$ rpki-client -vvf rpki.apnic.net/member_repository/A91127C1/534472CC83B911EA852A1576C4F9AE02/VAR9J873NG9Bde-sc0SUrbsFe1U.mft File: VAR9J873NG9Bde-sc0SUrbsFe1U.mft (raw, json) Hash identifier: u2fzuAMQ20dgvpdqcu0nXGCEdSujBT+E8PwnlLacuZE= Subject key identifier: 70:F8:06:D6:A2:BB:B1:8B:F9:C0:13:C6:3A:B7:E7:AE:32:74:7B:BC Authority key identifier: 54:04:7D:27:CE:F7:34:6F:41:75:EF:AC:73:44:94:AD:BB:05:7B:55 Certificate issuer: /CN=A91127C1/serialNumber=54047D27CEF7346F4175EFAC734494ADBB057B55 Certificate serial: 0965 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VAR9J873NG9Bde-sc0SUrbsFe1U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91127C1/534472CC83B911EA852A1576C4F9AE02/VAR9J873NG9Bde-sc0SUrbsFe1U.mft Manifest number: 095E Signing time: Fri 22 Nov 2024 19:57:21 +0000 Manifest this update: Fri 22 Nov 2024 19:57:20 +0000 Manifest next update: Fri 29 Nov 2024 19:57:20 +0000 Files and hashes: 1: VAR9J873NG9Bde-sc0SUrbsFe1U.crl (hash: 1TosHBuwilWh1qzmyRu1eWwo0JbowBuaxpBWLgvFahY=) 2: 3492D2F083BA11EA8728F076C4F9AE02.roa (hash: KDJ+ohVUY2aGK5rtHUQLiPRKWsZuV9h/W6r/Y+qQ0VM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91127C1/534472CC83B911EA852A1576C4F9AE02/VAR9J873NG9Bde-sc0SUrbsFe1U.crl rsync://rpki.apnic.net/member_repository/A91127C1/534472CC83B911EA852A1576C4F9AE02/VAR9J873NG9Bde-sc0SUrbsFe1U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VAR9J873NG9Bde-sc0SUrbsFe1U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 19:56:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2405 (0x965) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91127C1/serialNumber=54047D27CEF7346F4175EFAC734494ADBB057B55 Validity Not Before: Nov 22 19:57:20 2024 GMT Not After : Nov 29 19:57:20 2024 GMT Subject: CN=6740e221-ee40 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:77:0c:dd:d9:3c:15:0b:39:e2:b6:50:66:e2: a2:46:43:02:69:de:1d:b3:fd:36:83:55:d2:ec:3b: 5b:4d:2e:6e:90:61:8f:50:4c:15:10:1b:ca:e0:3e: a7:19:c0:7f:55:4d:3f:0c:0c:46:9e:92:5d:fd:62: f7:a3:82:c6:15:13:37:8b:82:46:3a:96:10:18:36: 8a:b9:3d:38:37:3b:9f:fa:f4:e5:0f:77:69:71:29: 14:2a:75:d8:6c:32:15:d6:93:5d:34:b8:90:ce:a1: 1e:8e:57:fa:96:37:98:78:b3:b7:9e:16:b0:42:07: 7e:6f:27:29:93:91:ae:b0:f9:70:1c:62:d4:7c:ba: b2:96:da:86:e8:ca:c6:99:1c:40:f2:09:73:77:a7: 5f:ce:7d:ad:f4:b6:75:94:04:92:a7:f2:10:f3:bc: d6:17:2b:37:6f:3c:05:82:15:cf:ed:77:f9:12:53: 6a:88:15:bb:be:1e:1d:7c:ec:75:de:c3:d2:4d:ef: f2:29:1b:f8:7f:ff:8b:94:98:bb:1c:a5:3d:24:fc: 11:87:1f:86:cc:19:57:66:20:74:08:5b:ce:e8:f8: 50:88:6f:0e:12:d3:7a:32:51:36:c3:41:90:2d:15: 32:c6:f5:e9:72:c3:54:84:c2:a6:a2:1d:0d:0c:78: 34:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:F8:06:D6:A2:BB:B1:8B:F9:C0:13:C6:3A:B7:E7:AE:32:74:7B:BC X509v3 Authority Key Identifier: keyid:54:04:7D:27:CE:F7:34:6F:41:75:EF:AC:73:44:94:AD:BB:05:7B:55 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91127C1/534472CC83B911EA852A1576C4F9AE02/VAR9J873NG9Bde-sc0SUrbsFe1U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VAR9J873NG9Bde-sc0SUrbsFe1U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91127C1/534472CC83B911EA852A1576C4F9AE02/VAR9J873NG9Bde-sc0SUrbsFe1U.