$ rpki-client -vvf rpki.apnic.net/member_repository/A91CFA8E/61BAD8E0F87E11ED90D8445CC4F9AE02/2IDvJluUDjHf7RxCrvUUS2RBNxc.mft File: 2IDvJluUDjHf7RxCrvUUS2RBNxc.mft (raw, json) Hash identifier: w+3rmfq92cCycJgYDKQl3C5SQnlJRCUuxVBN3JWn6Mo= Subject key identifier: 98:EE:1E:E3:D0:0A:3A:6C:06:2C:29:BA:25:C8:3B:88:7C:E9:E7:B4 Authority key identifier: D8:80:EF:26:5B:94:0E:31:DF:ED:1C:42:AE:F5:14:4B:64:41:37:17 Certificate issuer: /CN=A91CFA8E/serialNumber=D880EF265B940E31DFED1C42AEF5144B64413717 Certificate serial: 013C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2IDvJluUDjHf7RxCrvUUS2RBNxc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CFA8E/61BAD8E0F87E11ED90D8445CC4F9AE02/2IDvJluUDjHf7RxCrvUUS2RBNxc.mft Manifest number: 0131 Signing time: Thu 21 Nov 2024 03:01:38 +0000 Manifest this update: Thu 21 Nov 2024 03:01:38 +0000 Manifest next update: Thu 28 Nov 2024 03:01:38 +0000 Files and hashes: 1: 2IDvJluUDjHf7RxCrvUUS2RBNxc.crl (hash: N0ELH472WBFHKJ0ifJdXTPjFZe6U9LWHz/7PLwjLBj0=) 2: 61663178F88311EDB1DF555DC4F9AE02.roa (hash: iep28suRW/c0ax5q9e+iJu91N/wkgI13TxsSrAe4FK4=) 3: 43E961E013E711EE8ECA2D3CC4F9AE02.roa (hash: 2uAnojTpBx/p6UzON5W2LUqPsm+IaZARqT6ypFNqC5M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CFA8E/61BAD8E0F87E11ED90D8445CC4F9AE02/2IDvJluUDjHf7RxCrvUUS2RBNxc.crl rsync://rpki.apnic.net/member_repository/A91CFA8E/61BAD8E0F87E11ED90D8445CC4F9AE02/2IDvJluUDjHf7RxCrvUUS2RBNxc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2IDvJluUDjHf7RxCrvUUS2RBNxc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 03:01:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 316 (0x13c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CFA8E/serialNumber=D880EF265B940E31DFED1C42AEF5144B64413717 Validity Not Before: Nov 21 03:01:38 2024 GMT Not After : Nov 28 03:01:38 2024 GMT Subject: CN=673ea292-edd5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:6c:67:c6:8e:77:c5:06:7a:c7:68:d4:68:3d: 5d:24:28:5e:7e:9a:a3:70:ab:ab:ad:12:3b:70:8a: 94:f8:24:df:8a:29:a0:49:95:9f:14:99:08:c3:12: 41:b0:6e:25:81:d7:14:2d:2e:c3:63:0b:de:e7:3c: cc:1f:64:0c:dd:b1:a9:ae:6d:2d:75:d2:9a:9c:04: e5:6f:18:ee:d6:ff:0e:20:f9:83:9c:72:99:f5:f1: ab:00:e4:d9:68:64:cb:23:15:03:af:d8:94:f7:bb: 02:bc:08:3c:ce:bd:6c:8d:e1:29:5b:c8:86:53:04: 94:26:5a:c4:e6:56:23:80:da:bb:1b:30:7c:3b:ed: 49:83:b8:7c:35:94:e1:54:16:8a:e0:76:c8:1c:de: 94:1e:49:23:7b:f8:5b:dd:d0:e6:75:d7:b8:1c:36: 35:a8:ef:d5:c8:ef:22:d3:2e:38:9c:4d:1d:40:31: 68:c7:dd:52:87:5e:50:9d:25:be:6b:9b:35:e0:0b: 35:b1:56:ac:7e:22:6e:c4:81:33:bc:c3:a9:bb:78: 0f:ef:a6:21:a5:ba:11:88:1b:56:5e:96:77:da:68: 2e:e3:7f:d3:91:70:c0:ec:42:42:e8:a7:0f:62:b5: de:98:35:21:2c:04:2e:0d:7a:95:24:ad:a9:9e:aa: a9:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:EE:1E:E3:D0:0A:3A:6C:06:2C:29:BA:25:C8:3B:88:7C:E9:E7:B4 X509v3 Authority Key Identifier: