$ rpki-client -vvf rpki.apnic.net/member_repository/A91FCEB1/9C14B4063A2111E79AA0D51CC4F9AE02/0I2GgcK-TUfCopBV9m5olVhGF_c.mft File: 0I2GgcK-TUfCopBV9m5olVhGF_c.mft (raw, json) Hash identifier: Z8wTYG1GeAeuOiQOvAghfr7ZEeyAPmtvDX+DH0S2RGs= Subject key identifier: 67:C5:34:31:B3:28:48:43:A6:9B:75:DF:CA:62:4A:D3:0B:EB:6C:E3 Authority key identifier: D0:8D:86:81:C2:BE:4D:47:C2:A2:90:55:F6:6E:68:95:58:46:17:F7 Certificate issuer: /CN=A91FCEB1/serialNumber=D08D8681C2BE4D47C2A29055F66E6895584617F7 Certificate serial: 1A16 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0I2GgcK-TUfCopBV9m5olVhGF_c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FCEB1/9C14B4063A2111E79AA0D51CC4F9AE02/0I2GgcK-TUfCopBV9m5olVhGF_c.mft Manifest number: 20B4 Signing time: Sun 24 Nov 2024 15:53:22 +0000 Manifest this update: Sun 24 Nov 2024 15:53:21 +0000 Manifest next update: Sun 01 Dec 2024 15:53:21 +0000 Files and hashes: 1: 0I2GgcK-TUfCopBV9m5olVhGF_c.crl (hash: u67MPfRHnRXnpiFq55aIfO0sOvCrYV2X1MlCCGbVg+Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FCEB1/9C14B4063A2111E79AA0D51CC4F9AE02/0I2GgcK-TUfCopBV9m5olVhGF_c.crl rsync://rpki.apnic.net/member_repository/A91FCEB1/9C14B4063A2111E79AA0D51CC4F9AE02/0I2GgcK-TUfCopBV9m5olVhGF_c.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0I2GgcK-TUfCopBV9m5olVhGF_c.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Dec 2024 15:53:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6678 (0x1a16) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FCEB1/serialNumber=D08D8681C2BE4D47C2A29055F66E6895584617F7 Validity Not Before: Nov 24 15:53:21 2024 GMT Not After : Dec 1 15:53:21 2024 GMT Subject: CN=67434bf1-3e02 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:2d:4f:73:55:dc:6f:e0:b6:20:35:8b:7f:13: 89:83:3e:e0:7b:4a:57:53:c3:89:b3:15:50:f7:9d: ec:62:59:38:34:2f:9e:a2:1b:8f:ff:dc:ea:99:ef: 2b:9a:f5:c9:9f:de:c9:3a:8d:e6:33:b4:42:4c:74: ff:9b:9d:22:d1:2b:fc:5a:1d:dd:b8:41:ef:a5:a1: 19:71:13:98:d0:dd:8a:f2:a7:9b:88:b8:2e:eb:ac: 0b:06:32:71:c6:7d:1b:62:c1:28:59:9d:00:fb:36: 59:f2:05:e1:04:a3:b6:0c:e4:a2:62:be:cb:53:87: 6f:f0:fb:40:ab:fc:38:79:91:21:09:40:b7:aa:6f: 73:95:24:ad:7d:d6:21:5c:a5:5c:f8:d4:1e:22:0c: 45:8c:69:71:83:df:b8:bd:9e:49:de:5f:d1:4d:7f: a8:30:f5:d8:4a:57:6c:24:fa:73:2e:47:7c:e6:95: b2:b6:9b:ca:96:3f:98:f9:ac:15:4a:1d:33:57:6d: 8c:39:e0:78:12:0f:a7:de:45:db:3e:8a:4f:4e:1b: 80:c3:dd:82:7c:64:de:18:a6:4e:55:87:07:fe:24: d7:a1:a5:8c:9f:7e:69:06:c1:c2:2f:9e:0f:5c:b6: 75:1d:fe:84:6a:cf:c7:f8:db:db:d2:b8:aa:a4:78: da:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:C5:34:31:B3:28:48:43:A6:9B:75:DF:CA:62:4A:D3:0B:EB:6C:E3 X509v3 Authority Key Identifier: keyid:D0:8D:86:81:C2:BE:4D:47:C2:A2:90:55:F6:6E:68:95:58:46:17:F7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FCEB1/9C14B4063A2111E79AA0D51CC4F9AE02/0I2GgcK-TUfCopBV9m5olVhGF_c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0I2GgcK-TUfCopBV9m5olVhGF_c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FCEB1/9C14B4063A2111E79AA0D51CC4F9AE02/0I2GgcK-TUfCopBV9m5olVhGF_c.