$ rpki-client -vvf rpki.apnic.net/member_repository/A91D25E5/ECBF00E89B4B11EB9730A154C4F9AE02/-rpT9D2gDiGn6veS1I_bdpV6gLw.mft File: -rpT9D2gDiGn6veS1I_bdpV6gLw.mft (raw, json) Hash identifier: 0nDC88CpoEihrsayYahwzOIHL1hyuvePfw6kr6iytFk= Subject key identifier: 44:19:91:D0:D3:D2:1A:9D:3F:AA:7E:5D:EC:2E:D2:E7:AA:08:7E:7B Authority key identifier: FA:BA:53:F4:3D:A0:0E:21:A7:EA:F7:92:D4:8F:DB:76:95:7A:80:BC Certificate issuer: /CN=A91D25E5/serialNumber=FABA53F43DA00E21A7EAF792D48FDB76957A80BC Certificate serial: 05C7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-rpT9D2gDiGn6veS1I_bdpV6gLw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D25E5/ECBF00E89B4B11EB9730A154C4F9AE02/-rpT9D2gDiGn6veS1I_bdpV6gLw.mft Manifest number: 05C2 Signing time: Fri 22 Nov 2024 22:36:24 +0000 Manifest this update: Fri 22 Nov 2024 22:36:23 +0000 Manifest next update: Fri 29 Nov 2024 22:36:23 +0000 Files and hashes: 1: -rpT9D2gDiGn6veS1I_bdpV6gLw.crl (hash: TAqYdgw6bk8nUfAJh0sWUn2ij6Ijegziw8fXMIdN7po=) 2: EB8DE9B49B6411EBA08FBE84C4F9AE02.roa (hash: OXMHoo8Egs65FUqbV0ME5rvmbJEFphKa1wlI6laYOWs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D25E5/ECBF00E89B4B11EB9730A154C4F9AE02/-rpT9D2gDiGn6veS1I_bdpV6gLw.crl rsync://rpki.apnic.net/member_repository/A91D25E5/ECBF00E89B4B11EB9730A154C4F9AE02/-rpT9D2gDiGn6veS1I_bdpV6gLw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-rpT9D2gDiGn6veS1I_bdpV6gLw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1479 (0x5c7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D25E5/serialNumber=FABA53F43DA00E21A7EAF792D48FDB76957A80BC Validity Not Before: Nov 22 22:36:23 2024 GMT Not After : Nov 29 22:36:23 2024 GMT Subject: CN=67410767-d3b4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:e6:b7:f0:1d:3a:9d:36:1e:71:55:cf:3b:79: df:4d:95:06:bf:0d:28:bc:72:1d:e8:f7:e1:48:93: 27:40:9f:2d:4d:c0:c8:e0:c5:8d:4e:ff:f9:4b:c0: 87:9e:4a:03:36:31:60:81:cf:64:0d:bc:b0:9c:a4: e5:a8:a1:d5:77:c1:25:23:55:e6:75:50:dc:22:2c: 30:89:dc:c6:45:c6:07:3e:bf:a0:0c:b6:2d:30:77: 0d:88:87:36:c5:bc:5c:59:2f:f0:62:0f:fd:f1:e4: 13:93:32:40:ec:75:2d:dc:a7:6e:0f:a3:26:cf:9e: 4e:d8:e9:2c:a3:26:41:74:1b:f2:ce:d2:63:59:a9: ea:d9:06:7e:d2:99:dd:61:45:a1:14:b8:ff:19:8e: a3:28:29:e6:fc:e2:ab:23:bc:65:46:1e:a4:a7:94: 03:6c:6d:29:81:cf:1e:df:3a:2f:92:4f:5f:ca:c5: 71:43:6c:75:49:5d:d9:5b:b0:fa:67:ca:9c:98:b6: 04:43:64:4e:26:c5:54:34:25:65:0c:62:e0:ea:07: 39:a2:b7:81:91:9e:1d:dd:07:4f:ec:99:29:00:c6: c3:b2:55:86:81:13:c5:72:8f:d1:d2:db:b9:20:72: c5:b8:98:9a:bb:44:65:14:fe:58:25:aa:e2:1b:21: 82:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:19:91:D0:D3:D2:1A:9D:3F:AA:7E:5D:EC:2E:D2:E7:AA:08:7E:7B X509v3 Authority Key Identifier: keyid:FA:BA:53:F4:3D:A0:0E:21:A7:EA:F7:92:D4:8F:DB:76:95:7A:80:BC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D25E5/ECBF00E89B4B11EB9730A154C4F9AE02/-rpT9D2gDiGn6veS1I_bdpV6gLw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-rpT9D2gDiGn6veS1I_bdpV6gLw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D25E5/ECBF00E89B4B11EB9730A154C4F9AE02/-rpT9D2gDiGn6veS1I_bdpV6gLw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 02:42:2c:6b:8f:a3:03:45:3c:9f:02:45:aa:26:35:81:00:93: 41:68:87:02:61:06:5b:12:0f:ec:ad:c8:b3:ef:98:34:c9:f9: 53:3e:32:e1:e8:64:d8:22:42:1c:af:b9:78:fc:a6:93:13:d7: f8:96:3f:ec:67:ab:40:58:f3:ec:6c:fd:d8:3d:b0:f5:9d:ed: 09:e6:9a:bf:ff:ff:96:b8:fd:51:c0:44:dd:fc:90:35:80:38: 3a:d9:6a:67:6d:2b:4e:78:1a:34:f3:e4:cd:52:2e:25:a9:37: 9d:89:90:aa:0c:88:12:a8:b5:88:b8:eb:c0:78:67:f6:5b:ad: b8:a3:da:ac:1e:e2:26:ad:c8:b8:fb:cc:56:b9:33:a6:fa:64: ed:cc:8b:2e:c0:e3:23:1a:86:ee:3d:72:9c:b7:c0:1c:9a:10: bd:73:cf:32:32:ec:eb:ec:d3:df:f9:27:e5:6d:e2:4a:18:ed: 6d:2f:38:1e:d0:4b:46:9d:ee:98:98:e0:12:16:c6:39:75:8c: 18:25:4e:75:5e:65:cc:0d:fc:6e:3d:d3:1f:5f:de:38:1f:3e: dd:c1:c0:c0:e2:95:5e:7f:9b:af:35:52:c2:4a:7f:86:7c:fe: 93:c0:bf:d9:dd:e2:e5:b7:b9:82:e8:9c:b9:04:ea:ea:88:60: 82:4d:57:47 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBccwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDI1RTUxMTAvBgNVBAUTKEZBQkE1M0Y0M0RBMDBFMjFBN0VBRjc5MkQ0OEZEQjc2 OTU3QTgwQkMwHhcNMjQxMTIyMjIzNjIzWhcNMjQxMTI5MjIzNjIzWjAYMRYwFAYD VQQDEw02NzQxMDc2Ny1kM2I0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw+a38B06nTYecVXPO3nfTZUGvw0ovHId6PfhSJMnQJ8tTcDI4MWNTv/5S8CH nkoDNjFggc9kDbywnKTlqKHVd8ElI1XmdVDcIiwwidzGRcYHPr+gDLYtMHcNiIc2 xbxcWS/wYg/98eQTkzJA7HUt3KduD6Mmz55O2OksoyZBdBvyztJjWanq2QZ+0pnd YUWhFLj/GY6jKCnm/OKrI7xlRh6kp5QDbG0pgc8e3zovkk9fysVxQ2x1SV3ZW7D6 Z8qcmLYEQ2ROJsVUNCVlDGLg6gc5oreBkZ4d3QdP7JkpAMbDslWGgRPFco/R0tu5 IHLFuJiau0RlFP5YJariGyGCkQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEQZkdDT 0hqdP6p+Xewu0ueqCH57MB8GA1UdIwQYMBaAFPq6U/Q9oA4hp+r3ktSP23aVeoC8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMjVFNS9FQ0JGMDBFODlC NEIxMUVCOTczMEExNTRDNEY5QUUwMi8tcnBUOUQyZ0RpR242dmVTMUlfYmRwVjZn THcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1ycFQ5RDJnRGlHbjZ2ZVMxSV9iZHBWNmdMdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MjVFNS9FQ0JGMDBFODlCNEIxMUVCOTczMEExNTRDNEY5QUUwMi8tcnBUOUQyZ0Rp R242dmVTMUlfYmRwVjZnTHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQACQixrj6MDRTyfAkWqJjWBAJNBaIcCYQZbEg/srciz75g0yflTPjLh 6GTYIkIcr7l4/KaTE9f4lj/sZ6tAWPPsbP3YPbD1ne0J5pq///+WuP1RwETd/JA1 gDg62WpnbStOeBo08+TNUi4lqTediZCqDIgSqLWIuOvAeGf2W624o9qsHuImrci4 +8xWuTOm+mTtzIsuwOMjGobuPXKct8AcmhC9c88yMuzr7NPf+SflbeJKGO1tLzge 0EtGne6YmOASFsY5dYwYJU51XmXMDfxuPdMfX944Hz7dwcDA4pVef5uvNVLCSn+G fP6TwL/Z3eLlt7mC6Jy5BOrqiGCCTVdH -----END CERTIFICATE-----Generated at Sat Nov 23 00:08:50 2024 by rpki-client on console-ams.rpki-client.org