$ rpki-client -vvf rpki.apnic.net/member_repository/A91F89D9/EABFEBF26F5C11EF835A7B66C4F9AE02/F11CAiv1C9bCDzCxxa2MlOCFvE4.mft File: F11CAiv1C9bCDzCxxa2MlOCFvE4.mft (raw, json) Hash identifier: gQTpAZwitaOl2bnosxjTf+D64M/IvKjAGCPX+oiGZZc= Subject key identifier: B5:ED:83:44:F0:6D:CB:86:D1:F1:3B:9F:47:11:B5:64:A0:FF:10:8E Authority key identifier: 17:5D:42:02:2B:F5:0B:D6:C2:0F:30:B1:C5:AD:8C:94:E0:85:BC:4E Certificate issuer: /CN=A91F89D9/serialNumber=175D42022BF50BD6C20F30B1C5AD8C94E085BC4E Certificate serial: 1D Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/F11CAiv1C9bCDzCxxa2MlOCFvE4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F89D9/EABFEBF26F5C11EF835A7B66C4F9AE02/F11CAiv1C9bCDzCxxa2MlOCFvE4.mft Manifest number: 1B Signing time: Wed 23 Oct 2024 06:38:25 +0000 Manifest this update: Wed 23 Oct 2024 06:38:25 +0000 Manifest next update: Wed 30 Oct 2024 06:38:25 +0000 Files and hashes: 1: F11CAiv1C9bCDzCxxa2MlOCFvE4.crl (hash: U7LN2Lmbc+1I35K1IMdIE/VxBWg8cGCsoR3SdzUDfq0=) 2: A18C777C6F5F11EFAF849B28C4F9AE02.roa (hash: fujb24eQPYgPwcrZc8i7YcmXNyel+exUWMY7rJXI438=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F89D9/EABFEBF26F5C11EF835A7B66C4F9AE02/F11CAiv1C9bCDzCxxa2MlOCFvE4.crl rsync://rpki.apnic.net/member_repository/A91F89D9/EABFEBF26F5C11EF835A7B66C4F9AE02/F11CAiv1C9bCDzCxxa2MlOCFvE4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/F11CAiv1C9bCDzCxxa2MlOCFvE4.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 30 Oct 2024 02:50:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29 (0x1d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F89D9/serialNumber=175D42022BF50BD6C20F30B1C5AD8C94E085BC4E Validity Not Before: Oct 23 06:38:25 2024 GMT Not After : Oct 30 06:38:25 2024 GMT Subject: CN=671899e1-0f6b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:e2:80:c7:bb:a1:91:47:d4:2b:fb:e1:d9:92: 0c:63:8a:4d:34:8c:f9:39:86:c8:05:eb:34:32:01: 8d:f1:fd:61:8f:af:ff:78:8b:0f:b3:95:e5:eb:65: 99:68:2a:3a:f6:38:da:df:69:c0:ce:aa:3c:f0:6d: 82:e1:a2:92:db:07:bc:d3:f6:3c:c5:f4:e7:6b:34: dc:7b:d7:c1:38:b6:5d:75:96:ca:01:cd:2c:57:6a: ad:47:de:65:3d:ab:bd:3b:35:02:45:9e:74:9a:a2: 45:23:2e:a5:fd:09:13:5c:22:53:25:0e:45:85:b4: 87:50:f7:be:7f:ed:59:a6:d4:1e:9c:88:00:13:58: 09:3d:9f:71:95:9a:0f:f1:82:70:90:e5:51:ea:44: 35:45:3c:93:47:b6:56:de:a0:4c:aa:48:bb:d5:03: 0a:a1:d2:47:1a:ad:3e:07:e6:83:a7:70:28:08:42: f7:6a:fc:95:8d:6a:3e:e5:6b:1d:5f:38:de:3c:71: df:d1:b7:79:3b:9b:c3:29:16:9b:6a:34:fa:6e:57: 4e:ca:6c:2a:f0:0c:03:9e:b9:4f:c4:60:d3:29:06: 63:69:88:83:d8:6b:6a:13:38:8e:63:c5:6a:75:1c: 75:1f:fa:9a:85:c8:68:de:39:81:bb:a4:36:c4:58: 15:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:ED:83:44:F0:6D:CB:86:D1:F1:3B:9F:47:11:B5:64:A0:FF:10:8E X509v3 Authority Key Identifier: keyid:17:5D:42:02:2B:F5:0B:D6:C2:0F:30:B1:C5:AD:8C:94:E0:85:BC:4E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F89D9/EABFEBF26F5C11EF835A7B66C4F9AE02/F11CAiv1C9bCDzCxxa2MlOCFvE4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/F11CAiv1C9bCDzCxxa2MlOCFvE4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F89D9/EABFEBF26F5C11EF835A7B66C4F9AE02/F11CAiv1C9bCDzCxxa2MlOCFvE4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8d:79:b1:55:e2:13:d4:75:3f:92:de:d8:c9:49:44:7d:4e:5d: aa:15:25:bc:7e:d6:d3:7d:93:c9:ca:3b:76:0f:75:75:43:80: 8d:83:bc:e7:35:0d:62:4a:8e:5d:62:13:09:4b:92:2f:ea:50: 3a:b6:62:8e:6e:f1:65:bc:1c:e7:35:3b:d1:64:7f:7b:47:a4: cd:ff:8a:ed:7a:dc:3d:84:15:3d:81:85:8e:08:51:48:52:56: b6:15:2d:11:6e:c2:10:06:24:dd:cb:98:50:1e:12:3a:0b:ac: 46:d4:77:a9:98:1a:10:9e:a0:bd:a3:15:f0:21:74:bc:d5:78: a0:49:58:3e:f7:84:b1:ff:77:83:50:4e:f1:c8:81:cb:e1:d4: 72:b6:a6:79:1a:9f:c2:e4:b3:76:dc:c2:7c:d4:68:38:31:b0: 0f:33:48:39:8e:4d:e6:5a:38:1f:f2:e1:a5:66:ca:45:fc:4e: 9e:79:a0:10:fb:7a:18:42:bd:42:ac:b7:d2:e5:c5:cd:02:40: ec:d6:63:6e:9f:e5:ef:e3:28:a2:40:58:d0:6b:36:13:63:ed: d1:2d:7c:83:8d:4e:9a:5f:41:9b:6c:79:82:91:12:67:b5:31: ed:82:05:22:9d:a5:af:67:cb:1c:9c:9b:61:fa:84:b2:a6:0e: b7:5b:f8:df -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBHTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG ODlEOTExMC8GA1UEBRMoMTc1RDQyMDIyQkY1MEJENkMyMEYzMEIxQzVBRDhDOTRF MDg1QkM0RTAeFw0yNDEwMjMwNjM4MjVaFw0yNDEwMzAwNjM4MjVaMBgxFjAUBgNV BAMTDTY3MTg5OWUxLTBmNmIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC84oDHu6GRR9Qr++HZkgxjik00jPk5hsgF6zQyAY3x/WGPr/94iw+zleXrZZlo Kjr2ONrfacDOqjzwbYLhopLbB7zT9jzF9OdrNNx718E4tl11lsoBzSxXaq1H3mU9 q707NQJFnnSaokUjLqX9CRNcIlMlDkWFtIdQ975/7Vmm1B6ciAATWAk9n3GVmg/x gnCQ5VHqRDVFPJNHtlbeoEyqSLvVAwqh0kcarT4H5oOncCgIQvdq/JWNaj7lax1f ON48cd/Rt3k7m8MpFptqNPpuV07KbCrwDAOeuU/EYNMpBmNpiIPYa2oTOI5jxWp1 HHUf+pqFyGjeOYG7pDbEWBXzAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUte2DRPBt y4bR8TufRxG1ZKD/EI4wHwYDVR0jBBgwFoAUF11CAiv1C9bCDzCxxa2MlOCFvE4w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUY4OUQ5L0VBQkZFQkYyNkY1 QzExRUY4MzVBN0I2NkM0RjlBRTAyL0YxMUNBaXYxQzliQ0R6Q3h4YTJNbE9DRnZF NC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvRjExQ0FpdjFDOWJDRHpDeHhhMk1sT0NGdkU0LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUY4 OUQ5L0VBQkZFQkYyNkY1QzExRUY4MzVBN0I2NkM0RjlBRTAyL0YxMUNBaXYxQzli Q0R6Q3h4YTJNbE9DRnZFNC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAI15sVXiE9R1P5Le2MlJRH1OXaoVJbx+1tN9k8nKO3YPdXVDgI2DvOc1 DWJKjl1iEwlLki/qUDq2Yo5u8WW8HOc1O9Fkf3tHpM3/iu163D2EFT2BhY4IUUhS VrYVLRFuwhAGJN3LmFAeEjoLrEbUd6mYGhCeoL2jFfAhdLzVeKBJWD73hLH/d4NQ TvHIgcvh1HK2pnkan8Lks3bcwnzUaDgxsA8zSDmOTeZaOB/y4aVmykX8Tp55oBD7 ehhCvUKst9Llxc0CQOzWY26f5e/jKKJAWNBrNhNj7dEtfIONTppfQZtseYKREme1 Me2CBSKdpa9nyxycm2H6hLKmDrdb+N8= -----END CERTIFICATE-----Generated at Wed Oct 23 07:46:04 2024 by rpki-client on console-ams.rpki-client.org