$ rpki-client -vvf rpki.apnic.net/member_repository/A91DD5E1/165B7BF6BC6E11EAA5CB037DC4F9AE02/rC4NP0JyIX_vudMtzhozLelqOF4.mft File: rC4NP0JyIX_vudMtzhozLelqOF4.mft (raw, json) Hash identifier: 04jdQLk35P8BDCOtS0w+1pqu07JFi/TFEDzta/g+wMg= Subject key identifier: 10:33:AA:2B:C8:C7:8D:30:F5:3F:21:A7:CE:24:DC:0E:E8:7D:6F:24 Authority key identifier: AC:2E:0D:3F:42:72:21:7F:EF:B9:D3:2D:CE:1A:33:2D:E9:6A:38:5E Certificate issuer: /CN=A91DD5E1/serialNumber=AC2E0D3F4272217FEFB9D32DCE1A332DE96A385E Certificate serial: 083F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rC4NP0JyIX_vudMtzhozLelqOF4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DD5E1/165B7BF6BC6E11EAA5CB037DC4F9AE02/rC4NP0JyIX_vudMtzhozLelqOF4.mft Manifest number: 0838 Signing time: Fri 22 Nov 2024 20:29:47 +0000 Manifest this update: Fri 22 Nov 2024 20:29:46 +0000 Manifest next update: Fri 29 Nov 2024 20:29:46 +0000 Files and hashes: 1: rC4NP0JyIX_vudMtzhozLelqOF4.crl (hash: T3cjvuwoJ9YTESkYqnTygApc5qFm0R6tNbccaX6Fjp0=) 2: E034D1A6BC6F11EA8FE53280C4F9AE02.roa (hash: RwQwosRhz2AHGPwLeWu416NxaFDqzVxgnklEup4iGUk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DD5E1/165B7BF6BC6E11EAA5CB037DC4F9AE02/rC4NP0JyIX_vudMtzhozLelqOF4.crl rsync://rpki.apnic.net/member_repository/A91DD5E1/165B7BF6BC6E11EAA5CB037DC4F9AE02/rC4NP0JyIX_vudMtzhozLelqOF4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rC4NP0JyIX_vudMtzhozLelqOF4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:29:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2111 (0x83f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DD5E1/serialNumber=AC2E0D3F4272217FEFB9D32DCE1A332DE96A385E Validity Not Before: Nov 22 20:29:46 2024 GMT Not After : Nov 29 20:29:46 2024 GMT Subject: CN=6740e9ba-a337 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:dc:ca:a4:90:3d:bc:66:16:8f:c7:97:9e:ae: 94:e0:d7:5b:87:6f:0f:78:a2:95:a4:a9:3c:50:7d: 8e:fb:30:3a:4b:ea:3c:8c:a1:e0:16:21:9d:c8:66: 94:63:d5:f1:a5:f0:35:e3:55:f9:fd:d1:30:ad:91: 1b:68:6c:12:3d:10:c3:41:6f:c2:f6:48:9d:9d:c2: 42:87:a8:d8:1a:cc:29:fd:33:b7:88:08:91:21:a4: d8:f0:2d:18:4d:7e:05:1e:40:9c:9d:df:8b:e7:09: ee:8d:b7:3f:f7:0c:2b:4e:ad:97:db:cd:b9:51:06: a0:cf:d0:d8:6c:fa:0d:13:37:34:1b:d6:db:bf:f6: 4c:33:c9:11:a8:ac:85:75:cd:72:28:ad:72:bb:93: a8:ce:68:9d:c6:71:d3:fe:f9:de:83:ec:0a:ea:61: 0b:02:01:c9:9c:51:f3:62:22:74:2e:85:a3:f2:9f: 14:ca:ea:0b:e5:35:d0:3e:92:e7:6d:7f:98:e1:dd: 25:6e:2b:00:9b:a6:40:33:f7:9e:20:2f:a6:64:de: 30:54:ee:dd:0e:04:86:1b:63:e2:fe:2d:28:5f:22: 42:5b:1c:7e:01:73:4a:77:e9:5f:b9:b9:b3:77:0b: 5d:7c:3b:74:42:da:e7:59:ba:66:8d:8a:d2:9f:e3: 43:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:33:AA:2B:C8:C7:8D:30:F5:3F:21:A7:CE:24:DC:0E:E8:7D:6F:24 X509v3 Authority Key Identifier: keyid:AC:2E:0D:3F:42:72:21:7F:EF:B9:D3:2D:CE:1A:33:2D:E9:6A:38:5E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DD5E1/165B7BF6BC6E11EAA5CB037DC4F9AE02/rC4NP0JyIX_vudMtzhozLelqOF4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rC4NP0JyIX_vudMtzhozLelqOF4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DD5E1/165B7BF6BC6E11EAA5CB037DC4F9AE02/rC4NP0JyIX_vudMtzhozLelqOF4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 86:fa:6a:44:9e:39:f0:0d:21:b2:ab:bd:51:22:c4:64:ab:a3: df:9a:09:6e:42:12:91:26:95:58:eb:fa:a8:92:6e:25:5a:2d: b0:f6:31:01:bd:f6:54:da:b8:d2:e8:d8:f0:83:d6:07:b5:6d: 97:27:af:a1:54:09:2b:f8:47:02:ec:7b:e4:32:df:52:f0:99: 72:ca:26:bc:c6:26:bc:2f:68:4a:5e:9b:27:46:ce:4b:d4:8e: ac:bd:f0:8a:8d:56:ac:d8:5a:ee:db:ca:64:8e:93:70:cc:66: b7:61:a3:08:ec:0e:28:7d:e3:9d:c3:d6:5f:53:1e:f1:d0:81: 4b:2a:ee:3f:e4:94:77:84:87:fd:1c:09:b2:e1:70:1f:44:88: 69:e5:9d:c0:11:1f:b9:e5:89:0b:87:e7:58:e8:92:45:64:9e: 08:fd:63:0b:16:8e:8b:f2:30:63:b7:15:33:a2:96:e7:03:6e: 87:e3:07:df:b5:5c:80:de:1a:8f:5c:e7:64:0c:57:84:4f:b1: b7:a3:23:7b:5b:c6:39:03:a0:c4:92:4a:fb:7b:d7:82:80:8b: 66:57:07:76:5e:6b:a2:cc:2f:b7:5b:91:02:0b:6f:ce:b4:c5: cd:df:aa:da:e7:c8:c5:7b:04:d4:65:0c:92:9b:94:3a:ad:9b: 5d:3f:5d:bb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCD8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REQ1RTExMTAvBgNVBAUTKEFDMkUwRDNGNDI3MjIxN0ZFRkI5RDMyRENFMUEzMzJE RTk2QTM4NUUwHhcNMjQxMTIyMjAyOTQ2WhcNMjQxMTI5MjAyOTQ2WjAYMRYwFAYD VQQDEw02NzQwZTliYS1hMzM3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAztzKpJA9vGYWj8eXnq6U4Ndbh28PeKKVpKk8UH2O+zA6S+o8jKHgFiGdyGaU Y9XxpfA141X5/dEwrZEbaGwSPRDDQW/C9kidncJCh6jYGswp/TO3iAiRIaTY8C0Y TX4FHkCcnd+L5wnujbc/9wwrTq2X2825UQagz9DYbPoNEzc0G9bbv/ZMM8kRqKyF dc1yKK1yu5OozmidxnHT/vneg+wK6mELAgHJnFHzYiJ0LoWj8p8UyuoL5TXQPpLn bX+Y4d0lbisAm6ZAM/eeIC+mZN4wVO7dDgSGG2Pi/i0oXyJCWxx+AXNKd+lfubmz dwtdfDt0QtrnWbpmjYrSn+ND6wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBAzqivI x40w9T8hp84k3A7ofW8kMB8GA1UdIwQYMBaAFKwuDT9CciF/77nTLc4aMy3pajhe MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERDVFMS8xNjVCN0JGNkJD NkUxMUVBQTVDQjAzN0RDNEY5QUUwMi9yQzROUDBKeUlYX3Z1ZE10emhvekxlbHFP RjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JDNE5QMEp5SVhfdnVkTXR6aG96TGVscU9GNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RDVFMS8xNjVCN0JGNkJDNkUxMUVBQTVDQjAzN0RDNEY5QUUwMi9yQzROUDBKeUlY X3Z1ZE10emhvekxlbHFPRjQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCG+mpEnjnwDSGyq71RIsRkq6PfmgluQhKRJpVY6/qokm4lWi2w9jEB vfZU2rjS6Njwg9YHtW2XJ6+hVAkr+EcC7HvkMt9S8Jlyyia8xia8L2hKXpsnRs5L 1I6svfCKjVas2Fru28pkjpNwzGa3YaMI7A4ofeOdw9ZfUx7x0IFLKu4/5JR3hIf9 HAmy4XAfRIhp5Z3AER+55YkLh+dY6JJFZJ4I/WMLFo6L8jBjtxUzopbnA26H4wff tVyA3hqPXOdkDFeET7G3oyN7W8Y5A6DEkkr7e9eCgItmVwd2XmuizC+3W5ECC2/O tMXN36ra58jFewTUZQySm5Q6rZtdP127 -----END CERTIFICATE-----Generated at Fri Nov 22 22:24:13 2024 by rpki-client on console-fra.rpki-client.org