$ rpki-client -vvf rpki.apnic.net/member_repository/A91E431E/7A8481968C6511EBAAF80376C4F9AE02/i29QUS89IfFe7mdUeBjiY79cXRQ.mft File: i29QUS89IfFe7mdUeBjiY79cXRQ.mft (raw, json) Hash identifier: LyhBZcn4FO0lK4EBBOO+bszFBR6IQHOGpscoALscNFw= Subject key identifier: C7:A9:46:9D:54:15:16:75:BB:AF:D7:F4:BD:52:84:D2:F7:78:37:A3 Authority key identifier: 8B:6F:50:51:2F:3D:21:F1:5E:EE:67:54:78:18:E2:63:BF:5C:5D:14 Certificate issuer: /CN=A91E431E/serialNumber=8B6F50512F3D21F15EEE67547818E263BF5C5D14 Certificate serial: 05ED Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/i29QUS89IfFe7mdUeBjiY79cXRQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E431E/7A8481968C6511EBAAF80376C4F9AE02/i29QUS89IfFe7mdUeBjiY79cXRQ.mft Manifest number: 05E8 Signing time: Fri 22 Nov 2024 22:24:16 +0000 Manifest this update: Fri 22 Nov 2024 22:24:15 +0000 Manifest next update: Fri 29 Nov 2024 22:24:15 +0000 Files and hashes: 1: i29QUS89IfFe7mdUeBjiY79cXRQ.crl (hash: aDEP0GdbkWrpJQrEPNZPDl4z2hd6tMaF0H3TDAeahAU=) 2: 51CBE4868C6711EB98B7B279C4F9AE02.roa (hash: am0gLM47UswkhQ7d8ve9CDz5IVO8+0wgLFBI3jyuYpA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E431E/7A8481968C6511EBAAF80376C4F9AE02/i29QUS89IfFe7mdUeBjiY79cXRQ.crl rsync://rpki.apnic.net/member_repository/A91E431E/7A8481968C6511EBAAF80376C4F9AE02/i29QUS89IfFe7mdUeBjiY79cXRQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/i29QUS89IfFe7mdUeBjiY79cXRQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1517 (0x5ed) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E431E/serialNumber=8B6F50512F3D21F15EEE67547818E263BF5C5D14 Validity Not Before: Nov 22 22:24:15 2024 GMT Not After : Nov 29 22:24:15 2024 GMT Subject: CN=6741048f-f0f8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:71:93:f8:e0:c8:c0:c0:aa:85:1f:13:68:7c: 9f:d7:da:ba:4f:d7:98:b6:c2:ce:26:63:a4:00:26: f4:cc:f6:cf:32:db:b3:92:c2:c4:64:43:28:c5:dd: e3:b1:34:ed:c2:74:86:4c:0a:e9:7f:67:4a:23:38: 0b:f2:b3:92:6f:1e:f2:ec:20:95:8a:7a:20:31:59: 62:68:b2:62:42:58:97:e2:46:b7:e8:86:87:1a:91: de:f4:9a:ba:1e:d3:1c:a1:37:99:79:e0:ed:9a:c5: 2c:f6:6d:a1:09:57:b3:0e:c6:bd:cb:05:de:45:f5: c5:e6:6c:fd:c5:5e:02:f3:16:88:87:76:11:a3:d6: 39:8e:c2:73:90:29:70:12:75:05:7e:d9:39:b9:35: d6:a1:5b:44:9f:4d:7b:5c:d0:aa:9a:01:d4:69:c0: 88:ee:b5:bd:de:93:81:c6:de:0f:35:1f:7e:36:cd: a0:60:3d:a9:74:03:96:08:5a:42:de:9c:ba:9a:5d: ba:37:e7:c0:86:33:53:97:0d:9f:41:ec:a4:ae:6d: 57:68:e5:3b:8d:26:2b:19:81:cb:d9:3c:ce:d9:5b: 31:2a:e6:47:fe:13:31:1c:1d:07:ec:29:a9:10:b0: 6e:b0:33:45:f7:23:1c:a1:ae:34:48:b5:9c:63:8e: 82:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:A9:46:9D:54:15:16:75:BB:AF:D7:F4:BD:52:84:D2:F7:78:37:A3 X509v3 Authority Key Identifier: keyid:8B:6F:50:51:2F:3D:21:F1:5E:EE:67:54:78:18:E2:63:BF:5C:5D:14 