$ rpki-client -vvf rpki.apnic.net/member_repository/A91D51C1/D92E69AAC1EE11EBBFD57E2AC4F9AE02/l7tUs9I8N8PdPgFpypdNJ9up8FA.mft File: l7tUs9I8N8PdPgFpypdNJ9up8FA.mft (raw, json) Hash identifier: UGaNX0byuZFokSy3voZ5V9eWtJSJf2kWl4SZX5JM9Fw= Subject key identifier: 83:20:0D:28:24:06:71:5E:4A:65:D9:3B:62:5C:E8:D6:EB:95:44:E7 Authority key identifier: 97:BB:54:B3:D2:3C:37:C3:DD:3E:01:69:CA:97:4D:27:DB:A9:F0:50 Certificate issuer: /CN=A91D51C1/serialNumber=97BB54B3D23C37C3DD3E0169CA974D27DBA9F050 Certificate serial: 056C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l7tUs9I8N8PdPgFpypdNJ9up8FA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D51C1/D92E69AAC1EE11EBBFD57E2AC4F9AE02/l7tUs9I8N8PdPgFpypdNJ9up8FA.mft Manifest number: 0564 Signing time: Wed 20 Nov 2024 22:55:55 +0000 Manifest this update: Wed 20 Nov 2024 22:55:55 +0000 Manifest next update: Wed 27 Nov 2024 22:55:55 +0000 Files and hashes: 1: l7tUs9I8N8PdPgFpypdNJ9up8FA.crl (hash: SfM1hBUbOtrPUn1rzJHTJMRDvrsxdgGl+XMOUPYVGqE=) 2: 1E8ADFD0C1F211EBA984726AC4F9AE02.roa (hash: bWn5aFY6Kg9nqE6Xd5cFT5I+I/vhYdu828/JrK8jyYg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D51C1/D92E69AAC1EE11EBBFD57E2AC4F9AE02/l7tUs9I8N8PdPgFpypdNJ9up8FA.crl rsync://rpki.apnic.net/member_repository/A91D51C1/D92E69AAC1EE11EBBFD57E2AC4F9AE02/l7tUs9I8N8PdPgFpypdNJ9up8FA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l7tUs9I8N8PdPgFpypdNJ9up8FA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:33:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1388 (0x56c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D51C1/serialNumber=97BB54B3D23C37C3DD3E0169CA974D27DBA9F050 Validity Not Before: Nov 20 22:55:55 2024 GMT Not After : Nov 27 22:55:55 2024 GMT Subject: CN=673e68fb-8c64 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:03:26:32:25:3f:0f:76:81:10:99:30:93:fd: 49:6d:65:76:dc:9e:cb:4d:33:55:d0:f9:aa:44:07: e0:e0:e6:f0:da:84:40:dc:60:8f:fd:32:0b:47:70: 26:8b:9f:bf:36:3c:af:e3:70:50:18:8e:a4:8c:02: fe:63:c1:7a:24:fb:ee:38:be:21:b8:67:55:cc:d4: 10:d2:8b:23:27:ed:5c:ba:af:ea:4e:75:e1:72:c7: 48:38:5e:5a:90:e0:dd:5e:98:09:61:cf:af:d7:7f: ab:98:c7:75:19:08:c0:ea:00:73:13:b8:e2:d6:ab: 0f:94:20:b4:1a:03:8f:2e:00:d7:e2:57:f3:a4:d4: 82:04:7b:c4:96:d1:f9:f3:44:98:87:52:4b:71:c4: f1:6a:85:3d:2e:1a:c3:27:f5:32:fb:ce:4f:10:8c: 8a:1f:7a:61:3d:bc:b8:cb:2b:15:38:f9:75:0a:ea: 39:07:3d:3b:7c:ab:20:af:b2:65:24:01:1d:e0:b4: 47:c7:5c:0f:c7:63:35:06:63:2e:cc:a6:b7:42:e7: 13:ad:24:3b:49:bd:13:84:24:1e:8d:a2:42:06:fc: aa:5e:1f:8b:cc:d8:f9:fb:2f:53:0a:1c:4a:b9:02: dc:7d:28:62:17:41:cf:e1:1e:1a:1a:05:fd:b0:66: 6e:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:20:0D:28:24:06:71:5E:4A:65:D9:3B:62:5C:E8:D6:EB:95:44:E7 X509v3 Authority Key Identifier: keyid:97:BB:54:B3:D2:3C:37:C3:DD:3E:01:69:CA:97:4D:27:DB:A9:F0:50 