$ rpki-client -vvf rpki.apnic.net/member_repository/A91FFA15/701F53D21D8711EAA8169B6CC4F9AE02/hyN_9okCTZT9tJ7CXFsSDQu5Qpc.mft File: hyN_9okCTZT9tJ7CXFsSDQu5Qpc.mft (raw, json) Hash identifier: P7oEmnTgA9vb8nedH83cjj+fcZ3uvmZwOUOUi9wLndo= Subject key identifier: AE:17:7E:B2:EF:E7:9F:F2:06:AB:87:86:3A:AF:CE:AF:1C:26:1A:1B Authority key identifier: 87:23:7F:F6:89:02:4D:94:FD:B4:9E:C2:5C:5B:12:0D:0B:B9:42:97 Certificate issuer: /CN=A91FFA15/serialNumber=87237FF689024D94FDB49EC25C5B120D0BB94297 Certificate serial: 0B6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hyN_9okCTZT9tJ7CXFsSDQu5Qpc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FFA15/701F53D21D8711EAA8169B6CC4F9AE02/hyN_9okCTZT9tJ7CXFsSDQu5Qpc.mft Manifest number: 0B61 Signing time: Fri 22 Nov 2024 18:52:08 +0000 Manifest this update: Fri 22 Nov 2024 18:52:08 +0000 Manifest next update: Fri 29 Nov 2024 18:52:08 +0000 Files and hashes: 1: hyN_9okCTZT9tJ7CXFsSDQu5Qpc.crl (hash: CRMaYTdBI8+tEy3zHD+oW4Awvo31OQNBZaF5ybUy+Jg=) 2: E5C9B0541B3E11EBBC57067AC4F9AE02.roa (hash: EeQ1Nt52m1hyZ6VPZEPVHxza1Z77ig7QYE1EDDBnm08=) 3: E6D6D72E1B3E11EBBC57067AC4F9AE02.roa (hash: TRjcmxyqZohfOlB4LLbzqsFvH4uXUeHEH5tCE+DExYI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FFA15/701F53D21D8711EAA8169B6CC4F9AE02/hyN_9okCTZT9tJ7CXFsSDQu5Qpc.crl rsync://rpki.apnic.net/member_repository/A91FFA15/701F53D21D8711EAA8169B6CC4F9AE02/hyN_9okCTZT9tJ7CXFsSDQu5Qpc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hyN_9okCTZT9tJ7CXFsSDQu5Qpc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 18:52:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2923 (0xb6b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FFA15/serialNumber=87237FF689024D94FDB49EC25C5B120D0BB94297 Validity Not Before: Nov 22 18:52:08 2024 GMT Not After : Nov 29 18:52:08 2024 GMT Subject: CN=6740d2d8-e201 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:e5:56:ce:a4:71:92:91:20:1a:69:85:85:dc: 54:85:11:19:63:77:58:c5:fd:55:a8:06:52:fe:f6: b2:3b:40:a2:1a:44:99:4b:fb:bf:a5:14:23:f4:2f: bf:48:f1:e7:16:b6:65:8a:44:ba:ac:90:82:2b:b1: ea:cb:22:52:79:40:b5:88:6f:f6:3c:4f:57:c3:69: dc:13:84:11:d9:9c:1b:8e:4b:04:cc:d7:d6:77:16: d1:dc:f3:0d:db:b0:89:7d:87:22:ff:f5:ed:84:31: 4b:56:3b:d6:e0:96:35:1e:2c:d2:8f:8b:c8:14:e0: 6b:04:6a:b2:5d:bc:22:be:7c:22:c8:7c:bc:f4:e0: 34:29:4f:ea:26:6a:73:f0:e3:1f:ab:51:88:58:42: b0:b4:53:c0:c5:a7:00:ac:07:70:51:4d:f0:ee:31: 2e:17:ce:73:d5:6a:5b:93:80:34:b8:22:31:8e:d8: 4a:bf:31:ec:2c:41:41:57:cb:56:bd:2b:96:e8:a0: b9:64:09:d6:f1:89:5a:93:7e:cb:bf:16:ff:ea:09: 6e:ce:6c:13:b0:06:77:6a:2c:08:40:be:43:e5:7d: 38:3b:33:74:1b:9d:c1:93:d6:bf:60:11:ba:22:5f: 2a:c2:27:a2:3b:de:80:7c:9c:aa:39:7e:94:a4:c3: b2:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:17:7E:B2:EF:E7:9F:F2:06:AB:87:86:3A:AF:CE:AF:1C:26:1A:1B X509v3 Authority Key Identifier: keyid:87:23:7F:F6:89:02:4D:94:FD:B4:9E:C2:5C:5B:12:0D:0B:B9:42:97 