$ rpki-client -vvf rpki.apnic.net/member_repository/A91E22E5/F5E34E64338D11ED97E3E25FC4F9AE02/I-3rdP0jQOR_AbyL94Q7dpHcBhU.mft File: I-3rdP0jQOR_AbyL94Q7dpHcBhU.mft (raw, json) Hash identifier: JjgBc29Qxfg0fai/dBSDkLI7YCZZOOP2S+g3H0l/KoY= Subject key identifier: BF:28:1A:DF:0A:56:E2:BD:6F:E2:F0:2A:D3:61:10:58:DE:E7:6B:C7 Authority key identifier: 23:ED:EB:74:FD:23:40:E4:7F:01:BC:8B:F7:84:3B:76:91:DC:06:15 Certificate issuer: /CN=A91E22E5/serialNumber=23EDEB74FD2340E47F01BC8BF7843B7691DC0615 Certificate serial: 01B9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/I-3rdP0jQOR_AbyL94Q7dpHcBhU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E22E5/F5E34E64338D11ED97E3E25FC4F9AE02/I-3rdP0jQOR_AbyL94Q7dpHcBhU.mft Manifest number: 01B6 Signing time: Sat 23 Nov 2024 01:47:28 +0000 Manifest this update: Sat 23 Nov 2024 01:47:28 +0000 Manifest next update: Sat 30 Nov 2024 01:47:28 +0000 Files and hashes: 1: I-3rdP0jQOR_AbyL94Q7dpHcBhU.crl (hash: fURwh2oExdfngznGTaPahbyS6pR0tfMuVpFRA23PNOM=) 2: 623705DA339111ED9249064BC4F9AE02.roa (hash: oE8Ftzk8b1pgimy4jf77z4BKi4j6G1jlmkYSbgOmtg8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E22E5/F5E34E64338D11ED97E3E25FC4F9AE02/I-3rdP0jQOR_AbyL94Q7dpHcBhU.crl rsync://rpki.apnic.net/member_repository/A91E22E5/F5E34E64338D11ED97E3E25FC4F9AE02/I-3rdP0jQOR_AbyL94Q7dpHcBhU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/I-3rdP0jQOR_AbyL94Q7dpHcBhU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 441 (0x1b9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E22E5/serialNumber=23EDEB74FD2340E47F01BC8BF7843B7691DC0615 Validity Not Before: Nov 23 01:47:28 2024 GMT Not After : Nov 30 01:47:28 2024 GMT Subject: CN=67413430-4876 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:c1:6c:fe:45:92:20:75:69:e2:d9:5b:f3:2b: e5:1e:36:e2:eb:ba:ca:b4:0e:06:8e:9e:84:dd:29: 88:5b:88:8f:d3:93:b9:86:b0:b1:ad:00:18:f5:c4: bf:55:fa:76:5b:d5:3c:5c:29:79:a3:6c:3f:a7:7a: f5:5a:41:86:2b:46:dd:9f:e1:f9:58:f1:b4:d3:c0: 28:c2:d6:50:5f:0c:b6:eb:04:8b:49:3a:2a:ca:eb: da:ca:da:a0:7e:9d:9f:97:65:b9:c5:fa:15:d8:a8: 67:6a:bc:3b:24:ff:1a:76:aa:ca:ff:0d:f6:36:aa: 3c:b1:3d:7d:fe:d2:fa:c8:80:eb:26:72:d9:03:f5: 95:66:6f:53:ec:9d:a4:1a:8b:bd:bf:08:68:7f:ad: ae:73:1e:74:97:cd:1b:98:54:62:19:78:3f:e4:10: e6:60:8b:1e:9c:fc:38:75:eb:cf:80:81:f1:24:09: 74:81:f0:0e:2a:23:c1:f4:1e:b3:5d:2d:d1:01:1f: 5c:66:3d:3b:3d:b5:a5:ec:f4:bf:96:11:ce:8d:1b: d9:e5:80:63:65:06:d0:ee:9c:cc:48:32:9d:a8:29: 71:84:4f:72:9d:79:4e:ff:38:8d:78:2c:31:bd:2c: 92:73:22:42:94:99:8f:60:e0:a8:f3:d4:dc:2c:a9: 5f:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:28:1A:DF:0A:56:E2:BD:6F:E2:F0:2A:D3:61:10:58:DE:E7:6B:C7 X509v3 Authority Key Identifier: keyid:23:ED:EB:74:FD:23:40:E4:7F:01:BC:8B:F7:84:3B:76:91:DC:06:15 