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D51C1/D92E69AAC1EE11EBBFD57E2AC4F9AE02/l7tUs9I8N8PdPgFpypdNJ9up8FA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l7tUs9I8N8PdPgFpypdNJ9up8FA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D51C1/D92E69AAC1EE11EBBFD57E2AC4F9AE02/l7tUs9I8N8PdPgFpypdNJ9up8FA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 79:87:fb:1d:e0:38:33:4d:93:6e:6c:55:dc:43:85:0f:d1:28: f0:c3:00:37:3e:e9:3c:f7:7c:d6:aa:83:f8:de:ec:c5:3b:b4: 18:f1:90:d6:88:89:b3:6c:b1:eb:5d:1f:f1:8c:b8:6b:5d:5a: 05:3d:1f:fb:77:23:a9:d3:89:41:e0:44:3a:5c:67:dd:49:12: 11:40:da:94:2b:c0:3a:02:21:f8:3e:40:e9:94:2e:64:42:83: 24:65:3e:df:07:25:bf:ea:6d:ad:94:9e:28:2d:60:81:16:c9: aa:8a:d9:7e:e2:37:79:5e:e2:29:11:57:e3:39:24:ef:b7:3b: 53:8c:34:09:a6:4a:d7:25:c0:e5:ef:27:a9:52:9a:a8:d0:81: b9:30:25:35:d3:5c:13:33:db:1e:38:45:c1:f4:11:a1:64:5c: a9:cb:88:b1:54:d1:70:21:db:65:a2:a5:f4:7f:84:9f:3b:ec: 6e:f5:5a:86:eb:f5:83:64:56:21:1b:c6:df:45:49:62:be:d4: a3:f4:e2:9a:dd:e5:48:47:c5:e9:50:fb:2d:2f:e2:21:ab:ce: 72:69:e2:f8:cc:51:30:8b:a3:01:4f:c2:46:84:e4:22:2c:6e: 7a:5a:c2:69:b0:cd:56:3b:48:0d:d2:5b:97:96:41:f6:09:23: 43:a4:07:bd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBWwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDUxQzExMTAvBgNVBAUTKDk3QkI1NEIzRDIzQzM3QzNERDNFMDE2OUNBOTc0RDI3 REJBOUYwNTAwHhcNMjQxMTIwMjI1NTU1WhcNMjQxMTI3MjI1NTU1WjAYMRYwFAYD VQQDEw02NzNlNjhmYi04YzY0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApwMmMiU/D3aBEJkwk/1JbWV23J7LTTNV0PmqRAfg4Obw2oRA3GCP/TILR3Am i5+/Njyv43BQGI6kjAL+Y8F6JPvuOL4huGdVzNQQ0osjJ+1cuq/qTnXhcsdIOF5a kODdXpgJYc+v13+rmMd1GQjA6gBzE7ji1qsPlCC0GgOPLgDX4lfzpNSCBHvEltH5 80SYh1JLccTxaoU9LhrDJ/Uy+85PEIyKH3phPby4yysVOPl1Cuo5Bz07fKsgr7Jl JAEd4LRHx1wPx2M1BmMuzKa3QucTrSQ7Sb0ThCQejaJCBvyqXh+LzNj5+y9TChxK uQLcfShiF0HP4R4aGgX9sGZujwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIMgDSgk BnFeSmXZO2Jc6NbrlUTnMB8GA1UdIwQYMBaAFJe7VLPSPDfD3T4BacqXTSfbqfBQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENTFDMS9EOTJFNjlBQUMx RUUxMUVCQkZENTdFMkFDNEY5QUUwMi9sN3RVczlJOE44UGRQZ0ZweXBkTko5dXA4 RkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2w3dFVzOUk4TjhQZFBnRnB5cGROSjl1cDhGQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NTFDMS9EOTJFNjlBQUMxRUUxMUVCQkZENTdFMkFDNEY5QUUwMi9sN3RVczlJOE44 UGRQZ0ZweXBkTko5dXA4RkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB5h/sd4DgzTZNubFXcQ4UP0SjwwwA3Puk893zWqoP43uzFO7QY8ZDW iImzbLHrXR/xjLhrXVoFPR/7dyOp04lB4EQ6XGfdSRIRQNqUK8A6AiH4PkDplC5k QoMkZT7fByW/6m2tlJ4oLWCBFsmqitl+4jd5XuIpEVfjOSTvtztTjDQJpkrXJcDl 7yepUpqo0IG5MCU101wTM9seOEXB9BGhZFypy4ixVNFwIdtloqX0f4SfO+xu9VqG 6/WDZFYhG8bfRUlivtSj9OKa3eVIR8XpUPstL+Ihq85yaeL4zFEwi6MBT8JGhOQi LG56WsJpsM1WO0gN0luXlkH2CSNDpAe9 -----END CERTIFICATE-----Generated at Wed Nov 20 23:56:00 2024 by rpki-client on console-ams.rpki-client.org