$ rpki-client -vvf rpki.apnic.net/member_repository/A91DC5BE/D401619A1D6911E2AFB64EA708B02CD2/raiu0ysVuH5hElLSnR4dW95YFkY.mft File: raiu0ysVuH5hElLSnR4dW95YFkY.mft (raw, json) Hash identifier: 7P6MGAzJT0XxNem/8H4njX/hblxHOYj9shBxaEtoiTQ= Subject key identifier: 7A:EC:4C:9C:11:A2:0F:B3:2A:34:1E:FF:87:7D:7C:A9:78:C2:17:0B Authority key identifier: AD:A8:AE:D3:2B:15:B8:7E:61:12:52:D2:9D:1E:1D:5B:DE:58:16:46 Certificate issuer: /CN=A91DC5BE/serialNumber=ADA8AED32B15B87E611252D29D1E1D5BDE581646 Certificate serial: 350A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/raiu0ysVuH5hElLSnR4dW95YFkY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DC5BE/D401619A1D6911E2AFB64EA708B02CD2/raiu0ysVuH5hElLSnR4dW95YFkY.mft Manifest number: 348B Signing time: Fri 22 Nov 2024 14:16:19 +0000 Manifest this update: Fri 22 Nov 2024 14:16:18 +0000 Manifest next update: Fri 29 Nov 2024 14:16:18 +0000 Files and hashes: 1: raiu0ysVuH5hElLSnR4dW95YFkY.crl (hash: SqvTVI5neQqlIzwcJnKrXSuiN1dIHI0FB+1hLKRh9GM=) 2: C9B8A270483411ECA6C7C085C4F9AE02.roa (hash: nJvnNt0eJsmGuLUjItzV/NgJ7+2UZ1r5MhffEQ8w0sk=) 3: 00604F929CA811EFAD010A87C4F9AE02.roa (hash: FeOK4PuukB5Ot4HcsblydVqxS5gNaNVVygmdsE3Q9Eg=) 4: 7C836BA46C8E11EEA38B9554C4F9AE02.roa (hash: aQYfeFSthN9oof4UX3Yota3Vi8A1Xibnwm7ZRxMjljY=) 5: 539CC922366C11EEBEBBBE1DC4F9AE02.roa (hash: TrayTHMiKb+Dm5posHRv3ZfOvi01WiwhoUD8use0rkY=) 6: FC72B9529F0311EAB6B8EA87C4F9AE02.roa (hash: iJ1kB8ujNY3bRF9sFR+ioHj2q77p/d9prgJ8hOEg/Tw=) 7: E2446DD228AA11E79582F36BC4F9AE02.roa (hash: ZJSRmEu8ZSRqTlcPEDfX6hYX2fzOC+1QV4+V6A/VckU=) 8: 662A2F2286B411E6BAEB2614C4F9AE02.roa (hash: MRkFXSabw9acLO92YltXC7hoPQwJsDF6DX+Xsg12tnY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DC5BE/D401619A1D6911E2AFB64EA708B02CD2/raiu0ysVuH5hElLSnR4dW95YFkY.crl rsync://rpki.apnic.net/member_repository/A91DC5BE/D401619A1D6911E2AFB64EA708B02CD2/raiu0ysVuH5hElLSnR4dW95YFkY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/raiu0ysVuH5hElLSnR4dW95YFkY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 14:16:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13578 (0x350a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DC5BE/serialNumber=ADA8AED32B15B87E611252D29D1E1D5BDE581646 Validity Not Before: Nov 22 14:16:18 2024 GMT Not After : Nov 29 14:16:18 2024 GMT Subject: CN=67409232-ade1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:17:8f:73:13:5d:ca:55:b9:c3:22:6f:40:5d: db:52:06:18:ca:6b:cc:d8:cd:8e:f5:16:df:ee:82: 3d:f3:18:3a:bd:21:e2:e7:6f:9b:02:43:c1:ab:ed: d8:03:e4:97:6f:dd:38:1e:34:34:16:a3:0a:cc:de: f7:24:d9:c1:aa:78:33:3e:e1:d6:fe:45:76:c8:e5: 47:05:4d:85:05:0c:19:73:5d:c1:62:d6:56:39:94: 04:63:d1:e2:ff:62:07:0e:c4:d9:19:6a:c3:40:ab: 86:d8:ba:a5:39:46:a8:97:47:8f:2f:8a:f6:67:47: 1e:b9:f6:cc:17:f8:a0:18:e1:ae:29:70:78:ac:e8: 1f:65:74:3a:aa:59:47:d6:52:8f:e5:ab:37:ad:75: e2:d6:67:6e:64:b0:53:c0:cb:38:1e:93:98:61:cf: bc:d9:f1:17:66:73:b6:d7:17:8d:76:64:0a:24:d0: 1e:3e:5d:c8:46:67:4b:b5:48:3b:fb:7e:b6:c8:fb: b1:db:ed:28:19:a5:c1:8a:82:1f:e2:a7:b8:df:21: 5b:8d:67:e0:43:b3:12:cb:b9:d2:70:87:8b:63:ec: d9:0d:65:7f:9f:04:b4:3d:58:98:b5:56:13:58:89: 