$ rpki-client -vvf rpki.apnic.net/member_repository/A9195A1A/C2F4EE2074A611EFAE54783CC4F9AE02/p93zVatoEjcBpb3RX2W6lktd4DU.mft File: p93zVatoEjcBpb3RX2W6lktd4DU.mft (raw, json) Hash identifier: y0JrNHhbW4NyJ/Udbgy+s9J830EtQoWSJ8KLABd8RGo= Subject key identifier: 4D:EE:AB:DB:23:36:E4:91:77:83:91:ED:4D:F2:62:18:EF:B8:28:A8 Authority key identifier: A7:DD:F3:55:AB:68:12:37:01:A5:BD:D1:5F:65:BA:96:4B:5D:E0:35 Certificate issuer: /CN=A9195A1A/serialNumber=A7DDF355AB68123701A5BDD15F65BA964B5DE035 Certificate serial: 26 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/p93zVatoEjcBpb3RX2W6lktd4DU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9195A1A/C2F4EE2074A611EFAE54783CC4F9AE02/p93zVatoEjcBpb3RX2W6lktd4DU.mft Manifest number: 25 Signing time: Sat 23 Nov 2024 05:44:02 +0000 Manifest this update: Sat 23 Nov 2024 05:44:01 +0000 Manifest next update: Sat 30 Nov 2024 05:44:01 +0000 Files and hashes: 1: p93zVatoEjcBpb3RX2W6lktd4DU.crl (hash: ovmc8llZI0HW1pCAfQR8ERKp0g+2wDvi6vufdw3gUNk=) 2: 77BC7D3A74F411EF8B9E1067C4F9AE02.roa (hash: TnDDPyuYfLyHK//K+Hn8T0/qN9TuFXBURI4PhKRtzFk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9195A1A/C2F4EE2074A611EFAE54783CC4F9AE02/p93zVatoEjcBpb3RX2W6lktd4DU.crl rsync://rpki.apnic.net/member_repository/A9195A1A/C2F4EE2074A611EFAE54783CC4F9AE02/p93zVatoEjcBpb3RX2W6lktd4DU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/p93zVatoEjcBpb3RX2W6lktd4DU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 38 (0x26) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9195A1A/serialNumber=A7DDF355AB68123701A5BDD15F65BA964B5DE035 Validity Not Before: Nov 23 05:44:01 2024 GMT Not After : Nov 30 05:44:01 2024 GMT Subject: CN=67416ba1-b06d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f3:b4:a8:26:00:cb:d8:58:80:b5:dc:49:43:04: 83:bb:3d:37:87:ad:2e:f5:47:f0:33:4e:1a:eb:c8: 6a:04:76:60:8f:7a:f3:b2:d4:dc:e0:8d:8f:8d:22: 80:97:98:b2:f7:11:34:dc:c3:ba:65:17:e2:be:a0: 29:f8:60:9e:18:6e:36:fd:bd:82:0f:8d:3e:fa:1f: ef:c5:f7:20:0b:78:80:35:dd:4d:d2:bb:e4:61:a2: 59:b6:00:c2:18:79:6e:f7:89:05:b1:03:dc:a9:aa: e6:2d:9e:7f:8a:7c:0b:35:79:d1:f7:d1:0a:2f:bc: a9:f9:ab:87:52:f7:65:5d:74:31:e2:34:93:6d:4e: 7b:14:8a:04:cf:36:19:37:89:df:6f:b9:61:08:63: f3:ff:68:c6:38:52:3c:2e:38:b2:6b:e0:bf:db:91: 9e:cb:c2:64:d9:f5:7e:7d:a3:10:32:2f:b7:b7:02: fd:38:5a:d2:9f:7c:4c:bd:26:41:d2:79:3c:e7:a9: 3c:01:d2:01:4f:3f:7f:41:0f:d4:e7:d7:ae:73:51: 60:52:b0:54:d7:14:9f:76:a4:a8:4b:06:cf:89:97: 52:ee:c5:4b:07:4d:a2:f9:95:3e:fa:7b:6d:39:b5: 07:2a:04:75:48:8d:59:36:cb:59:ce:fe:7d:20:02: 41:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:EE:AB:DB:23:36:E4:91:77:83:91:ED:4D:F2:62:18:EF:B8:28:A8 X509v3 Authority Key Identifier: keyid:A7:DD:F3:55:AB:68:12:37:01:A5:BD:D1:5F:65:BA:96:4B:5D:E0:35 