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E431E/7A8481968C6511EBAAF80376C4F9AE02/i29QUS89IfFe7mdUeBjiY79cXRQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/i29QUS89IfFe7mdUeBjiY79cXRQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E431E/7A8481968C6511EBAAF80376C4F9AE02/i29QUS89IfFe7mdUeBjiY79cXRQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a0:3d:c4:19:fe:d1:4e:97:20:39:eb:d6:17:67:c2:d6:f8:8a: 19:0a:e7:96:21:2f:cb:f8:75:75:62:9a:71:a4:38:36:78:cd: 2f:ec:54:90:4a:e0:11:9f:8b:e2:79:03:49:73:93:bc:2a:de: cb:51:22:7d:7a:83:f2:8c:20:f1:67:92:20:26:2d:c5:73:9a: 41:83:6e:e5:1f:81:36:40:4b:60:e2:71:0b:97:f8:b3:40:5d: 2f:fa:6e:cc:81:e9:fe:67:72:e8:ee:f5:55:80:c0:a2:8b:58: 30:1e:41:df:6c:87:6c:c9:f0:24:14:f4:cf:16:b4:f3:db:3b: 86:b6:04:a5:b7:f7:59:d7:a6:fb:06:48:63:5b:74:50:26:bc: 80:42:71:b9:05:1d:bf:7d:bf:d7:73:b8:3d:ff:1b:1d:3e:03: f2:98:d5:fd:47:cf:1e:3d:a5:fc:1b:d6:8c:e9:55:89:18:da: ff:9b:c6:b2:de:eb:82:a3:8a:a8:13:2c:bf:6a:42:9c:d3:26: 04:d2:19:f2:03:11:73:ae:03:45:50:6b:e1:a3:a9:de:b8:79: c4:42:36:fc:a0:d4:2b:30:64:46:95:72:ad:f7:0a:93:3b:8b: 9e:eb:ac:cd:8d:b4:ff:61:f2:3a:a1:e8:bb:04:83:12:96:fe: 47:a4:69:c6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBe0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTQzMUUxMTAvBgNVBAUTKDhCNkY1MDUxMkYzRDIxRjE1RUVFNjc1NDc4MThFMjYz QkY1QzVEMTQwHhcNMjQxMTIyMjIyNDE1WhcNMjQxMTI5MjIyNDE1WjAYMRYwFAYD VQQDEw02NzQxMDQ4Zi1mMGY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvXGT+ODIwMCqhR8TaHyf19q6T9eYtsLOJmOkACb0zPbPMtuzksLEZEMoxd3j sTTtwnSGTArpf2dKIzgL8rOSbx7y7CCVinogMVliaLJiQliX4ka36IaHGpHe9Jq6 HtMcoTeZeeDtmsUs9m2hCVezDsa9ywXeRfXF5mz9xV4C8xaIh3YRo9Y5jsJzkClw EnUFftk5uTXWoVtEn017XNCqmgHUacCI7rW93pOBxt4PNR9+Ns2gYD2pdAOWCFpC 3py6ml26N+fAhjNTlw2fQeykrm1XaOU7jSYrGYHL2TzO2VsxKuZH/hMxHB0H7Cmp ELBusDNF9yMcoa40SLWcY46C2wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMepRp1U FRZ1u6/X9L1ShNL3eDejMB8GA1UdIwQYMBaAFItvUFEvPSHxXu5nVHgY4mO/XF0U MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNDMxRS83QTg0ODE5NjhD NjUxMUVCQUFGODAzNzZDNEY5QUUwMi9pMjlRVVM4OUlmRmU3bWRVZUJqaVk3OWNY UlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2kyOVFVUzg5SWZGZTdtZFVlQmppWTc5Y1hSUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NDMxRS83QTg0ODE5NjhDNjUxMUVCQUFGODAzNzZDNEY5QUUwMi9pMjlRVVM4OUlm RmU3bWRVZUJqaVk3OWNYUlEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCgPcQZ/tFOlyA569YXZ8LW+IoZCueWIS/L+HV1YppxpDg2eM0v7FSQ SuARn4vieQNJc5O8Kt7LUSJ9eoPyjCDxZ5IgJi3Fc5pBg27lH4E2QEtg4nELl/iz QF0v+m7Mgen+Z3Lo7vVVgMCii1gwHkHfbIdsyfAkFPTPFrTz2zuGtgSlt/dZ16b7 BkhjW3RQJryAQnG5BR2/fb/Xc7g9/xsdPgPymNX9R88ePaX8G9aM6VWJGNr/m8ay 3uuCo4qoEyy/akKc0yYE0hnyAxFzrgNFUGvho6neuHnEQjb8oNQrMGRGlXKt9wqT O4ue66zNjbT/YfI6oei7BIMSlv5HpGnG -----END CERTIFICATE-----Generated at Fri Nov 22 23:39:36 2024 by rpki-client on console-fra.rpki-client.org