$ rpki-client -vvf rpki.apnic.net/member_repository/A91A0BEC/7B7F28E2677E11EA8BD8262DC4F9AE02/J39oYmhAcrYqFW3fdd13JcOPUdA.mft File: J39oYmhAcrYqFW3fdd13JcOPUdA.mft (raw, json) Hash identifier: 1ZXKaT0CQpAAiRp0M2qCdxfc2PUkbJfbAqXAWGFWMb8= Subject key identifier: 9D:68:84:7E:D0:42:5F:B0:23:33:F6:6E:4E:35:92:CD:1A:A8:C3:2D Authority key identifier: 27:7F:68:62:68:40:72:B6:2A:15:6D:DF:75:DD:77:25:C3:8F:51:D0 Certificate issuer: /CN=A91A0BEC/serialNumber=277F6862684072B62A156DDF75DD7725C38F51D0 Certificate serial: 09EE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/J39oYmhAcrYqFW3fdd13JcOPUdA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A0BEC/7B7F28E2677E11EA8BD8262DC4F9AE02/J39oYmhAcrYqFW3fdd13JcOPUdA.mft Manifest number: 09E9 Signing time: Fri 22 Nov 2024 19:39:55 +0000 Manifest this update: Fri 22 Nov 2024 19:39:55 +0000 Manifest next update: Fri 29 Nov 2024 19:39:55 +0000 Files and hashes: 1: J39oYmhAcrYqFW3fdd13JcOPUdA.crl (hash: DUqxRdZE8DHEglwCYVSMY7YQIvnIZ/OAer7n9Bygrjs=) 2: 98438B98677F11EA972EEA2EC4F9AE02.roa (hash: vgXVDEq6fY1aAocc5HR3NJ+0QWxdFIUgmDfdg3s0DS4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A0BEC/7B7F28E2677E11EA8BD8262DC4F9AE02/J39oYmhAcrYqFW3fdd13JcOPUdA.crl rsync://rpki.apnic.net/member_repository/A91A0BEC/7B7F28E2677E11EA8BD8262DC4F9AE02/J39oYmhAcrYqFW3fdd13JcOPUdA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/J39oYmhAcrYqFW3fdd13JcOPUdA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 19:39:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2542 (0x9ee) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A0BEC/serialNumber=277F6862684072B62A156DDF75DD7725C38F51D0 Validity Not Before: Nov 22 19:39:55 2024 GMT Not After : Nov 29 19:39:55 2024 GMT Subject: CN=6740de0b-e405 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:03:aa:d8:be:48:92:25:59:2a:93:c7:29:4d: d3:79:a6:86:b6:09:23:cf:75:ef:21:63:fc:ef:25: 0b:1a:cb:0d:7e:08:07:a4:5d:f2:04:93:3b:e9:db: e3:df:c2:c5:4a:20:1e:25:75:c3:c4:c1:af:83:aa: b1:01:fd:bc:25:c1:03:f3:61:d0:be:5d:f7:61:33: 98:a3:75:b8:19:dc:74:5d:37:31:26:61:c4:4b:72: 31:4d:d7:c9:d0:f2:bb:d1:5d:8d:c3:30:43:e7:bf: 48:75:db:1e:95:93:6b:d0:c2:fb:90:8e:ad:49:4b: 0b:f0:b6:be:5d:55:d4:dc:5c:53:cf:bb:2a:81:28: 93:59:66:1d:36:83:ea:0d:cf:80:dd:69:1c:92:6c: d5:04:3d:bf:c1:87:06:14:29:3f:f0:0a:ea:a0:91: f8:46:35:26:70:76:6e:de:34:c6:b0:5a:d2:40:4c: 45:76:f6:8a:db:cf:48:49:32:f0:2f:16:1f:fe:3f: 86:52:c0:5d:ab:2d:c7:fd:05:da:da:f4:64:19:7e: 44:0c:5c:c0:04:6d:8d:49:c3:d2:e1:f5:39:84:cc: c0:9d:c1:ab:6e:4c:ba:39:f3:de:7d:2c:89:1a:5e: 8f:8a:b3:aa:ab:8a:dc:1d:8e:2a:e1:cb:ba:3f:39: 80:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:68:84:7E:D0:42:5F:B0:23:33:F6:6E:4E:35:92:CD:1A:A8:C3:2D X509v3 Authority Key Identifier: keyid:27:7F:68:62:68:40:72:B6:2A:15:6D:DF:75:DD:77:25:C3:8F:51:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A0BEC/7B7F28E2677E11EA8BD8262DC4F9AE02/J39oYmhAcrYqFW3fdd13JcOPUdA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/J39oYmhAcrYqFW3fdd13JcOPUdA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A0BEC/7B7F28E2677E11EA8BD8262DC4F9AE02/J39oYmhAcrYqFW3fdd13JcOPUdA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 10:d8:16:4c:95:b7:f1:bd:a4:82:f7:39:3d:77:ec:d5:79:c5: 4e:49:20:75:8e:4b:90:e1:6a:7c:59:8d:05:94:72:20:da:88: be:50:1d:38:ae:4d:4a:39:a8:99:61:32:8e:60:ff:a6:2d:31: 17:33:19:9f:27:ce:c0:0c:9d:44:5f:57:23:fd:45:91:f4:54: 1d:e5:62:35:d1:c0:b1:60:eb:f5:77:8f:33:19:97:d9:98:4e: a2:97:aa:fb:44:85:d1:b3:44:ba:51:8f:69:ff:1c:68:28:e8: a9:60:ac:5d:70:a8:d6:80:b9:d2:46:2f:9d:fb:1f:0d:08:8e: f3:e3:42:b2:09:49:07:5e:e3:02:f5:45:0b:8f:33:68:9d:c7: c9:93:87:c2:7b:33:bb:4a:59:29:5d:1a:a9:62:6f:ba:35:1d: 09:dd:9a:94:4c:7a:21:0b:48:b1:5c:f3:7b:fc:6c:b3:c9:72: b6:3f:39:40:19:a9:52:ed:70:c0:f7:f1:e0:43:56:7b:df:51: f8:0b:a4:cc:97:19:15:eb:3e:9c:52:08:22:c8:7f:57:9f:70: af:15:e5:5f:f3:03:bb:c6:a4:9e:00:d7:22:d4:a0:8c:f6:f7: 15:db:e2:e2:0a:d8:c0:b0:4d:a5:eb:64:25:4b:cb:8b:f3:82: fe:40:d8:2a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCe4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTBCRUMxMTAvBgNVBAUTKDI3N0Y2ODYyNjg0MDcyQjYyQTE1NkRERjc1REQ3NzI1 QzM4RjUxRDAwHhcNMjQxMTIyMTkzOTU1WhcNMjQxMTI5MTkzOTU1WjAYMRYwFAYD VQQDEw02NzQwZGUwYi1lNDA1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1wOq2L5IkiVZKpPHKU3TeaaGtgkjz3XvIWP87yULGssNfggHpF3yBJM76dvj 38LFSiAeJXXDxMGvg6qxAf28JcED82HQvl33YTOYo3W4Gdx0XTcxJmHES3IxTdfJ 0PK70V2NwzBD579IddselZNr0ML7kI6tSUsL8La+XVXU3FxTz7sqgSiTWWYdNoPq Dc+A3WkckmzVBD2/wYcGFCk/8ArqoJH4RjUmcHZu3jTGsFrSQExFdvaK289ISTLw LxYf/j+GUsBdqy3H/QXa2vRkGX5EDFzABG2NScPS4fU5hMzAncGrbky6OfPefSyJ Gl6PirOqq4rcHY4q4cu6PzmA0wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJ1ohH7Q Ql+wIzP2bk41ks0aqMMtMB8GA1UdIwQYMBaAFCd/aGJoQHK2KhVt33XddyXDj1HQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMEJFQy83QjdGMjhFMjY3 N0UxMUVBOEJEODI2MkRDNEY5QUUwMi9KMzlvWW1oQWNyWXFGVzNmZGQxM0pjT1BV ZEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ozOW9ZbWhBY3JZcUZXM2ZkZDEzSmNPUFVkQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MEJFQy83QjdGMjhFMjY3N0UxMUVBOEJEODI2MkRDNEY5QUUwMi9KMzlvWW1oQWNy WXFGVzNmZGQxM0pjT1BVZEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAQ2BZMlbfxvaSC9zk9d+zVecVOSSB1jkuQ4Wp8WY0FlHIg2oi+UB04 rk1KOaiZYTKOYP+mLTEXMxmfJ87ADJ1EX1cj/UWR9FQd5WI10cCxYOv1d48zGZfZ mE6il6r7RIXRs0S6UY9p/xxoKOipYKxdcKjWgLnSRi+d+x8NCI7z40KyCUkHXuMC 9UULjzNoncfJk4fCezO7SlkpXRqpYm+6NR0J3ZqUTHohC0ixXPN7/GyzyXK2PzlA GalS7XDA9/HgQ1Z731H4C6TMlxkV6z6cUggiyH9Xn3CvFeVf8wO7xqSeANci1KCM 9vcV2+LiCtjAsE2l62QlS8uL84L+QNgq -----END CERTIFICATE-----Generated at Fri Nov 22 21:05:31 2024 by rpki-client on console-fra.rpki-client.org