$ rpki-client -vvf rpki.apnic.net/member_repository/A91FEFBB/D896B5C8EA6A11EDB5B6B55EC4F9AE02/2nWrD7Oqh1r631o4-FK9zB3YJvc.mft File: 2nWrD7Oqh1r631o4-FK9zB3YJvc.mft (raw, json) Hash identifier: 9ZIZu5AIdZNntu0XaUogrJnZ49zMI6pvTNpUnRGyJzA= Subject key identifier: 19:D8:DB:08:AD:05:C0:D3:B8:5B:76:B5:A3:A7:BC:04:C6:A8:BA:69 Authority key identifier: DA:75:AB:0F:B3:AA:87:5A:FA:DF:5A:38:F8:52:BD:CC:1D:D8:26:F7 Certificate issuer: /CN=A91FEFBB/serialNumber=DA75AB0FB3AA875AFADF5A38F852BDCC1DD826F7 Certificate serial: 012C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2nWrD7Oqh1r631o4-FK9zB3YJvc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FEFBB/D896B5C8EA6A11EDB5B6B55EC4F9AE02/2nWrD7Oqh1r631o4-FK9zB3YJvc.mft Manifest number: 0127 Signing time: Sat 23 Nov 2024 02:53:35 +0000 Manifest this update: Sat 23 Nov 2024 02:53:34 +0000 Manifest next update: Sat 30 Nov 2024 02:53:34 +0000 Files and hashes: 1: 2nWrD7Oqh1r631o4-FK9zB3YJvc.crl (hash: dUw2V7+cySFpJm46jj6IitpLp0HSrKGcDVnOsUWGZJU=) 2: 261D3B8AEE4611ED9BEFED31C4F9AE02.roa (hash: YCQgXX3rn1VYOPR234XDjqwFnKone0kRhynQvA6PZ44=) 3: 004C5F7EEE7011EDAA7EBB38C4F9AE02.roa (hash: wuA3iShW2pNUAEzwE136YDNG0zc9gEfmAoYRC7hXq7E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FEFBB/D896B5C8EA6A11EDB5B6B55EC4F9AE02/2nWrD7Oqh1r631o4-FK9zB3YJvc.crl rsync://rpki.apnic.net/member_repository/A91FEFBB/D896B5C8EA6A11EDB5B6B55EC4F9AE02/2nWrD7Oqh1r631o4-FK9zB3YJvc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2nWrD7Oqh1r631o4-FK9zB3YJvc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 300 (0x12c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FEFBB/serialNumber=DA75AB0FB3AA875AFADF5A38F852BDCC1DD826F7 Validity Not Before: Nov 23 02:53:34 2024 GMT Not After : Nov 30 02:53:34 2024 GMT Subject: CN=674143ae-52ca Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:a9:1a:de:d1:a2:77:8e:69:5a:3b:1a:c4:63: b9:d0:c4:68:87:a2:ee:cd:52:6e:c1:54:c2:6e:7a: 99:4c:b4:5b:c5:35:db:56:83:4e:da:85:a1:7a:1a: 43:4a:27:9a:82:b5:50:7f:5a:20:5d:94:bd:a6:f8: 46:3e:9f:a5:87:8d:d6:05:66:3d:8c:43:4b:cd:74: 90:e8:ed:7b:df:d6:48:ea:17:66:a5:f8:ce:c6:ff: d1:e6:c2:94:45:e9:6a:c2:c8:95:25:35:60:53:b2: 3e:e0:db:cd:37:e6:e4:70:db:a1:34:59:1f:1e:24: ee:02:3c:65:0e:71:8d:39:6b:4c:9d:7c:88:d7:c7: ae:dc:1e:36:cf:99:f2:25:d1:13:dd:e8:f5:98:ba: db:ed:d3:40:f1:09:52:a4:b3:86:4c:0f:ad:c0:23: ad:d0:f8:1a:f7:15:f7:b1:9b:35:db:80:af:46:1f: bf:b9:80:d2:6d:00:64:64:23:37:40:8b:3a:9c:83: 4c:21:e1:ab:db:6c:21:64:53:c5:3a:5d:2e:a8:ae: 23:b8:0a:96:ed:d9:4a:b1:64:63:b1:11:dd:e1:e5: 3b:26:69:a8:da:62:c9:b6:8b:bf:82:67:26:a7:a1: c2:22:e7:fa:68:2a:30:b8:d0:0e:9c:fc:dc:75:85: 1f:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:D8:DB:08:AD:05:C0:D3:B8:5B:76:B5:A3:A7:BC:04:C6:A8:BA:69 X509v3 Authority Key Identifier: keyid:DA:75:AB:0F:B3:AA:87:5A:FA:DF:5A:38:F8:52:BD:CC:1D:D8:26:F7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FEFBB/D896B5C8EA6A11EDB5B6B55EC4F9AE02/2nWrD7Oqh1r631o4-FK9zB3YJvc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2nWrD7Oqh1r631o4-FK9zB3YJvc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FEFBB/D896B5C8EA6A11EDB5B6B55EC4F9AE02/2nWrD7Oqh1r631o4-FK9zB3YJvc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 85:72:fd:f0:3a:b2:12:1e:79:e6:0e:6c:8e:ba:2f:a2:3c:38: ef:2a:d3:b5:a0:57:99:c5:bd:aa:83:55:94:ca:5a:2c:c4:03: a8:e6:18:0e:ef:e1:34:44:08:d4:69:03:ac:fe:cd:ef:2c:cc: ea:ce:dd:4a:7e:f7:a3:d6:d4:c0:1b:56:28:45:14:2f:0d:cb: ec:7d:2a:c6:02:4d:80:ee:e1:a6:f1:48:3c:3d:5f:51:c8:d1: f9:20:94:4d:28:d8:f0:cf:9a:0c:dc:a3:13:aa:ee:7e:c2:09: 28:a5:d8:58:4a:07:83:d1:b1:5a:88:2a:5d:ae:70:b6:97:37: e4:f8:de:ab:57:50:b2:3c:f7:6b:2d:a4:bc:68:24:e5:ae:7e: 28:ac:93:9d:a2:2d:91:54:3c:7a:b6:98:7d:d6:22:09:4c:89: b7:86:1a:81:b2:8c:90:5f:b7:9e:32:30:3b:08:66:c6:8e:26: fb:fe:f4:f2:70:56:ef:b9:c1:4b:d7:d6:7d:12:74:da:f0:40: e7:4f:85:35:26:48:e1:f3:a3:46:62:44:6a:6e:a7:cd:a4:4d: a1:2e:f8:e0:8d:97:cb:4e:33:3b:d8:a1:60:46:da:3a:18:6f: 14:6b:6f:ba:cd:ec:cf:41:32:a5:5d:89:b3:58:21:ca:ca:0e: 95:d6:dc:ff -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICASwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkVGQkIxMTAvBgNVBAUTKERBNzVBQjBGQjNBQTg3NUFGQURGNUEzOEY4NTJCREND MUREODI2RjcwHhcNMjQxMTIzMDI1MzM0WhcNMjQxMTMwMDI1MzM0WjAYMRYwFAYD VQQDEw02NzQxNDNhZS01MmNhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArqka3tGid45pWjsaxGO50MRoh6LuzVJuwVTCbnqZTLRbxTXbVoNO2oWhehpD SieagrVQf1ogXZS9pvhGPp+lh43WBWY9jENLzXSQ6O1739ZI6hdmpfjOxv/R5sKU RelqwsiVJTVgU7I+4NvNN+bkcNuhNFkfHiTuAjxlDnGNOWtMnXyI18eu3B42z5ny JdET3ej1mLrb7dNA8QlSpLOGTA+twCOt0Pga9xX3sZs124CvRh+/uYDSbQBkZCM3 QIs6nINMIeGr22whZFPFOl0uqK4juAqW7dlKsWRjsRHd4eU7Jmmo2mLJtou/gmcm p6HCIuf6aCowuNAOnPzcdYUfkQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBnY2wit BcDTuFt2taOnvATGqLppMB8GA1UdIwQYMBaAFNp1qw+zqoda+t9aOPhSvcwd2Cb3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRUZCQi9EODk2QjVDOEVB NkExMUVEQjVCNkI1NUVDNEY5QUUwMi8ybldyRDdPcWgxcjYzMW80LUZLOXpCM1lK dmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJuV3JEN09xaDFyNjMxbzQtRks5ekIzWUp2Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG RUZCQi9EODk2QjVDOEVBNkExMUVEQjVCNkI1NUVDNEY5QUUwMi8ybldyRDdPcWgx cjYzMW80LUZLOXpCM1lKdmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCFcv3wOrISHnnmDmyOui+iPDjvKtO1oFeZxb2qg1WUylosxAOo5hgO 7+E0RAjUaQOs/s3vLMzqzt1Kfvej1tTAG1YoRRQvDcvsfSrGAk2A7uGm8Ug8PV9R yNH5IJRNKNjwz5oM3KMTqu5+wgkopdhYSgeD0bFaiCpdrnC2lzfk+N6rV1CyPPdr LaS8aCTlrn4orJOdoi2RVDx6tph91iIJTIm3hhqBsoyQX7eeMjA7CGbGjib7/vTy cFbvucFL19Z9EnTa8EDnT4U1Jkjh86NGYkRqbqfNpE2hLvjgjZfLTjM72KFgRto6 GG8Ua2+6zezPQTKlXYmzWCHKyg6V1tz/ -----END CERTIFICATE-----Generated at Sat Nov 23 03:59:00 2024 by rpki-client on console-ams.rpki-client.org