$ rpki-client -vvf rpki.apnic.net/member_repository/A91E1D91/5D8C1712A04011EC845AE926C4F9AE02/cFWB1AyVgaJlHlMlI42zvcs6fQU.mft File: cFWB1AyVgaJlHlMlI42zvcs6fQU.mft (raw, json) Hash identifier: E8rKciRKkK5AR0YqssePBfyRPMjQ3niVB8i2GJl9Dcs= Subject key identifier: 65:B3:EF:F3:42:6D:9B:4B:EA:B2:F7:93:F7:1E:D5:74:F5:C9:1C:14 Authority key identifier: 70:55:81:D4:0C:95:81:A2:65:1E:53:25:23:8D:B3:BD:CB:3A:7D:05 Certificate issuer: /CN=A91E1D91/serialNumber=705581D40C9581A2651E5325238DB3BDCB3A7D05 Certificate serial: 033A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cFWB1AyVgaJlHlMlI42zvcs6fQU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E1D91/5D8C1712A04011EC845AE926C4F9AE02/cFWB1AyVgaJlHlMlI42zvcs6fQU.mft Manifest number: 0332 Signing time: Sat 23 Nov 2024 00:41:56 +0000 Manifest this update: Sat 23 Nov 2024 00:41:55 +0000 Manifest next update: Sat 30 Nov 2024 00:41:55 +0000 Files and hashes: 1: cFWB1AyVgaJlHlMlI42zvcs6fQU.crl (hash: BdxMZfVY4DZOC3q9TKktEK7oFSe9grNRRv0ugPDCf60=) 2: 6CDC639EA04411EC8A7E5E2CC4F9AE02.roa (hash: +UlPy7z92dYQIcsSzzcSjeqb3Mx+/Y9+WuEH5yBXIeY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E1D91/5D8C1712A04011EC845AE926C4F9AE02/cFWB1AyVgaJlHlMlI42zvcs6fQU.crl rsync://rpki.apnic.net/member_repository/A91E1D91/5D8C1712A04011EC845AE926C4F9AE02/cFWB1AyVgaJlHlMlI42zvcs6fQU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cFWB1AyVgaJlHlMlI42zvcs6fQU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 826 (0x33a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E1D91/serialNumber=705581D40C9581A2651E5325238DB3BDCB3A7D05 Validity Not Before: Nov 23 00:41:55 2024 GMT Not After : Nov 30 00:41:55 2024 GMT Subject: CN=674124d3-2218 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:7c:6f:93:55:ba:9a:51:da:bd:9b:94:1a:fe: ac:28:d6:c6:1f:03:73:ef:12:59:61:68:6c:5c:30: 32:0e:68:57:e8:f9:27:b1:02:4a:de:3c:32:fa:60: df:cb:0f:3e:ca:7f:53:a7:10:c9:5b:94:40:03:3d: 5d:58:19:60:b2:7a:8e:fc:ff:06:9a:23:56:b5:33: ca:47:d8:95:bf:97:00:ee:ee:ba:48:81:10:bb:c1: 10:b4:b5:5b:e7:0e:1c:59:5e:46:e9:36:53:b5:0c: 30:91:89:fe:be:4f:9a:c7:c9:c9:31:c3:29:24:86: bd:ab:d4:a0:47:34:f1:34:b6:b6:95:2a:67:da:bb: e0:ef:75:21:90:af:24:5a:bd:32:28:5f:79:f1:54: cb:39:b7:82:5e:31:8f:a5:d0:c6:51:64:75:75:c2: 59:3b:6c:5f:9d:64:fe:fe:b5:00:56:e5:0f:95:eb: 50:ca:d1:ef:72:61:ec:3d:cc:eb:87:b4:3f:f9:55: 10:a5:1a:77:0f:c2:b5:04:73:3f:e3:72:a7:cb:e3: ef:7b:90:b5:0d:2b:9f:cf:9d:81:8a:ff:98:22:17: c3:f1:05:a8:8f:eb:0d:3f:0f:93:f8:62:7f:65:1b: 0d:4f:50:5a:11:93:a3:39:c2:2a:a9:bb:c5:57:d3: 17:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:B3:EF:F3:42:6D:9B:4B:EA:B2:F7:93:F7:1E:D5:74:F5:C9:1C:14 X509v3 Authority Key Identifier: keyid:70:55:81:D4:0C:95:81:A2:65:1E:53:25:23:8D:B3:BD:CB:3A:7D:05 