$ rpki-client -vvf rpki.apnic.net/member_repository/A91C2AAE/57537D5E704511EA8A941D1AC4F9AE02/o7CyBZyzB2t17aMkt2UH08KVUoM.mft File: o7CyBZyzB2t17aMkt2UH08KVUoM.mft (raw, json) Hash identifier: ShmATzlVEhSTOFLE3rdj0XFTxMnzj8g0YEDwCJSpyeU= Subject key identifier: EB:01:86:85:83:1E:BB:EE:2D:A4:A6:9C:C0:34:BA:21:33:E4:BE:9C Authority key identifier: A3:B0:B2:05:9C:B3:07:6B:75:ED:A3:24:B7:65:07:D3:C2:95:52:83 Certificate issuer: /CN=A91C2AAE/serialNumber=A3B0B2059CB3076B75EDA324B76507D3C2955283 Certificate serial: 09C3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o7CyBZyzB2t17aMkt2UH08KVUoM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C2AAE/57537D5E704511EA8A941D1AC4F9AE02/o7CyBZyzB2t17aMkt2UH08KVUoM.mft Manifest number: 09BD Signing time: Fri 22 Nov 2024 19:44:59 +0000 Manifest this update: Fri 22 Nov 2024 19:44:59 +0000 Manifest next update: Fri 29 Nov 2024 19:44:59 +0000 Files and hashes: 1: o7CyBZyzB2t17aMkt2UH08KVUoM.crl (hash: wRs1vPMNW7KP/Z5P8MJoaw6xGIpGYNP7bozKLmpR/Xw=) 2: 11502BAC719111EAAC505266C4F9AE02.roa (hash: RDM7Lb5HfvMFUtS/P2rwwBWdJyjHtFv0PrhdCwgVU6w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C2AAE/57537D5E704511EA8A941D1AC4F9AE02/o7CyBZyzB2t17aMkt2UH08KVUoM.crl rsync://rpki.apnic.net/member_repository/A91C2AAE/57537D5E704511EA8A941D1AC4F9AE02/o7CyBZyzB2t17aMkt2UH08KVUoM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o7CyBZyzB2t17aMkt2UH08KVUoM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 19:44:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2499 (0x9c3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C2AAE/serialNumber=A3B0B2059CB3076B75EDA324B76507D3C2955283 Validity Not Before: Nov 22 19:44:59 2024 GMT Not After : Nov 29 19:44:59 2024 GMT Subject: CN=6740df3b-3626 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:cb:3b:be:bd:18:97:2b:5c:64:6a:36:35:3f: 0d:f0:5e:07:95:f4:9d:7f:40:93:22:31:81:97:c3: 82:b7:bd:af:8a:ab:28:77:59:02:1f:ba:fb:bb:37: 6d:2a:ba:44:bb:66:14:d2:a2:b4:a4:26:67:e0:3a: ba:4c:f5:59:c4:47:ac:f5:a1:75:95:c1:f1:e1:3e: 25:bf:69:79:d2:6d:37:f8:b9:77:d3:76:e6:6f:0d: f0:c3:f2:c1:41:4e:78:7e:67:32:b4:c3:44:98:55: e8:d4:fb:ee:70:e4:26:9c:28:a5:b2:47:51:26:2f: 33:2a:c0:6d:ad:12:e5:9f:3d:49:81:dd:a2:7c:5c: f1:2a:15:cd:d0:da:c3:3e:a1:8d:5b:cb:40:6e:b7: ba:8f:7e:3e:98:12:ee:ab:f9:33:0d:9e:db:73:36: e3:17:7a:ed:05:de:f2:e4:c4:dc:96:00:af:06:39: 50:9f:7e:e7:73:c6:63:8d:b8:a7:c4:71:bf:e5:c5: 10:b2:42:6e:b4:d8:d3:28:9d:e1:ee:98:7c:59:64: 55:1d:e8:c9:e5:3a:36:23:73:3f:fe:95:e5:50:7e: 5e:d5:d9:2b:80:96:81:dd:d4:44:69:84:46:ce:03: 47:5f:b4:8c:07:25:32:8b:01:84:05:b1:0a:8c:f7: 8b:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:01:86:85:83:1E:BB:EE:2D:A4:A6:9C:C0:34:BA:21:33:E4:BE:9C X509v3 Authority Key Identifier: keyid:A3:B0:B2:05:9C:B3:07:6B:75:ED:A3:24:B7:65:07:D3:C2:95:52:83 