$ rpki-client -vvf rpki.apnic.net/member_repository/A91A8F8A/72195AD49E1311ECB091CE72C4F9AE02/cJbvn454MDQ56aHksDgYgaQy9Ns.mft File: cJbvn454MDQ56aHksDgYgaQy9Ns.mft (raw, json) Hash identifier: Y2t9pQIjQfB0bfIp8Xs70mpoZC/lIke//oKDuFTqQTs= Subject key identifier: 60:9F:A3:6E:52:21:83:E8:08:BA:B0:96:23:AC:22:C0:22:75:17:CD Authority key identifier: 70:96:EF:9F:8E:78:30:34:39:E9:A1:E4:B0:38:18:81:A4:32:F4:DB Certificate issuer: /CN=A91A8F8A/serialNumber=7096EF9F8E78303439E9A1E4B0381881A432F4DB Certificate serial: 0336 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cJbvn454MDQ56aHksDgYgaQy9Ns.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A8F8A/72195AD49E1311ECB091CE72C4F9AE02/cJbvn454MDQ56aHksDgYgaQy9Ns.mft Manifest number: 0333 Signing time: Sat 23 Nov 2024 00:38:49 +0000 Manifest this update: Sat 23 Nov 2024 00:38:49 +0000 Manifest next update: Sat 30 Nov 2024 00:38:49 +0000 Files and hashes: 1: cJbvn454MDQ56aHksDgYgaQy9Ns.crl (hash: uTuTvWzDS/6gGr3LPWGLg4GjchPggXk8e4VjWJUYRas=) 2: AFED106A9E1511ECA4B98E73C4F9AE02.roa (hash: vpqcQmNYsSU8xv6Tdls1gDEsQZEBAwcUcBCWCw5IZLs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A8F8A/72195AD49E1311ECB091CE72C4F9AE02/cJbvn454MDQ56aHksDgYgaQy9Ns.crl rsync://rpki.apnic.net/member_repository/A91A8F8A/72195AD49E1311ECB091CE72C4F9AE02/cJbvn454MDQ56aHksDgYgaQy9Ns.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cJbvn454MDQ56aHksDgYgaQy9Ns.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 822 (0x336) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A8F8A/serialNumber=7096EF9F8E78303439E9A1E4B0381881A432F4DB Validity Not Before: Nov 23 00:38:49 2024 GMT Not After : Nov 30 00:38:49 2024 GMT Subject: CN=67412419-29ef Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:0d:cc:e4:dd:cc:98:07:a6:5d:d1:98:c7:02: 63:9c:0e:cb:a6:34:5c:f5:6c:a9:e2:4e:88:8f:61: ca:46:17:6f:81:d6:e0:15:1b:e9:13:30:46:a0:f3: 8b:5c:af:84:53:13:40:52:8b:94:78:e8:76:d7:7c: fc:4e:0a:c7:bd:7f:bc:85:c3:ec:b7:69:b6:04:1b: 10:03:42:f8:1b:92:ed:ae:f6:82:0a:cd:01:6f:e7: 00:8b:1e:0b:ba:3a:66:26:6b:f5:bc:2e:91:f7:5e: 59:a6:37:7f:4f:3c:6b:a0:40:04:02:16:9a:b5:8d: a6:82:58:16:fd:e0:cb:bf:3d:46:c7:f5:4c:ce:c7: 48:7e:28:0f:41:c0:98:44:c7:7f:49:ad:c8:aa:db: fb:3d:2b:90:ab:6e:0d:9b:70:c5:22:cb:66:ba:5b: 8c:dd:e1:67:6d:3a:ad:a4:4a:19:33:20:70:07:1a: c1:34:19:f8:e6:bf:17:92:81:d0:62:f9:4e:e7:db: 5c:a1:85:51:00:48:1b:6f:e6:af:8f:fc:86:c8:52: 02:81:48:45:68:7c:06:2d:79:f3:4c:f4:22:de:09: 07:4c:1f:24:9a:fb:6c:49:72:6d:20:47:ea:01:2c: b2:bb:32:9c:4d:f2:f1:79:a5:eb:23:af:8d:27:83: 42:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:9F:A3:6E:52:21:83:E8:08:BA:B0:96:23:AC:22:C0:22:75:17:CD X509v3 Authority Key Identifier: keyid:70:96:EF:9F:8E:78:30:34:39:E9:A1:E4:B0:38:18:81:A4:32:F4:DB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A8F8A/72195AD49E1311ECB091CE72C4F9AE02/cJbvn454MDQ56aHksDgYgaQy9Ns.