$ rpki-client -vvf rpki.apnic.net/member_repository/A91F5143/0DE9F776A86B11E9A701C856C4F9AE02/2S2tTXbh9aAmwn8tuRxE-62OSHw.mft File: 2S2tTXbh9aAmwn8tuRxE-62OSHw.mft (raw, json) Hash identifier: 0FPC6GN71vB50Gm7yaz9QDtHKLBI3eC04QFD4OYjxU4= Subject key identifier: B2:94:FD:FD:D7:05:17:4C:9E:A5:5D:7C:58:78:E2:52:8C:45:8F:58 Authority key identifier: D9:2D:AD:4D:76:E1:F5:A0:26:C2:7F:2D:B9:1C:44:FB:AD:8E:48:7C Certificate issuer: /CN=A91F5143/serialNumber=D92DAD4D76E1F5A026C27F2DB91C44FBAD8E487C Certificate serial: 0DC4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2S2tTXbh9aAmwn8tuRxE-62OSHw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F5143/0DE9F776A86B11E9A701C856C4F9AE02/2S2tTXbh9aAmwn8tuRxE-62OSHw.mft Manifest number: 0DBC Signing time: Fri 22 Nov 2024 17:50:22 +0000 Manifest this update: Fri 22 Nov 2024 17:50:22 +0000 Manifest next update: Fri 29 Nov 2024 17:50:22 +0000 Files and hashes: 1: 2S2tTXbh9aAmwn8tuRxE-62OSHw.crl (hash: UR1KA/O+fzRYsQQbwSjQjQcY21gXr9rExRC4FnWyiKo=) 2: FBBFC6D8A86B11E9A1385758C4F9AE02.roa (hash: 3xSZw8Zvxp55d8XEuNe65AngqRjiPtOfsG/OL3mouOw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F5143/0DE9F776A86B11E9A701C856C4F9AE02/2S2tTXbh9aAmwn8tuRxE-62OSHw.crl rsync://rpki.apnic.net/member_repository/A91F5143/0DE9F776A86B11E9A701C856C4F9AE02/2S2tTXbh9aAmwn8tuRxE-62OSHw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2S2tTXbh9aAmwn8tuRxE-62OSHw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 17:50:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3524 (0xdc4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F5143/serialNumber=D92DAD4D76E1F5A026C27F2DB91C44FBAD8E487C Validity Not Before: Nov 22 17:50:22 2024 GMT Not After : Nov 29 17:50:22 2024 GMT Subject: CN=6740c45e-a2cf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:92:80:6a:8c:72:82:d6:80:a2:84:65:83:a7:7d: ea:f8:c8:67:fa:10:a6:46:01:1b:50:77:d0:d8:d3: d1:0b:0a:48:90:b9:74:3f:e7:e9:3c:be:6a:e3:54: a1:d9:de:b8:02:1f:84:6a:5c:da:ec:e0:bf:b3:bb: 2d:a3:50:a2:ba:68:40:9b:62:87:53:5a:8d:a8:c1: 53:cf:ae:c2:b0:6c:73:4c:00:52:38:ab:55:ab:56: 83:10:89:05:be:6c:ce:fa:01:df:2c:ec:b4:21:0c: fa:7a:31:44:e3:a9:f1:9c:ea:69:fb:38:ac:d7:83: 94:40:71:69:fb:04:6c:35:3b:ed:cf:60:6a:e7:89: 37:84:8c:de:64:fd:e7:53:fe:a0:db:5e:34:f4:f4: cf:9f:a4:03:3a:ca:af:3e:e5:fd:f9:a7:1a:67:10: 9d:0d:c4:78:43:61:a8:4f:07:14:e7:95:14:b8:01: 91:2d:4a:26:c1:cb:97:d9:ed:c1:93:9a:eb:39:db: 42:16:03:68:d6:0e:da:fe:6e:f3:7c:31:77:01:11: 59:d9:35:dd:e3:89:d9:ab:6a:23:ba:f1:ef:6f:4a: 2f:60:a4:05:8e:c9:d8:9d:dc:fa:2a:33:2a:88:3f: 7e:50:2a:bc:16:a4:1b:79:57:9f:ca:bd:13:fd:1b: 1a:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:94:FD:FD:D7:05:17:4C:9E:A5:5D:7C:58:78:E2:52:8C:45:8F:58 X509v3 Authority Key Identifier: keyid:D9:2D:AD:4D:76:E1:F5:A0:26:C2:7F:2D:B9:1C:44:FB:AD:8E:48:7C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F5143/0DE9F776A86B11E9A701C856C4F9AE02/2S2tTXbh9aAmwn8tuRxE-62OSHw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2S2tTXbh9aAmwn8tuRxE-62OSHw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F5143/0DE9F776A86B11E9A701C856C4F9AE02/2S2tTXbh9aAmwn8tuRxE-62OSHw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d9:10:33:af:17:90:eb:b0:7e:46:85:63:02:ab:d0:bd:bc:0f: ee:85:9f:09:84:02:c7:e3:87:c7:d0:72:b0:46:15:c4:f2:8a: 68:7b:a9:c3:4b:7d:47:47:cd:dc:7b:08:f3:f7:96:f8:65:83: e2:a5:6d:1f:1e:98:a5:f9:de:b8:b1:65:38:5e:b9:22:84:ca: c7:9a:8a:9b:d5:60:c7:9e:e8:2e:09:e2:e1:f0:d8:b3:06:ee: de:09:a4:85:f2:c0:52:e2:4d:a9:cc:43:1c:2d:64:31:fe:ee: 6f:f8:7e:50:78:e2:d9:e4:9a:c1:66:16:4e:d9:5f:3f:ae:90: 95:cf:2e:f9:ca:d9:32:00:ab:8c:51:dd:d4:21:eb:71:f7:ec: b6:2e:f6:bb:11:e6:90:b7:4d:0a:e9:31:8f:8d:26:71:10:24: ec:89:ab:ab:e7:9f:d2:da:82:0f:88:1e:c3:88:35:05:11:2b: 8a:9a:18:42:29:21:3c:68:e4:2d:83:80:3c:4b:36:f2:e9:a0: 8b:42:65:fd:f8:16:81:d3:c4:9d:2e:2e:1e:53:db:83:ad:58: 37:64:0f:7e:0f:31:66:51:32:32:2a:b0:fb:b1:57:39:33:aa: 17:01:da:a0:54:2f:f9:73:35:21:a3:0d:92:9f:b8:48:53:0c: 4a:24:a9:c7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDcQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjUxNDMxMTAvBgNVBAUTKEQ5MkRBRDRENzZFMUY1QTAyNkMyN0YyREI5MUM0NEZC QUQ4RTQ4N0MwHhcNMjQxMTIyMTc1MDIyWhcNMjQxMTI5MTc1MDIyWjAYMRYwFAYD VQQDEw02NzQwYzQ1ZS1hMmNmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAkoBqjHKC1oCihGWDp33q+Mhn+hCmRgEbUHfQ2NPRCwpIkLl0P+fpPL5q41Sh 2d64Ah+Ealza7OC/s7sto1CiumhAm2KHU1qNqMFTz67CsGxzTABSOKtVq1aDEIkF vmzO+gHfLOy0IQz6ejFE46nxnOpp+zis14OUQHFp+wRsNTvtz2Bq54k3hIzeZP3n U/6g21409PTPn6QDOsqvPuX9+acaZxCdDcR4Q2GoTwcU55UUuAGRLUomwcuX2e3B k5rrOdtCFgNo1g7a/m7zfDF3ARFZ2TXd44nZq2ojuvHvb0ovYKQFjsnYndz6KjMq iD9+UCq8FqQbeVefyr0T/RsaRQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLKU/f3X BRdMnqVdfFh44lKMRY9YMB8GA1UdIwQYMBaAFNktrU124fWgJsJ/LbkcRPutjkh8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNTE0My8wREU5Rjc3NkE4 NkIxMUU5QTcwMUM4NTZDNEY5QUUwMi8yUzJ0VFhiaDlhQW13bjh0dVJ4RS02Mk9T SHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJTMnRUWGJoOWFBbXduOHR1UnhFLTYyT1NIdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NTE0My8wREU5Rjc3NkE4NkIxMUU5QTcwMUM4NTZDNEY5QUUwMi8yUzJ0VFhiaDlh QW13bjh0dVJ4RS02Mk9TSHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDZEDOvF5DrsH5GhWMCq9C9vA/uhZ8JhALH44fH0HKwRhXE8opoe6nD S31HR83cewjz95b4ZYPipW0fHpil+d64sWU4XrkihMrHmoqb1WDHnuguCeLh8Niz Bu7eCaSF8sBS4k2pzEMcLWQx/u5v+H5QeOLZ5JrBZhZO2V8/rpCVzy75ytkyAKuM Ud3UIetx9+y2Lva7EeaQt00K6TGPjSZxECTsiaur55/S2oIPiB7DiDUFESuKmhhC KSE8aOQtg4A8Szby6aCLQmX9+BaB08SdLi4eU9uDrVg3ZA9+DzFmUTIyKrD7sVc5 M6oXAdqgVC/5czUhow2Sn7hIUwxKJKnH -----END CERTIFICATE-----Generated at Fri Nov 22 19:45:05 2024 by rpki-client on console-fra.rpki-client.org