$ rpki-client -vvf rpki.apnic.net/member_repository/A91F11EE/E98A46523E8711EFAA24AA43C4F9AE02/-sKy5UFEW1tHxZ2uHeLd6IeauLs.mft File: -sKy5UFEW1tHxZ2uHeLd6IeauLs.mft (raw, json) Hash identifier: LDDZVZ/mxMPcIOIPsQBMhbKOz8vbH7Q6w/XMCePFzfM= Subject key identifier: FB:CD:C5:D6:08:A9:D4:F6:65:6D:B3:D9:A1:7C:C9:4F:3C:BE:87:54 Authority key identifier: FA:C2:B2:E5:41:44:5B:5B:47:C5:9D:AE:1D:E2:DD:E8:87:9A:B8:BB Certificate issuer: /CN=A91F11EE/serialNumber=FAC2B2E541445B5B47C59DAE1DE2DDE8879AB8BB Certificate serial: 54 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-sKy5UFEW1tHxZ2uHeLd6IeauLs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F11EE/E98A46523E8711EFAA24AA43C4F9AE02/-sKy5UFEW1tHxZ2uHeLd6IeauLs.mft Manifest number: 4E Signing time: Sat 23 Nov 2024 05:18:00 +0000 Manifest this update: Sat 23 Nov 2024 05:18:00 +0000 Manifest next update: Sat 30 Nov 2024 05:18:00 +0000 Files and hashes: 1: -sKy5UFEW1tHxZ2uHeLd6IeauLs.crl (hash: bh/ilyRj4cgxSHrUyqhSW5isiFweKxkTMAc3BgV8XEk=) 2: 8B0201183E8911EFB2DCA846C4F9AE02.roa (hash: 8zOiXd3kRlQoiz32Gjahx1aoeuvy3cZGr/aU3t8eEp8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F11EE/E98A46523E8711EFAA24AA43C4F9AE02/-sKy5UFEW1tHxZ2uHeLd6IeauLs.crl rsync://rpki.apnic.net/member_repository/A91F11EE/E98A46523E8711EFAA24AA43C4F9AE02/-sKy5UFEW1tHxZ2uHeLd6IeauLs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-sKy5UFEW1tHxZ2uHeLd6IeauLs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 84 (0x54) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F11EE/serialNumber=FAC2B2E541445B5B47C59DAE1DE2DDE8879AB8BB Validity Not Before: Nov 23 05:18:00 2024 GMT Not After : Nov 30 05:18:00 2024 GMT Subject: CN=67416588-9a1a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:b9:67:89:3a:c1:1d:c9:20:d2:40:79:a7:fc: bd:86:50:be:96:06:ab:5e:43:16:8c:46:f6:0e:6e: e4:fa:90:26:a5:f7:31:57:d2:14:2e:e5:be:71:1e: 68:e0:1d:40:3a:d6:93:d2:f8:95:a6:d2:ef:dc:d3: e2:fa:92:1f:a5:05:af:f5:b0:f7:68:20:38:fd:55: 44:5a:e4:a7:10:54:84:9a:80:91:30:48:f5:98:d3: 37:bd:62:3e:f4:cc:7b:dd:65:db:ef:d6:ed:80:9a: 15:b7:66:6e:b0:1d:4d:34:c8:8b:a9:89:bd:d5:94: 11:73:e0:3f:f5:f7:5b:48:e3:7b:39:67:6c:79:11: 36:53:e3:d9:e9:4d:c6:44:c1:df:76:09:e0:72:b5: 98:6a:f4:bd:56:95:f3:6d:95:51:df:01:73:71:9d: 13:17:6a:26:52:15:39:f8:9f:d3:96:18:33:69:7a: 7e:74:29:ae:e2:bd:f7:99:74:e7:3f:b7:9c:57:9c: 8c:71:96:d8:a7:7d:82:b0:f9:98:0d:cd:ac:ad:ad: 2d:18:cd:58:7d:2b:c9:16:11:cd:68:5c:ac:5e:be: 2f:e6:f7:08:a9:37:46:8d:5b:88:74:d3:a5:30:2b: b9:fa:e7:3f:81:34:8e:8a:11:f6:5f:d7:33:22:52: 78:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:CD:C5:D6:08:A9:D4:F6:65:6D:B3:D9:A1:7C:C9:4F:3C:BE:87:54 X509v3 Authority Key Identifier: keyid:FA:C2:B2:E5:41:44:5B:5B:47:C5:9D:AE:1D:E2:DD:E8:87:9A:B8:BB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F11EE/E98A46523E8711EFAA24AA43C4F9AE02/-sKy5UFEW1tHxZ2uHeLd6IeauLs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-sKy5UFEW1tHxZ2uHeLd6IeauLs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F11EE/E98A46523E8711EFAA24AA43C4F9AE02/-sKy5UFEW1tHxZ2uHeLd6IeauLs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 67:c5:a6:6b:96:20:93:03:d1:aa:b2:b7:4b:81:bb:89:54:a8: f8:ad:6d:7f:a0:64:42:73:c3:21:30:95:0a:9c:ec:4a:46:04: 21:bf:e3:4a:34:a6:35:8f:e8:20:bd:e7:b6:d9:7c:82:07:97: 45:29:ce:2d:9e:94:c1:a1:61:09:b1:da:81:9c:07:72:29:91: de:99:b0:d9:50:fa:89:6d:50:5e:f6:ca:24:ad:9d:66:9a:bd: 10:15:57:b7:30:11:7e:8f:20:59:ed:fd:88:d5:fd:d5:ee:43: 5a:58:72:8e:72:e6:c0:1c:52:2c:f7:58:85:6f:32:57:10:83: 99:3f:39:4d:52:17:93:4a:79:21:f5:bc:da:d1:64:45:21:41: 3c:2d:e6:91:0d:5e:c6:1b:d2:a3:ae:b7:83:b1:52:dd:52:2e: 91:c1:3d:60:d2:0e:42:fe:37:9f:98:ed:81:79:e9:38:a7:72: a8:4c:9d:da:41:a3:92:58:0c:97:2d:b6:83:98:21:82:3c:66: 8d:4b:03:b7:40:4b:b2:44:35:68:5b:d3:c4:04:7d:65:c4:9a: d9:30:01:17:92:ae:8e:44:f1:94:8f:55:3f:16:ce:79:e9:d1: e5:05:38:59:b7:2f:12:09:f1:eb:8d:40:35:77:75:28:2f:f7: 16:cd:54:0d -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBVDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG MTFFRTExMC8GA1UEBRMoRkFDMkIyRTU0MTQ0NUI1QjQ3QzU5REFFMURFMkRERTg4 NzlBQjhCQjAeFw0yNDExMjMwNTE4MDBaFw0yNDExMzAwNTE4MDBaMBgxFjAUBgNV BAMTDTY3NDE2NTg4LTlhMWEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCfuWeJOsEdySDSQHmn/L2GUL6WBqteQxaMRvYObuT6kCal9zFX0hQu5b5xHmjg HUA61pPS+JWm0u/c0+L6kh+lBa/1sPdoIDj9VURa5KcQVISagJEwSPWY0ze9Yj70 zHvdZdvv1u2AmhW3Zm6wHU00yIupib3VlBFz4D/191tI43s5Z2x5ETZT49npTcZE wd92CeBytZhq9L1WlfNtlVHfAXNxnRMXaiZSFTn4n9OWGDNpen50Ka7ivfeZdOc/ t5xXnIxxltinfYKw+ZgNzaytrS0YzVh9K8kWEc1oXKxevi/m9wipN0aNW4h006Uw K7n65z+BNI6KEfZf1zMiUnijAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU+83F1gip 1PZlbbPZoXzJTzy+h1QwHwYDVR0jBBgwFoAU+sKy5UFEW1tHxZ2uHeLd6IeauLsw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUYxMUVFL0U5OEE0NjUyM0U4 NzExRUZBQTI0QUE0M0M0RjlBRTAyLy1zS3k1VUZFVzF0SHhaMnVIZUxkNkllYXVM cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvLXNLeTVVRkVXMXRIeFoydUhlTGQ2SWVhdUxzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUYx MUVFL0U5OEE0NjUyM0U4NzExRUZBQTI0QUE0M0M0RjlBRTAyLy1zS3k1VUZFVzF0 SHhaMnVIZUxkNkllYXVMcy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAGfFpmuWIJMD0aqyt0uBu4lUqPitbX+gZEJzwyEwlQqc7EpGBCG/40o0 pjWP6CC957bZfIIHl0Upzi2elMGhYQmx2oGcB3Ipkd6ZsNlQ+oltUF72yiStnWaa vRAVV7cwEX6PIFnt/YjV/dXuQ1pYco5y5sAcUiz3WIVvMlcQg5k/OU1SF5NKeSH1 vNrRZEUhQTwt5pENXsYb0qOut4OxUt1SLpHBPWDSDkL+N5+Y7YF56TincqhMndpB o5JYDJcttoOYIYI8Zo1LA7dAS7JENWhb08QEfWXEmtkwAReSro5E8ZSPVT8Wznnp 0eUFOFm3LxIJ8euNQDV3dSgv9xbNVA0= -----END CERTIFICATE-----Generated at Sat Nov 23 06:13:26 2024 by rpki-client on console-ams.rpki-client.org