$ rpki-client -vvf rpki.apnic.net/member_repository/A91D4413/0816E754FFB411E59443102CC4F9AE02/iqh4ZSaFI0aDk3JjHfsJmEvDAF4.mft File: iqh4ZSaFI0aDk3JjHfsJmEvDAF4.mft (raw, json) Hash identifier: xW30pCstP1M/t3vK1JyVD5UNglkzq4Fd0SPVM3EA+14= Subject key identifier: CA:DB:13:16:A3:3B:3C:20:7C:1A:B8:76:17:E3:EB:73:4A:BB:95:DD Authority key identifier: 8A:A8:78:65:26:85:23:46:83:93:72:63:1D:FB:09:98:4B:C3:00:5E Certificate issuer: /CN=A91D4413/serialNumber=8AA8786526852346839372631DFB09984BC3005E Certificate serial: 0A25 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iqh4ZSaFI0aDk3JjHfsJmEvDAF4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D4413/0816E754FFB411E59443102CC4F9AE02/iqh4ZSaFI0aDk3JjHfsJmEvDAF4.mft Manifest number: 2A7C Signing time: Fri 22 Nov 2024 15:57:57 +0000 Manifest this update: Fri 22 Nov 2024 15:57:57 +0000 Manifest next update: Fri 29 Nov 2024 15:57:57 +0000 Files and hashes: 1: iqh4ZSaFI0aDk3JjHfsJmEvDAF4.crl (hash: M4COXSrQLAuFCj4zyPQ9vK+Hd8sbtpwMff2Iva3HJEk=) 2: 1324C3945ECB11EAB9A53075C4F9AE02.roa (hash: Gj6P0hvRFS1vzEC264ECM2IUV37Ayz6A5+ZUKMlGXCQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D4413/0816E754FFB411E59443102CC4F9AE02/iqh4ZSaFI0aDk3JjHfsJmEvDAF4.crl rsync://rpki.apnic.net/member_repository/A91D4413/0816E754FFB411E59443102CC4F9AE02/iqh4ZSaFI0aDk3JjHfsJmEvDAF4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iqh4ZSaFI0aDk3JjHfsJmEvDAF4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 15:57:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2597 (0xa25) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D4413/serialNumber=8AA8786526852346839372631DFB09984BC3005E Validity Not Before: Nov 22 15:57:57 2024 GMT Not After : Nov 29 15:57:57 2024 GMT Subject: CN=6740aa05-2a76 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:89:2f:d7:80:71:5b:58:51:4f:4d:9e:03:68: 14:92:d8:01:01:90:15:07:30:1b:75:92:c0:72:e9: 25:07:5f:c4:3c:d4:53:7c:21:95:5a:aa:69:6d:37: 3e:2b:21:59:76:77:fe:1a:04:99:48:fc:93:62:fd: 17:3b:73:06:42:91:40:9f:ab:c3:3e:0d:64:74:d3: cf:28:5b:ed:96:fc:97:c6:2a:41:43:35:4f:f3:e3: 76:d7:ff:9e:f6:ea:08:fe:48:0d:e5:3f:3c:26:a0: 68:45:49:71:72:31:32:3c:9a:26:2d:32:5b:1a:04: d1:86:f3:05:c7:a7:75:93:ee:41:ef:27:81:1b:28: 45:33:bb:0f:c4:d6:57:a9:b4:05:74:d2:0b:8b:a9: b9:b6:28:45:05:86:e3:69:3c:d8:ac:c8:cb:44:65: d8:d3:37:64:7a:ee:35:f1:9a:f1:8b:d1:ad:7f:06: a5:a7:4d:d2:9c:34:86:9a:bd:37:c4:83:26:bb:78: 0d:99:99:2e:14:46:7b:d0:83:2b:97:a2:54:3e:32: 74:c5:98:67:37:16:b2:8d:19:c1:7c:11:2b:24:ba: c7:24:7d:0a:ac:20:85:45:0c:5d:97:2f:16:4d:c8: 21:50:79:24:35:95:41:c0:88:2d:60:ef:36:67:a4: 25:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:DB:13:16:A3:3B:3C:20:7C:1A:B8:76:17:E3:EB:73:4A:BB:95:DD X509v3 Authority Key Identifier: keyid:8A:A8:78:65:26:85:23:46:83:93:72:63:1D:FB:09:98:4B:C3:00:5E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D4413/0816E754FFB411E59443102CC4F9AE02/iqh4ZSaFI0aDk3JjHfsJmEvDAF4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iqh4ZSaFI0aDk3JjHfsJmEvDAF4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D4413/0816E754FFB411E59443102CC4F9AE02/iqh4ZSaFI0aDk3JjHfsJmEvDAF4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c4:a5:f1:5e:40:73:b5:d0:94:bc:1f:3e:a5:6d:21:d6:42:83: 54:e3:3c:e7:7e:43:84:b2:26:64:4e:8b:6e:f1:64:d1:99:0e: a9:e5:ad:8d:29:d9:41:5c:5a:23:98:1d:a2:76:f3:c6:b4:74: 0f:70:09:78:42:5f:57:ad:5e:96:21:6c:de:54:f2:25:73:e5: 8c:75:57:81:fc:fe:7d:d9:e4:e5:e8:64:99:9a:d1:85:54:37: 01:96:e7:74:d6:33:d9:67:21:cf:88:42:55:82:0c:6d:ef:e9: 53:a2:9f:50:b9:91:0e:60:63:4f:e8:0c:d9:16:1e:ed:9f:86: 07:65:26:7e:b3:ee:ed:4b:8e:2d:18:a5:32:9e:b4:63:3a:eb: 9f:59:6c:27:86:01:d1:5c:82:42:da:d5:c2:95:59:cd:09:b6: 87:0d:4b:14:02:46:da:d7:d0:c1:74:9b:2a:c8:8a:29:2c:f1: ae:06:b8:09:d9:0b:4b:21:7c:fa:c4:a2:30:f7:e3:1c:a5:d5: 73:3a:36:87:4c:3c:3f:83:2d:6c:5a:4f:ad:ec:d6:04:cf:3f: ed:55:58:52:48:5d:68:06:6b:b2:06:ab:ed:79:91:10:3f:2c: 1b:bc:c4:d2:c0:d9:98:8e:99:38:09:5e:5c:47:aa:c4:9d:cb: 1a:6d:13:85 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCiUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDQ0MTMxMTAvBgNVBAUTKDhBQTg3ODY1MjY4NTIzNDY4MzkzNzI2MzFERkIwOTk4 NEJDMzAwNUUwHhcNMjQxMTIyMTU1NzU3WhcNMjQxMTI5MTU1NzU3WjAYMRYwFAYD VQQDEw02NzQwYWEwNS0yYTc2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA24kv14BxW1hRT02eA2gUktgBAZAVBzAbdZLAcuklB1/EPNRTfCGVWqppbTc+ KyFZdnf+GgSZSPyTYv0XO3MGQpFAn6vDPg1kdNPPKFvtlvyXxipBQzVP8+N21/+e 9uoI/kgN5T88JqBoRUlxcjEyPJomLTJbGgTRhvMFx6d1k+5B7yeBGyhFM7sPxNZX qbQFdNILi6m5tihFBYbjaTzYrMjLRGXY0zdkeu418Zrxi9Gtfwalp03SnDSGmr03 xIMmu3gNmZkuFEZ70IMrl6JUPjJ0xZhnNxayjRnBfBErJLrHJH0KrCCFRQxdly8W TcghUHkkNZVBwIgtYO82Z6QlSwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMrbExaj OzwgfBq4dhfj63NKu5XdMB8GA1UdIwQYMBaAFIqoeGUmhSNGg5NyYx37CZhLwwBe MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENDQxMy8wODE2RTc1NEZG QjQxMUU1OTQ0MzEwMkNDNEY5QUUwMi9pcWg0WlNhRkkwYURrM0pqSGZzSm1FdkRB RjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lxaDRaU2FGSTBhRGszSmpIZnNKbUV2REFGNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NDQxMy8wODE2RTc1NEZGQjQxMUU1OTQ0MzEwMkNDNEY5QUUwMi9pcWg0WlNhRkkw YURrM0pqSGZzSm1FdkRBRjQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDEpfFeQHO10JS8Hz6lbSHWQoNU4zznfkOEsiZkTotu8WTRmQ6p5a2N KdlBXFojmB2idvPGtHQPcAl4Ql9XrV6WIWzeVPIlc+WMdVeB/P592eTl6GSZmtGF VDcBlud01jPZZyHPiEJVggxt7+lTop9QuZEOYGNP6AzZFh7tn4YHZSZ+s+7tS44t GKUynrRjOuufWWwnhgHRXIJC2tXClVnNCbaHDUsUAkba19DBdJsqyIopLPGuBrgJ 2QtLIXz6xKIw9+McpdVzOjaHTDw/gy1sWk+t7NYEzz/tVVhSSF1oBmuyBqvteZEQ PywbvMTSwNmYjpk4CV5cR6rEncsabROF -----END CERTIFICATE-----Generated at Fri Nov 22 19:50:18 2024 by rpki-client on console-ams.rpki-client.org