$ rpki-client -vvf rpki.apnic.net/member_repository/A91F7DBA/28EB71462BD411ECB0BADE58C4F9AE02/4ISfBUORggKxeEROX_IviZ-eMg4.mft File: 4ISfBUORggKxeEROX_IviZ-eMg4.mft (raw, json) Hash identifier: fJW332swBsSdbG0sGtMt95FPxBftUWp8ajuq3I8l9Jo= Subject key identifier: FF:58:21:5A:91:E7:B9:B0:D9:A6:11:99:5B:89:37:0D:00:E4:17:B0 Authority key identifier: E0:84:9F:05:43:91:82:02:B1:78:44:4E:5F:F2:2F:89:9F:9E:32:0E Certificate issuer: /CN=A91F7DBA/serialNumber=E0849F0543918202B178444E5FF22F899F9E320E Certificate serial: 045E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4ISfBUORggKxeEROX_IviZ-eMg4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F7DBA/28EB71462BD411ECB0BADE58C4F9AE02/4ISfBUORggKxeEROX_IviZ-eMg4.mft Manifest number: 0459 Signing time: Fri 22 Nov 2024 23:43:23 +0000 Manifest this update: Fri 22 Nov 2024 23:43:22 +0000 Manifest next update: Fri 29 Nov 2024 23:43:22 +0000 Files and hashes: 1: 4ISfBUORggKxeEROX_IviZ-eMg4.crl (hash: WcViVILNKsGWoonlYuiHH8E6MfR6D13yugVHvG54sIM=) 2: 145F8B6434D211EEA9BD8F64C4F9AE02.roa (hash: MOCtEXuSWTSIWA+J+aTGfRvUWTN01u8L13mcqeEHJ4Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F7DBA/28EB71462BD411ECB0BADE58C4F9AE02/4ISfBUORggKxeEROX_IviZ-eMg4.crl rsync://rpki.apnic.net/member_repository/A91F7DBA/28EB71462BD411ECB0BADE58C4F9AE02/4ISfBUORggKxeEROX_IviZ-eMg4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4ISfBUORggKxeEROX_IviZ-eMg4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1118 (0x45e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F7DBA/serialNumber=E0849F0543918202B178444E5FF22F899F9E320E Validity Not Before: Nov 22 23:43:22 2024 GMT Not After : Nov 29 23:43:22 2024 GMT Subject: CN=6741171a-0283 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:b4:ae:0c:94:04:1c:5e:ca:fe:f0:fc:2d:04: e2:72:57:3a:e1:23:83:36:d9:aa:29:3d:36:28:e8: a3:91:70:9f:1f:81:77:3b:ab:52:d9:bf:e9:ac:14: e4:55:b7:b6:44:1b:c8:a0:2c:cb:02:30:77:67:bb: 36:99:2d:c7:2d:28:75:1c:9a:9a:e1:60:f5:43:e3: 44:52:13:9a:91:dc:42:bd:39:ec:08:73:96:06:19: e1:e5:e6:f1:84:7c:50:e5:45:ea:8b:2f:73:80:bc: 79:3b:b7:0d:d6:40:80:db:6d:fe:01:02:19:75:bf: 24:8b:39:b1:d1:ec:ba:c6:0e:5e:40:4e:7a:8a:42: 81:f1:b9:ae:25:49:b9:1c:c4:79:f7:2e:ce:b1:88: d5:77:c8:06:91:5b:ee:75:97:09:52:23:67:e4:7a: 57:0d:72:8f:5a:dd:20:55:60:d2:2e:da:41:e3:97: 07:1e:fc:03:04:95:a4:01:c5:5b:6d:00:dd:3c:92: a4:23:de:f4:03:69:be:63:61:29:45:46:2f:9d:65: 23:3b:7a:e4:33:6b:d2:6b:ab:0e:7b:73:4b:b1:1a: ff:5a:6e:3c:44:17:5d:bc:6d:10:ed:b3:03:8f:bf: 82:cf:ae:ce:45:79:d8:11:c0:76:10:45:2e:f0:da: 07:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:58:21:5A:91:E7:B9:B0:D9:A6:11:99:5B:89:37:0D:00:E4:17:B0 X509v3 Authority Key Identifier: