$ rpki-client -vvf rpki.apnic.net/member_repository/A91AF406/3F670C0CA5F211E897A7503AC4F9AE02/vHENBWM8XhGwdEtxrruIriskRuM.mft File: vHENBWM8XhGwdEtxrruIriskRuM.mft (raw, json) Hash identifier: Yucml7fnXar6N+jmA1tQ9ybr7YKLxgbbrYsRFMC0h90= Subject key identifier: 2F:DC:C5:B1:98:2A:2C:B0:EE:92:79:62:50:A8:81:7F:C1:15:44:7E Authority key identifier: BC:71:0D:05:63:3C:5E:11:B0:74:4B:71:AE:BB:88:AE:2B:24:46:E3 Certificate issuer: /CN=A91AF406/serialNumber=BC710D05633C5E11B0744B71AEBB88AE2B2446E3 Certificate serial: 12E2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vHENBWM8XhGwdEtxrruIriskRuM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AF406/3F670C0CA5F211E897A7503AC4F9AE02/vHENBWM8XhGwdEtxrruIriskRuM.mft Manifest number: 12DB Signing time: Fri 22 Nov 2024 17:03:27 +0000 Manifest this update: Fri 22 Nov 2024 17:03:27 +0000 Manifest next update: Fri 29 Nov 2024 17:03:27 +0000 Files and hashes: 1: vHENBWM8XhGwdEtxrruIriskRuM.crl (hash: HNTHKG6ulPEz1TpLWjbbLrJfWkovOd5SlxdKj/qWJZ0=) 2: C2065F2CA5F311E8B54BF03DC4F9AE02.roa (hash: 7dzMQW8xZe2lq7d8lclvmxKRE19SR0FNahUj7xIAu1o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AF406/3F670C0CA5F211E897A7503AC4F9AE02/vHENBWM8XhGwdEtxrruIriskRuM.crl rsync://rpki.apnic.net/member_repository/A91AF406/3F670C0CA5F211E897A7503AC4F9AE02/vHENBWM8XhGwdEtxrruIriskRuM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vHENBWM8XhGwdEtxrruIriskRuM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 16:30:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4834 (0x12e2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AF406/serialNumber=BC710D05633C5E11B0744B71AEBB88AE2B2446E3 Validity Not Before: Nov 22 17:03:27 2024 GMT Not After : Nov 29 17:03:27 2024 GMT Subject: CN=6740b95f-066e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:26:73:7b:f9:a6:72:cf:d2:b2:f7:4d:f4:8f: ff:5f:a7:6d:37:83:54:ac:13:6a:73:47:5d:2e:61: 07:a5:5e:af:50:45:a2:6d:be:6d:f4:f0:31:8d:e8: 8f:12:a6:c3:06:a1:cc:8b:b8:19:c3:41:cf:49:44: b1:bc:a7:54:56:9b:70:57:04:f8:a0:48:bd:92:3a: 16:8c:74:0d:36:e9:8b:82:b4:04:ad:4f:bc:79:0d: 47:41:b8:fb:80:37:5f:14:e8:2a:cd:b1:d9:03:b7: e4:cf:3f:83:a6:93:18:a5:45:2b:b9:29:52:f3:c8: 50:63:1f:c7:02:5b:e5:06:05:01:c6:da:16:36:5d: 64:34:9e:d9:93:f2:d1:46:c9:0f:ce:cc:a3:fb:7c: 1d:0c:c8:e2:f9:bb:71:a8:c8:d1:75:e5:51:ec:f8: eb:1f:38:47:b2:e6:76:b4:c4:b9:e7:ef:85:de:a8: e3:99:43:02:00:40:98:69:c2:43:c3:af:41:dd:34: 24:80:d9:17:94:bf:54:15:cc:9b:24:25:e1:48:59: 27:15:d6:f7:a1:02:4b:42:4f:45:8f:37:e8:dc:a3: 76:8d:21:70:8e:50:82:a2:18:1f:3d:89:6a:f5:77: 29:05:d3:3d:39:7b:ee:d7:07:46:11:b0:28:cc:7f: 0a:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:DC:C5:B1:98:2A:2C:B0:EE:92:79:62:50:A8:81:7F:C1:15:44:7E X509v3 Authority Key Identifier: