$ rpki-client -vvf rpki.apnic.net/member_repository/A91E46E8/D4B8DA16B15A11EC8240B820C4F9AE02/CEz6nrwGwNaBBUiw7RzEfPjuDzE.mft File: CEz6nrwGwNaBBUiw7RzEfPjuDzE.mft (raw, json) Hash identifier: PfDvONjXuRp/roJdEX2MPjTj2a8tzlq87oYQs1f2sac= Subject key identifier: 16:1C:71:28:75:D4:A3:DD:6B:7E:6F:FA:C9:C1:5F:0C:A3:1E:6E:A3 Authority key identifier: 08:4C:FA:9E:BC:06:C0:D6:81:05:48:B0:ED:1C:C4:7C:F8:EE:0F:31 Certificate issuer: /CN=A91E46E8/serialNumber=084CFA9EBC06C0D6810548B0ED1CC47CF8EE0F31 Certificate serial: 030A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CEz6nrwGwNaBBUiw7RzEfPjuDzE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E46E8/D4B8DA16B15A11EC8240B820C4F9AE02/CEz6nrwGwNaBBUiw7RzEfPjuDzE.mft Manifest number: 0305 Signing time: Sat 23 Nov 2024 00:48:08 +0000 Manifest this update: Sat 23 Nov 2024 00:48:08 +0000 Manifest next update: Sat 30 Nov 2024 00:48:08 +0000 Files and hashes: 1: CEz6nrwGwNaBBUiw7RzEfPjuDzE.crl (hash: qkUysCQRUk1eZ247BzTqaiBkuWF7U2HM8zS3/r9KwBA=) 2: 97E05E58B15E11ECB6B31625C4F9AE02.roa (hash: 814gK30vRsw3f3GeLBYUI3A+K0FBKsWqCyMte+6ZS3M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E46E8/D4B8DA16B15A11EC8240B820C4F9AE02/CEz6nrwGwNaBBUiw7RzEfPjuDzE.crl rsync://rpki.apnic.net/member_repository/A91E46E8/D4B8DA16B15A11EC8240B820C4F9AE02/CEz6nrwGwNaBBUiw7RzEfPjuDzE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CEz6nrwGwNaBBUiw7RzEfPjuDzE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 778 (0x30a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E46E8/serialNumber=084CFA9EBC06C0D6810548B0ED1CC47CF8EE0F31 Validity Not Before: Nov 23 00:48:08 2024 GMT Not After : Nov 30 00:48:08 2024 GMT Subject: CN=67412648-d96c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:76:8a:9e:fd:6e:9a:6b:fa:78:5c:78:fc:f0: df:86:18:71:06:86:45:df:0b:e2:64:02:3b:a2:0c: 81:05:81:bd:49:5d:69:56:f7:f0:79:e2:b0:79:a4: be:1e:21:eb:f0:f7:bc:44:fb:e6:98:cb:a1:53:9a: 5b:a6:0c:f5:e4:ee:90:a7:ca:73:f3:5e:b7:25:18: aa:cd:da:0c:65:1c:e0:82:26:4e:3c:5a:67:48:7d: 8e:87:ee:e8:b3:e2:99:f6:e0:34:62:f1:b7:0e:44: c3:24:34:d4:8e:3b:6a:8c:0f:45:8e:f6:af:3e:8b: fe:75:60:a8:8c:8a:f3:c0:b1:33:15:62:e8:70:65: 24:fb:22:15:85:92:a0:c1:64:02:90:6b:70:36:d9: 58:88:e3:89:d8:3a:88:fa:93:16:74:60:cc:4e:09: 42:22:07:a5:2f:f0:75:6b:ba:0b:f5:85:2b:a8:f9: 9f:51:b5:7e:ef:e9:a0:30:2b:2e:91:6b:61:99:24: 21:0b:f2:08:f6:ea:67:00:23:37:6c:fc:ed:bc:96: f7:f5:07:c2:33:27:e8:4f:de:8c:6e:08:95:18:e0: 03:c2:f1:4d:fd:42:c8:b3:79:c3:47:7b:42:7e:9f: 92:09:82:02:7b:d8:30:99:a6:74:94:9c:62:6c:1d: 42:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:1C:71:28:75:D4:A3:DD:6B:7E:6F:FA:C9:C1:5F:0C:A3:1E:6E:A3 X509v3 Authority Key Identifier: keyid:08:4C:FA:9E:BC:06:C0:D6:81:05:48:B0:ED:1C:C4:7C:F8:EE:0F:31 