$ rpki-client -vvf rpki.apnic.net/member_repository/A91F91EB/497F2BD8F70511E9ADBA451FC4F9AE02/t9zhQRKgKYL1dXyrjTSRAyyOGPo.mft File: t9zhQRKgKYL1dXyrjTSRAyyOGPo.mft (raw, json) Hash identifier: AauMb9x80zu5qHR05zvT+IayBPsKT1a8trOa6YMR+eE= Subject key identifier: 51:77:28:1C:B0:12:6E:2E:D1:47:82:DB:8C:4B:9A:9B:BE:43:3F:14 Authority key identifier: B7:DC:E1:41:12:A0:29:82:F5:75:7C:AB:8D:34:91:03:2C:8E:18:FA Certificate issuer: /CN=A91F91EB/serialNumber=B7DCE14112A02982F5757CAB8D3491032C8E18FA Certificate serial: 0C2D Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/t9zhQRKgKYL1dXyrjTSRAyyOGPo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F91EB/497F2BD8F70511E9ADBA451FC4F9AE02/t9zhQRKgKYL1dXyrjTSRAyyOGPo.mft Manifest number: 0C28 Signing time: Sun 24 Nov 2024 18:04:49 +0000 Manifest this update: Sun 24 Nov 2024 18:04:49 +0000 Manifest next update: Sun 01 Dec 2024 18:04:49 +0000 Files and hashes: 1: t9zhQRKgKYL1dXyrjTSRAyyOGPo.crl (hash: FU6ymsEqBoXSb8FOCtC40EyGaJYvZ9t/XU59PjVJJEs=) 2: 8D243F849A6D11EA8674310DC4F9AE02.roa (hash: l2tSQDCSf2XRgRWJUI18n4GUTvN3dXNn8MNTFuFtKko=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F91EB/497F2BD8F70511E9ADBA451FC4F9AE02/t9zhQRKgKYL1dXyrjTSRAyyOGPo.crl rsync://rpki.apnic.net/member_repository/A91F91EB/497F2BD8F70511E9ADBA451FC4F9AE02/t9zhQRKgKYL1dXyrjTSRAyyOGPo.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/t9zhQRKgKYL1dXyrjTSRAyyOGPo.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Dec 2024 17:11:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3117 (0xc2d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F91EB/serialNumber=B7DCE14112A02982F5757CAB8D3491032C8E18FA Validity Not Before: Nov 24 18:04:49 2024 GMT Not After : Dec 1 18:04:49 2024 GMT Subject: CN=67436ac1-8c42 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:2f:6b:19:b1:d5:7c:b0:fa:55:9c:7b:99:65: 88:eb:23:3d:30:f5:21:36:f0:b4:b7:6d:9d:a9:37: 0c:a2:d8:f4:7c:d6:58:01:24:f5:1e:a9:f9:58:0e: 65:2e:ad:dd:d0:ad:63:6c:e3:ec:38:05:91:46:ee: 70:21:3e:79:ac:f5:ba:83:85:e4:de:48:f9:ba:4a: 21:b5:fa:61:c2:19:3b:b2:b4:d4:4f:62:26:f0:77: b5:0f:a4:a7:4e:22:fb:93:6b:cf:c3:5b:f9:54:d6: d1:e5:da:2d:74:73:76:bf:14:58:de:22:e2:00:b5: 25:63:15:ac:a9:09:03:d8:43:e8:a9:27:69:bc:aa: 90:44:b9:dd:c9:04:fc:c2:70:8c:6c:99:db:3e:17: 72:33:1e:49:b4:a9:3c:4a:ef:a6:05:58:65:f9:38: 70:18:61:51:63:60:ae:f8:84:55:cb:d2:54:d9:51: b4:fc:8d:f9:d0:fc:78:50:26:8a:b7:1b:34:ab:1a: 7e:80:0c:79:1e:31:a0:8d:c7:8b:68:ad:18:74:50: 18:2a:36:31:97:03:d8:d4:7d:27:86:c6:76:db:39: 35:a0:39:53:93:e2:12:08:e2:2a:7e:41:08:9f:68: 6a:c6:3e:54:e9:36:13:88:16:4a:db:4c:0e:3d:de: 57:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:77:28:1C:B0:12:6E:2E:D1:47:82:DB:8C:4B:9A:9B:BE:43:3F:14 X509v3 Authority Key Identifier: keyid:B7:DC:E1:41:12:A0:29:82:F5:75:7C:AB:8D:34:91:03:2C:8E:18:FA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F91EB/497F2BD8F70511E9ADBA451FC4F9AE02/t9zhQRKgKYL1dXyrjTSRAyyOGPo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/t9zhQRKgKYL1dXyrjTSRAyyOGPo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F91EB/497F2BD8F70511E9ADBA451FC4F9AE02/t9zhQRKgKYL1dXyrjTSRAyyOGPo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 28:29:f0:34:93:26:0a:fc:f8:c5:5b:2a:0d:6a:56:4e:6e:09: 25:77:ce:29:b2:dd:67:43:61:7d:d2:10:7e:89:7e:a4:d6:6c: e1:55:7e:1d:3b:f4:e8:9e:ff:54:0f:59:92:57:f1:17:c2:b7: 79:e5:b5:c6:e6:77:5e:42:de:d0:d3:6d:bd:7f:00:56:a1:13: ec:4a:42:df:b6:1d:50:4e:f8:cd:34:5e:8a:7d:af:86:2e:30: 86:28:5c:4c:1a:93:29:b1:03:bd:72:2e:75:49:fc:75:01:6c: b2:37:c4:3c:94:f9:8e:0b:3c:9b:7c:9a:15:da:8c:5e:b6:d8: 6b:b3:66:19:8a:8f:2c:d3:6c:1e:b1:38:c5:63:7e:62:70:aa: c9:43:56:21:9d:09:94:59:48:2e:5e:b5:40:61:1e:94:a6:d7: 14:aa:02:2d:6a:41:13:5f:b1:0b:ee:d1:af:5c:59:7d:df:05: 61:ae:bf:a2:37:1c:06:3e:dc:99:3c:17:a9:c1:6d:fd:64:71: c8:98:72:3a:01:37:37:6d:46:c7:a0:e8:aa:a8:f7:72:ad:34: 77:45:44:3b:77:08:ca:07:99:99:29:7c:de:0e:43:8e:f4:5d: 7a:53:1c:ea:c6:99:78:81:e8:21:cb:6c:91:14:7c:d8:6f:c2: 9b:77:ca:93 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDC0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjkxRUIxMTAvBgNVBAUTKEI3RENFMTQxMTJBMDI5ODJGNTc1N0NBQjhEMzQ5MTAz MkM4RTE4RkEwHhcNMjQxMTI0MTgwNDQ5WhcNMjQxMjAxMTgwNDQ5WjAYMRYwFAYD VQQDEw02NzQzNmFjMS04YzQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzy9rGbHVfLD6VZx7mWWI6yM9MPUhNvC0t22dqTcMotj0fNZYAST1Hqn5WA5l Lq3d0K1jbOPsOAWRRu5wIT55rPW6g4Xk3kj5ukohtfphwhk7srTUT2Im8He1D6Sn TiL7k2vPw1v5VNbR5dotdHN2vxRY3iLiALUlYxWsqQkD2EPoqSdpvKqQRLndyQT8 wnCMbJnbPhdyMx5JtKk8Su+mBVhl+ThwGGFRY2Cu+IRVy9JU2VG0/I350Px4UCaK txs0qxp+gAx5HjGgjceLaK0YdFAYKjYxlwPY1H0nhsZ22zk1oDlTk+ISCOIqfkEI n2hqxj5U6TYTiBZK20wOPd5X7QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFF3KByw Em4u0UeC24xLmpu+Qz8UMB8GA1UdIwQYMBaAFLfc4UESoCmC9XV8q400kQMsjhj6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGOTFFQi80OTdGMkJEOEY3 MDUxMUU5QURCQTQ1MUZDNEY5QUUwMi90OXpoUVJLZ0tZTDFkWHlyalRTUkF5eU9H UG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3Q5emhRUktnS1lMMWRYeXJqVFNSQXl5T0dQby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG OTFFQi80OTdGMkJEOEY3MDUxMUU5QURCQTQ1MUZDNEY5QUUwMi90OXpoUVJLZ0tZ TDFkWHlyalRTUkF5eU9HUG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAoKfA0kyYK/PjFWyoNalZObgkld84pst1nQ2F90hB+iX6k1mzhVX4d O/Tonv9UD1mSV/EXwrd55bXG5ndeQt7Q0229fwBWoRPsSkLfth1QTvjNNF6Kfa+G LjCGKFxMGpMpsQO9ci51Sfx1AWyyN8Q8lPmOCzybfJoV2oxetthrs2YZio8s02we sTjFY35icKrJQ1YhnQmUWUguXrVAYR6UptcUqgItakETX7EL7tGvXFl93wVhrr+i NxwGPtyZPBepwW39ZHHImHI6ATc3bUbHoOiqqPdyrTR3RUQ7dwjKB5mZKXzeDkOO 9F16Uxzqxpl4geghy2yRFHzYb8Kbd8qT -----END CERTIFICATE-----Generated at Sun Nov 24 20:09:59 2024 by rpki-client on console-ams.rpki-client.org