$ rpki-client -vvf rpki.apnic.net/member_repository/A91FB03A/DFC68D643A1611ED9152BF0EC4F9AE02/i0b6Eepu4jUJnkhDPIJJehl7nXw.mft File: i0b6Eepu4jUJnkhDPIJJehl7nXw.mft (raw, json) Hash identifier: b32+m/VxEl7P5huJ7VbwkbYFomO1z4lrBaHmt5GLwog= Subject key identifier: C6:0A:D7:63:A9:3F:B8:DD:9B:E8:3C:CE:5D:70:C2:AB:00:21:57:25 Authority key identifier: 8B:46:FA:11:EA:6E:E2:35:09:9E:48:43:3C:82:49:7A:19:7B:9D:7C Certificate issuer: /CN=A91FB03A/serialNumber=8B46FA11EA6EE235099E48433C82497A197B9D7C Certificate serial: 01B0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/i0b6Eepu4jUJnkhDPIJJehl7nXw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FB03A/DFC68D643A1611ED9152BF0EC4F9AE02/i0b6Eepu4jUJnkhDPIJJehl7nXw.mft Manifest number: 01A8 Signing time: Sat 23 Nov 2024 01:50:04 +0000 Manifest this update: Sat 23 Nov 2024 01:50:04 +0000 Manifest next update: Sat 30 Nov 2024 01:50:04 +0000 Files and hashes: 1: i0b6Eepu4jUJnkhDPIJJehl7nXw.crl (hash: D0HLEtB9TQd1MZeGq5GccP1g/3ESR8/1YbnRqI1VZQo=) 2: 0B3B85D63A1B11EDAE662B14C4F9AE02.roa (hash: GQNwSDUwzmX4l5wsYUCHS1XYZfJoT7fdlpD23IsAxJ8=) 3: 0BF33B7C3A1B11EDAE662B14C4F9AE02.roa (hash: Eo0BohzaoHsq9WS4rYAJO6lxA8uatGkVav6XDwgjJJA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FB03A/DFC68D643A1611ED9152BF0EC4F9AE02/i0b6Eepu4jUJnkhDPIJJehl7nXw.crl rsync://rpki.apnic.net/member_repository/A91FB03A/DFC68D643A1611ED9152BF0EC4F9AE02/i0b6Eepu4jUJnkhDPIJJehl7nXw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/i0b6Eepu4jUJnkhDPIJJehl7nXw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 01:50:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 432 (0x1b0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FB03A/serialNumber=8B46FA11EA6EE235099E48433C82497A197B9D7C Validity Not Before: Nov 23 01:50:04 2024 GMT Not After : Nov 30 01:50:04 2024 GMT Subject: CN=674134cc-19d3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f4:f0:84:b0:f8:fb:bf:42:f5:35:40:d4:d2:20: 4e:e1:44:6b:6e:68:5d:d8:7f:bb:52:4d:0d:db:b8: 1d:11:44:8c:16:eb:02:76:f1:b0:f3:2d:2e:88:9c: 38:dd:29:e0:9d:fb:94:b7:07:d4:55:02:61:4c:ee: c3:90:d3:c1:c3:85:ac:10:c0:72:43:4c:3a:1b:06: 0c:99:96:26:ad:f4:11:0b:be:77:30:9e:18:d8:14: eb:7b:0b:74:03:3e:80:5f:ad:b1:0f:83:af:df:56: 81:a6:17:a5:d2:e6:52:fa:73:7a:be:ec:27:c2:40: 69:5f:89:40:5e:7d:3e:0a:15:88:b4:50:c5:00:b3: da:a6:ec:82:76:52:d8:b4:28:f4:1f:d9:da:54:b6: 6a:cf:e2:95:8f:cb:55:c5:66:cd:54:20:07:c3:7d: 98:ed:98:19:19:41:72:06:05:41:87:b4:84:1e:36: 10:85:ca:37:8d:4c:46:b4:f0:17:82:9a:c2:cf:fb: e5:ff:fe:43:3d:92:53:24:bf:2d:af:4c:81:8c:02: 0a:18:48:89:1c:10:5f:f7:85:2b:76:d1:96:50:a9: 1e:dd:89:25:ae:63:1a:fb:cb:12:c8:67:31:25:47: 57:46:b6:53:8a:01:ff:ac:13:a2:8f:6b:00:e2:14: b8:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:0A:D7:63:A9:3F:B8:DD:9B:E8:3C:CE:5D:70:C2:AB:00:21:57:25 X509v3 Authority Key Identifier: keyid:8B:46:FA:11:EA:6E:E2:35:09:9E:48:43:3C:82:49:7A:19:7B:9D:7C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FB03A/DFC68D643A1611ED9152BF0EC4F9AE02/i0b6Eepu4jUJnkhDPIJJehl7nXw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/i0b6Eepu4jUJnkhDPIJJehl7nXw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FB03A/DFC68D643A1611ED9152BF0EC4F9AE02/i0b6Eepu4jUJnkhDPIJJehl7nXw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bb:cc:55:b6:de:77:8b:9e:0e:a8:4b:1c:82:c8:43:8a:c8:7f: a1:d0:57:85:9d:03:09:22:fa:f8:5e:5d:36:cb:14:84:a7:7d: c0:d8:0e:d5:02:7f:99:ec:c3:8c:6b:b0:03:a4:60:8b:ed:81: 43:f2:14:53:ff:e3:05:30:38:4b:bf:e0:f3:78:a2:b8:95:47: fd:ff:87:24:7c:6a:3e:9b:af:9d:ef:cb:da:63:08:cf:55:de: c1:f4:8c:71:4f:89:ea:5e:ee:e0:a1:bf:3e:ee:9d:e3:b4:dc: 29:71:27:15:e2:a2:e6:f3:c1:de:48:b8:83:6b:4e:fe:92:74: 2c:eb:b4:c1:33:e3:2f:ab:d0:da:be:08:36:fe:95:0a:85:8c: b9:7a:e7:5f:37:51:b2:af:cc:77:75:72:a8:35:48:8c:57:3a: 2a:72:49:39:39:e2:b6:96:50:8d:4c:37:f0:38:ce:80:70:f8: 11:3f:66:cd:9e:c0:d5:86:b8:f6:67:44:de:79:2a:e1:d1:bb: 59:ee:72:e1:3e:7c:4d:d8:a5:3c:f6:cb:a0:98:cb:78:b6:4e: 9c:48:48:6e:00:2f:41:6b:5a:df:61:39:88:0c:9f:70:de:e6: 1b:09:5d:f0:0c:6c:f8:6c:37:73:31:d0:ad:22:0a:8d:26:17: 3f:dc:29:3f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAbAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkIwM0ExMTAvBgNVBAUTKDhCNDZGQTExRUE2RUUyMzUwOTlFNDg0MzNDODI0OTdB MTk3QjlEN0MwHhcNMjQxMTIzMDE1MDA0WhcNMjQxMTMwMDE1MDA0WjAYMRYwFAYD VQQDEw02NzQxMzRjYy0xOWQzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9PCEsPj7v0L1NUDU0iBO4URrbmhd2H+7Uk0N27gdEUSMFusCdvGw8y0uiJw4 3SngnfuUtwfUVQJhTO7DkNPBw4WsEMByQ0w6GwYMmZYmrfQRC753MJ4Y2BTrewt0 Az6AX62xD4Ov31aBphel0uZS+nN6vuwnwkBpX4lAXn0+ChWItFDFALPapuyCdlLY tCj0H9naVLZqz+KVj8tVxWbNVCAHw32Y7ZgZGUFyBgVBh7SEHjYQhco3jUxGtPAX gprCz/vl//5DPZJTJL8tr0yBjAIKGEiJHBBf94UrdtGWUKke3YklrmMa+8sSyGcx JUdXRrZTigH/rBOij2sA4hS4CwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMYK12Op P7jdm+g8zl1wwqsAIVclMB8GA1UdIwQYMBaAFItG+hHqbuI1CZ5IQzyCSXoZe518 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQjAzQS9ERkM2OEQ2NDNB MTYxMUVEOTE1MkJGMEVDNEY5QUUwMi9pMGI2RWVwdTRqVUpua2hEUElKSmVobDdu WHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2kwYjZFZXB1NGpVSm5raERQSUpKZWhsN25Ydy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QjAzQS9ERkM2OEQ2NDNBMTYxMUVEOTE1MkJGMEVDNEY5QUUwMi9pMGI2RWVwdTRq VUpua2hEUElKSmVobDduWHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC7zFW23neLng6oSxyCyEOKyH+h0FeFnQMJIvr4Xl02yxSEp33A2A7V An+Z7MOMa7ADpGCL7YFD8hRT/+MFMDhLv+DzeKK4lUf9/4ckfGo+m6+d78vaYwjP Vd7B9IxxT4nqXu7gob8+7p3jtNwpcScV4qLm88HeSLiDa07+knQs67TBM+Mvq9Da vgg2/pUKhYy5eudfN1Gyr8x3dXKoNUiMVzoqckk5OeK2llCNTDfwOM6AcPgRP2bN nsDVhrj2Z0TeeSrh0btZ7nLhPnxN2KU89sugmMt4tk6cSEhuAC9Ba1rfYTmIDJ9w 3uYbCV3wDGz4bDdzMdCtIgqNJhc/3Ck/ -----END CERTIFICATE-----Generated at Sat Nov 23 03:58:59 2024 by rpki-client on console-ams.rpki-client.org