$ rpki-client -vvf rpki.apnic.net/member_repository/A91DB6FB/11CD1B6E68BC11EE920EDB4DC4F9AE02/b5wj5AN3j-Ace8lQiL_R5rMoqps.mft File: b5wj5AN3j-Ace8lQiL_R5rMoqps.mft (raw, json) Hash identifier: JhSCqVH4At8FkMuDHezYuBFEge3gTTR00N+D7e+Asug= Subject key identifier: BD:F9:AB:D2:A6:BA:11:17:6C:F1:FE:26:8E:41:A3:20:BB:67:A4:D6 Authority key identifier: 6F:9C:23:E4:03:77:8F:E0:1C:7B:C9:50:88:BF:D1:E6:B3:28:AA:9B Certificate issuer: /CN=A91DB6FB/serialNumber=6F9C23E403778FE01C7BC95088BFD1E6B328AA9B Certificate serial: D8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b5wj5AN3j-Ace8lQiL_R5rMoqps.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DB6FB/11CD1B6E68BC11EE920EDB4DC4F9AE02/b5wj5AN3j-Ace8lQiL_R5rMoqps.mft Manifest number: D5 Signing time: Sat 23 Nov 2024 03:45:26 +0000 Manifest this update: Sat 23 Nov 2024 03:45:25 +0000 Manifest next update: Sat 30 Nov 2024 03:45:25 +0000 Files and hashes: 1: b5wj5AN3j-Ace8lQiL_R5rMoqps.crl (hash: Ze3LBJAsAzAQzyRQJyYohQT7CJkWdXppzVWWqu75nKE=) 2: 512CFEFE68BD11EE87942B4EC4F9AE02.roa (hash: wxzifKiO/1duDLAOqG/EgJqXNOBnq5EBtgG/0AK/VlY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DB6FB/11CD1B6E68BC11EE920EDB4DC4F9AE02/b5wj5AN3j-Ace8lQiL_R5rMoqps.crl rsync://rpki.apnic.net/member_repository/A91DB6FB/11CD1B6E68BC11EE920EDB4DC4F9AE02/b5wj5AN3j-Ace8lQiL_R5rMoqps.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b5wj5AN3j-Ace8lQiL_R5rMoqps.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 216 (0xd8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DB6FB/serialNumber=6F9C23E403778FE01C7BC95088BFD1E6B328AA9B Validity Not Before: Nov 23 03:45:25 2024 GMT Not After : Nov 30 03:45:25 2024 GMT Subject: CN=67414fd5-0757 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:14:67:79:b4:e3:87:c1:b7:83:06:ee:e9:7f: 67:05:58:75:78:9c:61:63:78:03:6f:14:e2:de:47: 86:9e:56:e6:b7:51:e3:a7:da:c2:56:c1:c4:75:b3: fb:ef:eb:cf:65:7d:cc:5d:d0:2a:52:08:21:f0:b6: 79:72:1a:df:1f:d4:d1:9d:09:a9:20:57:c0:03:09: dd:14:05:8a:40:18:31:0e:ae:8a:b4:b4:0f:60:32: 22:c8:9c:84:60:73:9a:72:13:09:71:62:a8:3e:94: f1:b0:47:a2:aa:cd:43:ee:57:6c:e6:4b:c2:24:3b: f2:1a:da:1a:1f:e2:06:b4:4a:81:f8:b1:52:d9:14: ef:f8:7c:53:1e:ec:cd:ee:5a:ae:a3:2a:d4:cd:d8: e9:fd:81:74:d9:f5:3f:fa:d4:ff:10:07:b5:28:52: aa:b6:f6:4c:d2:fa:3d:90:76:10:77:f9:d6:6a:15: fe:5b:6f:75:df:dc:86:f9:e1:d5:a3:46:aa:72:82: fb:dd:ad:5e:7b:b6:26:13:9d:aa:3b:c0:85:39:0d: 7e:29:78:3a:b2:79:a6:66:85:d2:b8:e7:2b:b3:c2: 99:98:f1:4f:94:1f:57:d1:17:97:4d:45:0f:51:c0: ed:da:36:7b:b2:22:f1:4e:e2:79:e3:d6:a0:ce:42: c0:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:F9:AB:D2:A6:BA:11:17:6C:F1:FE:26:8E:41:A3:20:BB:67:A4:D6 X509v3 Authority Key Identifier: keyid:6F:9C:23:E4:03:77:8F:E0:1C:7B:C9:50:88:BF:D1:E6:B3:28:AA:9B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DB6FB/11CD1B6E68BC11EE920EDB4DC4F9AE02/b5wj5AN3j-Ace8lQiL_R5rMoqps.