$ rpki-client -vvf rpki.apnic.net/member_repository/A91A9D0F/74BE38D680CF11E9ACD71B50C4F9AE02/iOe1QfQimNbptRZdllJGzBzB9aI.mft File: iOe1QfQimNbptRZdllJGzBzB9aI.mft (raw, json) Hash identifier: yzWCHl9BOXQ5Q00U/LbHClZjXwcfdBLH2wxAki/WB54= Subject key identifier: C6:31:5F:56:C1:C4:A8:67:94:3D:6B:96:EA:21:83:81:BD:B0:8D:16 Authority key identifier: 88:E7:B5:41:F4:22:98:D6:E9:B5:16:5D:96:52:46:CC:1C:C1:F5:A2 Certificate issuer: /CN=A91A9D0F/serialNumber=88E7B541F42298D6E9B5165D965246CC1CC1F5A2 Certificate serial: 0EFF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iOe1QfQimNbptRZdllJGzBzB9aI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A9D0F/74BE38D680CF11E9ACD71B50C4F9AE02/iOe1QfQimNbptRZdllJGzBzB9aI.mft Manifest number: 0EC5 Signing time: Fri 22 Nov 2024 17:41:43 +0000 Manifest this update: Fri 22 Nov 2024 17:41:42 +0000 Manifest next update: Fri 29 Nov 2024 17:41:42 +0000 Files and hashes: 1: iOe1QfQimNbptRZdllJGzBzB9aI.crl (hash: S9004wb0AURwCe2wvBUxZfdiIuyBjnqwN7SWHqmfc6E=) 2: 13C1EDA8767911EE9A957930C4F9AE02.roa (hash: fwsN8+X2NyhZzJXRx7yY58ks0WUJR98aQpYJ1O4lV4c=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A9D0F/74BE38D680CF11E9ACD71B50C4F9AE02/iOe1QfQimNbptRZdllJGzBzB9aI.crl rsync://rpki.apnic.net/member_repository/A91A9D0F/74BE38D680CF11E9ACD71B50C4F9AE02/iOe1QfQimNbptRZdllJGzBzB9aI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iOe1QfQimNbptRZdllJGzBzB9aI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 17:41:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3839 (0xeff) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A9D0F/serialNumber=88E7B541F42298D6E9B5165D965246CC1CC1F5A2 Validity Not Before: Nov 22 17:41:42 2024 GMT Not After : Nov 29 17:41:42 2024 GMT Subject: CN=6740c256-7814 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:28:19:09:c0:c6:76:da:fe:e4:7a:6b:8f:2b: c8:b9:b5:b5:78:75:a9:c1:cd:1a:1f:3b:66:4a:bc: f6:a8:7a:a4:7e:ef:35:b7:e8:aa:00:ad:26:e9:2f: 0a:98:62:bd:e5:52:26:d5:db:b0:d0:0c:17:c4:8b: 93:12:15:67:80:5c:c1:6d:28:93:64:06:53:a4:38: 40:e2:ea:80:65:5b:68:72:07:21:31:18:2a:45:01: 00:9b:a2:9f:db:a3:dc:39:65:ec:38:23:53:34:f1: bb:fd:1c:5a:3c:30:7f:38:a7:54:c7:de:16:c8:37: a7:3f:3e:8a:fa:6b:84:d4:0a:6e:99:d1:d5:c3:13: 54:5c:70:d4:ca:b3:34:1e:a9:5e:85:7c:5a:1c:16: 47:97:d9:86:09:1b:55:85:33:ed:90:f7:71:c7:93: 0d:52:ed:9e:8c:26:d9:77:0a:53:bc:8c:ff:b1:ac: 79:8f:ac:64:12:8c:73:ad:c0:21:91:45:9d:65:ad: 7a:48:2d:50:f6:f7:42:eb:bd:fc:b3:1d:cf:f0:26: 47:bb:1d:db:20:7d:8d:b8:aa:ba:d0:23:1e:cb:c5: f9:af:46:e2:2d:bb:08:e9:a6:35:09:2b:1f:46:6d: b3:ae:31:13:32:8d:0c:05:c2:a4:d3:a1:d5:7b:9d: 54:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:31:5F:56:C1:C4:A8:67:94:3D:6B:96:EA:21:83:81:BD:B0:8D:16 X509v3 Authority Key Identifier: keyid:88:E7:B5:41:F4:22:98:D6:E9:B5:16:5D:96:52:46:CC:1C:C1:F5:A2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A9D0F/74BE38D680CF11E9ACD71B50C4F9AE02/iOe1QfQimNbptRZdllJGzBzB9aI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iOe1QfQimNbptRZdllJGzBzB9aI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A9D0F/74BE38D680CF11E9ACD71B50C4F9AE02/iOe1QfQimNbptRZdllJGzBzB9aI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9c:b3:d0:61:4e:4f:f8:e4:39:24:ce:cf:49:52:7d:8f:2e:bb: 1b:a8:3c:da:da:01:73:94:14:bb:d6:05:cb:ca:fc:14:6b:11: b8:d9:ab:af:2c:b7:a5:20:13:cf:06:b2:75:fe:69:92:f8:18: 8d:59:13:02:68:6f:a2:40:53:84:9c:2c:a7:2f:82:9c:70:66: 5d:64:d8:b6:46:17:51:a1:1d:33:8c:97:72:89:83:a4:99:5f: 66:00:3c:e1:a8:fa:95:9a:53:e4:f1:9f:a8:a6:91:47:fd:f5: 3c:95:fe:54:64:80:69:9e:10:52:8b:41:bd:6a:45:35:43:ab: 16:4d:18:37:4a:c3:d0:97:c8:de:88:48:d0:ed:25:73:1b:b2: b2:f9:97:87:46:91:c1:7e:14:2a:56:2e:8b:40:57:79:74:c2: 7b:97:01:ac:1d:04:eb:5e:c3:10:7d:36:21:03:cc:63:33:fe: af:c6:b0:21:37:f3:76:81:15:49:f6:4f:ef:60:e1:26:26:65: 3a:51:e8:57:42:17:e1:3c:00:97:e2:f0:af:f3:06:9b:b9:7e: e5:94:84:a2:cd:23:e8:49:41:0e:5f:d6:fe:5a:5a:f6:47:9e: f1:4c:7b:66:61:6f:d1:76:e8:ba:6e:b3:66:fb:9d:38:88:0f: 10:1c:e6:09 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDv8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTlEMEYxMTAvBgNVBAUTKDg4RTdCNTQxRjQyMjk4RDZFOUI1MTY1RDk2NTI0NkND MUNDMUY1QTIwHhcNMjQxMTIyMTc0MTQyWhcNMjQxMTI5MTc0MTQyWjAYMRYwFAYD VQQDEw02NzQwYzI1Ni03ODE0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvSgZCcDGdtr+5HprjyvIubW1eHWpwc0aHztmSrz2qHqkfu81t+iqAK0m6S8K mGK95VIm1duw0AwXxIuTEhVngFzBbSiTZAZTpDhA4uqAZVtocgchMRgqRQEAm6Kf 26PcOWXsOCNTNPG7/RxaPDB/OKdUx94WyDenPz6K+muE1ApumdHVwxNUXHDUyrM0 HqlehXxaHBZHl9mGCRtVhTPtkPdxx5MNUu2ejCbZdwpTvIz/sax5j6xkEoxzrcAh kUWdZa16SC1Q9vdC6738sx3P8CZHux3bIH2NuKq60CMey8X5r0biLbsI6aY1CSsf Rm2zrjETMo0MBcKk06HVe51UdQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMYxX1bB xKhnlD1rluohg4G9sI0WMB8GA1UdIwQYMBaAFIjntUH0IpjW6bUWXZZSRswcwfWi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBOUQwRi83NEJFMzhENjgw Q0YxMUU5QUNENzFCNTBDNEY5QUUwMi9pT2UxUWZRaW1OYnB0UlpkbGxKR3pCekI5 YUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lPZTFRZlFpbU5icHRSWmRsbEpHekJ6QjlhSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB OUQwRi83NEJFMzhENjgwQ0YxMUU5QUNENzFCNTBDNEY5QUUwMi9pT2UxUWZRaW1O YnB0UlpkbGxKR3pCekI5YUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCcs9BhTk/45Dkkzs9JUn2PLrsbqDza2gFzlBS71gXLyvwUaxG42auv LLelIBPPBrJ1/mmS+BiNWRMCaG+iQFOEnCynL4KccGZdZNi2RhdRoR0zjJdyiYOk mV9mADzhqPqVmlPk8Z+oppFH/fU8lf5UZIBpnhBSi0G9akU1Q6sWTRg3SsPQl8je iEjQ7SVzG7Ky+ZeHRpHBfhQqVi6LQFd5dMJ7lwGsHQTrXsMQfTYhA8xjM/6vxrAh N/N2gRVJ9k/vYOEmJmU6UehXQhfhPACX4vCv8wabuX7llISizSPoSUEOX9b+Wlr2 R57xTHtmYW/Rdui6brNm+504iA8QHOYJ -----END CERTIFICATE-----Generated at Fri Nov 22 19:45:01 2024 by rpki-client on console-fra.rpki-client.org