keyid:E0:84:9F:05:43:91:82:02:B1:78:44:4E:5F:F2:2F:89:9F:9E:32:0E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F7DBA/28EB71462BD411ECB0BADE58C4F9AE02/4ISfBUORggKxeEROX_IviZ-eMg4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4ISfBUORggKxeEROX_IviZ-eMg4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F7DBA/28EB71462BD411ECB0BADE58C4F9AE02/4ISfBUORggKxeEROX_IviZ-eMg4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d2:be:03:8f:6d:1e:72:b2:5f:2c:fe:08:c2:b2:77:02:31:d6: 66:39:5d:28:8d:44:86:e0:6e:d2:80:e8:52:d4:6f:ca:b7:4d: e5:1e:ff:98:c0:e5:87:a8:6a:04:f4:9d:2d:ca:72:72:b8:a8: a9:83:b5:9f:f6:ad:56:24:ed:2e:7f:f7:0d:a0:52:04:68:cb: 19:8e:12:3b:37:52:a9:6f:64:e8:d3:a4:b8:2c:47:a5:bc:1c: 48:f4:d0:d3:1f:c9:16:0c:4b:1a:30:fd:06:e4:73:b4:51:8c: f6:5c:55:5f:b6:60:ba:eb:2b:a4:03:db:60:4d:5f:ca:35:49: e6:a7:7f:32:d6:80:f6:1f:ca:d0:9a:67:c0:f3:3b:42:d6:6e: 5a:59:20:d1:cc:7c:e4:58:d5:ca:e7:d2:13:e7:d8:36:bb:d9: 47:47:ac:20:1c:3a:c4:9c:ed:cd:a2:af:50:1e:6e:22:9a:6a: 15:60:9d:bd:f4:2e:56:4f:3e:fb:fb:d8:4c:8c:1e:a9:79:a9: fa:cf:ff:53:2d:45:e0:0a:63:09:4a:11:00:87:60:3d:51:67: 90:ef:1d:2a:d0:3e:4e:f2:30:00:7b:c1:92:6b:e4:2d:69:00: 0e:bd:ed:a2:f1:05:e1:65:07:61:0d:b0:79:74:3e:c9:68:fd: 05:35:71:f2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBF4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjdEQkExMTAvBgNVBAUTKEUwODQ5RjA1NDM5MTgyMDJCMTc4NDQ0RTVGRjIyRjg5 OUY5RTMyMEUwHhcNMjQxMTIyMjM0MzIyWhcNMjQxMTI5MjM0MzIyWjAYMRYwFAYD VQQDEw02NzQxMTcxYS0wMjgzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvrSuDJQEHF7K/vD8LQTiclc64SODNtmqKT02KOijkXCfH4F3O6tS2b/prBTk Vbe2RBvIoCzLAjB3Z7s2mS3HLSh1HJqa4WD1Q+NEUhOakdxCvTnsCHOWBhnh5ebx hHxQ5UXqiy9zgLx5O7cN1kCA223+AQIZdb8kizmx0ey6xg5eQE56ikKB8bmuJUm5 HMR59y7OsYjVd8gGkVvudZcJUiNn5HpXDXKPWt0gVWDSLtpB45cHHvwDBJWkAcVb bQDdPJKkI970A2m+Y2EpRUYvnWUjO3rkM2vSa6sOe3NLsRr/Wm48RBddvG0Q7bMD j7+Cz67ORXnYEcB2EEUu8NoHcwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFP9YIVqR 57mw2aYRmVuJNw0A5BewMB8GA1UdIwQYMBaAFOCEnwVDkYICsXhETl/yL4mfnjIO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGN0RCQS8yOEVCNzE0NjJC RDQxMUVDQjBCQURFNThDNEY5QUUwMi80SVNmQlVPUmdnS3hlRVJPWF9JdmlaLWVN ZzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRJU2ZCVU9SZ2dLeGVFUk9YX0l2aVotZU1nNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG N0RCQS8yOEVCNzE0NjJCRDQxMUVDQjBCQURFNThDNEY5QUUwMi80SVNmQlVPUmdn S3hlRVJPWF9JdmlaLWVNZzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDSvgOPbR5ysl8s/gjCsncCMdZmOV0ojUSG4G7SgOhS1G/Kt03lHv+Y wOWHqGoE9J0tynJyuKipg7Wf9q1WJO0uf/cNoFIEaMsZjhI7N1Kpb2To06S4LEel vBxI9NDTH8kWDEsaMP0G5HO0UYz2XFVftmC66yukA9tgTV/KNUnmp38y1oD2H8rQ mmfA8ztC1m5aWSDRzHzkWNXK59IT59g2u9lHR6wgHDrEnO3Noq9QHm4immoVYJ29 9C5WTz77+9hMjB6pean6z/9TLUXgCmMJShEAh2A9UWeQ7x0q0D5O8jAAe8GSa+Qt aQAOve2i8QXhZQdhDbB5dD7JaP0FNXHy -----END CERTIFICATE-----Generated at Sat Nov 23 00:49:39 2024 by rpki-client on console-fra.rpki-client.org