$ rpki-client -vvf rpki.apnic.net/member_repository/A91E0C2B/D27E6ED0CB9611EDAC349B79C4F9AE02/5bsti54YaXwBWe2BMuXzS4axN7E.mft File: 5bsti54YaXwBWe2BMuXzS4axN7E.mft (raw, json) Hash identifier: nmB3nBszWx2MFIZSgt/LPmNAin+QEW2NsxzfA3Aqdm4= Subject key identifier: 48:D6:D3:F8:FF:BA:27:B9:88:45:65:1B:07:F6:12:E6:1D:6C:A2:37 Authority key identifier: E5:BB:2D:8B:9E:18:69:7C:01:59:ED:81:32:E5:F3:4B:86:B1:37:B1 Certificate issuer: /CN=A91E0C2B/serialNumber=E5BB2D8B9E18697C0159ED8132E5F34B86B137B1 Certificate serial: 013D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5bsti54YaXwBWe2BMuXzS4axN7E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E0C2B/D27E6ED0CB9611EDAC349B79C4F9AE02/5bsti54YaXwBWe2BMuXzS4axN7E.mft Manifest number: 013A Signing time: Sat 23 Nov 2024 02:43:27 +0000 Manifest this update: Sat 23 Nov 2024 02:43:26 +0000 Manifest next update: Sat 30 Nov 2024 02:43:26 +0000 Files and hashes: 1: 5bsti54YaXwBWe2BMuXzS4axN7E.crl (hash: PTXkkYnkLrltpx9zk6VjYvAdGKHL1tNCrPTmKUxccQk=) 2: 12B9A5DECBC211EDB6F09516C4F9AE02.roa (hash: pmN2o1KlR6jFa7dEFJRKKcKXmZNwlv1ahG+zaZBhy/8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E0C2B/D27E6ED0CB9611EDAC349B79C4F9AE02/5bsti54YaXwBWe2BMuXzS4axN7E.crl rsync://rpki.apnic.net/member_repository/A91E0C2B/D27E6ED0CB9611EDAC349B79C4F9AE02/5bsti54YaXwBWe2BMuXzS4axN7E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5bsti54YaXwBWe2BMuXzS4axN7E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:43:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 317 (0x13d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E0C2B/serialNumber=E5BB2D8B9E18697C0159ED8132E5F34B86B137B1 Validity Not Before: Nov 23 02:43:26 2024 GMT Not After : Nov 30 02:43:26 2024 GMT Subject: CN=6741414e-685d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:af:40:a8:37:83:8a:1b:2e:65:fa:e3:e0:3d: fc:86:e0:70:44:e6:b9:ce:b2:30:65:ef:75:dd:44: 03:60:48:c9:60:e5:a9:28:76:2a:ca:1f:e2:69:50: 20:9f:cc:3e:99:07:39:c9:7b:bd:b6:62:45:f8:51: 75:a2:2c:61:cb:48:18:02:e3:48:4e:5d:a7:a4:30: db:5e:29:92:cc:7f:f2:5b:ed:28:19:09:fb:6e:e9: 31:85:89:bc:a8:d7:79:ca:e2:ad:e8:9e:80:ce:03: 4a:d5:c7:ae:1d:9b:90:6c:19:d1:92:67:c3:da:dc: 69:70:ce:db:fe:2b:64:d1:4d:39:9d:d3:5d:0e:d4: 75:f6:e9:a6:10:46:11:1a:38:b8:5c:80:8c:61:38: e1:67:97:67:a8:06:8e:b3:4f:a8:67:c1:0b:7a:2b: e9:f2:24:d7:71:0b:fc:48:32:9f:71:c3:1b:9c:b6: dd:51:26:01:21:d7:ee:bf:85:ad:41:46:a2:b2:29: ed:20:e0:56:fe:ee:ad:c9:f2:d0:59:f7:1f:e0:7c: e3:27:da:08:60:cb:e0:8f:26:e3:2e:5e:e5:f6:12: ad:b7:16:34:bf:7e:63:e6:4a:34:5f:3f:57:e2:1a: 76:0f:f8:40:87:1d:cc:98:e7:e6:92:44:c1:83:a9: 61:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:D6:D3:F8:FF:BA:27:B9:88:45:65:1B:07:F6:12:E6:1D:6C:A2:37 X509v3 Authority Key Identifier: keyid:E5:BB:2D:8B:9E:18:69:7C:01:59:ED:81:32:E5:F3:4B:86:B1:37:B1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E0C2B/D27E6ED0CB9611EDAC349B79C4F9AE02/5bsti54YaXwBWe2BMuXzS4axN7E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5bsti54YaXwBWe2BMuXzS4axN7E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E0C2B/D27E6ED0CB9611EDAC349B79C4F9AE02/5bsti54YaXwBWe2BMuXzS4axN7E.