$ rpki-client -vvf rpki.apnic.net/member_repository/A91D462A/4EBA846E585611EF9414455FC4F9AE02/Da9PGsWBmJMa1cAAf1JVp53Q5Mc.mft File: Da9PGsWBmJMa1cAAf1JVp53Q5Mc.mft (raw, json) Hash identifier: L6iu5ECWRvdcnwaAWPWlaxpaND7GkDv0PFCmWW7zF4s= Subject key identifier: 9C:E1:37:C9:60:59:0C:20:9F:EF:24:B7:A8:2D:4A:39:6B:20:83:A3 Authority key identifier: 0D:AF:4F:1A:C5:81:98:93:1A:D5:C0:00:7F:52:55:A7:9D:D0:E4:C7 Certificate issuer: /CN=A91D462A/serialNumber=0DAF4F1AC58198931AD5C0007F5255A79DD0E4C7 Certificate serial: 2E Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Da9PGsWBmJMa1cAAf1JVp53Q5Mc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D462A/4EBA846E585611EF9414455FC4F9AE02/Da9PGsWBmJMa1cAAf1JVp53Q5Mc.mft Manifest number: 2B Signing time: Tue 22 Oct 2024 16:26:25 +0000 Manifest this update: Tue 22 Oct 2024 16:26:25 +0000 Manifest next update: Tue 29 Oct 2024 16:26:25 +0000 Files and hashes: 1: Da9PGsWBmJMa1cAAf1JVp53Q5Mc.crl (hash: uIatPELwLny+3D10rAPLOlcBOn+MxohckP5MqmTlegc=) 2: D5BFBE9E591811EF80AA9F21C4F9AE02.roa (hash: PiTVTvIJuPLIvmwmVwVs4FvNzmtMerrh6ie8+8E7/iQ=) 3: 626CA672591911EFAF1F1D23C4F9AE02.roa (hash: AeHXxtKzggx7+8EAr/4ifBWx5ykFGA9hHbhXabbrHgE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D462A/4EBA846E585611EF9414455FC4F9AE02/Da9PGsWBmJMa1cAAf1JVp53Q5Mc.crl rsync://rpki.apnic.net/member_repository/A91D462A/4EBA846E585611EF9414455FC4F9AE02/Da9PGsWBmJMa1cAAf1JVp53Q5Mc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Da9PGsWBmJMa1cAAf1JVp53Q5Mc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 29 Oct 2024 16:26:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 46 (0x2e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D462A/serialNumber=0DAF4F1AC58198931AD5C0007F5255A79DD0E4C7 Validity Not Before: Oct 22 16:26:25 2024 GMT Not After : Oct 29 16:26:25 2024 GMT Subject: CN=6717d231-48f0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:6b:0b:1a:8c:d7:07:0c:f7:7d:f6:9a:ef:b0: f6:d7:b4:39:1c:85:f7:f2:f1:78:15:21:24:21:88: 0f:0c:8f:2e:1a:5a:30:1d:0d:ec:74:9d:67:20:78: bb:ab:2d:58:26:6f:be:a9:46:3b:ac:16:96:6b:24: e8:59:f0:ef:52:f6:f0:a6:ce:3d:a7:87:ad:40:50: 37:15:9b:15:3b:26:85:78:79:51:b0:cb:82:28:7f: 30:86:83:47:fc:7d:b8:2e:1b:0e:c6:f4:ae:88:3a: 38:c7:ba:ce:b3:14:40:c8:9c:fc:87:23:65:72:a1: ee:9b:74:4d:30:5d:aa:41:eb:1c:63:af:0f:a6:7f: 9f:e0:d3:4e:fb:de:9b:0b:bf:05:98:46:b7:44:f5: b3:3d:3b:d3:b0:d1:dd:25:6b:40:a9:bf:e5:6b:d1: 87:f8:c6:5e:f4:ee:a8:66:c7:47:11:74:42:7f:90: 07:fd:30:00:8a:6d:c5:34:cb:0c:66:cd:d7:98:b4: 14:95:30:44:bf:27:0d:6b:cb:80:a7:28:7d:0d:25: 01:93:02:7d:20:58:cb:e5:ff:c7:ea:d5:1c:94:72: c3:22:33:57:2b:0a:82:8b:df:47:dc:18:62:bb:15: cc:22:2b:07:32:de:45:a7:86:b1:02:cc:14:72:4a: cc:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9C:E1:37:C9:60:59:0C:20:9F:EF:24:B7:A8:2D:4A:39:6B:20:83:A3 X509v3 Authority Key Identifier: keyid:0D:AF:4F:1A:C5:81:98:93:1A:D5:C0:00:7F:52:55:A7:9D:D0:E4:C7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D462A/4EBA846E585611EF9414455FC4F9AE02/Da9PGsWBmJMa1cAAf1JVp53Q5Mc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Da9PGsWBmJMa1cAAf1JVp53Q5Mc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D462A/4EBA846E585611EF9414455FC4F9AE02/Da9PGsWBmJMa1cAAf1JVp53Q5Mc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3a:72:10:f5:f6:b9:8c:9c:54:32:c2:98:09:04:89:28:54:87: 63:dd:fc:a2:a1:06:49:15:05:fd:05:42:cc:de:38:2f:23:6c: 0a:4e:2f:9a:88:15:7b:0d:2a:80:f0:db:33:9d:dc:19:8f:c7: 81:17:c1:67:fa:99:d6:46:c6:da:31:3e:3e:26:3f:1c:01:98: 05:70:ea:16:53:91:bb:b5:89:b8:0e:e2:30:03:b2:0b:75:5d: de:1e:51:9a:8c:af:af:f6:bd:9c:a5:d6:d5:3b:73:a3:0e:c3: b8:e5:7c:1f:46:cc:66:6d:a3:89:1f:2f:0f:38:81:6d:cb:0f: e6:2e:db:f2:58:39:cf:a1:a9:03:cc:a1:15:7e:54:08:ff:30: 61:f0:68:6a:36:02:55:10:37:45:6d:23:ad:85:88:51:da:13: 9b:4f:1a:de:a9:f3:05:fa:73:e7:65:8a:18:05:c4:8d:0d:fb: 77:08:3c:6d:29:9f:18:4c:a8:8d:88:ba:16:78:2b:e4:72:b6: 0a:c5:38:d0:a6:46:17:8f:fa:97:4b:1d:36:12:52:27:58:03: b5:09:ce:7f:db:48:49:f2:c6:cb:14:eb:77:cf:eb:4e:89:6b: 11:76:55:78:c1:8f:d2:4f:70:40:68:10:4f:43:e6:f7:e2:c1: ca:50:a4:e3 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBLjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE NDYyQTExMC8GA1UEBRMoMERBRjRGMUFDNTgxOTg5MzFBRDVDMDAwN0Y1MjU1QTc5 REQwRTRDNzAeFw0yNDEwMjIxNjI2MjVaFw0yNDEwMjkxNjI2MjVaMBgxFjAUBgNV BAMTDTY3MTdkMjMxLTQ4ZjAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDQawsajNcHDPd99prvsPbXtDkchffy8XgVISQhiA8Mjy4aWjAdDex0nWcgeLur LVgmb76pRjusFpZrJOhZ8O9S9vCmzj2nh61AUDcVmxU7JoV4eVGwy4IofzCGg0f8 fbguGw7G9K6IOjjHus6zFEDInPyHI2Vyoe6bdE0wXapB6xxjrw+mf5/g00773psL vwWYRrdE9bM9O9Ow0d0la0Cpv+Vr0Yf4xl707qhmx0cRdEJ/kAf9MACKbcU0ywxm zdeYtBSVMES/Jw1ry4CnKH0NJQGTAn0gWMvl/8fq1RyUcsMiM1crCoKL30fcGGK7 FcwiKwcy3kWnhrECzBRySswNAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUnOE3yWBZ DCCf7yS3qC1KOWsgg6MwHwYDVR0jBBgwFoAUDa9PGsWBmJMa1cAAf1JVp53Q5Mcw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQ0NjJBLzRFQkE4NDZFNTg1 NjExRUY5NDE0NDU1RkM0RjlBRTAyL0RhOVBHc1dCbUpNYTFjQUFmMUpWcDUzUTVN Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvRGE5UEdzV0JtSk1hMWNBQWYxSlZwNTNRNU1jLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQ0 NjJBLzRFQkE4NDZFNTg1NjExRUY5NDE0NDU1RkM0RjlBRTAyL0RhOVBHc1dCbUpN YTFjQUFmMUpWcDUzUTVNYy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBADpyEPX2uYycVDLCmAkEiShUh2Pd/KKhBkkVBf0FQszeOC8jbApOL5qI FXsNKoDw2zOd3BmPx4EXwWf6mdZGxtoxPj4mPxwBmAVw6hZTkbu1ibgO4jADsgt1 Xd4eUZqMr6/2vZyl1tU7c6MOw7jlfB9GzGZto4kfLw84gW3LD+Yu2/JYOc+hqQPM oRV+VAj/MGHwaGo2AlUQN0VtI62FiFHaE5tPGt6p8wX6c+dlihgFxI0N+3cIPG0p nxhMqI2IuhZ4K+RytgrFONCmRheP+pdLHTYSUidYA7UJzn/bSEnyxssU63fP606J axF2VXjBj9JPcEBoEE9D5vfiwcpQpOM= -----END CERTIFICATE-----Generated at Tue Oct 22 18:44:55 2024 by rpki-client on console-ams.rpki-client.org