$ rpki-client -vvf rpki.apnic.net/member_repository/A91DBA0F/D90067FE4CD711EAB4555845C4F9AE02/rRapGbMt65RQ0upjx51QMV2RgVU.mft File: rRapGbMt65RQ0upjx51QMV2RgVU.mft (raw, json) Hash identifier: OHVucak/P5n8qKgVHwrQV+2RmtLWlODoN9zrmR0GQtA= Subject key identifier: 43:AE:99:3F:19:68:76:CE:AC:92:ED:F9:0C:07:94:C3:2D:F2:AF:6D Authority key identifier: AD:16:A9:19:B3:2D:EB:94:50:D2:EA:63:C7:9D:50:31:5D:91:81:55 Certificate issuer: /CN=A91DBA0F/serialNumber=AD16A919B32DEB9450D2EA63C79D50315D918155 Certificate serial: 0A7E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rRapGbMt65RQ0upjx51QMV2RgVU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DBA0F/D90067FE4CD711EAB4555845C4F9AE02/rRapGbMt65RQ0upjx51QMV2RgVU.mft Manifest number: 0A75 Signing time: Fri 22 Nov 2024 19:23:53 +0000 Manifest this update: Fri 22 Nov 2024 19:23:52 +0000 Manifest next update: Fri 29 Nov 2024 19:23:52 +0000 Files and hashes: 1: rRapGbMt65RQ0upjx51QMV2RgVU.crl (hash: 8uW7HIpcFhjSw41N3xThUDMF4ryUF+lKUvRC+wC/rnA=) 2: D54C8E6C4DBD11EAAF427F1AC4F9AE02.roa (hash: l0l7N2oeU6miB+wmaaP2nYxuLtMs+PGnzOc6Ikq4rno=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DBA0F/D90067FE4CD711EAB4555845C4F9AE02/rRapGbMt65RQ0upjx51QMV2RgVU.crl rsync://rpki.apnic.net/member_repository/A91DBA0F/D90067FE4CD711EAB4555845C4F9AE02/rRapGbMt65RQ0upjx51QMV2RgVU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rRapGbMt65RQ0upjx51QMV2RgVU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 19:23:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2686 (0xa7e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DBA0F/serialNumber=AD16A919B32DEB9450D2EA63C79D50315D918155 Validity Not Before: Nov 22 19:23:52 2024 GMT Not After : Nov 29 19:23:52 2024 GMT Subject: CN=6740da48-a90d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:a2:29:f4:88:1e:c4:6c:b4:57:a5:cc:d5:75: ec:a7:87:0a:70:88:2e:fd:09:0e:e9:3c:0e:35:05: ac:e4:d8:8a:01:ef:3f:b1:f6:72:ed:97:bc:19:d6: 0c:a7:87:43:47:fb:db:f9:43:1d:02:05:d6:f2:93: 8f:f4:78:af:3a:64:d8:18:bb:bf:90:d2:3e:a7:4f: cc:65:d7:c2:06:4b:71:48:bb:ab:7c:83:00:fa:b4: d1:de:b4:b0:5e:67:38:ab:ee:3f:8e:95:f8:dd:da: 29:be:ec:4a:c7:37:d2:05:6f:eb:dc:93:fe:91:91: 06:00:ca:88:09:10:60:ff:49:0a:80:07:35:20:7b: 71:c9:94:ff:c5:6a:ba:c0:82:b8:7e:83:f6:07:7d: e6:a8:b4:c6:06:46:c4:bb:0e:33:f8:dd:cc:ce:c6: dd:69:92:1c:6d:0a:3c:f0:62:dd:3b:07:9b:5d:95: 7a:f2:32:fc:f5:ae:65:b2:29:42:1a:b3:9e:d9:4e: 4e:96:2f:4c:26:d1:70:e0:72:a3:4f:f2:e5:7d:4a: bf:24:3f:e4:e0:71:8d:9d:42:aa:73:42:30:ec:cd: 1d:a8:6d:45:f9:ca:8a:bb:09:5e:b0:e4:39:41:63: d2:22:e4:ba:d8:4f:c8:ad:ec:8c:bc:c1:f2:47:16: 13:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:AE:99:3F:19:68:76:CE:AC:92:ED:F9:0C:07:94:C3:2D:F2:AF:6D X509v3 Authority Key Identifier: keyid:AD:16:A9:19:B3:2D:EB:94:50:D2:EA:63:C7:9D:50:31:5D:91:81:55 