$ rpki-client -vvf rpki.apnic.net/member_repository/A91EF8B6/40E7FABA3AA611EAAC8F1875C4F9AE02/rYT0vL6zyTZfKCcVO6ac7SqZEuI.mft File: rYT0vL6zyTZfKCcVO6ac7SqZEuI.mft (raw, json) Hash identifier: xZJNE9foyTl48qp7YZmV9ZZs+8yHIqjXrchN8DWrD2U= Subject key identifier: B9:6D:77:63:6D:CB:AA:20:35:40:29:70:32:D1:2B:64:21:C9:42:1B Authority key identifier: AD:84:F4:BC:BE:B3:C9:36:5F:28:27:15:3B:A6:9C:ED:2A:99:12:E2 Certificate issuer: /CN=A91EF8B6/serialNumber=AD84F4BCBEB3C9365F2827153BA69CED2A9912E2 Certificate serial: 0AE2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rYT0vL6zyTZfKCcVO6ac7SqZEuI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EF8B6/40E7FABA3AA611EAAC8F1875C4F9AE02/rYT0vL6zyTZfKCcVO6ac7SqZEuI.mft Manifest number: 0AD7 Signing time: Fri 22 Nov 2024 19:08:51 +0000 Manifest this update: Fri 22 Nov 2024 19:08:51 +0000 Manifest next update: Fri 29 Nov 2024 19:08:51 +0000 Files and hashes: 1: rYT0vL6zyTZfKCcVO6ac7SqZEuI.crl (hash: JNYD4z6KkZXDrtTErsZlJ0ug+rj0zsMhpFvlS1YNp0w=) 2: FB6D5292263C11EEB9F5DB43C4F9AE02.roa (hash: F4+ANWrgSV1BYAbYrEyoAC+HEYBZsl5dMdzlHwWIwy8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EF8B6/40E7FABA3AA611EAAC8F1875C4F9AE02/rYT0vL6zyTZfKCcVO6ac7SqZEuI.crl rsync://rpki.apnic.net/member_repository/A91EF8B6/40E7FABA3AA611EAAC8F1875C4F9AE02/rYT0vL6zyTZfKCcVO6ac7SqZEuI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rYT0vL6zyTZfKCcVO6ac7SqZEuI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 19:08:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2786 (0xae2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EF8B6/serialNumber=AD84F4BCBEB3C9365F2827153BA69CED2A9912E2 Validity Not Before: Nov 22 19:08:51 2024 GMT Not After : Nov 29 19:08:51 2024 GMT Subject: CN=6740d6c3-05c5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:24:2e:06:c2:dc:30:82:7a:39:62:11:1f:fc: d7:a3:53:6a:93:21:92:a9:64:5b:2a:0d:e0:1e:fd: 66:a2:38:01:2f:6a:45:ef:1e:67:70:91:8c:d2:d8: 10:96:ca:90:40:6d:89:58:e3:64:25:aa:09:f7:71: 6b:33:4a:de:9a:42:3e:df:92:2b:fe:e1:a3:0c:86: 75:65:1f:c4:80:75:fd:79:97:5e:fb:15:e3:cb:f4: 00:ad:c6:a0:9c:ea:02:21:79:7e:46:43:08:9e:3a: 77:2a:8e:0b:ba:7c:e2:70:f7:99:96:9d:41:b6:43: a8:b0:c4:07:b9:d7:bc:51:68:75:e8:b9:c2:d9:c4: 12:b5:ce:4b:c7:f1:0d:55:35:53:b2:6c:9a:ce:f2: 95:44:1d:27:8c:18:b4:1b:13:fc:7a:fa:53:b5:9b: ce:d0:ed:6e:4f:94:40:48:92:d0:8d:a1:a5:58:75: 26:00:39:11:5a:06:08:3f:a3:b7:09:0e:8a:01:c6: b1:5d:6a:c8:5b:da:a0:6e:5c:0a:86:91:3e:26:4b: 0c:c2:5b:58:6d:13:73:e5:c9:c3:b0:75:b0:78:79: 2f:d4:c7:07:f1:2a:7c:05:d5:c3:3c:b6:c3:83:cd: 5d:4b:d5:b0:68:45:d2:95:15:a4:e7:da:8a:72:54: eb:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:6D:77:63:6D:CB:AA:20:35:40:29:70:32:D1:2B:64:21:C9:42:1B X509v3 Authority Key Identifier: keyid:AD:84:F4:BC:BE:B3:C9:36:5F:28:27:15:3B:A6:9C:ED:2A:99:12:E2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EF8B6/40E7FABA3AA611EAAC8F1875C4F9AE02/rYT0vL6zyTZfKCcVO6ac7SqZEuI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rYT0vL6zyTZfKCcVO6ac7SqZEuI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EF8B6/40E7FABA3AA611EAAC8F1875C4F9AE02/rYT0vL6zyTZfKCcVO6ac7SqZEuI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 27:10:a0:a2:94:1f:f8:7f:53:da:62:fe:bc:4a:fe:1f:4c:24: 18:01:65:25:f5:fd:f1:bf:12:16:b7:6c:c6:45:17:05:31:80: f3:0a:3d:79:0e:74:37:c1:5d:f2:f7:3b:51:14:95:1c:cf:05: c8:37:19:9d:ec:16:e3:f8:98:3d:ed:b7:da:03:fb:2c:27:87: ee:43:19:02:11:6b:cc:21:fc:8d:07:06:4d:77:fb:26:4f:e8: bf:c8:7a:e3:aa:94:0d:d4:fe:08:4a:e2:f2:b9:86:63:f6:a7: 2f:ee:25:da:42:03:bb:4d:85:5e:26:cf:69:c9:31:1f:4c:0f: 88:ce:50:a3:34:a1:a0:6e:84:a8:6f:ce:26:2a:76:26:97:e4: 22:99:50:7d:7d:84:97:7f:e1:74:c6:f0:96:c1:24:cd:0d:05: fd:eb:1d:7d:e8:20:a7:33:32:df:f2:7e:98:fc:75:35:b3:37: bb:5a:aa:3e:86:8c:17:6c:8e:d4:fd:c7:48:a5:51:0b:55:6f: 3e:6c:97:01:4e:da:28:f5:a8:9e:f2:cc:9b:2e:79:85:63:99: 25:dd:fe:9a:b6:fb:d7:11:79:6e:ea:17:84:35:b6:b9:28:77: b9:e6:fa:7b:89:e3:e8:2e:74:34:3c:e7:00:2e:12:c0:f3:21: 6f:dd:2e:1f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCuIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUY4QjYxMTAvBgNVBAUTKEFEODRGNEJDQkVCM0M5MzY1RjI4MjcxNTNCQTY5Q0VE MkE5OTEyRTIwHhcNMjQxMTIyMTkwODUxWhcNMjQxMTI5MTkwODUxWjAYMRYwFAYD VQQDEw02NzQwZDZjMy0wNWM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzCQuBsLcMIJ6OWIRH/zXo1NqkyGSqWRbKg3gHv1mojgBL2pF7x5ncJGM0tgQ lsqQQG2JWONkJaoJ93FrM0remkI+35Ir/uGjDIZ1ZR/EgHX9eZde+xXjy/QArcag nOoCIXl+RkMInjp3Ko4LunzicPeZlp1BtkOosMQHude8UWh16LnC2cQStc5Lx/EN VTVTsmyazvKVRB0njBi0GxP8evpTtZvO0O1uT5RASJLQjaGlWHUmADkRWgYIP6O3 CQ6KAcaxXWrIW9qgblwKhpE+JksMwltYbRNz5cnDsHWweHkv1McH8Sp8BdXDPLbD g81dS9WwaEXSlRWk59qKclTrBwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLltd2Nt y6ogNUApcDLRK2QhyUIbMB8GA1UdIwQYMBaAFK2E9Ly+s8k2XygnFTumnO0qmRLi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRjhCNi80MEU3RkFCQTNB QTYxMUVBQUM4RjE4NzVDNEY5QUUwMi9yWVQwdkw2enlUWmZLQ2NWTzZhYzdTcVpF dUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JZVDB2TDZ6eVRaZktDY1ZPNmFjN1NxWkV1SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF RjhCNi80MEU3RkFCQTNBQTYxMUVBQUM4RjE4NzVDNEY5QUUwMi9yWVQwdkw2enlU WmZLQ2NWTzZhYzdTcVpFdUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAnEKCilB/4f1PaYv68Sv4fTCQYAWUl9f3xvxIWt2zGRRcFMYDzCj15 DnQ3wV3y9ztRFJUczwXINxmd7Bbj+Jg97bfaA/ssJ4fuQxkCEWvMIfyNBwZNd/sm T+i/yHrjqpQN1P4ISuLyuYZj9qcv7iXaQgO7TYVeJs9pyTEfTA+IzlCjNKGgboSo b84mKnYml+QimVB9fYSXf+F0xvCWwSTNDQX96x196CCnMzLf8n6Y/HU1sze7Wqo+ howXbI7U/cdIpVELVW8+bJcBTtoo9aie8sybLnmFY5kl3f6atvvXEXlu6heENba5 KHe55vp7iePoLnQ0POcALhLA8yFv3S4f -----END CERTIFICATE-----Generated at Fri Nov 22 21:05:34 2024 by rpki-client on console-fra.rpki-client.org