$ rpki-client -vvf rpki.apnic.net/member_repository/A91FAF20/65A9A242F5C411E68AAA0085C4F9AE02/D429p9DJoeyhlFxhtykg9aoOlGc.mft File: D429p9DJoeyhlFxhtykg9aoOlGc.mft (raw, json) Hash identifier: S3L9msQXybGsE0+dYbJXcL39EaPbJMm4ZVuuVBF4780= Subject key identifier: E1:B3:B9:00:8C:CB:AE:89:5C:F5:C8:AE:3A:11:5A:8C:35:4B:85:27 Authority key identifier: 0F:8D:BD:A7:D0:C9:A1:EC:A1:94:5C:61:B7:29:20:F5:AA:0E:94:67 Certificate issuer: /CN=A91FAF20/serialNumber=0F8DBDA7D0C9A1ECA1945C61B72920F5AA0E9467 Certificate serial: 1B88 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D429p9DJoeyhlFxhtykg9aoOlGc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FAF20/65A9A242F5C411E68AAA0085C4F9AE02/D429p9DJoeyhlFxhtykg9aoOlGc.mft Manifest number: 1B79 Signing time: Fri 22 Nov 2024 16:14:58 +0000 Manifest this update: Fri 22 Nov 2024 16:14:57 +0000 Manifest next update: Fri 29 Nov 2024 16:14:57 +0000 Files and hashes: 1: D429p9DJoeyhlFxhtykg9aoOlGc.crl (hash: /JgqlhLyNXsVqkFArN12ZA8s3me1pZaz/3dMMkJnTjE=) 2: D59EA6F4F5C611E6A4FFEF0AC4F9AE02.roa (hash: hRTHvov5kcr4ci8mlf/+s2ablUrnizRu5Hp+fPVJPyU=) 3: C3ACDB568E9311E9AA8A2877C4F9AE02.roa (hash: e+nnHqsSXjcst0jgKsFSCtqmvZobXZzEGEA8nesrhMk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FAF20/65A9A242F5C411E68AAA0085C4F9AE02/D429p9DJoeyhlFxhtykg9aoOlGc.crl rsync://rpki.apnic.net/member_repository/A91FAF20/65A9A242F5C411E68AAA0085C4F9AE02/D429p9DJoeyhlFxhtykg9aoOlGc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D429p9DJoeyhlFxhtykg9aoOlGc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 16:14:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7048 (0x1b88) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FAF20/serialNumber=0F8DBDA7D0C9A1ECA1945C61B72920F5AA0E9467 Validity Not Before: Nov 22 16:14:57 2024 GMT Not After : Nov 29 16:14:57 2024 GMT Subject: CN=6740ae02-a94b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:2e:ef:61:0c:13:37:8a:c6:6e:d4:3e:0f:e3: 5e:ea:0b:8e:6e:ef:fb:24:ef:37:d9:f2:2f:fd:e8: 9f:8a:68:c4:37:95:a8:c0:97:74:40:29:8c:e6:a8: df:44:6f:80:0d:95:ba:94:49:2d:f9:82:63:0c:31: bf:8e:8c:28:4a:b8:17:c8:68:e8:ea:d9:c4:cb:23: 5f:3d:7c:55:7f:d9:1b:c1:68:ad:7b:a0:4e:2b:c9: b9:42:d3:db:7e:a7:7e:99:aa:b1:e8:ce:26:03:97: cb:31:11:41:1b:21:51:1d:c1:82:61:f2:68:a2:d8: fc:92:1c:b1:9a:c1:69:37:ee:80:07:29:6b:93:60: 99:fd:85:43:c3:0b:41:b8:7e:ed:37:71:b2:b4:1e: d7:8d:4e:3b:4c:cf:a1:14:48:c9:28:d6:33:da:6f: d4:c2:ce:8c:56:0d:1f:a1:45:33:e9:97:60:ea:39: 2b:4b:2e:66:ca:a2:6e:0c:3e:0a:b2:94:3e:53:8c: ef:84:67:79:76:ae:3b:ce:50:3a:f8:1e:bf:f7:a9: 8d:2a:6e:0c:54:52:58:8e:4d:e1:25:d1:af:dd:7c: 49:e6:b4:39:8e:36:51:f1:15:f3:bf:0a:24:8e:b0: 98:41:50:bb:ef:df:f0:91:08:f0:3c:a4:27:c6:24: bc:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:B3:B9:00:8C:CB:AE:89:5C:F5:C8:AE:3A:11:5A:8C:35:4B:85:27 X509v3 Authority Key Identifier: