$ rpki-client -vvf rpki.apnic.net/member_repository/A91E9BC4/92E821F0A46011E9810A5C0BC4F9AE02/g86FOnpm6rnh8jNGcR09yX1XWXg.mft File: g86FOnpm6rnh8jNGcR09yX1XWXg.mft (raw, json) Hash identifier: pKkUPG6XnkifPhSRsPXsyQ2FGvs5xwpTlH8AcVUjB0U= Subject key identifier: CC:E8:F1:AF:D9:AB:00:7F:8F:6B:2F:A3:97:A5:02:A5:46:D4:32:6E Authority key identifier: 83:CE:85:3A:7A:66:EA:B9:E1:F2:33:46:71:1D:3D:C9:7D:57:59:78 Certificate issuer: /CN=A91E9BC4/serialNumber=83CE853A7A66EAB9E1F23346711D3DC97D575978 Certificate serial: 0DD4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g86FOnpm6rnh8jNGcR09yX1XWXg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E9BC4/92E821F0A46011E9810A5C0BC4F9AE02/g86FOnpm6rnh8jNGcR09yX1XWXg.mft Manifest number: 0DCB Signing time: Fri 22 Nov 2024 17:49:17 +0000 Manifest this update: Fri 22 Nov 2024 17:49:17 +0000 Manifest next update: Fri 29 Nov 2024 17:49:17 +0000 Files and hashes: 1: g86FOnpm6rnh8jNGcR09yX1XWXg.crl (hash: I+Z5btfdNN5ONyElG5Sme53byo37ZtbOlQNO5MQ7UH0=) 2: 3B495FFCA46211E9B730310FC4F9AE02.roa (hash: 9CcirKqxpdNHPxtXI8/MHTjJYP2t94IiPdFAh8Rx4sE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E9BC4/92E821F0A46011E9810A5C0BC4F9AE02/g86FOnpm6rnh8jNGcR09yX1XWXg.crl rsync://rpki.apnic.net/member_repository/A91E9BC4/92E821F0A46011E9810A5C0BC4F9AE02/g86FOnpm6rnh8jNGcR09yX1XWXg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g86FOnpm6rnh8jNGcR09yX1XWXg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 17:49:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3540 (0xdd4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E9BC4/serialNumber=83CE853A7A66EAB9E1F23346711D3DC97D575978 Validity Not Before: Nov 22 17:49:17 2024 GMT Not After : Nov 29 17:49:17 2024 GMT Subject: CN=6740c41d-e98a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:cd:f9:dc:79:1d:32:10:65:34:38:fd:b5:c3: f4:b6:4e:3b:57:1d:67:c0:a6:cd:18:d8:70:29:cc: ca:26:cd:45:30:c2:3e:81:19:1b:e8:e9:cb:67:97: 08:3e:e2:72:74:0b:ae:52:e5:20:d3:54:95:14:76: 7c:ec:8a:3e:59:a6:69:66:92:9e:a0:2d:e3:f3:4c: 19:42:af:7d:f3:d9:f2:a8:80:fa:21:f2:ff:7a:9a: 90:8c:c1:0d:4c:90:98:a4:6c:77:d0:e6:eb:4f:72: d3:4b:44:91:b7:3e:f5:14:54:8e:25:e8:7b:7b:ac: 9b:9c:f8:d9:16:87:47:91:40:f3:e1:28:a2:55:6d: 61:6d:7b:9c:e4:43:1f:f9:72:53:5a:b7:fb:5a:48: 40:32:3e:4c:bc:78:4e:33:9b:99:89:06:79:a2:60: 87:38:fa:c9:4f:fa:a2:9a:1e:2f:5e:85:3e:d5:f7: ee:bf:05:72:19:b8:52:eb:29:62:32:c6:53:5d:14: c1:e9:48:24:be:e4:a0:f5:38:08:02:6a:85:ee:5f: 1f:f9:cb:fa:f1:29:20:2f:04:7c:dc:2e:7f:d9:f8: e9:a9:c9:c4:3c:59:eb:0d:de:cc:f0:2d:0b:8e:ec: 83:e2:3c:b4:f1:10:4f:e0:d2:0b:e6:d2:9c:36:d7: 6a:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:E8:F1:AF:D9:AB:00:7F:8F:6B:2F:A3:97:A5:02:A5:46:D4:32:6E X509v3 Authority Key Identifier: keyid:83:CE:85:3A:7A:66:EA:B9:E1:F2:33:46:71:1D:3D:C9:7D:57:59:78 