$ rpki-client -vvf rpki.apnic.net/member_repository/A91D0B0E/44BCA632806911EF887B703CC4F9AE02/awKSxgJwici6idjGWhozDUiLCiw.mft File: awKSxgJwici6idjGWhozDUiLCiw.mft (raw, json) Hash identifier: mmNFjADhABX3qIpFPFS+k7GK1nEdk2tQLoAQDZua7d8= Subject key identifier: 6C:27:02:3C:12:FA:53:6A:84:93:EC:A1:64:24:96:BF:D0:60:14:2D Authority key identifier: 6B:02:92:C6:02:70:89:C8:BA:89:D8:C6:5A:1A:33:0D:48:8B:0A:2C Certificate issuer: /CN=A91D0B0E/serialNumber=6B0292C6027089C8BA89D8C65A1A330D488B0A2C Certificate serial: 23 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/awKSxgJwici6idjGWhozDUiLCiw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D0B0E/44BCA632806911EF887B703CC4F9AE02/awKSxgJwici6idjGWhozDUiLCiw.mft Manifest number: 20 Signing time: Thu 21 Nov 2024 05:56:51 +0000 Manifest this update: Thu 21 Nov 2024 05:56:50 +0000 Manifest next update: Thu 28 Nov 2024 05:56:50 +0000 Files and hashes: 1: awKSxgJwici6idjGWhozDUiLCiw.crl (hash: wDxj9Bt3xiv/zOoYxznP2ZVYH4QUIyMKI2/00Cd4cxk=) 2: 17782970808311EFBB9C2A46C4F9AE02.roa (hash: r6WIlbiy+lDO4CO1ktSRKcgbqSLB19B4thVbY1+vaPg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D0B0E/44BCA632806911EF887B703CC4F9AE02/awKSxgJwici6idjGWhozDUiLCiw.crl rsync://rpki.apnic.net/member_repository/A91D0B0E/44BCA632806911EF887B703CC4F9AE02/awKSxgJwici6idjGWhozDUiLCiw.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/awKSxgJwici6idjGWhozDUiLCiw.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 02:50:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35 (0x23) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D0B0E/serialNumber=6B0292C6027089C8BA89D8C65A1A330D488B0A2C Validity Not Before: Nov 21 05:56:50 2024 GMT Not After : Nov 28 05:56:50 2024 GMT Subject: CN=673ecba3-b278 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:15:eb:0a:be:5d:78:5f:a5:16:39:a4:87:9f: f3:4a:d4:7f:bb:de:4f:ff:0f:65:6d:25:de:a1:c6: 89:b3:54:2f:d7:44:f3:d9:3a:bb:8e:b4:3f:f5:84: d6:44:84:a6:55:ce:28:46:ed:1f:d2:0c:12:dd:68: 1c:e1:c7:b1:4e:1c:17:8e:15:df:fb:00:13:65:4d: 44:cc:41:01:dc:e2:0d:87:d6:66:a5:ff:fd:7c:27: 17:e9:fd:cd:2e:bc:57:2e:d4:c2:96:92:c8:f8:e0: f9:f1:44:7d:c1:0d:0b:52:26:74:51:f9:45:43:ed: be:0f:5a:d3:fa:5d:85:49:3d:ad:50:18:1f:2b:c1: 68:a4:e7:1f:98:dd:50:5d:5b:c4:3d:f8:a0:4e:1f: 04:ce:74:b5:79:c9:79:36:dc:82:01:11:57:c3:94: 1f:48:e1:17:f2:c8:a6:3c:32:83:cb:9e:9f:00:f8: 51:bd:49:3c:fb:77:02:03:40:87:2f:a7:a0:06:8f: 9f:98:47:d0:b3:9c:be:aa:04:e6:a8:71:32:b8:eb: 61:10:27:f8:75:7d:34:11:92:9b:de:2b:52:ec:c3: 75:91:8c:72:95:b2:07:85:23:8b:04:e2:9d:d7:bb: ec:64:26:dd:e2:2b:b9:5b:a0:2a:10:e0:0d:49:61: e7:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:27:02:3C:12:FA:53:6A:84:93:EC:A1:64:24:96:BF:D0:60:14:2D X509v3 Authority Key Identifier: keyid:6B:02:92:C6:02:70:89:C8:BA:89:D8:C6:5A:1A:33:0D:48:8B:0A:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D0B0E/44BCA632806911EF887B703CC4F9AE02/awKSxgJwici6idjGWhozDUiLCiw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/awKSxgJwici6idjGWhozDUiLCiw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D0B0E/44BCA632806911EF887B703CC4F9AE02/awKSxgJwici6idjGWhozDUiLCiw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 03:ed:9a:89:be:9c:a4:eb:a1:0b:2b:0b:2e:62:a0:b4:41:0a: 1d:64:38:25:4e:87:3f:47:a6:eb:59:37:b6:6a:e5:38:64:0a: af:cb:3b:32:1d:96:03:3e:a0:17:c2:4c:67:9b:4a:ef:7a:03: 50:80:42:0e:a8:bf:af:1f:a1:29:56:81:48:11:eb:2c:cb:f9: 2d:80:15:8d:e8:04:00:63:44:aa:52:fe:97:4d:2d:3a:5c:a0: 22:d5:2c:53:6b:5e:c5:b6:86:89:4e:4f:d1:55:6e:1f:d5:c0: ae:b3:b0:ef:f8:10:22:9c:dd:32:5a:e0:6a:5a:cc:b3:21:8c: 7a:af:0f:e6:c4:89:b7:4e:21:c1:b7:0a:30:88:bb:92:16:4b: e4:a6:92:12:43:4f:bc:0b:a0:8f:75:90:6a:8c:8c:d2:e3:c1: 8e:13:c6:78:f6:97:f7:1a:3a:0b:a6:88:d6:eb:c7:50:bc:dd: 5f:96:54:7d:95:17:03:1d:b5:e0:d2:bd:48:89:32:4a:90:1d: 8f:30:4e:ae:12:9a:1a:c2:00:43:ab:f7:c5:6e:a1:f5:17:af: 49:01:64:f1:30:84:06:0c:58:5d:48:2e:3e:a2:51:00:92:6d: 6c:f6:94:4b:51:14:84:6d:ed:c6:00:a1:7c:11:7a:2e:ac:74: de:71:40:7a -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBIzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE MEIwRTExMC8GA1UEBRMoNkIwMjkyQzYwMjcwODlDOEJBODlEOEM2NUExQTMzMEQ0 ODhCMEEyQzAeFw0yNDExMjEwNTU2NTBaFw0yNDExMjgwNTU2NTBaMBgxFjAUBgNV BAMTDTY3M2VjYmEzLWIyNzgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC6FesKvl14X6UWOaSHn/NK1H+73k//D2VtJd6hxomzVC/XRPPZOruOtD/1hNZE hKZVzihG7R/SDBLdaBzhx7FOHBeOFd/7ABNlTUTMQQHc4g2H1mal//18Jxfp/c0u vFcu1MKWksj44PnxRH3BDQtSJnRR+UVD7b4PWtP6XYVJPa1QGB8rwWik5x+Y3VBd W8Q9+KBOHwTOdLV5yXk23IIBEVfDlB9I4RfyyKY8MoPLnp8A+FG9STz7dwIDQIcv p6AGj5+YR9CznL6qBOaocTK462EQJ/h1fTQRkpveK1Lsw3WRjHKVsgeFI4sE4p3X u+xkJt3iK7lboCoQ4A1JYef7AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUbCcCPBL6 U2qEk+yhZCSWv9BgFC0wHwYDVR0jBBgwFoAUawKSxgJwici6idjGWhozDUiLCiww DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQwQjBFLzQ0QkNBNjMyODA2 OTExRUY4ODdCNzAzQ0M0RjlBRTAyL2F3S1N4Z0p3aWNpNmlkakdXaG96RFVpTENp dy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvYXdLU3hnSndpY2k2aWRqR1dob3pEVWlMQ2l3LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQw QjBFLzQ0QkNBNjMyODA2OTExRUY4ODdCNzAzQ0M0RjlBRTAyL2F3S1N4Z0p3aWNp NmlkakdXaG96RFVpTENpdy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAAPtmom+nKTroQsrCy5ioLRBCh1kOCVOhz9HputZN7Zq5ThkCq/LOzId lgM+oBfCTGebSu96A1CAQg6ov68foSlWgUgR6yzL+S2AFY3oBABjRKpS/pdNLTpc oCLVLFNrXsW2holOT9FVbh/VwK6zsO/4ECKc3TJa4GpazLMhjHqvD+bEibdOIcG3 CjCIu5IWS+SmkhJDT7wLoI91kGqMjNLjwY4Txnj2l/caOgumiNbrx1C83V+WVH2V FwMdteDSvUiJMkqQHY8wTq4SmhrCAEOr98VuofUXr0kBZPEwhAYMWF1ILj6iUQCS bWz2lEtRFIRt7cYAoXwRei6sdN5xQHo= -----END CERTIFICATE-----Generated at Thu Nov 21 07:40:38 2024 by rpki-client on console-ams.rpki-client.org