$ rpki-client -vvf rpki.apnic.net/member_repository/A91D2B62/BD29B8165AE011EF8651B61BC4F9AE02/5vZdIhtZX2uhPrMU3uM4yiQeJyA.mft File: 5vZdIhtZX2uhPrMU3uM4yiQeJyA.mft (raw, json) Hash identifier: XZ5YLQgCW36mtywiWKJu+AIB09cFn/DryoDboPIfLZM= Subject key identifier: 88:C9:AD:8C:71:1D:73:6B:00:30:ED:7D:11:BF:28:EA:F3:B1:D1:0B Authority key identifier: E6:F6:5D:22:1B:59:5F:6B:A1:3E:B3:14:DE:E3:38:CA:24:1E:27:20 Certificate issuer: /CN=A91D2B62/serialNumber=E6F65D221B595F6BA13EB314DEE338CA241E2720 Certificate serial: 35 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5vZdIhtZX2uhPrMU3uM4yiQeJyA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D2B62/BD29B8165AE011EF8651B61BC4F9AE02/5vZdIhtZX2uhPrMU3uM4yiQeJyA.mft Manifest number: 34 Signing time: Thu 21 Nov 2024 05:36:54 +0000 Manifest this update: Thu 21 Nov 2024 05:36:53 +0000 Manifest next update: Thu 28 Nov 2024 05:36:53 +0000 Files and hashes: 1: 5vZdIhtZX2uhPrMU3uM4yiQeJyA.crl (hash: YY3tBx9cZs/VIIc/CKI6NEz/tJiqUzP3hXrQ7hkLSXE=) 2: F47CB05C5AE011EFB4CD7428C4F9AE02.roa (hash: SolE9/ls/4rdz8cVUNMpZ46SrWa9Gee/JJmOyfWq0t8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D2B62/BD29B8165AE011EF8651B61BC4F9AE02/5vZdIhtZX2uhPrMU3uM4yiQeJyA.crl rsync://rpki.apnic.net/member_repository/A91D2B62/BD29B8165AE011EF8651B61BC4F9AE02/5vZdIhtZX2uhPrMU3uM4yiQeJyA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5vZdIhtZX2uhPrMU3uM4yiQeJyA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 05:18:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 53 (0x35) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D2B62/serialNumber=E6F65D221B595F6BA13EB314DEE338CA241E2720 Validity Not Before: Nov 21 05:36:53 2024 GMT Not After : Nov 28 05:36:53 2024 GMT Subject: CN=673ec6f6-b26a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:dc:6e:a4:df:47:16:05:06:03:5b:dd:0f:69: d8:8c:7d:74:ea:8b:d4:4f:3e:a6:f5:97:3e:e7:43: 5c:9b:e5:bc:8d:70:26:cb:67:79:f7:a6:19:eb:86: 84:80:2d:23:0d:25:3b:e5:f4:04:b1:10:f8:86:cb: e3:7f:cb:fd:66:3b:31:85:e0:c7:34:03:96:f5:17: da:a2:f1:94:5a:b2:b3:cf:0a:fe:73:3f:5c:5d:68: ed:d6:f7:ba:e3:ff:bb:78:4e:b7:32:20:83:e8:6f: 21:99:86:95:f9:85:11:f6:18:6c:5a:51:df:e2:c0: 01:07:f3:e9:77:38:74:a4:3f:99:65:b0:43:5e:f9: f8:f9:32:45:3b:38:87:b8:3a:07:ef:26:32:76:63: 35:cf:bd:31:4e:4b:0c:9a:fc:41:44:cb:b4:10:d3: 3d:f8:64:49:fd:aa:3c:fd:dc:f3:d3:fa:fc:5f:13: 54:0d:1b:c0:4a:05:a8:cc:dc:ec:5d:b9:47:f7:e9: 2d:58:16:0e:f0:e7:44:ca:fa:2d:aa:ca:f7:b1:7e: 38:e8:1d:3d:3e:ff:a8:66:56:8e:33:11:02:3f:0a: 96:ff:53:cb:d5:0b:26:75:ab:32:f9:43:cc:89:cb: 91:5b:1c:b0:5d:23:87:50:c7:7c:58:86:7b:59:7c: 0b:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:C9:AD:8C:71:1D:73:6B:00:30:ED:7D:11:BF:28:EA:F3:B1:D1:0B X509v3 Authority Key Identifier: keyid:E6:F6:5D:22:1B:59:5F:6B:A1:3E:B3:14:DE:E3:38:CA:24:1E:27:20 