$ rpki-client -vvf rpki.apnic.net/member_repository/A91AE9F7/379EC742544A11E9A350C127C4F9AE02/AXCw4NBuMUc8rBZOSwttIb300jc.mft File: AXCw4NBuMUc8rBZOSwttIb300jc.mft (raw, json) Hash identifier: kDD2aQITiF2KTUMLevQfJTz6YZuEbNdZG5jrJkpmMtc= Subject key identifier: 5C:90:C8:C4:79:58:8F:FB:B7:FE:F8:55:89:C1:15:88:95:EB:83:7E Authority key identifier: 01:70:B0:E0:D0:6E:31:47:3C:AC:16:4E:4B:0B:6D:21:BD:F4:D2:37 Certificate issuer: /CN=A91AE9F7/serialNumber=0170B0E0D06E31473CAC164E4B0B6D21BDF4D237 Certificate serial: 0F7D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AXCw4NBuMUc8rBZOSwttIb300jc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AE9F7/379EC742544A11E9A350C127C4F9AE02/AXCw4NBuMUc8rBZOSwttIb300jc.mft Manifest number: 0F71 Signing time: Fri 22 Nov 2024 17:32:09 +0000 Manifest this update: Fri 22 Nov 2024 17:32:08 +0000 Manifest next update: Fri 29 Nov 2024 17:32:08 +0000 Files and hashes: 1: AXCw4NBuMUc8rBZOSwttIb300jc.crl (hash: flAtjoCb32wPPhjshePg7k1RShiJMyJH1VWCptbiohc=) 2: 1585570A544C11E9BDFF2B2DC4F9AE02.roa (hash: jZa47LQUiVvIxoLDSyE/2t1CJaYFtRO42+/jeT3MONo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AE9F7/379EC742544A11E9A350C127C4F9AE02/AXCw4NBuMUc8rBZOSwttIb300jc.crl rsync://rpki.apnic.net/member_repository/A91AE9F7/379EC742544A11E9A350C127C4F9AE02/AXCw4NBuMUc8rBZOSwttIb300jc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AXCw4NBuMUc8rBZOSwttIb300jc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 17:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3965 (0xf7d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AE9F7/serialNumber=0170B0E0D06E31473CAC164E4B0B6D21BDF4D237 Validity Not Before: Nov 22 17:32:08 2024 GMT Not After : Nov 29 17:32:08 2024 GMT Subject: CN=6740c019-31bb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:cd:2a:99:a4:7b:01:75:10:78:44:c4:78:c2: 02:d8:a2:03:96:ff:cf:fd:38:d1:27:81:63:16:c9: 9e:5e:89:22:18:8e:c8:65:52:c7:81:35:2d:9f:0b: b0:0d:28:1a:7a:fe:f7:49:39:ee:51:59:6e:7b:83: 64:69:af:79:42:b6:af:8a:22:cb:44:9e:19:40:eb: cb:29:82:8d:8a:67:5b:06:f8:7d:cd:42:19:54:c4: 1b:92:f1:cf:bc:f8:30:ae:b0:0a:0b:36:b9:47:37: 1d:85:a6:40:a5:e8:cd:81:b7:db:58:8d:00:54:64: 3a:fd:76:05:c0:38:e5:6b:30:f9:09:30:12:b7:7c: 1d:3d:08:16:ae:f5:2b:f8:50:ac:ce:c7:36:62:dc: 72:ed:78:13:79:44:28:46:43:6e:2c:f5:de:fd:24: 8b:de:9d:39:a7:aa:75:e5:a7:f3:1b:d0:c6:44:e2: 57:83:22:77:82:26:d6:9e:ca:43:7d:a7:d5:94:1a: 8f:4c:07:9a:7d:23:d5:18:cc:75:03:8b:d2:32:8e: d4:f9:c1:08:aa:70:8c:7a:be:85:6a:ce:42:ad:c1: 02:f7:83:e0:6b:3e:3e:6c:7d:dd:8a:34:5e:cb:59: 2c:0b:b9:c1:e7:0f:8a:26:ec:65:dc:f8:d8:bb:b6: a8:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:90:C8:C4:79:58:8F:FB:B7:FE:F8:55:89:C1:15:88:95:EB:83:7E X509v3 Authority Key Identifier: keyid:01:70:B0:E0:D0:6E:31:47:3C:AC:16:4E:4B:0B:6D:21:BD:F4:D2:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AE9F7/379EC742544A11E9A350C127C4F9AE02/AXCw4NBuMUc8rBZOSwttIb300jc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AXCw4NBuMUc8rBZOSwttIb300jc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AE9F7/379EC742544A11E9A350C127C4F9AE02/AXCw4NBuMUc8rBZOSwttIb300jc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 40:56:bc:91:b7:97:1c:09:4b:7f:ff:c1:72:36:54:a8:e7:d7: 95:5a:c6:1d:23:01:6c:03:d5:0e:85:19:28:e6:24:21:13:c2: 40:ee:c3:87:ed:cb:37:58:e0:58:53:cb:19:35:f0:3c:e6:ab: 67:42:63:44:b2:58:b7:34:17:1a:fe:00:1e:c0:7f:b7:65:91: 01:fd:f1:82:0f:fe:74:ac:0e:c0:6d:6d:97:a4:be:8b:08:22: dc:5f:e6:f8:de:db:b6:58:75:0a:10:78:f8:ab:de:9f:5a:bb: 4f:ea:55:94:aa:f2:20:84:9f:8f:99:a6:c2:34:72:92:d7:53: f5:e3:f7:79:e0:2a:02:d5:f6:3d:70:82:b2:1f:32:c2:ff:dc: 61:50:04:a7:3c:f8:13:e1:e1:d6:d9:64:75:40:32:0c:99:a3: 2d:f7:c5:5c:f0:d3:28:bc:4b:fe:30:a3:ec:c7:96:18:a5:63: 9f:11:09:e8:81:64:da:51:3b:1c:68:48:83:78:4b:9e:5c:b3: cd:42:4c:15:e5:93:c0:cc:6e:34:46:ca:d8:86:14:eb:88:5e: a2:86:9a:f9:61:65:ad:5e:eb:46:96:82:06:a1:12:77:84:39: fc:fb:6b:fe:72:92:12:e0:15:f0:ef:94:19:01:15:d5:af:90: 23:47:09:4f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICD30wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUU5RjcxMTAvBgNVBAUTKDAxNzBCMEUwRDA2RTMxNDczQ0FDMTY0RTRCMEI2RDIx QkRGNEQyMzcwHhcNMjQxMTIyMTczMjA4WhcNMjQxMTI5MTczMjA4WjAYMRYwFAYD VQQDEw02NzQwYzAxOS0zMWJiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw80qmaR7AXUQeETEeMIC2KIDlv/P/TjRJ4FjFsmeXokiGI7IZVLHgTUtnwuw DSgaev73STnuUVlue4Nkaa95QraviiLLRJ4ZQOvLKYKNimdbBvh9zUIZVMQbkvHP vPgwrrAKCza5RzcdhaZApejNgbfbWI0AVGQ6/XYFwDjlazD5CTASt3wdPQgWrvUr +FCszsc2Ytxy7XgTeUQoRkNuLPXe/SSL3p05p6p15afzG9DGROJXgyJ3gibWnspD fafVlBqPTAeafSPVGMx1A4vSMo7U+cEIqnCMer6Fas5CrcEC94Pgaz4+bH3dijRe y1ksC7nB5w+KJuxl3PjYu7aojwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFyQyMR5 WI/7t/74VYnBFYiV64N+MB8GA1UdIwQYMBaAFAFwsODQbjFHPKwWTksLbSG99NI3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRTlGNy8zNzlFQzc0MjU0 NEExMUU5QTM1MEMxMjdDNEY5QUUwMi9BWEN3NE5CdU1VYzhyQlpPU3d0dEliMzAw amMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FYQ3c0TkJ1TVVjOHJCWk9Td3R0SWIzMDBqYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB RTlGNy8zNzlFQzc0MjU0NEExMUU5QTM1MEMxMjdDNEY5QUUwMi9BWEN3NE5CdU1V YzhyQlpPU3d0dEliMzAwamMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBAVryRt5ccCUt//8FyNlSo59eVWsYdIwFsA9UOhRko5iQhE8JA7sOH 7cs3WOBYU8sZNfA85qtnQmNEsli3NBca/gAewH+3ZZEB/fGCD/50rA7AbW2XpL6L CCLcX+b43tu2WHUKEHj4q96fWrtP6lWUqvIghJ+PmabCNHKS11P14/d54CoC1fY9 cIKyHzLC/9xhUASnPPgT4eHW2WR1QDIMmaMt98Vc8NMovEv+MKPsx5YYpWOfEQno gWTaUTscaEiDeEueXLPNQkwV5ZPAzG40RsrYhhTriF6ihpr5YWWtXutGloIGoRJ3 hDn8+2v+cpIS4BXw75QZARXVr5AjRwlP -----END CERTIFICATE-----Generated at Fri Nov 22 19:45:02 2024 by rpki-client on console-fra.rpki-client.org