$ rpki-client -vvf rpki.apnic.net/member_repository/A91722A3/C02D85DE2B9B11EA972CDF46C4F9AE02/cIW1tFSazbW2wnBMhbp4h2D4iic.mft File: cIW1tFSazbW2wnBMhbp4h2D4iic.mft (raw, json) Hash identifier: k9jUV7/GmlniAMyAt8NpbnXu9Bz/XrxsmP4e9T98NWY= Subject key identifier: D4:3A:8A:2A:2B:22:14:29:28:36:F1:12:F6:D1:F2:C0:70:FE:CA:66 Authority key identifier: 70:85:B5:B4:54:9A:CD:B5:B6:C2:70:4C:85:BA:78:87:60:F8:8A:27 Certificate issuer: /CN=A91722A3/serialNumber=7085B5B4549ACDB5B6C2704C85BA788760F88A27 Certificate serial: 0B21 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cIW1tFSazbW2wnBMhbp4h2D4iic.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91722A3/C02D85DE2B9B11EA972CDF46C4F9AE02/cIW1tFSazbW2wnBMhbp4h2D4iic.mft Manifest number: 0B1B Signing time: Fri 22 Nov 2024 19:00:56 +0000 Manifest this update: Fri 22 Nov 2024 19:00:55 +0000 Manifest next update: Fri 29 Nov 2024 19:00:55 +0000 Files and hashes: 1: cIW1tFSazbW2wnBMhbp4h2D4iic.crl (hash: +mOfnQguaWMz9hy+kZTiaHbAyYNbOLAhLkXt/l/q4Y0=) 2: 002DDDC22B9D11EA92F3094CC4F9AE02.roa (hash: QZ3wK9JvZw5jGFht0yCLYyrcYMQS8ULZWSvBoaszAK8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91722A3/C02D85DE2B9B11EA972CDF46C4F9AE02/cIW1tFSazbW2wnBMhbp4h2D4iic.crl rsync://rpki.apnic.net/member_repository/A91722A3/C02D85DE2B9B11EA972CDF46C4F9AE02/cIW1tFSazbW2wnBMhbp4h2D4iic.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cIW1tFSazbW2wnBMhbp4h2D4iic.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 18:50:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2849 (0xb21) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91722A3/serialNumber=7085B5B4549ACDB5B6C2704C85BA788760F88A27 Validity Not Before: Nov 22 19:00:55 2024 GMT Not After : Nov 29 19:00:55 2024 GMT Subject: CN=6740d4e8-ed69 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:68:5d:cc:6a:2f:4f:cf:cc:62:4c:d3:5f:25: 06:47:11:43:57:c6:18:06:eb:14:79:33:85:36:59: 7d:f1:c0:a8:f6:d1:eb:9c:88:46:cc:b5:62:26:8c: 9a:e0:b9:eb:bf:50:29:2f:eb:56:74:82:92:a1:8e: cc:18:2c:26:c5:73:f6:0d:cc:8f:29:db:63:54:26: ec:78:28:c1:aa:ff:da:3a:c2:b8:4d:8e:f4:d5:d6: fa:cd:45:8b:41:e1:e4:c6:30:34:9f:d3:6b:97:b4: ba:38:67:38:31:3e:c9:85:b4:6b:02:ec:bc:b2:fe: 57:a1:cc:fd:6a:68:3f:71:af:95:ab:53:6f:7b:0c: f5:38:22:ce:7f:34:41:70:8b:34:93:31:df:f9:83: 36:be:4a:7c:14:58:d8:1a:01:68:55:fb:75:60:92: 82:da:8d:f1:d2:62:c3:be:fe:48:74:ec:17:11:87: f0:03:9c:71:dd:09:78:87:83:cb:dd:5d:b7:a7:b0: 6c:0f:c1:02:95:73:42:fc:6e:12:59:2e:4f:4b:09: 7a:69:c3:4e:f8:a3:ca:fc:3b:3f:32:3b:91:77:43: f3:57:0d:75:11:0e:34:2b:fc:ef:98:41:7e:be:b0: 76:7d:17:0e:49:fe:33:39:d1:f3:46:03:ea:a4:75: d9:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:3A:8A:2A:2B:22:14:29:28:36:F1:12:F6:D1:F2:C0:70:FE:CA:66 X509v3 Authority Key Identifier: keyid:70:85:B5:B4:54:9A:CD:B5:B6:C2:70:4C:85:BA:78:87:60:F8:8A:27 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91722A3/C02D85DE2B9B11EA972CDF46C4F9AE02/cIW1tFSazbW2wnBMhbp4h2D4iic.