$ rpki-client -vvf rpki.apnic.net/member_repository/A91F65E4/793973204D0011E8A026E14AC4F9AE02/h8o5SM4cy-GiBMX4DbQwQQmoMXw.mft File: h8o5SM4cy-GiBMX4DbQwQQmoMXw.mft (raw, json) Hash identifier: hE+NY4hs4QNDE1gPkP/X733yXrCrVsSo9nm6GLX3JAE= Subject key identifier: DD:6B:31:22:45:45:05:5A:1C:17:A4:D8:D7:B2:AB:21:2F:C4:E2:D7 Authority key identifier: 87:CA:39:48:CE:1C:CB:E1:A2:04:C5:F8:0D:B4:30:41:09:A8:31:7C Certificate issuer: /CN=A91F65E4/serialNumber=87CA3948CE1CCBE1A204C5F80DB4304109A8317C Certificate serial: 14B3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h8o5SM4cy-GiBMX4DbQwQQmoMXw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F65E4/793973204D0011E8A026E14AC4F9AE02/h8o5SM4cy-GiBMX4DbQwQQmoMXw.mft Manifest number: 14A4 Signing time: Sun 24 Nov 2024 16:43:49 +0000 Manifest this update: Sun 24 Nov 2024 16:43:48 +0000 Manifest next update: Sun 01 Dec 2024 16:43:48 +0000 Files and hashes: 1: h8o5SM4cy-GiBMX4DbQwQQmoMXw.crl (hash: 81vZe5gnHavppUCNKjqb3Y6mgvrCfNIdmyv0+PwUlmE=) 2: 4A7E3036340811ED9D3D7620C4F9AE02.roa (hash: tzptSWrCu7leujBpAxl0r7s1OXoHlY5rMMlXgr5Raxw=) 3: F0326FAE4D0011E8A24EE324C4F9AE02.roa (hash: CYK+uI2bxtOr291BnZawHgoP/6miR+B6epnu6Vsoz0Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F65E4/793973204D0011E8A026E14AC4F9AE02/h8o5SM4cy-GiBMX4DbQwQQmoMXw.crl rsync://rpki.apnic.net/member_repository/A91F65E4/793973204D0011E8A026E14AC4F9AE02/h8o5SM4cy-GiBMX4DbQwQQmoMXw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h8o5SM4cy-GiBMX4DbQwQQmoMXw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Dec 2024 16:43:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5299 (0x14b3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F65E4/serialNumber=87CA3948CE1CCBE1A204C5F80DB4304109A8317C Validity Not Before: Nov 24 16:43:48 2024 GMT Not After : Dec 1 16:43:48 2024 GMT Subject: CN=674357c5-9424 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:6e:40:ef:b6:ff:d8:b3:1b:6a:fa:d6:96:4b: 1d:5a:67:a5:26:d2:94:19:ea:76:06:a8:d5:b3:b6: 45:a1:ac:f0:7b:27:bf:36:5a:bc:51:cb:a5:b1:ed: d2:af:66:aa:0b:64:50:f1:79:cd:7c:91:97:ee:6d: a1:83:fb:24:cd:4c:0c:cf:c6:e7:33:bd:11:69:73: 6c:f4:c0:5e:62:a1:ae:e3:3f:5a:a4:16:47:f0:cf: 9d:dd:78:f0:4a:cb:db:03:55:dc:cb:6f:30:40:17: 3d:d1:63:1a:d6:e3:ee:e0:9f:d3:04:0a:82:41:f7: 9b:c7:f1:ae:bf:f9:e6:fa:98:d8:30:dc:9d:30:ab: 93:1d:c7:c2:8d:9e:d2:1f:3f:8b:18:bd:ef:d5:9a: 92:bf:d2:a3:8e:ca:40:64:39:89:30:c4:1d:d1:fa: 21:ca:21:a3:c9:0a:14:d9:49:0b:eb:f2:f4:d6:a7: ff:22:c2:ce:d3:83:67:66:5d:56:7a:00:76:5e:b1: 79:10:34:30:ce:25:3a:d7:66:07:5c:66:5f:30:89: 6e:66:91:9d:11:9f:5f:7f:2f:13:02:72:4d:8f:7c: 28:4f:93:b7:33:ce:f4:f7:ca:ae:97:e2:fd:f1:b8: 68:d7:35:db:ad:8c:cc:06:0e:15:06:c0:83:32:88: 7a:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:6B:31:22:45:45:05:5A:1C:17:A4:D8:D7:B2:AB:21:2F:C4:E2:D7 X509v3 Authority Key Identifier: keyid:87:CA:39:48:CE:1C:CB:E1:A2:04:C5:F8:0D:B4:30:41:09:A8:31:7C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F65E4/793973204D0011E8A026E14AC4F9AE02/h8o5SM4cy-GiBMX4DbQwQQmoMXw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h8o5SM4cy-GiBMX4DbQwQQmoMXw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F65E4/793973204D0011E8A026E14AC4F9AE02/h8o5SM4cy-GiBMX4DbQwQQmoMXw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 00:6d:9c:3c:6c:28:28:5d:76:6e:d9:da:7d:ae:8e:55:69:7c: 99:3e:98:16:8b:cd:69:4f:a4:70:82:41:f3:93:02:70:7c:a9: 5e:47:7c:b7:8f:7f:96:61:87:56:d2:0b:68:07:4f:05:48:81: ee:fa:4e:7f:10:1a:cb:3e:22:95:17:27:a0:d7:e9:bd:68:6e: fb:f5:ed:2c:1c:2c:f6:f3:46:0c:7a:fc:71:70:35:7d:22:57: fa:1d:db:ba:9a:b4:aa:80:d8:53:11:c5:1d:47:59:ba:47:1c: a7:ab:9b:4e:7c:a7:ba:97:11:61:37:d1:1b:92:c5:5c:b7:94: 59:22:74:ac:65:e4:02:d3:44:bc:5e:90:2a:fa:08:b8:bd:66: 52:9a:c8:b5:06:9d:98:ac:db:4b:17:3c:cf:f9:1f:39:0f:74: b7:f6:26:78:98:d1:0e:96:2e:62:2b:6f:54:a7:2d:5f:81:df: 78:01:79:bb:8b:26:0e:42:88:f1:22:76:65:39:a9:9c:f9:b2: 4d:7b:83:01:f6:be:47:17:c0:bb:27:87:71:3b:be:41:56:cf: ec:73:8b:36:14:93:4a:4c:8b:ef:b7:a4:ca:05:12:27:b6:05: 05:0c:be:2c:86:de:43:3e:81:85:35:81:fe:0f:8a:ee:d4:70: 00:64:2e:74 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFLMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjY1RTQxMTAvBgNVBAUTKDg3Q0EzOTQ4Q0UxQ0NCRTFBMjA0QzVGODBEQjQzMDQx MDlBODMxN0MwHhcNMjQxMTI0MTY0MzQ4WhcNMjQxMjAxMTY0MzQ4WjAYMRYwFAYD VQQDEw02NzQzNTdjNS05NDI0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3m5A77b/2LMbavrWlksdWmelJtKUGep2BqjVs7ZFoazweye/Nlq8Uculse3S r2aqC2RQ8XnNfJGX7m2hg/skzUwMz8bnM70RaXNs9MBeYqGu4z9apBZH8M+d3Xjw SsvbA1Xcy28wQBc90WMa1uPu4J/TBAqCQfebx/Guv/nm+pjYMNydMKuTHcfCjZ7S Hz+LGL3v1ZqSv9KjjspAZDmJMMQd0fohyiGjyQoU2UkL6/L01qf/IsLO04NnZl1W egB2XrF5EDQwziU612YHXGZfMIluZpGdEZ9ffy8TAnJNj3woT5O3M87098qul+L9 8bho1zXbrYzMBg4VBsCDMoh6CQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFN1rMSJF RQVaHBek2NeyqyEvxOLXMB8GA1UdIwQYMBaAFIfKOUjOHMvhogTF+A20MEEJqDF8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNjVFNC83OTM5NzMyMDRE MDAxMUU4QTAyNkUxNEFDNEY5QUUwMi9oOG81U000Y3ktR2lCTVg0RGJRd1FRbW9N WHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2g4bzVTTTRjeS1HaUJNWDREYlF3UVFtb01Ydy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NjVFNC83OTM5NzMyMDREMDAxMUU4QTAyNkUxNEFDNEY5QUUwMi9oOG81U000Y3kt R2lCTVg0RGJRd1FRbW9NWHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAAbZw8bCgoXXZu2dp9ro5VaXyZPpgWi81pT6RwgkHzkwJwfKleR3y3 j3+WYYdW0gtoB08FSIHu+k5/EBrLPiKVFyeg1+m9aG779e0sHCz280YMevxxcDV9 Ilf6Hdu6mrSqgNhTEcUdR1m6Rxynq5tOfKe6lxFhN9EbksVct5RZInSsZeQC00S8 XpAq+gi4vWZSmsi1Bp2YrNtLFzzP+R85D3S39iZ4mNEOli5iK29Upy1fgd94AXm7 iyYOQojxInZlOamc+bJNe4MB9r5HF8C7J4dxO75BVs/sc4s2FJNKTIvvt6TKBRIn tgUFDL4sht5DPoGFNYH+D4ru1HAAZC50 -----END CERTIFICATE-----Generated at Sun Nov 24 18:24:59 2024 by rpki-client on console-ams.rpki-client.org