$ rpki-client -vvf rpki.apnic.net/member_repository/A9136F59/5772AFBEF84F11ECA2923952C4F9AE02/91XB4Q_ErmiS0krLh4LX5cAEGLA.mft File: 91XB4Q_ErmiS0krLh4LX5cAEGLA.mft (raw, json) Hash identifier: ndYakiwoTA45C8rNE5PkxOhTl0anpXU2rQPxarFgXyQ= Subject key identifier: FF:2C:AE:15:53:05:3D:C5:75:50:4B:E3:5A:92:0C:D8:2D:BE:CF:6A Authority key identifier: F7:55:C1:E1:0F:C4:AE:68:92:D2:4A:CB:87:82:D7:E5:C0:04:18:B0 Certificate issuer: /CN=A9136F59/serialNumber=F755C1E10FC4AE6892D24ACB8782D7E5C00418B0 Certificate serial: 0251 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/91XB4Q_ErmiS0krLh4LX5cAEGLA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9136F59/5772AFBEF84F11ECA2923952C4F9AE02/91XB4Q_ErmiS0krLh4LX5cAEGLA.mft Manifest number: 024E Signing time: Sat 23 Nov 2024 01:18:05 +0000 Manifest this update: Sat 23 Nov 2024 01:18:04 +0000 Manifest next update: Sat 30 Nov 2024 01:18:04 +0000 Files and hashes: 1: 91XB4Q_ErmiS0krLh4LX5cAEGLA.crl (hash: sjmhCiJId1DQwkkIoJE469g+AAJJI5RQCJXTf5kZLOI=) 2: ED0C111CF8F611ECB6DF8835C4F9AE02.roa (hash: wYUBzooVrEbT6ZXl38oQZE+9xL3AYMS5g0m/JK1vkiQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9136F59/5772AFBEF84F11ECA2923952C4F9AE02/91XB4Q_ErmiS0krLh4LX5cAEGLA.crl rsync://rpki.apnic.net/member_repository/A9136F59/5772AFBEF84F11ECA2923952C4F9AE02/91XB4Q_ErmiS0krLh4LX5cAEGLA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/91XB4Q_ErmiS0krLh4LX5cAEGLA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 593 (0x251) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9136F59/serialNumber=F755C1E10FC4AE6892D24ACB8782D7E5C00418B0 Validity Not Before: Nov 23 01:18:04 2024 GMT Not After : Nov 30 01:18:04 2024 GMT Subject: CN=67412d4d-7c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:41:93:f3:c4:39:8e:54:f1:50:04:1e:63:34: 9f:d6:a7:35:88:a3:0e:e0:e6:77:bb:97:c5:7c:8f: eb:fd:c4:6e:c3:59:ac:79:cb:07:08:96:83:95:52: fd:ef:5e:d5:05:44:8d:92:75:60:e9:d5:da:36:7b: db:dd:7b:05:80:97:53:5a:79:10:84:31:98:27:d5: d3:d5:50:fe:d9:9e:0c:ee:b9:14:a0:21:c4:d8:f1: e4:20:58:bb:9a:be:a2:56:49:bc:50:70:95:7f:31: 36:7e:82:57:8f:63:c4:be:5c:a2:8c:b1:82:16:8e: 27:0d:e6:8d:94:33:00:27:a4:21:65:65:c4:42:76: 17:8d:5a:c4:9f:39:a6:d2:7c:18:b4:da:07:a9:79: 19:ad:29:db:6f:9c:81:a5:ae:59:c2:6e:24:04:67: 99:e2:b6:aa:17:d8:fc:95:6e:86:a3:1f:c1:54:bf: ef:66:03:3b:b3:79:35:9e:0b:1f:48:5f:6a:c5:29: 85:a7:c3:09:a9:4f:97:d6:e9:ae:7a:33:31:74:b3: 3f:ca:df:c1:ad:5e:ea:da:d4:3d:5a:04:a1:a1:ad: 75:82:8d:69:9d:1e:6e:af:58:b1:6b:32:f4:3a:29: 78:47:ee:d2:d5:8b:e0:e2:3a:6b:49:93:61:e5:e0: b7:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:2C:AE:15:53:05:3D:C5:75:50:4B:E3:5A:92:0C:D8:2D:BE:CF:6A X509v3 Authority Key Identifier: keyid:F7:55:C1:E1:0F:C4:AE:68:92:D2:4A:CB:87:82:D7:E5:C0:04:18:B0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9136F59/5772AFBEF84F11ECA2923952C4F9AE02/91XB4Q_ErmiS0krLh4LX5cAEGLA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/91XB4Q_ErmiS0krLh4LX5cAEGLA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9136F59/5772AFBEF84F11ECA2923952C4F9AE02/91XB4Q_ErmiS0krLh4LX5cAEGLA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 95:67:9d:e8:88:94:b2:b0:2a:df:55:c2:41:91:f9:cb:eb:d1: e1:d6:b0:46:07:0d:93:57:31:5b:96:91:fe:a0:31:ca:75:5c: fd:81:d4:25:25:eb:b7:55:2e:4c:b9:3f:68:ca:ef:2a:42:b4: 76:63:a3:04:c8:66:e9:a3:74:e1:f4:58:91:af:d5:92:ea:c2: 00:58:c3:bc:dd:8f:14:36:3e:9e:3e:d2:1c:39:ae:53:4e:79: 20:ee:e7:fe:ef:10:e1:65:f1:7f:a2:f3:4a:5f:b7:99:6d:68: 27:64:84:e2:5f:fb:c8:70:a5:e1:00:e3:1c:5c:18:40:02:8d: 1f:0d:a9:76:fc:c7:d3:02:b7:57:3f:28:f4:d3:41:4e:15:67: c2:f9:b3:06:60:5f:45:19:5f:99:66:f2:d1:61:e9:81:0b:76: 19:10:27:d0:11:a6:1a:7d:ee:9d:7c:ca:e4:fe:46:c6:40:82: af:b1:4a:41:dd:12:25:a0:e3:d5:d6:60:b0:ca:fa:67:e0:28: 70:25:b3:5b:00:ad:0f:39:7b:d9:c6:3b:95:7f:1c:e3:4d:d1: c1:ed:b4:81:c8:6e:48:65:7e:6b:06:b3:a9:5c:9e:f6:23:ba: 30:da:1e:62:16:22:52:55:83:bc:22:48:0a:83:d9:0d:bc:21: 29:f6:63:84 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAlEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzZGNTkxMTAvBgNVBAUTKEY3NTVDMUUxMEZDNEFFNjg5MkQyNEFDQjg3ODJEN0U1 QzAwNDE4QjAwHhcNMjQxMTIzMDExODA0WhcNMjQxMTMwMDExODA0WjAYMRYwFAYD VQQDEw02NzQxMmQ0ZC03YzYwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2kGT88Q5jlTxUAQeYzSf1qc1iKMO4OZ3u5fFfI/r/cRuw1msecsHCJaDlVL9 717VBUSNknVg6dXaNnvb3XsFgJdTWnkQhDGYJ9XT1VD+2Z4M7rkUoCHE2PHkIFi7 mr6iVkm8UHCVfzE2foJXj2PEvlyijLGCFo4nDeaNlDMAJ6QhZWXEQnYXjVrEnzmm 0nwYtNoHqXkZrSnbb5yBpa5Zwm4kBGeZ4raqF9j8lW6Gox/BVL/vZgM7s3k1ngsf SF9qxSmFp8MJqU+X1umuejMxdLM/yt/BrV7q2tQ9WgShoa11go1pnR5ur1ixazL0 Oil4R+7S1Yvg4jprSZNh5eC3lQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFP8srhVT BT3FdVBL41qSDNgtvs9qMB8GA1UdIwQYMBaAFPdVweEPxK5oktJKy4eC1+XABBiw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNkY1OS81NzcyQUZCRUY4 NEYxMUVDQTI5MjM5NTJDNEY5QUUwMi85MVhCNFFfRXJtaVMwa3JMaDRMWDVjQUVH TEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzkxWEI0UV9Fcm1pUzBrckxoNExYNWNBRUdMQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NkY1OS81NzcyQUZCRUY4NEYxMUVDQTI5MjM5NTJDNEY5QUUwMi85MVhCNFFfRXJt aVMwa3JMaDRMWDVjQUVHTEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCVZ53oiJSysCrfVcJBkfnL69Hh1rBGBw2TVzFblpH+oDHKdVz9gdQl Jeu3VS5MuT9oyu8qQrR2Y6MEyGbpo3Th9FiRr9WS6sIAWMO83Y8UNj6ePtIcOa5T Tnkg7uf+7xDhZfF/ovNKX7eZbWgnZITiX/vIcKXhAOMcXBhAAo0fDal2/MfTArdX Pyj000FOFWfC+bMGYF9FGV+ZZvLRYemBC3YZECfQEaYafe6dfMrk/kbGQIKvsUpB 3RIloOPV1mCwyvpn4ChwJbNbAK0POXvZxjuVfxzjTdHB7bSByG5IZX5rBrOpXJ72 I7ow2h5iFiJSVYO8IkgKg9kNvCEp9mOE -----END CERTIFICATE-----Generated at Sat Nov 23 02:33:34 2024 by rpki-client on console-fra.rpki-client.org