$ rpki-client -vvf rpki.apnic.net/member_repository/A91D1003/AA4E95C8320311EA8D2A1B2BC4F9AE02/pSAa7m9KXB64p-HHhTv7srp1y9I.mft File: pSAa7m9KXB64p-HHhTv7srp1y9I.mft (raw, json) Hash identifier: wJej62ZPYRbYCAu3kR9a/JU1sYfhoCqAQG5z+Jc1A2g= Subject key identifier: 13:3B:F5:6F:0A:F9:C4:90:58:94:AB:28:C9:61:90:D5:3D:99:96:AD Authority key identifier: A5:20:1A:EE:6F:4A:5C:1E:B8:A7:E1:C7:85:3B:FB:B2:BA:75:CB:D2 Certificate issuer: /CN=A91D1003/serialNumber=A5201AEE6F4A5C1EB8A7E1C7853BFBB2BA75CBD2 Certificate serial: 0B09 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pSAa7m9KXB64p-HHhTv7srp1y9I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D1003/AA4E95C8320311EA8D2A1B2BC4F9AE02/pSAa7m9KXB64p-HHhTv7srp1y9I.mft Manifest number: 0AFF Signing time: Fri 22 Nov 2024 19:04:05 +0000 Manifest this update: Fri 22 Nov 2024 19:04:05 +0000 Manifest next update: Fri 29 Nov 2024 19:04:05 +0000 Files and hashes: 1: pSAa7m9KXB64p-HHhTv7srp1y9I.crl (hash: wjBL00BcJ9KTFUEbittwyxsixH8NDZZFQrtaEq2oijw=) 2: 0DC2568E320511EA8CF6B72DC4F9AE02.roa (hash: 1+11cacphPqsNd+omnkh++SqQDiBnfm5tRRdQKET7hw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D1003/AA4E95C8320311EA8D2A1B2BC4F9AE02/pSAa7m9KXB64p-HHhTv7srp1y9I.crl rsync://rpki.apnic.net/member_repository/A91D1003/AA4E95C8320311EA8D2A1B2BC4F9AE02/pSAa7m9KXB64p-HHhTv7srp1y9I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pSAa7m9KXB64p-HHhTv7srp1y9I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 19:04:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2825 (0xb09) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D1003/serialNumber=A5201AEE6F4A5C1EB8A7E1C7853BFBB2BA75CBD2 Validity Not Before: Nov 22 19:04:05 2024 GMT Not After : Nov 29 19:04:05 2024 GMT Subject: CN=6740d5a5-af46 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:91:23:60:a9:e3:80:2b:6a:86:92:6a:f5:f4: 2f:b2:f9:43:4a:a2:7c:0a:ea:3f:98:b2:46:02:3f: 10:b8:78:9f:51:95:b4:14:c3:ef:2b:11:d4:b0:9a: c8:62:71:32:a1:03:de:28:89:e5:55:d2:7e:5a:ab: 43:b4:f8:c2:88:65:bc:01:f7:77:13:6b:c4:8a:65: 9d:c0:8b:28:85:73:21:bb:8d:c3:f3:c7:81:2d:26: f1:7f:c6:5e:8a:42:f3:ba:65:04:75:4e:18:47:31: 3a:63:5f:a5:de:61:e1:40:81:ac:da:b9:ff:86:e9: 4c:98:13:15:de:54:2f:ba:ba:7e:25:72:92:cb:66: 48:2c:1a:74:36:05:65:6e:9f:e6:8b:3c:2a:d5:17: f5:35:e7:30:c7:70:22:1c:d9:cf:c3:0b:be:05:c2: 2d:03:e4:df:c7:03:82:84:61:aa:a9:ae:ae:12:f4: e7:17:ea:ba:3d:c1:78:64:bf:9d:ab:b1:ec:02:13: 43:11:bc:2c:c7:eb:2f:88:cf:d7:d0:5b:ae:d6:fb: 37:43:3a:24:07:44:b1:8d:e8:35:43:10:49:2d:67: 95:70:aa:ea:8c:6a:54:e0:fb:17:d5:49:3d:9c:94: 56:ea:10:31:1e:ce:a6:78:37:49:10:b5:a3:6c:07: cf:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:3B:F5:6F:0A:F9:C4:90:58:94:AB:28:C9:61:90:D5:3D:99:96:AD X509v3 Authority Key Identifier: keyid:A5:20:1A:EE:6F:4A:5C:1E:B8:A7:E1:C7:85:3B:FB:B2:BA:75:CB:D2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D1003/AA4E95C8320311EA8D2A1B2BC4F9AE02/pSAa7m9KXB64p-HHhTv7srp1y9I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pSAa7m9KXB64p-HHhTv7srp1y9I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D1003/AA4E95C8320311EA8D2A1B2BC4F9AE02/pSAa7m9KXB64p-HHhTv7srp1y9I.