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E22E5/F5E34E64338D11ED97E3E25FC4F9AE02/I-3rdP0jQOR_AbyL94Q7dpHcBhU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/I-3rdP0jQOR_AbyL94Q7dpHcBhU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E22E5/F5E34E64338D11ED97E3E25FC4F9AE02/I-3rdP0jQOR_AbyL94Q7dpHcBhU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 47:9f:18:d0:6c:f1:35:fd:09:d4:4b:3a:81:df:ea:44:ca:32: 9d:4f:34:92:9f:8c:09:de:cc:f8:18:b5:ef:9c:f9:27:d3:79: 9e:80:c7:f9:4a:3a:dd:d0:6f:33:ac:24:62:8e:19:b7:28:59: 96:86:e0:26:52:f2:b5:54:16:0f:9f:f0:11:f3:63:01:69:f2: 9d:12:00:17:5d:a0:15:f6:15:a7:53:87:ed:f6:9d:4c:38:d3: 2b:29:01:d8:cf:87:2a:91:b1:f6:df:98:cb:ee:0c:24:77:2d: 06:11:a4:07:1f:3d:f3:3b:f7:11:6e:33:2c:e4:cc:87:2f:26: 1e:8e:cc:da:8c:eb:7a:fa:a4:e4:09:a2:8d:bc:bc:87:34:1e: 0d:f8:61:9e:20:64:22:f5:ea:fd:39:b8:cf:85:d8:f1:9a:a6: 17:a8:f3:35:b2:e6:d5:10:5c:2e:d2:5a:7f:b7:1d:f4:71:54: 46:d3:a3:ad:4c:26:ec:37:32:c9:41:c7:55:7f:d8:aa:11:d4: 09:3f:5f:d8:06:34:2a:08:d9:36:34:27:b6:a0:26:bc:b1:e7: b2:4d:6e:27:b7:de:22:e5:a5:b8:6a:f0:b2:46:3f:16:15:20: 4c:11:a7:01:1f:91:17:2b:47:c3:3b:98:3c:88:f3:ce:6e:6b: 07:27:b5:03 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAbkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTIyRTUxMTAvBgNVBAUTKDIzRURFQjc0RkQyMzQwRTQ3RjAxQkM4QkY3ODQzQjc2 OTFEQzA2MTUwHhcNMjQxMTIzMDE0NzI4WhcNMjQxMTMwMDE0NzI4WjAYMRYwFAYD VQQDEw02NzQxMzQzMC00ODc2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwsFs/kWSIHVp4tlb8yvlHjbi67rKtA4Gjp6E3SmIW4iP05O5hrCxrQAY9cS/ Vfp2W9U8XCl5o2w/p3r1WkGGK0bdn+H5WPG008AowtZQXwy26wSLSToqyuvaytqg fp2fl2W5xfoV2Khnarw7JP8adqrK/w32Nqo8sT19/tL6yIDrJnLZA/WVZm9T7J2k Gou9vwhof62ucx50l80bmFRiGXg/5BDmYIsenPw4devPgIHxJAl0gfAOKiPB9B6z XS3RAR9cZj07PbWl7PS/lhHOjRvZ5YBjZQbQ7pzMSDKdqClxhE9ynXlO/ziNeCwx vSyScyJClJmPYOCo89TcLKlfywIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFL8oGt8K VuK9b+LwKtNhEFje52vHMB8GA1UdIwQYMBaAFCPt63T9I0DkfwG8i/eEO3aR3AYV MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMjJFNS9GNUUzNEU2NDMz OEQxMUVEOTdFM0UyNUZDNEY5QUUwMi9JLTNyZFAwalFPUl9BYnlMOTRRN2RwSGNC aFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ktM3JkUDBqUU9SX0FieUw5NFE3ZHBIY0JoVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MjJFNS9GNUUzNEU2NDMzOEQxMUVEOTdFM0UyNUZDNEY5QUUwMi9JLTNyZFAwalFP Ul9BYnlMOTRRN2RwSGNCaFUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBHnxjQbPE1/QnUSzqB3+pEyjKdTzSSn4wJ3sz4GLXvnPkn03megMf5 Sjrd0G8zrCRijhm3KFmWhuAmUvK1VBYPn/AR82MBafKdEgAXXaAV9hWnU4ft9p1M ONMrKQHYz4cqkbH235jL7gwkdy0GEaQHHz3zO/cRbjMs5MyHLyYejszajOt6+qTk CaKNvLyHNB4N+GGeIGQi9er9ObjPhdjxmqYXqPM1subVEFwu0lp/tx30cVRG06Ot TCbsNzLJQcdVf9iqEdQJP1/YBjQqCNk2NCe2oCa8seeyTW4nt94i5aW4avCyRj8W FSBMEacBH5EXK0fDO5g8iPPObmsHJ7UD -----END CERTIFICATE-----Generated at Sat Nov 23 02:33:48 2024 by rpki-client on console-fra.rpki-client.org