$ rpki-client -vvf rpki.apnic.net/member_repository/A91DE323/9E61E424525F11EE80BA0D74C4F9AE02/kwQjTnOQSRQ6hZGjdFpT5Lkq2Ng.mft File: kwQjTnOQSRQ6hZGjdFpT5Lkq2Ng.mft (raw, json) Hash identifier: jDi0WspoNgq4ofj1W9WtEG1uGMQ9oGTS/70wYt5iGoM= Subject key identifier: 47:BC:3D:84:1A:37:71:79:C4:48:CC:2C:BB:BB:73:90:5C:A4:B0:FA Authority key identifier: 93:04:23:4E:73:90:49:14:3A:85:91:A3:74:5A:53:E4:B9:2A:D8:D8 Certificate issuer: /CN=A91DE323/serialNumber=9304234E739049143A8591A3745A53E4B92AD8D8 Certificate serial: EF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kwQjTnOQSRQ6hZGjdFpT5Lkq2Ng.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DE323/9E61E424525F11EE80BA0D74C4F9AE02/kwQjTnOQSRQ6hZGjdFpT5Lkq2Ng.mft Manifest number: E9 Signing time: Sat 23 Nov 2024 03:35:13 +0000 Manifest this update: Sat 23 Nov 2024 03:35:12 +0000 Manifest next update: Sat 30 Nov 2024 03:35:12 +0000 Files and hashes: 1: kwQjTnOQSRQ6hZGjdFpT5Lkq2Ng.crl (hash: 202Q/zrtJ5oFV/31OM8OI+cFwtNgMJBFBe4p3+s0CaU=) 2: 3AB9E692C0D211EEB7BBBE4FC4F9AE02.roa (hash: PYkBM0N8dnLCKVgIScQqnIsMIgIRaDaumK5APLy/Cew=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DE323/9E61E424525F11EE80BA0D74C4F9AE02/kwQjTnOQSRQ6hZGjdFpT5Lkq2Ng.crl rsync://rpki.apnic.net/member_repository/A91DE323/9E61E424525F11EE80BA0D74C4F9AE02/kwQjTnOQSRQ6hZGjdFpT5Lkq2Ng.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kwQjTnOQSRQ6hZGjdFpT5Lkq2Ng.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 239 (0xef) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DE323/serialNumber=9304234E739049143A8591A3745A53E4B92AD8D8 Validity Not Before: Nov 23 03:35:12 2024 GMT Not After : Nov 30 03:35:12 2024 GMT Subject: CN=67414d71-8394 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:47:4e:77:bb:59:4d:0b:0c:5b:24:bb:af:f2: 82:d6:bc:be:4c:10:e5:5c:f4:cb:c4:06:e4:22:07: 06:b4:c1:76:73:d4:b6:bc:e1:70:f6:77:23:68:ec: 74:97:d7:cb:e1:15:a8:5e:68:41:67:6b:ba:5f:69: d5:69:c9:40:17:28:1c:64:fe:05:3d:ac:d2:7f:de: 59:c5:d3:3e:65:bf:f2:83:19:5e:9d:7e:53:50:10: 66:2b:ec:c3:c7:b3:bc:72:32:ef:d0:16:17:29:2d: 93:fd:76:7d:64:3e:ed:be:1e:03:87:91:fa:18:b2: 3f:13:a3:62:b0:d2:29:49:05:ff:ef:65:48:5f:7b: bd:81:e2:4d:77:fa:00:64:0e:34:32:30:bf:77:2b: da:eb:22:9f:f1:c6:96:a7:6b:b2:ad:dd:1c:66:7a: 80:25:d7:ab:df:59:f6:11:ac:e7:74:e5:a6:ad:fe: 81:04:ed:96:e0:36:ac:d2:83:f6:2b:04:98:da:45: d3:70:ef:37:e8:c9:69:49:96:5b:8c:c3:66:5e:6e: bb:5b:3a:d2:05:19:13:bf:31:d1:4e:d5:35:b6:ad: e9:8a:8e:a6:ae:47:a3:18:3b:b3:70:fb:ff:dc:51: d8:ac:53:d3:fb:0b:52:87:52:83:68:22:bd:90:7f: 9a:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:BC:3D:84:1A:37:71:79:C4:48:CC:2C:BB:BB:73:90:5C:A4:B0:FA X509v3 Authority Key Identifier: keyid:93:04:23:4E:73:90:49:14:3A:85:91:A3:74:5A:53:E4:B9:2A:D8:D8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DE323/9E61E424525F11EE80BA0D74C4F9AE02/kwQjTnOQSRQ6hZGjdFpT5Lkq2Ng.