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C2AAE/57537D5E704511EA8A941D1AC4F9AE02/o7CyBZyzB2t17aMkt2UH08KVUoM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o7CyBZyzB2t17aMkt2UH08KVUoM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C2AAE/57537D5E704511EA8A941D1AC4F9AE02/o7CyBZyzB2t17aMkt2UH08KVUoM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6b:a9:ac:e4:f3:ac:57:a6:ed:3f:4f:6b:62:60:a8:9a:41:a7: c6:5f:de:b6:9e:2f:c6:7c:7c:46:7b:2f:3f:1a:67:52:c5:e7: d8:4f:7d:64:e7:cb:f2:ca:f3:45:99:89:04:aa:02:54:07:86: 6c:24:f8:16:ff:9d:f1:bf:01:45:f1:4e:b5:11:89:e2:bf:35: aa:f6:52:55:e0:87:d6:51:c5:6d:16:5f:65:f9:58:db:ef:a6: ec:05:c0:53:08:d8:00:af:cb:66:a1:ce:e8:90:e1:dd:42:a1: a6:ea:10:a8:4a:56:54:a7:b5:c9:0f:e0:dd:4b:6a:2d:e0:b4: 98:eb:1c:92:55:a4:3e:f9:92:d5:b2:fa:89:4d:a6:a8:d8:be: b3:ce:b2:f4:15:9f:20:7f:6b:8f:54:ae:28:dc:41:f8:ca:26: fb:f2:33:ed:51:f4:c7:26:28:ab:ef:7b:5c:1d:61:e9:31:e9: 95:a6:0d:92:cc:5b:50:a6:c4:00:85:de:e5:68:5d:91:5a:04: 19:8c:bb:21:f8:73:f5:c5:cb:78:b6:21:ef:20:c2:94:8b:2d: 49:09:e1:a3:a9:f2:c3:fd:c3:fe:bd:9b:7c:b3:83:17:61:ad: 05:24:26:b7:e9:a0:f6:3f:d5:fa:20:ab:3e:48:bb:38:25:ed: 29:00:94:77 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCcMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzJBQUUxMTAvBgNVBAUTKEEzQjBCMjA1OUNCMzA3NkI3NUVEQTMyNEI3NjUwN0Qz QzI5NTUyODMwHhcNMjQxMTIyMTk0NDU5WhcNMjQxMTI5MTk0NDU5WjAYMRYwFAYD VQQDEw02NzQwZGYzYi0zNjI2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvMs7vr0YlytcZGo2NT8N8F4HlfSdf0CTIjGBl8OCt72viqsod1kCH7r7uzdt KrpEu2YU0qK0pCZn4Dq6TPVZxEes9aF1lcHx4T4lv2l50m03+Ll303bmbw3ww/LB QU54fmcytMNEmFXo1PvucOQmnCilskdRJi8zKsBtrRLlnz1Jgd2ifFzxKhXN0NrD PqGNW8tAbre6j34+mBLuq/kzDZ7bczbjF3rtBd7y5MTclgCvBjlQn37nc8Zjjbin xHG/5cUQskJutNjTKJ3h7ph8WWRVHejJ5To2I3M//pXlUH5e1dkrgJaB3dREaYRG zgNHX7SMByUyiwGEBbEKjPeLpwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOsBhoWD HrvuLaSmnMA0uiEz5L6cMB8GA1UdIwQYMBaAFKOwsgWcswdrde2jJLdlB9PClVKD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMkFBRS81NzUzN0Q1RTcw NDUxMUVBOEE5NDFEMUFDNEY5QUUwMi9vN0N5Qlp5ekIydDE3YU1rdDJVSDA4S1ZV b00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL283Q3lCWnl6QjJ0MTdhTWt0MlVIMDhLVlVvTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MkFBRS81NzUzN0Q1RTcwNDUxMUVBOEE5NDFEMUFDNEY5QUUwMi9vN0N5Qlp5ekIy dDE3YU1rdDJVSDA4S1ZVb00ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBrqazk86xXpu0/T2tiYKiaQafGX962ni/GfHxGey8/GmdSxefYT31k 58vyyvNFmYkEqgJUB4ZsJPgW/53xvwFF8U61EYnivzWq9lJV4IfWUcVtFl9l+Vjb 76bsBcBTCNgAr8tmoc7okOHdQqGm6hCoSlZUp7XJD+DdS2ot4LSY6xySVaQ++ZLV svqJTaao2L6zzrL0FZ8gf2uPVK4o3EH4yib78jPtUfTHJiir73tcHWHpMemVpg2S zFtQpsQAhd7laF2RWgQZjLsh+HP1xct4tiHvIMKUiy1JCeGjqfLD/cP+vZt8s4MX Ya0FJCa36aD2P9X6IKs+SLs4Je0pAJR3 -----END CERTIFICATE-----Generated at Fri Nov 22 21:05:32 2024 by rpki-client on console-fra.rpki-client.org