$ rpki-client -vvf rpki.apnic.net/member_repository/A91E9D1A/C59B02DA1D7011E286F147B508B02CD2/CXb8PSMYbUjGcXc3QIkc9U4xuA4.mft File: CXb8PSMYbUjGcXc3QIkc9U4xuA4.mft (raw, json) Hash identifier: Y1ZT+GCifJkDwu5wzgT116eAzRMZt1pqNIZ10vZDnQI= Subject key identifier: 6B:CA:4A:0B:01:13:BD:68:7F:6C:02:7D:04:38:A6:42:38:86:2C:AA Authority key identifier: 09:76:FC:3D:23:18:6D:48:C6:71:77:37:40:89:1C:F5:4E:31:B8:0E Certificate issuer: /CN=A91E9D1A/serialNumber=0976FC3D23186D48C671773740891CF54E31B80E Certificate serial: 3462 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CXb8PSMYbUjGcXc3QIkc9U4xuA4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E9D1A/C59B02DA1D7011E286F147B508B02CD2/CXb8PSMYbUjGcXc3QIkc9U4xuA4.mft Manifest number: 3444 Signing time: Wed 20 Nov 2024 14:19:22 +0000 Manifest this update: Wed 20 Nov 2024 14:19:22 +0000 Manifest next update: Wed 27 Nov 2024 14:19:22 +0000 Files and hashes: 1: CXb8PSMYbUjGcXc3QIkc9U4xuA4.crl (hash: LuF7cL56U64fB/0cWkzk4zFsrNmcZn+SZbjwA2RUGEw=) 2: 81C9B5A4BBFA11ED99272016C4F9AE02.roa (hash: LKJoEQzPb1sMSVb2vDN9+BembbPiOElHd7gaQSKpvPY=) 3: E404430CB0F811E595E0F761C4F9AE02.roa (hash: 0Rx8HN5jmUeLiu9CtnRcyXpipRICUg/GHNM7vipXeYw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E9D1A/C59B02DA1D7011E286F147B508B02CD2/CXb8PSMYbUjGcXc3QIkc9U4xuA4.crl rsync://rpki.apnic.net/member_repository/A91E9D1A/C59B02DA1D7011E286F147B508B02CD2/CXb8PSMYbUjGcXc3QIkc9U4xuA4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CXb8PSMYbUjGcXc3QIkc9U4xuA4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 14:19:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13410 (0x3462) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E9D1A/serialNumber=0976FC3D23186D48C671773740891CF54E31B80E Validity Not Before: Nov 20 14:19:22 2024 GMT Not After : Nov 27 14:19:22 2024 GMT Subject: CN=673defea-21c9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:5c:8a:7c:4d:98:b3:f0:fd:3f:09:23:21:a7: ba:ed:10:47:1c:c5:b8:3d:3d:3d:71:44:36:63:63: 25:9c:55:fd:97:96:08:22:59:53:07:06:09:47:69: f8:aa:70:29:44:92:73:8e:74:79:39:fa:dd:05:14: cc:53:8e:e2:f2:fb:a5:52:1f:f1:c1:d5:68:a7:f8: b9:d4:db:d5:5a:9d:88:2b:be:96:dd:13:08:1e:8b: f5:85:7e:a7:2e:54:8e:00:76:ef:85:bb:d0:4e:a3: de:d3:28:d6:6c:81:65:c7:8c:81:37:58:11:f0:50: b4:52:58:cc:6e:35:83:a6:92:ee:fb:83:65:65:0a: 17:e3:75:9c:1a:99:8a:68:98:b2:35:8c:85:0c:6a: 95:c7:85:84:a9:11:9d:f8:3a:ef:45:03:b0:46:2a: e8:29:57:fa:fb:96:f7:f3:c9:14:16:80:58:00:4a: 59:95:72:82:40:19:70:41:8a:eb:01:10:ab:f7:e1: 25:b2:3e:2f:27:7f:72:6b:fc:48:7a:62:bd:c7:1e: 6f:84:ed:c8:96:62:7f:28:39:0d:b7:b7:8e:14:0e: 62:c4:fe:a3:ba:0f:95:14:63:11:e7:7c:e0:a6:a4: fd:0c:c0:42:e3:2f:b8:f1:47:2e:5d:14:26:e5:95: f0:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:CA:4A:0B:01:13:BD:68:7F:6C:02:7D:04:38:A6:42:38:86:2C:AA X509v3 Authority Key Identifier: keyid:09:76:FC:3D:23:18:6D:48:C6:71:77:37:40:89:1C:F5:4E:31:B8:0E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E9D1A/C59B02DA1D7011E286F147B508B02CD2/CXb8PSMYbUjGcXc3QIkc9U4xuA4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CXb8PSMYbUjGcXc3QIkc9U4xuA4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E9D1A/C59B02DA1D7011E286F147B508B02CD2/CXb8PSMYbUjGcXc3QIkc9U4xuA4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1e:eb:ab:fe:89:c2:85:15:ae:38:e1:a3:d6:17:a6:ce:57:50: 0e:46:20:df:49:77:12:a0:5c:03:b5:49:dd:ab:97:e7:4a:9e: fe:ee:d7:7a:6b:2a:29:cb:44:8f:05:a2:1f:40:6a:4b:09:50: 0f:a6:05:90:d4:89:d4:c7:28:30:4e:98:f9:fb:f8:13:ca:82: d0:d0:29:0f:7f:42:9b:90:e6:c7:9c:bb:ef:cd:3f:84:0e:5a: f5:9f:ab:22:bf:57:96:2f:1b:2e:73:b2:f9:68:f0:63:e1:d3: 67:c1:29:0c:8c:03:e3:00:a8:a2:e7:c7:9f:f6:66:de:9e:bb: 44:1e:31:2b:e5:0d:ed:0e:3b:f0:f2:3d:29:54:77:07:41:c9: 6f:10:c3:5f:06:05:cf:f5:67:ff:2e:51:b6:1a:74:39:9e:ad: 34:85:3a:be:4e:c5:59:de:04:9c:4c:a8:6f:37:50:fd:20:ff: f9:a3:32:32:39:e7:d8:57:9d:35:e6:c4:0e:85:23:74:6e:46: 5d:1f:16:c1:57:35:17:d2:14:5c:e3:af:d5:23:4b:8e:12:93: 02:1e:82:f5:b6:a6:e3:52:f4:ca:9d:60:db:27:92:b7:28:b0: c3:7c:82:7e:d0:78:8b:5e:49:e5:27:d9:38:ff:18:9a:8b:5f: d7:82:75:8f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNGIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTlEMUExMTAvBgNVBAUTKDA5NzZGQzNEMjMxODZENDhDNjcxNzczNzQwODkxQ0Y1 NEUzMUI4MEUwHhcNMjQxMTIwMTQxOTIyWhcNMjQxMTI3MTQxOTIyWjAYMRYwFAYD VQQDEw02NzNkZWZlYS0yMWM5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxFyKfE2Ys/D9PwkjIae67RBHHMW4PT09cUQ2Y2MlnFX9l5YIIllTBwYJR2n4 qnApRJJzjnR5OfrdBRTMU47i8vulUh/xwdVop/i51NvVWp2IK76W3RMIHov1hX6n LlSOAHbvhbvQTqPe0yjWbIFlx4yBN1gR8FC0UljMbjWDppLu+4NlZQoX43WcGpmK aJiyNYyFDGqVx4WEqRGd+DrvRQOwRiroKVf6+5b388kUFoBYAEpZlXKCQBlwQYrr ARCr9+Elsj4vJ39ya/xIemK9xx5vhO3IlmJ/KDkNt7eOFA5ixP6jug+VFGMR53zg pqT9DMBC4y+48UcuXRQm5ZXw/QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGvKSgsB E71of2wCfQQ4pkI4hiyqMB8GA1UdIwQYMBaAFAl2/D0jGG1IxnF3N0CJHPVOMbgO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOUQxQS9DNTlCMDJEQTFE NzAxMUUyODZGMTQ3QjUwOEIwMkNEMi9DWGI4UFNNWWJVakdjWGMzUUlrYzlVNHh1 QTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NYYjhQU01ZYlVqR2NYYzNRSWtjOVU0eHVBNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF OUQxQS9DNTlCMDJEQTFENzAxMUUyODZGMTQ3QjUwOEIwMkNEMi9DWGI4UFNNWWJV akdjWGMzUUlrYzlVNHh1QTQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAe66v+icKFFa444aPWF6bOV1AORiDfSXcSoFwDtUndq5fnSp7+7td6 ayopy0SPBaIfQGpLCVAPpgWQ1InUxygwTpj5+/gTyoLQ0CkPf0KbkObHnLvvzT+E Dlr1n6siv1eWLxsuc7L5aPBj4dNnwSkMjAPjAKii58ef9mbenrtEHjEr5Q3tDjvw 8j0pVHcHQclvEMNfBgXP9Wf/LlG2GnQ5nq00hTq+TsVZ3gScTKhvN1D9IP/5ozIy OefYV5015sQOhSN0bkZdHxbBVzUX0hRc46/VI0uOEpMCHoL1tqbjUvTKnWDbJ5K3 KLDDfIJ+0HiLXknlJ9k4/xiai1/XgnWP -----END CERTIFICATE-----Generated at Wed Nov 20 16:00:19 2024 by rpki-client on console-ams.rpki-client.org