$ rpki-client -vvf rpki.apnic.net/member_repository/A91F1605/7250CA446C3411EB9E37AA21C4F9AE02/8EaQuwPg05YrSAjk0GyyajSQ5RY.mft File: 8EaQuwPg05YrSAjk0GyyajSQ5RY.mft (raw, json) Hash identifier: RoC1bT+LwAtl2YS94reIOiUC1ZmwpVbqfFkOl8P11Q4= Subject key identifier: 8D:86:FA:30:18:00:2F:B7:4C:64:A3:71:D3:6A:A9:CE:38:7D:46:A7 Authority key identifier: F0:46:90:BB:03:E0:D3:96:2B:48:08:E4:D0:6C:B2:6A:34:90:E5:16 Certificate issuer: /CN=A91F1605/serialNumber=F04690BB03E0D3962B4808E4D06CB26A3490E516 Certificate serial: 063D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8EaQuwPg05YrSAjk0GyyajSQ5RY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F1605/7250CA446C3411EB9E37AA21C4F9AE02/8EaQuwPg05YrSAjk0GyyajSQ5RY.mft Manifest number: 0638 Signing time: Fri 22 Nov 2024 22:03:33 +0000 Manifest this update: Fri 22 Nov 2024 22:03:32 +0000 Manifest next update: Fri 29 Nov 2024 22:03:32 +0000 Files and hashes: 1: 8EaQuwPg05YrSAjk0GyyajSQ5RY.crl (hash: lLHwgy1Wb7JMo5UXXu6owBD9QYOrQYkfV+PxRDGY+UU=) 2: 64237DC06C3611EBB6BA1A24C4F9AE02.roa (hash: r+na1JdGgmwfIGGSKBAZgCKOWOoPknRelPQT0zlmH6o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F1605/7250CA446C3411EB9E37AA21C4F9AE02/8EaQuwPg05YrSAjk0GyyajSQ5RY.crl rsync://rpki.apnic.net/member_repository/A91F1605/7250CA446C3411EB9E37AA21C4F9AE02/8EaQuwPg05YrSAjk0GyyajSQ5RY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8EaQuwPg05YrSAjk0GyyajSQ5RY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1597 (0x63d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F1605/serialNumber=F04690BB03E0D3962B4808E4D06CB26A3490E516 Validity Not Before: Nov 22 22:03:32 2024 GMT Not After : Nov 29 22:03:32 2024 GMT Subject: CN=6740ffb5-7890 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:2c:08:16:7c:a7:dc:e6:18:c3:dc:e0:c5:92: 66:84:18:c9:1e:9d:bb:51:fb:ee:df:83:14:93:b1: be:dc:8e:00:fe:2a:b1:03:26:10:45:5c:4a:8d:01: 14:29:9e:23:3f:be:d2:01:ec:46:24:08:d1:69:90: a8:e0:a6:80:05:37:4d:07:f2:8e:6b:ef:a6:80:13: 25:3a:03:e4:41:20:26:d5:65:71:50:74:ee:bd:12: 68:85:2e:d1:38:dc:f0:db:ee:b6:1e:1f:e4:45:ba: e2:be:61:5f:09:e1:38:55:af:a2:27:21:c6:99:df: 22:10:27:dc:97:72:a5:98:4f:36:5e:9c:e0:c1:cc: 7f:77:ff:73:09:d3:7f:20:46:c8:b9:b7:7a:17:c5: 38:43:ed:f8:d5:03:60:80:92:17:33:56:f5:2e:91: b1:03:6c:16:b7:c4:2b:d1:20:48:1f:b9:a5:45:76: ab:59:7d:d2:c1:7a:8d:ea:0d:a2:03:f6:28:e3:ee: 7c:7e:e1:d0:8a:84:7a:54:6c:d4:f1:c8:f2:b3:a1: 2c:d0:45:c3:31:f4:84:8e:34:c2:e8:63:67:7c:ad: 36:94:5d:3a:94:fb:de:3d:79:df:04:c1:ea:9c:e9: f7:17:b9:57:a3:fd:72:5b:a6:26:fa:f4:c0:94:54: 24:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:86:FA:30:18:00:2F:B7:4C:64:A3:71:D3:6A:A9:CE:38:7D:46:A7 X509v3 Authority Key Identifier: keyid:F0:46:90:BB:03:E0:D3:96:2B:48:08:E4:D0:6C:B2:6A:34:90:E5:16 