$ rpki-client -vvf rpki.apnic.net/member_repository/A91EBF27/F1D3E326ABE711EBB85D5147C4F9AE02/0DacIB93rzjycCn7IkbEOF0njKI.mft File: 0DacIB93rzjycCn7IkbEOF0njKI.mft (raw, json) Hash identifier: lc5l4mvwhWnOSPiKT+9O3u6MqsU4c4NmUuVhWfxeSHw= Subject key identifier: 4A:7E:F8:5A:E4:44:F5:0E:EA:42:25:70:94:9A:9E:5D:35:BF:47:AD Authority key identifier: D0:36:9C:20:1F:77:AF:38:F2:70:29:FB:22:46:C4:38:5D:27:8C:A2 Certificate issuer: /CN=A91EBF27/serialNumber=D0369C201F77AF38F27029FB2246C4385D278CA2 Certificate serial: 0592 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0DacIB93rzjycCn7IkbEOF0njKI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EBF27/F1D3E326ABE711EBB85D5147C4F9AE02/0DacIB93rzjycCn7IkbEOF0njKI.mft Manifest number: 0592 Signing time: Fri 22 Nov 2024 22:45:09 +0000 Manifest this update: Fri 22 Nov 2024 22:45:08 +0000 Manifest next update: Fri 29 Nov 2024 22:45:08 +0000 Files and hashes: 1: 0DacIB93rzjycCn7IkbEOF0njKI.crl (hash: mAxNtArGmC6njHgbTguY+GRIorlxGp/1us7vNIch93o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EBF27/F1D3E326ABE711EBB85D5147C4F9AE02/0DacIB93rzjycCn7IkbEOF0njKI.crl rsync://rpki.apnic.net/member_repository/A91EBF27/F1D3E326ABE711EBB85D5147C4F9AE02/0DacIB93rzjycCn7IkbEOF0njKI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0DacIB93rzjycCn7IkbEOF0njKI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1426 (0x592) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EBF27/serialNumber=D0369C201F77AF38F27029FB2246C4385D278CA2 Validity Not Before: Nov 22 22:45:08 2024 GMT Not After : Nov 29 22:45:08 2024 GMT Subject: CN=67410975-46c6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:b5:96:30:9b:05:25:81:8f:56:d2:9f:4a:1f: 62:bc:9d:27:4d:32:bf:db:9a:4f:02:d5:08:a8:95: 89:2d:32:f8:aa:9e:f7:46:c4:ab:89:a4:3f:ea:4b: 6c:17:0f:72:bb:3c:c9:98:3f:3f:29:46:49:8e:f4: 6d:f6:89:d1:71:a6:71:28:e1:f6:db:24:60:aa:6d: 39:2a:46:88:2d:c2:88:6c:cc:7c:f4:11:64:e0:45: 02:11:31:81:1e:60:e9:89:39:2a:6d:86:3d:71:21: e1:ba:56:b3:c6:36:dd:d7:b7:04:16:1a:31:74:14: f1:4f:e7:ed:05:ba:01:e8:05:ea:ad:45:ef:0b:0f: f3:ae:47:20:19:25:e3:35:80:da:8f:6a:20:b1:48: 6e:9c:29:30:1d:28:be:75:f9:c2:cf:8a:eb:95:3b: df:72:29:2e:16:c5:b5:01:b6:d0:83:85:4b:30:a6: 10:a3:71:15:36:cc:f3:bb:59:e1:53:7d:a2:84:57: d4:b9:ec:2b:ce:7f:2a:dc:62:85:20:c6:b4:cc:1c: de:eb:e4:43:0c:7b:a5:31:b0:9f:ee:ac:1f:62:aa: d8:7b:ed:80:88:fe:e3:22:d7:d3:03:bf:33:19:e1: de:ab:0d:33:8c:6b:4c:99:76:9a:74:83:4e:2c:27: 74:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:7E:F8:5A:E4:44:F5:0E:EA:42:25:70:94:9A:9E:5D:35:BF:47:AD X509v3 Authority Key Identifier: keyid:D0:36:9C:20:1F:77:AF:38:F2:70:29:FB:22:46:C4:38:5D:27:8C:A2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EBF27/F1D3E326ABE711EBB85D5147C4F9AE02/0DacIB93rzjycCn7IkbEOF0njKI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0DacIB93rzjycCn7IkbEOF0njKI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EBF27/F1D3E326ABE711EBB85D5147C4F9AE02/0DacIB93rzjycCn7IkbEOF0njKI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b0:17:5f:1a:1f:38:8e:25:d4:07:d2:d4:34:9d:6f:64:d6:86: ff:ce:7b:98:af:13:d3:03:27:85:b8:ce:c4:ea:c3:07:2b:6f: 9e:ab:dd:32:3f:44:35:65:ef:1a:42:9c:7c:1d:4b:8e:8a:e8: ad:fc:92:4a:92:48:d5:01:bb:15:e9:31:a1:82:79:87:ce:c3: b0:2c:1f:46:4b:46:39:04:c4:8f:de:ea:55:e7:d2:24:17:13: 3c:27:c4:7a:b2:a1:53:17:12:69:c4:41:27:9d:5d:aa:2e:08: 1a:34:e6:31:f9:4b:a4:22:0a:fd:5a:09:63:7c:da:59:6d:0e: 89:8c:43:19:20:5d:4d:c9:10:bb:ee:41:ee:21:f9:89:f7:05: 50:16:13:27:ed:06:74:c8:27:e0:e1:16:24:44:06:29:b9:10: 03:26:0d:0c:42:24:d3:d5:a5:2e:24:ba:a2:60:6e:fa:d6:65: da:41:f8:74:85:08:e7:5c:3e:05:bf:75:2a:1e:e7:8a:e3:0f: e9:bf:64:69:0f:a3:7b:11:1f:ef:b1:d5:ac:22:d4:9a:91:50: af:4a:09:59:fc:5d:8d:82:af:98:e1:8b:c3:2a:f9:1a:44:ac: ae:2e:14:b3:a9:c0:ee:40:b9:95:74:e6:8d:d3:f9:b8:00:92: 2d:76:1e:a5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBZIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUJGMjcxMTAvBgNVBAUTKEQwMzY5QzIwMUY3N0FGMzhGMjcwMjlGQjIyNDZDNDM4 NUQyNzhDQTIwHhcNMjQxMTIyMjI0NTA4WhcNMjQxMTI5MjI0NTA4WjAYMRYwFAYD VQQDEw02NzQxMDk3NS00NmM2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwLWWMJsFJYGPVtKfSh9ivJ0nTTK/25pPAtUIqJWJLTL4qp73RsSriaQ/6kts Fw9yuzzJmD8/KUZJjvRt9onRcaZxKOH22yRgqm05KkaILcKIbMx89BFk4EUCETGB HmDpiTkqbYY9cSHhulazxjbd17cEFhoxdBTxT+ftBboB6AXqrUXvCw/zrkcgGSXj NYDaj2ogsUhunCkwHSi+dfnCz4rrlTvfcikuFsW1AbbQg4VLMKYQo3EVNszzu1nh U32ihFfUuewrzn8q3GKFIMa0zBze6+RDDHulMbCf7qwfYqrYe+2AiP7jItfTA78z GeHeqw0zjGtMmXaadINOLCd0iwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEp++Frk RPUO6kIlcJSanl01v0etMB8GA1UdIwQYMBaAFNA2nCAfd6848nAp+yJGxDhdJ4yi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQkYyNy9GMUQzRTMyNkFC RTcxMUVCQjg1RDUxNDdDNEY5QUUwMi8wRGFjSUI5M3J6anljQ243SWtiRU9GMG5q S0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBEYWNJQjkzcnpqeWNDbjdJa2JFT0YwbmpLSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QkYyNy9GMUQzRTMyNkFCRTcxMUVCQjg1RDUxNDdDNEY5QUUwMi8wRGFjSUI5M3J6 anljQ243SWtiRU9GMG5qS0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCwF18aHziOJdQH0tQ0nW9k1ob/znuYrxPTAyeFuM7E6sMHK2+eq90y P0Q1Ze8aQpx8HUuOiuit/JJKkkjVAbsV6TGhgnmHzsOwLB9GS0Y5BMSP3upV59Ik FxM8J8R6sqFTFxJpxEEnnV2qLggaNOYx+UukIgr9WgljfNpZbQ6JjEMZIF1NyRC7 7kHuIfmJ9wVQFhMn7QZ0yCfg4RYkRAYpuRADJg0MQiTT1aUuJLqiYG761mXaQfh0 hQjnXD4Fv3UqHueK4w/pv2RpD6N7ER/vsdWsItSakVCvSglZ/F2Ngq+Y4YvDKvka RKyuLhSzqcDuQLmVdOaN0/m4AJItdh6l -----END CERTIFICATE-----Generated at Sat Nov 23 00:08:53 2024 by rpki-client on console-ams.rpki-client.org