$ rpki-client -vvf rpki.apnic.net/member_repository/A91EA449/401790FC073C11EF8D1DB056C4F9AE02/b2WgySJgsa2iMYeym6w76trAVmE.mft File: b2WgySJgsa2iMYeym6w76trAVmE.mft (raw, json) Hash identifier: unu76SePiw5Ii4GN+SjgwcHl9D8+uaern9r6QZhvG2k= Subject key identifier: 55:F1:29:9B:F7:32:90:35:83:69:CB:CD:5B:C8:CC:64:C3:3E:FB:C8 Authority key identifier: 6F:65:A0:C9:22:60:B1:AD:A2:31:87:B2:9B:AC:3B:EA:DA:C0:56:61 Certificate issuer: /CN=A91EA449/serialNumber=6F65A0C92260B1ADA23187B29BAC3BEADAC05661 Certificate serial: 70 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b2WgySJgsa2iMYeym6w76trAVmE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EA449/401790FC073C11EF8D1DB056C4F9AE02/b2WgySJgsa2iMYeym6w76trAVmE.mft Manifest number: 6E Signing time: Sat 23 Nov 2024 04:54:36 +0000 Manifest this update: Sat 23 Nov 2024 04:54:35 +0000 Manifest next update: Sat 30 Nov 2024 04:54:35 +0000 Files and hashes: 1: b2WgySJgsa2iMYeym6w76trAVmE.crl (hash: 8SsJsen531fANjtKOY/N6NXHDBphyUxmSDlsV7f9N+s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EA449/401790FC073C11EF8D1DB056C4F9AE02/b2WgySJgsa2iMYeym6w76trAVmE.crl rsync://rpki.apnic.net/member_repository/A91EA449/401790FC073C11EF8D1DB056C4F9AE02/b2WgySJgsa2iMYeym6w76trAVmE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b2WgySJgsa2iMYeym6w76trAVmE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 112 (0x70) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EA449/serialNumber=6F65A0C92260B1ADA23187B29BAC3BEADAC05661 Validity Not Before: Nov 23 04:54:35 2024 GMT Not After : Nov 30 04:54:35 2024 GMT Subject: CN=6741600c-e1f5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:16:2f:2d:62:ef:3f:8f:89:15:60:ff:e4:a7: ca:69:58:90:7b:18:2d:8b:23:23:ed:99:79:c3:a6: 1d:d1:bd:57:1e:a5:9a:33:28:ef:96:8e:cc:c3:9d: 52:15:ce:70:22:a8:62:73:7f:2d:f4:4d:fd:f1:05: 81:ed:5a:ac:7e:e8:a5:78:7d:bc:ff:3e:73:5c:43: 63:c6:21:f5:34:24:80:95:27:c9:6b:2c:b1:0a:4d: 10:aa:7d:a1:ff:97:dd:9c:38:c3:61:25:fe:7d:47: f1:ca:4d:a2:89:a4:70:32:45:cb:a4:33:7b:72:e3: ee:a2:bd:5b:fd:11:1f:b3:6a:eb:78:23:ff:88:e4: c4:f8:dc:11:80:94:6e:ba:cd:b6:52:35:c1:d5:e8: 3f:41:cb:de:75:61:2a:69:bc:55:be:b3:7a:0b:b5: 2d:45:ec:f1:10:47:73:3c:db:a6:e0:14:e9:39:4c: 67:e5:e4:96:94:97:de:64:a0:22:27:67:25:57:ef: 88:c6:1f:a7:f2:d3:90:41:bd:b5:b0:9d:1a:6b:29: 14:1a:91:bc:a5:b9:cf:2b:bf:15:35:d9:78:2b:a2: 74:9b:86:63:51:75:be:41:a9:4f:7d:10:c5:be:49: da:33:02:fe:ac:66:cc:66:df:84:bd:dc:89:7d:e0: 65:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:F1:29:9B:F7:32:90:35:83:69:CB:CD:5B:C8:CC:64:C3:3E:FB:C8 X509v3 Authority Key Identifier: