$ rpki-client -vvf rpki.apnic.net/member_repository/A91E520F/41CCBC6EA81911EFB9BDED71C4F9AE02/sb1NsCH1THJj88NTX4g2hJui5g4.mft File: sb1NsCH1THJj88NTX4g2hJui5g4.mft (raw, json) Hash identifier: JzZgQPxv28kwfyoqJAS7rSzq04K+k6zXuSNmekh8Lo8= Subject key identifier: 43:FD:0C:E4:04:87:39:AB:57:EC:1E:0E:67:91:A5:E4:BF:C5:62:0E Authority key identifier: B1:BD:4D:B0:21:F5:4C:72:63:F3:C3:53:5F:88:36:84:9B:A2:E6:0E Certificate issuer: /CN=A91E520F/serialNumber=B1BD4DB021F54C7263F3C3535F8836849BA2E60E Certificate serial: 04 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sb1NsCH1THJj88NTX4g2hJui5g4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E520F/41CCBC6EA81911EFB9BDED71C4F9AE02/sb1NsCH1THJj88NTX4g2hJui5g4.mft Manifest number: 03 Signing time: Sat 23 Nov 2024 06:10:32 +0000 Manifest this update: Sat 23 Nov 2024 06:10:31 +0000 Manifest next update: Sat 30 Nov 2024 06:10:31 +0000 Files and hashes: 1: sb1NsCH1THJj88NTX4g2hJui5g4.crl (hash: Tg8RPUIRh2JLE9hMAuWGJfBT5K8UQ0rJ2DT47428nJY=) 2: A30B17FAA81911EF862F3A56C4F9AE02.roa (hash: 5t/9vRDX7bOXj/AudhNlmGxZtmB+Rx0Lf8bwk6wLjkQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E520F/41CCBC6EA81911EFB9BDED71C4F9AE02/sb1NsCH1THJj88NTX4g2hJui5g4.crl rsync://rpki.apnic.net/member_repository/A91E520F/41CCBC6EA81911EFB9BDED71C4F9AE02/sb1NsCH1THJj88NTX4g2hJui5g4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sb1NsCH1THJj88NTX4g2hJui5g4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4 (0x4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E520F/serialNumber=B1BD4DB021F54C7263F3C3535F8836849BA2E60E Validity Not Before: Nov 23 06:10:31 2024 GMT Not After : Nov 30 06:10:31 2024 GMT Subject: CN=674171d8-193c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:2f:c4:a5:cb:ed:22:67:c7:3a:d1:8a:c0:9f: 3c:d4:4f:58:3d:fd:ba:40:c0:3f:28:da:62:8b:86: ae:82:5d:b2:eb:2e:23:75:e8:76:5a:1a:04:87:2e: e2:29:4a:cb:76:51:71:a9:07:73:eb:3c:1e:c3:77: ce:c1:24:c7:2c:f4:bf:6d:fb:2a:89:3c:69:bd:e7: fb:24:85:d9:a7:9e:f0:36:77:ad:f0:70:0e:dc:4b: ed:13:43:d7:f8:7f:5c:e5:80:56:25:ff:a4:e1:36: a4:56:2f:08:18:da:30:37:b0:80:f8:b0:5c:38:a9: 70:e1:ee:f8:e7:13:5f:c5:be:50:e1:2d:a2:e8:53: aa:17:ca:6e:e9:5f:f0:b4:66:35:b4:79:62:2f:f5: 9f:38:cc:d5:04:92:63:c0:ee:50:df:b1:3a:a7:a3: 56:8b:b6:b8:41:68:de:2d:f4:0d:6b:f4:28:a5:64: 8a:94:b4:db:8c:94:60:47:71:75:64:08:63:5c:6f: b3:f1:46:db:c3:18:02:4e:dc:20:6e:1f:93:d9:87: d5:2b:16:d9:87:be:4d:5c:1f:24:57:71:3f:9c:1b: 17:94:e3:dd:55:da:a0:7d:5c:41:76:a7:d2:10:82: c8:88:f0:2b:a3:dd:31:7c:04:91:f0:28:07:cd:1c: 06:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:FD:0C:E4:04:87:39:AB:57:EC:1E:0E:67:91:A5:E4:BF:C5:62:0E X509v3 Authority Key Identifier: keyid:B1:BD:4D:B0:21:F5:4C:72:63:F3:C3:53:5F:88:36:84:9B:A2:E6:0E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E520F/41CCBC6EA81911EFB9BDED71C4F9AE02/sb1NsCH1THJj88NTX4g2hJui5g4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sb1NsCH1THJj88NTX4g2hJui5g4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E520F/41CCBC6EA81911EFB9BDED71C4F9AE02/sb1NsCH1THJj88NTX4g2hJui5g4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 81:1f:79:97:8a:d9:a9:1c:66:89:79:e1:5d:17:16:7f:e1:e4: 71:0c:f4:ba:e7:5b:fb:04:15:d0:de:12:78:1b:5e:d1:12:03: 20:76:a8:de:17:86:a7:3d:0f:a1:84:7d:d9:30:92:5e:fd:1b: 9a:c0:9b:18:4e:8f:d4:86:c8:2b:de:fc:18:e2:fe:3d:60:2d: 7b:43:c8:ab:ce:45:a9:eb:04:3c:0a:72:d0:1b:9d:c6:4a:a0: a7:15:9b:44:71:c4:a7:5d:3d:82:11:8c:62:0c:95:b7:ef:49: 68:c6:05:f8:ae:c2:9d:b6:a0:42:32:b0:79:c3:0f:3e:c3:80: 74:1a:72:b5:ba:f4:a9:0b:7b:28:4b:b5:b6:ae:29:7b:be:ce: 45:27:b7:28:db:19:25:9a:bd:b1:4c:b0:3d:68:1f:92:eb:78: b9:33:a0:96:14:b9:48:9a:6e:1a:38:bd:e8:fc:09:9d:bf:6c: 77:74:06:d6:f2:50:25:1c:09:88:62:0d:40:82:e3:3d:c8:d6: ee:50:aa:58:ac:df:ff:df:78:71:e4:0a:8c:4d:72:e4:88:b6: 30:86:64:ff:d2:87:d8:8b:ed:9e:e1:e0:84:e1:20:5a:91:89: e7:6d:7b:67:99:57:65:a3:c3:dc:e2:f7:cb:cf:dd:fb:94:0b: ba:6d:1f:f8 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBBDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF NTIwRjExMC8GA1UEBRMoQjFCRDREQjAyMUY1NEM3MjYzRjNDMzUzNUY4ODM2ODQ5 QkEyRTYwRTAeFw0yNDExMjMwNjEwMzFaFw0yNDExMzAwNjEwMzFaMBgxFjAUBgNV BAMTDTY3NDE3MWQ4LTE5M2MwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC7L8Sly+0iZ8c60YrAnzzUT1g9/bpAwD8o2mKLhq6CXbLrLiN16HZaGgSHLuIp Sst2UXGpB3PrPB7Dd87BJMcs9L9t+yqJPGm95/skhdmnnvA2d63wcA7cS+0TQ9f4 f1zlgFYl/6ThNqRWLwgY2jA3sID4sFw4qXDh7vjnE1/FvlDhLaLoU6oXym7pX/C0 ZjW0eWIv9Z84zNUEkmPA7lDfsTqno1aLtrhBaN4t9A1r9CilZIqUtNuMlGBHcXVk CGNcb7PxRtvDGAJO3CBuH5PZh9UrFtmHvk1cHyRXcT+cGxeU491V2qB9XEF2p9IQ gsiI8Cuj3TF8BJHwKAfNHAbhAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUQ/0M5ASH OatX7B4OZ5Gl5L/FYg4wHwYDVR0jBBgwFoAUsb1NsCH1THJj88NTX4g2hJui5g4w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUU1MjBGLzQxQ0NCQzZFQTgx OTExRUZCOUJERUQ3MUM0RjlBRTAyL3NiMU5zQ0gxVEhKajg4TlRYNGcyaEp1aTVn NC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvc2IxTnNDSDFUSEpqODhOVFg0ZzJoSnVpNWc0LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUU1 MjBGLzQxQ0NCQzZFQTgxOTExRUZCOUJERUQ3MUM0RjlBRTAyL3NiMU5zQ0gxVEhK ajg4TlRYNGcyaEp1aTVnNC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAIEfeZeK2akcZol54V0XFn/h5HEM9LrnW/sEFdDeEngbXtESAyB2qN4X hqc9D6GEfdkwkl79G5rAmxhOj9SGyCve/Bji/j1gLXtDyKvORanrBDwKctAbncZK oKcVm0RxxKddPYIRjGIMlbfvSWjGBfiuwp22oEIysHnDDz7DgHQacrW69KkLeyhL tbauKXu+zkUntyjbGSWavbFMsD1oH5LreLkzoJYUuUiabho4vej8CZ2/bHd0Btby UCUcCYhiDUCC4z3I1u5Qqlis3//feHHkCoxNcuSItjCGZP/Sh9iL7Z7h4IThIFqR iedte2eZV2Wjw9zi98vP3fuUC7ptH/g= -----END CERTIFICATE-----Generated at Sat Nov 23 07:45:05 2024 by rpki-client on console-ams.rpki-client.org