$ rpki-client -vvf rpki.apnic.net/member_repository/A91E4ED1/5FDD78B20B6411EA90923066C4F9AE02/5F9h77yy57HkFLLL3DRQ9_hGGJ0.mft File: 5F9h77yy57HkFLLL3DRQ9_hGGJ0.mft (raw, json) Hash identifier: 7c49wzJ8lgb/QdLM6D/biQGphfvj0M5bygcSjMqlUVg= Subject key identifier: 01:68:7F:19:1B:A9:12:F5:45:D6:85:4F:47:AC:63:FE:67:E1:D7:71 Authority key identifier: E4:5F:61:EF:BC:B2:E7:B1:E4:14:B2:CB:DC:34:50:F7:F8:46:18:9D Certificate issuer: /CN=A91E4ED1/serialNumber=E45F61EFBCB2E7B1E414B2CBDC3450F7F846189D Certificate serial: 0BBD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5F9h77yy57HkFLLL3DRQ9_hGGJ0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E4ED1/5FDD78B20B6411EA90923066C4F9AE02/5F9h77yy57HkFLLL3DRQ9_hGGJ0.mft Manifest number: 0BBC Signing time: Fri 22 Nov 2024 18:35:23 +0000 Manifest this update: Fri 22 Nov 2024 18:35:23 +0000 Manifest next update: Fri 29 Nov 2024 18:35:23 +0000 Files and hashes: 1: 5F9h77yy57HkFLLL3DRQ9_hGGJ0.crl (hash: jfXIbNgsopBimUHKCd8w1NkuAt2QUxlxfle7bXFh2AU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E4ED1/5FDD78B20B6411EA90923066C4F9AE02/5F9h77yy57HkFLLL3DRQ9_hGGJ0.crl rsync://rpki.apnic.net/member_repository/A91E4ED1/5FDD78B20B6411EA90923066C4F9AE02/5F9h77yy57HkFLLL3DRQ9_hGGJ0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5F9h77yy57HkFLLL3DRQ9_hGGJ0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 18:35:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3005 (0xbbd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E4ED1/serialNumber=E45F61EFBCB2E7B1E414B2CBDC3450F7F846189D Validity Not Before: Nov 22 18:35:23 2024 GMT Not After : Nov 29 18:35:23 2024 GMT Subject: CN=6740ceeb-38fc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:ab:54:17:5f:fd:32:09:52:f5:30:9c:50:5f: be:0d:dc:0a:fc:83:c9:ec:41:2c:46:76:7a:43:32: c2:29:89:23:b1:d4:49:53:20:d4:c1:cb:8c:16:ef: 26:bc:0f:a3:73:89:cb:35:f7:d5:51:7f:a6:fb:7a: 9a:df:bc:76:b4:bc:26:20:e2:cc:0f:63:af:52:d3: 7f:f9:6a:bf:22:d6:84:ff:db:6f:e8:cf:6d:7f:ab: f0:58:9f:9a:09:89:c0:53:d0:f1:b6:aa:1a:89:c9: 93:fa:33:f8:cc:a2:4b:b3:f8:35:70:d4:67:8d:ce: e6:98:25:cc:eb:7c:4e:4d:9f:d7:1c:4f:7e:f6:64: 1e:ba:65:58:48:d0:74:14:b7:d5:64:d5:44:73:59: e8:5b:42:a0:ef:a6:c3:7b:b6:88:5a:1c:4c:e2:88: 94:3a:ad:4d:dd:e1:ca:66:05:ce:6d:3f:5e:dc:40: 10:c2:d2:8f:1f:ad:cd:04:c3:7d:88:d0:e1:1c:c1: b1:df:44:f2:42:9c:0e:8b:ab:a6:93:d8:74:6d:bf: 73:ca:6d:c6:5a:59:68:a6:0f:84:e7:f8:f5:97:2e: 63:6b:04:ec:bb:c1:40:b9:64:22:cd:e5:2f:4c:f0: 6f:4e:a1:5d:3a:13:b3:28:63:21:f4:6d:66:89:db: d8:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:68:7F:19:1B:A9:12:F5:45:D6:85:4F:47:AC:63:FE:67:E1:D7:71 X509v3 Authority Key Identifier: keyid:E4:5F:61:EF:BC:B2:E7:B1:E4:14:B2:CB:DC:34:50:F7:F8:46:18:9D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E4ED1/5FDD78B20B6411EA90923066C4F9AE02/5F9h77yy57HkFLLL3DRQ9_hGGJ0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5F9h77yy57HkFLLL3DRQ9_hGGJ0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E4ED1/5FDD78B20B6411EA90923066C4F9AE02/5F9h77yy57HkFLLL3DRQ9_hGGJ0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 34:8e:29:53:89:58:09:ca:8f:be:93:c5:4c:79:45:5e:59:d3: ef:a5:16:5d:5c:36:d4:e2:14:26:3f:fc:25:0f:bd:3f:b6:f9: 45:a6:52:13:c6:a0:f1:13:4c:f5:c3:2f:a5:2e:29:12:94:28: 81:ed:c1:fa:0e:9d:4a:b2:64:b5:3c:81:28:bd:c1:07:0d:a1: 8d:ee:c1:ca:9d:11:5c:61:af:a0:dc:2c:58:b1:c1:75:a6:4e: 33:8f:ee:ef:7c:3b:88:d2:16:93:a6:c1:18:15:68:4e:7f:85: 04:e3:a4:08:0f:42:ec:7d:95:10:b2:d0:56:61:6a:c3:40:34: 84:cd:47:97:32:6a:40:df:34:56:5b:44:a9:7d:07:bf:84:a6: f9:7b:96:ff:0a:8b:47:50:ec:fa:0a:a8:90:f8:89:21:91:91: 9d:f8:ed:90:0d:b2:c6:ee:bd:30:c4:5e:92:ef:95:2e:00:42: 27:aa:45:4a:34:59:b2:dd:81:ff:24:36:10:71:ee:da:a2:1b: a6:f3:94:ea:5d:bd:fb:08:d0:06:93:2b:51:c8:66:cb:45:07: 10:ac:f4:80:29:62:35:3d:bd:95:57:ab:51:1d:92:36:87:ab: 2b:e4:0c:90:75:27:ff:ff:87:ea:09:9d:ed:18:44:82:32:49: fc:f2:49:1f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC70wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTRFRDExMTAvBgNVBAUTKEU0NUY2MUVGQkNCMkU3QjFFNDE0QjJDQkRDMzQ1MEY3 Rjg0NjE4OUQwHhcNMjQxMTIyMTgzNTIzWhcNMjQxMTI5MTgzNTIzWjAYMRYwFAYD VQQDEw02NzQwY2VlYi0zOGZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4atUF1/9MglS9TCcUF++DdwK/IPJ7EEsRnZ6QzLCKYkjsdRJUyDUwcuMFu8m vA+jc4nLNffVUX+m+3qa37x2tLwmIOLMD2OvUtN/+Wq/ItaE/9tv6M9tf6vwWJ+a CYnAU9DxtqoaicmT+jP4zKJLs/g1cNRnjc7mmCXM63xOTZ/XHE9+9mQeumVYSNB0 FLfVZNVEc1noW0Kg76bDe7aIWhxM4oiUOq1N3eHKZgXObT9e3EAQwtKPH63NBMN9 iNDhHMGx30TyQpwOi6umk9h0bb9zym3GWllopg+E5/j1ly5jawTsu8FAuWQizeUv TPBvTqFdOhOzKGMh9G1midvYewIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAFofxkb qRL1RdaFT0esY/5n4ddxMB8GA1UdIwQYMBaAFORfYe+8suex5BSyy9w0UPf4Rhid MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNEVEMS81RkRENzhCMjBC NjQxMUVBOTA5MjMwNjZDNEY5QUUwMi81RjloNzd5eTU3SGtGTExMM0RSUTlfaEdH SjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVGOWg3N3l5NTdIa0ZMTEwzRFJROV9oR0dKMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NEVEMS81RkRENzhCMjBCNjQxMUVBOTA5MjMwNjZDNEY5QUUwMi81RjloNzd5eTU3 SGtGTExMM0RSUTlfaEdHSjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA0jilTiVgJyo++k8VMeUVeWdPvpRZdXDbU4hQmP/wlD70/tvlFplIT xqDxE0z1wy+lLikSlCiB7cH6Dp1KsmS1PIEovcEHDaGN7sHKnRFcYa+g3CxYscF1 pk4zj+7vfDuI0haTpsEYFWhOf4UE46QID0LsfZUQstBWYWrDQDSEzUeXMmpA3zRW W0SpfQe/hKb5e5b/CotHUOz6CqiQ+IkhkZGd+O2QDbLG7r0wxF6S75UuAEInqkVK NFmy3YH/JDYQce7aohum85TqXb37CNAGkytRyGbLRQcQrPSAKWI1Pb2VV6tRHZI2 h6sr5AyQdSf//4fqCZ3tGESCMkn88kkf -----END CERTIFICATE-----Generated at Fri Nov 22 19:50:19 2024 by rpki-client on console-ams.rpki-client.org