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cJbvn454MDQ56aHksDgYgaQy9Ns.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A8F8A/72195AD49E1311ECB091CE72C4F9AE02/cJbvn454MDQ56aHksDgYgaQy9Ns.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 55:a6:a9:58:96:f7:3c:81:c6:92:01:ff:d0:82:3f:4c:62:c0: 34:50:f5:e2:48:f5:88:73:0a:c7:dc:a7:c4:95:e7:85:98:d9: c0:d1:a9:c0:ae:6b:a0:6a:e6:3b:24:1a:90:6b:a6:ca:91:60: b1:98:c1:d4:ac:53:43:38:02:3e:fa:00:a3:c2:24:7a:84:bc: b8:d1:fc:7d:4e:2f:04:27:6e:93:91:bc:2b:ae:94:64:5d:6f: 66:6b:f0:d9:03:63:7e:0c:53:26:ec:72:a0:c0:1f:3c:d1:0e: 86:c8:4b:9e:b0:8a:ac:7d:c6:78:61:90:f0:d0:2e:2d:d3:0f: 2c:d9:c2:ac:22:8c:45:33:3b:78:e2:a8:1c:2c:2f:c1:19:be: be:35:36:b8:57:b2:0f:65:1f:cb:f3:20:49:e3:95:54:ec:05: 3f:49:f1:95:41:d0:c2:79:a0:91:49:01:52:24:40:3f:a9:89: 4f:f9:0b:47:6d:6e:48:62:a7:2f:b7:b8:3c:30:28:51:05:a5: af:7e:1e:d9:ed:68:e3:13:0f:87:62:67:f4:2f:d8:3b:74:7e: 0d:76:58:b9:20:71:18:e5:41:d4:4a:86:81:b8:ac:e4:eb:87: 65:8c:c8:c4:10:2f:35:25:97:0d:92:77:f9:52:f8:ee:87:2f: 6f:9f:52:52 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAzYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QThGOEExMTAvBgNVBAUTKDcwOTZFRjlGOEU3ODMwMzQzOUU5QTFFNEIwMzgxODgx QTQzMkY0REIwHhcNMjQxMTIzMDAzODQ5WhcNMjQxMTMwMDAzODQ5WjAYMRYwFAYD VQQDEw02NzQxMjQxOS0yOWVmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1A3M5N3MmAemXdGYxwJjnA7LpjRc9Wyp4k6Ij2HKRhdvgdbgFRvpEzBGoPOL XK+EUxNAUouUeOh213z8TgrHvX+8hcPst2m2BBsQA0L4G5LtrvaCCs0Bb+cAix4L ujpmJmv1vC6R915Zpjd/TzxroEAEAhaatY2mglgW/eDLvz1Gx/VMzsdIfigPQcCY RMd/Sa3Iqtv7PSuQq24Nm3DFIstmuluM3eFnbTqtpEoZMyBwBxrBNBn45r8XkoHQ YvlO59tcoYVRAEgbb+avj/yGyFICgUhFaHwGLXnzTPQi3gkHTB8kmvtsSXJtIEfq ASyyuzKcTfLxeaXrI6+NJ4NCxwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGCfo25S IYPoCLqwliOsIsAidRfNMB8GA1UdIwQYMBaAFHCW75+OeDA0Oemh5LA4GIGkMvTb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBOEY4QS83MjE5NUFENDlF MTMxMUVDQjA5MUNFNzJDNEY5QUUwMi9jSmJ2bjQ1NE1EUTU2YUhrc0RnWWdhUXk5 TnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NKYnZuNDU0TURRNTZhSGtzRGdZZ2FReTlOcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB OEY4QS83MjE5NUFENDlFMTMxMUVDQjA5MUNFNzJDNEY5QUUwMi9jSmJ2bjQ1NE1E UTU2YUhrc0RnWWdhUXk5TnMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBVpqlYlvc8gcaSAf/Qgj9MYsA0UPXiSPWIcwrH3KfEleeFmNnA0anA rmugauY7JBqQa6bKkWCxmMHUrFNDOAI++gCjwiR6hLy40fx9Ti8EJ26TkbwrrpRk XW9ma/DZA2N+DFMm7HKgwB880Q6GyEuesIqsfcZ4YZDw0C4t0w8s2cKsIoxFMzt4 4qgcLC/BGb6+NTa4V7IPZR/L8yBJ45VU7AU/SfGVQdDCeaCRSQFSJEA/qYlP+QtH bW5IYqcvt7g8MChRBaWvfh7Z7WjjEw+HYmf0L9g7dH4Ndli5IHEY5UHUSoaBuKzk 64dljMjEEC81JZcNknf5Uvjuhy9vn1JS -----END CERTIFICATE-----Generated at Sat Nov 23 02:33:43 2024 by rpki-client on console-fra.rpki-client.org