$ rpki-client -vvf rpki.apnic.net/member_repository/A91DA10A/E340204CF18711EAB9734B1CC4F9AE02/SbWkZGPjorcKM0RgFOv0Dlye_nQ.mft File: SbWkZGPjorcKM0RgFOv0Dlye_nQ.mft (raw, json) Hash identifier: AsWmTtTgE6Uo/tjKucl/CXRxTZt+qgw9wCk7z05vsxA= Subject key identifier: E2:7A:3A:EC:78:15:75:D5:11:12:74:F9:5B:B4:D4:11:A3:E6:5B:1E Authority key identifier: 49:B5:A4:64:63:E3:A2:B7:0A:33:44:60:14:EB:F4:0E:5C:9E:FE:74 Certificate issuer: /CN=A91DA10A/serialNumber=49B5A46463E3A2B70A33446014EBF40E5C9EFE74 Certificate serial: 07B3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SbWkZGPjorcKM0RgFOv0Dlye_nQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DA10A/E340204CF18711EAB9734B1CC4F9AE02/SbWkZGPjorcKM0RgFOv0Dlye_nQ.mft Manifest number: 0789 Signing time: Wed 20 Nov 2024 20:55:23 +0000 Manifest this update: Wed 20 Nov 2024 20:55:23 +0000 Manifest next update: Wed 27 Nov 2024 20:55:23 +0000 Files and hashes: 1: SbWkZGPjorcKM0RgFOv0Dlye_nQ.crl (hash: Kk8NPRAmyBSnu0saIUxQD5o5I/Os42COKsLnqpAdH+E=) 2: DDBCA666F18911EAA922EB1FC4F9AE02.roa (hash: ruDiWo0iJ1IzCL54D+qZ/5Sx7ttq9JDNgJ3Itzo1mtM=) 3: 2F220BBA95AA11ED84962E13C4F9AE02.roa (hash: szuCGA/YKFnqAyQx0YvfNE1CLpywYPi051pqX/mLZ+o=) 4: 13279E2C124011ED9E430A4CC4F9AE02.roa (hash: DRibOliaFFpVDYBNRPwSwfeFfAK79Ag7KRQOfCVsri4=) 5: 67FF0960076911EF8569F157C4F9AE02.roa (hash: Dvs5DAUQ59zCBbfUhpGLPZgVQyIVukk8Lis+ely0rgs=) 6: 68C5CFBE076911EF8569F157C4F9AE02.roa (hash: tsvfq1JS/MiwyfU6/6stmHXHI8bkcGx85DGNDrytcZ4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DA10A/E340204CF18711EAB9734B1CC4F9AE02/SbWkZGPjorcKM0RgFOv0Dlye_nQ.crl rsync://rpki.apnic.net/member_repository/A91DA10A/E340204CF18711EAB9734B1CC4F9AE02/SbWkZGPjorcKM0RgFOv0Dlye_nQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SbWkZGPjorcKM0RgFOv0Dlye_nQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:33:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1971 (0x7b3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DA10A/serialNumber=49B5A46463E3A2B70A33446014EBF40E5C9EFE74 Validity Not Before: Nov 20 20:55:23 2024 GMT Not After : Nov 27 20:55:23 2024 GMT Subject: CN=673e4cbb-a92f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:52:8d:c1:95:cb:36:c8:8e:43:a5:8d:e6:52: 6c:64:de:08:d4:e0:d9:98:47:e9:6c:b8:a5:48:3f: 26:b8:cf:56:c3:2c:f2:a0:84:4f:d6:19:c5:e3:e0: fc:fe:7a:8c:6c:44:00:b3:3c:cc:a5:e5:1f:93:39: 5e:f9:3f:3a:b0:db:0c:85:2b:2f:52:97:12:ac:be: a8:0f:4f:df:f6:4f:a2:e8:38:df:d3:db:12:01:a7: 52:31:08:90:07:f5:8c:f4:eb:cc:39:ed:0d:bf:d7: 45:3a:d5:fd:ac:d1:90:a0:b1:85:73:48:eb:54:72: a7:46:1e:ed:a9:24:05:d0:6d:3f:e7:b2:02:5b:1b: 89:8f:4d:1f:85:53:c3:8f:9e:b2:30:87:96:38:49: 03:4d:6c:21:d5:be:7a:3d:ca:9a:12:cc:b8:e1:d5: a6:5f:f9:d7:fa:b5:2f:3d:a8:95:1b:2a:df:a5:cf: f1:89:fc:af:ce:24:5f:4b:60:aa:72:b9:45:f2:19: 28:07:77:fd:66:9c:f9:61:8b:c9:26:c5:be:d7:98: 20:a6:1a:ff:59:ee:ff:a9:15:0a:e0:9c:ad:ca:97: 00:cd:69:0d:52:c0:39:cd:77:d8:77:5f:97:6e:1c: 2c:fc:33:13:1f:f5:ad:84:05:24:99:96:2e:dd:b0: 