$ rpki-client -vvf rpki.apnic.net/member_repository/A91BB921/DDB8E14C756211EEBB825257C4F9AE02/CB6icKn0s2sOyJai0hSO5Ok-Xys.mft File: CB6icKn0s2sOyJai0hSO5Ok-Xys.mft (raw, json) Hash identifier: Z20Xi+v7Vl5pFd8lZDzieCiOD7LN03fS2LvHAd1Vvzg= Subject key identifier: 04:E0:CB:D0:04:FF:50:04:8B:39:F3:E6:12:57:21:4D:B0:BA:70:30 Authority key identifier: 08:1E:A2:70:A9:F4:B3:6B:0E:C8:96:A2:D2:14:8E:E4:E9:3E:5F:2B Certificate issuer: /CN=A91BB921/serialNumber=081EA270A9F4B36B0EC896A2D2148EE4E93E5F2B Certificate serial: CC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CB6icKn0s2sOyJai0hSO5Ok-Xys.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BB921/DDB8E14C756211EEBB825257C4F9AE02/CB6icKn0s2sOyJai0hSO5Ok-Xys.mft Manifest number: CA Signing time: Sat 23 Nov 2024 03:52:08 +0000 Manifest this update: Sat 23 Nov 2024 03:52:07 +0000 Manifest next update: Sat 30 Nov 2024 03:52:07 +0000 Files and hashes: 1: CB6icKn0s2sOyJai0hSO5Ok-Xys.crl (hash: FmdmqNllmdBZmBgw9w2OjshDuifFsRmr+2KWXraoOxo=) 2: 5A387584756311EEA256FD57C4F9AE02.roa (hash: UFjrfeuvHWS1oxtfXr6IVRfPvTnGzzV9TdVJHu2o8cI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BB921/DDB8E14C756211EEBB825257C4F9AE02/CB6icKn0s2sOyJai0hSO5Ok-Xys.crl rsync://rpki.apnic.net/member_repository/A91BB921/DDB8E14C756211EEBB825257C4F9AE02/CB6icKn0s2sOyJai0hSO5Ok-Xys.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CB6icKn0s2sOyJai0hSO5Ok-Xys.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 204 (0xcc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BB921/serialNumber=081EA270A9F4B36B0EC896A2D2148EE4E93E5F2B Validity Not Before: Nov 23 03:52:07 2024 GMT Not After : Nov 30 03:52:07 2024 GMT Subject: CN=67415168-478b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:27:f7:fe:2c:9d:51:fa:95:ae:c9:d3:4c:e9: f9:7d:93:00:f3:5d:4d:45:50:a1:89:29:e1:58:a4: 5a:08:ae:c6:f2:65:88:9a:dd:1a:ce:c3:25:d9:49: e5:e9:12:f3:66:7b:2d:2e:52:39:ed:1c:54:b6:91: eb:7a:0a:5e:91:34:17:b5:8f:6c:8d:9e:19:b8:39: 42:de:8e:10:8d:fe:78:31:68:35:fa:89:fc:ee:4d: 6c:e4:89:bd:05:76:b3:1b:9d:2d:de:79:c1:87:15: 1e:3b:79:6f:d4:5c:8a:ac:58:c1:24:66:e0:d2:7a: 7e:17:b2:96:70:80:22:cb:0d:2b:64:ae:fe:92:bf: 30:24:cd:65:e7:c7:ff:9d:be:12:ba:b9:91:a8:a2: 54:2c:70:90:a7:05:45:7c:2f:03:1f:96:92:d1:28: 26:73:1e:76:35:d4:40:60:0f:31:9a:b0:49:15:a2: c5:ad:f7:b9:d8:6e:29:7d:21:6d:31:10:d2:3c:a3: 0c:2e:db:6c:ff:ed:e6:14:82:66:13:86:a4:06:90: 12:7e:4a:37:55:e3:48:46:d7:c8:1f:3d:a0:29:5b: 35:81:44:44:ba:08:9c:0b:75:73:82:f3:0c:d9:c4: 49:16:2f:59:89:e4:a8:b8:09:e5:e9:b4:fe:9b:76: fd:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:E0:CB:D0:04:FF:50:04:8B:39:F3:E6:12:57:21:4D:B0:BA:70:30 X509v3 Authority Key Identifier: keyid:08:1E:A2:70:A9:F4:B3:6B:0E:C8:96:A2:D2:14:8E:E4:E9:3E:5F:2B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BB921/DDB8E14C756211EEBB825257C4F9AE02/CB6icKn0s2sOyJai0hSO5Ok-Xys.