$ rpki-client -vvf rpki.apnic.net/member_repository/A91D3102/D4AEE2C8768E11E399A957455911EA32/-Ro6mDFDhMQDqP8ipFO8oaO6bNg.mft File: -Ro6mDFDhMQDqP8ipFO8oaO6bNg.mft (raw, json) Hash identifier: 743RDKGgS1drcYxfn5ll724OwfTcToJtIztRXyH4gKM= Subject key identifier: A7:3C:D8:A7:B0:21:2E:E8:44:D1:C7:E2:E6:BB:73:54:54:06:13:D6 Authority key identifier: F9:1A:3A:98:31:43:84:C4:03:A8:FF:22:A4:53:BC:A1:A3:BA:6C:D8 Certificate issuer: /CN=A91D3102/serialNumber=F91A3A98314384C403A8FF22A453BCA1A3BA6CD8 Certificate serial: 2D77 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-Ro6mDFDhMQDqP8ipFO8oaO6bNg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D3102/D4AEE2C8768E11E399A957455911EA32/-Ro6mDFDhMQDqP8ipFO8oaO6bNg.mft Manifest number: 2D5F Signing time: Fri 22 Nov 2024 15:31:45 +0000 Manifest this update: Fri 22 Nov 2024 15:31:45 +0000 Manifest next update: Fri 29 Nov 2024 15:31:45 +0000 Files and hashes: 1: -Ro6mDFDhMQDqP8ipFO8oaO6bNg.crl (hash: wOrKgZuETNblthp6qK6XvAJFQJfiaOzYwTQGVn4Ff1Q=) 2: 611D8094B13D11E59299870AC4F9AE02.roa (hash: Ge8zFlpjpqEtuKQN0h56H1Urr1O0D0HMkBD9jJfCPmM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D3102/D4AEE2C8768E11E399A957455911EA32/-Ro6mDFDhMQDqP8ipFO8oaO6bNg.crl rsync://rpki.apnic.net/member_repository/A91D3102/D4AEE2C8768E11E399A957455911EA32/-Ro6mDFDhMQDqP8ipFO8oaO6bNg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-Ro6mDFDhMQDqP8ipFO8oaO6bNg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 15:22:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11639 (0x2d77) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D3102/serialNumber=F91A3A98314384C403A8FF22A453BCA1A3BA6CD8 Validity Not Before: Nov 22 15:31:45 2024 GMT Not After : Nov 29 15:31:45 2024 GMT Subject: CN=6740a3e1-0f6f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:25:ff:27:bf:9d:d2:f7:f1:2c:f7:3d:2e:21: 6b:d8:e3:c5:c0:07:bc:f4:69:94:16:53:0d:e8:7d: 91:db:29:24:07:3f:e7:73:d7:19:8b:71:32:10:92: 65:9a:94:bd:07:5b:39:21:43:d7:0c:d7:46:8c:2a: 74:47:15:fd:43:35:c7:ee:d2:db:35:b3:8c:d9:2f: bc:af:48:a0:cf:52:d3:75:70:83:13:fa:c0:a5:ce: 4a:9e:b8:4f:84:6c:ef:1a:29:85:fa:8d:5e:05:a9: 1c:a2:af:c5:9c:54:f3:f7:7f:1b:dd:72:b5:8d:89: 10:2e:f1:73:1f:48:33:03:be:ff:11:00:03:4a:2a: e4:c1:f1:b4:6a:53:5c:f8:23:6f:9b:c8:1c:c2:6e: ac:c8:a2:ae:bd:0d:41:20:ba:73:29:c9:57:fd:fe: b8:2d:dc:53:ee:13:0f:f5:d1:24:23:db:92:09:7d: 36:80:18:37:71:a2:5f:08:f2:ba:ad:63:0a:11:6c: 07:ff:28:c7:c9:f2:18:41:6c:f1:26:75:fb:8b:05: 73:91:4a:68:71:b8:ed:d6:d6:83:4d:e0:d1:a9:50: 21:2f:a6:a3:cf:72:e4:08:95:13:86:f5:f2:60:f9: 3d:a4:01:1a:bb:e0:8d:32:39:15:2e:19:51:33:15: 83:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:3C:D8:A7:B0:21:2E:E8:44:D1:C7:E2:E6:BB:73:54:54:06:13:D6 X509v3 Authority Key Identifier: keyid:F9:1A:3A:98:31:43:84:C4:03:A8:FF:22:A4:53:BC:A1:A3:BA:6C:D8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D3102/D4AEE2C8768E11E399A957455911EA32/-Ro6mDFDhMQDqP8ipFO8oaO6bNg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-Ro6mDFDhMQDqP8ipFO8oaO6bNg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D3102/D4AEE2C8768E11E399A957455911EA32/-Ro6mDFDhMQDqP8ipFO8oaO6bNg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0c:6f:46:a6:5a:49:cf:bf:85:57:db:ee:e0:67:2b:d4:59:9f: af:91:e7:bc:1b:1e:c6:54:ca:9e:69:84:31:f2:2d:3c:a4:0e: ed:36:ab:51:5b:d8:4e:1e:ba:ad:31:6e:6e:3a:5d:e1:c9:a6: 4a:89:53:f9:52:69:50:6a:63:b9:5c:d8:a1:e8:d2:09:d7:af: 5d:dd:ac:4d:6e:21:97:cd:f7:79:21:c9:dc:86:0e:76:6a:b8: d9:b5:e5:73:83:e5:a1:34:ba:4d:92:af:6a:4a:20:7d:c9:3e: ac:e3:a7:ca:79:c6:9a:8c:e8:bd:d7:7d:20:01:09:42:b5:dd: f9:20:a1:91:31:ab:8b:b0:7f:f4:01:1a:6f:ff:b5:32:b2:14: e8:28:84:5c:17:20:38:d7:09:47:88:2f:5d:58:2b:11:60:7f: e2:2d:e2:5a:d3:10:e7:95:dc:24:8b:b3:2a:94:01:2c:cd:d2: 53:6f:af:b2:7c:eb:0e:90:25:58:c7:c5:d0:21:fa:59:5e:3d: 9a:89:d7:7e:04:f3:59:3d:af:a2:d7:88:d2:1e:2b:51:0f:a2: da:1e:7d:cc:17:92:4b:b3:7e:56:cd:8b:c2:e4:4f:5c:f9:fe: 68:4e:68:7f:f3:f3:df:0f:15:48:d3:8f:5e:3f:5b:c5:53:a2: 1f:51:b8:80 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICLXcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDMxMDIxMTAvBgNVBAUTKEY5MUEzQTk4MzE0Mzg0QzQwM0E4RkYyMkE0NTNCQ0Ex QTNCQTZDRDgwHhcNMjQxMTIyMTUzMTQ1WhcNMjQxMTI5MTUzMTQ1WjAYMRYwFAYD VQQDEw02NzQwYTNlMS0wZjZmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqiX/J7+d0vfxLPc9LiFr2OPFwAe89GmUFlMN6H2R2ykkBz/nc9cZi3EyEJJl mpS9B1s5IUPXDNdGjCp0RxX9QzXH7tLbNbOM2S+8r0igz1LTdXCDE/rApc5KnrhP hGzvGimF+o1eBakcoq/FnFTz938b3XK1jYkQLvFzH0gzA77/EQADSirkwfG0alNc +CNvm8gcwm6syKKuvQ1BILpzKclX/f64LdxT7hMP9dEkI9uSCX02gBg3caJfCPK6 rWMKEWwH/yjHyfIYQWzxJnX7iwVzkUpocbjt1taDTeDRqVAhL6ajz3LkCJUThvXy YPk9pAEau+CNMjkVLhlRMxWDAwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKc82Kew IS7oRNHH4ua7c1RUBhPWMB8GA1UdIwQYMBaAFPkaOpgxQ4TEA6j/IqRTvKGjumzY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMzEwMi9ENEFFRTJDODc2 OEUxMUUzOTlBOTU3NDU1OTExRUEzMi8tUm82bURGRGhNUURxUDhpcEZPOG9hTzZi TmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1SbzZtREZEaE1RRHFQOGlwRk84b2FPNmJOZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MzEwMi9ENEFFRTJDODc2OEUxMUUzOTlBOTU3NDU1OTExRUEzMi8tUm82bURGRGhN UURxUDhpcEZPOG9hTzZiTmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAMb0amWknPv4VX2+7gZyvUWZ+vkee8Gx7GVMqeaYQx8i08pA7tNqtR W9hOHrqtMW5uOl3hyaZKiVP5UmlQamO5XNih6NIJ169d3axNbiGXzfd5Icnchg52 arjZteVzg+WhNLpNkq9qSiB9yT6s46fKecaajOi9130gAQlCtd35IKGRMauLsH/0 ARpv/7UyshToKIRcFyA41wlHiC9dWCsRYH/iLeJa0xDnldwki7MqlAEszdJTb6+y fOsOkCVYx8XQIfpZXj2aidd+BPNZPa+i14jSHitRD6LaHn3MF5JLs35WzYvC5E9c +f5oTmh/8/PfDxVI049eP1vFU6IfUbiA -----END CERTIFICATE-----Generated at Fri Nov 22 16:50:04 2024 by rpki-client on console-ams.rpki-client.org