$ rpki-client -vvf rpki.apnic.net/member_repository/A91EE735/E8E667CA94BE11EA984FAD58C4F9AE02/rXOtuRQhOGLtjhTXcGn0dNg8yPU.mft File: rXOtuRQhOGLtjhTXcGn0dNg8yPU.mft (raw, json) Hash identifier: HvNracfNyX1s64kb+kz4YqYhE/+TJTPXoNI1D0n+FgY= Subject key identifier: 3E:F1:8E:02:07:98:51:07:EB:A2:F2:5E:1B:80:BC:C6:81:7B:93:F0 Authority key identifier: AD:73:AD:B9:14:21:38:62:ED:8E:14:D7:70:69:F4:74:D8:3C:C8:F5 Certificate issuer: /CN=A91EE735/serialNumber=AD73ADB914213862ED8E14D77069F474D83CC8F5 Certificate serial: 0911 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rXOtuRQhOGLtjhTXcGn0dNg8yPU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EE735/E8E667CA94BE11EA984FAD58C4F9AE02/rXOtuRQhOGLtjhTXcGn0dNg8yPU.mft Manifest number: 0904 Signing time: Fri 22 Nov 2024 20:07:56 +0000 Manifest this update: Fri 22 Nov 2024 20:07:56 +0000 Manifest next update: Fri 29 Nov 2024 20:07:56 +0000 Files and hashes: 1: rXOtuRQhOGLtjhTXcGn0dNg8yPU.crl (hash: FVwrPAyTZQ9mLTRJ9qxxnflD+r/x2Tm9aqqvvrYZoFE=) 2: 34E183809E5F11EB97709628C4F9AE02.roa (hash: foE9s6/AQfQ6WPOMFTFBf1eqXxlDCuQ9XLb/49LNi4o=) 3: E7F141609E9911EBB4117632C4F9AE02.roa (hash: bPG+JKz2c8qz67QLcdFAZ1OKHiVMuC03ojwfXNaj3R8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EE735/E8E667CA94BE11EA984FAD58C4F9AE02/rXOtuRQhOGLtjhTXcGn0dNg8yPU.crl rsync://rpki.apnic.net/member_repository/A91EE735/E8E667CA94BE11EA984FAD58C4F9AE02/rXOtuRQhOGLtjhTXcGn0dNg8yPU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rXOtuRQhOGLtjhTXcGn0dNg8yPU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:07:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2321 (0x911) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EE735/serialNumber=AD73ADB914213862ED8E14D77069F474D83CC8F5 Validity Not Before: Nov 22 20:07:56 2024 GMT Not After : Nov 29 20:07:56 2024 GMT Subject: CN=6740e49c-8d0d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:ed:3d:81:6a:a6:0b:62:d9:ba:8d:fd:ed:15: b3:0e:04:a2:1c:cf:dd:48:2f:3a:aa:49:cd:a1:16: 07:62:24:a2:b1:fb:f5:98:ab:e1:7e:99:16:13:53: 14:e9:e1:3a:9e:7f:3f:7c:47:e6:2e:9c:3f:c5:06: 87:c0:fb:93:f2:73:1c:03:3c:02:4f:d0:2e:d5:45: 20:e3:ab:6a:88:2a:3e:dd:45:97:dc:d9:05:21:d2: 05:dc:0c:89:cb:9c:71:2c:3a:4b:42:53:a3:8b:e4: 10:e6:ad:b7:80:73:ea:3f:2f:0b:9f:68:f8:b4:8e: 3b:24:12:9b:33:c7:d5:3a:91:f8:b9:92:39:ee:e7: 20:8d:f3:ee:11:ad:65:44:8c:7f:e8:a8:eb:d9:b6: 6b:ac:77:a6:53:91:0f:88:ae:ae:40:87:e3:83:33: 0c:c0:ed:6c:3d:8e:0a:dd:cd:65:8b:e7:7d:73:0a: 27:21:c8:f1:8f:75:28:40:0f:6c:0d:85:d0:8a:c3: 81:0c:61:78:fc:2f:57:fc:1e:88:b2:23:e4:53:57: 1c:b5:08:84:d5:13:96:c4:49:dd:97:7f:7f:51:f6: 2c:58:ef:68:a9:c4:b9:3e:2e:bc:1f:5c:b4:f2:a7: 42:c0:cb:25:8c:55:02:ac:38:64:5f:bd:a3:0c:7d: 42:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:F1:8E:02:07:98:51:07:EB:A2:F2:5E:1B:80:BC:C6:81:7B:93:F0 X509v3 Authority Key Identifier: