:90:72:7f:83:1e:41:1b:3a: fa:6a:b8:6f:26:d9:cd:e6:8b:6b:37:d8:19:48:c7: 0b:f8:95:47:01:53:11:16:e2:51:fb:8d:d7:59:3c: 75:3e:95:11:0a:7c:0d:5a:66:25:37:c3:7c:89:bf: 66:de:ec:d0:d3:4b:58:af:20:99:58:71:58:06:bb: 39:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:05:81:D1:54:15:E3:CA:04:26:01:0B:FA:C0:BD:77:79:80:16:00 X509v3 Authority Key Identifier: keyid:68:B3:23:DA:84:E1:20:54:66:CE:B5:AF:D7:D6:07:72:67:5B:05:31 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CD40B/741A1E2C855B11EFB0576D40C4F9AE02/aLMj2oThIFRmzrWv19YHcmdbBTE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aLMj2oThIFRmzrWv19YHcmdbBTE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CD40B/741A1E2C855B11EFB0576D40C4F9AE02/aLMj2oThIFRmzrWv19YHcmdbBTE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption af:5e:88:2c:3c:d6:02:26:89:0c:89:80:6a:f2:b5:c4:a6:72: 7e:ae:d9:38:1d:4b:c2:8f:dd:5b:18:1c:b0:7e:1a:40:94:14: a2:18:95:fb:14:5e:32:53:f9:7b:25:5c:48:fe:65:16:66:cf: 2c:46:7e:47:06:e7:0f:a1:4b:3b:fb:28:ca:6e:8a:b6:a9:34: 9a:78:5d:b8:4c:4a:52:42:d9:e0:2c:4b:4e:73:2b:a5:5c:51: 0b:47:2b:e1:dd:5a:62:e1:c5:36:2b:2b:90:50:6d:96:78:46: bf:00:3a:e7:14:e8:b1:2e:5d:09:65:f6:a8:4f:c9:59:d5:9b: 9c:19:b1:1d:bc:e4:07:48:86:64:4a:15:aa:b0:18:3e:04:a7: cf:01:6a:41:c2:45:ee:99:20:5f:8d:15:d9:9d:bc:21:0a:a7: 1e:b1:90:97:bb:ef:0b:3c:10:47:6e:bd:1d:8a:04:08:f5:38: 68:46:9f:f1:26:d7:7b:3e:fc:02:cc:fc:8a:16:f9:95:fb:b4: 08:ad:a9:a2:26:1e:91:bf:73:3a:c2:1b:20:1c:a7:55:45:be: 4f:60:65:71:f9:4b:33:d3:33:bb:df:73:06:07:a0:19:28:25: 57:28:08:75:dc:e3:cf:3d:62:81:53:96:17:20:7d:a3:10:f5: 0a:ec:a0:4f -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBGzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD RDQwQjExMC8GA1UEBRMoNjhCMzIzREE4NEUxMjA1NDY2Q0VCNUFGRDdENjA3NzI2 NzVCMDUzMTAeFw0yNDExMjUwNTUwNDBaFw0yNDEyMDIwNTUwNDBaMBgxFjAUBgNV BAMTDTY3NDQxMDMwLTMwYTkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDcO3ahZRim6/ByR5+BRT8jatqhb3mqCxSNph7IpAG/3699iKljWsLKDBPvPriP 84YWbP0lbA1OLRHZMoUGkis0CLpIkVSdfM9Aljr9F4aNvbTJFakRRRBbbr99lOKi dmJRNCjkD2UTnnMjhoFFdYV9xJrRjVfH7kSeRYx1Ajejza867B+hjOLKxjPZsGL3 Y84sb9MTAcAM5ftJPDEKzUEIWERLAs21ZuA6t10v9z4LrHtU7QVaB+64cQeQcn+D HkEbOvpquG8m2c3mi2s32BlIxwv4lUcBUxEW4lH7jddZPHU+lREKfA1aZiU3w3yJ v2be7NDTS1ivIJlYcVgGuzkzAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUDAWB0VQV 48oEJgEL+sC9d3mAFgAwHwYDVR0jBBgwFoAUaLMj2oThIFRmzrWv19YHcmdbBTEw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUNENDBCLzc0MUExRTJDODU1 QjExRUZCMDU3NkQ0MEM0RjlBRTAyL2FMTWoyb1RoSUZSbXpyV3YxOVlIY21kYkJU RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvYUxNajJvVGhJRlJtenJXdjE5WUhjbWRiQlRFLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUNE NDBCLzc0MUExRTJDODU1QjExRUZCMDU3NkQ0MEM0RjlBRTAyL2FMTWoyb1RoSUZS bXpyV3YxOVlIY21kYkJURS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAK9eiCw81gImiQyJgGrytcSmcn6u2TgdS8KP3VsYHLB+GkCUFKIYlfsU XjJT+XslXEj+ZRZmzyxGfkcG5w+hSzv7KMpuirapNJp4XbhMSlJC2eAsS05zK6Vc UQtHK+HdWmLhxTYrK5BQbZZ4Rr8AOucU6LEuXQll9qhPyVnVm5wZsR285AdIhmRK FaqwGD4Ep88BakHCRe6ZIF+NFdmdvCEKpx6xkJe77ws8EEduvR2KBAj1OGhGn/Em 13s+/ALM/IoW+ZX7tAitqaImHpG/czrCGyAcp1VFvk9gZXH5SzPTM7vfcwYHoBko JVcoCHXc4889YoFTlhcgfaMQ9QrsoE8= -----END CERTIFICATE-----Generated at Mon Nov 25 07:19:52 2024 by rpki-client on console-ams.rpki-client.org