$ rpki-client -vvf rpki.apnic.net/member_repository/A91BF8D1/7C4E34BC675511EAA087302BC4F9AE02/8EZlk8K2zqnL8C4mqua_eQ9Sfqg.mft File: 8EZlk8K2zqnL8C4mqua_eQ9Sfqg.mft (raw, json) Hash identifier: O/j3VmYt/Kll3b9ZQvBoXW8ZlenwD439PDDqJ9Co59M= Subject key identifier: 52:2D:7E:F5:95:73:1A:A0:1B:45:D4:E4:AC:64:F5:3C:E6:FC:74:DB Authority key identifier: F0:46:65:93:C2:B6:CE:A9:CB:F0:2E:26:AA:E6:BF:79:0F:52:7E:A8 Certificate issuer: /CN=A91BF8D1/serialNumber=F0466593C2B6CEA9CBF02E26AAE6BF790F527EA8 Certificate serial: 09F2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8EZlk8K2zqnL8C4mqua_eQ9Sfqg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BF8D1/7C4E34BC675511EAA087302BC4F9AE02/8EZlk8K2zqnL8C4mqua_eQ9Sfqg.mft Manifest number: 09EC Signing time: Fri 22 Nov 2024 19:39:48 +0000 Manifest this update: Fri 22 Nov 2024 19:39:47 +0000 Manifest next update: Fri 29 Nov 2024 19:39:47 +0000 Files and hashes: 1: 8EZlk8K2zqnL8C4mqua_eQ9Sfqg.crl (hash: dniUzU1NVmmRFfS0Ic5fSDXlkq4D7impX9dLNYCNqGI=) 2: 19250B84675711EAA928E22DC4F9AE02.roa (hash: BfaBbqdTeXcprKlCZnPR/VFXV6AoP9YV7kqFZXcvXOo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BF8D1/7C4E34BC675511EAA087302BC4F9AE02/8EZlk8K2zqnL8C4mqua_eQ9Sfqg.crl rsync://rpki.apnic.net/member_repository/A91BF8D1/7C4E34BC675511EAA087302BC4F9AE02/8EZlk8K2zqnL8C4mqua_eQ9Sfqg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8EZlk8K2zqnL8C4mqua_eQ9Sfqg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 19:39:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2546 (0x9f2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BF8D1/serialNumber=F0466593C2B6CEA9CBF02E26AAE6BF790F527EA8 Validity Not Before: Nov 22 19:39:47 2024 GMT Not After : Nov 29 19:39:47 2024 GMT Subject: CN=6740de04-c4dc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:20:1e:40:1f:c2:8a:6e:ec:f0:bf:43:9a:19: 5f:0c:45:fd:07:87:d2:09:34:20:ae:ba:2a:3f:05: 60:71:12:2e:e2:9f:64:d0:13:5f:7f:9a:c0:44:58: 85:31:27:38:79:a9:4d:f4:4f:26:ca:4f:da:e6:86: 37:81:d6:46:fd:3e:62:72:59:62:c9:45:e1:ee:84: 7a:92:df:72:8c:6a:3e:cd:78:92:17:70:af:1a:22: ec:7b:34:b5:79:56:c7:32:94:6f:85:a0:64:1a:69: 53:fe:3f:70:ae:55:7f:a6:ed:4d:66:b5:4d:d7:2f: 94:52:79:2e:e4:43:fe:b6:43:41:59:e6:2c:39:7d: 9f:81:0c:72:b1:d4:33:77:42:40:a6:c9:2a:3f:5d: 38:69:e5:ea:45:3d:45:5e:6d:5a:92:3f:dd:3f:5f: 2f:f6:d5:64:4f:69:8a:f6:e8:3a:0d:0b:4f:47:e9: 67:ac:97:67:41:66:40:8a:44:57:57:85:f7:13:4c: 0d:16:19:0a:98:9c:db:d3:25:0e:2c:61:eb:e0:31: 94:cd:47:a1:19:77:ca:dd:9d:60:d1:cc:37:80:e4: 3c:a4:7f:2f:bb:29:2a:16:ae:43:72:15:9a:30:ba: ce:f2:67:31:5d:1f:02:78:9b:b2:96:93:94:f2:89: 6b:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:2D:7E:F5:95:73:1A:A0:1B:45:D4:E4:AC:64:F5:3C:E6:FC:74:DB X509v3 Authority Key Identifier: keyid:F0:46:65:93:C2:B6:CE:A9:CB:F0:2E:26:AA:E6:BF:79:0F:52:7E:A8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BF8D1/7C4E34BC675511EAA087302BC4F9AE02/8EZlk8K2zqnL8C4mqua_eQ9Sfqg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8EZlk8K2zqnL8C4mqua_eQ9Sfqg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BF8D1/7C4E34BC675511EAA087302BC4F9AE02/8EZlk8K2zqnL8C4mqua_eQ9Sfqg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 95:11:4d:74:8e:f9:c8:a8:23:ca:ca:8a:43:dc:ee:16:85:d1: 9d:a7:ff:1c:ee:fb:3e:30:1a:bd:e0:a3:c8:3e:ee:37:d4:63: 78:9a:82:cb:4b:40:3b:be:3d:d7:58:71:e3:fc:0b:e1:07:d0: 85:b6:b2:af:3c:0b:35:6d:1c:bc:f8:55:a9:a9:fd:0a:4f:89: 25:03:fb:db:f2:cd:9a:c8:90:ad:21:d2:0d:7d:2f:b2:09:c0: 2d:dd:12:d5:4c:65:5a:73:fc:4a:09:dc:7d:ba:48:cd:01:d0: 80:f9:ee:07:ac:2c:a9:2a:6e:ce:67:7f:7e:47:77:72:06:b5: 5b:27:d6:32:71:0a:cc:be:cb:c0:45:f3:0d:37:9b:9e:88:33: cc:1c:69:7d:a1:4b:2e:3e:f3:c9:fb:e0:fc:ff:9a:57:d9:53: 6e:5d:96:e1:16:c6:c9:6e:f0:b1:31:c5:63:a1:df:b4:40:7d: 50:32:78:f8:a8:56:c0:70:4b:13:d2:41:13:98:29:11:28:8d: 43:48:c7:18:60:04:01:a2:e4:17:fd:88:db:75:b1:86:5e:cb: 6b:5b:d4:8c:6e:e9:40:b6:13:ff:7b:a7:ee:7f:02:c5:37:f7: 2f:73:24:be:37:04:f7:0c:53:65:59:82:bf:e0:6e:22:4a:3a: b6:c6:fc:9e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCfIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkY4RDExMTAvBgNVBAUTKEYwNDY2NTkzQzJCNkNFQTlDQkYwMkUyNkFBRTZCRjc5 MEY1MjdFQTgwHhcNMjQxMTIyMTkzOTQ3WhcNMjQxMTI5MTkzOTQ3WjAYMRYwFAYD VQQDEw02NzQwZGUwNC1jNGRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1iAeQB/Cim7s8L9DmhlfDEX9B4fSCTQgrroqPwVgcRIu4p9k0BNff5rARFiF MSc4ealN9E8myk/a5oY3gdZG/T5iclliyUXh7oR6kt9yjGo+zXiSF3CvGiLsezS1 eVbHMpRvhaBkGmlT/j9wrlV/pu1NZrVN1y+UUnku5EP+tkNBWeYsOX2fgQxysdQz d0JApskqP104aeXqRT1FXm1akj/dP18v9tVkT2mK9ug6DQtPR+lnrJdnQWZAikRX V4X3E0wNFhkKmJzb0yUOLGHr4DGUzUehGXfK3Z1g0cw3gOQ8pH8vuykqFq5DchWa MLrO8mcxXR8CeJuylpOU8olrSQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFItfvWV cxqgG0XU5Kxk9Tzm/HTbMB8GA1UdIwQYMBaAFPBGZZPCts6py/AuJqrmv3kPUn6o MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCRjhEMS83QzRFMzRCQzY3 NTUxMUVBQTA4NzMwMkJDNEY5QUUwMi84RVpsazhLMnpxbkw4QzRtcXVhX2VROVNm cWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzhFWmxrOEsyenFuTDhDNG1xdWFfZVE5U2ZxZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC RjhEMS83QzRFMzRCQzY3NTUxMUVBQTA4NzMwMkJDNEY5QUUwMi84RVpsazhLMnpx bkw4QzRtcXVhX2VROVNmcWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCVEU10jvnIqCPKyopD3O4WhdGdp/8c7vs+MBq94KPIPu431GN4moLL S0A7vj3XWHHj/AvhB9CFtrKvPAs1bRy8+FWpqf0KT4klA/vb8s2ayJCtIdINfS+y CcAt3RLVTGVac/xKCdx9ukjNAdCA+e4HrCypKm7OZ39+R3dyBrVbJ9YycQrMvsvA RfMNN5ueiDPMHGl9oUsuPvPJ++D8/5pX2VNuXZbhFsbJbvCxMcVjod+0QH1QMnj4 qFbAcEsT0kETmCkRKI1DSMcYYAQBouQX/YjbdbGGXstrW9SMbulAthP/e6fufwLF N/cvcyS+NwT3DFNlWYK/4G4iSjq2xvye -----END CERTIFICATE-----Generated at Fri Nov 22 21:05:32 2024 by rpki-client on console-fra.rpki-client.org