$ rpki-client -vvf rpki.apnic.net/member_repository/A91E3F3C/95513BA65DC111EE9894991CC4F9AE02/VGTkn1YOwQ1JdvbilhE7ryKoz18.mft File: VGTkn1YOwQ1JdvbilhE7ryKoz18.mft (raw, json) Hash identifier: AahQSURHgQFAGY5KUQtaRLwyPQzj4EMn49NmoVpCadA= Subject key identifier: 3A:1F:4A:B9:41:F2:CB:35:FC:89:5A:63:5C:8E:E5:8A:B3:7D:B7:5C Authority key identifier: 54:64:E4:9F:56:0E:C1:0D:49:76:F6:E2:96:11:3B:AF:22:A8:CF:5F Certificate issuer: /CN=A91E3F3C/serialNumber=5464E49F560EC10D4976F6E296113BAF22A8CF5F Certificate serial: DE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VGTkn1YOwQ1JdvbilhE7ryKoz18.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E3F3C/95513BA65DC111EE9894991CC4F9AE02/VGTkn1YOwQ1JdvbilhE7ryKoz18.mft Manifest number: DB Signing time: Sat 23 Nov 2024 03:41:11 +0000 Manifest this update: Sat 23 Nov 2024 03:41:11 +0000 Manifest next update: Sat 30 Nov 2024 03:41:11 +0000 Files and hashes: 1: VGTkn1YOwQ1JdvbilhE7ryKoz18.crl (hash: JV3BWDCQQ/mg3+uCO4t+Cpc2XClYpGmVwhLfbOuFrz8=) 2: 7148438E5DC211EE954BE21DC4F9AE02.roa (hash: DaoJhbsGXkUC42pkhjpzJhDA/mxo+1TSGX1zlEEQkMA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E3F3C/95513BA65DC111EE9894991CC4F9AE02/VGTkn1YOwQ1JdvbilhE7ryKoz18.crl rsync://rpki.apnic.net/member_repository/A91E3F3C/95513BA65DC111EE9894991CC4F9AE02/VGTkn1YOwQ1JdvbilhE7ryKoz18.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VGTkn1YOwQ1JdvbilhE7ryKoz18.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 222 (0xde) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E3F3C/serialNumber=5464E49F560EC10D4976F6E296113BAF22A8CF5F Validity Not Before: Nov 23 03:41:11 2024 GMT Not After : Nov 30 03:41:11 2024 GMT Subject: CN=67414ed7-8dc8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:94:c7:81:05:18:68:7a:3b:d9:fb:1d:e8:7f: c8:e1:9d:f5:6d:14:31:38:79:08:f0:fc:81:49:f1: f7:a9:5c:3f:12:49:cf:fc:96:fe:0b:62:ac:2b:0c: 01:d8:15:98:e4:f4:d1:ba:6f:5a:64:cf:5c:b5:47: d3:82:2a:12:85:91:56:79:58:86:24:6d:c7:b4:1c: 9d:40:11:04:98:8f:8d:d7:40:ec:81:65:4d:5e:fb: 13:2a:84:c0:6f:7d:80:7f:78:cd:10:08:98:83:19: 89:a7:d2:f5:51:e7:ca:f0:fa:24:32:d8:09:bb:09: 71:2c:c7:53:20:40:0b:42:6d:36:cd:4a:90:8d:9f: 18:7b:a5:6b:2a:29:1a:50:9b:da:d4:ee:9b:b1:49: 64:d3:95:e1:d4:a5:17:9c:fb:5d:72:11:38:f0:75: 5b:c9:36:f3:16:00:54:53:2f:11:cc:1b:ae:f1:4a: cc:e1:e6:5b:c2:ca:19:97:b2:cc:dc:e1:e6:47:25: cc:61:db:12:85:2b:a1:94:8f:34:17:98:4f:20:00: 4e:88:92:1e:df:c5:2e:9a:48:85:f1:f9:2f:a8:12: 0f:89:d6:9d:c4:c4:0d:d4:23:8d:95:e1:94:45:72: 16:49:9c:ec:e5:b6:2c:69:0e:04:76:54:63:7b:1f: 86:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:1F:4A:B9:41:F2:CB:35:FC:89:5A:63:5C:8E:E5:8A:B3:7D:B7:5C X509v3 Authority Key Identifier: keyid:54:64:E4:9F:56:0E:C1:0D:49:76:F6:E2:96:11:3B:AF:22:A8:CF:5F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E3F3C/95513BA65DC111EE9894991CC4F9AE02/VGTkn1YOwQ1JdvbilhE7ryKoz18.