keyid:6F:65:A0:C9:22:60:B1:AD:A2:31:87:B2:9B:AC:3B:EA:DA:C0:56:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EA449/401790FC073C11EF8D1DB056C4F9AE02/b2WgySJgsa2iMYeym6w76trAVmE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b2WgySJgsa2iMYeym6w76trAVmE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EA449/401790FC073C11EF8D1DB056C4F9AE02/b2WgySJgsa2iMYeym6w76trAVmE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b8:2b:57:73:40:22:5b:4a:82:d5:7a:00:49:a0:b8:34:b9:19: 97:64:93:e1:d6:b9:7c:a4:16:20:4b:9b:9d:80:0a:28:a4:3e: 24:83:c3:e5:1b:69:37:63:05:b3:5e:f0:fd:ba:94:8c:f8:11: 93:ef:97:cd:36:d7:30:07:5d:08:51:31:86:e8:04:44:33:81: 74:f4:35:f2:48:66:83:a4:41:6d:d8:78:82:53:9a:4a:4a:a6: 99:79:8c:ad:2f:c4:a6:7a:c9:bb:8b:43:48:74:c8:b0:1b:45: 07:19:eb:8e:aa:75:6c:8c:63:27:29:5c:e7:fd:55:85:0e:83: ee:cb:9b:64:1f:b2:cb:00:ff:25:58:5e:9a:d8:9c:44:8a:53: 2e:a2:80:c5:2a:18:6f:31:12:91:c1:6c:96:81:39:66:82:0e: e1:ac:15:71:d9:3d:13:2a:33:a9:40:31:25:50:9f:7f:63:41: ac:7c:18:15:9a:59:97:2c:0c:ba:3a:94:c3:42:15:b8:c2:49: 0c:f1:1a:f8:44:74:cf:61:2a:2d:9a:fa:d2:51:a5:20:88:06: d8:b3:99:d0:0e:48:7a:93:63:66:99:5e:67:7c:11:5d:46:d2: 16:05:9f:e7:4b:88:a5:e7:e1:99:23:a3:e3:e2:45:54:6a:d8: c6:a7:a6:8f -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBcDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF QTQ0OTExMC8GA1UEBRMoNkY2NUEwQzkyMjYwQjFBREEyMzE4N0IyOUJBQzNCRUFE QUMwNTY2MTAeFw0yNDExMjMwNDU0MzVaFw0yNDExMzAwNDU0MzVaMBgxFjAUBgNV BAMTDTY3NDE2MDBjLWUxZjUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC4Fi8tYu8/j4kVYP/kp8ppWJB7GC2LIyPtmXnDph3RvVcepZozKO+WjszDnVIV znAiqGJzfy30Tf3xBYHtWqx+6KV4fbz/PnNcQ2PGIfU0JICVJ8lrLLEKTRCqfaH/ l92cOMNhJf59R/HKTaKJpHAyRcukM3ty4+6ivVv9ER+zaut4I/+I5MT43BGAlG66 zbZSNcHV6D9By951YSppvFW+s3oLtS1F7PEQR3M826bgFOk5TGfl5JaUl95koCIn ZyVX74jGH6fy05BBvbWwnRprKRQakbyluc8rvxU12XgronSbhmNRdb5BqU99EMW+ SdozAv6sZsxm34S93Il94GX/AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUVfEpm/cy kDWDacvNW8jMZMM++8gwHwYDVR0jBBgwFoAUb2WgySJgsa2iMYeym6w76trAVmEw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUVBNDQ5LzQwMTc5MEZDMDcz QzExRUY4RDFEQjA1NkM0RjlBRTAyL2IyV2d5U0pnc2EyaU1ZZXltNnc3NnRyQVZt RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvYjJXZ3lTSmdzYTJpTVlleW02dzc2dHJBVm1FLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUVB NDQ5LzQwMTc5MEZDMDczQzExRUY4RDFEQjA1NkM0RjlBRTAyL2IyV2d5U0pnc2Ey aU1ZZXltNnc3NnRyQVZtRS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBALgrV3NAIltKgtV6AEmguDS5GZdkk+HWuXykFiBLm52ACiikPiSDw+Ub aTdjBbNe8P26lIz4EZPvl8021zAHXQhRMYboBEQzgXT0NfJIZoOkQW3YeIJTmkpK ppl5jK0vxKZ6ybuLQ0h0yLAbRQcZ646qdWyMYycpXOf9VYUOg+7Lm2QfsssA/yVY XprYnESKUy6igMUqGG8xEpHBbJaBOWaCDuGsFXHZPRMqM6lAMSVQn39jQax8GBWa WZcsDLo6lMNCFbjCSQzxGvhEdM9hKi2a+tJRpSCIBtizmdAOSHqTY2aZXmd8EV1G 0hYFn+dLiKXn4Zkjo+PiRVRq2Manpo8= -----END CERTIFICATE-----Generated at Sat Nov 23 06:13:26 2024 by rpki-client on console-ams.rpki-client.org