$ rpki-client -vvf rpki.apnic.net/member_repository/A91EB1BE/5A57786CC0C811E8AE805334C4F9AE02/4CEd1HfFtNoX56IChgOs2OcWZrU.mft File: 4CEd1HfFtNoX56IChgOs2OcWZrU.mft (raw, json) Hash identifier: CReXK052bI+Zqdv8JOdswFtdSxqy5gGjOToBV8HkJqw= Subject key identifier: 41:4C:53:8F:41:BF:7F:06:29:EF:78:9F:23:57:69:2D:74:96:14:DF Authority key identifier: E0:21:1D:D4:77:C5:B4:DA:17:E7:A2:02:86:03:AC:D8:E7:16:66:B5 Certificate issuer: /CN=A91EB1BE/serialNumber=E0211DD477C5B4DA17E7A2028603ACD8E71666B5 Certificate serial: 1276 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4CEd1HfFtNoX56IChgOs2OcWZrU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EB1BE/5A57786CC0C811E8AE805334C4F9AE02/4CEd1HfFtNoX56IChgOs2OcWZrU.mft Manifest number: 1265 Signing time: Fri 22 Nov 2024 17:06:43 +0000 Manifest this update: Fri 22 Nov 2024 17:06:43 +0000 Manifest next update: Fri 29 Nov 2024 17:06:43 +0000 Files and hashes: 1: 4CEd1HfFtNoX56IChgOs2OcWZrU.crl (hash: HHFisQPNkGC9KUJkVORC3FPYLWS6I4McFllt5BgzFk0=) 2: 31E1DE72B04B11EE9F3B384BC4F9AE02.roa (hash: SUqha04b2ntyDAUGFXYiqHZijUV69AXBCBCtIkXQ4as=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EB1BE/5A57786CC0C811E8AE805334C4F9AE02/4CEd1HfFtNoX56IChgOs2OcWZrU.crl rsync://rpki.apnic.net/member_repository/A91EB1BE/5A57786CC0C811E8AE805334C4F9AE02/4CEd1HfFtNoX56IChgOs2OcWZrU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4CEd1HfFtNoX56IChgOs2OcWZrU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 17:06:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4726 (0x1276) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EB1BE/serialNumber=E0211DD477C5B4DA17E7A2028603ACD8E71666B5 Validity Not Before: Nov 22 17:06:43 2024 GMT Not After : Nov 29 17:06:43 2024 GMT Subject: CN=6740ba23-7061 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:f1:7a:c4:37:07:43:af:c3:f0:d2:e9:65:f1: d9:b1:5e:96:bf:81:8f:2e:1e:88:0e:84:f2:86:05: 19:ca:6c:5b:f5:7f:65:75:12:ea:e9:65:63:6e:b2: f0:7e:6a:71:c2:ab:5d:e7:6a:3a:6a:0d:b1:ca:a3: 63:b5:15:54:f1:db:50:57:95:d7:28:da:a9:85:03: d5:c4:fb:5c:8a:0c:44:f1:18:ca:e3:e1:80:23:ff: d8:b8:9d:b5:bb:cc:90:9f:c2:39:00:67:d6:e7:d0: fa:c8:b0:10:af:15:74:91:1c:18:d7:1a:77:ea:3e: 88:3b:bb:1b:9d:ec:b8:12:64:29:a5:80:e9:f8:86: 0e:20:9c:a6:9a:d0:11:c7:81:7e:c0:86:53:6f:6b: e7:73:b1:1d:37:4e:bd:d9:5d:63:44:4a:1f:74:69: ae:22:4d:3a:29:23:00:0f:6b:1b:36:5c:d1:1c:81: 59:85:10:dd:ba:de:27:88:5c:88:ab:9f:0f:7d:d9: fe:95:53:3b:f3:b9:d2:43:58:9e:ff:fd:eb:1a:91: 30:91:98:b1:d9:af:b5:f3:19:dc:63:b9:8d:f2:15: f5:1d:a1:26:9e:53:f8:d1:35:2c:dd:42:67:11:e5: d0:00:da:69:4f:6a:8a:45:0f:40:d2:5a:59:de:d1: 39:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:4C:53:8F:41:BF:7F:06:29:EF:78:9F:23:57:69:2D:74:96:14:DF X509v3 Authority Key Identifier: