$ rpki-client -vvf rpki.apnic.net/member_repository/A91EC7F2/48EFD17CF1A711E8AA614F51C4F9AE02/g71HreMCJZx1jHTIMLKebzpXc9s.mft File: g71HreMCJZx1jHTIMLKebzpXc9s.mft (raw, json) Hash identifier: T746cKCiqEXMCjVWIy9JPSGjJWok18IRMvu3IVuqG/4= Subject key identifier: D8:5D:37:A6:F6:63:DA:B7:E5:D1:51:5F:C6:88:19:61:BE:48:00:D7 Authority key identifier: 83:BD:47:AD:E3:02:25:9C:75:8C:74:C8:30:B2:9E:6F:3A:57:73:DB Certificate issuer: /CN=A91EC7F2/serialNumber=83BD47ADE302259C758C74C830B29E6F3A5773DB Certificate serial: 1173 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g71HreMCJZx1jHTIMLKebzpXc9s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EC7F2/48EFD17CF1A711E8AA614F51C4F9AE02/g71HreMCJZx1jHTIMLKebzpXc9s.mft Manifest number: 115D Signing time: Wed 20 Nov 2024 17:11:28 +0000 Manifest this update: Wed 20 Nov 2024 17:11:28 +0000 Manifest next update: Wed 27 Nov 2024 17:11:28 +0000 Files and hashes: 1: g71HreMCJZx1jHTIMLKebzpXc9s.crl (hash: hiJ6u/Ft7B7MdKMTqrfWGJlYK+SLOPU0l04IQbKLAvs=) 2: 9D003F28621711E9B8C69E15C4F9AE02.roa (hash: v7RjiERJ+UaXKwbiabeVpDMvLEWGvJ12a2mTucr6CA4=) 3: 09F041C675FB11EAB470A130C4F9AE02.roa (hash: TVhSAgEvsJfuZaOVoxgSaRmJu5V64CD24chcx4Ly8ag=) 4: 9C7048DC621711E9B8C69E15C4F9AE02.roa (hash: ScKShaSanQZL0Fzy7Q3PEdRjE3XVz96AGuDEeuPLE9c=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EC7F2/48EFD17CF1A711E8AA614F51C4F9AE02/g71HreMCJZx1jHTIMLKebzpXc9s.crl rsync://rpki.apnic.net/member_repository/A91EC7F2/48EFD17CF1A711E8AA614F51C4F9AE02/g71HreMCJZx1jHTIMLKebzpXc9s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g71HreMCJZx1jHTIMLKebzpXc9s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 17:11:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4467 (0x1173) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EC7F2/serialNumber=83BD47ADE302259C758C74C830B29E6F3A5773DB Validity Not Before: Nov 20 17:11:28 2024 GMT Not After : Nov 27 17:11:28 2024 GMT Subject: CN=673e1840-3808 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:f7:de:43:2b:fb:e7:7c:79:93:70:b0:13:9a: 7e:ca:ae:87:6b:2e:c1:ce:af:a9:67:5a:b4:be:12: 5b:b6:ba:c5:62:6f:66:4e:88:13:15:2f:fc:e6:27: 31:20:9d:ae:6e:b0:27:90:33:0d:3e:0b:a3:77:49: 19:e7:2c:be:1b:22:3f:7d:b4:88:b5:2c:28:52:4d: 85:1f:26:6e:07:6c:1e:cb:57:fc:8e:eb:f1:10:a4: 09:c9:be:db:2a:15:eb:84:ef:45:6d:56:86:5a:64: 69:81:ce:29:4b:1f:8f:81:b0:29:74:f5:5b:ad:0f: 04:df:85:49:78:c7:0a:d9:ea:86:52:70:f7:87:7c: f9:ee:9b:02:c8:43:b6:76:72:8b:4e:24:c8:08:44: 4c:18:38:1c:e5:56:5c:50:15:f7:82:bf:e3:7d:8c: 8f:3d:4f:77:b0:4b:f1:b3:0f:82:63:75:06:07:d9: 8b:50:fd:25:d7:58:7e:62:d3:a7:22:2f:c4:4b:43: 79:d6:23:47:2a:14:89:54:0f:5a:e3:fc:38:79:08: 73:74:58:ec:e0:d0:52:15:1c:6e:b7:d2:81:fa:74: 28:7b:fc:a6:7b:eb:a0:f8:2f:c1:55:93:2f:ea:ef: 92:14:2a:a1:69:46:0e:00:a2:f9:bb:01:65:a6:73: 5b:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:5D:37:A6:F6:63:DA:B7:E5:D1:51:5F:C6:88:19:61:BE:48:00:D7 X509v3 Authority Key Identifier: keyid:83:BD:47:AD:E3:02:25:9C:75:8C:74:C8:30:B2:9E:6F:3A:57:73:DB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EC7F2/48EFD17CF1A711E8AA614F51C4F9AE02/g71HreMCJZx1jHTIMLKebzpXc9s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g71HreMCJZx1jHTIMLKebzpXc9s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EC7F2/48EFD17CF1A711E8AA614F51C4F9AE02/g71HreMCJZx1jHTIMLKebzpXc9s.