$ rpki-client -vvf rpki.apnic.net/member_repository/A91CD7A4/3CC71996118711EEB39FE243C4F9AE02/tSlwZVVtKyKTSTXnUgcivVMz2k8.mft File: tSlwZVVtKyKTSTXnUgcivVMz2k8.mft (raw, json) Hash identifier: EmnrTsTTapK9NA1ZyXifpiK7fjxB+bCidttTLevDyA4= Subject key identifier: 6B:0D:34:97:13:EB:9D:A8:F8:94:22:B8:85:10:F8:B5:9D:F1:17:B1 Authority key identifier: B5:29:70:65:55:6D:2B:22:93:49:35:E7:52:07:22:BD:53:33:DA:4F Certificate issuer: /CN=A91CD7A4/serialNumber=B5297065556D2B22934935E7520722BD5333DA4F Certificate serial: 010E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tSlwZVVtKyKTSTXnUgcivVMz2k8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CD7A4/3CC71996118711EEB39FE243C4F9AE02/tSlwZVVtKyKTSTXnUgcivVMz2k8.mft Manifest number: 010B Signing time: Sat 23 Nov 2024 03:09:06 +0000 Manifest this update: Sat 23 Nov 2024 03:09:05 +0000 Manifest next update: Sat 30 Nov 2024 03:09:05 +0000 Files and hashes: 1: tSlwZVVtKyKTSTXnUgcivVMz2k8.crl (hash: nSBUJtGOg9QDUHPdabzfkrCR9XSOBqPrDDv1O3C3KmA=) 2: AD47BEC4320611EE845F4A5AC4F9AE02.roa (hash: 4bHJddjDshspH/1XIJ/4VQJxh31gIJKernZ8Tce+/MI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CD7A4/3CC71996118711EEB39FE243C4F9AE02/tSlwZVVtKyKTSTXnUgcivVMz2k8.crl rsync://rpki.apnic.net/member_repository/A91CD7A4/3CC71996118711EEB39FE243C4F9AE02/tSlwZVVtKyKTSTXnUgcivVMz2k8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tSlwZVVtKyKTSTXnUgcivVMz2k8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 270 (0x10e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CD7A4/serialNumber=B5297065556D2B22934935E7520722BD5333DA4F Validity Not Before: Nov 23 03:09:05 2024 GMT Not After : Nov 30 03:09:05 2024 GMT Subject: CN=67414751-7458 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:ff:c8:81:3c:ec:d2:ce:08:db:bd:b9:b9:a9: e9:c0:c4:de:d3:0c:cc:c2:f3:aa:72:2b:1a:12:2c: 2e:6c:2f:bb:58:8b:65:78:bb:38:f1:80:7c:3b:4a: 3d:b6:fe:2c:04:f2:e4:07:40:de:f8:c8:74:ca:1d: ae:68:c2:91:81:db:5d:4d:49:42:69:e7:d3:0e:e0: ff:3a:32:34:c8:36:29:de:18:93:97:63:ce:63:cc: a5:60:1d:f0:2a:de:e0:da:6c:67:70:ea:0c:4f:38: 0d:97:e6:aa:73:cf:2c:30:4a:76:2d:8c:74:c8:30: c6:b5:a0:c4:58:0a:c1:9a:18:8c:e6:1a:eb:82:7f: 5b:86:a0:57:41:b7:07:27:bc:e5:b4:3e:29:04:63: 03:c5:c1:57:ee:e2:18:b2:6a:ba:4e:23:b6:a1:6d: 52:ec:0b:d8:5b:0e:32:04:cb:7f:98:02:2e:fc:ff: c7:cd:9f:9a:f9:ff:9a:95:34:7f:f8:01:da:68:ed: 1c:be:ef:03:9d:35:91:24:dc:a7:f5:fb:24:f9:c0: 2a:40:91:f3:e2:00:7a:1a:90:52:b3:c0:66:92:b3: 2b:4e:09:84:0a:33:66:e5:29:bf:fc:09:aa:81:a7: 4d:66:46:55:07:b9:e6:db:5a:94:9d:fb:25:39:e7: f2:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:0D:34:97:13:EB:9D:A8:F8:94:22:B8:85:10:F8:B5:9D:F1:17:B1 X509v3 Authority Key Identifier: keyid:B5:29:70:65:55:6D:2B:22:93:49:35:E7:52:07:22:BD:53:33:DA:4F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CD7A4/3CC71996118711EEB39FE243C4F9AE02/tSlwZVVtKyKTSTXnUgcivVMz2k8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tSlwZVVtKyKTSTXnUgcivVMz2k8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CD7A4/3CC71996118711EEB39FE243C4F9AE02/tSlwZVVtKyKTSTXnUgcivVMz2k8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 12:c6:3b:93:75:47:1f:a0:30:f6:cb:93:d1:4b:f5:07:0c:89: c1:d4:82:7a:ae:c4:32:a6:ee:57:30:42:99:fb:8a:42:b6:52: 64:4b:cc:d9:ed:d7:fb:9a:b4:5a:2c:1d:81:67:c6:40:89:e9: 01:d1:ee:01:29:93:91:c0:3c:84:13:47:a8:fc:3e:f9:6c:2d: 20:5f:14:72:cf:ca:51:ed:e8:03:eb:5c:6f:ba:27:3a:c7:7a: 0a:9a:d1:9a:01:2a:6d:14:d2:54:80:94:9f:7f:bc:40:d4:52: 61:87:c3:83:16:54:ba:9e:8a:4c:8c:ba:f1:1c:c2:76:34:e5: dd:3c:0f:91:41:0a:d0:67:3a:fa:93:07:3a:12:ff:df:02:f1: 68:d0:68:8d:bc:fa:c9:de:94:76:98:14:59:0b:ea:27:4e:e7: 7f:b8:09:2a:1a:5d:78:33:00:63:62:c0:fe:6e:7b:7a:5c:71: 58:65:c4:6f:c9:29:5d:6d:a7:10:e6:8f:76:c6:d9:37:ef:d0: b4:96:0e:49:80:b1:c3:1e:0e:5d:45:c9:06:96:7a:00:18:49: b7:3d:86:6b:27:76:59:81:82:ee:56:1b:66:d2:b9:eb:86:3f: b3:a6:54:38:29:33:f6:c4:8d:66:73:fb:91:7f:26:37:a3:c7: 7d:35:c0:01 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQ4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0Q3QTQxMTAvBgNVBAUTKEI1Mjk3MDY1NTU2RDJCMjI5MzQ5MzVFNzUyMDcyMkJE NTMzM0RBNEYwHhcNMjQxMTIzMDMwOTA1WhcNMjQxMTMwMDMwOTA1WjAYMRYwFAYD VQQDEw02NzQxNDc1MS03NDU4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuf/IgTzs0s4I2725uanpwMTe0wzMwvOqcisaEiwubC+7WItleLs48YB8O0o9 tv4sBPLkB0De+Mh0yh2uaMKRgdtdTUlCaefTDuD/OjI0yDYp3hiTl2POY8ylYB3w Kt7g2mxncOoMTzgNl+aqc88sMEp2LYx0yDDGtaDEWArBmhiM5hrrgn9bhqBXQbcH J7zltD4pBGMDxcFX7uIYsmq6TiO2oW1S7AvYWw4yBMt/mAIu/P/HzZ+a+f+alTR/ +AHaaO0cvu8DnTWRJNyn9fsk+cAqQJHz4gB6GpBSs8BmkrMrTgmECjNm5Sm//Amq gadNZkZVB7nm21qUnfslOefyAwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGsNNJcT 652o+JQiuIUQ+LWd8RexMB8GA1UdIwQYMBaAFLUpcGVVbSsik0k151IHIr1TM9pP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRDdBNC8zQ0M3MTk5NjEx ODcxMUVFQjM5RkUyNDNDNEY5QUUwMi90U2x3WlZWdEt5S1RTVFhuVWdjaXZWTXoy azguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RTbHdaVlZ0S3lLVFNUWG5VZ2NpdlZNejJrOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RDdBNC8zQ0M3MTk5NjExODcxMUVFQjM5RkUyNDNDNEY5QUUwMi90U2x3WlZWdEt5 S1RTVFhuVWdjaXZWTXoyazgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQASxjuTdUcfoDD2y5PRS/UHDInB1IJ6rsQypu5XMEKZ+4pCtlJkS8zZ 7df7mrRaLB2BZ8ZAiekB0e4BKZORwDyEE0eo/D75bC0gXxRyz8pR7egD61xvuic6 x3oKmtGaASptFNJUgJSff7xA1FJhh8ODFlS6nopMjLrxHMJ2NOXdPA+RQQrQZzr6 kwc6Ev/fAvFo0GiNvPrJ3pR2mBRZC+onTud/uAkqGl14MwBjYsD+bnt6XHFYZcRv ySldbacQ5o92xtk379C0lg5JgLHDHg5dRckGlnoAGEm3PYZrJ3ZZgYLuVhtm0rnr hj+zplQ4KTP2xI1mc/uRfyY3o8d9NcAB -----END CERTIFICATE-----Generated at Sat Nov 23 05:02:57 2024 by rpki-client on console-fra.rpki-client.org