$ rpki-client -vvf rpki.apnic.net/member_repository/A91128B5/3EBCD1DAB96B11EBB16EEF2CC4F9AE02/ka7pYNxB_5jtGzcjNDFzk4Em3J8.mft File: ka7pYNxB_5jtGzcjNDFzk4Em3J8.mft (raw, json) Hash identifier: pELBv/uQVZL2/Rv5YtxF7gpYKcK4LTTzeOKU3RVykxk= Subject key identifier: C7:4A:13:88:FD:99:85:90:17:E1:2B:6E:8C:2B:39:85:69:52:3A:BD Authority key identifier: 91:AE:E9:60:DC:41:FF:98:ED:1B:37:23:34:31:73:93:81:26:DC:9F Certificate issuer: /CN=A91128B5/serialNumber=91AEE960DC41FF98ED1B3723343173938126DC9F Certificate serial: 057B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ka7pYNxB_5jtGzcjNDFzk4Em3J8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91128B5/3EBCD1DAB96B11EBB16EEF2CC4F9AE02/ka7pYNxB_5jtGzcjNDFzk4Em3J8.mft Manifest number: 0577 Signing time: Fri 22 Nov 2024 22:51:00 +0000 Manifest this update: Fri 22 Nov 2024 22:50:59 +0000 Manifest next update: Fri 29 Nov 2024 22:50:59 +0000 Files and hashes: 1: ka7pYNxB_5jtGzcjNDFzk4Em3J8.crl (hash: QeW+zj0pR+ZXxKVYqZ/9ypqsDa3rVCp283/i2P9LENU=) 2: 74BDB7D0B96C11EB956C1D2DC4F9AE02.roa (hash: GcFR8h/iT3o9szKNg9QC0T/IhGSts82BlmqYJleuoFI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91128B5/3EBCD1DAB96B11EBB16EEF2CC4F9AE02/ka7pYNxB_5jtGzcjNDFzk4Em3J8.crl rsync://rpki.apnic.net/member_repository/A91128B5/3EBCD1DAB96B11EBB16EEF2CC4F9AE02/ka7pYNxB_5jtGzcjNDFzk4Em3J8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ka7pYNxB_5jtGzcjNDFzk4Em3J8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1403 (0x57b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91128B5/serialNumber=91AEE960DC41FF98ED1B3723343173938126DC9F Validity Not Before: Nov 22 22:50:59 2024 GMT Not After : Nov 29 22:50:59 2024 GMT Subject: CN=67410ad3-82df Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:34:3e:d5:f1:aa:cf:62:92:1e:9a:12:c4:3d: 8b:21:db:ae:41:28:df:10:64:0a:e0:ab:86:a6:ed: 1b:6f:4d:8b:4f:a7:c4:d8:bc:2f:a6:fd:73:88:2f: 11:36:ec:e7:57:58:0e:2a:3d:ae:2d:79:4e:44:16: 87:cf:b1:95:df:99:5b:d9:71:ec:c4:1a:88:75:e9: 11:e6:f2:50:e0:99:40:c1:0f:4f:66:08:86:90:b9: 0d:19:a4:c2:5f:67:7b:e3:4a:04:e0:d9:59:e5:33: 47:3c:e1:e0:e6:a3:c8:27:cf:67:1d:63:c5:b3:aa: d8:fd:67:0b:aa:e6:f3:99:30:01:77:d0:2c:ee:2b: 34:89:60:9f:ef:e6:c3:62:8c:97:98:35:2a:c9:cd: 6a:47:83:90:80:84:ed:2a:f8:41:11:7b:a8:45:5b: a1:ae:27:c3:fa:49:ec:08:3d:03:b6:85:d4:0d:41: 41:c0:5a:4f:a6:b8:04:0f:4d:f2:a8:0a:4e:d9:d5: af:0a:df:12:64:16:b7:51:09:d3:18:34:2b:9b:6d: e8:fa:da:29:4c:a4:4d:e1:5d:61:62:e2:08:9b:34: 08:dc:ad:1a:21:d9:fd:ba:c1:bc:21:1d:ca:27:e0: fc:e0:53:f3:51:e6:fc:8e:17:8a:08:8c:aa:48:f3: 56:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:4A:13:88:FD:99:85:90:17:E1:2B:6E:8C:2B:39:85:69:52:3A:BD X509v3 Authority Key Identifier: keyid:91:AE:E9:60:DC:41:FF:98:ED:1B:37:23:34:31:73:93:81:26:DC:9F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91128B5/3EBCD1DAB96B11EBB16EEF2CC4F9AE02/ka7pYNxB_5jtGzcjNDFzk4Em3J8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ka7pYNxB_5jtGzcjNDFzk4Em3J8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91128B5/3EBCD1DAB96B11EBB16EEF2CC4F9AE02/ka7pYNxB_5jtGzcjNDFzk4Em3J8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 93:13:89:ee:ce:73:70:09:2c:bf:55:5a:9f:e0:b2:7c:ac:f9: 13:29:33:da:65:b4:fa:ed:46:07:c5:de:d8:b3:84:05:e0:3d: 12:e3:0e:e5:cb:43:dc:6c:66:c9:b7:e5:7c:df:5e:05:48:69: f8:1e:03:9e:46:2a:55:fb:1a:bb:94:ff:bf:b8:6e:a1:5c:d8: 67:8e:fa:50:89:e9:84:e9:e6:33:92:26:27:9e:9c:e5:10:3f: 08:86:7a:f1:f4:6c:4b:b1:b9:a3:3d:5a:83:35:51:43:8b:ac: 4a:e1:58:fa:b7:5a:1d:84:fe:57:a7:d3:89:50:34:21:53:15: ce:79:03:37:2e:d0:55:da:2e:61:d3:92:c3:77:b7:37:5c:e4: 1b:b7:df:0a:77:89:b6:76:35:2f:b6:57:a0:3f:d5:5c:b7:52: 2d:d5:3e:86:8c:25:81:46:78:1e:ce:8f:91:c9:4f:f1:72:a2: a4:4a:d7:f5:99:b2:e6:39:12:9f:80:12:e4:77:bd:60:94:4b: 34:10:92:1a:4c:12:3b:e8:5e:ff:ab:63:07:5f:55:a5:de:4f: 94:e5:75:5b:87:87:c0:c3:5d:b7:79:d1:67:1d:29:92:1a:b9: b9:e3:de:58:12:31:fe:7b:dd:6b:85:9a:50:56:b8:28:4c:e1: ca:c3:52:92 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBXswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTI4QjUxMTAvBgNVBAUTKDkxQUVFOTYwREM0MUZGOThFRDFCMzcyMzM0MzE3Mzkz ODEyNkRDOUYwHhcNMjQxMTIyMjI1MDU5WhcNMjQxMTI5MjI1MDU5WjAYMRYwFAYD VQQDEw02NzQxMGFkMy04MmRmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxzQ+1fGqz2KSHpoSxD2LIduuQSjfEGQK4KuGpu0bb02LT6fE2Lwvpv1ziC8R NuznV1gOKj2uLXlORBaHz7GV35lb2XHsxBqIdekR5vJQ4JlAwQ9PZgiGkLkNGaTC X2d740oE4NlZ5TNHPOHg5qPIJ89nHWPFs6rY/WcLqubzmTABd9As7is0iWCf7+bD YoyXmDUqyc1qR4OQgITtKvhBEXuoRVuhrifD+knsCD0DtoXUDUFBwFpPprgED03y qApO2dWvCt8SZBa3UQnTGDQrm23o+topTKRN4V1hYuIImzQI3K0aIdn9usG8IR3K J+D84FPzUeb8jheKCIyqSPNWdwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMdKE4j9 mYWQF+ErbowrOYVpUjq9MB8GA1UdIwQYMBaAFJGu6WDcQf+Y7Rs3IzQxc5OBJtyf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMjhCNS8zRUJDRDFEQUI5 NkIxMUVCQjE2RUVGMkNDNEY5QUUwMi9rYTdwWU54Ql81anRHemNqTkRGems0RW0z SjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2thN3BZTnhCXzVqdEd6Y2pOREZ6azRFbTNKOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MjhCNS8zRUJDRDFEQUI5NkIxMUVCQjE2RUVGMkNDNEY5QUUwMi9rYTdwWU54Ql81 anRHemNqTkRGems0RW0zSjgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCTE4nuznNwCSy/VVqf4LJ8rPkTKTPaZbT67UYHxd7Ys4QF4D0S4w7l y0PcbGbJt+V8314FSGn4HgOeRipV+xq7lP+/uG6hXNhnjvpQiemE6eYzkiYnnpzl ED8Ihnrx9GxLsbmjPVqDNVFDi6xK4Vj6t1odhP5Xp9OJUDQhUxXOeQM3LtBV2i5h 05LDd7c3XOQbt98Kd4m2djUvtlegP9Vct1It1T6GjCWBRngezo+RyU/xcqKkStf1 mbLmORKfgBLkd71glEs0EJIaTBI76F7/q2MHX1Wl3k+U5XVbh4fAw123edFnHSmS Grm5495YEjH+e91rhZpQVrgoTOHKw1KS -----END CERTIFICATE-----Generated at Fri Nov 22 23:39:22 2024 by rpki-client on console-fra.rpki-client.org