$ rpki-client -vvf rpki.apnic.net/member_repository/A91DF076/A408F582B90411E9B1D50B41C4F9AE02/R4pL3QESHRxrMz7MPiW6Gohxmao.mft File: R4pL3QESHRxrMz7MPiW6Gohxmao.mft (raw, json) Hash identifier: JYXEAQGOGCp9bT9fjiwajx0VlrXAStCXgBVGafcDKb4= Subject key identifier: 4A:71:C7:0B:0B:7E:BF:DA:6F:18:5C:36:0B:E9:47:F9:63:88:A1:88 Authority key identifier: 47:8A:4B:DD:01:12:1D:1C:6B:33:3E:CC:3E:25:BA:1A:88:71:99:AA Certificate issuer: /CN=A91DF076/serialNumber=478A4BDD01121D1C6B333ECC3E25BA1A887199AA Certificate serial: 0D72 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R4pL3QESHRxrMz7MPiW6Gohxmao.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DF076/A408F582B90411E9B1D50B41C4F9AE02/R4pL3QESHRxrMz7MPiW6Gohxmao.mft Manifest number: 0D69 Signing time: Wed 20 Nov 2024 17:52:36 +0000 Manifest this update: Wed 20 Nov 2024 17:52:35 +0000 Manifest next update: Wed 27 Nov 2024 17:52:35 +0000 Files and hashes: 1: R4pL3QESHRxrMz7MPiW6Gohxmao.crl (hash: mKpJKlo5yY591NeM8n4jmT84iIYnuK43g7qAqG7bEPU=) 2: 7043D43679BB11ECB6D72266C4F9AE02.roa (hash: BOGz00jzThHZrjf4AnHf9t8835VNaXb3kuD1iUSrcgE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DF076/A408F582B90411E9B1D50B41C4F9AE02/R4pL3QESHRxrMz7MPiW6Gohxmao.crl rsync://rpki.apnic.net/member_repository/A91DF076/A408F582B90411E9B1D50B41C4F9AE02/R4pL3QESHRxrMz7MPiW6Gohxmao.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R4pL3QESHRxrMz7MPiW6Gohxmao.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 17:13:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3442 (0xd72) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DF076/serialNumber=478A4BDD01121D1C6B333ECC3E25BA1A887199AA Validity Not Before: Nov 20 17:52:35 2024 GMT Not After : Nov 27 17:52:35 2024 GMT Subject: CN=673e21e3-8bd7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:e7:6e:13:c5:b4:5b:75:aa:1e:cf:5c:8f:db: 67:6b:4a:b7:00:16:08:16:b5:6b:e7:a6:0f:73:39: c9:eb:da:56:42:b7:39:4e:25:1c:6d:1c:8d:4f:77: ec:3c:a3:83:69:c0:92:a1:6c:ff:ca:32:4f:e6:cc: a1:ba:02:2b:94:87:55:35:c3:12:87:61:de:64:ff: 97:ed:0d:34:25:57:2c:9c:ca:13:87:a8:98:7c:2f: e9:ee:be:b8:fc:77:e2:2f:63:3b:25:8f:cf:37:34: ff:34:f6:c4:c9:fd:92:ff:2a:8d:ed:ed:bf:47:4f: 15:23:a1:e5:7c:0e:67:1e:e6:a8:12:6a:43:20:82: 09:ff:fc:9b:87:2c:79:1b:fc:94:60:79:21:23:b0: c0:f3:20:63:e1:9e:b9:1a:d8:51:80:8e:e3:1d:ba: 75:ed:ac:8d:32:ed:7b:e6:38:40:7b:87:8f:38:05: 88:07:9d:f9:d4:af:cc:d0:df:7e:e7:07:39:c7:2f: 1a:b4:bc:fe:74:5b:34:2e:1a:f4:3b:bc:96:d7:c0: a2:db:cd:db:7e:31:9a:ba:5d:b8:31:cd:69:1f:6b: 72:03:8e:03:9b:c1:e3:40:9e:07:10:6c:6c:2c:f0: 6d:aa:df:b3:7b:21:33:fc:c7:a1:5b:3c:6d:40:5f: c7:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:71:C7:0B:0B:7E:BF:DA:6F:18:5C:36:0B:E9:47:F9:63:88:A1:88 X509v3 Authority Key Identifier: keyid:47:8A:4B:DD:01:12:1D:1C:6B:33:3E:CC:3E:25:BA:1A:88:71:99:AA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DF076/A408F582B90411E9B1D50B41C4F9AE02/R4pL3QESHRxrMz7MPiW6Gohxmao.