$ rpki-client -vvf rpki.apnic.net/member_repository/A91200F5/D9E952F45EF411E69F529C2EC4F9AE02/4RvPp2LU9ssvatCdA6lA4P6qAfg.mft File: 4RvPp2LU9ssvatCdA6lA4P6qAfg.mft (raw, json) Hash identifier: U53erVdaE1IzvR1ZlIeFuF18jYcc4a6UbehdosLRZGQ= Subject key identifier: EE:DB:3E:7C:FF:51:48:75:72:38:FC:BF:31:35:57:B1:D4:D4:FF:04 Authority key identifier: E1:1B:CF:A7:62:D4:F6:CB:2F:6A:D0:9D:03:A9:40:E0:FE:AA:01:F8 Certificate issuer: /CN=A91200F5/serialNumber=E11BCFA762D4F6CB2F6AD09D03A940E0FEAA01F8 Certificate serial: 1E7D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4RvPp2LU9ssvatCdA6lA4P6qAfg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91200F5/D9E952F45EF411E69F529C2EC4F9AE02/4RvPp2LU9ssvatCdA6lA4P6qAfg.mft Manifest number: 1E77 Signing time: Sun 24 Nov 2024 15:57:57 +0000 Manifest this update: Sun 24 Nov 2024 15:57:57 +0000 Manifest next update: Sun 01 Dec 2024 15:57:57 +0000 Files and hashes: 1: 4RvPp2LU9ssvatCdA6lA4P6qAfg.crl (hash: cklgNfvO7g4yadQ16XDy72alDknr1WrsEFrl2eNe5Tg=) 2: DB92DE200AEF11ECB7243C0FC4F9AE02.roa (hash: CB1eekjTDQ9QiOipedsLBe3aoXdOQXADQNZiMtdPABM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91200F5/D9E952F45EF411E69F529C2EC4F9AE02/4RvPp2LU9ssvatCdA6lA4P6qAfg.crl rsync://rpki.apnic.net/member_repository/A91200F5/D9E952F45EF411E69F529C2EC4F9AE02/4RvPp2LU9ssvatCdA6lA4P6qAfg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4RvPp2LU9ssvatCdA6lA4P6qAfg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Dec 2024 15:54:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7805 (0x1e7d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91200F5/serialNumber=E11BCFA762D4F6CB2F6AD09D03A940E0FEAA01F8 Validity Not Before: Nov 24 15:57:57 2024 GMT Not After : Dec 1 15:57:57 2024 GMT Subject: CN=67434d05-b2ad Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:20:77:9d:0a:5e:5c:db:dd:6d:76:23:41:32: 0b:b4:41:4c:48:4f:f6:b4:96:77:0e:ba:49:60:da: b9:41:dd:14:43:fb:68:08:b8:47:2a:05:98:54:13: b7:d5:0d:5d:82:4a:0d:92:3c:b7:74:9a:f8:4b:be: f2:37:8e:9b:ed:64:28:34:36:a2:3b:e6:98:ba:c7: dd:fe:34:49:53:1d:a9:24:23:59:f0:98:6b:da:4c: 16:a9:40:c6:71:fa:ae:97:f8:53:52:49:e8:71:bd: 3a:0b:25:7a:24:aa:8a:97:c2:e4:07:9c:cd:42:2a: 74:bd:44:9f:27:9a:71:f9:4c:75:25:bd:97:c9:08: cb:0a:b4:cf:d8:8a:1c:1c:55:5a:80:dc:e3:73:0b: 6f:76:5a:36:bf:9b:0b:e3:00:f6:ca:45:b7:50:8c: 8a:20:8c:b3:d2:93:b8:18:44:10:1a:11:c8:36:51: 99:bd:fa:ef:4e:58:a4:9a:d2:5f:6a:17:1f:26:73: fa:5f:19:96:10:2f:9e:e6:2f:83:4e:aa:7c:9b:06: 1b:5a:fe:93:a4:45:32:70:51:d3:96:f8:f9:76:fa: 48:43:e5:2e:73:aa:81:58:44:52:ed:4c:81:8f:29: 83:e8:17:31:9d:86:e1:21:b1:94:6d:17:ad:a3:82: bc:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:DB:3E:7C:FF:51:48:75:72:38:FC:BF:31:35:57:B1:D4:D4:FF:04 X509v3 Authority Key Identifier: keyid:E1:1B:CF:A7:62:D4:F6:CB:2F:6A:D0:9D:03:A9:40:E0:FE:AA:01:F8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91200F5/D9E952F45EF411E69F529C2EC4F9AE02/4RvPp2LU9ssvatCdA6lA4P6qAfg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4RvPp2LU9ssvatCdA6lA4P6qAfg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91200F5/D9E952F45EF411E69F529C2EC4F9AE02/4RvPp2LU9ssvatCdA6lA4P6qAfg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 78:59:3e:b9:95:47:ce:92:81:af:b6:61:a0:12:78:66:f8:68: f7:25:52:14:2c:df:53:27:3f:42:03:d5:f3:ee:d0:1b:f6:2b: 36:44:3c:e2:0d:e5:a9:8f:02:b6:e7:33:64:11:22:c4:da:3d: db:62:b8:8b:8b:f1:ad:9f:43:6d:95:91:a4:e3:4a:b1:59:35: 1e:d7:82:07:e7:da:5a:7f:ef:51:d7:22:34:c3:2e:fd:c4:33: 2b:35:01:95:b4:8c:95:b9:61:99:f6:c1:39:04:66:b2:d6:a9: 33:28:33:ae:6a:dc:d7:0a:07:16:e5:d6:27:fc:bc:94:da:f1: 24:c9:42:6a:2b:ab:0b:3c:5d:5e:8f:d3:89:fd:4a:4a:08:7a: b0:dc:93:f7:67:99:c4:27:6d:49:17:63:57:7d:a2:4c:ce:b6: 5d:82:9d:52:3b:67:04:30:83:84:61:3d:b0:8c:c5:09:14:35: 6d:85:73:a8:9c:db:e4:95:0d:f4:88:8d:0d:11:81:dc:a5:7e: b7:d5:8c:62:31:66:ae:31:76:29:2e:9a:cf:b0:9b:e8:f7:61: bc:f4:95:bc:bb:dd:ef:84:bd:2a:3a:da:67:59:8c:d6:57:2e: 31:53:35:fc:d8:96:fb:6b:fa:5e:04:ba:82:81:1e:e7:87:a7: 7b:f2:2c:79 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICHn0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjAwRjUxMTAvBgNVBAUTKEUxMUJDRkE3NjJENEY2Q0IyRjZBRDA5RDAzQTk0MEUw RkVBQTAxRjgwHhcNMjQxMTI0MTU1NzU3WhcNMjQxMjAxMTU1NzU3WjAYMRYwFAYD VQQDEw02NzQzNGQwNS1iMmFkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlCB3nQpeXNvdbXYjQTILtEFMSE/2tJZ3DrpJYNq5Qd0UQ/toCLhHKgWYVBO3 1Q1dgkoNkjy3dJr4S77yN46b7WQoNDaiO+aYusfd/jRJUx2pJCNZ8Jhr2kwWqUDG cfqul/hTUknocb06CyV6JKqKl8LkB5zNQip0vUSfJ5px+Ux1Jb2XyQjLCrTP2Ioc HFVagNzjcwtvdlo2v5sL4wD2ykW3UIyKIIyz0pO4GEQQGhHINlGZvfrvTlikmtJf ahcfJnP6XxmWEC+e5i+DTqp8mwYbWv6TpEUycFHTlvj5dvpIQ+Uuc6qBWERS7UyB jymD6BcxnYbhIbGUbReto4K8pQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFO7bPnz/ UUh1cjj8vzE1V7HU1P8EMB8GA1UdIwQYMBaAFOEbz6di1PbLL2rQnQOpQOD+qgH4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMDBGNS9EOUU5NTJGNDVF RjQxMUU2OUY1MjlDMkVDNEY5QUUwMi80UnZQcDJMVTlzc3ZhdENkQTZsQTRQNnFB ZmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRSdlBwMkxVOXNzdmF0Q2RBNmxBNFA2cUFmZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MDBGNS9EOUU5NTJGNDVFRjQxMUU2OUY1MjlDMkVDNEY5QUUwMi80UnZQcDJMVTlz c3ZhdENkQTZsQTRQNnFBZmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB4WT65lUfOkoGvtmGgEnhm+Gj3JVIULN9TJz9CA9Xz7tAb9is2RDzi DeWpjwK25zNkESLE2j3bYriLi/Gtn0NtlZGk40qxWTUe14IH59paf+9R1yI0wy79 xDMrNQGVtIyVuWGZ9sE5BGay1qkzKDOuatzXCgcW5dYn/LyU2vEkyUJqK6sLPF1e j9OJ/UpKCHqw3JP3Z5nEJ21JF2NXfaJMzrZdgp1SO2cEMIOEYT2wjMUJFDVthXOo nNvklQ30iI0NEYHcpX631YxiMWauMXYpLprPsJvo92G89JW8u93vhL0qOtpnWYzW Vy4xUzX82Jb7a/peBLqCgR7nh6d78ix5 -----END CERTIFICATE-----Generated at Sun Nov 24 17:19:57 2024 by rpki-client on console-fra.rpki-client.org