$ rpki-client -vvf rpki.apnic.net/member_repository/A91F8981/272B4C706C7F11EF914D7D57C4F9AE02/MhTiYKePfRZ36DATfBBlcwAxz2Y.mft File: MhTiYKePfRZ36DATfBBlcwAxz2Y.mft (raw, json) Hash identifier: t6dMar1J5m78k37WnvmhG+inNXLdK9mJb5LZaEaHR6U= Subject key identifier: 47:7B:07:AA:32:9C:51:95:FD:93:57:86:38:98:1B:0C:99:C5:FF:9F Authority key identifier: 32:14:E2:60:A7:8F:7D:16:77:E8:30:13:7C:10:65:73:00:31:CF:66 Certificate issuer: /CN=A91F8981/serialNumber=3214E260A78F7D1677E830137C1065730031CF66 Certificate serial: 2A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MhTiYKePfRZ36DATfBBlcwAxz2Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F8981/272B4C706C7F11EF914D7D57C4F9AE02/MhTiYKePfRZ36DATfBBlcwAxz2Y.mft Manifest number: 29 Signing time: Sat 23 Nov 2024 05:41:14 +0000 Manifest this update: Sat 23 Nov 2024 05:41:14 +0000 Manifest next update: Sat 30 Nov 2024 05:41:14 +0000 Files and hashes: 1: MhTiYKePfRZ36DATfBBlcwAxz2Y.crl (hash: 7PRwT/YRd0J6DPdYXPuTlC7GgkC+hsGqZqnxQtZglwI=) 2: D80D96066C7F11EF92105459C4F9AE02.roa (hash: 7pF3uHzaE+Wewnte+bG2KwxN3eFFLWjZ6eq6MYtYcWc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F8981/272B4C706C7F11EF914D7D57C4F9AE02/MhTiYKePfRZ36DATfBBlcwAxz2Y.crl rsync://rpki.apnic.net/member_repository/A91F8981/272B4C706C7F11EF914D7D57C4F9AE02/MhTiYKePfRZ36DATfBBlcwAxz2Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MhTiYKePfRZ36DATfBBlcwAxz2Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 42 (0x2a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F8981/serialNumber=3214E260A78F7D1677E830137C1065730031CF66 Validity Not Before: Nov 23 05:41:14 2024 GMT Not After : Nov 30 05:41:14 2024 GMT Subject: CN=67416afa-7b4f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:3c:b6:92:fe:3e:7a:07:1d:e8:89:b5:5a:a1: 19:3b:79:f7:a5:1a:0f:dc:2f:51:6e:92:60:2a:96: 3a:ca:61:11:a2:5b:83:b4:54:d5:0b:21:e4:bf:bf: b2:99:cb:5d:10:1e:6f:fd:78:91:73:e4:dd:f8:bb: ca:b6:1b:c9:69:2c:f4:5f:80:72:9a:f9:2e:d5:3b: 6f:94:20:9f:63:18:93:b6:7b:8f:c4:21:61:7e:7d: fa:0b:b5:48:0a:6a:db:e8:15:60:ef:72:62:5c:ce: eb:63:d9:1e:1f:14:c9:78:12:d2:87:03:d1:98:fe: 6e:5a:0f:15:32:7f:e9:c8:7f:67:26:9f:1c:b9:19: e8:58:67:b8:91:38:89:71:8f:96:d2:be:df:ea:d9: 85:41:61:85:02:ed:66:f4:5c:ad:ef:6c:eb:45:69: 98:c3:e8:90:da:f4:9d:3f:fe:67:6d:81:d2:0e:cb: b7:2a:13:34:92:02:36:b3:2d:06:f6:5c:d1:7e:dd: 98:56:95:24:5a:2e:b4:4b:2b:ed:12:1c:c4:c7:70: fd:00:35:15:50:04:79:f1:28:c9:b3:4e:5c:6a:83: e1:96:fd:b1:d1:7a:25:91:8b:cc:f2:df:b4:ff:d8: d6:9a:f2:2c:1a:48:3d:2f:96:aa:60:15:26:51:02: 82:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:7B:07:AA:32:9C:51:95:FD:93:57:86:38:98:1B:0C:99:C5:FF:9F X509v3 Authority Key Identifier: keyid:32:14:E2:60:A7:8F:7D:16:77:E8:30:13:7C:10:65:73:00:31:CF:66 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F8981/272B4C706C7F11EF914D7D57C4F9AE02/MhTiYKePfRZ36DATfBBlcwAxz2Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MhTiYKePfRZ36DATfBBlcwAxz2Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F8981/272B4C706C7F11EF914D7D57C4F9AE02/MhTiYKePfRZ36DATfBBlcwAxz2Y.