62:bf:b2:cf:49:04:8a:63:10:90:c6:93:e0:51:51: 0b:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:EC:4C:9C:11:A2:0F:B3:2A:34:1E:FF:87:7D:7C:A9:78:C2:17:0B X509v3 Authority Key Identifier: keyid:AD:A8:AE:D3:2B:15:B8:7E:61:12:52:D2:9D:1E:1D:5B:DE:58:16:46 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DC5BE/D401619A1D6911E2AFB64EA708B02CD2/raiu0ysVuH5hElLSnR4dW95YFkY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/raiu0ysVuH5hElLSnR4dW95YFkY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DC5BE/D401619A1D6911E2AFB64EA708B02CD2/raiu0ysVuH5hElLSnR4dW95YFkY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3f:f1:a4:4f:9b:33:0d:a5:fb:63:ad:0c:be:a5:35:02:cd:9a: 21:e3:55:83:33:04:9e:5e:73:fa:ef:33:35:0a:3c:41:ae:42: 9e:55:63:b2:b2:24:e1:7e:43:49:39:3e:aa:8a:a5:18:c5:58: 27:58:54:6b:d1:1c:ce:65:cf:9e:fe:bc:11:59:68:67:15:ef: 58:c2:85:bc:9c:e3:84:cb:96:9b:bd:15:16:e8:11:94:91:cf: 37:ca:5f:04:1e:49:c6:ff:2d:7e:e0:73:9a:15:2d:ea:27:b4: e3:a2:b2:93:74:2b:54:17:3b:49:50:e0:c6:ce:bd:cf:ad:ec: 28:53:8d:54:38:ea:5f:80:9e:28:0e:5d:07:a8:74:03:23:f7: 72:0c:ca:7a:65:8a:78:23:49:64:82:90:87:76:18:cb:95:13: 58:86:56:85:2a:ce:9e:f6:fb:6c:72:14:96:0e:9c:74:de:8f: 30:3f:7f:3e:7d:27:ab:af:44:a6:31:d5:f6:fa:80:c8:36:53: e3:98:6d:aa:fc:f5:a8:65:42:e1:7e:bb:07:15:bd:86:e2:be: bc:4e:7f:8b:fc:84:a7:ea:ac:4b:ab:8b:60:ac:c9:cc:ee:7d: af:bc:23:09:e5:ec:0d:17:a7:58:f9:c0:33:29:85:7e:7d:53: b3:88:cf:39 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNQowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REM1QkUxMTAvBgNVBAUTKEFEQThBRUQzMkIxNUI4N0U2MTEyNTJEMjlEMUUxRDVC REU1ODE2NDYwHhcNMjQxMTIyMTQxNjE4WhcNMjQxMTI5MTQxNjE4WjAYMRYwFAYD VQQDEw02NzQwOTIzMi1hZGUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuRePcxNdylW5wyJvQF3bUgYYymvM2M2O9Rbf7oI98xg6vSHi52+bAkPBq+3Y A+SXb904HjQ0FqMKzN73JNnBqngzPuHW/kV2yOVHBU2FBQwZc13BYtZWOZQEY9Hi /2IHDsTZGWrDQKuG2LqlOUaol0ePL4r2Z0ceufbMF/igGOGuKXB4rOgfZXQ6qllH 1lKP5as3rXXi1mduZLBTwMs4HpOYYc+82fEXZnO21xeNdmQKJNAePl3IRmdLtUg7 +362yPux2+0oGaXBioIf4qe43yFbjWfgQ7MSy7nScIeLY+zZDWV/nwS0PViYtVYT WIliv7LPSQSKYxCQxpPgUVELnwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHrsTJwR og+zKjQe/4d9fKl4whcLMB8GA1UdIwQYMBaAFK2ortMrFbh+YRJS0p0eHVveWBZG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQzVCRS9ENDAxNjE5QTFE NjkxMUUyQUZCNjRFQTcwOEIwMkNEMi9yYWl1MHlzVnVINWhFbExTblI0ZFc5NVlG a1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JhaXUweXNWdUg1aEVsTFNuUjRkVzk1WUZrWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QzVCRS9ENDAxNjE5QTFENjkxMUUyQUZCNjRFQTcwOEIwMkNEMi9yYWl1MHlzVnVI NWhFbExTblI0ZFc5NVlGa1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA/8aRPmzMNpftjrQy+pTUCzZoh41WDMwSeXnP67zM1CjxBrkKeVWOy siThfkNJOT6qiqUYxVgnWFRr0RzOZc+e/rwRWWhnFe9YwoW8nOOEy5abvRUW6BGU kc83yl8EHknG/y1+4HOaFS3qJ7TjorKTdCtUFztJUODGzr3PrewoU41UOOpfgJ4o Dl0HqHQDI/dyDMp6ZYp4I0lkgpCHdhjLlRNYhlaFKs6e9vtschSWDpx03o8wP38+ fSerr0SmMdX2+oDINlPjmG2q/PWoZULhfrsHFb2G4r68Tn+L/ISn6qxLq4tgrMnM 7n2vvCMJ5ewNF6dY+cAzKYV+fVOziM85 -----END CERTIFICATE-----Generated at Fri Nov 22 16:50:04 2024 by rpki-client on console-ams.rpki-client.org