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CB6icKn0s2sOyJai0hSO5Ok-Xys.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BB921/DDB8E14C756211EEBB825257C4F9AE02/CB6icKn0s2sOyJai0hSO5Ok-Xys.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 79:d5:c6:70:50:49:30:d2:26:4d:2d:c9:30:55:ac:53:23:1d: 1c:a9:02:df:a5:ee:01:dd:96:51:0e:e5:ce:7d:be:e6:a9:e6: f0:2a:b6:91:e0:19:2d:0c:e9:df:64:43:f8:8d:3a:55:33:49: c8:d9:f0:2f:5f:37:08:fb:f9:0d:e6:9a:e6:a9:e1:2e:1e:4c: 01:16:92:cc:15:ef:b4:e0:4e:5b:65:ed:9c:f9:51:97:38:d4: 80:0e:ab:5f:d9:d3:48:c6:d1:5c:7b:0a:e4:e6:8f:a0:ef:5f: ab:d1:05:eb:f9:cb:0f:ab:2f:88:32:02:8f:3a:25:94:1c:1d: 24:17:0a:0d:1a:3e:e4:15:c2:ba:c5:9b:63:7d:91:61:43:16: 68:c6:ca:f2:e3:b2:ba:26:be:cd:14:cb:70:30:2e:29:90:0d: 15:8a:2d:08:dd:07:95:bf:80:6e:37:98:6a:98:73:4d:26:61: 13:59:c8:22:eb:a9:cd:6a:11:84:53:e4:00:f9:44:a3:f6:81: 8e:b8:23:fa:f1:6c:ba:da:6b:a0:d0:31:29:aa:54:0f:4e:c0: 11:7d:7d:9c:07:75:b9:0e:b7:56:34:e9:db:01:db:79:03:5f: 05:82:2c:92:8b:48:ad:38:29:e7:c0:97:48:d7:ca:42:01:48: 91:26:d2:ee -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAMwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkI5MjExMTAvBgNVBAUTKDA4MUVBMjcwQTlGNEIzNkIwRUM4OTZBMkQyMTQ4RUU0 RTkzRTVGMkIwHhcNMjQxMTIzMDM1MjA3WhcNMjQxMTMwMDM1MjA3WjAYMRYwFAYD VQQDEw02NzQxNTE2OC00NzhiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzSf3/iydUfqVrsnTTOn5fZMA811NRVChiSnhWKRaCK7G8mWImt0azsMl2Unl 6RLzZnstLlI57RxUtpHregpekTQXtY9sjZ4ZuDlC3o4Qjf54MWg1+on87k1s5Im9 BXazG50t3nnBhxUeO3lv1FyKrFjBJGbg0np+F7KWcIAiyw0rZK7+kr8wJM1l58f/ nb4SurmRqKJULHCQpwVFfC8DH5aS0Sgmcx52NdRAYA8xmrBJFaLFrfe52G4pfSFt MRDSPKMMLtts/+3mFIJmE4akBpASfko3VeNIRtfIHz2gKVs1gUREugicC3VzgvMM 2cRJFi9ZieSouAnl6bT+m3b9zwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFATgy9AE /1AEiznz5hJXIU2wunAwMB8GA1UdIwQYMBaAFAgeonCp9LNrDsiWotIUjuTpPl8r MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQjkyMS9EREI4RTE0Qzc1 NjIxMUVFQkI4MjUyNTdDNEY5QUUwMi9DQjZpY0tuMHMyc095SmFpMGhTTzVPay1Y eXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NCNmljS24wczJzT3lKYWkwaFNPNU9rLVh5cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QjkyMS9EREI4RTE0Qzc1NjIxMUVFQkI4MjUyNTdDNEY5QUUwMi9DQjZpY0tuMHMy c095SmFpMGhTTzVPay1YeXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB51cZwUEkw0iZNLckwVaxTIx0cqQLfpe4B3ZZRDuXOfb7mqebwKraR 4BktDOnfZEP4jTpVM0nI2fAvXzcI+/kN5prmqeEuHkwBFpLMFe+04E5bZe2c+VGX ONSADqtf2dNIxtFcewrk5o+g71+r0QXr+csPqy+IMgKPOiWUHB0kFwoNGj7kFcK6 xZtjfZFhQxZoxsry47K6Jr7NFMtwMC4pkA0Vii0I3QeVv4BuN5hqmHNNJmETWcgi 66nNahGEU+QA+USj9oGOuCP68Wy62mug0DEpqlQPTsARfX2cB3W5DrdWNOnbAdt5 A18FgiySi0itOCnnwJdI18pCAUiRJtLu -----END CERTIFICATE-----Generated at Sat Nov 23 05:02:56 2024 by rpki-client on console-fra.rpki-client.org