$ rpki-client -vvf rpki.apnic.net/member_repository/A91CEE85/FC66F5AE45AD11EFB435EB6FC4F9AE02/ByRKmUzcS5OAdHEcQkjUn51Q2Cc.mft File: ByRKmUzcS5OAdHEcQkjUn51Q2Cc.mft (raw, json) Hash identifier: JgWPqtq4TiZTdANQlHJ60bwVtgT2O2vhvvmcinBeVK8= Subject key identifier: F9:26:11:5B:B8:49:DA:E6:22:34:00:EC:8E:75:F3:F5:FD:B4:BB:CD Authority key identifier: 07:24:4A:99:4C:DC:4B:93:80:74:71:1C:42:48:D4:9F:9D:50:D8:27 Certificate issuer: /CN=A91CEE85/serialNumber=07244A994CDC4B938074711C4248D49F9D50D827 Certificate serial: 43 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ByRKmUzcS5OAdHEcQkjUn51Q2Cc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CEE85/FC66F5AE45AD11EFB435EB6FC4F9AE02/ByRKmUzcS5OAdHEcQkjUn51Q2Cc.mft Manifest number: 42 Signing time: Thu 21 Nov 2024 05:28:52 +0000 Manifest this update: Thu 21 Nov 2024 05:28:51 +0000 Manifest next update: Thu 28 Nov 2024 05:28:51 +0000 Files and hashes: 1: ByRKmUzcS5OAdHEcQkjUn51Q2Cc.crl (hash: ZM66Du+VoqWjDB6UqF7IqWHVsPxWXAFjGIpRl4GkBG4=) 2: C2838C8245B011EFAE60CC76C4F9AE02.roa (hash: hwH3UwPPp5HcdIoVJGmqXyZx+8wSSAmPJHdJhpeAuug=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CEE85/FC66F5AE45AD11EFB435EB6FC4F9AE02/ByRKmUzcS5OAdHEcQkjUn51Q2Cc.crl rsync://rpki.apnic.net/member_repository/A91CEE85/FC66F5AE45AD11EFB435EB6FC4F9AE02/ByRKmUzcS5OAdHEcQkjUn51Q2Cc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ByRKmUzcS5OAdHEcQkjUn51Q2Cc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 02:50:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 67 (0x43) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CEE85/serialNumber=07244A994CDC4B938074711C4248D49F9D50D827 Validity Not Before: Nov 21 05:28:51 2024 GMT Not After : Nov 28 05:28:51 2024 GMT Subject: CN=673ec513-3c67 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:67:7c:c3:8d:94:12:d5:ad:93:6c:d1:62:a4: 9d:b6:87:fd:01:d1:d5:af:8c:22:3f:62:d4:f3:4e: 43:a6:69:2e:db:a2:f3:99:f7:34:58:26:30:f0:38: fa:c3:74:e7:aa:f4:f8:0d:75:49:0d:18:00:40:31: aa:63:83:2a:da:69:a8:39:17:ea:fe:35:77:a7:50: 31:20:96:f3:ee:1d:88:e4:ee:18:c4:5d:21:2e:b2: 03:e7:8e:04:6f:07:be:0b:19:0c:4c:77:a1:b7:a6: 34:59:8c:05:77:6b:ed:62:10:13:81:fc:34:04:34: 9e:28:ce:6b:13:7b:d2:35:31:eb:85:bf:0e:0a:14: df:d9:d9:cf:80:43:25:d5:92:40:e1:5c:4e:50:72: a4:33:c2:d9:0d:66:06:e6:bd:3e:d9:b8:5f:f4:19: f0:4e:d6:93:5b:be:d1:2e:4b:1b:92:5c:b6:7a:e7: dd:54:e7:f4:07:f0:af:68:c2:87:6b:da:d6:f5:11: 96:07:4d:ee:f4:c1:5f:50:d7:ea:d1:c9:5c:b8:3f: 83:95:15:0c:fe:93:48:67:fc:ca:c6:9e:9c:4e:98: 63:86:09:64:f4:03:e7:7d:43:d4:1a:59:e3:9f:7e: 57:e6:67:46:3d:e9:44:21:d7:37:89:44:20:bb:cd: 00:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:26:11:5B:B8:49:DA:E6:22:34:00:EC:8E:75:F3:F5:FD:B4:BB:CD X509v3 Authority Key Identifier: keyid:07:24:4A:99:4C:DC:4B:93:80:74:71:1C:42:48:D4:9F:9D:50:D8:27 