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E46E8/D4B8DA16B15A11EC8240B820C4F9AE02/CEz6nrwGwNaBBUiw7RzEfPjuDzE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CEz6nrwGwNaBBUiw7RzEfPjuDzE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E46E8/D4B8DA16B15A11EC8240B820C4F9AE02/CEz6nrwGwNaBBUiw7RzEfPjuDzE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ce:f9:ae:6c:c4:95:c1:4b:ca:ed:ca:cd:8b:fe:34:e6:72:0d: cd:1c:7f:96:17:27:ef:9f:1a:ae:48:86:73:c7:1d:41:4b:6f: 32:90:6f:e3:49:95:b3:f0:7f:e6:5e:97:a1:10:97:45:fc:b7: 8d:82:2e:6c:f6:91:0d:8e:d0:8c:bf:7b:cb:c5:bc:dd:e9:78: cc:fd:94:42:9a:27:af:66:7b:36:9a:8d:5a:28:aa:0d:61:be: c3:e6:e1:17:59:b2:ab:d5:02:be:fb:95:14:37:0b:9c:8b:c9: f7:bf:fc:f1:54:af:62:09:e0:3f:c4:85:13:8a:51:91:d9:08: 7a:4a:1d:3d:8e:0c:18:ed:0a:31:0d:04:bf:1e:73:73:9a:0b: 68:8c:63:95:65:e8:82:42:ae:e5:e0:82:2c:33:e5:c7:39:da: 95:fa:ca:c9:53:37:62:cc:81:af:a4:02:e1:cf:63:e5:93:75: 8c:1f:97:cb:72:3a:e7:15:d1:ce:4f:fe:60:9b:f2:11:f5:d1: 3e:e4:9e:bf:82:97:8d:4f:33:d8:27:a4:08:46:f0:9f:6b:ab: 03:cc:3c:aa:0b:d6:db:35:4d:8b:b0:2e:2f:04:a7:40:22:f4: 0d:05:da:e4:fd:1d:f6:bf:5b:ae:b2:58:21:4b:c1:d8:80:88: 80:92:62:cb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAwowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTQ2RTgxMTAvBgNVBAUTKDA4NENGQTlFQkMwNkMwRDY4MTA1NDhCMEVEMUNDNDdD RjhFRTBGMzEwHhcNMjQxMTIzMDA0ODA4WhcNMjQxMTMwMDA0ODA4WjAYMRYwFAYD VQQDEw02NzQxMjY0OC1kOTZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuHaKnv1ummv6eFx4/PDfhhhxBoZF3wviZAI7ogyBBYG9SV1pVvfweeKweaS+ HiHr8Pe8RPvmmMuhU5pbpgz15O6Qp8pz8163JRiqzdoMZRzggiZOPFpnSH2Oh+7o s+KZ9uA0YvG3DkTDJDTUjjtqjA9FjvavPov+dWCojIrzwLEzFWLocGUk+yIVhZKg wWQCkGtwNtlYiOOJ2DqI+pMWdGDMTglCIgelL/B1a7oL9YUrqPmfUbV+7+mgMCsu kWthmSQhC/II9upnACM3bPztvJb39QfCMyfoT96MbgiVGOADwvFN/ULIs3nDR3tC fp+SCYICe9gwmaZ0lJxibB1CFwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBYccSh1 1KPda35v+snBXwyjHm6jMB8GA1UdIwQYMBaAFAhM+p68BsDWgQVIsO0cxHz47g8x MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNDZFOC9ENEI4REExNkIx NUExMUVDODI0MEI4MjBDNEY5QUUwMi9DRXo2bnJ3R3dOYUJCVWl3N1J6RWZQanVE ekUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NFejZucndHd05hQkJVaXc3UnpFZlBqdUR6RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NDZFOC9ENEI4REExNkIxNUExMUVDODI0MEI4MjBDNEY5QUUwMi9DRXo2bnJ3R3dO YUJCVWl3N1J6RWZQanVEekUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDO+a5sxJXBS8rtys2L/jTmcg3NHH+WFyfvnxquSIZzxx1BS28ykG/j SZWz8H/mXpehEJdF/LeNgi5s9pENjtCMv3vLxbzd6XjM/ZRCmievZns2mo1aKKoN Yb7D5uEXWbKr1QK++5UUNwuci8n3v/zxVK9iCeA/xIUTilGR2Qh6Sh09jgwY7Qox DQS/HnNzmgtojGOVZeiCQq7l4IIsM+XHOdqV+srJUzdizIGvpALhz2Plk3WMH5fL cjrnFdHOT/5gm/IR9dE+5J6/gpeNTzPYJ6QIRvCfa6sDzDyqC9bbNU2LsC4vBKdA IvQNBdrk/R32v1uuslghS8HYgIiAkmLL -----END CERTIFICATE-----Generated at Sat Nov 23 02:33:49 2024 by rpki-client on console-fra.rpki-client.org