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F1605/7250CA446C3411EB9E37AA21C4F9AE02/8EaQuwPg05YrSAjk0GyyajSQ5RY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8EaQuwPg05YrSAjk0GyyajSQ5RY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F1605/7250CA446C3411EB9E37AA21C4F9AE02/8EaQuwPg05YrSAjk0GyyajSQ5RY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 30:cf:53:4a:3b:08:5b:be:54:29:d5:d6:e8:63:98:cf:e0:e0: 51:f0:53:2c:6f:88:b1:e7:ea:0b:bd:8a:41:a0:5b:a8:cc:cd: 67:1f:95:f8:78:6d:b0:0f:16:49:c4:a1:86:e7:39:b1:31:51: 1b:84:52:7a:b8:ed:a6:1c:53:95:34:f8:41:13:97:d3:72:de: 96:f0:6e:3f:e2:b3:7a:54:f1:29:9b:39:5e:e7:a3:3d:f8:bd: fe:01:0f:3d:b5:b7:7e:2f:44:bc:92:c0:2d:d6:bc:54:5d:c0: 66:30:c8:bb:21:f1:1a:2f:7f:8c:d9:5c:39:34:d1:81:8a:56: 17:4b:c4:56:14:66:40:60:59:c4:24:a5:35:be:9c:15:ea:d0: 62:4a:28:f0:9f:6f:11:68:fa:0e:cf:ce:ec:15:75:34:a7:f6: 90:e5:92:90:79:82:e8:12:ad:13:79:d3:57:e3:1c:1b:ab:7c: 40:11:cd:5e:e8:c7:d8:34:1d:c5:ea:fc:45:89:e1:bf:11:10: 14:87:4d:d3:5c:1d:e7:c0:c8:6b:f6:a4:02:7e:c5:f6:e9:fe: fa:ac:91:e4:f4:22:5d:55:ea:5d:9c:52:f0:49:af:72:1a:ad: 53:f2:23:20:16:bd:e2:23:d9:ae:5a:be:3d:3c:7d:c5:f1:84: 0c:a0:e6:db -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBj0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjE2MDUxMTAvBgNVBAUTKEYwNDY5MEJCMDNFMEQzOTYyQjQ4MDhFNEQwNkNCMjZB MzQ5MEU1MTYwHhcNMjQxMTIyMjIwMzMyWhcNMjQxMTI5MjIwMzMyWjAYMRYwFAYD VQQDEw02NzQwZmZiNS03ODkwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwSwIFnyn3OYYw9zgxZJmhBjJHp27Ufvu34MUk7G+3I4A/iqxAyYQRVxKjQEU KZ4jP77SAexGJAjRaZCo4KaABTdNB/KOa++mgBMlOgPkQSAm1WVxUHTuvRJohS7R ONzw2+62Hh/kRbrivmFfCeE4Va+iJyHGmd8iECfcl3KlmE82Xpzgwcx/d/9zCdN/ IEbIubd6F8U4Q+341QNggJIXM1b1LpGxA2wWt8Qr0SBIH7mlRXarWX3SwXqN6g2i A/Yo4+58fuHQioR6VGzU8cjys6Es0EXDMfSEjjTC6GNnfK02lF06lPvePXnfBMHq nOn3F7lXo/1yW6Ym+vTAlFQkKwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFI2G+jAY AC+3TGSjcdNqqc44fUanMB8GA1UdIwQYMBaAFPBGkLsD4NOWK0gI5NBssmo0kOUW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMTYwNS83MjUwQ0E0NDZD MzQxMUVCOUUzN0FBMjFDNEY5QUUwMi84RWFRdXdQZzA1WXJTQWprMEd5eWFqU1E1 UlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzhFYVF1d1BnMDVZclNBamswR3l5YWpTUTVSWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MTYwNS83MjUwQ0E0NDZDMzQxMUVCOUUzN0FBMjFDNEY5QUUwMi84RWFRdXdQZzA1 WXJTQWprMEd5eWFqU1E1UlkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAwz1NKOwhbvlQp1dboY5jP4OBR8FMsb4ix5+oLvYpBoFuozM1nH5X4 eG2wDxZJxKGG5zmxMVEbhFJ6uO2mHFOVNPhBE5fTct6W8G4/4rN6VPEpmzle56M9 +L3+AQ89tbd+L0S8ksAt1rxUXcBmMMi7IfEaL3+M2Vw5NNGBilYXS8RWFGZAYFnE JKU1vpwV6tBiSijwn28RaPoOz87sFXU0p/aQ5ZKQeYLoEq0TedNX4xwbq3xAEc1e 6MfYNB3F6vxFieG/ERAUh03TXB3nwMhr9qQCfsX26f76rJHk9CJdVepdnFLwSa9y Gq1T8iMgFr3iI9muWr49PH3F8YQMoObb -----END CERTIFICATE-----Generated at Fri Nov 22 23:39:37 2024 by rpki-client on console-fra.rpki-client.org