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D2B62/BD29B8165AE011EF8651B61BC4F9AE02/5vZdIhtZX2uhPrMU3uM4yiQeJyA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5vZdIhtZX2uhPrMU3uM4yiQeJyA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D2B62/BD29B8165AE011EF8651B61BC4F9AE02/5vZdIhtZX2uhPrMU3uM4yiQeJyA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4d:21:24:e4:1e:fc:af:e1:8e:00:e2:10:b0:de:d3:56:1b:25: 49:2e:fd:b6:d8:ea:e2:f1:e0:49:5d:91:c2:89:2f:0f:ee:5d: ad:8a:d0:2c:ff:a9:b1:1c:e3:27:05:8c:6c:6c:22:e8:83:cb: 32:2e:0d:24:90:a2:d0:1f:54:e7:ec:13:fb:76:37:86:41:71: 56:b6:2e:35:8b:a9:9b:6f:dc:07:34:fa:b3:de:7b:11:e4:57: 29:a5:69:25:d4:08:69:b7:24:eb:ba:e0:4d:ba:c7:e8:3c:8c: bb:85:eb:5f:b2:f0:89:b7:83:3c:e2:cf:1b:11:93:c3:ba:d9: 85:d9:a4:50:e3:c3:56:bc:4a:f6:57:e3:09:13:59:e0:4e:7b: fc:67:19:a7:80:4d:68:00:c0:dd:02:e1:23:4a:1d:63:4a:08: 9c:d3:01:e3:5b:fe:12:23:e0:50:c4:97:b4:75:2f:79:66:71: ac:9c:c8:f0:31:9e:fb:46:2f:02:7e:63:ef:15:68:36:5d:cc: 14:af:68:80:74:96:c2:29:96:14:54:82:00:f1:6a:f0:84:4f: e0:06:4e:ef:e7:a7:b1:65:7e:31:43:23:9f:48:56:9e:9d:63: 2e:12:40:3f:b8:ff:a5:a0:18:d0:95:56:3e:64:74:e4:d6:15: 77:a5:cf:15 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBNTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE MkI2MjExMC8GA1UEBRMoRTZGNjVEMjIxQjU5NUY2QkExM0VCMzE0REVFMzM4Q0Ey NDFFMjcyMDAeFw0yNDExMjEwNTM2NTNaFw0yNDExMjgwNTM2NTNaMBgxFjAUBgNV BAMTDTY3M2VjNmY2LWIyNmEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCr3G6k30cWBQYDW90PadiMfXTqi9RPPqb1lz7nQ1yb5byNcCbLZ3n3phnrhoSA LSMNJTvl9ASxEPiGy+N/y/1mOzGF4Mc0A5b1F9qi8ZRasrPPCv5zP1xdaO3W97rj /7t4TrcyIIPobyGZhpX5hRH2GGxaUd/iwAEH8+l3OHSkP5llsENe+fj5MkU7OIe4 OgfvJjJ2YzXPvTFOSwya/EFEy7QQ0z34ZEn9qjz93PPT+vxfE1QNG8BKBajM3Oxd uUf36S1YFg7w50TK+i2qyvexfjjoHT0+/6hmVo4zEQI/Cpb/U8vVCyZ1qzL5Q8yJ y5FbHLBdI4dQx3xYhntZfAu3AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUiMmtjHEd c2sAMO19Eb8o6vOx0QswHwYDVR0jBBgwFoAU5vZdIhtZX2uhPrMU3uM4yiQeJyAw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQyQjYyL0JEMjlCODE2NUFF MDExRUY4NjUxQjYxQkM0RjlBRTAyLzV2WmRJaHRaWDJ1aFByTVUzdU00eWlRZUp5 QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvNXZaZElodFpYMnVoUHJNVTN1TTR5aVFlSnlBLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQy QjYyL0JEMjlCODE2NUFFMDExRUY4NjUxQjYxQkM0RjlBRTAyLzV2WmRJaHRaWDJ1 aFByTVUzdU00eWlRZUp5QS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAE0hJOQe/K/hjgDiELDe01YbJUku/bbY6uLx4EldkcKJLw/uXa2K0Cz/ qbEc4ycFjGxsIuiDyzIuDSSQotAfVOfsE/t2N4ZBcVa2LjWLqZtv3Ac0+rPeexHk VymlaSXUCGm3JOu64E26x+g8jLuF61+y8Im3gzzizxsRk8O62YXZpFDjw1a8SvZX 4wkTWeBOe/xnGaeATWgAwN0C4SNKHWNKCJzTAeNb/hIj4FDEl7R1L3lmcaycyPAx nvtGLwJ+Y+8VaDZdzBSvaIB0lsIplhRUggDxavCET+AGTu/np7FlfjFDI59IVp6d Yy4SQD+4/6WgGNCVVj5kdOTWFXelzxU= -----END CERTIFICATE-----Generated at Thu Nov 21 07:40:38 2024 by rpki-client on console-ams.rpki-client.org