$ rpki-client -vvf rpki.apnic.net/member_repository/A91F5FA2/032544405C3211EB97BF7C45C4F9AE02/ealNKOVCRzgJE4PV9Jdb_bzqrnk.mft File: ealNKOVCRzgJE4PV9Jdb_bzqrnk.mft (raw, json) Hash identifier: dpArbS8WLSpJWbDSVfQqLWVa+WCDyfWqnu7OJZTO8V0= Subject key identifier: 48:D7:CB:6A:32:E7:55:DC:49:5A:BA:10:22:B4:20:A2:0D:40:36:B0 Authority key identifier: 79:A9:4D:28:E5:42:47:38:09:13:83:D5:F4:97:5B:FD:BC:EA:AE:79 Certificate issuer: /CN=A91F5FA2/serialNumber=79A94D28E5424738091383D5F4975BFDBCEAAE79 Certificate serial: 066D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ealNKOVCRzgJE4PV9Jdb_bzqrnk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F5FA2/032544405C3211EB97BF7C45C4F9AE02/ealNKOVCRzgJE4PV9Jdb_bzqrnk.mft Manifest number: 0665 Signing time: Fri 22 Nov 2024 21:57:12 +0000 Manifest this update: Fri 22 Nov 2024 21:57:12 +0000 Manifest next update: Fri 29 Nov 2024 21:57:12 +0000 Files and hashes: 1: ealNKOVCRzgJE4PV9Jdb_bzqrnk.crl (hash: d5x14Es1jwCShNvms/Yl2l5ekqdRYHEBDhub+jOQ1RQ=) 2: FE4992F25C3411EBA2B9004DC4F9AE02.roa (hash: WLTZjRNFNOpt4obFHZLuXm6PcfO8k1Rl/GXdIhTWuLo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F5FA2/032544405C3211EB97BF7C45C4F9AE02/ealNKOVCRzgJE4PV9Jdb_bzqrnk.crl rsync://rpki.apnic.net/member_repository/A91F5FA2/032544405C3211EB97BF7C45C4F9AE02/ealNKOVCRzgJE4PV9Jdb_bzqrnk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ealNKOVCRzgJE4PV9Jdb_bzqrnk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1645 (0x66d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F5FA2/serialNumber=79A94D28E5424738091383D5F4975BFDBCEAAE79 Validity Not Before: Nov 22 21:57:12 2024 GMT Not After : Nov 29 21:57:12 2024 GMT Subject: CN=6740fe38-3bd8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:0e:e0:9d:5f:c6:f3:c4:41:c4:b5:c9:72:81: a7:c4:02:e2:f5:9a:a1:fb:82:22:81:79:32:7b:7e: a0:3f:56:3f:54:28:82:40:e4:1e:3e:8a:bf:ed:ab: 0b:83:f6:77:44:7f:a0:35:68:ee:56:bc:0c:dd:a5: 05:55:99:99:b2:da:38:03:f3:d7:c4:11:fa:65:2b: 94:fe:27:41:4b:7b:12:a0:c1:11:46:ab:15:9f:61: 3c:71:d2:b5:19:3e:f3:ad:be:19:4f:b4:ab:16:92: 6d:74:03:e5:0b:97:e9:3a:47:c3:1b:15:6e:05:32: 7a:89:69:9c:7f:06:17:ac:5f:8f:b6:59:7a:14:e2: 6c:98:ee:03:58:16:85:e1:fa:99:a7:7f:01:68:72: a1:55:bf:c3:37:0e:4d:02:e3:b7:67:7a:6b:2a:62: ba:ab:5e:b6:21:55:e1:b3:88:17:7b:66:65:2b:20: 05:2f:d2:84:4e:cf:6b:b1:df:74:c8:98:6c:e9:74: 3b:a4:e3:13:41:32:ed:64:2c:dc:20:de:a3:89:35: c8:0a:b9:a0:f2:3f:2c:12:d7:aa:a4:b8:ae:37:e2: 8f:93:22:af:a8:c2:7b:1f:de:37:ca:63:58:ab:dc: e8:b4:0a:dd:7f:2e:45:d8:48:88:75:1b:0f:46:d7: ab:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:D7:CB:6A:32:E7:55:DC:49:5A:BA:10:22:B4:20:A2:0D:40:36:B0 X509v3 Authority Key Identifier: keyid:79:A9:4D:28:E5:42:47:38:09:13:83:D5:F4:97:5B:FD:BC:EA:AE:79 