$ rpki-client -vvf rpki.apnic.net/member_repository/A91F0AF0/E37629500FFF11E98815AE22C4F9AE02/2b1w53f4Ya5UOFcUjmM1L9qEwHo.mft File: 2b1w53f4Ya5UOFcUjmM1L9qEwHo.mft (raw, json) Hash identifier: mlMIfuRLXRYr8EMxOPE2tYOL5bdJ16WGlur5h39vu7g= Subject key identifier: 47:7E:DC:93:2D:9F:AB:4F:EE:9F:A0:2A:0F:60:80:61:38:54:A1:58 Authority key identifier: D9:BD:70:E7:77:F8:61:AE:54:38:57:14:8E:63:35:2F:DA:84:C0:7A Certificate issuer: /CN=A91F0AF0/serialNumber=D9BD70E777F861AE543857148E63352FDA84C07A Certificate serial: 0C0A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2b1w53f4Ya5UOFcUjmM1L9qEwHo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F0AF0/E37629500FFF11E98815AE22C4F9AE02/2b1w53f4Ya5UOFcUjmM1L9qEwHo.mft Manifest number: 1CC0 Signing time: Fri 22 Nov 2024 17:19:13 +0000 Manifest this update: Fri 22 Nov 2024 17:19:13 +0000 Manifest next update: Fri 29 Nov 2024 17:19:13 +0000 Files and hashes: 1: 2b1w53f4Ya5UOFcUjmM1L9qEwHo.crl (hash: DbZtJROd1GUZQ8gUnUxHv3ou1CizCFdRdyPWco9ekL0=) 2: CE3C7EF66FEB11EB91967864C4F9AE02.roa (hash: rns6y4xnalGROKJT2q8Fjb3eMxdlbdFZdL9Xn8yjrx4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F0AF0/E37629500FFF11E98815AE22C4F9AE02/2b1w53f4Ya5UOFcUjmM1L9qEwHo.crl rsync://rpki.apnic.net/member_repository/A91F0AF0/E37629500FFF11E98815AE22C4F9AE02/2b1w53f4Ya5UOFcUjmM1L9qEwHo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2b1w53f4Ya5UOFcUjmM1L9qEwHo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 17:19:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3082 (0xc0a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F0AF0/serialNumber=D9BD70E777F861AE543857148E63352FDA84C07A Validity Not Before: Nov 22 17:19:13 2024 GMT Not After : Nov 29 17:19:13 2024 GMT Subject: CN=6740bd11-08a8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:30:56:0a:83:81:2c:f5:65:ee:86:46:ce:e9: c6:ad:d2:5b:f1:3e:8b:49:7e:18:bf:18:21:47:7a: c6:6f:b1:bb:90:43:c2:36:98:55:69:ef:4f:4e:0a: 46:07:50:0a:d1:69:62:a3:a2:07:3b:02:13:ee:9d: 01:ba:4f:56:75:53:8e:f9:7d:5d:15:3a:4e:4b:c8: d6:80:bb:0a:6c:34:66:37:49:5f:33:d2:81:c8:37: e5:9d:9e:d8:e5:c2:ce:22:ee:63:95:d4:a2:c1:11: 00:a5:4f:ba:5a:1e:83:0c:f3:dc:7a:e3:99:f3:c2: 3b:fd:fa:4f:2a:9c:81:14:5e:af:01:da:84:49:a4: a6:91:f7:64:82:02:bf:ab:33:b2:7f:b1:91:36:51: 4f:76:bf:89:da:61:e1:e2:c9:49:25:96:28:71:f9: 30:ce:51:40:8b:a0:52:1b:06:f2:4f:e5:03:12:2e: c4:02:7d:75:f3:00:93:48:16:d9:52:44:98:bf:e3: 89:63:b7:fa:89:55:d6:8f:09:31:fe:67:6f:ed:7f: b1:d7:96:27:7f:42:c0:24:68:d7:e8:89:19:c0:fb: a3:95:7a:0e:16:30:44:91:e1:46:ff:07:36:cb:7c: 0e:5f:fb:cc:87:74:ec:bc:f5:00:86:bb:33:d7:f6: dc:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:7E:DC:93:2D:9F:AB:4F:EE:9F:A0:2A:0F:60:80:61:38:54:A1:58 X509v3 Authority Key Identifier: keyid:D9:BD:70:E7:77:F8:61:AE:54:38:57:14:8E:63:35:2F:DA:84:C0:7A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F0AF0/E37629500FFF11E98815AE22C4F9AE02/2b1w53f4Ya5UOFcUjmM1L9qEwHo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2b1w53f4Ya5UOFcUjmM1L9qEwHo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F0AF0/E37629500FFF11E98815AE22C4F9AE02/2b1w53f4Ya5UOFcUjmM1L9qEwHo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 98:ce:98:61:9b:42:f0:20:c2:03:91:68:04:b2:22:9a:22:fb: d1:1d:ff:56:ab:af:22:09:2c:74:40:bb:c5:30:4e:eb:d3:a9: f2:c1:76:35:3a:be:9e:a9:02:bd:1a:a4:31:5b:24:ca:31:d6: 15:6f:ec:9e:09:a4:b7:f3:15:d4:fa:9d:dc:4e:b9:f4:e2:4d: 61:97:9a:41:aa:ef:f3:35:28:06:a6:1b:a0:c6:d5:0c:17:08: 80:1f:8d:82:37:b5:5c:cc:1f:fe:e5:48:4d:a7:5b:f6:ef:f7: ac:81:d2:bf:2c:b3:95:55:67:db:f6:b8:45:f9:ab:c7:5e:b3: 66:59:10:59:83:5c:0f:67:80:22:8d:30:ca:1a:94:6b:19:88: 26:9a:13:a3:d5:45:9d:38:d5:20:5e:45:86:e7:bf:31:3f:e7: 44:55:33:d1:db:5f:66:fd:dc:3a:58:57:60:9e:fd:5b:b5:18: 7c:c8:01:63:ff:73:5d:8e:eb:0b:2a:63:78:a0:3a:26:9b:07: c5:9b:09:7b:d0:4c:47:98:cb:a0:a9:39:e0:7f:17:92:f4:93: 64:6e:c7:67:49:da:29:dc:9f:93:54:53:e9:77:11:c0:94:09: d2:f2:21:dc:9f:2d:0e:1c:c6:30:cf:44:03:7b:ca:69:1b:bb: af:ad:75:21 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDAowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjBBRjAxMTAvBgNVBAUTKEQ5QkQ3MEU3NzdGODYxQUU1NDM4NTcxNDhFNjMzNTJG REE4NEMwN0EwHhcNMjQxMTIyMTcxOTEzWhcNMjQxMTI5MTcxOTEzWjAYMRYwFAYD VQQDEw02NzQwYmQxMS0wOGE4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAkzBWCoOBLPVl7oZGzunGrdJb8T6LSX4YvxghR3rGb7G7kEPCNphVae9PTgpG B1AK0Wlio6IHOwIT7p0Buk9WdVOO+X1dFTpOS8jWgLsKbDRmN0lfM9KByDflnZ7Y 5cLOIu5jldSiwREApU+6Wh6DDPPceuOZ88I7/fpPKpyBFF6vAdqESaSmkfdkggK/ qzOyf7GRNlFPdr+J2mHh4slJJZYocfkwzlFAi6BSGwbyT+UDEi7EAn118wCTSBbZ UkSYv+OJY7f6iVXWjwkx/mdv7X+x15Ynf0LAJGjX6IkZwPujlXoOFjBEkeFG/wc2 y3wOX/vMh3TsvPUAhrsz1/bcAwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEd+3JMt n6tP7p+gKg9ggGE4VKFYMB8GA1UdIwQYMBaAFNm9cOd3+GGuVDhXFI5jNS/ahMB6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMEFGMC9FMzc2Mjk1MDBG RkYxMUU5ODgxNUFFMjJDNEY5QUUwMi8yYjF3NTNmNFlhNVVPRmNVam1NMUw5cUV3 SG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJiMXc1M2Y0WWE1VU9GY1VqbU0xTDlxRXdIby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MEFGMC9FMzc2Mjk1MDBGRkYxMUU5ODgxNUFFMjJDNEY5QUUwMi8yYjF3NTNmNFlh NVVPRmNVam1NMUw5cUV3SG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCYzphhm0LwIMIDkWgEsiKaIvvRHf9Wq68iCSx0QLvFME7r06nywXY1 Or6eqQK9GqQxWyTKMdYVb+yeCaS38xXU+p3cTrn04k1hl5pBqu/zNSgGphugxtUM FwiAH42CN7VczB/+5UhNp1v27/esgdK/LLOVVWfb9rhF+avHXrNmWRBZg1wPZ4Ai jTDKGpRrGYgmmhOj1UWdONUgXkWG578xP+dEVTPR219m/dw6WFdgnv1btRh8yAFj /3NdjusLKmN4oDommwfFmwl70ExHmMugqTngfxeS9JNkbsdnSdop3J+TVFPpdxHA lAnS8iHcny0OHMYwz0QDe8ppG7uvrXUh -----END CERTIFICATE-----Generated at Fri Nov 22 19:50:22 2024 by rpki-client on console-ams.rpki-client.org