$ rpki-client -vvf rpki.apnic.net/member_repository/A91E01C6/491C8CE6CC9111EA8A59EF46C4F9AE02/ihuLzV7XzXIsUwBJjkqTZdBGo04.mft File: ihuLzV7XzXIsUwBJjkqTZdBGo04.mft (raw, json) Hash identifier: pB9BcWuAwfXCTqmtm6ntyd4Rqn1d1fwyFYLHbw+NTqc= Subject key identifier: 08:D3:84:A8:55:6C:99:BB:A6:D3:A9:59:FD:68:CD:DF:A3:5D:0D:60 Authority key identifier: 8A:1B:8B:CD:5E:D7:CD:72:2C:53:00:49:8E:4A:93:65:D0:46:A3:4E Certificate issuer: /CN=A91E01C6/serialNumber=8A1B8BCD5ED7CD722C5300498E4A9365D046A34E Certificate serial: 07EB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ihuLzV7XzXIsUwBJjkqTZdBGo04.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E01C6/491C8CE6CC9111EA8A59EF46C4F9AE02/ihuLzV7XzXIsUwBJjkqTZdBGo04.mft Manifest number: 07E4 Signing time: Fri 22 Nov 2024 20:40:07 +0000 Manifest this update: Fri 22 Nov 2024 20:40:06 +0000 Manifest next update: Fri 29 Nov 2024 20:40:06 +0000 Files and hashes: 1: ihuLzV7XzXIsUwBJjkqTZdBGo04.crl (hash: zfpIWiwUpQ16rle2QBemwgtjHhy9vKZnKXnGKxrLhrI=) 2: B6EB6C5ED46611ECA1A27035C4F9AE02.roa (hash: MzytEdv6AFwyptJ19U9Ds4XRz9r3S4O8DZQCdtraCmo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E01C6/491C8CE6CC9111EA8A59EF46C4F9AE02/ihuLzV7XzXIsUwBJjkqTZdBGo04.crl rsync://rpki.apnic.net/member_repository/A91E01C6/491C8CE6CC9111EA8A59EF46C4F9AE02/ihuLzV7XzXIsUwBJjkqTZdBGo04.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ihuLzV7XzXIsUwBJjkqTZdBGo04.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:40:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2027 (0x7eb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E01C6/serialNumber=8A1B8BCD5ED7CD722C5300498E4A9365D046A34E Validity Not Before: Nov 22 20:40:06 2024 GMT Not After : Nov 29 20:40:06 2024 GMT Subject: CN=6740ec26-33da Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:e7:48:4c:87:fe:04:f4:f5:cf:0c:17:f3:37: d0:59:1a:68:98:9a:00:12:c0:d2:d1:0f:ce:66:4c: 12:44:8c:4e:51:af:1c:7c:2d:18:fa:0e:d7:48:51: 51:d8:28:30:1b:06:65:bc:7e:50:60:55:dd:3c:43: b7:ad:53:19:e3:ea:0b:82:99:38:dd:af:49:4d:64: 5f:49:87:68:bf:ac:6b:ab:9a:79:fe:25:d0:31:f6: f2:7d:a7:d0:ea:65:e4:a5:da:84:71:74:3e:67:53: 9f:4e:37:db:fa:6f:d7:47:40:c6:a7:f4:1b:65:d7: c0:c5:e5:db:78:1d:80:11:d7:c4:df:67:d0:7a:35: d2:57:a5:6f:52:43:d1:77:99:a8:1e:b5:61:a3:e1: 55:fa:b4:be:7a:b2:80:10:83:95:fd:d7:9f:a2:90: fd:b7:f4:f3:42:e5:62:44:42:69:5d:ec:26:92:bd: d4:76:c9:7d:19:f8:b6:a3:87:99:d5:06:38:32:a8: 7d:0f:71:73:c6:65:0a:b9:3f:19:08:cb:16:a5:ff: 65:ce:ae:cf:a5:db:1c:54:44:4a:f8:97:84:c3:8f: ae:04:77:78:1b:a9:f2:c6:9d:91:a8:4a:a2:9f:c0: 75:a4:cb:24:d0:85:de:79:14:19:b3:89:60:e1:34: f7:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:D3:84:A8:55:6C:99:BB:A6:D3:A9:59:FD:68:CD:DF:A3:5D:0D:60 X509v3 Authority Key Identifier: keyid:8A:1B:8B:CD:5E:D7:CD:72:2C:53:00:49:8E:4A:93:65:D0:46:A3:4E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E01C6/491C8CE6CC9111EA8A59EF46C4F9AE02/ihuLzV7XzXIsUwBJjkqTZdBGo04.