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FFA15/701F53D21D8711EAA8169B6CC4F9AE02/hyN_9okCTZT9tJ7CXFsSDQu5Qpc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hyN_9okCTZT9tJ7CXFsSDQu5Qpc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FFA15/701F53D21D8711EAA8169B6CC4F9AE02/hyN_9okCTZT9tJ7CXFsSDQu5Qpc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 74:00:ef:24:31:98:7e:4a:86:25:88:1a:23:d9:66:60:34:58: fe:74:9b:6c:47:3c:8f:f6:c0:21:d9:7a:5c:53:6a:27:b7:8b: c5:c1:54:7a:46:68:c3:39:65:c2:37:26:3f:b2:88:fb:37:5d: 63:bd:86:75:90:f7:6c:0e:50:7b:47:9a:a4:9b:f9:b6:66:c9: f4:37:c1:93:6f:a9:f8:fd:b2:a8:6e:60:cd:d7:1a:23:b8:cf: 56:19:3c:7c:12:8f:c1:03:8f:3a:a6:72:cf:c1:d3:cb:3f:37: 60:d7:b3:13:5c:da:37:24:5e:bc:0f:fc:54:12:ae:65:b0:c1: 76:6a:59:1c:32:a3:4c:94:32:26:60:3f:8a:1b:2d:07:47:a2: fa:dc:fa:70:15:b1:7b:3b:9d:f1:f4:33:d6:ce:1c:c5:28:9d: 04:58:7f:74:7e:f9:31:65:98:8d:b1:8f:bb:53:ea:a7:d6:97: 49:ce:b3:af:65:67:4c:e3:20:f4:d1:e8:d6:c2:7e:56:30:a5: c6:66:29:f8:2b:a2:fc:93:d1:a5:7a:c8:7d:68:34:02:3a:d1: 53:6e:85:55:05:6a:e1:97:ba:a8:31:ca:fa:7f:45:2d:93:0f: 6e:bc:37:dd:26:ff:d8:38:b5:b9:8b:fc:57:dd:21:cc:77:10: 94:89:ce:67 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC2swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkZBMTUxMTAvBgNVBAUTKDg3MjM3RkY2ODkwMjREOTRGREI0OUVDMjVDNUIxMjBE MEJCOTQyOTcwHhcNMjQxMTIyMTg1MjA4WhcNMjQxMTI5MTg1MjA4WjAYMRYwFAYD VQQDEw02NzQwZDJkOC1lMjAxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtOVWzqRxkpEgGmmFhdxUhREZY3dYxf1VqAZS/vayO0CiGkSZS/u/pRQj9C+/ SPHnFrZlikS6rJCCK7HqyyJSeUC1iG/2PE9Xw2ncE4QR2ZwbjksEzNfWdxbR3PMN 27CJfYci//XthDFLVjvW4JY1HizSj4vIFOBrBGqyXbwivnwiyHy89OA0KU/qJmpz 8OMfq1GIWEKwtFPAxacArAdwUU3w7jEuF85z1Wpbk4A0uCIxjthKvzHsLEFBV8tW vSuW6KC5ZAnW8Ylak37Lvxb/6gluzmwTsAZ3aiwIQL5D5X04OzN0G53Bk9a/YBG6 Il8qwieiO96AfJyqOX6UpMOyEwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFK4XfrLv 55/yBquHhjqvzq8cJhobMB8GA1UdIwQYMBaAFIcjf/aJAk2U/bSewlxbEg0LuUKX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRkExNS83MDFGNTNEMjFE ODcxMUVBQTgxNjlCNkNDNEY5QUUwMi9oeU5fOW9rQ1RaVDl0SjdDWEZzU0RRdTVR cGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2h5Tl85b2tDVFpUOXRKN0NYRnNTRFF1NVFwYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG RkExNS83MDFGNTNEMjFEODcxMUVBQTgxNjlCNkNDNEY5QUUwMi9oeU5fOW9rQ1Ra VDl0SjdDWEZzU0RRdTVRcGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB0AO8kMZh+SoYliBoj2WZgNFj+dJtsRzyP9sAh2XpcU2ont4vFwVR6 RmjDOWXCNyY/soj7N11jvYZ1kPdsDlB7R5qkm/m2Zsn0N8GTb6n4/bKobmDN1xoj uM9WGTx8Eo/BA486pnLPwdPLPzdg17MTXNo3JF68D/xUEq5lsMF2alkcMqNMlDIm YD+KGy0HR6L63PpwFbF7O53x9DPWzhzFKJ0EWH90fvkxZZiNsY+7U+qn1pdJzrOv ZWdM4yD00ejWwn5WMKXGZin4K6L8k9Glesh9aDQCOtFTboVVBWrhl7qoMcr6f0Ut kw9uvDfdJv/YOLW5i/xX3SHMdxCUic5n -----END CERTIFICATE-----Generated at Fri Nov 22 22:14:50 2024 by rpki-client on console-ams.rpki-client.org