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kwQjTnOQSRQ6hZGjdFpT5Lkq2Ng.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DE323/9E61E424525F11EE80BA0D74C4F9AE02/kwQjTnOQSRQ6hZGjdFpT5Lkq2Ng.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 99:99:11:5d:7f:1a:52:58:40:0f:38:4d:0b:79:96:e6:77:0e: b5:d7:b2:b4:57:f5:ed:aa:8a:28:bb:6a:ea:ba:8d:d2:3d:1b: 19:e2:92:2b:2e:ed:7a:1b:7f:eb:db:81:9c:5e:27:25:4b:1c: c6:b3:fa:d4:78:70:8c:97:3c:2f:7e:7d:93:cd:5e:ed:84:0e: 1f:de:f9:9f:05:59:8a:9a:21:74:c9:cc:7d:73:86:5e:28:8d: c6:ed:d6:39:ab:8b:cc:45:2d:1d:90:75:28:ec:3b:31:30:0d: c9:6a:a2:f5:5b:85:6f:d4:7e:8a:59:84:31:c1:a8:b2:bb:26: 38:a2:40:4e:a2:63:8c:cd:f9:fd:62:86:cb:90:c7:1e:9b:e1: 72:5f:9f:a2:61:82:e0:eb:af:4a:d4:0d:03:55:fe:3f:90:b7: d7:1c:80:7b:42:7e:b8:2b:8d:2f:cc:9f:3c:7f:e3:90:9d:ef: 58:de:4c:25:12:17:30:b8:d4:ab:c9:fd:20:ab:7a:f5:91:04: 4f:d8:db:e3:ed:c2:fd:88:a7:f8:4d:cb:d7:fb:c9:05:35:64: d4:c6:6e:cd:13:0c:b3:4d:41:27:30:96:2f:53:3d:c8:9c:46: 93:47:64:4f:c0:68:ab:ae:3a:2b:07:fa:80:ac:19:5a:1d:ce: ed:83:8f:f7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAO8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REUzMjMxMTAvBgNVBAUTKDkzMDQyMzRFNzM5MDQ5MTQzQTg1OTFBMzc0NUE1M0U0 QjkyQUQ4RDgwHhcNMjQxMTIzMDMzNTEyWhcNMjQxMTMwMDMzNTEyWjAYMRYwFAYD VQQDEw02NzQxNGQ3MS04Mzk0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1kdOd7tZTQsMWyS7r/KC1ry+TBDlXPTLxAbkIgcGtMF2c9S2vOFw9ncjaOx0 l9fL4RWoXmhBZ2u6X2nVaclAFygcZP4FPazSf95ZxdM+Zb/ygxlenX5TUBBmK+zD x7O8cjLv0BYXKS2T/XZ9ZD7tvh4Dh5H6GLI/E6NisNIpSQX/72VIX3u9geJNd/oA ZA40MjC/dyva6yKf8caWp2uyrd0cZnqAJder31n2EazndOWmrf6BBO2W4Das0oP2 KwSY2kXTcO836MlpSZZbjMNmXm67WzrSBRkTvzHRTtU1tq3pio6mrkejGDuzcPv/ 3FHYrFPT+wtSh1KDaCK9kH+aKQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEe8PYQa N3F5xEjMLLu7c5BcpLD6MB8GA1UdIwQYMBaAFJMEI05zkEkUOoWRo3RaU+S5KtjY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERTMyMy85RTYxRTQyNDUy NUYxMUVFODBCQTBENzRDNEY5QUUwMi9rd1FqVG5PUVNSUTZoWkdqZEZwVDVMa3Ey TmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2t3UWpUbk9RU1JRNmhaR2pkRnBUNUxrcTJOZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RTMyMy85RTYxRTQyNDUyNUYxMUVFODBCQTBENzRDNEY5QUUwMi9rd1FqVG5PUVNS UTZoWkdqZEZwVDVMa3EyTmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCZmRFdfxpSWEAPOE0LeZbmdw6117K0V/Xtqooou2rquo3SPRsZ4pIr Lu16G3/r24GcXiclSxzGs/rUeHCMlzwvfn2TzV7thA4f3vmfBVmKmiF0ycx9c4Ze KI3G7dY5q4vMRS0dkHUo7DsxMA3JaqL1W4Vv1H6KWYQxwaiyuyY4okBOomOMzfn9 YobLkMcem+FyX5+iYYLg669K1A0DVf4/kLfXHIB7Qn64K40vzJ88f+OQne9Y3kwl EhcwuNSryf0gq3r1kQRP2Nvj7cL9iKf4TcvX+8kFNWTUxm7NEwyzTUEnMJYvUz3I nEaTR2RPwGirrjorB/qArBlaHc7tg4/3 -----END CERTIFICATE-----Generated at Sat Nov 23 05:02:59 2024 by rpki-client on console-fra.rpki-client.org