$ rpki-client -vvf rpki.apnic.net/member_repository/A91B8E38/51F0DB3C3FFE11ED9A87A315C4F9AE02/ck4fZGxFGwGeHNo21DRq25tf2_g.mft File: ck4fZGxFGwGeHNo21DRq25tf2_g.mft (raw, json) Hash identifier: LKI7WTtiXC+4UhckdlDtjBFawnvNJpl37/RAP7UJ9pc= Subject key identifier: 16:7C:A6:64:6C:D0:02:46:91:B9:94:E8:7C:E0:8A:FC:50:21:FB:DA Authority key identifier: 72:4E:1F:64:6C:45:1B:01:9E:1C:DA:36:D4:34:6A:DB:9B:5F:DB:F8 Certificate issuer: /CN=A91B8E38/serialNumber=724E1F646C451B019E1CDA36D4346ADB9B5FDBF8 Certificate serial: 0199 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ck4fZGxFGwGeHNo21DRq25tf2_g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B8E38/51F0DB3C3FFE11ED9A87A315C4F9AE02/ck4fZGxFGwGeHNo21DRq25tf2_g.mft Manifest number: 0196 Signing time: Sat 23 Nov 2024 01:51:55 +0000 Manifest this update: Sat 23 Nov 2024 01:51:55 +0000 Manifest next update: Sat 30 Nov 2024 01:51:55 +0000 Files and hashes: 1: ck4fZGxFGwGeHNo21DRq25tf2_g.crl (hash: cvanGsfyKFwpbWkRmkWu3yK+jkq0XW0FbH6MOcNsJu4=) 2: A6789038400211ED808CCF0DC4F9AE02.roa (hash: AFcbY0/3GFwr3EcAHIPw3DWr7uIr3rpZ3pX3o3qycLQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B8E38/51F0DB3C3FFE11ED9A87A315C4F9AE02/ck4fZGxFGwGeHNo21DRq25tf2_g.crl rsync://rpki.apnic.net/member_repository/A91B8E38/51F0DB3C3FFE11ED9A87A315C4F9AE02/ck4fZGxFGwGeHNo21DRq25tf2_g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ck4fZGxFGwGeHNo21DRq25tf2_g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 409 (0x199) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B8E38/serialNumber=724E1F646C451B019E1CDA36D4346ADB9B5FDBF8 Validity Not Before: Nov 23 01:51:55 2024 GMT Not After : Nov 30 01:51:55 2024 GMT Subject: CN=6741353b-b813 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:d5:d2:0b:a5:b0:f7:15:ba:b6:26:ea:ee:a0: db:24:bb:e2:70:91:e6:73:b3:d1:45:cd:2b:9d:b3: 10:7f:60:10:7a:ee:cf:ed:96:85:3d:eb:e0:91:6e: a6:c1:8f:bd:ac:94:32:a4:a5:f9:8b:1f:05:53:83: ba:47:11:5b:b8:3f:a8:d1:68:24:df:03:4c:7e:06: 81:da:42:fb:a0:3c:2e:47:6c:04:d6:86:f4:f5:1e: b3:2c:5e:56:7f:8f:79:7d:67:e8:ee:37:83:ca:fc: 16:23:7f:28:49:6e:e7:1f:39:b2:5b:33:85:e3:a6: 24:f3:78:1f:26:05:02:5c:f0:26:26:f9:b8:15:3a: a6:bb:71:cf:53:16:0a:60:f3:fb:94:f2:e2:c4:49: c6:57:8f:a8:7c:63:b7:b5:3b:40:4d:6c:9a:37:ea: 90:3a:79:35:8f:0e:97:c1:00:c3:76:38:18:c0:e9: 48:ba:10:80:c1:23:28:7c:03:53:83:b9:2f:0d:52: d5:a3:ac:42:33:0e:2c:dd:c4:ee:78:60:72:4b:80: 0a:5c:d8:9d:f9:72:dc:46:ae:8a:38:b2:94:21:c4: e8:64:5a:e7:18:d1:84:2f:51:5d:b2:a4:06:82:ef: 28:dd:9e:18:14:df:9e:1c:7b:85:bd:90:11:4d:9c: 6a:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:7C:A6:64:6C:D0:02:46:91:B9:94:E8:7C:E0:8A:FC:50:21:FB:DA X509v3 Authority Key Identifier: keyid:72:4E:1F:64:6C:45:1B:01:9E:1C:DA:36:D4:34:6A:DB:9B:5F:DB:F8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B8E38/51F0DB3C3FFE11ED9A87A315C4F9AE02/ck4fZGxFGwGeHNo21DRq25tf2_g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ck4fZGxFGwGeHNo21DRq25tf2_g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B8E38/51F0DB3C3FFE11ED9A87A315C4F9AE02/ck4fZGxFGwGeHNo21DRq25tf2_g.