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E1D91/5D8C1712A04011EC845AE926C4F9AE02/cFWB1AyVgaJlHlMlI42zvcs6fQU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cFWB1AyVgaJlHlMlI42zvcs6fQU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E1D91/5D8C1712A04011EC845AE926C4F9AE02/cFWB1AyVgaJlHlMlI42zvcs6fQU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption f3:8f:3a:c5:c8:43:e5:34:c6:82:ee:c3:56:01:0e:f5:b7:e9: 8e:82:3a:f2:e2:6f:1b:27:42:7d:da:24:26:ec:ed:f4:5c:a5: 93:7c:4c:15:d2:c4:35:c1:98:8f:c2:60:f4:66:f5:6e:43:78: 2e:6a:f4:2f:46:7f:48:41:63:03:48:21:c0:73:b0:a1:61:8d: f9:df:8f:1b:06:3c:0c:e5:5a:de:e8:61:c1:c7:27:e4:c3:c6: e8:e0:9c:f2:fa:96:b3:95:39:3a:c7:bf:c6:b5:61:84:5e:04: 03:29:61:aa:07:ae:08:9b:ec:01:37:75:2f:51:3b:8b:d6:d3: c7:19:8c:a7:25:a5:7c:a7:6e:92:ea:7a:93:5f:2a:27:14:fb: 15:15:ed:ff:8d:df:51:76:15:79:30:fa:13:87:95:06:a3:1c: 2f:b9:14:b3:47:ae:b3:76:6d:25:64:15:94:98:3b:69:02:9c: 7b:6d:de:55:f5:f4:78:7f:98:d4:e9:db:5c:2e:29:3f:ef:15: d5:e9:af:01:23:3f:6c:3a:32:bb:5d:ff:48:2d:69:87:8f:9a: 13:39:e9:ac:a1:fb:3a:fb:8e:40:2a:f7:59:5b:be:a9:95:1b: c1:99:0a:ea:3e:ad:7c:3f:61:53:b5:52:01:b3:d1:2c:49:71: aa:9e:85:b3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAzowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTFEOTExMTAvBgNVBAUTKDcwNTU4MUQ0MEM5NTgxQTI2NTFFNTMyNTIzOERCM0JE Q0IzQTdEMDUwHhcNMjQxMTIzMDA0MTU1WhcNMjQxMTMwMDA0MTU1WjAYMRYwFAYD VQQDEw02NzQxMjRkMy0yMjE4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA23xvk1W6mlHavZuUGv6sKNbGHwNz7xJZYWhsXDAyDmhX6PknsQJK3jwy+mDf yw8+yn9TpxDJW5RAAz1dWBlgsnqO/P8GmiNWtTPKR9iVv5cA7u66SIEQu8EQtLVb 5w4cWV5G6TZTtQwwkYn+vk+ax8nJMcMpJIa9q9SgRzTxNLa2lSpn2rvg73UhkK8k Wr0yKF958VTLObeCXjGPpdDGUWR1dcJZO2xfnWT+/rUAVuUPletQytHvcmHsPczr h7Q/+VUQpRp3D8K1BHM/43Kny+Pve5C1DSufz52Biv+YIhfD8QWoj+sNPw+T+GJ/ ZRsNT1BaEZOjOcIqqbvFV9MXlQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGWz7/NC bZtL6rL3k/ce1XT1yRwUMB8GA1UdIwQYMBaAFHBVgdQMlYGiZR5TJSONs73LOn0F MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMUQ5MS81RDhDMTcxMkEw NDAxMUVDODQ1QUU5MjZDNEY5QUUwMi9jRldCMUF5VmdhSmxIbE1sSTQyenZjczZm UVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NGV0IxQXlWZ2FKbEhsTWxJNDJ6dmNzNmZRVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MUQ5MS81RDhDMTcxMkEwNDAxMUVDODQ1QUU5MjZDNEY5QUUwMi9jRldCMUF5Vmdh SmxIbE1sSTQyenZjczZmUVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDzjzrFyEPlNMaC7sNWAQ71t+mOgjry4m8bJ0J92iQm7O30XKWTfEwV 0sQ1wZiPwmD0ZvVuQ3guavQvRn9IQWMDSCHAc7ChYY35348bBjwM5Vre6GHBxyfk w8bo4Jzy+pazlTk6x7/GtWGEXgQDKWGqB64Im+wBN3UvUTuL1tPHGYynJaV8p26S 6nqTXyonFPsVFe3/jd9RdhV5MPoTh5UGoxwvuRSzR66zdm0lZBWUmDtpApx7bd5V 9fR4f5jU6dtcLik/7xXV6a8BIz9sOjK7Xf9ILWmHj5oTOemsofs6+45AKvdZW76p lRvBmQrqPq18P2FTtVIBs9EsSXGqnoWz -----END CERTIFICATE-----Generated at Sat Nov 23 02:33:48 2024 by rpki-client on console-fra.rpki-client.org