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 96:a9:da:3a:21:1c:b7:47:37:bd:3a:9a:b9:59:9b:c8:3b:0f: f7:0d:39:fd:9b:b2:f8:83:bd:59:51:f8:67:93:59:4f:73:50: eb:eb:24:f9:c6:dd:00:0e:79:c7:d1:37:12:5c:39:7f:bd:16: 8e:6b:ab:80:12:92:1d:52:f8:42:2b:40:11:12:ae:5b:35:33: 7c:9d:fd:57:80:e3:40:fb:d8:65:8b:4a:a2:cb:cd:e8:15:c2: 0b:d0:23:fe:d1:c4:5d:ef:09:c4:05:f0:c1:d0:46:87:69:02: 97:c5:99:59:ca:91:50:66:ff:05:91:67:fa:1f:6b:c9:21:ad: d3:5c:b6:86:d4:e2:18:2d:a9:86:49:45:4f:7c:a0:5d:aa:6f: f7:b8:a2:70:a8:4a:a0:65:b5:f4:26:9a:7c:ec:7d:46:89:0b: 8e:f2:27:93:18:c8:8a:da:dc:e2:02:c5:3d:53:a8:b2:dc:bd: 34:3f:04:c8:2c:0b:e1:47:ae:13:d6:a5:ab:79:f6:3c:80:35: 35:5a:09:b7:30:6f:04:cd:18:c5:a3:b6:cf:a8:19:0d:c0:ec: 9c:96:bf:ac:b0:59:2e:33:c4:db:27:d2:7f:70:73:8a:8d:cb: 01:dc:e4:0b:7c:68:dd:88:ca:1d:74:d9:cd:31:ac:6c:18:44: 9d:83:70:b9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCwkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDEwMDMxMTAvBgNVBAUTKEE1MjAxQUVFNkY0QTVDMUVCOEE3RTFDNzg1M0JGQkIy QkE3NUNCRDIwHhcNMjQxMTIyMTkwNDA1WhcNMjQxMTI5MTkwNDA1WjAYMRYwFAYD VQQDEw02NzQwZDVhNS1hZjQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA75EjYKnjgCtqhpJq9fQvsvlDSqJ8Cuo/mLJGAj8QuHifUZW0FMPvKxHUsJrI YnEyoQPeKInlVdJ+WqtDtPjCiGW8Afd3E2vEimWdwIsohXMhu43D88eBLSbxf8Ze ikLzumUEdU4YRzE6Y1+l3mHhQIGs2rn/hulMmBMV3lQvurp+JXKSy2ZILBp0NgVl bp/mizwq1Rf1Necwx3AiHNnPwwu+BcItA+TfxwOChGGqqa6uEvTnF+q6PcF4ZL+d q7HsAhNDEbwsx+sviM/X0Fuu1vs3QzokB0Sxjeg1QxBJLWeVcKrqjGpU4PsX1Uk9 nJRW6hAxHs6meDdJELWjbAfPqwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBM79W8K +cSQWJSrKMlhkNU9mZatMB8GA1UdIwQYMBaAFKUgGu5vSlweuKfhx4U7+7K6dcvS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMTAwMy9BQTRFOTVDODMy MDMxMUVBOEQyQTFCMkJDNEY5QUUwMi9wU0FhN205S1hCNjRwLUhIaFR2N3NycDF5 OUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BTQWE3bTlLWEI2NHAtSEhoVHY3c3JwMXk5SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MTAwMy9BQTRFOTVDODMyMDMxMUVBOEQyQTFCMkJDNEY5QUUwMi9wU0FhN205S1hC NjRwLUhIaFR2N3NycDF5OUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCWqdo6IRy3Rze9Opq5WZvIOw/3DTn9m7L4g71ZUfhnk1lPc1Dr6yT5 xt0ADnnH0TcSXDl/vRaOa6uAEpIdUvhCK0AREq5bNTN8nf1XgONA+9hli0qiy83o FcIL0CP+0cRd7wnEBfDB0EaHaQKXxZlZypFQZv8FkWf6H2vJIa3TXLaG1OIYLamG SUVPfKBdqm/3uKJwqEqgZbX0Jpp87H1GiQuO8ieTGMiK2tziAsU9U6iy3L00PwTI LAvhR64T1qWrefY8gDU1Wgm3MG8EzRjFo7bPqBkNwOyclr+ssFkuM8TbJ9J/cHOK jcsB3OQLfGjdiModdNnNMaxsGESdg3C5 -----END CERTIFICATE-----Generated at Fri Nov 22 21:05:33 2024 by rpki-client on console-fra.rpki-client.org