$ rpki-client -vvf rpki.apnic.net/member_repository/A91F4FB0/058CEC1419BD11EFBD33E082C4F9AE02/h25oE78sGBHNEd6ZKBrNRL7A3nM.mft File: h25oE78sGBHNEd6ZKBrNRL7A3nM.mft (raw, json) Hash identifier: 9GsdX9DZAIDg/2txKbyXYOeSrcaESh6tVdso8vQXq4U= Subject key identifier: 1E:82:85:A7:24:AE:2C:4B:14:59:84:D8:2F:59:9A:62:17:3A:10:CF Authority key identifier: 87:6E:68:13:BF:2C:18:11:CD:11:DE:99:28:1A:CD:44:BE:C0:DE:73 Certificate issuer: /CN=A91F4FB0/serialNumber=876E6813BF2C1811CD11DE99281ACD44BEC0DE73 Certificate serial: A4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h25oE78sGBHNEd6ZKBrNRL7A3nM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F4FB0/058CEC1419BD11EFBD33E082C4F9AE02/h25oE78sGBHNEd6ZKBrNRL7A3nM.mft Manifest number: 85 Signing time: Sat 23 Nov 2024 05:01:28 +0000 Manifest this update: Sat 23 Nov 2024 05:01:27 +0000 Manifest next update: Sat 30 Nov 2024 05:01:27 +0000 Files and hashes: 1: h25oE78sGBHNEd6ZKBrNRL7A3nM.crl (hash: yCOnQ6QKmF4+Ls7ZnLqsgFPGvu2CDUcKWyyRmng9hIM=) 2: EEC42F86232311EFAF815012C4F9AE02.roa (hash: JoYR7yeFTTHTD5wPGUcTvDLc9pjbFUSYEO64JUokFZA=) 3: 0B5DBB081C0311EF8B8AB54DC4F9AE02.roa (hash: B21B4+qRYhX2tkCnPdFcKuu/ugCWvS4k86ubDHtxqyA=) 4: 2EFBFF901C0611EF883D807CC4F9AE02.roa (hash: sjEc8vuYVWssYtaZGwi/jcISsVjovvADNG9xvr+NDJM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F4FB0/058CEC1419BD11EFBD33E082C4F9AE02/h25oE78sGBHNEd6ZKBrNRL7A3nM.crl rsync://rpki.apnic.net/member_repository/A91F4FB0/058CEC1419BD11EFBD33E082C4F9AE02/h25oE78sGBHNEd6ZKBrNRL7A3nM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h25oE78sGBHNEd6ZKBrNRL7A3nM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 164 (0xa4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F4FB0/serialNumber=876E6813BF2C1811CD11DE99281ACD44BEC0DE73 Validity Not Before: Nov 23 05:01:27 2024 GMT Not After : Nov 30 05:01:27 2024 GMT Subject: CN=674161a8-ffd1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:7c:05:c4:0e:7e:d3:41:40:19:4f:77:7a:0c: 13:4d:cf:97:e6:b5:31:75:10:88:a3:62:21:6b:ab: 98:4e:62:1d:d3:fc:d2:5d:84:d8:5d:50:fe:ee:e5: 36:7f:d5:0c:f9:c0:1b:88:2f:d4:ec:5f:00:27:de: 4b:73:2a:7e:47:8f:08:02:b4:f5:08:5d:8d:cb:49: 15:ac:44:b7:93:b2:12:92:76:0c:bb:80:09:bb:70: 65:f2:1e:65:ba:9a:79:16:ec:5f:fc:81:b8:5f:32: cf:27:de:5b:5f:46:6a:ef:18:23:bd:f3:36:4b:11: c8:79:39:66:1a:50:13:a8:bc:ca:17:c9:63:bf:7c: 25:00:54:87:f0:2d:d1:c1:e7:ee:b9:2b:22:c8:01: 71:e6:33:5d:40:a8:eb:1b:3e:c4:91:63:19:68:45: e5:d9:0c:d4:d8:72:94:ff:7d:fb:92:c8:d8:03:e7: 6d:8c:db:1d:67:b9:08:07:b2:c4:1d:4e:b8:12:9e: de:27:07:f6:ae:d6:79:72:54:aa:39:53:a3:aa:c6: 5d:ce:97:1c:1f:78:d4:48:85:99:61:54:48:b7:71: a0:a2:1d:03:69:9e:a5:ff:d6:a7:78:90:59:90:79: 35:24:b3:40:5d:2f:e0:bf:09:8d:81:c4:42:3a:75: 04:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:82:85:A7:24:AE:2C:4B:14:59:84:D8:2F:59:9A:62:17:3A:10:CF X509v3 Authority Key