$ rpki-client -vvf rpki.apnic.net/member_repository/A91431A6/44D890CA8EC511EB97B12074C4F9AE02/aWYanwY1V84rVDewGIk9fZ_dvtA.mft File: aWYanwY1V84rVDewGIk9fZ_dvtA.mft (raw, json) Hash identifier: hks4xnSFCw5RH7bsxALUKAC9Tz9mVU6odw7EUfzy8j0= Subject key identifier: 8A:C1:C6:4B:7E:12:DC:95:A6:29:3E:15:5D:91:3D:A3:8E:2D:23:FF Authority key identifier: 69:66:1A:9F:06:35:57:CE:2B:54:37:B0:18:89:3D:7D:9F:DD:BE:D0 Certificate issuer: /CN=A91431A6/serialNumber=69661A9F063557CE2B5437B018893D7D9FDDBED0 Certificate serial: 05E9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aWYanwY1V84rVDewGIk9fZ_dvtA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91431A6/44D890CA8EC511EB97B12074C4F9AE02/aWYanwY1V84rVDewGIk9fZ_dvtA.mft Manifest number: 05E3 Signing time: Fri 22 Nov 2024 22:27:22 +0000 Manifest this update: Fri 22 Nov 2024 22:27:21 +0000 Manifest next update: Fri 29 Nov 2024 22:27:21 +0000 Files and hashes: 1: aWYanwY1V84rVDewGIk9fZ_dvtA.crl (hash: nEn0x7myje4UHGFyJmB3s9iA8A+47vVzxWtI1qbCpvI=) 2: DDCD4C168EC611EBAB7F3476C4F9AE02.roa (hash: XgqjCFFv8OvHgcyHmr4FpMdTjHkJB/4NbQ4b1FrOS50=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91431A6/44D890CA8EC511EB97B12074C4F9AE02/aWYanwY1V84rVDewGIk9fZ_dvtA.crl rsync://rpki.apnic.net/member_repository/A91431A6/44D890CA8EC511EB97B12074C4F9AE02/aWYanwY1V84rVDewGIk9fZ_dvtA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aWYanwY1V84rVDewGIk9fZ_dvtA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1513 (0x5e9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91431A6/serialNumber=69661A9F063557CE2B5437B018893D7D9FDDBED0 Validity Not Before: Nov 22 22:27:21 2024 GMT Not After : Nov 29 22:27:21 2024 GMT Subject: CN=6741054a-bf2b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:f5:53:a4:ed:fd:2b:5f:b2:ec:59:cf:6a:0c: 40:7a:d7:d8:59:a6:ae:48:98:85:af:cf:0c:8e:d3: b0:31:dc:7c:dc:a7:ed:86:18:89:54:bb:96:0e:40: 91:56:b5:7b:fd:1f:37:f3:05:a0:0d:06:46:e4:ab: 8c:81:4a:1b:0d:31:be:0e:d0:2f:76:3d:d1:4b:ed: 19:05:e2:aa:de:17:36:b6:1b:eb:92:aa:fd:ef:49: 21:e3:cb:68:29:e1:7f:d1:a2:df:15:e1:51:a0:0c: ce:0d:7e:3f:bf:c3:16:a5:cd:8b:87:1c:37:4f:31: a1:f2:ae:2d:51:6c:da:da:e2:fb:61:6e:1f:42:ee: 71:c4:61:52:ec:56:d6:39:f2:fb:b1:5c:69:0b:28: 62:8f:45:36:76:2b:b9:a9:ed:de:37:91:d3:0f:ea: 4e:9b:94:b4:00:6b:de:0d:10:cb:a1:d0:e2:9c:8b: ff:06:85:88:92:79:0f:f1:05:12:1d:56:14:43:45: c5:3e:5a:96:b3:73:99:ff:25:07:03:a2:6d:3d:37: cc:77:a7:7e:71:69:b4:f2:55:29:78:08:03:32:ea: 9a:58:01:50:6c:37:5a:c9:a3:94:96:2c:6e:a7:8c: 87:c6:c4:3e:9e:73:8d:b3:1f:7c:d1:60:c4:6e:84: f0:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:C1:C6:4B:7E:12:DC:95:A6:29:3E:15:5D:91:3D:A3:8E:2D:23:FF X509v3 Authority Key Identifier: keyid:69:66:1A:9F:06:35:57:CE:2B:54:37:B0:18:89:3D:7D:9F:DD:BE:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91431A6/44D890CA8EC511EB97B12074C4F9AE02/aWYanwY1V84rVDewGIk9fZ_dvtA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aWYanwY1V84rVDewGIk9fZ_dvtA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91431A6/44D890CA8EC511EB97B12074C4F9AE02/aWYanwY1V84rVDewGIk9fZ_dvtA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 32:8d:d3:7f:5e:7b:f7:6e:54:66:40:6c:1c:e0:a8:8a:63:e2: 69:d0:6e:f2:2c:ba:b7:af:69:83:5f:c2:fe:3e:9f:da:12:f7: 90:32:e8:42:03:71:18:d0:84:21:a8:1d:8e:8a:25:9a:51:30: 89:23:11:9f:f0:cd:dd:95:bc:f1:0a:eb:b6:d0:a4:88:fe:64: 10:2c:87:97:b8:0c:c1:dd:37:38:53:d9:93:61:6e:c5:d2:cb: 9c:6d:50:85:ce:2e:2d:bc:43:72:70:30:5f:27:cb:7c:8d:83: 5e:11:30:68:1f:0f:0d:0e:25:e5:0f:a5:32:93:a7:c0:4c:26: c5:23:fa:07:93:0f:59:a7:95:10:52:2e:ff:2b:9c:c5:9b:b2: 5c:7a:f1:b9:0d:3f:09:fa:40:09:0b:d2:15:1b:62:97:88:3d: 0a:28:f3:7e:e8:b6:5e:a7:a6:68:09:16:45:ec:e9:aa:4d:26: 37:b4:f9:81:2c:8e:49:ee:ed:77:11:fe:ec:35:a4:ff:c5:91: 4b:b9:48:76:8b:c6:9d:c9:91:df:6e:9b:02:41:74:6f:bd:81: d5:e9:09:34:60:05:e0:10:62:f7:13:47:ae:7e:55:15:f6:fe: 2d:9f:e0:c8:b6:8b:93:27:63:15:c6:72:44:05:5c:8f:5c:8b: cd:eb:16:96 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBekwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDMxQTYxMTAvBgNVBAUTKDY5NjYxQTlGMDYzNTU3Q0UyQjU0MzdCMDE4ODkzRDdE OUZEREJFRDAwHhcNMjQxMTIyMjIyNzIxWhcNMjQxMTI5MjIyNzIxWjAYMRYwFAYD VQQDEw02NzQxMDU0YS1iZjJiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0fVTpO39K1+y7FnPagxAetfYWaauSJiFr88MjtOwMdx83KfthhiJVLuWDkCR VrV7/R838wWgDQZG5KuMgUobDTG+DtAvdj3RS+0ZBeKq3hc2thvrkqr970kh48to KeF/0aLfFeFRoAzODX4/v8MWpc2Lhxw3TzGh8q4tUWza2uL7YW4fQu5xxGFS7FbW OfL7sVxpCyhij0U2diu5qe3eN5HTD+pOm5S0AGveDRDLodDinIv/BoWIknkP8QUS HVYUQ0XFPlqWs3OZ/yUHA6JtPTfMd6d+cWm08lUpeAgDMuqaWAFQbDdayaOUlixu p4yHxsQ+nnONsx980WDEboTwUwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIrBxkt+ EtyVpik+FV2RPaOOLSP/MB8GA1UdIwQYMBaAFGlmGp8GNVfOK1Q3sBiJPX2f3b7Q MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MzFBNi80NEQ4OTBDQThF QzUxMUVCOTdCMTIwNzRDNEY5QUUwMi9hV1lhbndZMVY4NHJWRGV3R0lrOWZaX2R2 dEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FXWWFud1kxVjg0clZEZXdHSWs5ZlpfZHZ0QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 MzFBNi80NEQ4OTBDQThFQzUxMUVCOTdCMTIwNzRDNEY5QUUwMi9hV1lhbndZMVY4 NHJWRGV3R0lrOWZaX2R2dEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAyjdN/Xnv3blRmQGwc4KiKY+Jp0G7yLLq3r2mDX8L+Pp/aEveQMuhC A3EY0IQhqB2OiiWaUTCJIxGf8M3dlbzxCuu20KSI/mQQLIeXuAzB3Tc4U9mTYW7F 0sucbVCFzi4tvENycDBfJ8t8jYNeETBoHw8NDiXlD6Uyk6fATCbFI/oHkw9Zp5UQ Ui7/K5zFm7JcevG5DT8J+kAJC9IVG2KXiD0KKPN+6LZep6ZoCRZF7OmqTSY3tPmB LI5J7u13Ef7sNaT/xZFLuUh2i8adyZHfbpsCQXRvvYHV6Qk0YAXgEGL3E0euflUV 9v4tn+DItouTJ2MVxnJEBVyPXIvN6xaW -----END CERTIFICATE-----Generated at Fri Nov 22 23:39:24 2024 by rpki-client on console-fra.rpki-client.org