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R4pL3QESHRxrMz7MPiW6Gohxmao.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DF076/A408F582B90411E9B1D50B41C4F9AE02/R4pL3QESHRxrMz7MPiW6Gohxmao.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 81:4a:05:99:24:19:89:c1:ee:46:28:be:4d:2b:62:8a:b3:59: 51:4c:74:54:12:75:b3:ea:ab:57:76:ab:8e:78:0c:c0:58:53: 20:e7:90:cd:6a:92:98:bd:77:46:de:f5:20:11:95:4e:3b:5b: f4:e3:95:9f:5a:89:1e:6c:2c:80:4d:dd:3c:d0:70:c8:c8:13: 3f:99:1a:28:4d:05:a7:2a:99:60:21:f7:3f:a5:78:85:63:45: 5c:7e:25:d4:e0:cf:f1:32:e8:24:a8:54:96:9d:81:04:31:be: 3c:bf:1d:90:0b:33:63:b8:72:3c:ab:78:99:1a:df:65:bc:8d: 89:28:fa:6b:1e:cb:c0:b7:21:42:60:f9:6e:9c:55:f3:4e:e9: da:27:a6:ca:ed:f9:fa:e3:93:99:48:12:ca:c5:58:47:3c:b9: 3c:ee:5e:a9:c2:68:32:46:3c:66:ba:fa:26:dc:a4:33:79:d3: 2d:6d:d3:b6:94:31:b5:86:2b:02:02:ba:1e:5f:c8:8f:92:91: e2:32:f0:56:a3:f7:12:10:30:cb:d7:96:21:6b:69:05:24:6b: 96:64:36:eb:61:40:cc:82:10:4b:8f:5c:b5:6a:1e:14:57:ec: 12:22:59:3a:d4:6c:7b:9c:61:9b:5c:7c:3e:0e:cf:9a:0f:5a: 12:a1:8a:ff -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDXIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REYwNzYxMTAvBgNVBAUTKDQ3OEE0QkREMDExMjFEMUM2QjMzM0VDQzNFMjVCQTFB ODg3MTk5QUEwHhcNMjQxMTIwMTc1MjM1WhcNMjQxMTI3MTc1MjM1WjAYMRYwFAYD VQQDEw02NzNlMjFlMy04YmQ3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAo+duE8W0W3WqHs9cj9tna0q3ABYIFrVr56YPcznJ69pWQrc5TiUcbRyNT3fs PKODacCSoWz/yjJP5syhugIrlIdVNcMSh2HeZP+X7Q00JVcsnMoTh6iYfC/p7r64 /HfiL2M7JY/PNzT/NPbEyf2S/yqN7e2/R08VI6HlfA5nHuaoEmpDIIIJ//ybhyx5 G/yUYHkhI7DA8yBj4Z65GthRgI7jHbp17ayNMu175jhAe4ePOAWIB5351K/M0N9+ 5wc5xy8atLz+dFs0Lhr0O7yW18Ci283bfjGaul24Mc1pH2tyA44Dm8HjQJ4HEGxs LPBtqt+zeyEz/MehWzxtQF/HQQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEpxxwsL fr/abxhcNgvpR/ljiKGIMB8GA1UdIwQYMBaAFEeKS90BEh0cazM+zD4luhqIcZmq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERjA3Ni9BNDA4RjU4MkI5 MDQxMUU5QjFENTBCNDFDNEY5QUUwMi9SNHBMM1FFU0hSeHJNejdNUGlXNkdvaHht YW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1I0cEwzUUVTSFJ4ck16N01QaVc2R29oeG1hby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RjA3Ni9BNDA4RjU4MkI5MDQxMUU5QjFENTBCNDFDNEY5QUUwMi9SNHBMM1FFU0hS eHJNejdNUGlXNkdvaHhtYW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCBSgWZJBmJwe5GKL5NK2KKs1lRTHRUEnWz6qtXdquOeAzAWFMg55DN apKYvXdG3vUgEZVOO1v045WfWokebCyATd080HDIyBM/mRooTQWnKplgIfc/pXiF Y0VcfiXU4M/xMugkqFSWnYEEMb48vx2QCzNjuHI8q3iZGt9lvI2JKPprHsvAtyFC YPlunFXzTunaJ6bK7fn645OZSBLKxVhHPLk87l6pwmgyRjxmuvom3KQzedMtbdO2 lDG1hisCAroeX8iPkpHiMvBWo/cSEDDL15Yha2kFJGuWZDbrYUDMghBLj1y1ah4U V+wSIlk61Gx7nGGbXHw+Ds+aD1oSoYr/ -----END CERTIFICATE-----Generated at Wed Nov 20 19:06:08 2024 by rpki-client on console-ams.rpki-client.org