$ rpki-client -vvf rpki.apnic.net/member_repository/A91D93E6/E53608E2488B11ECB3863F50C4F9AE02/fO84PIl44jNprQUoDqvd4t5u51s.mft File: fO84PIl44jNprQUoDqvd4t5u51s.mft (raw, json) Hash identifier: gDR739zdLKzCaeVL6slGEkktaQ0l3kCSqTZ+KSwyDy4= Subject key identifier: 97:1C:EE:F0:D7:E1:79:2F:A5:E6:CA:E3:D2:B7:74:FE:87:68:76:05 Authority key identifier: 7C:EF:38:3C:89:78:E2:33:69:AD:05:28:0E:AB:DD:E2:DE:6E:E7:5B Certificate issuer: /CN=A91D93E6/serialNumber=7CEF383C8978E23369AD05280EABDDE2DE6EE75B Certificate serial: 041B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fO84PIl44jNprQUoDqvd4t5u51s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D93E6/E53608E2488B11ECB3863F50C4F9AE02/fO84PIl44jNprQUoDqvd4t5u51s.mft Manifest number: 0413 Signing time: Fri 22 Nov 2024 23:58:35 +0000 Manifest this update: Fri 22 Nov 2024 23:58:34 +0000 Manifest next update: Fri 29 Nov 2024 23:58:34 +0000 Files and hashes: 1: fO84PIl44jNprQUoDqvd4t5u51s.crl (hash: a4iiRYu99NXaZ0VNFQLjSGbWCQHuzvvrQOVTflOVyM4=) 2: BC6D7A5E488F11EC85250157C4F9AE02.roa (hash: 4X9Na/zE6ffWnTr+/yFsFumGRAPxYsgY2C2lRh6gk/U=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D93E6/E53608E2488B11ECB3863F50C4F9AE02/fO84PIl44jNprQUoDqvd4t5u51s.crl rsync://rpki.apnic.net/member_repository/A91D93E6/E53608E2488B11ECB3863F50C4F9AE02/fO84PIl44jNprQUoDqvd4t5u51s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fO84PIl44jNprQUoDqvd4t5u51s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1051 (0x41b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D93E6/serialNumber=7CEF383C8978E23369AD05280EABDDE2DE6EE75B Validity Not Before: Nov 22 23:58:34 2024 GMT Not After : Nov 29 23:58:34 2024 GMT Subject: CN=67411aab-a986 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:6d:d9:d0:d2:98:33:d8:df:ec:47:a0:3e:5e: cf:22:e7:41:d4:69:c1:b5:0c:64:0c:c5:a3:0d:21: 31:f3:15:de:f4:e5:15:5b:35:d1:90:78:86:54:cb: ee:d2:c6:53:b5:9a:32:55:a9:4d:da:c7:88:64:a3: 68:1c:6b:9a:8c:d3:b2:65:3e:06:db:49:69:26:29: b8:7b:ee:9a:2d:98:aa:cc:74:6d:e5:c1:f2:82:1b: 47:91:7f:cf:e2:ac:b3:22:0b:05:fe:fe:7b:4a:7c: 0b:61:e6:2b:83:9b:9d:8b:fb:47:32:fa:ab:cc:a6: b4:01:37:90:d2:d0:d4:8a:f6:29:41:9d:27:35:d6: a4:5b:74:eb:1c:06:ab:cf:3f:21:9f:f8:24:24:cd: db:fc:a5:3a:79:af:8d:3a:eb:99:5c:9e:c4:3c:aa: 9e:b9:fa:b8:f7:20:87:7e:e8:96:8a:47:59:5a:e0: c6:1e:40:3d:72:8e:2a:a3:65:98:cd:8c:cf:c7:88: 84:e7:51:62:ac:8d:28:9b:81:1d:87:0d:e1:80:ed: 8f:c2:23:0f:e9:5a:ef:d3:07:04:ea:16:69:52:db: 14:52:dd:71:05:82:22:ab:0a:f8:67:7d:7c:c2:8a: 6c:83:e8:ec:e7:1c:32:01:1f:40:3e:4c:cd:72:47: 73:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:1C:EE:F0:D7:E1:79:2F:A5:E6:CA:E3:D2:B7:74:FE:87:68:76:05 X509v3 Authority Key Identifier: keyid:7C:EF:38:3C:89:78:E2:33:69:AD:05:28:0E:AB:DD:E2:DE:6E:E7:5B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D93E6/E53608E2488B11ECB3863F50C4F9AE02/fO84PIl44jNprQUoDqvd4t5u51s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fO84PIl44jNprQUoDqvd4t5u51s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D93E6/E53608E2488B11ECB3863F50C4F9AE02/fO84PIl44jNprQUoDqvd4t5u51s.