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d5:92:a3:d1:ad:13:bc:ce:57:bc:c9:f4:00:c5:fd:af:47:46: 38:1e:3b:fc:2b:46:78:0d:83:0f:39:b1:d7:b4:68:74:9f:e3: f8:96:53:e0:07:7b:0d:47:00:16:27:83:c8:98:db:e9:0f:dd: 98:b7:1f:59:a4:a2:c9:66:38:1a:b2:e1:b6:7b:1e:ec:17:5d: 66:1f:07:8c:80:48:f2:3a:8a:bc:d7:d0:46:8f:88:46:8c:c6: 35:54:4b:8b:dd:17:b2:83:0b:b3:c5:01:9b:19:79:2e:0e:e7: 4a:57:b9:ce:d4:45:cb:31:68:4c:27:f7:5b:b0:10:c5:47:68: 02:4a:2d:a4:d7:05:07:71:96:d1:46:ea:f4:83:a0:24:fc:fc: f0:51:24:db:32:c4:57:4a:99:6b:e9:8a:ac:e2:54:85:33:9a: 7a:8f:02:3a:41:f0:6b:5a:ea:c5:76:fa:d9:7a:d7:f6:85:e1: a8:63:1f:98:2d:f4:8c:b2:eb:22:11:b8:d0:40:d1:47:0e:1c: fb:42:2e:45:ab:9d:31:55:a6:71:3b:6b:85:7e:34:59:2a:fc: 8e:ff:03:98:23:cd:9b:92:36:42:b4:8d:88:a2:2f:6f:e1:2a: 4e:ef:05:bb:b7:79:3c:da:f0:7a:48:e4:9c:19:5f:d9:26:cf: 9c:06:68:7f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAT0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTBDMkIxMTAvBgNVBAUTKEU1QkIyRDhCOUUxODY5N0MwMTU5RUQ4MTMyRTVGMzRC ODZCMTM3QjEwHhcNMjQxMTIzMDI0MzI2WhcNMjQxMTMwMDI0MzI2WjAYMRYwFAYD VQQDEw02NzQxNDE0ZS02ODVkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAya9AqDeDihsuZfrj4D38huBwROa5zrIwZe913UQDYEjJYOWpKHYqyh/iaVAg n8w+mQc5yXu9tmJF+FF1oixhy0gYAuNITl2npDDbXimSzH/yW+0oGQn7bukxhYm8 qNd5yuKt6J6AzgNK1ceuHZuQbBnRkmfD2txpcM7b/itk0U05ndNdDtR19ummEEYR Gji4XICMYTjhZ5dnqAaOs0+oZ8ELeivp8iTXcQv8SDKfccMbnLbdUSYBIdfuv4Wt QUaisintIOBW/u6tyfLQWfcf4HzjJ9oIYMvgjybjLl7l9hKttxY0v35j5ko0Xz9X 4hp2D/hAhx3MmOfmkkTBg6lhcQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEjW0/j/ uie5iEVlGwf2EuYdbKI3MB8GA1UdIwQYMBaAFOW7LYueGGl8AVntgTLl80uGsTex MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMEMyQi9EMjdFNkVEMENC OTYxMUVEQUMzNDlCNzlDNEY5QUUwMi81YnN0aTU0WWFYd0JXZTJCTXVYelM0YXhO N0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVic3RpNTRZYVh3QldlMkJNdVh6UzRheE43RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MEMyQi9EMjdFNkVEMENCOTYxMUVEQUMzNDlCNzlDNEY5QUUwMi81YnN0aTU0WWFY d0JXZTJCTXVYelM0YXhON0UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDVkqPRrRO8zle8yfQAxf2vR0Y4Hjv8K0Z4DYMPObHXtGh0n+P4llPg B3sNRwAWJ4PImNvpD92Ytx9ZpKLJZjgasuG2ex7sF11mHweMgEjyOoq819BGj4hG jMY1VEuL3ReygwuzxQGbGXkuDudKV7nO1EXLMWhMJ/dbsBDFR2gCSi2k1wUHcZbR Rur0g6Ak/PzwUSTbMsRXSplr6Yqs4lSFM5p6jwI6QfBrWurFdvrZetf2heGoYx+Y LfSMsusiEbjQQNFHDhz7Qi5Fq50xVaZxO2uFfjRZKvyO/wOYI82bkjZCtI2Ioi9v 4SpO7wW7t3k82vB6SOScGV/ZJs+cBmh/ -----END CERTIFICATE-----Generated at Sat Nov 23 03:58:54 2024 by rpki-client on console-ams.rpki-client.org