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9195A1A/C2F4EE2074A611EFAE54783CC4F9AE02/p93zVatoEjcBpb3RX2W6lktd4DU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/p93zVatoEjcBpb3RX2W6lktd4DU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9195A1A/C2F4EE2074A611EFAE54783CC4F9AE02/p93zVatoEjcBpb3RX2W6lktd4DU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7b:f6:32:83:7c:27:3d:fa:62:6a:7c:ba:c6:9c:de:af:12:2e: 44:dd:3f:8c:76:2f:2d:11:73:29:17:a7:24:be:91:41:8e:90: 53:99:71:b1:dd:93:c3:fb:86:95:8e:d3:de:7f:f4:f6:bb:00: b1:f2:0f:1c:c2:72:01:7f:fd:cb:a9:8f:cf:ed:ba:b4:4a:e8: 82:45:87:da:ea:3f:22:c3:6e:3a:e5:05:f4:a0:44:97:01:d1: 96:9f:d3:24:d2:29:7e:21:2d:10:a4:55:4f:e1:df:98:81:24: 47:4a:0a:1e:e8:f3:0d:ba:90:c0:0d:a8:50:15:db:80:25:f8: dc:bb:61:7e:13:4a:ed:aa:0b:dd:45:d1:fc:49:ef:dc:e8:d4: 09:dd:99:3a:d6:63:37:2d:4f:42:c0:79:d0:51:4f:4f:8e:e6: 02:38:65:10:51:d0:5d:75:2b:fc:19:12:a5:4c:17:41:af:69: 60:08:a0:52:00:0f:a0:95:8a:b8:22:3f:8a:96:9c:f2:04:51: 96:c5:9a:fc:bd:e0:24:1d:ec:51:6a:c4:da:8e:fb:0e:cc:59: f6:af:6c:4c:6a:ae:7a:e6:ba:6e:2a:81:ff:3e:70:03:91:22: 73:82:fc:99:09:d5:56:88:56:1d:50:41:2a:b4:62:d2:ae:4f: b3:19:81:57 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBJjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE5 NUExQTExMC8GA1UEBRMoQTdEREYzNTVBQjY4MTIzNzAxQTVCREQxNUY2NUJBOTY0 QjVERTAzNTAeFw0yNDExMjMwNTQ0MDFaFw0yNDExMzAwNTQ0MDFaMBgxFjAUBgNV BAMTDTY3NDE2YmExLWIwNmQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDztKgmAMvYWIC13ElDBIO7PTeHrS71R/AzThrryGoEdmCPevOy1NzgjY+NIoCX mLL3ETTcw7plF+K+oCn4YJ4Ybjb9vYIPjT76H+/F9yALeIA13U3Su+Rholm2AMIY eW73iQWxA9ypquYtnn+KfAs1edH30QovvKn5q4dS92VddDHiNJNtTnsUigTPNhk3 id9vuWEIY/P/aMY4UjwuOLJr4L/bkZ7LwmTZ9X59oxAyL7e3Av04WtKffEy9JkHS eTznqTwB0gFPP39BD9Tn165zUWBSsFTXFJ92pKhLBs+Jl1LuxUsHTaL5lT76e205 tQcqBHVIjVk2y1nO/n0gAkHZAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUTe6r2yM2 5JF3g5HtTfJiGO+4KKgwHwYDVR0jBBgwFoAUp93zVatoEjcBpb3RX2W6lktd4DUw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTk1QTFBL0MyRjRFRTIwNzRB NjExRUZBRTU0NzgzQ0M0RjlBRTAyL3A5M3pWYXRvRWpjQnBiM1JYMlc2bGt0ZDRE VS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvcDkzelZhdG9FamNCcGIzUlgyVzZsa3RkNERVLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTk1 QTFBL0MyRjRFRTIwNzRBNjExRUZBRTU0NzgzQ0M0RjlBRTAyL3A5M3pWYXRvRWpj QnBiM1JYMlc2bGt0ZDREVS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAHv2MoN8Jz36Ymp8usac3q8SLkTdP4x2Ly0RcykXpyS+kUGOkFOZcbHd k8P7hpWO095/9Pa7ALHyDxzCcgF//cupj8/turRK6IJFh9rqPyLDbjrlBfSgRJcB 0Zaf0yTSKX4hLRCkVU/h35iBJEdKCh7o8w26kMANqFAV24Al+Ny7YX4TSu2qC91F 0fxJ79zo1AndmTrWYzctT0LAedBRT0+O5gI4ZRBR0F11K/wZEqVMF0GvaWAIoFIA D6CVirgiP4qWnPIEUZbFmvy94CQd7FFqxNqO+w7MWfavbExqrnrmum4qgf8+cAOR InOC/JkJ1VaIVh1QQSq0YtKuT7MZgVc= -----END CERTIFICATE-----Generated at Sat Nov 23 06:21:27 2024 by rpki-client on console-fra.rpki-client.org