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CEE85/FC66F5AE45AD11EFB435EB6FC4F9AE02/ByRKmUzcS5OAdHEcQkjUn51Q2Cc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ByRKmUzcS5OAdHEcQkjUn51Q2Cc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CEE85/FC66F5AE45AD11EFB435EB6FC4F9AE02/ByRKmUzcS5OAdHEcQkjUn51Q2Cc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 77:9b:5d:2f:e4:c0:ff:ba:b5:d8:b6:1d:ed:d2:f9:f3:53:57: f8:22:fb:b1:1a:c3:65:ea:4c:73:91:bd:14:24:9f:31:ad:0a: 67:71:bd:70:1b:58:ae:73:aa:df:22:0f:d6:10:fe:cb:af:35: c1:ff:12:94:f8:92:cf:9b:76:0b:6d:38:84:1a:1f:2c:4f:1b: d1:17:8a:62:09:d9:25:14:14:3f:55:f7:b0:f9:9d:36:eb:02: eb:cc:78:12:1c:80:75:a1:98:cc:c3:37:66:cd:95:34:e6:a1: b1:a8:ad:b9:26:dd:e4:58:d9:b9:8c:ed:ae:34:ae:cc:15:c0: 85:24:2a:19:0e:42:90:dd:2f:14:4e:7a:8d:73:b4:2b:2c:b7: b0:1a:c7:10:c4:f6:4e:b2:94:87:e6:82:1a:59:3d:81:11:87: 10:6a:5f:9a:3e:aa:13:26:ba:f6:90:98:ef:28:f3:b3:8f:24: d7:6e:b5:f8:fb:0e:12:4e:0e:6f:1f:e9:13:2d:fd:51:d6:85: cd:8c:73:d9:01:75:b7:ef:13:89:62:31:65:e1:c5:d7:50:43: e6:ee:d6:67:1a:d2:15:4a:b0:5a:16:50:bc:e7:5d:75:ab:42: c3:ef:13:54:3a:a3:42:c8:0a:db:fd:77:98:8e:4e:d4:4a:e4: bd:61:e6:e2 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBQzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD RUU4NTExMC8GA1UEBRMoMDcyNDRBOTk0Q0RDNEI5MzgwNzQ3MTFDNDI0OEQ0OUY5 RDUwRDgyNzAeFw0yNDExMjEwNTI4NTFaFw0yNDExMjgwNTI4NTFaMBgxFjAUBgNV BAMTDTY3M2VjNTEzLTNjNjcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDIZ3zDjZQS1a2TbNFipJ22h/0B0dWvjCI/YtTzTkOmaS7bovOZ9zRYJjDwOPrD dOeq9PgNdUkNGABAMapjgyraaag5F+r+NXenUDEglvPuHYjk7hjEXSEusgPnjgRv B74LGQxMd6G3pjRZjAV3a+1iEBOB/DQENJ4ozmsTe9I1MeuFvw4KFN/Z2c+AQyXV kkDhXE5QcqQzwtkNZgbmvT7ZuF/0GfBO1pNbvtEuSxuSXLZ6591U5/QH8K9owodr 2tb1EZYHTe70wV9Q1+rRyVy4P4OVFQz+k0hn/MrGnpxOmGOGCWT0A+d9Q9QaWeOf flfmZ0Y96UQh1zeJRCC7zQAjAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU+SYRW7hJ 2uYiNADsjnXz9f20u80wHwYDVR0jBBgwFoAUByRKmUzcS5OAdHEcQkjUn51Q2Ccw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUNFRTg1L0ZDNjZGNUFFNDVB RDExRUZCNDM1RUI2RkM0RjlBRTAyL0J5UkttVXpjUzVPQWRIRWNRa2pVbjUxUTJD Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvQnlSS21VemNTNU9BZEhFY1FralVuNTFRMkNjLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUNF RTg1L0ZDNjZGNUFFNDVBRDExRUZCNDM1RUI2RkM0RjlBRTAyL0J5UkttVXpjUzVP QWRIRWNRa2pVbjUxUTJDYy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAHebXS/kwP+6tdi2He3S+fNTV/gi+7Eaw2XqTHORvRQknzGtCmdxvXAb WK5zqt8iD9YQ/suvNcH/EpT4ks+bdgttOIQaHyxPG9EXimIJ2SUUFD9V97D5nTbr AuvMeBIcgHWhmMzDN2bNlTTmobGorbkm3eRY2bmM7a40rswVwIUkKhkOQpDdLxRO eo1ztCsst7AaxxDE9k6ylIfmghpZPYERhxBqX5o+qhMmuvaQmO8o87OPJNdutfj7 DhJODm8f6RMt/VHWhc2Mc9kBdbfvE4liMWXhxddQQ+bu1mca0hVKsFoWULznXXWr QsPvE1Q6o0LICtv9d5iOTtRK5L1h5uI= -----END CERTIFICATE-----Generated at Thu Nov 21 07:40:38 2024 by rpki-client on console-ams.rpki-client.org