keyid:E0:21:1D:D4:77:C5:B4:DA:17:E7:A2:02:86:03:AC:D8:E7:16:66:B5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EB1BE/5A57786CC0C811E8AE805334C4F9AE02/4CEd1HfFtNoX56IChgOs2OcWZrU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4CEd1HfFtNoX56IChgOs2OcWZrU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EB1BE/5A57786CC0C811E8AE805334C4F9AE02/4CEd1HfFtNoX56IChgOs2OcWZrU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a9:be:7c:0b:f4:bc:5d:47:a7:3f:49:ab:5d:f0:a1:b4:45:b8: a1:45:c3:41:95:fc:12:c2:21:5f:f4:c4:58:29:52:f0:fb:8a: e2:c4:fd:1b:f7:c2:67:ce:e3:74:24:74:22:45:a2:72:79:4f: 63:c4:e1:31:f2:b9:bd:c3:98:08:65:10:92:c6:2b:51:6f:e9: 6a:6d:c2:05:96:f7:23:8e:81:a7:cf:e4:87:93:3d:63:fd:82: a1:ef:4a:48:3f:ef:45:9b:57:7d:df:d5:e6:cb:c3:a4:51:15: 5f:aa:d1:a8:77:98:58:24:e9:80:cd:ee:05:23:d1:2f:73:d4: bc:f7:3f:bf:0a:ba:5e:4c:97:e6:ff:3a:c9:4c:5d:ff:b1:47: 7a:e5:05:6d:37:3a:df:ca:dc:ed:27:86:3f:d8:82:4f:d6:af: da:cf:b6:e0:f0:d6:76:3d:e2:bb:b9:81:07:29:ac:7a:6d:3f: 45:99:f5:4c:7e:8b:df:f6:8d:db:19:0b:54:83:81:cc:03:ab: 70:40:b7:16:63:0a:12:54:a0:c6:44:bd:7b:88:5e:ea:d1:02: 67:5d:ad:5c:54:11:c3:b1:28:f5:02:a0:d2:52:51:6c:16:4f: d2:07:ea:8b:9e:7c:12:31:c3:52:27:a6:79:c8:ac:3a:72:fd: c6:fe:20:69 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEnYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUIxQkUxMTAvBgNVBAUTKEUwMjExREQ0NzdDNUI0REExN0U3QTIwMjg2MDNBQ0Q4 RTcxNjY2QjUwHhcNMjQxMTIyMTcwNjQzWhcNMjQxMTI5MTcwNjQzWjAYMRYwFAYD VQQDEw02NzQwYmEyMy03MDYxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt/F6xDcHQ6/D8NLpZfHZsV6Wv4GPLh6IDoTyhgUZymxb9X9ldRLq6WVjbrLw fmpxwqtd52o6ag2xyqNjtRVU8dtQV5XXKNqphQPVxPtcigxE8RjK4+GAI//YuJ21 u8yQn8I5AGfW59D6yLAQrxV0kRwY1xp36j6IO7sbney4EmQppYDp+IYOIJymmtAR x4F+wIZTb2vnc7EdN0692V1jREofdGmuIk06KSMAD2sbNlzRHIFZhRDdut4niFyI q58Pfdn+lVM787nSQ1ie//3rGpEwkZix2a+18xncY7mN8hX1HaEmnlP40TUs3UJn EeXQANppT2qKRQ9A0lpZ3tE5ewIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEFMU49B v38GKe94nyNXaS10lhTfMB8GA1UdIwQYMBaAFOAhHdR3xbTaF+eiAoYDrNjnFma1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQjFCRS81QTU3Nzg2Q0Mw QzgxMUU4QUU4MDUzMzRDNEY5QUUwMi80Q0VkMUhmRnROb1g1NklDaGdPczJPY1da clUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRDRWQxSGZGdE5vWDU2SUNoZ09zMk9jV1pyVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QjFCRS81QTU3Nzg2Q0MwQzgxMUU4QUU4MDUzMzRDNEY5QUUwMi80Q0VkMUhmRnRO b1g1NklDaGdPczJPY1daclUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCpvnwL9LxdR6c/Satd8KG0RbihRcNBlfwSwiFf9MRYKVLw+4rixP0b 98JnzuN0JHQiRaJyeU9jxOEx8rm9w5gIZRCSxitRb+lqbcIFlvcjjoGnz+SHkz1j /YKh70pIP+9Fm1d939Xmy8OkURVfqtGod5hYJOmAze4FI9Evc9S89z+/CrpeTJfm /zrJTF3/sUd65QVtNzrfytztJ4Y/2IJP1q/az7bg8NZ2PeK7uYEHKax6bT9FmfVM fovf9o3bGQtUg4HMA6twQLcWYwoSVKDGRL17iF7q0QJnXa1cVBHDsSj1AqDSUlFs Fk/SB+qLnnwSMcNSJ6Z5yKw6cv3G/iBp -----END CERTIFICATE-----Generated at Fri Nov 22 19:50:22 2024 by rpki-client on console-ams.rpki-client.org