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DBA0F/D90067FE4CD711EAB4555845C4F9AE02/rRapGbMt65RQ0upjx51QMV2RgVU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rRapGbMt65RQ0upjx51QMV2RgVU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DBA0F/D90067FE4CD711EAB4555845C4F9AE02/rRapGbMt65RQ0upjx51QMV2RgVU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 04:38:27:27:fe:5a:3e:0c:51:40:59:1b:35:50:1c:14:b7:2c: fa:a9:92:50:3b:8b:b3:8b:e4:06:b1:78:55:c9:09:68:ae:df: 8b:f4:7b:d9:51:cc:94:ce:32:2e:e8:af:dd:84:d9:ef:d6:fe: 2e:0b:6d:90:53:2f:50:c4:15:3d:25:68:e2:7d:94:fa:20:25: df:63:7f:07:d5:43:41:a5:0c:22:89:08:49:f8:a8:0d:f4:16: 0f:91:6b:45:4c:1e:57:6b:99:07:12:6e:91:78:f3:ea:3a:aa: 7e:5a:78:4e:48:31:3b:89:e8:e0:6a:ac:28:7d:35:75:d7:b0: e9:bf:cf:f2:41:0f:dc:0c:8d:c1:d9:81:af:5e:2c:f6:7e:cd: ac:14:dd:67:9d:b4:7f:16:fa:87:6e:08:c1:6a:55:71:11:49: 16:37:f2:8c:e3:2e:aa:32:d8:4f:65:ee:c5:4d:bc:bd:a2:55: c2:2f:c4:4a:09:da:53:b2:78:b9:4f:53:e6:89:36:20:92:4d: c1:77:b3:fe:96:d7:23:dd:f7:34:8d:a1:67:b0:b5:92:75:d6: e7:8f:1e:4d:29:75:33:32:00:ad:b6:48:01:87:ab:a1:e3:d2: 71:9f:10:e4:84:d2:3d:42:ef:34:b1:50:fc:2a:b2:bb:4e:2a: c6:98:ef:ab -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCn4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REJBMEYxMTAvBgNVBAUTKEFEMTZBOTE5QjMyREVCOTQ1MEQyRUE2M0M3OUQ1MDMx NUQ5MTgxNTUwHhcNMjQxMTIyMTkyMzUyWhcNMjQxMTI5MTkyMzUyWjAYMRYwFAYD VQQDEw02NzQwZGE0OC1hOTBkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6aIp9IgexGy0V6XM1XXsp4cKcIgu/QkO6TwONQWs5NiKAe8/sfZy7Ze8GdYM p4dDR/vb+UMdAgXW8pOP9HivOmTYGLu/kNI+p0/MZdfCBktxSLurfIMA+rTR3rSw Xmc4q+4/jpX43dopvuxKxzfSBW/r3JP+kZEGAMqICRBg/0kKgAc1IHtxyZT/xWq6 wIK4foP2B33mqLTGBkbEuw4z+N3MzsbdaZIcbQo88GLdOwebXZV68jL89a5lsilC GrOe2U5Oli9MJtFw4HKjT/LlfUq/JD/k4HGNnUKqc0Iw7M0dqG1F+cqKuwlesOQ5 QWPSIuS62E/IreyMvMHyRxYT4wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEOumT8Z aHbOrJLt+QwHlMMt8q9tMB8GA1UdIwQYMBaAFK0WqRmzLeuUUNLqY8edUDFdkYFV MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQkEwRi9EOTAwNjdGRTRD RDcxMUVBQjQ1NTU4NDVDNEY5QUUwMi9yUmFwR2JNdDY1UlEwdXBqeDUxUU1WMlJn VlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JSYXBHYk10NjVSUTB1cGp4NTFRTVYyUmdWVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QkEwRi9EOTAwNjdGRTRDRDcxMUVBQjQ1NTU4NDVDNEY5QUUwMi9yUmFwR2JNdDY1 UlEwdXBqeDUxUU1WMlJnVlUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAEOCcn/lo+DFFAWRs1UBwUtyz6qZJQO4uzi+QGsXhVyQlort+L9HvZ UcyUzjIu6K/dhNnv1v4uC22QUy9QxBU9JWjifZT6ICXfY38H1UNBpQwiiQhJ+KgN 9BYPkWtFTB5Xa5kHEm6RePPqOqp+WnhOSDE7iejgaqwofTV117Dpv8/yQQ/cDI3B 2YGvXiz2fs2sFN1nnbR/FvqHbgjBalVxEUkWN/KM4y6qMthPZe7FTby9olXCL8RK CdpTsni5T1PmiTYgkk3Bd7P+ltcj3fc0jaFnsLWSddbnjx5NKXUzMgCttkgBh6uh 49JxnxDkhNI9Qu80sVD8KrK7TirGmO+r -----END CERTIFICATE-----Generated at Fri Nov 22 22:14:41 2024 by rpki-client on console-ams.rpki-client.org