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 27:cc:73:86:57:7c:9c:a2:ab:82:af:8c:b5:96:d8:d5:3d:48: 68:e2:76:01:4d:4d:ab:ef:29:86:57:4a:46:6e:b2:09:85:f8: 4c:f8:f9:96:da:89:af:2f:23:11:e4:3d:e4:d7:28:85:19:87: 34:94:cc:79:89:44:bb:a2:e8:64:5e:fb:f3:14:4f:a4:6d:aa: 93:d7:30:73:31:1c:31:29:21:e6:a5:95:ec:63:10:ed:cb:f6: 51:8f:51:99:da:40:d9:87:ae:cb:d2:b5:22:09:bf:e1:f6:69: 8f:9c:a2:bf:ae:29:ef:bf:fe:93:6a:d9:aa:66:c1:62:ca:4d: 59:48:cc:aa:a4:a9:ce:e0:a1:12:ce:f1:47:41:2a:6c:6d:c1: ec:63:08:ec:c7:cc:cc:c5:07:c6:a4:be:b4:5c:e5:cc:1f:23: 1f:c5:fa:8e:70:3e:03:25:a4:57:15:17:73:d3:96:4d:13:57: f7:cf:d0:bf:45:56:aa:35:47:39:f7:08:de:76:05:ed:0f:f5: 61:7b:38:85:00:70:49:f4:a3:d4:57:a7:2f:44:cf:15:d6:4b: ce:a4:da:4a:d3:2f:d5:c6:30:3b:c2:13:7c:ee:48:ae:a8:84: b0:58:7e:bc:45:26:c1:98:82:de:3e:ea:f7:70:38:e4:4b:e0: e6:da:1e:94 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBKjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG ODk4MTExMC8GA1UEBRMoMzIxNEUyNjBBNzhGN0QxNjc3RTgzMDEzN0MxMDY1NzMw MDMxQ0Y2NjAeFw0yNDExMjMwNTQxMTRaFw0yNDExMzAwNTQxMTRaMBgxFjAUBgNV BAMTDTY3NDE2YWZhLTdiNGYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCwPLaS/j56Bx3oibVaoRk7efelGg/cL1FukmAqljrKYRGiW4O0VNULIeS/v7KZ y10QHm/9eJFz5N34u8q2G8lpLPRfgHKa+S7VO2+UIJ9jGJO2e4/EIWF+ffoLtUgK atvoFWDvcmJczutj2R4fFMl4EtKHA9GY/m5aDxUyf+nIf2cmnxy5GehYZ7iROIlx j5bSvt/q2YVBYYUC7Wb0XK3vbOtFaZjD6JDa9J0//mdtgdIOy7cqEzSSAjazLQb2 XNF+3ZhWlSRaLrRLK+0SHMTHcP0ANRVQBHnxKMmzTlxqg+GW/bHReiWRi8zy37T/ 2Naa8iwaSD0vlqpgFSZRAoLlAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUR3sHqjKc UZX9k1eGOJgbDJnF/58wHwYDVR0jBBgwFoAUMhTiYKePfRZ36DATfBBlcwAxz2Yw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUY4OTgxLzI3MkI0QzcwNkM3 RjExRUY5MTREN0Q1N0M0RjlBRTAyL01oVGlZS2VQZlJaMzZEQVRmQkJsY3dBeHoy WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvTWhUaVlLZVBmUlozNkRBVGZCQmxjd0F4ejJZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUY4 OTgxLzI3MkI0QzcwNkM3RjExRUY5MTREN0Q1N0M0RjlBRTAyL01oVGlZS2VQZlJa MzZEQVRmQkJsY3dBeHoyWS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBACfMc4ZXfJyiq4KvjLWW2NU9SGjidgFNTavvKYZXSkZusgmF+Ez4+Zba ia8vIxHkPeTXKIUZhzSUzHmJRLui6GRe+/MUT6RtqpPXMHMxHDEpIeallexjEO3L 9lGPUZnaQNmHrsvStSIJv+H2aY+cor+uKe+//pNq2apmwWLKTVlIzKqkqc7goRLO 8UdBKmxtwexjCOzHzMzFB8akvrRc5cwfIx/F+o5wPgMlpFcVF3PTlk0TV/fP0L9F Vqo1Rzn3CN52Be0P9WF7OIUAcEn0o9RXpy9EzxXWS86k2krTL9XGMDvCE3zuSK6o hLBYfrxFJsGYgt4+6vdwOORL4ObaHpQ= -----END CERTIFICATE-----Generated at Sat Nov 23 07:45:06 2024 by rpki-client on console-ams.rpki-client.org