$ rpki-client -vvf rpki.apnic.net/member_repository/A91C2677/6457DFD8D83711ED8C096629C4F9AE02/CpU4Un2lMv4x11DRNpblzq8qm88.mft File: CpU4Un2lMv4x11DRNpblzq8qm88.mft (raw, json) Hash identifier: rPxnxMbx841B3EjU+XvKlGH5R77yUu79D3RDieZfDDE= Subject key identifier: 17:91:FB:D5:E7:15:BC:E0:21:C1:DE:C6:79:65:F3:CD:2D:2D:BF:00 Authority key identifier: 0A:95:38:52:7D:A5:32:FE:31:D7:50:D1:36:96:E5:CE:AF:2A:9B:CF Certificate issuer: /CN=A91C2677/serialNumber=0A9538527DA532FE31D750D13696E5CEAF2A9BCF Certificate serial: 0133 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CpU4Un2lMv4x11DRNpblzq8qm88.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C2677/6457DFD8D83711ED8C096629C4F9AE02/CpU4Un2lMv4x11DRNpblzq8qm88.mft Manifest number: 0131 Signing time: Sat 23 Nov 2024 02:48:29 +0000 Manifest this update: Sat 23 Nov 2024 02:48:28 +0000 Manifest next update: Sat 30 Nov 2024 02:48:28 +0000 Files and hashes: 1: CpU4Un2lMv4x11DRNpblzq8qm88.crl (hash: 1f9hl7xEjZNb7HZUQqtaYMXnFAkS+1sCGoN9Zcdfrlc=) 2: 5A1F332618A211EEB9517111C4F9AE02.roa (hash: L46j7D5JqRMEtMeerHLvKLCnSiPpfI4fJUlK6SBHvHs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C2677/6457DFD8D83711ED8C096629C4F9AE02/CpU4Un2lMv4x11DRNpblzq8qm88.crl rsync://rpki.apnic.net/member_repository/A91C2677/6457DFD8D83711ED8C096629C4F9AE02/CpU4Un2lMv4x11DRNpblzq8qm88.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CpU4Un2lMv4x11DRNpblzq8qm88.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:48:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 307 (0x133) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C2677/serialNumber=0A9538527DA532FE31D750D13696E5CEAF2A9BCF Validity Not Before: Nov 23 02:48:28 2024 GMT Not After : Nov 30 02:48:28 2024 GMT Subject: CN=6741427c-e8c0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:29:1e:55:a6:76:82:8d:f9:e0:95:8b:be:91: e4:33:3e:67:87:80:0d:b1:77:cd:14:2a:e7:db:94: ae:6b:f4:d7:01:27:c6:32:5b:73:fe:98:11:84:69: 0b:f9:6c:e2:32:1f:7d:a7:3f:ba:67:ee:68:8b:d9: 47:bf:54:85:a4:9e:2a:7e:66:e2:3c:38:97:b3:d7: 78:69:4d:2c:b3:4f:d1:cb:dd:c5:64:b6:98:85:98: a2:6d:ac:5e:7b:db:c0:e1:a6:d6:87:1a:71:48:54: 9d:13:e9:de:2c:6d:c0:1b:9b:9b:2d:1d:10:4e:19: 6d:0e:97:fb:0e:80:b6:e4:e1:2d:ad:04:a7:0a:cb: 5e:6a:e6:3a:7a:8d:e9:dc:96:cd:55:9a:48:dc:36: 62:a0:a8:ba:38:2e:e8:cc:68:af:f3:f8:0f:08:c7: a8:c9:16:5f:50:13:87:a7:03:bd:c5:45:68:b4:1f: 94:8f:c5:0e:b5:8e:55:f3:c0:cb:09:2a:65:a4:43: dc:fa:73:2c:22:23:d7:49:44:db:2a:51:bf:1d:75: a2:40:eb:1b:1e:7d:93:e4:13:43:5b:c9:17:b3:9e: 6a:1a:46:08:16:de:5c:32:28:a5:bc:fc:8d:d8:ba: d8:c6:c6:2c:de:f3:04:fc:b6:d8:eb:f5:90:62:ff: 0d:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:91:FB:D5:E7:15:BC:E0:21:C1:DE:C6:79:65:F3:CD:2D:2D:BF:00 X509v3 Authority Key Identifier: keyid:0A:95:38:52:7D:A5:32:FE:31:D7:50:D1:36:96:E5:CE:AF:2A:9B:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C2677/6457DFD8D83711ED8C096629C4F9AE02/CpU4Un2lMv4x11DRNpblzq8qm88.