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E9BC4/92E821F0A46011E9810A5C0BC4F9AE02/g86FOnpm6rnh8jNGcR09yX1XWXg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g86FOnpm6rnh8jNGcR09yX1XWXg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E9BC4/92E821F0A46011E9810A5C0BC4F9AE02/g86FOnpm6rnh8jNGcR09yX1XWXg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 62:88:b0:cf:a9:68:59:1f:be:ee:21:e5:75:42:de:5f:fe:5e: 04:a4:ab:61:30:86:20:fa:59:6b:78:c4:9f:3a:8c:75:d3:1d: 99:a9:a0:9d:ad:44:a5:c3:77:3c:3c:4a:46:81:ac:b9:e6:59: 90:a3:c6:29:f0:44:c2:05:c8:38:2b:10:f4:e0:ed:34:7f:f3: 28:bf:2d:a8:31:c7:62:22:a4:8a:1a:26:20:cb:56:35:ba:ca: d2:2a:9a:dc:8c:77:08:b2:e8:69:fa:8e:0c:2b:4c:5f:9e:ed: 9e:3b:44:e2:8b:df:ac:c9:cd:ed:0e:3c:b9:20:ce:3c:86:db: 40:84:74:4e:29:ca:9b:30:e5:23:54:19:f6:d7:1d:5a:e5:17: 37:09:73:f2:6b:84:91:c2:b4:69:26:5a:41:e8:b1:26:ce:ff: b8:96:0c:e7:60:92:09:40:55:d7:03:bb:89:af:d5:54:b7:49: ed:f7:28:d4:28:b0:1b:a0:29:be:f7:1c:33:2b:d3:47:b3:6c: c7:a8:60:83:a7:1d:b6:17:48:4c:9c:bc:bd:8d:10:f9:a0:86: 92:60:40:db:31:8a:7e:6a:ef:f1:2c:a2:da:28:ae:12:17:9a: 96:8e:6c:1f:7e:49:89:cb:6f:72:ba:42:64:1f:19:5d:c9:65: be:12:08:bb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDdQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTlCQzQxMTAvBgNVBAUTKDgzQ0U4NTNBN0E2NkVBQjlFMUYyMzM0NjcxMUQzREM5 N0Q1NzU5NzgwHhcNMjQxMTIyMTc0OTE3WhcNMjQxMTI5MTc0OTE3WjAYMRYwFAYD VQQDEw02NzQwYzQxZC1lOThhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAys353HkdMhBlNDj9tcP0tk47Vx1nwKbNGNhwKczKJs1FMMI+gRkb6OnLZ5cI PuJydAuuUuUg01SVFHZ87Io+WaZpZpKeoC3j80wZQq9989nyqID6IfL/epqQjMEN TJCYpGx30ObrT3LTS0SRtz71FFSOJeh7e6ybnPjZFodHkUDz4SiiVW1hbXuc5EMf +XJTWrf7WkhAMj5MvHhOM5uZiQZ5omCHOPrJT/qimh4vXoU+1ffuvwVyGbhS6yli MsZTXRTB6UgkvuSg9TgIAmqF7l8f+cv68SkgLwR83C5/2fjpqcnEPFnrDd7M8C0L juyD4jy08RBP4NIL5tKcNtdqAwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMzo8a/Z qwB/j2svo5elAqVG1DJuMB8GA1UdIwQYMBaAFIPOhTp6Zuq54fIzRnEdPcl9V1l4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOUJDNC85MkU4MjFGMEE0 NjAxMUU5ODEwQTVDMEJDNEY5QUUwMi9nODZGT25wbTZybmg4ak5HY1IwOXlYMVhX WGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2c4NkZPbnBtNnJuaDhqTkdjUjA5eVgxWFdYZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF OUJDNC85MkU4MjFGMEE0NjAxMUU5ODEwQTVDMEJDNEY5QUUwMi9nODZGT25wbTZy bmg4ak5HY1IwOXlYMVhXWGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBiiLDPqWhZH77uIeV1Qt5f/l4EpKthMIYg+llreMSfOox10x2ZqaCd rUSlw3c8PEpGgay55lmQo8Yp8ETCBcg4KxD04O00f/Movy2oMcdiIqSKGiYgy1Y1 usrSKprcjHcIsuhp+o4MK0xfnu2eO0Tii9+syc3tDjy5IM48httAhHROKcqbMOUj VBn21x1a5Rc3CXPya4SRwrRpJlpB6LEmzv+4lgznYJIJQFXXA7uJr9VUt0nt9yjU KLAboCm+9xwzK9NHs2zHqGCDpx22F0hMnLy9jRD5oIaSYEDbMYp+au/xLKLaKK4S F5qWjmwffkmJy29yukJkHxldyWW+Egi7 -----END CERTIFICATE-----Generated at Fri Nov 22 19:50:22 2024 by rpki-client on console-ams.rpki-client.org