keyid:0F:8D:BD:A7:D0:C9:A1:EC:A1:94:5C:61:B7:29:20:F5:AA:0E:94:67 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FAF20/65A9A242F5C411E68AAA0085C4F9AE02/D429p9DJoeyhlFxhtykg9aoOlGc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D429p9DJoeyhlFxhtykg9aoOlGc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FAF20/65A9A242F5C411E68AAA0085C4F9AE02/D429p9DJoeyhlFxhtykg9aoOlGc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 36:96:9e:63:e7:9b:a6:28:2b:28:4e:10:a2:36:fa:99:1e:28: 43:85:1e:b5:4d:9e:cf:63:6f:55:fc:1c:a7:5e:95:1e:5c:f4: e9:b8:47:73:18:38:a3:c3:28:95:cb:d6:39:a4:31:01:c8:d3: 67:6a:f8:cc:dd:fa:42:c5:36:c7:0b:96:70:d2:4c:5f:6f:10: 23:36:4c:e1:0d:96:6e:8c:ed:12:60:e9:09:cc:46:9e:db:92: a1:ca:6b:f7:58:00:46:e6:a4:23:cf:66:cf:e8:81:ae:76:61: 49:ce:73:53:b2:76:cd:18:c4:62:ca:a9:0d:c0:dc:38:18:aa: b6:23:b0:e2:52:72:ee:91:29:c3:8a:d6:04:9a:ab:27:a3:b8: 51:f3:35:94:1e:a3:61:b3:de:58:af:67:0a:87:42:00:fb:a4: 12:48:5d:0b:0e:4a:18:2d:4b:c9:4a:0a:97:98:65:fa:a3:01: 2a:38:02:f6:67:12:9e:da:eb:bc:fd:0c:ee:2f:6d:29:35:b5: 27:52:3b:bd:fd:08:35:13:9d:68:4c:a7:87:b8:b4:9c:df:d6: 6c:64:18:f3:bf:8a:0f:6d:a0:99:29:74:3a:96:31:b7:35:d4: 78:5f:2a:75:32:e9:e4:96:fd:05:bf:ad:0c:30:d7:a0:6c:03: 2b:ac:b4:ba -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICG4gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkFGMjAxMTAvBgNVBAUTKDBGOERCREE3RDBDOUExRUNBMTk0NUM2MUI3MjkyMEY1 QUEwRTk0NjcwHhcNMjQxMTIyMTYxNDU3WhcNMjQxMTI5MTYxNDU3WjAYMRYwFAYD VQQDEw02NzQwYWUwMi1hOTRiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0y7vYQwTN4rGbtQ+D+Ne6guObu/7JO832fIv/eifimjEN5WowJd0QCmM5qjf RG+ADZW6lEkt+YJjDDG/jowoSrgXyGjo6tnEyyNfPXxVf9kbwWite6BOK8m5QtPb fqd+maqx6M4mA5fLMRFBGyFRHcGCYfJootj8khyxmsFpN+6ABylrk2CZ/YVDwwtB uH7tN3GytB7XjU47TM+hFEjJKNYz2m/Uws6MVg0foUUz6Zdg6jkrSy5myqJuDD4K spQ+U4zvhGd5dq47zlA6+B6/96mNKm4MVFJYjk3hJdGv3XxJ5rQ5jjZR8RXzvwok jrCYQVC779/wkQjwPKQnxiS8NQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOGzuQCM y66JXPXIrjoRWow1S4UnMB8GA1UdIwQYMBaAFA+NvafQyaHsoZRcYbcpIPWqDpRn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQUYyMC82NUE5QTI0MkY1 QzQxMUU2OEFBQTAwODVDNEY5QUUwMi9ENDI5cDlESm9leWhsRnhodHlrZzlhb09s R2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0Q0MjlwOURKb2V5aGxGeGh0eWtnOWFvT2xHYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QUYyMC82NUE5QTI0MkY1QzQxMUU2OEFBQTAwODVDNEY5QUUwMi9ENDI5cDlESm9l eWhsRnhodHlrZzlhb09sR2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA2lp5j55umKCsoThCiNvqZHihDhR61TZ7PY29V/BynXpUeXPTpuEdz GDijwyiVy9Y5pDEByNNnavjM3fpCxTbHC5Zw0kxfbxAjNkzhDZZujO0SYOkJzEae 25Khymv3WABG5qQjz2bP6IGudmFJznNTsnbNGMRiyqkNwNw4GKq2I7DiUnLukSnD itYEmqsno7hR8zWUHqNhs95Yr2cKh0IA+6QSSF0LDkoYLUvJSgqXmGX6owEqOAL2 ZxKe2uu8/QzuL20pNbUnUju9/Qg1E51oTKeHuLSc39ZsZBjzv4oPbaCZKXQ6ljG3 NdR4Xyp1Munklv0Fv60MMNegbAMrrLS6 -----END CERTIFICATE-----Generated at Fri Nov 22 19:50:23 2024 by rpki-client on console-ams.rpki-client.org