$ rpki-client -vvf rpki.apnic.net/member_repository/A91F4C6B/278AA3E4B51F11EA9FE8BD58C4F9AE02/4mhztF-I0fXYg8F-TM9wokUWIUI.mft File: 4mhztF-I0fXYg8F-TM9wokUWIUI.mft (raw, json) Hash identifier: wuHdFwLTjfNVV8wxQn+yAae9eFFviM93xfEJjnegMqA= Subject key identifier: F5:DF:91:86:22:10:53:DB:45:D3:C5:A7:BF:FE:30:96:CC:5A:73:E2 Authority key identifier: E2:68:73:B4:5F:88:D1:F5:D8:83:C1:7E:4C:CF:70:A2:45:16:21:42 Certificate issuer: /CN=A91F4C6B/serialNumber=E26873B45F88D1F5D883C17E4CCF70A245162142 Certificate serial: 086F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4mhztF-I0fXYg8F-TM9wokUWIUI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F4C6B/278AA3E4B51F11EA9FE8BD58C4F9AE02/4mhztF-I0fXYg8F-TM9wokUWIUI.mft Manifest number: 0861 Signing time: Fri 22 Nov 2024 20:25:20 +0000 Manifest this update: Fri 22 Nov 2024 20:25:19 +0000 Manifest next update: Fri 29 Nov 2024 20:25:19 +0000 Files and hashes: 1: 4mhztF-I0fXYg8F-TM9wokUWIUI.crl (hash: LsaE5PoR2g5YCylWvS3zB+m1FfK/Sc0n2NKqvblSdSY=) 2: E146B994B51F11EA9146DD58C4F9AE02.roa (hash: LQpBHD/6AS6W0OQnBLuqSE1x8/uA+xxXkzDajQvXSSM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F4C6B/278AA3E4B51F11EA9FE8BD58C4F9AE02/4mhztF-I0fXYg8F-TM9wokUWIUI.crl rsync://rpki.apnic.net/member_repository/A91F4C6B/278AA3E4B51F11EA9FE8BD58C4F9AE02/4mhztF-I0fXYg8F-TM9wokUWIUI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4mhztF-I0fXYg8F-TM9wokUWIUI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:25:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2159 (0x86f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F4C6B/serialNumber=E26873B45F88D1F5D883C17E4CCF70A245162142 Validity Not Before: Nov 22 20:25:19 2024 GMT Not After : Nov 29 20:25:19 2024 GMT Subject: CN=6740e8af-72b5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:b3:8c:7c:8d:d0:8a:bf:e6:86:87:91:a8:fa: 92:60:b2:09:45:e5:a4:3c:d3:eb:04:f9:bc:57:b1: ee:da:d6:08:f5:d6:7d:a5:bd:3b:1f:b8:b8:cb:3b: fd:68:94:81:eb:a0:2f:75:da:f4:b7:d5:45:7b:ab: e1:e7:23:7c:3d:ac:0d:73:83:22:59:e0:43:67:be: 9c:6f:3a:4a:5d:74:3a:9a:b8:66:e7:67:a5:b1:5a: 0d:10:36:d8:22:84:26:c9:7f:85:66:39:7b:a6:6b: f3:8a:2e:6d:d2:a7:01:52:e0:3f:e9:16:2a:c5:ea: 0c:70:c8:06:90:2a:d9:a5:02:a4:69:af:07:6e:ef: 59:21:77:38:e5:ca:9b:22:1a:b8:93:cf:f0:70:ee: 57:49:85:7b:e8:16:c8:e4:cf:4d:a0:70:70:4d:5e: c2:02:73:7d:b9:97:4c:5b:89:08:66:47:ab:40:3f: 73:1a:c9:cb:8b:78:f3:be:d1:e1:51:7d:6d:62:d4: df:01:50:cb:2d:a1:0a:fe:4f:d8:08:2d:ff:61:1c: 49:35:ef:89:a3:77:b3:80:41:59:4f:8c:9b:65:de: 12:f1:0b:ef:8c:9d:99:9e:f5:86:a6:a8:1a:a7:37: ca:d8:3d:78:ba:d2:e0:ec:48:35:7a:70:81:75:0f: d7:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:DF:91:86:22:10:53:DB:45:D3:C5:A7:BF:FE:30:96:CC:5A:73:E2 X509v3 Authority Key Identifier: keyid:E2:68:73:B4:5F:88:D1:F5:D8:83:C1:7E:4C:CF:70:A2:45:16:21:42 