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 12:55:2d:2c:32:cd:0e:5c:81:42:42:3b:33:e7:29:0b:2a:fe: a5:b9:d8:24:21:b7:6a:ef:11:0a:e3:3d:20:fd:6c:eb:6b:b6: 6a:30:dd:f3:e7:31:8b:2e:3f:68:0e:8c:02:a7:b6:37:71:1e: a6:b8:f2:41:d1:76:b5:72:08:4b:25:09:1b:74:fd:b3:4e:de: 14:85:bc:41:84:c1:e9:67:f1:44:e1:f6:1f:bd:63:77:fc:f6: 52:45:15:cb:6a:af:8c:a9:9b:dd:56:b5:0b:0c:33:14:49:6f: 68:2c:44:3d:29:5a:43:75:b2:9a:59:bc:c1:16:16:81:28:be: 27:a4:b8:c7:c9:3e:5c:dd:c8:bc:33:bb:e3:e0:df:0d:10:5f: be:ab:c3:3d:9d:83:64:69:d6:0d:89:d4:af:4a:cf:17:47:af: 95:eb:1c:d0:bb:d7:42:1f:b1:96:d6:db:b9:16:aa:d7:39:b8: 58:6c:7c:dd:41:fc:43:d0:55:9f:22:42:a0:56:41:66:ae:85: b8:63:85:48:11:b5:88:17:42:5e:44:ff:58:2d:b6:c9:2b:05: 2b:97:8a:70:d2:38:e3:b9:cf:a9:0e:2d:38:7d:99:b1:35:21: 87:3b:0b:f9:4a:19:3c:db:e4:f9:9d:ff:ee:48:4f:01:29:e2: 86:cc:0b:dd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAZkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjhFMzgxMTAvBgNVBAUTKDcyNEUxRjY0NkM0NTFCMDE5RTFDREEzNkQ0MzQ2QURC OUI1RkRCRjgwHhcNMjQxMTIzMDE1MTU1WhcNMjQxMTMwMDE1MTU1WjAYMRYwFAYD VQQDEw02NzQxMzUzYi1iODEzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4dXSC6Ww9xW6tibq7qDbJLvicJHmc7PRRc0rnbMQf2AQeu7P7ZaFPevgkW6m wY+9rJQypKX5ix8FU4O6RxFbuD+o0Wgk3wNMfgaB2kL7oDwuR2wE1ob09R6zLF5W f495fWfo7jeDyvwWI38oSW7nHzmyWzOF46Yk83gfJgUCXPAmJvm4FTqmu3HPUxYK YPP7lPLixEnGV4+ofGO3tTtATWyaN+qQOnk1jw6XwQDDdjgYwOlIuhCAwSMofANT g7kvDVLVo6xCMw4s3cTueGByS4AKXNid+XLcRq6KOLKUIcToZFrnGNGEL1FdsqQG gu8o3Z4YFN+eHHuFvZARTZxqpwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBZ8pmRs 0AJGkbmU6HzgivxQIfvaMB8GA1UdIwQYMBaAFHJOH2RsRRsBnhzaNtQ0atubX9v4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCOEUzOC81MUYwREIzQzNG RkUxMUVEOUE4N0EzMTVDNEY5QUUwMi9jazRmWkd4Rkd3R2VITm8yMURScTI1dGYy X2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NrNGZaR3hGR3dHZUhObzIxRFJxMjV0ZjJfZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC OEUzOC81MUYwREIzQzNGRkUxMUVEOUE4N0EzMTVDNEY5QUUwMi9jazRmWkd4Rkd3 R2VITm8yMURScTI1dGYyX2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQASVS0sMs0OXIFCQjsz5ykLKv6ludgkIbdq7xEK4z0g/Wzra7ZqMN3z 5zGLLj9oDowCp7Y3cR6muPJB0Xa1cghLJQkbdP2zTt4UhbxBhMHpZ/FE4fYfvWN3 /PZSRRXLaq+MqZvdVrULDDMUSW9oLEQ9KVpDdbKaWbzBFhaBKL4npLjHyT5c3ci8 M7vj4N8NEF++q8M9nYNkadYNidSvSs8XR6+V6xzQu9dCH7GW1tu5FqrXObhYbHzd QfxD0FWfIkKgVkFmroW4Y4VIEbWIF0JeRP9YLbbJKwUrl4pw0jjjuc+pDi04fZmx NSGHOwv5Shk82+T5nf/uSE8BKeKGzAvd -----END CERTIFICATE-----Generated at Sat Nov 23 02:33:44 2024 by rpki-client on console-fra.rpki-client.org