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 83:36:f4:e7:4c:cd:8a:80:c8:2e:b7:7b:d8:96:1a:c5:3b:47: c5:e2:41:99:f2:3c:36:d5:9c:ce:38:d0:79:4f:c9:4a:9b:f0: 96:35:d6:0e:82:51:e4:04:b2:b3:af:c3:d7:c7:8b:b1:91:2f: e2:5c:00:13:02:b2:b4:94:61:ed:77:74:51:79:cd:96:9c:8b: b1:3c:b2:10:db:92:3f:05:c0:25:4b:56:46:7f:2d:0e:e2:1d: 81:13:fc:a1:4d:35:fc:83:46:ab:8c:14:cf:c8:c9:5c:53:32: ee:a5:de:58:e6:cc:56:f6:4e:26:2b:6c:f8:02:5a:63:7c:8c: e1:df:7c:50:06:00:9d:ee:0e:54:30:0e:95:ea:2c:2a:1b:e0: 80:c9:38:72:37:57:26:49:56:1f:6e:90:5e:e9:17:2c:0b:59: 35:81:72:90:bb:ce:03:cf:95:9e:67:7c:04:8e:0b:a1:e8:41: c2:4a:1a:65:5b:61:e8:cc:9d:6a:cd:c6:63:fd:d1:b1:c8:e9: 30:62:a0:b1:ad:22:ac:5a:75:56:cf:e7:65:cd:ff:45:76:56: 99:7f:ae:6d:9b:c8:1b:81:79:e7:22:82:62:a1:05:85:29:7b: b3:e7:1c:b2:2f:81:9e:f7:77:90:ff:84:4d:1e:72:ac:ee:c0: 81:2f:1d:85 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEXMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUM3RjIxMTAvBgNVBAUTKDgzQkQ0N0FERTMwMjI1OUM3NThDNzRDODMwQjI5RTZG M0E1NzczREIwHhcNMjQxMTIwMTcxMTI4WhcNMjQxMTI3MTcxMTI4WjAYMRYwFAYD VQQDEw02NzNlMTg0MC0zODA4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2vfeQyv753x5k3CwE5p+yq6Hay7Bzq+pZ1q0vhJbtrrFYm9mTogTFS/85icx IJ2ubrAnkDMNPgujd0kZ5yy+GyI/fbSItSwoUk2FHyZuB2wey1f8juvxEKQJyb7b KhXrhO9FbVaGWmRpgc4pSx+PgbApdPVbrQ8E34VJeMcK2eqGUnD3h3z57psCyEO2 dnKLTiTICERMGDgc5VZcUBX3gr/jfYyPPU93sEvxsw+CY3UGB9mLUP0l11h+YtOn Ii/ES0N51iNHKhSJVA9a4/w4eQhzdFjs4NBSFRxut9KB+nQoe/yme+ug+C/BVZMv 6u+SFCqhaUYOAKL5uwFlpnNbrQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNhdN6b2 Y9q35dFRX8aIGWG+SADXMB8GA1UdIwQYMBaAFIO9R63jAiWcdYx0yDCynm86V3Pb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQzdGMi80OEVGRDE3Q0Yx QTcxMUU4QUE2MTRGNTFDNEY5QUUwMi9nNzFIcmVNQ0paeDFqSFRJTUxLZWJ6cFhj OXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2c3MUhyZU1DSlp4MWpIVElNTEtlYnpwWGM5cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QzdGMi80OEVGRDE3Q0YxQTcxMUU4QUE2MTRGNTFDNEY5QUUwMi9nNzFIcmVNQ0pa eDFqSFRJTUxLZWJ6cFhjOXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCDNvTnTM2KgMgut3vYlhrFO0fF4kGZ8jw21ZzOONB5T8lKm/CWNdYO glHkBLKzr8PXx4uxkS/iXAATArK0lGHtd3RRec2WnIuxPLIQ25I/BcAlS1ZGfy0O 4h2BE/yhTTX8g0arjBTPyMlcUzLupd5Y5sxW9k4mK2z4AlpjfIzh33xQBgCd7g5U MA6V6iwqG+CAyThyN1cmSVYfbpBe6RcsC1k1gXKQu84Dz5WeZ3wEjguh6EHCShpl W2HozJ1qzcZj/dGxyOkwYqCxrSKsWnVWz+dlzf9FdlaZf65tm8gbgXnnIoJioQWF KXuz5xyyL4Ge93eQ/4RNHnKs7sCBLx2F -----END CERTIFICATE-----Generated at Wed Nov 20 19:06:10 2024 by rpki-client on console-ams.rpki-client.org