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F5FA2/032544405C3211EB97BF7C45C4F9AE02/ealNKOVCRzgJE4PV9Jdb_bzqrnk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ealNKOVCRzgJE4PV9Jdb_bzqrnk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F5FA2/032544405C3211EB97BF7C45C4F9AE02/ealNKOVCRzgJE4PV9Jdb_bzqrnk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 43:5c:cf:c6:67:60:7c:08:c6:85:8f:73:f7:d5:d3:40:3b:80: d1:98:f2:8c:f8:c4:e4:14:50:09:6a:7c:b3:ca:c4:e7:2e:5c: 2a:da:36:e2:45:c2:1f:df:06:83:0d:2e:8b:ed:b9:a9:35:50: 66:c2:67:3b:16:f5:b8:c1:14:23:6d:97:3b:ed:91:7d:a5:24: 5a:40:ee:f0:cb:9c:cd:e2:3e:f6:d7:e2:5c:6b:e4:14:0c:d1: d1:e8:6b:88:05:62:9e:cf:21:0f:cb:2c:ef:56:70:2f:b9:aa: 6c:b4:34:b7:72:9b:12:3d:2e:3e:41:1b:57:0b:37:c2:72:7e: f5:90:14:9f:89:7a:19:a9:b3:bd:bb:d3:e0:1c:5a:34:d2:6a: 4d:dd:58:bc:23:63:50:8a:ec:82:c9:ba:c6:31:97:f3:59:20: 10:cd:2a:a1:96:9e:d8:7c:93:93:3b:a8:98:36:8d:c2:58:7d: 36:1b:61:12:b2:ff:fa:05:e7:a8:8d:2f:b1:e5:c2:b7:d1:5d: e9:83:fa:e0:05:b6:2e:ca:c8:7e:63:88:7e:95:c4:49:15:f2: 29:9d:5b:30:3c:9b:15:8b:63:54:bc:38:bb:19:db:d8:ac:1a: bc:14:9a:a2:c6:f7:9f:ea:fe:29:e6:82:00:b6:0c:d9:31:e0: a6:b8:6c:c4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBm0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjVGQTIxMTAvBgNVBAUTKDc5QTk0RDI4RTU0MjQ3MzgwOTEzODNENUY0OTc1QkZE QkNFQUFFNzkwHhcNMjQxMTIyMjE1NzEyWhcNMjQxMTI5MjE1NzEyWjAYMRYwFAYD VQQDEw02NzQwZmUzOC0zYmQ4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1w7gnV/G88RBxLXJcoGnxALi9Zqh+4IigXkye36gP1Y/VCiCQOQePoq/7asL g/Z3RH+gNWjuVrwM3aUFVZmZsto4A/PXxBH6ZSuU/idBS3sSoMERRqsVn2E8cdK1 GT7zrb4ZT7SrFpJtdAPlC5fpOkfDGxVuBTJ6iWmcfwYXrF+Ptll6FOJsmO4DWBaF 4fqZp38BaHKhVb/DNw5NAuO3Z3prKmK6q162IVXhs4gXe2ZlKyAFL9KETs9rsd90 yJhs6XQ7pOMTQTLtZCzcIN6jiTXICrmg8j8sEteqpLiuN+KPkyKvqMJ7H943ymNY q9zotArdfy5F2EiIdRsPRtersQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEjXy2oy 51XcSVq6ECK0IKINQDawMB8GA1UdIwQYMBaAFHmpTSjlQkc4CROD1fSXW/286q55 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNUZBMi8wMzI1NDQ0MDVD MzIxMUVCOTdCRjdDNDVDNEY5QUUwMi9lYWxOS09WQ1J6Z0pFNFBWOUpkYl9ienFy bmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2VhbE5LT1ZDUnpnSkU0UFY5SmRiX2J6cXJuay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NUZBMi8wMzI1NDQ0MDVDMzIxMUVCOTdCRjdDNDVDNEY5QUUwMi9lYWxOS09WQ1J6 Z0pFNFBWOUpkYl9ienFybmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBDXM/GZ2B8CMaFj3P31dNAO4DRmPKM+MTkFFAJanyzysTnLlwq2jbi RcIf3waDDS6L7bmpNVBmwmc7FvW4wRQjbZc77ZF9pSRaQO7wy5zN4j721+Jca+QU DNHR6GuIBWKezyEPyyzvVnAvuapstDS3cpsSPS4+QRtXCzfCcn71kBSfiXoZqbO9 u9PgHFo00mpN3Vi8I2NQiuyCybrGMZfzWSAQzSqhlp7YfJOTO6iYNo3CWH02G2ES sv/6BeeojS+x5cK30V3pg/rgBbYuysh+Y4h+lcRJFfIpnVswPJsVi2NUvDi7GdvY rBq8FJqixvef6v4p5oIAtgzZMeCmuGzE -----END CERTIFICATE-----Generated at Sat Nov 23 00:08:54 2024 by rpki-client on console-ams.rpki-client.org