$ rpki-client -vvf rpki.apnic.net/member_repository/A91D3603/8C82AC341F6C11EC87580672C4F9AE02/0fGDjm-uASwUWNKgeiJNnhEBJdw.mft File: 0fGDjm-uASwUWNKgeiJNnhEBJdw.mft (raw, json) Hash identifier: A7AkpuiwQWVkGQ5TCHVJGcONjRMieoX8MtDtxy7y7GQ= Subject key identifier: E3:AD:BC:5D:EC:33:88:06:03:34:60:4F:DB:A8:10:27:ED:CE:9A:AC Authority key identifier: D1:F1:83:8E:6F:AE:01:2C:14:58:D2:A0:7A:22:4D:9E:11:01:25:DC Certificate issuer: /CN=A91D3603/serialNumber=D1F1838E6FAE012C1458D2A07A224D9E110125DC Certificate serial: 047C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0fGDjm-uASwUWNKgeiJNnhEBJdw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D3603/8C82AC341F6C11EC87580672C4F9AE02/0fGDjm-uASwUWNKgeiJNnhEBJdw.mft Manifest number: 0476 Signing time: Fri 22 Nov 2024 23:38:01 +0000 Manifest this update: Fri 22 Nov 2024 23:38:00 +0000 Manifest next update: Fri 29 Nov 2024 23:38:00 +0000 Files and hashes: 1: 0fGDjm-uASwUWNKgeiJNnhEBJdw.crl (hash: NZBMNoIQywqf7SGnuDJsH5WoN4SZwdxl4C1vyk5TcNs=) 2: 11F818F81F7311EC9027050AC4F9AE02.roa (hash: PTzWu6eYDTTqoEV88MOR131OkkMKAZ5jVAGwccli/Vg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D3603/8C82AC341F6C11EC87580672C4F9AE02/0fGDjm-uASwUWNKgeiJNnhEBJdw.crl rsync://rpki.apnic.net/member_repository/A91D3603/8C82AC341F6C11EC87580672C4F9AE02/0fGDjm-uASwUWNKgeiJNnhEBJdw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0fGDjm-uASwUWNKgeiJNnhEBJdw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1148 (0x47c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D3603/serialNumber=D1F1838E6FAE012C1458D2A07A224D9E110125DC Validity Not Before: Nov 22 23:38:00 2024 GMT Not After : Nov 29 23:38:00 2024 GMT Subject: CN=674115d8-6cfe Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:c4:6c:04:5d:40:ca:4a:e5:b2:1b:08:98:51: a5:19:38:2f:db:3b:6e:68:0b:7b:82:1d:04:a2:14: 7e:de:c8:d5:f4:ce:ea:c0:28:f1:e9:64:06:74:e1: 9f:d7:e2:ae:f0:02:b6:ce:92:29:67:85:be:a6:c7: 0e:57:e6:c7:cc:e0:c2:1c:3b:db:c4:f6:c3:c6:d6: 28:e7:f7:a7:c6:18:b1:e6:9e:15:0d:49:9c:90:48: 90:8f:55:df:62:29:42:8f:9f:75:12:6c:54:cc:c0: 50:b0:08:cd:50:0f:36:39:a6:4d:fa:da:dc:dc:f4: bd:b9:cd:9f:10:df:73:f7:cf:ef:97:fa:e6:0d:07: a8:c9:37:b8:fb:99:02:60:52:38:10:91:54:2c:29: ec:f7:4a:7f:bf:bd:4c:d3:53:be:0e:6b:f9:99:af: 2a:3e:62:e2:15:ae:85:59:bb:80:3a:50:45:93:fc: 66:36:35:b5:31:52:03:93:98:43:85:ea:aa:85:a1: a3:f4:5e:5f:de:27:aa:87:84:f0:0c:39:42:02:03: 36:82:ac:89:d2:bf:c0:d3:72:52:bc:c3:78:a5:91: 0a:f5:4d:64:ec:d7:a1:98:74:82:7d:c9:a4:2a:9a: 23:55:87:e7:ed:41:07:63:b6:4d:d2:8f:ab:45:66: 3b:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:AD:BC:5D:EC:33:88:06:03:34:60:4F:DB:A8:10:27:ED:CE:9A:AC X509v3 Authority Key Identifier: keyid:D1:F1:83:8E:6F:AE:01:2C:14:58:D2:A0:7A:22:4D:9E:11:01:25:DC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D3603/8C82AC341F6C11EC87580672C4F9AE02/0fGDjm-uASwUWNKgeiJNnhEBJdw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0fGDjm-uASwUWNKgeiJNnhEBJdw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D3603/8C82AC341F6C11EC87580672C4F9AE02/0fGDjm-uASwUWNKgeiJNnhEBJdw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 46:a3:4d:f0:e0:d8:2e:0f:34:0f:ce:b1:71:2b:00:10:ba:ac: 1c:fc:79:f7:8f:84:6a:b4:67:d4:0c:b7:f9:01:a4:05:85:fe: 85:16:e4:1e:de:b5:2d:c9:e1:56:bf:9b:ec:3b:62:69:41:a3: fb:8f:4b:35:ea:a8:a9:35:06:0f:43:ed:73:1e:c4:8f:22:56: a5:35:80:ff:f8:22:f2:bd:6f:20:82:ef:1b:fd:8d:77:e3:f3: 44:47:09:8d:34:09:c4:76:6c:fd:a6:17:45:e6:f7:7f:ca:9d: b4:cd:91:82:05:7f:e4:ab:82:e6:68:3c:25:55:cb:57:d8:68: b5:7d:99:26:4d:f1:6e:a2:6f:0e:2c:6d:bb:30:64:29:24:5a: 77:44:d5:17:dc:82:20:ed:ff:a6:97:28:73:74:d3:25:35:a4: 3d:fc:d0:2e:c3:2a:9d:a1:d7:96:22:2a:43:d9:99:1e:2e:8d: 15:79:f6:4a:8e:2b:c5:5c:e3:98:70:78:53:88:11:9d:c8:16: 8a:04:6a:0b:25:d2:a4:fa:22:c7:f2:77:c7:d7:45:75:2d:7b: 4f:00:77:e3:32:ed:e6:dd:9e:12:b8:63:4a:f3:ab:3f:29:26: 04:47:e5:45:3c:84:7a:7d:c8:50:ec:18:7d:f1:fa:f7:9f:93: 71:d5:af:4a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBHwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDM2MDMxMTAvBgNVBAUTKEQxRjE4MzhFNkZBRTAxMkMxNDU4RDJBMDdBMjI0RDlF MTEwMTI1REMwHhcNMjQxMTIyMjMzODAwWhcNMjQxMTI5MjMzODAwWjAYMRYwFAYD VQQDEw02NzQxMTVkOC02Y2ZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0MRsBF1AykrlshsImFGlGTgv2ztuaAt7gh0EohR+3sjV9M7qwCjx6WQGdOGf 1+Ku8AK2zpIpZ4W+pscOV+bHzODCHDvbxPbDxtYo5/enxhix5p4VDUmckEiQj1Xf YilCj591EmxUzMBQsAjNUA82OaZN+trc3PS9uc2fEN9z98/vl/rmDQeoyTe4+5kC YFI4EJFULCns90p/v71M01O+Dmv5ma8qPmLiFa6FWbuAOlBFk/xmNjW1MVIDk5hD heqqhaGj9F5f3ieqh4TwDDlCAgM2gqyJ0r/A03JSvMN4pZEK9U1k7NehmHSCfcmk KpojVYfn7UEHY7ZN0o+rRWY7owIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOOtvF3s M4gGAzRgT9uoECftzpqsMB8GA1UdIwQYMBaAFNHxg45vrgEsFFjSoHoiTZ4RASXc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMzYwMy84QzgyQUMzNDFG NkMxMUVDODc1ODA2NzJDNEY5QUUwMi8wZkdEam0tdUFTd1VXTktnZWlKTm5oRUJK ZHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBmR0RqbS11QVN3VVdOS2dlaUpObmhFQkpkdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MzYwMy84QzgyQUMzNDFGNkMxMUVDODc1ODA2NzJDNEY5QUUwMi8wZkdEam0tdUFT d1VXTktnZWlKTm5oRUJKZHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBGo03w4NguDzQPzrFxKwAQuqwc/Hn3j4RqtGfUDLf5AaQFhf6FFuQe 3rUtyeFWv5vsO2JpQaP7j0s16qipNQYPQ+1zHsSPIlalNYD/+CLyvW8ggu8b/Y13 4/NERwmNNAnEdmz9phdF5vd/yp20zZGCBX/kq4LmaDwlVctX2Gi1fZkmTfFuom8O LG27MGQpJFp3RNUX3IIg7f+mlyhzdNMlNaQ9/NAuwyqdodeWIipD2ZkeLo0VefZK jivFXOOYcHhTiBGdyBaKBGoLJdKk+iLH8nfH10V1LXtPAHfjMu3m3Z4SuGNK86s/ KSYER+VFPIR6fchQ7Bh98fr3n5Nx1a9K -----END CERTIFICATE-----Generated at Sat Nov 23 00:49:38 2024 by rpki-client on console-fra.rpki-client.org