$ rpki-client -vvf rpki.apnic.net/member_repository/A91BEA2A/3D350FD2025611EDA1322D5DC4F9AE02/I1WemnFX565_YExCiDcpLeAzCaA.mft File: I1WemnFX565_YExCiDcpLeAzCaA.mft (raw, json) Hash identifier: PlcN5WsNk7atUwj4yE5x91mq5Yezdnfza5xyYHi/XZM= Subject key identifier: 67:AE:28:CE:29:C3:6A:CB:62:80:84:88:BE:CA:24:A3:8C:28:D6:F5 Authority key identifier: 23:55:9E:9A:71:57:E7:AE:7F:60:4C:42:88:37:29:2D:E0:33:09:A0 Certificate issuer: /CN=A91BEA2A/serialNumber=23559E9A7157E7AE7F604C428837292DE03309A0 Certificate serial: 0236 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/I1WemnFX565_YExCiDcpLeAzCaA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BEA2A/3D350FD2025611EDA1322D5DC4F9AE02/I1WemnFX565_YExCiDcpLeAzCaA.mft Manifest number: 0233 Signing time: Sat 23 Nov 2024 01:23:34 +0000 Manifest this update: Sat 23 Nov 2024 01:23:34 +0000 Manifest next update: Sat 30 Nov 2024 01:23:34 +0000 Files and hashes: 1: I1WemnFX565_YExCiDcpLeAzCaA.crl (hash: GK/cetQnYdMvLYyKv23F4Fo7oobYkF6dIfLQFnF/6Tg=) 2: CFF0FDEC025911EDA0A85765C4F9AE02.roa (hash: IIET7EYwWspwql9sc/JN8kiozR7Qi5MMWfPVZw350Q4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BEA2A/3D350FD2025611EDA1322D5DC4F9AE02/I1WemnFX565_YExCiDcpLeAzCaA.crl rsync://rpki.apnic.net/member_repository/A91BEA2A/3D350FD2025611EDA1322D5DC4F9AE02/I1WemnFX565_YExCiDcpLeAzCaA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/I1WemnFX565_YExCiDcpLeAzCaA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 566 (0x236) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BEA2A/serialNumber=23559E9A7157E7AE7F604C428837292DE03309A0 Validity Not Before: Nov 23 01:23:34 2024 GMT Not After : Nov 30 01:23:34 2024 GMT Subject: CN=67412e96-7db5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:53:7e:72:5b:58:2e:82:9b:c2:2d:66:ee:2d: e1:a0:ee:d6:ac:f8:a4:38:e0:50:6b:63:57:7f:0a: f8:42:bd:0c:d7:71:19:80:42:41:4b:03:ab:9d:8c: ab:f2:a9:ec:3b:73:5a:be:06:1a:ad:d7:dd:06:50: d1:a7:84:f7:58:d9:74:f2:6f:6f:ac:7e:ab:bd:dc: 4a:49:1f:99:8f:3b:98:ec:e9:8a:01:8c:ca:a1:4c: e9:4d:ed:10:42:c0:b4:59:d3:df:93:0b:e2:bb:14: df:bb:2b:22:f9:62:db:7a:e5:d7:41:2b:6c:58:9d: b2:85:a4:a5:6a:6b:9e:8b:4c:ed:73:fb:47:c3:92: ba:0d:f1:59:a9:dd:f8:2b:dc:7f:cd:40:1b:7d:db: af:cf:76:00:38:04:fb:f2:ac:48:05:ee:1e:66:84: 58:61:4f:ed:95:4e:43:df:43:fd:a0:51:0b:c7:08: 47:1d:3e:92:85:06:e8:7f:4a:b5:77:f3:4e:c5:0b: 61:e3:86:bd:37:e7:12:6d:df:6e:75:4e:a6:12:b8: a7:4b:08:a3:29:e1:ec:86:ee:31:10:bf:50:e9:ce: f5:50:26:bd:db:df:7c:0b:17:37:7c:21:a5:7b:d3: 8d:be:2c:00:01:6e:c7:9d:45:67:50:85:90:6e:3b: 61:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:AE:28:CE:29:C3:6A:CB:62:80:84:88:BE:CA:24:A3:8C:28:D6:F5 X509v3 Authority Key Identifier: keyid:23:55:9E:9A:71:57:E7:AE:7F:60:4C:42:88:37:29:2D:E0:33:09:A0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BEA2A/3D350FD2025611EDA1322D5DC4F9AE02/I1WemnFX565_YExCiDcpLeAzCaA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/I1WemnFX565_YExCiDcpLeAzCaA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BEA2A/3D350FD2025611EDA1322D5DC4F9AE02/I1WemnFX565_YExCiDcpLeAzCaA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 66:6d:4d:d4:6f:ec:a1:9f:ab:86:a7:e0:4a:1e:c1:f4:28:35: 91:43:8d:15:d5:0c:b4:50:1f:53:17:ae:6c:57:ea:05:09:e5: 75:19:4d:53:3b:ac:99:8d:69:a1:f3:da:aa:15:4b:98:b3:ac: f2:b8:6d:d0:b9:99:1e:79:69:e6:72:8f:6c:45:f5:e6:53:b8: 3c:7d:53:58:c0:57:7c:19:8e:26:17:c9:16:15:94:52:23:48: 88:3a:c6:6d:80:1d:45:fa:87:8a:53:42:8d:3d:08:19:99:6a: 08:43:1e:80:72:b9:33:dd:2a:41:df:17:d3:1d:ce:f3:b8:1e: 8e:c3:5a:31:69:ad:09:d2:11:35:69:7c:86:e8:f5:cc:3c:43: 9d:a8:5e:39:fc:46:1f:76:82:61:ea:94:81:d0:82:92:cb:7e: 0f:3a:27:58:2f:29:86:f3:bf:d4:b7:2e:eb:5d:41:52:7b:93: 11:d2:af:c8:97:6a:d2:11:ea:a5:cf:3d:37:45:08:91:01:f6: 16:90:0c:52:39:e9:cc:ba:0a:bc:4f:0e:c7:5c:a7:ab:ae:17: 83:d0:be:4f:36:74:ea:72:53:ec:16:21:83:1e:a1:c3:8d:83: f7:c1:df:72:b7:47:8b:bd:e8:7c:65:2e:e7:5c:5e:18:5f:5d: 6f:eb:3e:3e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAjYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkVBMkExMTAvBgNVBAUTKDIzNTU5RTlBNzE1N0U3QUU3RjYwNEM0Mjg4MzcyOTJE RTAzMzA5QTAwHhcNMjQxMTIzMDEyMzM0WhcNMjQxMTMwMDEyMzM0WjAYMRYwFAYD VQQDEw02NzQxMmU5Ni03ZGI1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtFN+cltYLoKbwi1m7i3hoO7WrPikOOBQa2NXfwr4Qr0M13EZgEJBSwOrnYyr 8qnsO3NavgYardfdBlDRp4T3WNl08m9vrH6rvdxKSR+ZjzuY7OmKAYzKoUzpTe0Q QsC0WdPfkwviuxTfuysi+WLbeuXXQStsWJ2yhaSlamuei0ztc/tHw5K6DfFZqd34 K9x/zUAbfduvz3YAOAT78qxIBe4eZoRYYU/tlU5D30P9oFELxwhHHT6ShQbof0q1 d/NOxQth44a9N+cSbd9udU6mErinSwijKeHshu4xEL9Q6c71UCa92998Cxc3fCGl e9ONviwAAW7HnUVnUIWQbjthTQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGeuKM4p w2rLYoCEiL7KJKOMKNb1MB8GA1UdIwQYMBaAFCNVnppxV+euf2BMQog3KS3gMwmg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCRUEyQS8zRDM1MEZEMjAy NTYxMUVEQTEzMjJENURDNEY5QUUwMi9JMVdlbW5GWDU2NV9ZRXhDaURjcExlQXpD YUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0kxV2VtbkZYNTY1X1lFeENpRGNwTGVBekNhQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC RUEyQS8zRDM1MEZEMjAyNTYxMUVEQTEzMjJENURDNEY5QUUwMi9JMVdlbW5GWDU2 NV9ZRXhDaURjcExlQXpDYUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBmbU3Ub+yhn6uGp+BKHsH0KDWRQ40V1Qy0UB9TF65sV+oFCeV1GU1T O6yZjWmh89qqFUuYs6zyuG3QuZkeeWnmco9sRfXmU7g8fVNYwFd8GY4mF8kWFZRS I0iIOsZtgB1F+oeKU0KNPQgZmWoIQx6Acrkz3SpB3xfTHc7zuB6Ow1oxaa0J0hE1 aXyG6PXMPEOdqF45/EYfdoJh6pSB0IKSy34POidYLymG87/Uty7rXUFSe5MR0q/I l2rSEeqlzz03RQiRAfYWkAxSOenMugq8Tw7HXKerrheD0L5PNnTqclPsFiGDHqHD jYP3wd9yt0eLveh8ZS7nXF4YX11v6z4+ -----END CERTIFICATE-----Generated at Sat Nov 23 02:33:44 2024 by rpki-client on console-fra.rpki-client.org