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VGTkn1YOwQ1JdvbilhE7ryKoz18.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E3F3C/95513BA65DC111EE9894991CC4F9AE02/VGTkn1YOwQ1JdvbilhE7ryKoz18.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bd:40:7b:46:58:bc:d1:78:10:dd:27:11:02:d8:22:16:e9:8c: 1b:3c:8e:0d:ad:6b:fd:df:43:ce:fc:28:b5:fe:82:a4:83:0b: b0:2a:ff:e2:96:a6:7d:c6:a0:f1:14:5f:52:e0:dc:d1:65:cc: 2e:19:75:f7:4c:c2:00:ad:90:09:53:73:84:a9:9f:b6:1f:64: 93:b7:90:78:f9:7a:7d:41:97:cd:de:a6:54:11:97:ce:7a:b3: 1f:3b:eb:67:12:92:91:ba:81:46:03:e8:d2:4f:06:2f:33:cd: 5b:67:cd:93:c2:d7:bb:9f:05:68:c0:15:42:51:b5:29:28:fe: 35:5e:d6:e8:a4:10:4a:8f:c2:e6:f1:79:f4:e3:7e:af:31:dd: 84:47:27:7c:0b:dc:cb:e0:3c:3e:bd:e1:f3:d6:f1:5d:a9:18: 97:ab:7a:b6:ad:d3:4a:48:32:1e:03:e0:be:ac:2a:51:37:8d: 34:6e:02:a9:bd:83:df:00:72:26:b5:ea:79:42:9f:93:8f:9b: 6b:c9:5f:6f:88:9c:4a:a9:be:5f:2a:4d:a4:bd:72:d0:7e:c9: 18:f8:da:97:86:50:d6:0f:0c:7d:71:3a:2a:e4:9f:48:f1:92: ab:1f:bd:69:12:36:27:b7:8d:1a:88:fe:f5:24:6e:db:25:56: a3:e2:90:6a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAN4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTNGM0MxMTAvBgNVBAUTKDU0NjRFNDlGNTYwRUMxMEQ0OTc2RjZFMjk2MTEzQkFG MjJBOENGNUYwHhcNMjQxMTIzMDM0MTExWhcNMjQxMTMwMDM0MTExWjAYMRYwFAYD VQQDEw02NzQxNGVkNy04ZGM4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3JTHgQUYaHo72fsd6H/I4Z31bRQxOHkI8PyBSfH3qVw/EknP/Jb+C2KsKwwB 2BWY5PTRum9aZM9ctUfTgioShZFWeViGJG3HtBydQBEEmI+N10DsgWVNXvsTKoTA b32Af3jNEAiYgxmJp9L1UefK8PokMtgJuwlxLMdTIEALQm02zUqQjZ8Ye6VrKika UJva1O6bsUlk05Xh1KUXnPtdchE48HVbyTbzFgBUUy8RzBuu8UrM4eZbwsoZl7LM 3OHmRyXMYdsShSuhlI80F5hPIABOiJIe38UumkiF8fkvqBIPidadxMQN1CONleGU RXIWSZzs5bYsaQ4EdlRjex+GoQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDofSrlB 8ss1/IlaY1yO5YqzfbdcMB8GA1UdIwQYMBaAFFRk5J9WDsENSXb24pYRO68iqM9f MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFM0YzQy85NTUxM0JBNjVE QzExMUVFOTg5NDk5MUNDNEY5QUUwMi9WR1RrbjFZT3dRMUpkdmJpbGhFN3J5S296 MTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1ZHVGtuMVlPd1ExSmR2YmlsaEU3cnlLb3oxOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF M0YzQy85NTUxM0JBNjVEQzExMUVFOTg5NDk5MUNDNEY5QUUwMi9WR1RrbjFZT3dR MUpkdmJpbGhFN3J5S296MTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC9QHtGWLzReBDdJxEC2CIW6YwbPI4NrWv930PO/Ci1/oKkgwuwKv/i lqZ9xqDxFF9S4NzRZcwuGXX3TMIArZAJU3OEqZ+2H2STt5B4+Xp9QZfN3qZUEZfO erMfO+tnEpKRuoFGA+jSTwYvM81bZ82Twte7nwVowBVCUbUpKP41XtbopBBKj8Lm 8Xn0436vMd2ERyd8C9zL4Dw+veHz1vFdqRiXq3q2rdNKSDIeA+C+rCpRN400bgKp vYPfAHImtep5Qp+Tj5tryV9viJxKqb5fKk2kvXLQfskY+NqXhlDWDwx9cToq5J9I 8ZKrH71pEjYnt40aiP71JG7bJVaj4pBq -----END CERTIFICATE-----Generated at Sat Nov 23 06:13:26 2024 by rpki-client on console-ams.rpki-client.org