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CpU4Un2lMv4x11DRNpblzq8qm88.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C2677/6457DFD8D83711ED8C096629C4F9AE02/CpU4Un2lMv4x11DRNpblzq8qm88.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 43:aa:d8:2d:a5:c7:85:fc:ee:32:5c:74:2c:81:bb:9b:36:04: d7:8f:11:16:92:e7:7e:46:b8:b1:b5:bf:3d:d4:25:9f:0f:a7: 28:19:30:1b:61:51:e5:e7:9f:58:34:6e:26:c1:15:4c:00:63: 8e:38:87:7e:30:93:64:52:26:09:bc:76:0d:7f:7a:c2:74:70: af:df:19:06:e3:59:e1:7a:70:c0:8e:64:11:38:95:4e:9b:ed: 1f:02:95:17:5a:e6:d5:96:27:f2:f7:ab:1f:29:13:24:0c:e9: 78:2f:73:61:90:45:3a:5d:50:0a:f9:62:0c:b1:72:85:f5:b2: b3:ce:5a:d0:90:e8:b6:a5:ed:27:b2:7f:20:3a:09:53:d1:71: 55:19:f1:d9:19:ce:32:20:1d:88:c4:2e:7e:6b:f1:4f:ac:91: ab:27:5b:55:c7:08:7f:00:05:8a:79:29:3a:f0:3e:bc:1e:4c: 4e:e5:73:fd:fb:92:85:ed:7c:cb:b7:9e:2c:f2:fd:08:a0:67: ee:f0:e5:1a:18:b0:b0:85:27:24:57:63:05:b7:5d:87:30:9b: 00:89:fd:b6:89:9c:9a:6e:4a:c8:a6:a8:c3:33:29:95:53:f4: b2:80:87:d1:b5:23:5f:76:bc:00:92:c3:9b:f4:ba:3d:8a:4e: 38:99:94:a6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICATMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzI2NzcxMTAvBgNVBAUTKDBBOTUzODUyN0RBNTMyRkUzMUQ3NTBEMTM2OTZFNUNF QUYyQTlCQ0YwHhcNMjQxMTIzMDI0ODI4WhcNMjQxMTMwMDI0ODI4WjAYMRYwFAYD VQQDEw02NzQxNDI3Yy1lOGMwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuSkeVaZ2go354JWLvpHkMz5nh4ANsXfNFCrn25Sua/TXASfGMltz/pgRhGkL +WziMh99pz+6Z+5oi9lHv1SFpJ4qfmbiPDiXs9d4aU0ss0/Ry93FZLaYhZiibaxe e9vA4abWhxpxSFSdE+neLG3AG5ubLR0QThltDpf7DoC25OEtrQSnCsteauY6eo3p 3JbNVZpI3DZioKi6OC7ozGiv8/gPCMeoyRZfUBOHpwO9xUVotB+Uj8UOtY5V88DL CSplpEPc+nMsIiPXSUTbKlG/HXWiQOsbHn2T5BNDW8kXs55qGkYIFt5cMiilvPyN 2LrYxsYs3vME/LbY6/WQYv8N+wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBeR+9Xn FbzgIcHexnll880tLb8AMB8GA1UdIwQYMBaAFAqVOFJ9pTL+MddQ0TaW5c6vKpvP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMjY3Ny82NDU3REZEOEQ4 MzcxMUVEOEMwOTY2MjlDNEY5QUUwMi9DcFU0VW4ybE12NHgxMURSTnBibHpxOHFt ODguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NwVTRVbjJsTXY0eDExRFJOcGJsenE4cW04OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MjY3Ny82NDU3REZEOEQ4MzcxMUVEOEMwOTY2MjlDNEY5QUUwMi9DcFU0VW4ybE12 NHgxMURSTnBibHpxOHFtODgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBDqtgtpceF/O4yXHQsgbubNgTXjxEWkud+Rrixtb891CWfD6coGTAb YVHl559YNG4mwRVMAGOOOId+MJNkUiYJvHYNf3rCdHCv3xkG41nhenDAjmQROJVO m+0fApUXWubVlify96sfKRMkDOl4L3NhkEU6XVAK+WIMsXKF9bKzzlrQkOi2pe0n sn8gOglT0XFVGfHZGc4yIB2IxC5+a/FPrJGrJ1tVxwh/AAWKeSk68D68HkxO5XP9 +5KF7XzLt54s8v0IoGfu8OUaGLCwhSckV2MFt12HMJsAif22iZyabkrIpqjDMymV U/SygIfRtSNfdrwAksOb9Lo9ik44mZSm -----END CERTIFICATE-----Generated at Sat Nov 23 05:02:56 2024 by rpki-client on console-fra.rpki-client.org