keyid:D8:80:EF:26:5B:94:0E:31:DF:ED:1C:42:AE:F5:14:4B:64:41:37:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CFA8E/61BAD8E0F87E11ED90D8445CC4F9AE02/2IDvJluUDjHf7RxCrvUUS2RBNxc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2IDvJluUDjHf7RxCrvUUS2RBNxc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CFA8E/61BAD8E0F87E11ED90D8445CC4F9AE02/2IDvJluUDjHf7RxCrvUUS2RBNxc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a6:f7:11:4e:de:2b:33:4e:f5:ad:98:e5:bf:92:0b:b3:ae:37: 05:29:9c:19:98:1c:c0:ce:16:a8:60:81:21:1a:57:34:d7:c7: dc:39:75:1c:75:7e:50:9b:55:9e:2f:fe:fd:3c:31:b4:de:0a: 8a:7b:bc:fc:f7:7c:e1:c1:fc:6f:98:f5:50:a9:93:fb:02:28: 03:71:96:97:96:02:e3:d9:01:4a:01:cb:b7:69:db:0a:c3:26: b1:0d:af:e3:60:c1:c9:d5:d8:2d:48:3d:d3:27:44:4f:d0:ee: 62:9d:a0:8c:a3:ce:46:d9:a2:f7:68:40:92:40:22:66:88:11: fb:52:f7:d1:b4:8a:c3:5a:c8:bd:ba:80:fc:f6:76:d8:69:0c: 51:4c:09:3a:f5:06:ad:ff:61:67:ca:19:9a:d3:3e:75:1d:89: 09:64:67:88:92:36:93:cb:17:a3:50:a2:4e:d8:af:3d:67:72: 73:63:b3:14:47:19:1c:9e:47:ed:b2:cb:7e:52:95:36:e1:de: 19:6d:2e:d4:a2:25:ae:60:9b:fd:32:ab:72:3b:8a:c4:7f:6e: 3a:7f:40:ee:c6:ba:92:0d:99:3b:e4:2d:be:b2:f5:35:2d:75: 03:79:e2:b0:0f:7f:48:c8:93:0b:65:e4:90:97:82:d9:47:a3: 6b:ff:c9:6c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICATwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0ZBOEUxMTAvBgNVBAUTKEQ4ODBFRjI2NUI5NDBFMzFERkVEMUM0MkFFRjUxNDRC NjQ0MTM3MTcwHhcNMjQxMTIxMDMwMTM4WhcNMjQxMTI4MDMwMTM4WjAYMRYwFAYD VQQDEw02NzNlYTI5Mi1lZGQ1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5Wxnxo53xQZ6x2jUaD1dJChefpqjcKurrRI7cIqU+CTfiimgSZWfFJkIwxJB sG4lgdcULS7DYwve5zzMH2QM3bGprm0tddKanATlbxju1v8OIPmDnHKZ9fGrAOTZ aGTLIxUDr9iU97sCvAg8zr1sjeEpW8iGUwSUJlrE5lYjgNq7GzB8O+1Jg7h8NZTh VBaK4HbIHN6UHkkje/hb3dDmdde4HDY1qO/VyO8i0y44nE0dQDFox91Sh15QnSW+ a5s14As1sVasfiJuxIEzvMOpu3gP76YhpboRiBtWXpZ32mgu43/TkXDA7EJC6KcP YrXemDUhLAQuDXqVJK2pnqqpSwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJjuHuPQ CjpsBiwpuiXIO4h86ee0MB8GA1UdIwQYMBaAFNiA7yZblA4x3+0cQq71FEtkQTcX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRkE4RS82MUJBRDhFMEY4 N0UxMUVEOTBEODQ0NUNDNEY5QUUwMi8ySUR2Smx1VURqSGY3UnhDcnZVVVMyUkJO eGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJJRHZKbHVVRGpIZjdSeENydlVVUzJSQk54Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RkE4RS82MUJBRDhFMEY4N0UxMUVEOTBEODQ0NUNDNEY5QUUwMi8ySUR2Smx1VURq SGY3UnhDcnZVVVMyUkJOeGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCm9xFO3iszTvWtmOW/kguzrjcFKZwZmBzAzhaoYIEhGlc018fcOXUc dX5Qm1WeL/79PDG03gqKe7z893zhwfxvmPVQqZP7AigDcZaXlgLj2QFKAcu3adsK wyaxDa/jYMHJ1dgtSD3TJ0RP0O5inaCMo85G2aL3aECSQCJmiBH7UvfRtIrDWsi9 uoD89nbYaQxRTAk69Qat/2Fnyhma0z51HYkJZGeIkjaTyxejUKJO2K89Z3JzY7MU Rxkcnkftsst+UpU24d4ZbS7UoiWuYJv9MqtyO4rEf246f0DuxrqSDZk75C2+svU1 LXUDeeKwD39IyJMLZeSQl4LZR6Nr/8ls -----END CERTIFICATE-----Generated at Thu Nov 21 05:37:17 2024 by rpki-client on console-ams.rpki-client.org