keyid:BC:71:0D:05:63:3C:5E:11:B0:74:4B:71:AE:BB:88:AE:2B:24:46:E3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AF406/3F670C0CA5F211E897A7503AC4F9AE02/vHENBWM8XhGwdEtxrruIriskRuM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vHENBWM8XhGwdEtxrruIriskRuM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AF406/3F670C0CA5F211E897A7503AC4F9AE02/vHENBWM8XhGwdEtxrruIriskRuM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 13:9b:1b:ce:6a:98:97:69:06:52:6c:36:d9:2e:e7:fd:3d:ba: 6c:a0:2e:4f:a2:2b:4e:8c:4a:e4:23:5c:4f:69:17:8f:e6:04: f9:91:ff:2a:ca:32:dc:65:6d:b3:b7:a2:be:e4:b0:e5:14:4e: 0f:10:27:f1:be:95:2c:e3:a7:10:4e:05:0e:88:cb:30:66:ea: f8:5d:1b:38:82:9c:ad:49:1b:ce:70:b7:2e:29:e0:6f:f6:ac: a3:04:b0:21:6f:3b:f0:ec:36:8c:04:0f:c5:15:f3:c6:4a:33: ee:fa:5a:80:5e:f1:6e:20:18:f8:45:51:e4:d2:8f:a2:db:e8: 4e:40:73:11:54:b3:1b:53:75:e2:fe:f1:b3:80:ef:3c:4f:2a: 29:44:23:f6:7e:b5:60:73:0e:a5:61:8e:c2:b8:5a:12:82:84: 3c:a8:28:45:da:d1:69:d1:c0:78:5e:2d:ce:dc:c1:fe:e5:af: 26:cc:32:90:f9:c0:01:0d:8d:b3:2b:97:c8:aa:8d:88:47:f1: bb:d2:11:2b:e9:f2:b1:50:ef:85:d5:d4:ef:1a:0a:14:18:32: e2:80:cd:bd:d4:01:c0:33:3a:1a:5c:83:f0:06:44:ca:8b:1e: eb:67:42:30:ce:e1:39:78:0b:17:f6:ec:e1:d8:99:cc:f9:30: b7:54:02:66 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEuIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUY0MDYxMTAvBgNVBAUTKEJDNzEwRDA1NjMzQzVFMTFCMDc0NEI3MUFFQkI4OEFF MkIyNDQ2RTMwHhcNMjQxMTIyMTcwMzI3WhcNMjQxMTI5MTcwMzI3WjAYMRYwFAYD VQQDEw02NzQwYjk1Zi0wNjZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvSZze/mmcs/SsvdN9I//X6dtN4NUrBNqc0ddLmEHpV6vUEWibb5t9PAxjeiP EqbDBqHMi7gZw0HPSUSxvKdUVptwVwT4oEi9kjoWjHQNNumLgrQErU+8eQ1HQbj7 gDdfFOgqzbHZA7fkzz+DppMYpUUruSlS88hQYx/HAlvlBgUBxtoWNl1kNJ7Zk/LR RskPzsyj+3wdDMji+btxqMjRdeVR7PjrHzhHsuZ2tMS55++F3qjjmUMCAECYacJD w69B3TQkgNkXlL9UFcybJCXhSFknFdb3oQJLQk9Fjzfo3KN2jSFwjlCCohgfPYlq 9XcpBdM9OXvu1wdGEbAozH8KSQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFC/cxbGY Kiyw7pJ5YlCogX/BFUR+MB8GA1UdIwQYMBaAFLxxDQVjPF4RsHRLca67iK4rJEbj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRjQwNi8zRjY3MEMwQ0E1 RjIxMUU4OTdBNzUwM0FDNEY5QUUwMi92SEVOQldNOFhoR3dkRXR4cnJ1SXJpc2tS dU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ZIRU5CV004WGhHd2RFdHhycnVJcmlza1J1TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB RjQwNi8zRjY3MEMwQ0E1RjIxMUU4OTdBNzUwM0FDNEY5QUUwMi92SEVOQldNOFho R3dkRXR4cnJ1SXJpc2tSdU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQATmxvOapiXaQZSbDbZLuf9PbpsoC5PoitOjErkI1xPaReP5gT5kf8q yjLcZW2zt6K+5LDlFE4PECfxvpUs46cQTgUOiMswZur4XRs4gpytSRvOcLcuKeBv 9qyjBLAhbzvw7DaMBA/FFfPGSjPu+lqAXvFuIBj4RVHk0o+i2+hOQHMRVLMbU3Xi /vGzgO88TyopRCP2frVgcw6lYY7CuFoSgoQ8qChF2tFp0cB4Xi3O3MH+5a8mzDKQ +cABDY2zK5fIqo2IR/G70hEr6fKxUO+F1dTvGgoUGDLigM291AHAMzoaXIPwBkTK ix7rZ0IwzuE5eAsX9uzh2JnM+TC3VAJm -----END CERTIFICATE-----Generated at Fri Nov 22 17:56:19 2024 by rpki-client on console-fra.rpki-client.org