Identifier: keyid:87:6E:68:13:BF:2C:18:11:CD:11:DE:99:28:1A:CD:44:BE:C0:DE:73 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F4FB0/058CEC1419BD11EFBD33E082C4F9AE02/h25oE78sGBHNEd6ZKBrNRL7A3nM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h25oE78sGBHNEd6ZKBrNRL7A3nM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F4FB0/058CEC1419BD11EFBD33E082C4F9AE02/h25oE78sGBHNEd6ZKBrNRL7A3nM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 70:2b:96:e5:99:1c:29:1a:86:88:18:38:1b:c0:56:f1:3f:02: 63:f5:9c:e0:5a:6d:62:f5:67:4a:63:8d:ea:78:b7:72:55:af: 11:16:d4:4e:b5:17:a4:8c:4e:73:a1:6a:8e:ab:22:22:91:a6: fd:fe:44:b1:c2:f0:1b:54:34:77:5b:06:9f:05:0e:dc:57:fb: 19:87:52:fa:9d:a7:e1:46:d7:22:5d:42:ad:c4:35:b2:66:21: 12:10:56:af:6a:c4:10:71:0b:9c:3e:66:d6:10:d1:1d:c6:09: c8:2a:4b:4e:4d:78:79:de:c7:e3:b9:17:4a:0b:c1:68:64:f5: fb:64:fd:be:b8:60:aa:a3:52:8b:5d:f5:d3:af:1c:11:fe:c8: 92:36:41:3f:76:6e:06:2c:ef:1e:71:b8:95:f8:5b:02:3b:1b: 4f:ca:e3:1a:ce:37:8a:84:30:37:91:d3:fc:5d:66:c7:2a:46: 4c:b7:9f:e2:b9:eb:a7:56:2c:48:19:8d:74:29:73:fb:49:93: 15:eb:fa:ff:d8:cf:e5:0d:a5:d2:58:d1:d5:27:be:40:61:e0: 03:40:9e:4b:0f:2d:69:d9:44:c0:18:0e:fd:95:53:18:4a:17: cf:9b:a0:ca:3b:80:06:81:7a:1d:c5:01:2e:4b:93:c3:ee:40: e2:ec:64:d0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjRGQjAxMTAvBgNVBAUTKDg3NkU2ODEzQkYyQzE4MTFDRDExREU5OTI4MUFDRDQ0 QkVDMERFNzMwHhcNMjQxMTIzMDUwMTI3WhcNMjQxMTMwMDUwMTI3WjAYMRYwFAYD VQQDEw02NzQxNjFhOC1mZmQxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA73wFxA5+00FAGU93egwTTc+X5rUxdRCIo2Iha6uYTmId0/zSXYTYXVD+7uU2 f9UM+cAbiC/U7F8AJ95Lcyp+R48IArT1CF2Ny0kVrES3k7ISknYMu4AJu3Bl8h5l upp5Fuxf/IG4XzLPJ95bX0Zq7xgjvfM2SxHIeTlmGlATqLzKF8ljv3wlAFSH8C3R wefuuSsiyAFx5jNdQKjrGz7EkWMZaEXl2QzU2HKU/337ksjYA+dtjNsdZ7kIB7LE HU64Ep7eJwf2rtZ5clSqOVOjqsZdzpccH3jUSIWZYVRIt3Ggoh0DaZ6l/9aneJBZ kHk1JLNAXS/gvwmNgcRCOnUE/QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB6Chack rixLFFmE2C9ZmmIXOhDPMB8GA1UdIwQYMBaAFIduaBO/LBgRzRHemSgazUS+wN5z MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNEZCMC8wNThDRUMxNDE5 QkQxMUVGQkQzM0UwODJDNEY5QUUwMi9oMjVvRTc4c0dCSE5FZDZaS0JyTlJMN0Ez bk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2gyNW9FNzhzR0JITkVkNlpLQnJOUkw3QTNuTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NEZCMC8wNThDRUMxNDE5QkQxMUVGQkQzM0UwODJDNEY5QUUwMi9oMjVvRTc4c0dC SE5FZDZaS0JyTlJMN0Ezbk0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBwK5blmRwpGoaIGDgbwFbxPwJj9ZzgWm1i9WdKY43qeLdyVa8RFtRO tRekjE5zoWqOqyIikab9/kSxwvAbVDR3WwafBQ7cV/sZh1L6nafhRtciXUKtxDWy ZiESEFavasQQcQucPmbWENEdxgnIKktOTXh53sfjuRdKC8FoZPX7ZP2+uGCqo1KL XfXTrxwR/siSNkE/dm4GLO8ecbiV+FsCOxtPyuMazjeKhDA3kdP8XWbHKkZMt5/i ueunVixIGY10KXP7SZMV6/r/2M/lDaXSWNHVJ75AYeADQJ5LDy1p2UTAGA79lVMY ShfPm6DKO4AGgXodxQEuS5PD7kDi7GTQ -----END CERTIFICATE-----Generated at Sat Nov 23 06:21:31 2024 by rpki-client on console-fra.rpki-client.org