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ihuLzV7XzXIsUwBJjkqTZdBGo04.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E01C6/491C8CE6CC9111EA8A59EF46C4F9AE02/ihuLzV7XzXIsUwBJjkqTZdBGo04.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 11:60:41:0c:09:59:2f:da:2f:0d:e7:27:5b:b6:de:9d:d2:f7: f9:ae:05:61:1b:09:69:22:45:00:0c:b1:11:af:38:cc:37:ae: 2a:76:a6:33:27:27:51:28:b1:83:a9:85:89:89:04:5e:53:26: 0e:7e:de:06:f2:b9:01:65:72:df:6b:f7:00:1d:e3:93:a3:cd: fe:0d:fc:54:78:33:77:bf:47:90:cb:e3:fe:8e:bd:69:36:b6: a5:56:31:e9:cf:2c:33:4b:b2:13:b0:ae:6f:65:b3:e7:f6:30: b5:e2:3f:30:4b:6c:64:3f:68:f9:fe:3d:e3:31:9f:51:8f:2a: 6d:35:c8:b4:e0:3b:ae:5d:ec:6d:5b:bd:e1:41:55:c5:a8:82: d6:ae:c1:58:6a:e8:d7:bd:5b:74:ed:c9:b8:5e:97:fe:a5:75: a3:86:65:6b:b4:d6:9f:62:93:80:82:f8:cf:e3:1a:90:f2:81: b7:28:2e:a7:6e:df:2b:ab:08:34:02:8a:5c:4c:17:43:2d:af: 05:05:d6:b6:77:fa:59:c8:00:45:12:f2:e2:ae:1d:62:1e:41: 7f:80:e9:0c:f4:ac:1d:90:a2:7e:59:a8:4f:ee:1a:a8:f4:78: 9b:60:ba:0f:88:2c:ae:ac:56:87:b5:6d:fd:0f:c2:7e:34:49: c8:88:0a:1c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB+swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTAxQzYxMTAvBgNVBAUTKDhBMUI4QkNENUVEN0NENzIyQzUzMDA0OThFNEE5MzY1 RDA0NkEzNEUwHhcNMjQxMTIyMjA0MDA2WhcNMjQxMTI5MjA0MDA2WjAYMRYwFAYD VQQDEw02NzQwZWMyNi0zM2RhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3udITIf+BPT1zwwX8zfQWRpomJoAEsDS0Q/OZkwSRIxOUa8cfC0Y+g7XSFFR 2CgwGwZlvH5QYFXdPEO3rVMZ4+oLgpk43a9JTWRfSYdov6xrq5p5/iXQMfbyfafQ 6mXkpdqEcXQ+Z1OfTjfb+m/XR0DGp/QbZdfAxeXbeB2AEdfE32fQejXSV6VvUkPR d5moHrVho+FV+rS+erKAEIOV/defopD9t/TzQuViREJpXewmkr3Udsl9Gfi2o4eZ 1QY4Mqh9D3FzxmUKuT8ZCMsWpf9lzq7PpdscVERK+JeEw4+uBHd4G6nyxp2RqEqi n8B1pMsk0IXeeRQZs4lg4TT38QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAjThKhV bJm7ptOpWf1ozd+jXQ1gMB8GA1UdIwQYMBaAFIobi81e181yLFMASY5Kk2XQRqNO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMDFDNi80OTFDOENFNkND OTExMUVBOEE1OUVGNDZDNEY5QUUwMi9paHVMelY3WHpYSXNVd0JKamtxVFpkQkdv MDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lodUx6VjdYelhJc1V3Qkpqa3FUWmRCR28wNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MDFDNi80OTFDOENFNkNDOTExMUVBOEE1OUVGNDZDNEY5QUUwMi9paHVMelY3WHpY SXNVd0JKamtxVFpkQkdvMDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQARYEEMCVkv2i8N5ydbtt6d0vf5rgVhGwlpIkUADLERrzjMN64qdqYz JydRKLGDqYWJiQReUyYOft4G8rkBZXLfa/cAHeOTo83+DfxUeDN3v0eQy+P+jr1p NralVjHpzywzS7ITsK5vZbPn9jC14j8wS2xkP2j5/j3jMZ9RjyptNci04DuuXext W73hQVXFqILWrsFYaujXvVt07cm4Xpf+pXWjhmVrtNafYpOAgvjP4xqQ8oG3KC6n bt8rqwg0AopcTBdDLa8FBda2d/pZyABFEvLirh1iHkF/gOkM9KwdkKJ+WahP7hqo 9HibYLoPiCyurFaHtW39D8J+NEnIiAoc -----END CERTIFICATE-----Generated at Fri Nov 22 22:14:48 2024 by rpki-client on console-ams.rpki-client.org