keyid:AD:73:AD:B9:14:21:38:62:ED:8E:14:D7:70:69:F4:74:D8:3C:C8:F5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EE735/E8E667CA94BE11EA984FAD58C4F9AE02/rXOtuRQhOGLtjhTXcGn0dNg8yPU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rXOtuRQhOGLtjhTXcGn0dNg8yPU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EE735/E8E667CA94BE11EA984FAD58C4F9AE02/rXOtuRQhOGLtjhTXcGn0dNg8yPU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 98:3b:13:0a:1f:cb:cb:75:72:94:1f:e0:5e:ea:cb:55:9a:77: 73:19:14:34:21:30:b8:a5:d8:0b:80:97:96:87:31:12:5a:42: a6:9e:b3:72:5e:66:c9:ab:16:c8:6c:a8:37:ef:52:6f:fc:b9: 9e:3a:4c:52:49:98:da:fd:f0:bd:d4:c0:d4:85:31:6a:ba:c8: c3:7e:5b:c8:be:5c:ce:10:a1:0a:71:ba:23:e2:68:b1:7f:11: 64:8c:21:4b:5b:f1:5e:ad:1f:48:41:bc:38:40:fa:c4:81:53: c8:5a:44:63:1f:90:9e:ef:94:1c:df:e9:08:62:ca:73:41:70: 86:31:00:fe:78:4e:66:6c:e9:41:45:2a:3c:0e:fc:18:cc:2f: cd:4c:fd:43:2c:5f:38:61:40:16:4b:df:0b:0b:02:15:12:01: c0:e2:69:e8:96:d7:64:f6:55:4d:2b:15:b6:a8:22:0c:57:1c: 07:d9:ab:7b:22:46:18:ce:ec:51:23:af:ce:2a:e4:6d:01:6c: 27:b5:89:95:43:63:97:5c:9c:ab:c1:c6:55:17:fd:f7:fd:01: 72:bc:cc:23:f2:93:bd:21:63:33:fd:9b:df:3e:e5:09:a1:c2: 1a:b2:4a:21:94:ec:b0:23:b9:2d:4e:d6:1f:04:89:56:07:34: 6e:cb:b0:1a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCREwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUU3MzUxMTAvBgNVBAUTKEFENzNBREI5MTQyMTM4NjJFRDhFMTRENzcwNjlGNDc0 RDgzQ0M4RjUwHhcNMjQxMTIyMjAwNzU2WhcNMjQxMTI5MjAwNzU2WjAYMRYwFAYD VQQDEw02NzQwZTQ5Yy04ZDBkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqe09gWqmC2LZuo397RWzDgSiHM/dSC86qknNoRYHYiSisfv1mKvhfpkWE1MU 6eE6nn8/fEfmLpw/xQaHwPuT8nMcAzwCT9Au1UUg46tqiCo+3UWX3NkFIdIF3AyJ y5xxLDpLQlOji+QQ5q23gHPqPy8Ln2j4tI47JBKbM8fVOpH4uZI57ucgjfPuEa1l RIx/6Kjr2bZrrHemU5EPiK6uQIfjgzMMwO1sPY4K3c1li+d9cwonIcjxj3UoQA9s DYXQisOBDGF4/C9X/B6IsiPkU1cctQiE1ROWxEndl39/UfYsWO9oqcS5Pi68H1y0 8qdCwMsljFUCrDhkX72jDH1CXwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFD7xjgIH mFEH66LyXhuAvMaBe5PwMB8GA1UdIwQYMBaAFK1zrbkUIThi7Y4U13Bp9HTYPMj1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRTczNS9FOEU2NjdDQTk0 QkUxMUVBOTg0RkFENThDNEY5QUUwMi9yWE90dVJRaE9HTHRqaFRYY0duMGROZzh5 UFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JYT3R1UlFoT0dMdGpoVFhjR24wZE5nOHlQVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF RTczNS9FOEU2NjdDQTk0QkUxMUVBOTg0RkFENThDNEY5QUUwMi9yWE90dVJRaE9H THRqaFRYY0duMGROZzh5UFUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCYOxMKH8vLdXKUH+Be6stVmndzGRQ0ITC4pdgLgJeWhzESWkKmnrNy XmbJqxbIbKg371Jv/LmeOkxSSZja/fC91MDUhTFqusjDflvIvlzOEKEKcboj4mix fxFkjCFLW/FerR9IQbw4QPrEgVPIWkRjH5Ce75Qc3+kIYspzQXCGMQD+eE5mbOlB RSo8DvwYzC/NTP1DLF84YUAWS98LCwIVEgHA4mnoltdk9lVNKxW2qCIMVxwH2at7 IkYYzuxRI6/OKuRtAWwntYmVQ2OXXJyrwcZVF/33/QFyvMwj8pO9IWMz/ZvfPuUJ ocIaskohlOywI7ktTtYfBIlWBzRuy7Aa -----END CERTIFICATE-----Generated at Fri Nov 22 22:14:49 2024 by rpki-client on console-ams.rpki-client.org