$ rpki-client -vvf rpki.apnic.net/member_repository/A91DBE37/6A35E3D0765711EB997DB424C4F9AE02/79cHaffoVdJXok1qHUkDlQqzadM.mft File: 79cHaffoVdJXok1qHUkDlQqzadM.mft (raw, json) Hash identifier: dDFuxLGXMfQtYNro4rs5gkIfmuvE3CoWWssc9w0gMCY= Subject key identifier: 07:7A:FB:F9:02:15:0A:10:55:88:11:FA:E8:17:38:AD:B8:7C:15:91 Authority key identifier: EF:D7:07:69:F7:E8:55:D2:57:A2:4D:6A:1D:49:03:95:0A:B3:69:D3 Certificate issuer: /CN=A91DBE37/serialNumber=EFD70769F7E855D257A24D6A1D4903950AB369D3 Certificate serial: 0622 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/79cHaffoVdJXok1qHUkDlQqzadM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DBE37/6A35E3D0765711EB997DB424C4F9AE02/79cHaffoVdJXok1qHUkDlQqzadM.mft Manifest number: 061D Signing time: Fri 22 Nov 2024 22:07:56 +0000 Manifest this update: Fri 22 Nov 2024 22:07:55 +0000 Manifest next update: Fri 29 Nov 2024 22:07:55 +0000 Files and hashes: 1: 79cHaffoVdJXok1qHUkDlQqzadM.crl (hash: QrlHPrHK9nojG+e4IfPZKcd3pUfwsCP+bs3fufTgRV4=) 2: 9E924168765811EB9E261F25C4F9AE02.roa (hash: hP2GY5TbvIePFM2Gruw4AvuPItxUBBDRop1kzhr8RNY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DBE37/6A35E3D0765711EB997DB424C4F9AE02/79cHaffoVdJXok1qHUkDlQqzadM.crl rsync://rpki.apnic.net/member_repository/A91DBE37/6A35E3D0765711EB997DB424C4F9AE02/79cHaffoVdJXok1qHUkDlQqzadM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/79cHaffoVdJXok1qHUkDlQqzadM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1570 (0x622) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DBE37/serialNumber=EFD70769F7E855D257A24D6A1D4903950AB369D3 Validity Not Before: Nov 22 22:07:55 2024 GMT Not After : Nov 29 22:07:55 2024 GMT Subject: CN=674100bc-8842 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:50:00:d3:03:77:02:d6:9b:74:85:19:74:c7: d0:eb:74:71:51:2a:e9:7b:44:ee:64:04:62:65:40: c8:3f:f7:dd:78:16:f3:3a:d4:34:55:e8:39:f8:7a: 3e:7c:4e:3e:4a:eb:05:66:95:9b:a0:da:6d:aa:18: ff:e5:c9:00:e0:60:b1:73:60:2d:1c:b1:f4:3e:ba: 96:64:34:98:89:ce:29:c4:2f:55:cc:8e:47:31:8c: d2:34:b9:b8:3b:32:e3:cc:69:3c:00:20:b1:9d:97: 9f:ac:77:ba:ef:2b:bd:a0:e8:c4:30:a0:ee:72:fb: 7d:0a:47:89:5d:af:16:93:80:a1:0a:c8:09:8b:32: d2:f8:37:31:32:98:1b:3f:61:de:ee:df:1d:98:ad: 91:71:49:7f:dd:02:3a:12:5c:e4:e5:1a:2d:6b:29: 8d:1a:79:4d:ad:8e:32:0d:0d:fa:16:70:fe:ce:d1: 6d:f4:35:e7:43:05:7b:7f:a4:6c:ed:6c:df:10:a3: 9b:bf:c3:7c:1b:a0:74:e7:4d:fc:2e:cf:fa:79:32: a6:da:ab:4e:05:4a:8d:b5:8a:98:9b:73:2c:5b:4d: 26:71:df:49:f5:d0:83:58:b8:a3:f8:e8:ce:bb:78: f1:35:28:72:3d:1c:62:f4:02:c9:39:ad:0c:4d:19: 72:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:7A:FB:F9:02:15:0A:10:55:88:11:FA:E8:17:38:AD:B8:7C:15:91 X509v3 Authority Key Identifier: keyid:EF:D7:07:69:F7:E8:55:D2:57:A2:4D:6A:1D:49:03:95:0A:B3:69:D3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DBE37/6A35E3D0765711EB997DB424C4F9AE02/79cHaffoVdJXok1qHUkDlQqzadM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/79cHaffoVdJXok1qHUkDlQqzadM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DBE37/6A35E3D0765711EB997DB424C4F9AE02/79cHaffoVdJXok1qHUkDlQqzadM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 14:3e:14:b5:3a:26:e3:83:33:3a:85:32:9c:62:82:61:60:6e: 61:0e:03:e8:8c:84:fc:b2:0e:c1:7a:58:7b:2a:2a:73:33:7f: 58:ae:61:00:19:4c:44:80:f2:e9:1a:bf:47:1f:87:6d:f3:d4: 14:c3:33:ad:6a:a4:a9:7c:5f:51:bb:64:8c:6b:1c:82:d3:b9: bc:39:c8:54:c0:6a:d7:d6:26:50:f3:c7:92:20:28:ef:76:0a: 7c:2d:83:a6:61:7a:a2:9e:cf:85:49:b2:05:87:3d:16:fe:60: 47:bc:f9:22:9b:19:ce:3f:51:7f:0d:ea:64:c2:87:ee:5f:9b: cd:d0:09:11:2a:6f:a9:bb:72:ac:95:03:ab:aa:31:94:11:f0: bc:f5:5b:d6:36:83:36:79:de:6e:a6:7a:83:c0:78:e9:0e:b9: b1:2d:79:40:2e:61:af:03:09:9f:ba:6d:10:8e:a4:fe:26:18: 0a:cb:67:b4:9a:3c:51:8c:f5:a0:f1:8e:ab:5f:a8:48:1e:6d: 89:f3:44:99:e1:01:21:f5:de:85:15:51:9e:04:b4:71:61:3e: 23:94:e8:0d:f5:7a:2d:05:4f:60:9b:93:3f:c9:c6:e9:86:7a: 97:81:2d:a0:2c:86:26:b6:06:ac:d6:cc:5a:82:6e:60:ac:bb: 79:50:e8:cd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBiIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REJFMzcxMTAvBgNVBAUTKEVGRDcwNzY5RjdFODU1RDI1N0EyNEQ2QTFENDkwMzk1 MEFCMzY5RDMwHhcNMjQxMTIyMjIwNzU1WhcNMjQxMTI5MjIwNzU1WjAYMRYwFAYD VQQDEw02NzQxMDBiYy04ODQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwFAA0wN3AtabdIUZdMfQ63RxUSrpe0TuZARiZUDIP/fdeBbzOtQ0Veg5+Ho+ fE4+SusFZpWboNptqhj/5ckA4GCxc2AtHLH0PrqWZDSYic4pxC9VzI5HMYzSNLm4 OzLjzGk8ACCxnZefrHe67yu9oOjEMKDucvt9CkeJXa8Wk4ChCsgJizLS+DcxMpgb P2He7t8dmK2RcUl/3QI6Elzk5RotaymNGnlNrY4yDQ36FnD+ztFt9DXnQwV7f6Rs 7WzfEKObv8N8G6B05038Ls/6eTKm2qtOBUqNtYqYm3MsW00mcd9J9dCDWLij+OjO u3jxNShyPRxi9ALJOa0MTRlyZQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAd6+/kC FQoQVYgR+ugXOK24fBWRMB8GA1UdIwQYMBaAFO/XB2n36FXSV6JNah1JA5UKs2nT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQkUzNy82QTM1RTNEMDc2 NTcxMUVCOTk3REI0MjRDNEY5QUUwMi83OWNIYWZmb1ZkSlhvazFxSFVrRGxRcXph ZE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzc5Y0hhZmZvVmRKWG9rMXFIVWtEbFFxemFkTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QkUzNy82QTM1RTNEMDc2NTcxMUVCOTk3REI0MjRDNEY5QUUwMi83OWNIYWZmb1Zk SlhvazFxSFVrRGxRcXphZE0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAUPhS1OibjgzM6hTKcYoJhYG5hDgPojIT8sg7Belh7KipzM39YrmEA GUxEgPLpGr9HH4dt89QUwzOtaqSpfF9Ru2SMaxyC07m8OchUwGrX1iZQ88eSICjv dgp8LYOmYXqins+FSbIFhz0W/mBHvPkimxnOP1F/DepkwofuX5vN0AkRKm+pu3Ks lQOrqjGUEfC89VvWNoM2ed5upnqDwHjpDrmxLXlALmGvAwmfum0QjqT+JhgKy2e0 mjxRjPWg8Y6rX6hIHm2J80SZ4QEh9d6FFVGeBLRxYT4jlOgN9XotBU9gm5M/ycbp hnqXgS2gLIYmtgas1sxagm5grLt5UOjN -----END CERTIFICATE-----Generated at Sat Nov 23 00:08:51 2024 by rpki-client on console-ams.rpki-client.org