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8d:30:24:8f:80:9a:48:e7:80:5c:09:3c:b6:a7:7c:b6:b8:b1: 42:c1:a5:71:01:da:04:83:80:e9:4c:03:4a:ce:9f:f3:4f:96: 7c:ed:c0:f9:bf:c5:24:c8:1a:e5:32:d8:27:ca:89:db:57:d4: d9:c7:08:f3:b5:50:4d:e6:51:ed:0d:5f:ed:dc:39:5f:b3:99: 8b:15:c9:f9:fe:bc:ee:8a:dd:c9:36:a4:82:c6:d7:ca:1a:87: 8e:c1:ce:25:b4:2b:f3:51:40:d5:8a:dc:f4:19:f5:54:87:9e: e5:21:3c:a3:23:37:6d:ca:71:2a:b8:64:6c:9c:2e:3f:a8:36: 0b:17:0e:6a:25:39:d3:65:0c:1b:cf:ad:73:95:08:04:b7:4d: 50:b9:b8:dc:a9:6c:a4:cd:d3:1b:29:bf:1d:7b:15:45:08:e2: 34:66:fc:a4:0d:24:81:01:9a:1c:76:43:04:10:71:69:c7:51: 2e:15:34:af:c2:25:db:24:07:a2:4a:b5:9f:7e:b3:62:e5:88: 60:04:2d:40:99:6e:3f:6f:02:aa:44:46:2e:18:70:02:26:1d: 49:68:0b:10:80:db:55:9e:ad:40:f7:4f:bb:7a:10:41:64:7d: 8d:d2:8e:dd:83:6a:08:c7:29:a4:6b:fc:b5:4d:36:07:b0:fe: 68:e7:1e:ab -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICGhYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkNFQjExMTAvBgNVBAUTKEQwOEQ4NjgxQzJCRTRENDdDMkEyOTA1NUY2NkU2ODk1 NTg0NjE3RjcwHhcNMjQxMTI0MTU1MzIxWhcNMjQxMjAxMTU1MzIxWjAYMRYwFAYD VQQDEw02NzQzNGJmMS0zZTAyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0y1Pc1Xcb+C2IDWLfxOJgz7ge0pXU8OJsxVQ953sYlk4NC+eohuP/9zqme8r mvXJn97JOo3mM7RCTHT/m50i0Sv8Wh3duEHvpaEZcROY0N2K8qebiLgu66wLBjJx xn0bYsEoWZ0A+zZZ8gXhBKO2DOSiYr7LU4dv8PtAq/w4eZEhCUC3qm9zlSStfdYh XKVc+NQeIgxFjGlxg9+4vZ5J3l/RTX+oMPXYSldsJPpzLkd85pWytpvKlj+Y+awV Sh0zV22MOeB4Eg+n3kXbPopPThuAw92CfGTeGKZOVYcH/iTXoaWMn35pBsHCL54P XLZ1Hf6Eas/H+Nvb0riqpHja/wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGfFNDGz KEhDppt138piStML62zjMB8GA1UdIwQYMBaAFNCNhoHCvk1HwqKQVfZuaJVYRhf3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQ0VCMS85QzE0QjQwNjNB MjExMUU3OUFBMEQ1MUNDNEY5QUUwMi8wSTJHZ2NLLVRVZkNvcEJWOW01b2xWaEdG X2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzBJMkdnY0stVFVmQ29wQlY5bTVvbFZoR0ZfYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG Q0VCMS85QzE0QjQwNjNBMjExMUU3OUFBMEQ1MUNDNEY5QUUwMi8wSTJHZ2NLLVRV ZkNvcEJWOW01b2xWaEdGX2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCNMCSPgJpI54BcCTy2p3y2uLFCwaVxAdoEg4DpTANKzp/zT5Z87cD5 v8UkyBrlMtgnyonbV9TZxwjztVBN5lHtDV/t3Dlfs5mLFcn5/rzuit3JNqSCxtfK GoeOwc4ltCvzUUDVitz0GfVUh57lITyjIzdtynEquGRsnC4/qDYLFw5qJTnTZQwb z61zlQgEt01QubjcqWykzdMbKb8dexVFCOI0ZvykDSSBAZocdkMEEHFpx1EuFTSv wiXbJAeiSrWffrNi5YhgBC1AmW4/bwKqREYuGHACJh1JaAsQgNtVnq1A90+7ehBB ZH2N0o7dg2oIxymka/y1TTYHsP5o5x6r -----END CERTIFICATE-----Generated at Sun Nov 24 18:25:00 2024 by rpki-client on console-ams.rpki-client.org