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ad:2c:d6:c5:4b:37:ee:f9:f3:03:94:57:fd:f5:83:7b:e2:bc: 04:73:27:9c:5e:9b:c6:79:76:54:44:67:04:49:90:e8:a3:b1: 7c:4a:01:56:48:00:7b:65:ec:cf:69:5c:89:3f:63:63:17:8c: 4a:95:27:1e:80:75:99:70:ef:da:6a:fc:bc:a1:9d:ff:99:04: 81:05:54:77:42:74:16:95:dc:43:f2:cc:e1:a4:e5:f5:83:f4: d5:5d:d7:0e:3d:bd:41:76:a8:cd:da:c9:99:1d:12:f3:2f:dc: 0a:5e:82:58:9a:ab:c9:42:d3:2c:08:31:bb:1e:cb:e4:6c:82: 64:41:c4:dc:9a:1a:31:b4:88:01:8a:a1:06:66:55:7f:02:fa: b7:be:f1:f6:f6:0d:e6:c5:7b:bd:ff:46:f3:4f:2e:e5:cd:77: a4:1f:6c:ee:b9:5e:c5:ab:59:34:0f:cf:d7:48:6a:c3:c6:83: d2:09:b9:f3:92:38:09:ca:81:13:be:fd:94:c5:0e:bf:f0:bb: 97:d1:14:6f:59:5e:a2:80:16:ea:29:8e:4f:ec:45:4d:22:0a: c4:c2:b7:39:8e:0b:f9:55:ed:58:66:7f:c1:68:bc:14:01:3f: 3a:6b:cd:5c:45:86:1d:de:1c:df:09:c1:5b:b1:b1:5b:f3:af: 7c:fc:d3:50 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBBswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDkzRTYxMTAvBgNVBAUTKDdDRUYzODNDODk3OEUyMzM2OUFEMDUyODBFQUJEREUy REU2RUU3NUIwHhcNMjQxMTIyMjM1ODM0WhcNMjQxMTI5MjM1ODM0WjAYMRYwFAYD VQQDEw02NzQxMWFhYi1hOTg2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvG3Z0NKYM9jf7EegPl7PIudB1GnBtQxkDMWjDSEx8xXe9OUVWzXRkHiGVMvu 0sZTtZoyValN2seIZKNoHGuajNOyZT4G20lpJim4e+6aLZiqzHRt5cHyghtHkX/P 4qyzIgsF/v57SnwLYeYrg5udi/tHMvqrzKa0ATeQ0tDUivYpQZ0nNdakW3TrHAar zz8hn/gkJM3b/KU6ea+NOuuZXJ7EPKqeufq49yCHfuiWikdZWuDGHkA9co4qo2WY zYzPx4iE51FirI0om4Edhw3hgO2PwiMP6Vrv0wcE6hZpUtsUUt1xBYIiqwr4Z318 wopsg+js5xwyAR9APkzNckdzzwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJcc7vDX 4XkvpebK49K3dP6HaHYFMB8GA1UdIwQYMBaAFHzvODyJeOIzaa0FKA6r3eLebudb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEOTNFNi9FNTM2MDhFMjQ4 OEIxMUVDQjM4NjNGNTBDNEY5QUUwMi9mTzg0UElsNDRqTnByUVVvRHF2ZDR0NXU1 MXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2ZPODRQSWw0NGpOcHJRVW9EcXZkNHQ1dTUxcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE OTNFNi9FNTM2MDhFMjQ4OEIxMUVDQjM4NjNGNTBDNEY5QUUwMi9mTzg0UElsNDRq TnByUVVvRHF2ZDR0NXU1MXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCtLNbFSzfu+fMDlFf99YN74rwEcyecXpvGeXZURGcESZDoo7F8SgFW SAB7ZezPaVyJP2NjF4xKlScegHWZcO/aavy8oZ3/mQSBBVR3QnQWldxD8szhpOX1 g/TVXdcOPb1BdqjN2smZHRLzL9wKXoJYmqvJQtMsCDG7HsvkbIJkQcTcmhoxtIgB iqEGZlV/Avq3vvH29g3mxXu9/0bzTy7lzXekH2zuuV7Fq1k0D8/XSGrDxoPSCbnz kjgJyoETvv2UxQ6/8LuX0RRvWV6igBbqKY5P7EVNIgrEwrc5jgv5Ve1YZn/BaLwU AT86a81cRYYd3hzfCcFbsbFb8698/NNQ -----END CERTIFICATE-----Generated at Sat Nov 23 01:27:28 2024 by rpki-client on console-ams.rpki-client.org