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b5wj5AN3j-Ace8lQiL_R5rMoqps.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DB6FB/11CD1B6E68BC11EE920EDB4DC4F9AE02/b5wj5AN3j-Ace8lQiL_R5rMoqps.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 94:91:34:0f:ae:ac:c3:de:4a:72:40:02:5d:04:8d:e0:72:39: 93:ca:0f:e5:cf:f5:d5:b4:d0:f4:c9:8c:d8:e4:51:1a:28:10: 73:4e:21:81:bd:54:b9:3e:79:9b:c4:aa:c0:a5:53:15:a4:80: 5d:01:29:68:49:68:51:25:cd:f2:c1:52:9c:84:c7:96:a7:03: b5:5a:eb:5f:82:bd:3c:94:73:76:ca:05:4a:02:32:4b:0a:62: 1e:49:3b:3e:7d:83:83:7b:51:0b:92:92:fd:1f:03:5b:1a:c1: c3:9c:cf:5a:f9:f9:10:d7:b9:a2:d1:66:c6:08:9f:5a:57:81: 45:5e:03:9b:0b:b5:e6:46:6e:63:cd:36:ad:3c:0a:24:f1:2a: 9e:52:03:79:1d:c1:f8:93:37:1d:b1:83:0b:ac:e2:13:6e:f9: 5e:ac:8c:04:e1:fd:38:98:6a:8e:1d:d6:d0:6b:38:d7:f0:4c: 9a:d5:80:f1:a9:0f:cf:9e:21:b5:9d:e7:a6:37:92:7a:85:24: 18:2f:af:e3:ea:0d:a3:3c:19:c6:2b:35:9f:c2:09:d6:a5:2f: 89:d7:73:d4:f7:3b:77:70:b8:ba:4b:ca:ff:2e:03:28:6b:03: a4:e0:e5:b2:a6:68:f0:85:c5:69:60:f3:1c:92:20:77:42:f5: 3e:12:f8:95 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICANgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REI2RkIxMTAvBgNVBAUTKDZGOUMyM0U0MDM3NzhGRTAxQzdCQzk1MDg4QkZEMUU2 QjMyOEFBOUIwHhcNMjQxMTIzMDM0NTI1WhcNMjQxMTMwMDM0NTI1WjAYMRYwFAYD VQQDEw02NzQxNGZkNS0wNzU3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAshRnebTjh8G3gwbu6X9nBVh1eJxhY3gDbxTi3keGnlbmt1Hjp9rCVsHEdbP7 7+vPZX3MXdAqUggh8LZ5chrfH9TRnQmpIFfAAwndFAWKQBgxDq6KtLQPYDIiyJyE YHOachMJcWKoPpTxsEeiqs1D7lds5kvCJDvyGtoaH+IGtEqB+LFS2RTv+HxTHuzN 7lquoyrUzdjp/YF02fU/+tT/EAe1KFKqtvZM0vo9kHYQd/nWahX+W29139yG+eHV o0aqcoL73a1ee7YmE52qO8CFOQ1+KXg6snmmZoXSuOcrs8KZmPFPlB9X0ReXTUUP UcDt2jZ7siLxTuJ549agzkLAgQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFL35q9Km uhEXbPH+Jo5BoyC7Z6TWMB8GA1UdIwQYMBaAFG+cI+QDd4/gHHvJUIi/0eazKKqb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQjZGQi8xMUNEMUI2RTY4 QkMxMUVFOTIwRURCNERDNEY5QUUwMi9iNXdqNUFOM2otQWNlOGxRaUxfUjVyTW9x cHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2I1d2o1QU4zai1BY2U4bFFpTF9SNXJNb3Fwcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QjZGQi8xMUNEMUI2RTY4QkMxMUVFOTIwRURCNERDNEY5QUUwMi9iNXdqNUFOM2ot QWNlOGxRaUxfUjVyTW9xcHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCUkTQPrqzD3kpyQAJdBI3gcjmTyg/lz/XVtND0yYzY5FEaKBBzTiGB vVS5PnmbxKrApVMVpIBdASloSWhRJc3ywVKchMeWpwO1Wutfgr08lHN2ygVKAjJL CmIeSTs+fYODe1ELkpL9HwNbGsHDnM9a+fkQ17mi0WbGCJ9aV4FFXgObC7XmRm5j zTatPAok8SqeUgN5HcH4kzcdsYMLrOITbvlerIwE4f04mGqOHdbQazjX8Eya1YDx qQ/PniG1neemN5J6hSQYL6/j6g2jPBnGKzWfwgnWpS+J13PU9zt3cLi6S8r/LgMo awOk4OWypmjwhcVpYPMckiB3QvU+EviV -----END CERTIFICATE-----Generated at Sat Nov 23 06:13:25 2024 by rpki-client on console-ams.rpki-client.org