$ rpki-client -vvf rpki.apnic.net/member_repository/A91FB434/E2C6267642D311E8BBDC0941C4F9AE02/1bScAI9ih18VJth200lAoJsOnW0.mft File: 1bScAI9ih18VJth200lAoJsOnW0.mft (raw, json) Hash identifier: COctR2fSvdTVihfk/kAiRY7ojdth4jyqEk0ojupCieQ= Subject key identifier: 45:F8:12:49:46:F1:AA:20:96:CB:D0:FD:9B:08:11:3C:F4:5A:68:FF Authority key identifier: D5:B4:9C:00:8F:62:87:5F:15:26:D8:76:D3:49:40:A0:9B:0E:9D:6D Certificate issuer: /CN=A91FB434/serialNumber=D5B49C008F62875F1526D876D34940A09B0E9D6D Certificate serial: 14EC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1bScAI9ih18VJth200lAoJsOnW0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FB434/E2C6267642D311E8BBDC0941C4F9AE02/1bScAI9ih18VJth200lAoJsOnW0.mft Manifest number: 14DA Signing time: Fri 22 Nov 2024 16:50:31 +0000 Manifest this update: Fri 22 Nov 2024 16:50:30 +0000 Manifest next update: Fri 29 Nov 2024 16:50:30 +0000 Files and hashes: 1: 1bScAI9ih18VJth200lAoJsOnW0.crl (hash: 06nL0zRbGrlrvjKoiuutXTVT0F8f8XA34lZaJdmdA0g=) 2: EC796D6C42D411E88EC29742C4F9AE02.roa (hash: fttFYbQ36BNhaDw4KkKJxxNjWTmLtF2Lj6rIn6jBjOw=) 3: EB843B92329A11EE89CD8544C4F9AE02.roa (hash: 1pX1xgZiUndMELmZkTsenLOVPD7ayPzn9r1F8xRSN8U=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FB434/E2C6267642D311E8BBDC0941C4F9AE02/1bScAI9ih18VJth200lAoJsOnW0.crl rsync://rpki.apnic.net/member_repository/A91FB434/E2C6267642D311E8BBDC0941C4F9AE02/1bScAI9ih18VJth200lAoJsOnW0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1bScAI9ih18VJth200lAoJsOnW0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 16:50:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5356 (0x14ec) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FB434/serialNumber=D5B49C008F62875F1526D876D34940A09B0E9D6D Validity Not Before: Nov 22 16:50:30 2024 GMT Not After : Nov 29 16:50:30 2024 GMT Subject: CN=6740b657-c9af Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:76:11:28:82:4e:d4:78:92:fc:84:bd:52:31: 39:37:3a:f5:58:e3:a4:6c:a6:9c:34:3e:f6:38:63: 0f:9d:cc:c5:ee:ea:7b:aa:c6:64:8c:f1:b7:bb:2c: ea:c7:48:f2:6d:fe:c5:da:91:8f:e7:41:e5:fc:32: 0e:ce:c0:a4:11:51:fe:cb:9b:4b:eb:7e:44:d9:89: b2:28:1f:ab:54:14:3c:5b:b9:c9:46:95:e7:ff:c3: 45:f2:79:ef:fc:46:2e:49:f4:bd:8a:c2:df:9e:d9: 45:5c:c1:7b:da:f5:43:69:ca:ee:2d:bc:8a:bd:97: d4:08:53:8b:f5:20:ef:4c:b0:8d:b4:87:a6:b6:4c: 96:14:16:db:92:18:4e:d1:f5:63:1e:a8:f2:b2:44: 45:b9:6e:6b:32:3e:e4:fc:de:df:36:cf:0a:3c:27: ae:81:73:88:f0:02:e8:e4:a9:fc:c3:7d:5e:d8:1c: a6:8f:01:20:69:8f:88:85:4f:77:08:fe:4d:c9:43: 4f:56:0e:e5:ab:1f:b2:75:30:56:0d:69:b1:34:f3: 10:84:3f:4b:e4:a7:0b:e6:b8:13:4f:18:98:9c:95: 69:b8:ba:fd:90:75:e6:d8:6b:40:bb:35:65:86:9f: ec:c4:3a:57:f7:fc:be:56:39:b4:32:2d:3e:1f:3b: 16:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:F8:12:49:46:F1:AA:20:96:CB:D0:FD:9B:08:11:3C:F4:5A:68:FF X509v3 Authority Key Identifier: keyid:D5:B4:9C:00:8F:62:87:5F:15:26:D8:76:D3:49:40:A0:9B:0E:9D:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FB434/E2C6267642D311E8BBDC0941C4F9AE02/1bScAI9ih18VJth200lAoJsOnW0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1bScAI9ih18VJth200lAoJsOnW0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FB434/E2C6267642D311E8BBDC0941C4F9AE02/1bScAI9ih18VJth200lAoJsOnW0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 80:fd:ba:db:89:db:de:a3:83:02:e3:64:3d:0d:48:9b:61:b3: d0:d4:82:07:eb:24:d8:28:77:56:05:86:8d:bb:43:28:6b:b4: 82:f0:fa:ec:34:dc:ca:74:26:f5:7e:96:9c:ff:e5:06:21:77: ea:f5:6a:ce:9c:df:cd:37:27:ff:ae:4a:50:eb:5f:8c:a2:2f: 97:bf:ad:ec:12:8a:72:27:67:47:a9:08:06:43:63:dd:07:2c: d3:1c:12:40:f4:4f:dd:8f:3c:f0:8e:fc:de:bb:72:9b:f3:48: 9c:72:3a:7c:da:00:1a:1d:70:f5:d4:e8:15:8b:38:87:46:f5: cf:5c:94:78:4f:9c:4d:67:bc:25:d5:30:3b:82:28:6c:f9:a8: 9c:65:db:b6:69:7d:31:d5:67:9c:f5:f9:e2:4c:29:27:ed:df: ba:ac:45:68:f1:cb:99:f7:a2:d4:6f:01:e0:f7:98:df:23:09: ea:84:b9:b8:82:bc:2d:bf:e3:58:19:ef:13:58:5c:6c:06:d2: 47:df:77:23:c5:e0:cc:20:1c:51:c2:79:22:4d:d7:5f:d6:ec: 5b:f8:5e:4f:79:54:94:8b:48:2f:83:83:db:bf:db:0f:af:2d: 52:f6:95:37:b2:1c:12:36:03:6c:96:fa:85:6d:6e:8b:38:8a: 2e:4b:78:8e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFOwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkI0MzQxMTAvBgNVBAUTKEQ1QjQ5QzAwOEY2Mjg3NUYxNTI2RDg3NkQzNDk0MEEw OUIwRTlENkQwHhcNMjQxMTIyMTY1MDMwWhcNMjQxMTI5MTY1MDMwWjAYMRYwFAYD VQQDEw02NzQwYjY1Ny1jOWFmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq3YRKIJO1HiS/IS9UjE5Nzr1WOOkbKacND72OGMPnczF7up7qsZkjPG3uyzq x0jybf7F2pGP50Hl/DIOzsCkEVH+y5tL635E2YmyKB+rVBQ8W7nJRpXn/8NF8nnv /EYuSfS9isLfntlFXMF72vVDacruLbyKvZfUCFOL9SDvTLCNtIemtkyWFBbbkhhO 0fVjHqjyskRFuW5rMj7k/N7fNs8KPCeugXOI8ALo5Kn8w31e2BymjwEgaY+IhU93 CP5NyUNPVg7lqx+ydTBWDWmxNPMQhD9L5KcL5rgTTxiYnJVpuLr9kHXm2GtAuzVl hp/sxDpX9/y+Vjm0Mi0+HzsWcQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEX4EklG 8aoglsvQ/ZsIETz0Wmj/MB8GA1UdIwQYMBaAFNW0nACPYodfFSbYdtNJQKCbDp1t MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQjQzNC9FMkM2MjY3NjQy RDMxMUU4QkJEQzA5NDFDNEY5QUUwMi8xYlNjQUk5aWgxOFZKdGgyMDBsQW9Kc09u VzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFiU2NBSTlpaDE4Vkp0aDIwMGxBb0pzT25XMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QjQzNC9FMkM2MjY3NjQyRDMxMUU4QkJEQzA5NDFDNEY5QUUwMi8xYlNjQUk5aWgx OFZKdGgyMDBsQW9Kc09uVzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCA/brbidveo4MC42Q9DUibYbPQ1IIH6yTYKHdWBYaNu0Moa7SC8Prs NNzKdCb1fpac/+UGIXfq9WrOnN/NNyf/rkpQ61+Moi+Xv63sEopyJ2dHqQgGQ2Pd ByzTHBJA9E/djzzwjvzeu3Kb80iccjp82gAaHXD11OgViziHRvXPXJR4T5xNZ7wl 1TA7gihs+aicZdu2aX0x1Wec9fniTCkn7d+6rEVo8cuZ96LUbwHg95jfIwnqhLm4 grwtv+NYGe8TWFxsBtJH33cjxeDMIBxRwnkiTddf1uxb+F5PeVSUi0gvg4Pbv9sP ry1S9pU3shwSNgNslvqFbW6LOIouS3iO -----END CERTIFICATE-----Generated at Fri Nov 22 19:50:23 2024 by rpki-client on console-ams.rpki-client.org