$ rpki-client -vvf rpki.apnic.net/member_repository/A91D0B0E/44BCA632806911EF887B703CC4F9AE02/awKSxgJwici6idjGWhozDUiLCiw.mft File: awKSxgJwici6idjGWhozDUiLCiw.mft (raw, json) Hash identifier: SdaO1NFigb/BJ9JGCLK3vLpAo2xEEaon9DhKzRN7j1E= Subject key identifier: 96:FC:D9:2A:20:34:15:A0:90:25:FA:48:6C:7F:CC:2E:CB:26:88:B5 Authority key identifier: 6B:02:92:C6:02:70:89:C8:BA:89:D8:C6:5A:1A:33:0D:48:8B:0A:2C Certificate issuer: /CN=A91D0B0E/serialNumber=6B0292C6027089C8BA89D8C65A1A330D488B0A2C Certificate serial: 14 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/awKSxgJwici6idjGWhozDUiLCiw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D0B0E/44BCA632806911EF887B703CC4F9AE02/awKSxgJwici6idjGWhozDUiLCiw.mft Manifest number: 11 Signing time: Wed 23 Oct 2024 06:45:12 +0000 Manifest this update: Wed 23 Oct 2024 06:45:11 +0000 Manifest next update: Wed 30 Oct 2024 06:45:11 +0000 Files and hashes: 1: awKSxgJwici6idjGWhozDUiLCiw.crl (hash: aShddl0YcVWWQXNihSWuoiHqzsekY+OIuDxO8CnLrNo=) 2: 17782970808311EFBB9C2A46C4F9AE02.roa (hash: r6WIlbiy+lDO4CO1ktSRKcgbqSLB19B4thVbY1+vaPg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D0B0E/44BCA632806911EF887B703CC4F9AE02/awKSxgJwici6idjGWhozDUiLCiw.crl rsync://rpki.apnic.net/member_repository/A91D0B0E/44BCA632806911EF887B703CC4F9AE02/awKSxgJwici6idjGWhozDUiLCiw.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/awKSxgJwici6idjGWhozDUiLCiw.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 30 Oct 2024 02:50:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 20 (0x14) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D0B0E/serialNumber=6B0292C6027089C8BA89D8C65A1A330D488B0A2C Validity Not Before: Oct 23 06:45:11 2024 GMT Not After : Oct 30 06:45:11 2024 GMT Subject: CN=67189b77-5a3f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:96:71:06:ab:c9:38:25:4c:1e:a9:ef:f7:03: c2:bb:8e:f9:a1:1e:81:31:50:6e:b4:79:e6:49:12: 50:d6:2c:aa:82:d0:7d:8a:32:2b:ab:61:9b:0c:aa: e5:02:c5:67:b0:a5:1a:81:23:f2:d0:26:24:42:79: 16:c1:75:93:71:62:ce:25:55:88:2d:91:82:6c:2c: bf:07:70:43:c4:ed:33:34:a1:e0:3d:15:f9:fd:06: 53:08:8b:f2:b0:f8:94:39:b2:39:f9:c0:e9:51:7c: f6:d4:8c:eb:7e:f4:14:da:a2:10:2d:f1:f7:35:c1: e6:ba:a8:c5:df:0d:2e:af:0d:f8:37:8b:ca:8e:fc: 64:84:36:37:3f:1b:bb:5b:0c:2e:86:5e:1f:e0:69: 68:2e:81:75:6e:e0:b6:89:60:70:5f:71:68:02:72: 11:cb:60:de:c9:e4:33:a5:dc:3a:23:7e:3b:a7:70: 2c:ef:5b:11:b5:3f:8d:e4:65:21:62:63:0d:93:f2: 08:fd:77:6e:c4:01:7c:0e:81:ce:db:12:d4:7f:e9: 3c:32:67:18:6f:5b:54:3d:32:d2:9e:3b:14:ca:03: 58:ca:ea:da:81:f6:39:fd:3f:db:13:9c:5c:a7:60: 8b:63:3d:e2:54:66:6a:93:89:d8:d9:5b:bb:56:b5: f4:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:FC:D9:2A:20:34:15:A0:90:25:FA:48:6C:7F:CC:2E:CB:26:88:B5 X509v3 Authority Key Identifier: keyid:6B:02:92:C6:02:70:89:C8:BA:89:D8:C6:5A:1A:33:0D:48:8B:0A:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D0B0E/44BCA632806911EF887B703CC4F9AE02/awKSxgJwici6idjGWhozDUiLCiw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/awKSxgJwici6idjGWhozDUiLCiw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D0B0E/44BCA632806911EF887B703CC4F9AE02/awKSxgJwici6idjGWhozDUiLCiw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 17:00:ca:b8:86:be:ae:1d:34:56:73:53:cd:c2:2f:e6:4b:2c: ea:65:c8:bf:d7:84:42:04:0f:97:33:00:fd:f4:34:30:6e:6e: 54:25:88:b2:a7:df:90:af:02:21:8b:a8:11:8c:97:88:65:f0: 90:34:5c:e1:8d:29:06:56:12:f8:e1:59:92:93:5e:90:48:57: 24:4c:18:33:a5:3f:a2:03:a2:33:f2:ab:4e:72:14:03:59:8d: c1:27:b5:e0:99:d6:23:97:5e:eb:fb:8d:17:a0:0a:c3:aa:fb: e0:56:72:d9:63:e0:87:50:c4:c0:f9:5b:b8:58:6e:1c:0e:b6: 36:21:98:72:de:f3:16:fc:98:7a:f3:ea:57:34:60:82:3c:01: f1:30:fb:53:c9:0f:62:f0:9d:c6:96:75:c7:27:b7:48:10:ac: 7f:ba:84:a6:76:79:47:8b:df:e4:10:01:7d:a3:9a:87:46:ff: 4e:a1:21:54:79:3b:61:9a:0d:2c:14:33:b4:11:f8:87:b2:a3: 54:23:23:7b:96:38:46:9d:73:7c:80:8a:63:ec:e3:ff:ac:5f: 2d:17:d0:82:ca:d9:41:06:cc:b5:c2:dc:4c:01:b0:53:c1:21: 14:31:26:61:b4:e0:a2:8c:98:49:c7:ec:42:55:32:4f:4f:0e: 6a:49:8e:f8 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBFDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE MEIwRTExMC8GA1UEBRMoNkIwMjkyQzYwMjcwODlDOEJBODlEOEM2NUExQTMzMEQ0 ODhCMEEyQzAeFw0yNDEwMjMwNjQ1MTFaFw0yNDEwMzAwNjQ1MTFaMBgxFjAUBgNV BAMTDTY3MTg5Yjc3LTVhM2YwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDHlnEGq8k4JUweqe/3A8K7jvmhHoExUG60eeZJElDWLKqC0H2KMiurYZsMquUC xWewpRqBI/LQJiRCeRbBdZNxYs4lVYgtkYJsLL8HcEPE7TM0oeA9Ffn9BlMIi/Kw +JQ5sjn5wOlRfPbUjOt+9BTaohAt8fc1wea6qMXfDS6vDfg3i8qO/GSENjc/G7tb DC6GXh/gaWgugXVu4LaJYHBfcWgCchHLYN7J5DOl3DojfjuncCzvWxG1P43kZSFi Yw2T8gj9d27EAXwOgc7bEtR/6TwyZxhvW1Q9MtKeOxTKA1jK6tqB9jn9P9sTnFyn YItjPeJUZmqTidjZW7tWtfS3AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUlvzZKiA0 FaCQJfpIbH/MLssmiLUwHwYDVR0jBBgwFoAUawKSxgJwici6idjGWhozDUiLCiww DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQwQjBFLzQ0QkNBNjMyODA2 OTExRUY4ODdCNzAzQ0M0RjlBRTAyL2F3S1N4Z0p3aWNpNmlkakdXaG96RFVpTENp dy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvYXdLU3hnSndpY2k2aWRqR1dob3pEVWlMQ2l3LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQw QjBFLzQ0QkNBNjMyODA2OTExRUY4ODdCNzAzQ0M0RjlBRTAyL2F3S1N4Z0p3aWNp NmlkakdXaG96RFVpTENpdy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBABcAyriGvq4dNFZzU83CL+ZLLOplyL/XhEIED5czAP30NDBublQliLKn 35CvAiGLqBGMl4hl8JA0XOGNKQZWEvjhWZKTXpBIVyRMGDOlP6IDojPyq05yFANZ jcEnteCZ1iOXXuv7jRegCsOq++BWctlj4IdQxMD5W7hYbhwOtjYhmHLe8xb8mHrz 6lc0YII8AfEw+1PJD2LwncaWdccnt0gQrH+6hKZ2eUeL3+QQAX2jmodG/06hIVR5 O2GaDSwUM7QR+Ieyo1QjI3uWOEadc3yAimPs4/+sXy0X0ILK2UEGzLXC3EwBsFPB IRQxJmG04KKMmEnH7EJVMk9PDmpJjvg= -----END CERTIFICATE-----Generated at Wed Oct 23 07:46:03 2024 by rpki-client on console-ams.rpki-client.org