$ rpki-client -vvf rpki.apnic.net/member_repository/A91BBCC9/D30B15C0B6CF11EB84EB1851C4F9AE02/redjNI0CWa0SzYi3ZNOYy4rHQMk.mft File: redjNI0CWa0SzYi3ZNOYy4rHQMk.mft (raw, json) Hash identifier: sOJaCY0gRlliDX1ilaMo/XoLO7eJScA/pMqTyW9gbXA= Subject key identifier: EC:CA:3B:93:F1:14:7D:B7:22:91:B1:D9:8D:CA:E7:80:9A:93:83:B4 Authority key identifier: AD:E7:63:34:8D:02:59:AD:12:CD:88:B7:64:D3:98:CB:8A:C7:40:C9 Certificate issuer: /CN=A91BBCC9/serialNumber=ADE763348D0259AD12CD88B764D398CB8AC740C9 Certificate serial: 0587 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/redjNI0CWa0SzYi3ZNOYy4rHQMk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BBCC9/D30B15C0B6CF11EB84EB1851C4F9AE02/redjNI0CWa0SzYi3ZNOYy4rHQMk.mft Manifest number: 057F Signing time: Fri 22 Nov 2024 22:49:26 +0000 Manifest this update: Fri 22 Nov 2024 22:49:26 +0000 Manifest next update: Fri 29 Nov 2024 22:49:26 +0000 Files and hashes: 1: redjNI0CWa0SzYi3ZNOYy4rHQMk.crl (hash: auyzX3PGMyVMhgkBEppa0kJmaRR7rDQJUPeNsLaos28=) 2: B69C27DCB6D711EB9D603F7DC4F9AE02.roa (hash: OWf8PDQ8WMymcLSHEfIQAksI7XQ+plK8c+CWI6STWXo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BBCC9/D30B15C0B6CF11EB84EB1851C4F9AE02/redjNI0CWa0SzYi3ZNOYy4rHQMk.crl rsync://rpki.apnic.net/member_repository/A91BBCC9/D30B15C0B6CF11EB84EB1851C4F9AE02/redjNI0CWa0SzYi3ZNOYy4rHQMk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/redjNI0CWa0SzYi3ZNOYy4rHQMk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1415 (0x587) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BBCC9/serialNumber=ADE763348D0259AD12CD88B764D398CB8AC740C9 Validity Not Before: Nov 22 22:49:26 2024 GMT Not After : Nov 29 22:49:26 2024 GMT Subject: CN=67410a76-45b2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:fa:b6:c1:15:24:60:47:b2:23:4d:7d:89:92: 34:98:8e:6e:7f:45:b0:77:30:de:fc:58:f7:9a:8d: cb:ec:3e:3a:a8:f8:fb:a5:1e:3a:cb:e4:e7:e7:0d: fe:65:56:50:5f:c6:92:35:a9:39:f6:87:41:74:48: b6:a5:70:1f:b6:48:cc:17:90:7a:30:78:5e:de:07: dc:1e:92:16:fe:13:ce:c0:0e:4c:98:dd:8e:31:55: a1:de:21:01:4c:27:7d:63:4a:9f:a8:08:5d:59:78: e0:82:92:51:06:e4:86:77:71:ef:20:c2:d2:4d:4d: 99:e1:09:5e:80:ab:64:7c:d9:ce:3b:7e:02:ae:98: 6c:56:ed:0f:ec:48:fd:45:bb:ee:2e:a1:d5:c7:d6: 72:3b:e3:3b:7d:a7:19:2f:fb:3b:09:28:f3:2c:8f: a0:62:63:9c:04:d7:5e:c8:13:25:95:61:17:cc:24: 08:34:80:67:e3:7f:eb:bd:37:b5:fd:6f:cc:14:94: 93:bf:59:26:ba:de:9f:53:4f:3f:96:72:b4:e2:cc: e5:80:6c:d6:26:a2:60:53:73:b0:d9:1d:f0:ae:65: 9c:59:ee:32:11:31:f2:3c:09:ae:e3:68:f7:b2:71: ca:22:2e:f7:1d:3b:01:4b:df:3a:a1:a3:de:96:0d: 28:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EC:CA:3B:93:F1:14:7D:B7:22:91:B1:D9:8D:CA:E7:80:9A:93:83:B4 X509v3 Authority Key Identifier: keyid:AD:E7:63:34:8D:02:59:AD:12:CD:88:B7:64:D3:98:CB:8A:C7:40:C9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BBCC9/D30B15C0B6CF11EB84EB1851C4F9AE02/redjNI0CWa0SzYi3ZNOYy4rHQMk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/redjNI0CWa0SzYi3ZNOYy4rHQMk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BBCC9/D30B15C0B6CF11EB84EB1851C4F9AE02/redjNI0CWa0SzYi3ZNOYy4rHQMk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption cb:f4:00:a2:bd:ab:01:3e:83:da:07:bc:e9:39:cd:38:72:0f: 3a:5c:91:3e:f6:f6:f6:67:d5:c0:f7:83:1b:37:57:0c:76:61: 41:fb:7b:1d:10:43:21:48:b8:3d:a7:33:d0:4f:21:32:9a:52: ed:13:de:ea:64:10:00:84:ed:04:4e:5c:42:af:a8:f1:26:90: e8:5b:8c:d4:48:a5:73:3f:dd:57:cc:3b:4e:33:39:bd:f9:06: ca:89:4b:dc:dc:44:8c:b4:aa:97:3c:37:8f:9c:47:a0:47:b7: 91:c2:2c:46:af:6b:f0:1c:b2:72:8e:23:ae:b9:a2:e0:58:21: bb:7f:6c:28:11:ab:7d:a3:fc:82:6e:e9:e6:3e:cb:27:bc:01: d3:b6:33:fd:ca:c2:63:e2:bb:55:a1:f2:f9:a9:eb:1f:19:7c: f2:a2:bf:1c:7b:1c:c7:1b:07:b6:5b:56:f8:96:8e:e4:5e:44: ec:7e:48:e6:ad:b1:a5:14:c8:be:6b:fa:f8:ff:49:0a:7f:54: 16:03:4c:27:eb:c6:e4:7f:21:81:61:7b:6b:2b:b8:6f:4a:14: a4:86:74:50:04:77:72:3d:87:b2:f5:42:9e:ab:36:fa:bb:1e: db:b1:2e:41:32:23:08:06:37:89:32:a5:ec:f4:e2:81:64:3e: a1:10:c2:7e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBYcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkJDQzkxMTAvBgNVBAUTKEFERTc2MzM0OEQwMjU5QUQxMkNEODhCNzY0RDM5OENC OEFDNzQwQzkwHhcNMjQxMTIyMjI0OTI2WhcNMjQxMTI5MjI0OTI2WjAYMRYwFAYD VQQDEw02NzQxMGE3Ni00NWIyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuPq2wRUkYEeyI019iZI0mI5uf0WwdzDe/Fj3mo3L7D46qPj7pR46y+Tn5w3+ ZVZQX8aSNak59odBdEi2pXAftkjMF5B6MHhe3gfcHpIW/hPOwA5MmN2OMVWh3iEB TCd9Y0qfqAhdWXjggpJRBuSGd3HvIMLSTU2Z4QlegKtkfNnOO34CrphsVu0P7Ej9 RbvuLqHVx9ZyO+M7facZL/s7CSjzLI+gYmOcBNdeyBMllWEXzCQINIBn43/rvTe1 /W/MFJSTv1kmut6fU08/lnK04szlgGzWJqJgU3Ow2R3wrmWcWe4yETHyPAmu42j3 snHKIi73HTsBS986oaPelg0o3wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOzKO5Px FH23IpGx2Y3K54Cak4O0MB8GA1UdIwQYMBaAFK3nYzSNAlmtEs2It2TTmMuKx0DJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQkNDOS9EMzBCMTVDMEI2 Q0YxMUVCODRFQjE4NTFDNEY5QUUwMi9yZWRqTkkwQ1dhMFN6WWkzWk5PWXk0ckhR TWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JlZGpOSTBDV2EwU3pZaTNaTk9ZeTRySFFNay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QkNDOS9EMzBCMTVDMEI2Q0YxMUVCODRFQjE4NTFDNEY5QUUwMi9yZWRqTkkwQ1dh MFN6WWkzWk5PWXk0ckhRTWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDL9ACivasBPoPaB7zpOc04cg86XJE+9vb2Z9XA94MbN1cMdmFB+3sd EEMhSLg9pzPQTyEymlLtE97qZBAAhO0ETlxCr6jxJpDoW4zUSKVzP91XzDtOMzm9 +QbKiUvc3ESMtKqXPDePnEegR7eRwixGr2vwHLJyjiOuuaLgWCG7f2woEat9o/yC bunmPssnvAHTtjP9ysJj4rtVofL5qesfGXzyor8cexzHGwe2W1b4lo7kXkTsfkjm rbGlFMi+a/r4/0kKf1QWA0wn68bkfyGBYXtrK7hvShSkhnRQBHdyPYey9UKeqzb6 ux7bsS5BMiMIBjeJMqXs9OKBZD6hEMJ+ -----END CERTIFICATE-----Generated at Fri Nov 22 23:39:33 2024 by rpki-client on console-fra.rpki-client.org