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 07:15:1c:2e:6d:74:ee:24:f6:d0:62:59:5a:5c:19:bb:87:e5: a3:4f:5a:1a:c5:d9:95:5e:57:32:89:c4:5a:39:b9:76:d9:41: 82:f4:0a:aa:de:79:6a:c2:57:90:33:f4:5c:65:3f:1f:44:f5: 43:bc:6a:a1:5e:77:dd:5f:bb:5b:48:b2:a4:2e:0a:80:52:4e: 35:ec:dc:01:4f:49:94:93:f6:03:f7:c4:dc:f2:59:6f:6b:58: 0e:02:67:7e:e5:f1:d4:a1:da:ec:78:7a:a0:63:60:7b:5e:bb: 19:f1:8c:69:03:47:15:9d:f7:d5:13:80:3a:1a:6e:0a:5f:2a: 08:46:96:b1:9c:4b:d1:73:13:23:cb:f2:e0:10:cd:ed:64:94: 8d:0d:fb:ce:b1:07:0d:9d:dc:d6:65:01:6e:18:a3:fe:f1:14: 63:d3:6a:ac:78:ad:e5:ce:7c:84:86:9e:17:c9:21:f3:6a:4d: ac:5e:5e:ae:8c:b2:11:95:d3:1a:57:f5:92:47:14:ed:42:89: 8b:0b:47:02:2c:97:75:77:aa:07:35:32:39:c7:72:5b:b6:5f: 79:a2:6d:ea:e9:c7:04:3f:31:23:24:4a:70:cd:c7:47:6d:f0: 1b:dc:78:56:6d:77:1f:75:48:5f:29:dd:53:d8:4b:83:06:73: 6b:ce:f0:04 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCWUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTI3QzExMTAvBgNVBAUTKDU0MDQ3RDI3Q0VGNzM0NkY0MTc1RUZBQzczNDQ5NEFE QkIwNTdCNTUwHhcNMjQxMTIyMTk1NzIwWhcNMjQxMTI5MTk1NzIwWjAYMRYwFAYD VQQDEw02NzQwZTIyMS1lZTQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAk3cM3dk8FQs54rZQZuKiRkMCad4ds/02g1XS7DtbTS5ukGGPUEwVEBvK4D6n GcB/VU0/DAxGnpJd/WL3o4LGFRM3i4JGOpYQGDaKuT04Nzuf+vTlD3dpcSkUKnXY bDIV1pNdNLiQzqEejlf6ljeYeLO3nhawQgd+bycpk5GusPlwHGLUfLqyltqG6MrG mRxA8glzd6dfzn2t9LZ1lASSp/IQ87zWFys3bzwFghXP7Xf5ElNqiBW7vh4dfOx1 3sPSTe/yKRv4f/+LlJi7HKU9JPwRhx+GzBlXZiB0CFvO6PhQiG8OEtN6MlE2w0GQ LRUyxvXpcsNUhMKmoh0NDHg0cQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHD4Btai u7GL+cATxjq3564ydHu8MB8GA1UdIwQYMBaAFFQEfSfO9zRvQXXvrHNElK27BXtV MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMjdDMS81MzQ0NzJDQzgz QjkxMUVBODUyQTE1NzZDNEY5QUUwMi9WQVI5Sjg3M05HOUJkZS1zYzBTVXJic0Zl MVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1ZBUjlKODczTkc5QmRlLXNjMFNVcmJzRmUxVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MjdDMS81MzQ0NzJDQzgzQjkxMUVBODUyQTE1NzZDNEY5QUUwMi9WQVI5Sjg3M05H OUJkZS1zYzBTVXJic0ZlMVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAHFRwubXTuJPbQYllaXBm7h+WjT1oaxdmVXlcyicRaObl22UGC9Aqq 3nlqwleQM/RcZT8fRPVDvGqhXnfdX7tbSLKkLgqAUk417NwBT0mUk/YD98Tc8llv a1gOAmd+5fHUodrseHqgY2B7XrsZ8YxpA0cVnffVE4A6Gm4KXyoIRpaxnEvRcxMj y/LgEM3tZJSNDfvOsQcNndzWZQFuGKP+8RRj02qseK3lznyEhp4XySHzak2sXl6u jLIRldMaV/WSRxTtQomLC0cCLJd1d6oHNTI5x3Jbtl95om3q6ccEPzEjJEpwzcdH bfAb3HhWbXcfdUhfKd1T2EuDBnNrzvAE -----END CERTIFICATE-----Generated at Fri Nov 22 21:05:26 2024 by rpki-client on console-fra.rpki-client.org