$ rpki-client -vvf rpki.apnic.net/member_repository/A91D0C18/683BA096646611EF8E18F87AC4F9AE02/CJy1orM7eG11SgfWgKnElBQmGeE.mft File: CJy1orM7eG11SgfWgKnElBQmGeE.mft (raw, json) Hash identifier: Q6LXnOmEzVN7pKoaE4Aqeg2iTNvBw14DEf2TWEdK5Vo= Subject key identifier: 4E:E1:AD:06:53:AD:87:38:43:C3:68:A3:DB:70:BA:22:2A:5C:80:AE Authority key identifier: 08:9C:B5:A2:B3:3B:78:6D:75:4A:07:D6:80:A9:C4:94:14:26:19:E1 Certificate issuer: /CN=A91D0C18/serialNumber=089CB5A2B33B786D754A07D680A9C494142619E1 Certificate serial: 2F Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/CJy1orM7eG11SgfWgKnElBQmGeE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D0C18/683BA096646611EF8E18F87AC4F9AE02/CJy1orM7eG11SgfWgKnElBQmGeE.mft Manifest number: 2E Signing time: Thu 21 Nov 2024 05:44:32 +0000 Manifest this update: Thu 21 Nov 2024 05:44:32 +0000 Manifest next update: Thu 28 Nov 2024 05:44:32 +0000 Files and hashes: 1: CJy1orM7eG11SgfWgKnElBQmGeE.crl (hash: fomuJlul8pETUEXIBe/ro02XnqmCZaKQdbktoZXf51w=) 2: EEE0092A646611EFA25D167EC4F9AE02.roa (hash: PB6LRHoIMyYv1uIUIe4A3HeqPVxI7OtzvXNUbqHxj3Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D0C18/683BA096646611EF8E18F87AC4F9AE02/CJy1orM7eG11SgfWgKnElBQmGeE.crl rsync://rpki.apnic.net/member_repository/A91D0C18/683BA096646611EF8E18F87AC4F9AE02/CJy1orM7eG11SgfWgKnElBQmGeE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/CJy1orM7eG11SgfWgKnElBQmGeE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 02:50:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 47 (0x2f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D0C18/serialNumber=089CB5A2B33B786D754A07D680A9C494142619E1 Validity Not Before: Nov 21 05:44:32 2024 GMT Not After : Nov 28 05:44:32 2024 GMT Subject: CN=673ec8c0-236d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:7c:ff:1f:86:41:87:04:8f:89:6c:6e:1c:cb: 7b:24:35:b9:b6:70:ec:62:6a:74:ae:6d:51:57:ae: 12:ed:e7:fd:1b:1a:c9:26:21:52:37:cf:5a:8d:79: 91:df:19:c6:19:f7:95:2f:d6:76:e1:d1:22:3c:04: 48:2a:bf:b3:19:7f:46:32:5d:f7:2b:6d:5a:49:9c: 99:d7:8e:87:9b:26:be:ea:75:00:b0:e7:29:02:cc: 5f:48:a1:12:9d:42:18:ef:80:6a:a6:71:b3:9b:ea: 47:cd:1b:68:0e:6b:8e:9f:b3:ba:4e:98:ab:ee:b0: ca:a2:78:bd:a2:9a:58:4e:34:04:89:b1:22:51:9d: 9d:c4:af:c2:d7:72:12:e3:13:a5:a8:d2:7c:c0:9b: 30:7d:6c:05:e2:fb:c1:fd:0a:96:69:03:e9:97:1c: 43:08:98:16:57:c4:12:7e:1f:90:90:68:73:1d:d0: 7f:83:d7:50:56:4b:af:65:b4:03:cc:ee:f8:7b:cd: c5:a9:34:da:58:48:1f:f3:b9:80:6e:63:4a:b4:97: 46:ed:dc:94:a8:ca:fb:87:b6:bd:e1:a7:8d:45:73: a6:7b:1f:b3:a8:1e:52:92:74:16:8a:82:2e:3f:39: 01:7a:45:9a:89:ce:63:16:18:61:f1:22:fc:b5:f8: 5e:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:E1:AD:06:53:AD:87:38:43:C3:68:A3:DB:70:BA:22:2A:5C:80:AE X509v3 Authority Key Identifier: keyid:08:9C:B5:A2:B3:3B:78:6D:75:4A:07:D6:80:A9:C4:94:14:26:19:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D0C18/683BA096646611EF8E18F87AC4F9AE02/CJy1orM7eG11SgfWgKnElBQmGeE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/CJy1orM7eG11SgfWgKnElBQmGeE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D0C18/683BA096646611EF8E18F87AC4F9AE02/CJy1orM7eG11SgfWgKnElBQmGeE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8a:3d:f9:a8:22:a0:3c:ac:71:75:b5:72:05:d6:2a:37:32:da: 15:88:9c:13:0d:20:3b:a9:c3:06:2c:27:48:3d:ca:d1:73:c8: b0:52:fd:96:f8:3f:69:06:dd:66:38:9c:37:a2:45:28:9f:9e: b7:0b:f7:97:ba:39:1e:7f:1d:5c:36:85:c9:97:18:ba:5c:05: 5f:a2:7c:c9:97:54:af:61:7b:13:11:9b:0f:2e:3c:08:8d:ff: 44:1a:71:d4:53:f9:95:d4:44:39:b2:8d:35:6a:9c:56:e0:f4: 18:73:44:1f:9a:ab:49:d3:b4:e1:6a:2c:44:92:c6:d9:a9:a1: 86:eb:71:e8:1f:84:94:93:77:62:99:12:75:e0:91:e7:57:86: 00:db:26:3d:55:5e:29:de:05:fa:c0:75:10:67:d8:34:27:7d: 0c:fb:37:c5:93:16:48:1f:76:c2:c7:6d:c1:f3:9d:06:74:39: d2:9b:39:b9:27:4d:6a:be:11:23:11:f3:d4:87:4a:74:4c:41: de:f3:39:16:c8:21:a5:f9:94:2c:98:b1:eb:cc:60:ec:0a:85: 8f:d2:ee:c8:54:dd:fb:19:7d:de:e0:51:ea:5b:53:9b:ea:61: 41:32:92:69:af:c0:24:e2:5d:80:79:e8:f1:5c:57:7e:e7:21: b9:e8:b8:1e -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBLzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE MEMxODExMC8GA1UEBRMoMDg5Q0I1QTJCMzNCNzg2RDc1NEEwN0Q2ODBBOUM0OTQx NDI2MTlFMTAeFw0yNDExMjEwNTQ0MzJaFw0yNDExMjgwNTQ0MzJaMBgxFjAUBgNV BAMTDTY3M2VjOGMwLTIzNmQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCqfP8fhkGHBI+JbG4cy3skNbm2cOxianSubVFXrhLt5/0bGskmIVI3z1qNeZHf GcYZ95Uv1nbh0SI8BEgqv7MZf0YyXfcrbVpJnJnXjoebJr7qdQCw5ykCzF9IoRKd QhjvgGqmcbOb6kfNG2gOa46fs7pOmKvusMqieL2imlhONASJsSJRnZ3Er8LXchLj E6Wo0nzAmzB9bAXi+8H9CpZpA+mXHEMImBZXxBJ+H5CQaHMd0H+D11BWS69ltAPM 7vh7zcWpNNpYSB/zuYBuY0q0l0bt3JSoyvuHtr3hp41Fc6Z7H7OoHlKSdBaKgi4/ OQF6RZqJzmMWGGHxIvy1+F77AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUTuGtBlOt hzhDw2ij23C6IipcgK4wHwYDVR0jBBgwFoAUCJy1orM7eG11SgfWgKnElBQmGeEw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQwQzE4LzY4M0JBMDk2NjQ2 NjExRUY4RTE4Rjg3QUM0RjlBRTAyL0NKeTFvck03ZUcxMVNnZldnS25FbEJRbUdl RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvQ0p5MW9yTTdlRzExU2dmV2dLbkVsQlFtR2VFLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQw QzE4LzY4M0JBMDk2NjQ2NjExRUY4RTE4Rjg3QUM0RjlBRTAyL0NKeTFvck03ZUcx MVNnZldnS25FbEJRbUdlRS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAIo9+agioDyscXW1cgXWKjcy2hWInBMNIDupwwYsJ0g9ytFzyLBS/Zb4 P2kG3WY4nDeiRSifnrcL95e6OR5/HVw2hcmXGLpcBV+ifMmXVK9hexMRmw8uPAiN /0QacdRT+ZXURDmyjTVqnFbg9BhzRB+aq0nTtOFqLESSxtmpoYbrcegfhJSTd2KZ EnXgkedXhgDbJj1VXineBfrAdRBn2DQnfQz7N8WTFkgfdsLHbcHznQZ0OdKbObkn TWq+ESMR89SHSnRMQd7zORbIIaX5lCyYsevMYOwKhY/S7shU3fsZfd7gUepbU5vq YUEykmmvwCTiXYB56PFcV37nIbnouB4= -----END CERTIFICATE-----Generated at Thu Nov 21 07:40:38 2024 by rpki-client on console-ams.rpki-client.org