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F4C6B/278AA3E4B51F11EA9FE8BD58C4F9AE02/4mhztF-I0fXYg8F-TM9wokUWIUI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4mhztF-I0fXYg8F-TM9wokUWIUI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F4C6B/278AA3E4B51F11EA9FE8BD58C4F9AE02/4mhztF-I0fXYg8F-TM9wokUWIUI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d0:92:f4:b3:4a:52:c1:5c:c9:e5:2e:14:a0:6b:56:5a:3c:ea: 14:d1:fa:d8:3a:b6:e6:32:1b:87:fc:2a:eb:64:5b:e9:35:8d: 37:61:ec:12:18:7e:a7:ce:e8:29:d7:a7:05:31:ac:3f:86:cd: f2:bc:68:c9:0c:c8:8b:14:b6:06:27:fe:93:1a:e1:39:1c:15: 4f:bc:e6:e8:4f:18:20:e5:77:bb:24:2e:d1:05:5c:b8:38:14: 58:b4:4b:db:17:03:d3:93:d2:75:12:f4:6e:8a:b6:f2:25:72: 3f:33:60:e2:c6:ac:57:fc:99:04:fc:6e:d4:a2:c1:08:57:44: 5b:92:0d:42:63:e3:aa:90:4b:73:ec:95:85:24:90:75:f0:1f: 81:bc:69:8e:df:6d:a1:7f:dc:ff:5d:6d:46:e6:15:80:c0:10: 5c:bd:d6:60:83:fb:b6:fa:b5:26:3e:1d:5d:c6:0a:b2:ad:e0: 0d:de:50:ee:43:59:03:a4:26:08:e6:d8:aa:90:8a:29:65:f4: 94:e7:4b:fd:23:49:e4:ef:e4:f6:36:1a:95:9a:3c:ae:32:c7: 9b:34:00:cc:a4:71:fa:69:91:5f:d9:d7:bf:d8:7d:c9:bf:be: ba:b0:12:c9:25:d2:f5:be:b0:d0:6f:b4:d4:f1:cf:b6:2f:09: 1e:05:c3:30 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCG8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjRDNkIxMTAvBgNVBAUTKEUyNjg3M0I0NUY4OEQxRjVEODgzQzE3RTRDQ0Y3MEEy NDUxNjIxNDIwHhcNMjQxMTIyMjAyNTE5WhcNMjQxMTI5MjAyNTE5WjAYMRYwFAYD VQQDEw02NzQwZThhZi03MmI1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtrOMfI3Qir/mhoeRqPqSYLIJReWkPNPrBPm8V7Hu2tYI9dZ9pb07H7i4yzv9 aJSB66Avddr0t9VFe6vh5yN8PawNc4MiWeBDZ76cbzpKXXQ6mrhm52elsVoNEDbY IoQmyX+FZjl7pmvzii5t0qcBUuA/6RYqxeoMcMgGkCrZpQKkaa8Hbu9ZIXc45cqb Ihq4k8/wcO5XSYV76BbI5M9NoHBwTV7CAnN9uZdMW4kIZkerQD9zGsnLi3jzvtHh UX1tYtTfAVDLLaEK/k/YCC3/YRxJNe+Jo3ezgEFZT4ybZd4S8QvvjJ2ZnvWGpqga pzfK2D14utLg7Eg1enCBdQ/XlQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPXfkYYi EFPbRdPFp7/+MJbMWnPiMB8GA1UdIwQYMBaAFOJoc7RfiNH12IPBfkzPcKJFFiFC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNEM2Qi8yNzhBQTNFNEI1 MUYxMUVBOUZFOEJENThDNEY5QUUwMi80bWh6dEYtSTBmWFlnOEYtVE05d29rVVdJ VUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRtaHp0Ri1JMGZYWWc4Ri1UTTl3b2tVV0lVSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NEM2Qi8yNzhBQTNFNEI1MUYxMUVBOUZFOEJENThDNEY5QUUwMi80bWh6dEYtSTBm WFlnOEYtVE05d29rVVdJVUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDQkvSzSlLBXMnlLhSga1ZaPOoU0frYOrbmMhuH/CrrZFvpNY03YewS GH6nzugp16cFMaw/hs3yvGjJDMiLFLYGJ/6TGuE5HBVPvOboTxgg5Xe7JC7RBVy4 OBRYtEvbFwPTk9J1EvRuirbyJXI/M2DixqxX/JkE/G7UosEIV0Rbkg1CY+OqkEtz 7JWFJJB18B+BvGmO322hf9z/XW1G5hWAwBBcvdZgg/u2+rUmPh1dxgqyreAN3lDu Q1kDpCYI5tiqkIopZfSU50v9I0nk7+T2NhqVmjyuMsebNADMpHH6aZFf2de/2H3J v766sBLJJdL1vrDQb7TU8c+2LwkeBcMw -----END CERTIFICATE-----Generated at Fri Nov 22 22:14:49 2024 by rpki-client on console-ams.rpki-client.org