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cIW1tFSazbW2wnBMhbp4h2D4iic.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91722A3/C02D85DE2B9B11EA972CDF46C4F9AE02/cIW1tFSazbW2wnBMhbp4h2D4iic.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 50:d6:38:86:57:9e:32:12:74:24:f2:86:96:dc:e1:d1:a8:9e: 1f:93:66:64:fd:c5:14:8f:bf:87:66:96:b5:d9:41:b3:bd:fd: 3e:83:c7:a1:cb:1e:92:fd:d5:dd:26:d2:07:ef:e9:74:f9:ba: f1:fa:69:94:e3:42:f9:ce:a1:88:1f:48:63:8b:3a:67:29:6b: 23:a9:35:b8:db:9d:1c:5a:97:f1:82:4e:ae:35:13:c7:bf:ce: de:50:ef:9e:1b:a3:1b:0c:51:18:34:87:ec:e3:da:65:f5:c7: 4a:5f:9f:5e:fe:02:d5:2c:c5:5e:4d:b1:25:c2:48:66:d3:31: 50:54:0a:fb:77:78:89:7d:f2:88:67:40:e7:8c:69:c9:38:34: 57:8e:ef:fa:ba:d2:f2:bf:dd:7c:3b:33:59:82:79:b7:c4:af: ca:76:02:44:40:0b:6b:3d:38:f8:9a:c4:17:66:0d:d2:28:de: 9b:3e:a2:03:e2:88:b1:2c:b6:e1:95:c8:e0:b0:78:26:9e:75: f0:2c:6d:29:f0:48:6e:a4:8a:dd:f5:5b:53:f4:48:26:62:2f: 6b:4c:98:b3:2e:9e:30:e1:d2:e5:86:97:4f:a8:d4:96:f2:f1: 48:12:80:ef:5a:77:bd:3f:16:e9:92:89:02:30:25:f5:f4:c3: d7:fb:e4:97 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCyEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzIyQTMxMTAvBgNVBAUTKDcwODVCNUI0NTQ5QUNEQjVCNkMyNzA0Qzg1QkE3ODg3 NjBGODhBMjcwHhcNMjQxMTIyMTkwMDU1WhcNMjQxMTI5MTkwMDU1WjAYMRYwFAYD VQQDEw02NzQwZDRlOC1lZDY5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuWhdzGovT8/MYkzTXyUGRxFDV8YYBusUeTOFNll98cCo9tHrnIhGzLViJoya 4Lnrv1ApL+tWdIKSoY7MGCwmxXP2DcyPKdtjVCbseCjBqv/aOsK4TY701db6zUWL QeHkxjA0n9Nrl7S6OGc4MT7JhbRrAuy8sv5Xocz9amg/ca+Vq1Nvewz1OCLOfzRB cIs0kzHf+YM2vkp8FFjYGgFoVft1YJKC2o3x0mLDvv5IdOwXEYfwA5xx3Ql4h4PL 3V23p7BsD8EClXNC/G4SWS5PSwl6acNO+KPK/Ds/MjuRd0PzVw11EQ40K/zvmEF+ vrB2fRcOSf4zOdHzRgPqpHXZuwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNQ6iior IhQpKDbxEvbR8sBw/spmMB8GA1UdIwQYMBaAFHCFtbRUms21tsJwTIW6eIdg+Ion MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MjJBMy9DMDJEODVERTJC OUIxMUVBOTcyQ0RGNDZDNEY5QUUwMi9jSVcxdEZTYXpiVzJ3bkJNaGJwNGgyRDRp aWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NJVzF0RlNhemJXMnduQk1oYnA0aDJENGlpYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MjJBMy9DMDJEODVERTJCOUIxMUVBOTcyQ0RGNDZDNEY5QUUwMi9jSVcxdEZTYXpi VzJ3bkJNaGJwNGgyRDRpaWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBQ1jiGV54yEnQk8oaW3OHRqJ4fk2Zk/cUUj7+HZpa12UGzvf0+g8eh yx6S/dXdJtIH7+l0+brx+mmU40L5zqGIH0hjizpnKWsjqTW4250cWpfxgk6uNRPH v87eUO+eG6MbDFEYNIfs49pl9cdKX59e/gLVLMVeTbElwkhm0zFQVAr7d3iJffKI Z0DnjGnJODRXju/6utLyv918OzNZgnm3xK/KdgJEQAtrPTj4msQXZg3SKN6bPqID 4oixLLbhlcjgsHgmnnXwLG0p8EhupIrd9VtT9EgmYi9rTJizLp4w4dLlhpdPqNSW 8vFIEoDvWne9PxbpkokCMCX19MPX++SX -----END CERTIFICATE-----Generated at Fri Nov 22 19:44:59 2024 by rpki-client on console-fra.rpki-client.org