2f:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:7A:3A:EC:78:15:75:D5:11:12:74:F9:5B:B4:D4:11:A3:E6:5B:1E X509v3 Authority Key Identifier: keyid:49:B5:A4:64:63:E3:A2:B7:0A:33:44:60:14:EB:F4:0E:5C:9E:FE:74 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DA10A/E340204CF18711EAB9734B1CC4F9AE02/SbWkZGPjorcKM0RgFOv0Dlye_nQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SbWkZGPjorcKM0RgFOv0Dlye_nQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DA10A/E340204CF18711EAB9734B1CC4F9AE02/SbWkZGPjorcKM0RgFOv0Dlye_nQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 38:db:7a:5c:8f:bc:79:72:bb:39:fc:31:c2:81:03:35:8a:5b: d1:63:24:5c:bc:50:27:e9:81:28:50:89:64:72:26:d7:ba:9b: e1:5e:3f:04:36:6e:1d:fc:0f:37:4c:de:ae:39:49:f9:8d:03: 7c:16:54:d2:cf:55:de:1d:87:df:d3:8a:0f:61:f5:08:85:30: 11:d9:82:89:dd:23:6b:c7:6c:67:de:14:96:d8:00:e8:42:cf: d6:ef:35:60:56:2a:a0:7f:e9:0f:af:26:6d:b3:c1:88:ed:91: 29:cf:91:4f:ea:70:55:0b:11:62:36:bc:f5:8f:67:38:51:46: 73:7a:ca:76:42:dc:58:58:62:01:ca:7c:12:ee:85:6b:78:8c: 5b:7f:ec:d8:f0:0c:fe:6e:63:ea:ed:46:64:af:0f:30:fe:1d: 2c:a9:15:2a:9a:27:39:fe:4c:1d:16:e4:64:a5:b3:4f:ea:3f: 7c:2a:95:6d:61:16:dc:90:99:6c:8c:a9:02:5a:8c:41:0e:bb: 9e:63:a4:61:d4:11:65:34:87:a9:7a:76:71:f2:55:b4:ea:f2: 5a:ac:7e:d3:46:ff:19:4e:bb:b1:da:ce:7d:5d:cf:19:3f:d6: dd:86:12:48:40:c1:75:a0:6a:a8:0f:f1:86:52:56:2c:f7:c1: 71:a6:42:79 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB7MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REExMEExMTAvBgNVBAUTKDQ5QjVBNDY0NjNFM0EyQjcwQTMzNDQ2MDE0RUJGNDBF NUM5RUZFNzQwHhcNMjQxMTIwMjA1NTIzWhcNMjQxMTI3MjA1NTIzWjAYMRYwFAYD VQQDEw02NzNlNGNiYi1hOTJmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAylKNwZXLNsiOQ6WN5lJsZN4I1ODZmEfpbLilSD8muM9WwyzyoIRP1hnF4+D8 /nqMbEQAszzMpeUfkzle+T86sNsMhSsvUpcSrL6oD0/f9k+i6Djf09sSAadSMQiQ B/WM9OvMOe0Nv9dFOtX9rNGQoLGFc0jrVHKnRh7tqSQF0G0/57ICWxuJj00fhVPD j56yMIeWOEkDTWwh1b56PcqaEsy44dWmX/nX+rUvPaiVGyrfpc/xifyvziRfS2Cq crlF8hkoB3f9Zpz5YYvJJsW+15ggphr/We7/qRUK4JytypcAzWkNUsA5zXfYd1+X bhws/DMTH/WthAUkmZYu3bAvbwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOJ6Oux4 FXXVERJ0+Vu01BGj5lseMB8GA1UdIwQYMBaAFEm1pGRj46K3CjNEYBTr9A5cnv50 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQTEwQS9FMzQwMjA0Q0Yx ODcxMUVBQjk3MzRCMUNDNEY5QUUwMi9TYldrWkdQam9yY0tNMFJnRk92MERseWVf blEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NiV2taR1Bqb3JjS00wUmdGT3YwRGx5ZV9uUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QTEwQS9FMzQwMjA0Q0YxODcxMUVBQjk3MzRCMUNDNEY5QUUwMi9TYldrWkdQam9y Y0tNMFJnRk92MERseWVfblEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA423pcj7x5crs5/DHCgQM1ilvRYyRcvFAn6YEoUIlkcibXupvhXj8E Nm4d/A83TN6uOUn5jQN8FlTSz1XeHYff04oPYfUIhTAR2YKJ3SNrx2xn3hSW2ADo Qs/W7zVgViqgf+kPryZts8GI7ZEpz5FP6nBVCxFiNrz1j2c4UUZzesp2QtxYWGIB ynwS7oVreIxbf+zY8Az+bmPq7UZkrw8w/h0sqRUqmic5/kwdFuRkpbNP6j98KpVt YRbckJlsjKkCWoxBDrueY6Rh1BFlNIepenZx8lW06vJarH7TRv8ZTrux2s59Xc8Z P9bdhhJIQMF1oGqoD/GGUlYs98FxpkJ5 -----END CERTIFICATE-----Generated at Wed Nov 20 23:56:01 2024 by rpki-client on console-ams.rpki-client.org