$ rpki-client -vvf rpki.apnic.net/member_repository/A91E3BB3/95AEA9E8CBE411EA806A4A75C4F9AE02/PN9D1xf8WEnyOpTimncrKKXXAeM.mft File: PN9D1xf8WEnyOpTimncrKKXXAeM.mft (raw, json) Hash identifier: O/gT5a2NFOWt7tJ3I+4KQeQJWZeL8t8xlToHfhU5V0g= Subject key identifier: FC:C4:1F:3B:D7:CC:DE:77:07:65:5A:76:4C:C2:E6:A5:28:2F:66:12 Authority key identifier: 3C:DF:43:D7:17:FC:58:49:F2:3A:94:E2:9A:77:2B:28:A5:D7:01:E3 Certificate issuer: /CN=A91E3BB3/serialNumber=3CDF43D717FC5849F23A94E29A772B28A5D701E3 Certificate serial: 07EB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PN9D1xf8WEnyOpTimncrKKXXAeM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E3BB3/95AEA9E8CBE411EA806A4A75C4F9AE02/PN9D1xf8WEnyOpTimncrKKXXAeM.mft Manifest number: 07E5 Signing time: Fri 22 Nov 2024 20:39:21 +0000 Manifest this update: Fri 22 Nov 2024 20:39:21 +0000 Manifest next update: Fri 29 Nov 2024 20:39:21 +0000 Files and hashes: 1: PN9D1xf8WEnyOpTimncrKKXXAeM.crl (hash: BBOoCJfEf73hcG6wutUnD0XImukKlLlsYxsyWLo+CW8=) 2: 0BCF58E2015A11EC94EA2C43C4F9AE02.roa (hash: CFVAuLWTd5ivWyBERM+oyUMc1KoJHv+KDGHccM7fjiY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E3BB3/95AEA9E8CBE411EA806A4A75C4F9AE02/PN9D1xf8WEnyOpTimncrKKXXAeM.crl rsync://rpki.apnic.net/member_repository/A91E3BB3/95AEA9E8CBE411EA806A4A75C4F9AE02/PN9D1xf8WEnyOpTimncrKKXXAeM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PN9D1xf8WEnyOpTimncrKKXXAeM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:39:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2027 (0x7eb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E3BB3/serialNumber=3CDF43D717FC5849F23A94E29A772B28A5D701E3 Validity Not Before: Nov 22 20:39:21 2024 GMT Not After : Nov 29 20:39:21 2024 GMT Subject: CN=6740ebf9-4d1a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:5d:6b:d0:03:d5:fa:b4:75:f2:88:43:fb:99: 65:00:00:56:b6:31:c6:a9:bf:1d:05:b6:02:90:3d: de:a3:72:48:ae:bd:13:68:9c:62:76:0d:9d:ee:44: 3a:fb:30:6c:e6:6f:90:f7:32:6d:ac:cd:ea:d0:50: a2:2f:6f:6b:6d:d0:57:bb:49:cf:31:fd:e4:28:aa: 72:52:fb:52:fe:c5:04:ba:48:3f:e7:0c:4a:eb:bd: 19:c4:c1:e1:f2:78:f1:a0:5e:a4:f9:d3:70:50:1c: 9c:49:da:ee:d3:54:16:90:05:46:12:be:ef:f1:07: ae:4f:b2:0d:b2:b1:1d:28:cf:fb:82:e1:db:59:05: 9d:ee:c3:e3:5c:a8:f5:c1:b3:81:38:d5:4e:5f:e9: 6a:76:f7:9e:3b:ba:ef:be:96:1f:89:e1:c0:b8:bd: da:1f:b2:20:04:df:f1:8a:c5:66:98:db:ff:27:00: e0:66:d1:c6:50:0a:91:2d:3a:45:9e:70:b7:c0:d0: 24:67:e2:69:2a:ae:9b:89:41:ba:04:10:60:9e:7e: 39:7d:61:57:a5:95:8b:b5:37:36:21:2f:8c:2b:08: 93:1b:67:b1:03:dd:ab:18:95:5f:f5:7a:7f:3a:b2: 62:0e:8a:2f:8d:fa:24:15:ea:20:55:0d:3f:5e:e6: c0:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:C4:1F:3B:D7:CC:DE:77:07:65:5A:76:4C:C2:E6:A5:28:2F:66:12 X509v3 Authority Key Identifier: keyid:3C:DF:43:D7:17:FC:58:49:F2:3A:94:E2:9A:77:2B:28:A5:D7:01:E3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E3BB3/95AEA9E8CBE411EA806A4A75C4F9AE02/PN9D1xf8WEnyOpTimncrKKXXAeM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PN9D1xf8WEnyOpTimncrKKXXAeM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E3BB3/95AEA9E8CBE411EA806A4A75C4F9AE02/PN9D1xf8WEnyOpTimncrKKXXAeM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b7:2f:f2:a2:2b:db:07:02:60:16:04:37:32:80:29:aa:a3:81: 91:09:b2:c7:41:e3:01:8d:b4:3c:65:0b:91:9b:d3:f1:d0:aa: 3d:e9:b2:bb:8d:e1:96:6b:03:27:87:3e:c1:07:c4:63:1c:8f: 0d:83:fd:67:ba:f6:45:76:ba:1e:06:85:05:64:43:34:2c:49: af:e6:6d:6d:f4:d5:1c:97:73:1b:87:04:56:bb:60:65:0c:2c: 43:1a:51:1e:c9:75:ce:9f:64:50:7b:76:e3:27:a0:c1:f2:5a: 72:84:7e:c9:fb:86:80:5e:f2:f2:7f:b3:09:1d:1c:4d:ca:a7: dd:9c:6f:30:23:93:aa:a1:41:38:a9:e9:03:da:26:da:44:9b: be:a9:db:af:ab:c1:b0:33:c0:03:93:74:1f:d6:a2:23:af:bf: bc:bd:85:36:7d:57:24:7a:2b:83:b1:f1:01:d5:e9:29:cc:59: 9e:fb:99:bd:79:23:7c:d1:4a:ff:c6:67:3a:09:5a:61:22:d3: f8:f4:28:b6:b3:71:66:bd:5c:6a:ac:0b:cd:3f:e1:99:67:38: 96:0c:08:c8:c2:03:98:cb:de:31:d7:09:1d:b5:31:e3:6e:d3: 53:34:87:34:37:79:93:a8:00:bb:f0:12:3d:ad:85:bd:36:c4: 6a:2b:76:c0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB+swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTNCQjMxMTAvBgNVBAUTKDNDREY0M0Q3MTdGQzU4NDlGMjNBOTRFMjlBNzcyQjI4 QTVENzAxRTMwHhcNMjQxMTIyMjAzOTIxWhcNMjQxMTI5MjAzOTIxWjAYMRYwFAYD VQQDEw02NzQwZWJmOS00ZDFhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyF1r0APV+rR18ohD+5llAABWtjHGqb8dBbYCkD3eo3JIrr0TaJxidg2d7kQ6 +zBs5m+Q9zJtrM3q0FCiL29rbdBXu0nPMf3kKKpyUvtS/sUEukg/5wxK670ZxMHh 8njxoF6k+dNwUBycSdru01QWkAVGEr7v8QeuT7INsrEdKM/7guHbWQWd7sPjXKj1 wbOBONVOX+lqdveeO7rvvpYfieHAuL3aH7IgBN/xisVmmNv/JwDgZtHGUAqRLTpF nnC3wNAkZ+JpKq6biUG6BBBgnn45fWFXpZWLtTc2IS+MKwiTG2exA92rGJVf9Xp/ OrJiDoovjfokFeogVQ0/XubAZwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPzEHzvX zN53B2VadkzC5qUoL2YSMB8GA1UdIwQYMBaAFDzfQ9cX/FhJ8jqU4pp3Kyil1wHj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFM0JCMy85NUFFQTlFOENC RTQxMUVBODA2QTRBNzVDNEY5QUUwMi9QTjlEMXhmOFdFbnlPcFRpbW5jcktLWFhB ZU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BOOUQxeGY4V0VueU9wVGltbmNyS0tYWEFlTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF M0JCMy85NUFFQTlFOENCRTQxMUVBODA2QTRBNzVDNEY5QUUwMi9QTjlEMXhmOFdF bnlPcFRpbW5jcktLWFhBZU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC3L/KiK9sHAmAWBDcygCmqo4GRCbLHQeMBjbQ8ZQuRm9Px0Ko96bK7 jeGWawMnhz7BB8RjHI8Ng/1nuvZFdroeBoUFZEM0LEmv5m1t9NUcl3MbhwRWu2Bl DCxDGlEeyXXOn2RQe3bjJ6DB8lpyhH7J+4aAXvLyf7MJHRxNyqfdnG8wI5OqoUE4 qekD2ibaRJu+qduvq8GwM8ADk3Qf1qIjr7+8vYU2fVckeiuDsfEB1ekpzFme+5m9 eSN80Ur/xmc6CVphItP49Ci2s3FmvVxqrAvNP+GZZziWDAjIwgOYy94x1wkdtTHj btNTNIc0N3mTqAC78BI9rYW9NsRqK3bA -----END CERTIFICATE-----Generated at Fri Nov 22 22:24:13 2024 by rpki-client on console-fra.rpki-client.org