$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE533/E8FD4FA4799F11E7B879101DC4F9AE02/CaPsxJ-Dp5iuE58dy8U27m9nzn4.mft File: CaPsxJ-Dp5iuE58dy8U27m9nzn4.mft (raw, json) Hash identifier: 6LAaLsl9QPWfcFMADXdmvejIYCiXiiBGSzcEtrvHvbA= Subject key identifier: 8A:38:52:19:DE:C0:96:D9:FF:E8:83:20:40:46:D9:83:B5:24:A2:06 Authority key identifier: 09:A3:EC:C4:9F:83:A7:98:AE:13:9F:1D:CB:C5:36:EE:6F:67:CE:7E Certificate issuer: /CN=A91CE533/serialNumber=09A3ECC49F83A798AE139F1DCBC536EE6F67CE7E Certificate serial: 18E9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CaPsxJ-Dp5iuE58dy8U27m9nzn4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE533/E8FD4FA4799F11E7B879101DC4F9AE02/CaPsxJ-Dp5iuE58dy8U27m9nzn4.mft Manifest number: 18DE Signing time: Fri 22 Nov 2024 16:27:14 +0000 Manifest this update: Fri 22 Nov 2024 16:27:14 +0000 Manifest next update: Fri 29 Nov 2024 16:27:14 +0000 Files and hashes: 1: CaPsxJ-Dp5iuE58dy8U27m9nzn4.crl (hash: jdUHWz1zFIv9nWyOR+fCHVKy49P+ZOIl2O0nL/4pybs=) 2: 290732FC79A211E79F34D81FC4F9AE02.roa (hash: Jf58211mLThLRZI8BWv56J4HhbDeINKve+PZOIHEx7w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE533/E8FD4FA4799F11E7B879101DC4F9AE02/CaPsxJ-Dp5iuE58dy8U27m9nzn4.crl rsync://rpki.apnic.net/member_repository/A91CE533/E8FD4FA4799F11E7B879101DC4F9AE02/CaPsxJ-Dp5iuE58dy8U27m9nzn4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CaPsxJ-Dp5iuE58dy8U27m9nzn4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 16:27:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6377 (0x18e9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE533/serialNumber=09A3ECC49F83A798AE139F1DCBC536EE6F67CE7E Validity Not Before: Nov 22 16:27:14 2024 GMT Not After : Nov 29 16:27:14 2024 GMT Subject: CN=6740b0e2-2576 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:d8:86:6a:05:09:df:e0:b2:56:ce:71:01:a6: 82:0d:5e:59:b1:e2:af:aa:fa:6a:46:05:8b:19:3f: e7:3b:e8:f7:72:7c:91:9f:d6:a0:47:65:33:b5:ef: 17:c6:f1:a4:98:85:ab:06:e0:89:b3:e3:03:ba:7b: 0d:6c:8e:9d:be:97:16:89:2f:41:84:b3:c2:d1:a4: 09:80:57:6a:d8:8a:52:c1:01:b1:dd:60:8c:63:7e: 8a:c9:5a:69:a1:3d:77:e8:aa:d3:6d:e0:60:e9:16: 06:4c:b8:4f:db:d2:ad:68:3f:94:2c:df:c1:87:8a: a7:43:6e:5b:0b:6c:d3:73:f5:85:e7:f3:64:e3:e1: a0:7d:95:86:09:42:2e:3c:fa:74:63:c3:ee:8f:5d: a9:85:43:1f:16:1f:b1:1d:5a:67:13:9c:e3:c3:00: 77:db:77:dd:10:4c:83:d0:d5:29:bd:99:91:a7:cd: 57:52:7e:84:8b:d1:47:f3:e6:ae:a9:ab:76:3d:ab: f5:41:02:45:09:53:de:1c:28:34:ce:8c:ce:68:b7: 80:54:a8:fd:15:4d:7d:5b:8e:a0:3e:00:2f:b8:fc: f3:98:1b:ba:52:40:27:01:07:db:b1:59:ef:cd:8a: ad:3e:19:8d:b7:1b:15:c3:01:bf:ec:dd:34:ac:67: 68:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:38:52:19:DE:C0:96:D9:FF:E8:83:20:40:46:D9:83:B5:24:A2:06 X509v3 Authority Key Identifier: keyid:09:A3:EC:C4:9F:83:A7:98:AE:13:9F:1D:CB:C5:36:EE:6F:67:CE:7E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE533/E8FD4FA4799F11E7B879101DC4F9AE02/CaPsxJ-Dp5iuE58dy8U27m9nzn4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CaPsxJ-Dp5iuE58dy8U27m9nzn4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE533/E8FD4FA4799F11E7B879101DC4F9AE02/CaPsxJ-Dp5iuE58dy8U27m9nzn4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4f:bc:95:f2:4a:8f:14:d7:8c:19:f5:c4:99:dd:7b:6d:a6:33: e4:27:4e:aa:45:15:b5:fc:1d:8f:59:c4:29:08:4c:1c:ce:03: ec:9b:1c:fb:f6:9b:be:e5:84:8d:0c:6f:24:7b:3e:fa:59:d8: af:c9:eb:30:61:a3:1f:0a:1f:cf:e9:17:fb:c4:14:13:45:15: dc:4d:18:03:82:05:90:bc:58:ed:03:ca:76:8c:36:4e:7a:95: 38:15:87:97:07:88:ce:bd:10:94:88:40:89:ab:e2:59:4f:2c: ad:64:ae:6d:2a:ea:d4:1e:e3:01:10:e0:c9:12:1d:4b:02:a8: b6:b8:a6:47:33:dc:93:54:89:b1:16:66:8e:c3:31:11:32:0f: 22:f3:a5:eb:24:6b:9f:fe:99:a9:c0:bc:a0:7e:ba:50:ad:91: 09:ab:df:e3:32:7a:f8:d8:34:28:f4:4e:8e:d9:b5:30:31:fc: 64:c4:96:b2:92:19:ca:35:1e:47:e9:13:30:82:59:ad:7d:f8: 12:45:70:79:93:23:9d:15:e9:18:5c:0d:1c:30:7d:09:57:8a: cb:9b:00:2f:2d:40:cf:5d:a8:ea:c3:50:92:fa:c2:fd:c7:3e: ef:a3:17:d6:2d:37:c8:d9:5e:84:64:93:e0:3e:75:25:0c:66: 3a:c2:82:d9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICGOkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0U1MzMxMTAvBgNVBAUTKDA5QTNFQ0M0OUY4M0E3OThBRTEzOUYxRENCQzUzNkVF NkY2N0NFN0UwHhcNMjQxMTIyMTYyNzE0WhcNMjQxMTI5MTYyNzE0WjAYMRYwFAYD VQQDEw02NzQwYjBlMi0yNTc2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAutiGagUJ3+CyVs5xAaaCDV5ZseKvqvpqRgWLGT/nO+j3cnyRn9agR2Uzte8X xvGkmIWrBuCJs+MDunsNbI6dvpcWiS9BhLPC0aQJgFdq2IpSwQGx3WCMY36KyVpp oT136KrTbeBg6RYGTLhP29KtaD+ULN/Bh4qnQ25bC2zTc/WF5/Nk4+GgfZWGCUIu PPp0Y8Puj12phUMfFh+xHVpnE5zjwwB323fdEEyD0NUpvZmRp81XUn6Ei9FH8+au qat2Pav1QQJFCVPeHCg0zozOaLeAVKj9FU19W46gPgAvuPzzmBu6UkAnAQfbsVnv zYqtPhmNtxsVwwG/7N00rGdonwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIo4Uhne wJbZ/+iDIEBG2YO1JKIGMB8GA1UdIwQYMBaAFAmj7MSfg6eYrhOfHcvFNu5vZ85+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTUzMy9FOEZENEZBNDc5 OUYxMUU3Qjg3OTEwMURDNEY5QUUwMi9DYVBzeEotRHA1aXVFNThkeThVMjdtOW56 bjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NhUHN4Si1EcDVpdUU1OGR5OFUyN205bnpuNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RTUzMy9FOEZENEZBNDc5OUYxMUU3Qjg3OTEwMURDNEY5QUUwMi9DYVBzeEotRHA1 aXVFNThkeThVMjdtOW56bjQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBPvJXySo8U14wZ9cSZ3XttpjPkJ06qRRW1/B2PWcQpCEwczgPsmxz7 9pu+5YSNDG8kez76WdivyeswYaMfCh/P6Rf7xBQTRRXcTRgDggWQvFjtA8p2jDZO epU4FYeXB4jOvRCUiECJq+JZTyytZK5tKurUHuMBEODJEh1LAqi2uKZHM9yTVImx FmaOwzERMg8i86XrJGuf/pmpwLygfrpQrZEJq9/jMnr42DQo9E6O2bUwMfxkxJay khnKNR5H6RMwglmtffgSRXB5kyOdFekYXA0cMH0JV4rLmwAvLUDPXajqw1CS+sL9 xz7voxfWLTfI2V6EZJPgPnUlDGY6woLZ -----END CERTIFICATE-----Generated at Fri Nov 22 17:56:20 2024 by rpki-client on console-fra.rpki-client.org