$ rpki-client -vvf rpki.apnic.net/member_repository/A91EAF4B/84858F6A471911EA90863072C4F9AE02/rXHewTibFKASABB2mR9Zq-LKseY.mft File: rXHewTibFKASABB2mR9Zq-LKseY.mft (raw, json) Hash identifier: bUN5C1BIah0eIg8XAV9MHo0P9es+NOjMEZ184RUNSTE= Subject key identifier: F1:2F:08:CB:B8:95:2C:C1:DE:F1:81:29:07:FF:B5:18:35:DD:4F:7E Authority key identifier: AD:71:DE:C1:38:9B:14:A0:12:00:10:76:99:1F:59:AB:E2:CA:B1:E6 Certificate issuer: /CN=A91EAF4B/serialNumber=AD71DEC1389B14A012001076991F59ABE2CAB1E6 Certificate serial: AA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rXHewTibFKASABB2mR9Zq-LKseY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EAF4B/84858F6A471911EA90863072C4F9AE02/rXHewTibFKASABB2mR9Zq-LKseY.mft Manifest number: 0B21 Signing time: Fri 22 Nov 2024 19:20:33 +0000 Manifest this update: Fri 22 Nov 2024 19:20:32 +0000 Manifest next update: Fri 29 Nov 2024 19:20:32 +0000 Files and hashes: 1: rXHewTibFKASABB2mR9Zq-LKseY.crl (hash: negjn7Gm7kfKmlketwKE4rlds/UxXDXmC8VHN/QsfWA=) 2: 58EC5A1A8F3E11EF9B5DE37CC4F9AE02.roa (hash: 5alAYtTxlTPz7H9FR7DrZV0C+EIeEapBMkQZSRp1vSw=) 3: FF5213E8A81D11EFA74FFD31C4F9AE02.roa (hash: BjCzz0QqHwxbtkMEhbZLyg/cdwLlVBOLsCIkoIImbyk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EAF4B/84858F6A471911EA90863072C4F9AE02/rXHewTibFKASABB2mR9Zq-LKseY.crl rsync://rpki.apnic.net/member_repository/A91EAF4B/84858F6A471911EA90863072C4F9AE02/rXHewTibFKASABB2mR9Zq-LKseY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rXHewTibFKASABB2mR9Zq-LKseY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 19:20:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 170 (0xaa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EAF4B/serialNumber=AD71DEC1389B14A012001076991F59ABE2CAB1E6 Validity Not Before: Nov 22 19:20:32 2024 GMT Not After : Nov 29 19:20:32 2024 GMT Subject: CN=6740d981-e751 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:ba:a9:b2:9e:0b:b1:ce:57:43:17:65:f1:5b: bb:b0:d6:cd:c7:55:bf:bb:f0:f3:de:5a:ca:4d:98: da:2f:4a:12:7c:d7:ef:6b:e7:93:22:f2:28:c5:6f: 72:59:0b:26:af:7e:e1:bb:0e:44:a1:1c:b7:4f:44: 09:44:85:d0:7b:39:28:19:52:69:33:b6:6a:db:0e: e8:96:6b:c1:82:e6:25:d8:84:c5:27:80:7d:3b:02: bd:89:5b:4c:17:a7:00:f1:79:2e:3c:4b:1c:bf:b2: 2d:e4:a9:8f:6f:7c:6e:c9:1d:73:24:c6:8b:83:51: ec:25:ed:59:21:af:b2:01:42:3c:81:c7:d2:f8:2b: 63:42:35:da:7e:60:ac:80:ba:f1:35:03:6b:db:f4: 3d:d2:44:44:ad:dd:00:55:c4:15:56:80:5e:fb:ac: 1d:b3:c7:ee:07:13:94:72:da:f7:6c:37:55:c9:82: 25:8f:34:3e:f3:a5:aa:ae:78:6f:26:17:64:f5:1d: 4f:4d:01:da:67:0d:f8:f3:be:f8:9b:23:c3:73:66: af:95:71:e5:80:74:d9:66:7a:94:97:8c:38:c3:57: f5:1b:b2:de:dd:9f:57:8c:3d:82:8f:66:3d:9e:91: d1:db:c7:c7:5a:49:cc:92:23:e1:a0:60:40:80:73: d4:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:2F:08:CB:B8:95:2C:C1:DE:F1:81:29:07:FF:B5:18:35:DD:4F:7E X509v3 Authority Key Identifier: