$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE6C5/E8266020C6C011EC8AB7553FC4F9AE02/1Sj61Lh2q_twrziSIg8pPheRtrw.mft File: 1Sj61Lh2q_twrziSIg8pPheRtrw.mft (raw, json) Hash identifier: l4AzpoPiFe1VJFsXeeAdOVquhcFbERdDJzIlRLiFiT0= Subject key identifier: C7:AD:FC:F3:89:57:99:AE:C7:8D:C8:A1:CE:48:9C:B5:61:5A:F0:A6 Authority key identifier: D5:28:FA:D4:B8:76:AB:FB:70:AF:38:92:22:0F:29:3E:17:91:B6:BC Certificate issuer: /CN=A91CE6C5/serialNumber=D528FAD4B876ABFB70AF3892220F293E1791B6BC Certificate serial: 02D6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1Sj61Lh2q_twrziSIg8pPheRtrw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE6C5/E8266020C6C011EC8AB7553FC4F9AE02/1Sj61Lh2q_twrziSIg8pPheRtrw.mft Manifest number: 02CE Signing time: Mon 25 Nov 2024 00:48:35 +0000 Manifest this update: Mon 25 Nov 2024 00:48:35 +0000 Manifest next update: Mon 02 Dec 2024 00:48:35 +0000 Files and hashes: 1: 1Sj61Lh2q_twrziSIg8pPheRtrw.crl (hash: AIhKl6mplDwk/o28oWW6/3ITeFN7i2DQR3MEqdTOGLg=) 2: A0841A68D0D511EC81001E73C4F9AE02.roa (hash: HT+iJuMBxdgYK5g+jEQD2a03TeM+F29o6gZsZ/BsbjI=) 3: F0E906D6046C11EFBDB55E14C4F9AE02.roa (hash: +EvIAKSVcLLKRH7JM7c6If3efy9mrsYAMLXqlQEuIUY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE6C5/E8266020C6C011EC8AB7553FC4F9AE02/1Sj61Lh2q_twrziSIg8pPheRtrw.crl rsync://rpki.apnic.net/member_repository/A91CE6C5/E8266020C6C011EC8AB7553FC4F9AE02/1Sj61Lh2q_twrziSIg8pPheRtrw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1Sj61Lh2q_twrziSIg8pPheRtrw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Dec 2024 23:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 726 (0x2d6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE6C5/serialNumber=D528FAD4B876ABFB70AF3892220F293E1791B6BC Validity Not Before: Nov 25 00:48:35 2024 GMT Not After : Dec 2 00:48:35 2024 GMT Subject: CN=6743c963-2530 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:c1:d5:d4:6b:27:b9:8a:4c:e7:a3:fc:92:57: 1e:79:90:58:51:04:e6:2e:e0:ad:1a:e7:55:69:f2: 14:8a:3e:9d:29:ef:6a:74:00:78:40:2c:77:3a:25: af:d0:45:74:db:a1:ea:0c:d8:a1:51:72:3a:66:4f: f8:c5:81:2b:30:9b:54:b1:a5:e9:6e:c0:a5:32:ff: e9:26:f4:d4:fb:2c:91:35:db:42:78:2e:ea:f7:a9: 22:43:b0:bb:0d:d6:8e:94:85:79:59:e1:80:0b:74: 58:2d:f7:75:7e:fc:fc:a3:aa:c9:89:25:30:4f:5f: 53:29:92:e1:9b:40:7c:2f:da:5d:57:9a:36:b0:ac: 85:a3:8c:fd:34:da:2b:51:80:16:03:e2:38:80:39: f6:be:a8:9f:3c:6f:ac:35:b3:52:13:18:60:1c:db: 05:64:e3:ce:71:b0:4b:3b:0c:70:25:b8:e7:fd:e4: dc:12:75:13:a9:57:e8:83:41:08:2b:89:3d:e8:43: 44:dc:8c:62:d9:e5:d1:92:13:b2:0a:49:41:01:61: bd:e4:9d:ce:46:c5:a3:10:9e:ed:52:1e:ff:60:2b: 95:26:cf:c0:76:22:72:8e:6e:9f:19:7d:a1:b1:41: 49:d4:2d:c0:a2:3e:6c:47:6e:2e:46:57:fa:3a:5f: 74:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:AD:FC:F3:89:57:99:AE:C7:8D:C8:A1:CE:48:9C:B5:61:5A:F0:A6 X509v3 Authority Key Identifier: keyid:D5:28:FA:D4:B8:76:AB:FB:70:AF:38:92:22:0F:29:3E:17:91:B6:BC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE6C5/E8266020C6C011EC8AB7553FC4F9AE02/1Sj61Lh2q_twrziSIg8pPheRtrw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1Sj61Lh2q_twrziSIg8pPheRtrw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE6C5/E8266020C6C011EC8AB7553FC4F9AE02/1Sj61Lh2q_twrziSIg8pPheRtrw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c7:18:12:85:7a:1c:a8:8f:57:ab:16:9e:2e:28:a2:bd:c2:19: 20:31:cc:e4:12:49:e6:3c:42:72:79:a2:d3:85:83:9b:a9:f2: b9:5f:d9:b5:e8:22:8e:16:0b:c1:1f:a3:9b:81:cc:1c:6a:6b: 79:ee:32:6f:a2:01:9d:95:0d:5c:bf:6d:ef:fe:40:87:d5:87: df:5c:4a:ba:cf:d5:61:ea:36:94:ab:1a:ea:e3:b8:fb:f6:6e: 07:7a:ee:f3:eb:23:1c:00:bf:0e:f9:9a:ed:da:93:5f:93:38: 9f:4d:56:81:2e:f2:8e:8f:64:5b:da:ec:5d:7c:8d:32:26:73: da:ee:03:f1:ed:00:7a:90:c3:70:f7:ad:eb:f3:a8:18:fc:2b: bb:17:ff:b5:3e:ad:be:c2:a6:b9:e1:97:1b:24:a7:b3:13:5b: a5:c0:96:5f:02:b4:31:f4:87:43:f9:a1:13:6a:f3:da:cb:5d: e0:41:ce:9c:86:36:27:85:4c:3b:ee:49:f8:9a:e4:07:61:e5: 2e:9d:d3:69:74:b1:75:24:bf:75:c0:89:27:5a:0f:3b:9f:53: 92:59:14:e0:7f:ca:71:e6:ff:c7:58:8c:d5:47:24:f3:94:65: 11:9a:23:aa:b5:ce:2e:49:64:11:f9:33:38:77:69:93:46:4c: 49:b8:a2:c1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAtYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0U2QzUxMTAvBgNVBAUTKEQ1MjhGQUQ0Qjg3NkFCRkI3MEFGMzg5MjIyMEYyOTNF MTc5MUI2QkMwHhcNMjQxMTI1MDA0ODM1WhcNMjQxMjAyMDA0ODM1WjAYMRYwFAYD VQQDEw02NzQzYzk2My0yNTMwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyMHV1GsnuYpM56P8klceeZBYUQTmLuCtGudVafIUij6dKe9qdAB4QCx3OiWv 0EV026HqDNihUXI6Zk/4xYErMJtUsaXpbsClMv/pJvTU+yyRNdtCeC7q96kiQ7C7 DdaOlIV5WeGAC3RYLfd1fvz8o6rJiSUwT19TKZLhm0B8L9pdV5o2sKyFo4z9NNor UYAWA+I4gDn2vqifPG+sNbNSExhgHNsFZOPOcbBLOwxwJbjn/eTcEnUTqVfog0EI K4k96ENE3Ixi2eXRkhOyCklBAWG95J3ORsWjEJ7tUh7/YCuVJs/AdiJyjm6fGX2h sUFJ1C3Aoj5sR24uRlf6Ol90NQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMet/POJ V5mux43Ioc5InLVhWvCmMB8GA1UdIwQYMBaAFNUo+tS4dqv7cK84kiIPKT4Xkba8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTZDNS9FODI2NjAyMEM2 QzAxMUVDOEFCNzU1M0ZDNEY5QUUwMi8xU2o2MUxoMnFfdHdyemlTSWc4cFBoZVJ0 cncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFTajYxTGgycV90d3J6aVNJZzhwUGhlUnRydy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RTZDNS9FODI2NjAyMEM2QzAxMUVDOEFCNzU1M0ZDNEY5QUUwMi8xU2o2MUxoMnFf dHdyemlTSWc4cFBoZVJ0cncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDHGBKFehyoj1erFp4uKKK9whkgMczkEknmPEJyeaLThYObqfK5X9m1 6CKOFgvBH6Obgcwcamt57jJvogGdlQ1cv23v/kCH1YffXEq6z9Vh6jaUqxrq47j7 9m4Heu7z6yMcAL8O+Zrt2pNfkzifTVaBLvKOj2Rb2uxdfI0yJnPa7gPx7QB6kMNw 963r86gY/Cu7F/+1Pq2+wqa54ZcbJKezE1ulwJZfArQx9IdD+aETavPay13gQc6c hjYnhUw77kn4muQHYeUundNpdLF1JL91wIknWg87n1OSWRTgf8px5v/HWIzVRyTz lGURmiOqtc4uSWQR+TM4d2mTRkxJuKLB -----END CERTIFICATE-----Generated at Mon Nov 25 02:49:05 2024 by rpki-client on console-ams.rpki-client.org