keyid:AD:71:DE:C1:38:9B:14:A0:12:00:10:76:99:1F:59:AB:E2:CA:B1:E6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EAF4B/84858F6A471911EA90863072C4F9AE02/rXHewTibFKASABB2mR9Zq-LKseY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rXHewTibFKASABB2mR9Zq-LKseY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EAF4B/84858F6A471911EA90863072C4F9AE02/rXHewTibFKASABB2mR9Zq-LKseY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 08:55:ec:9d:be:1a:09:6e:d5:ce:b1:79:81:f8:7b:61:a4:67: 8f:65:58:15:dc:7d:b8:af:67:0b:26:c4:4e:57:6e:6c:9c:ab: f0:05:81:fe:a4:8e:27:3a:6f:27:3e:85:a6:73:33:e1:78:e5: 79:cf:40:fe:84:6a:74:80:fe:76:0d:18:5a:fa:ce:b1:5b:7e: be:99:4d:b3:81:f9:7e:3c:8c:ad:85:cc:7f:69:e4:ce:21:bd: e0:63:f8:9d:64:8e:fe:8a:ca:05:b8:59:bd:19:cb:4b:ba:39: 08:8c:fb:2d:ce:52:c6:07:2e:92:0b:c6:be:d2:f5:b8:05:18: 89:51:9d:b8:4b:28:9a:38:2a:b3:e4:db:0d:42:29:48:18:6e: c5:ae:09:9d:21:7d:56:fe:48:2e:7c:61:bd:85:0b:0a:4b:ca: 34:53:d2:bb:61:bc:6e:6a:85:49:1a:63:27:d5:0a:4f:4f:6e: 51:00:f0:39:90:84:0c:34:9d:1e:a6:d5:54:64:b7:c4:e4:10: de:fa:4d:28:e3:67:dc:81:f0:35:22:e9:1d:f2:2d:d0:ed:0f: 33:ad:97:a7:85:3f:92:a8:57:e1:5e:f2:55:37:c6:65:e7:37: 96:d9:46:ed:c8:ed:a9:2e:61:90:23:c1:39:68:3f:5c:4a:1f: b0:57:1a:24 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUFGNEIxMTAvBgNVBAUTKEFENzFERUMxMzg5QjE0QTAxMjAwMTA3Njk5MUY1OUFC RTJDQUIxRTYwHhcNMjQxMTIyMTkyMDMyWhcNMjQxMTI5MTkyMDMyWjAYMRYwFAYD VQQDEw02NzQwZDk4MS1lNzUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6bqpsp4Lsc5XQxdl8Vu7sNbNx1W/u/Dz3lrKTZjaL0oSfNfva+eTIvIoxW9y WQsmr37huw5EoRy3T0QJRIXQezkoGVJpM7Zq2w7olmvBguYl2ITFJ4B9OwK9iVtM F6cA8XkuPEscv7It5KmPb3xuyR1zJMaLg1HsJe1ZIa+yAUI8gcfS+CtjQjXafmCs gLrxNQNr2/Q90kRErd0AVcQVVoBe+6wds8fuBxOUctr3bDdVyYIljzQ+86Wqrnhv Jhdk9R1PTQHaZw348774myPDc2avlXHlgHTZZnqUl4w4w1f1G7Le3Z9XjD2Cj2Y9 npHR28fHWknMkiPhoGBAgHPUAQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPEvCMu4 lSzB3vGBKQf/tRg13U9+MB8GA1UdIwQYMBaAFK1x3sE4mxSgEgAQdpkfWaviyrHm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQUY0Qi84NDg1OEY2QTQ3 MTkxMUVBOTA4NjMwNzJDNEY5QUUwMi9yWEhld1RpYkZLQVNBQkIybVI5WnEtTEtz ZVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JYSGV3VGliRktBU0FCQjJtUjlacS1MS3NlWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QUY0Qi84NDg1OEY2QTQ3MTkxMUVBOTA4NjMwNzJDNEY5QUUwMi9yWEhld1RpYkZL QVNBQkIybVI5WnEtTEtzZVkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAIVeydvhoJbtXOsXmB+HthpGePZVgV3H24r2cLJsROV25snKvwBYH+ pI4nOm8nPoWmczPheOV5z0D+hGp0gP52DRha+s6xW36+mU2zgfl+PIythcx/aeTO Ib3gY/idZI7+isoFuFm9GctLujkIjPstzlLGBy6SC8a+0vW4BRiJUZ24SyiaOCqz 5NsNQilIGG7FrgmdIX1W/kgufGG9hQsKS8o0U9K7YbxuaoVJGmMn1QpPT25RAPA5 kIQMNJ0eptVUZLfE5BDe+k0o42fcgfA1Iukd8i3Q7Q8zrZenhT+SqFfhXvJVN8Zl 5zeW2UbtyO2pLmGQI8E5aD9cSh+wVxok -----END CERTIFICATE-----Generated at Fri Nov 22 22:14:49 2024 by rpki-client on console-ams.rpki-client.org