$ rpki-client -vvf rpki.apnic.net/member_repository/A91FAFBA/D4420E90C1F511EBAB77977BC4F9AE02/o93avj1GtEgCYdq75SmgZrYgXYs.mft File: o93avj1GtEgCYdq75SmgZrYgXYs.mft (raw, json) Hash identifier: KLCql8ZqGXwK/2lvcfuNcRfX4c8Chvv0r2JxpNeyzDg= Subject key identifier: EA:35:DB:F8:27:E2:0B:9F:8F:0E:77:4A:A3:6C:75:9C:98:CF:B4:22 Authority key identifier: A3:DD:DA:BE:3D:46:B4:48:02:61:DA:BB:E5:29:A0:66:B6:20:5D:8B Certificate issuer: /CN=A91FAFBA/serialNumber=A3DDDABE3D46B4480261DABBE529A066B6205D8B Certificate serial: 0565 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o93avj1GtEgCYdq75SmgZrYgXYs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FAFBA/D4420E90C1F511EBAB77977BC4F9AE02/o93avj1GtEgCYdq75SmgZrYgXYs.mft Manifest number: 0561 Signing time: Fri 22 Nov 2024 22:56:16 +0000 Manifest this update: Fri 22 Nov 2024 22:56:15 +0000 Manifest next update: Fri 29 Nov 2024 22:56:15 +0000 Files and hashes: 1: o93avj1GtEgCYdq75SmgZrYgXYs.crl (hash: gT3m6+iZpDrepzMfVshKpzVCKjUF07tpHDEPtm8mBx0=) 2: 416E569CC1F911EB91796381C4F9AE02.roa (hash: 5vQ2oiYzVHXdBsJ9DpcL2UsxvsKvGcybvYrqXzoGtt0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FAFBA/D4420E90C1F511EBAB77977BC4F9AE02/o93avj1GtEgCYdq75SmgZrYgXYs.crl rsync://rpki.apnic.net/member_repository/A91FAFBA/D4420E90C1F511EBAB77977BC4F9AE02/o93avj1GtEgCYdq75SmgZrYgXYs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o93avj1GtEgCYdq75SmgZrYgXYs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1381 (0x565) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FAFBA/serialNumber=A3DDDABE3D46B4480261DABBE529A066B6205D8B Validity Not Before: Nov 22 22:56:15 2024 GMT Not After : Nov 29 22:56:15 2024 GMT Subject: CN=67410c0f-c000 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:78:2a:f2:3d:94:85:05:55:27:4d:f7:01:81: aa:a4:40:29:ef:50:01:7b:de:5c:36:2a:26:e3:f7: e5:82:fb:1f:65:ad:db:0e:12:94:f1:69:1d:5d:4e: 19:9e:b7:33:f2:68:55:e9:93:d2:4b:b2:41:32:67: b6:69:50:d8:07:d7:99:80:cf:59:a8:e4:0d:dc:e1: bd:d6:d7:b0:54:82:95:5c:32:f7:2b:3b:2d:96:0c: 2e:71:c6:b5:1e:99:a6:1e:cf:5a:f6:92:2a:9f:64: 05:3f:b3:ed:f2:01:c7:69:04:53:04:da:0e:b1:fe: e9:cf:15:d4:2f:cc:cb:26:9c:2d:f4:f7:58:ff:a8: c0:13:b0:35:18:4a:94:bd:c7:67:46:f1:cb:23:19: a8:8e:c9:eb:2a:f2:35:b4:35:d9:5e:e7:34:1f:19: 3a:8e:0c:e5:99:f9:7b:82:ef:81:d9:96:84:2c:71: e3:cc:9b:5a:5a:81:7b:d5:20:ec:96:6a:a7:e0:3f: d0:a3:d8:2b:61:86:63:b8:bf:c8:70:2f:c7:01:b3: 4e:c0:13:f9:b6:62:48:d1:ec:ff:8a:99:9b:e3:61: 80:c1:32:ea:ea:5b:6b:1e:ad:e0:41:74:e0:7b:2f: 37:8d:fe:09:e1:15:8c:ae:e7:dd:0e:2c:09:d9:30: 94:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:35:DB:F8:27:E2:0B:9F:8F:0E:77:4A:A3:6C:75:9C:98:CF:B4:22 X509v3 Authority Key Identifier: keyid:A3:DD:DA:BE:3D:46:B4:48:02:61:DA:BB:E5:29:A0:66:B6:20:5D:8B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FAFBA/D4420E90C1F511EBAB77977BC4F9AE02/o93avj1GtEgCYdq75SmgZrYgXYs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o93avj1GtEgCYdq75SmgZrYgXYs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FAFBA/D4420E90C1F511EBAB77977BC4F9AE02/o93avj1GtEgCYdq75SmgZrYgXYs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 65:cd:2b:bc:67:d5:88:3f:5d:60:e4:22:dc:49:38:f1:0d:e2: 86:3c:64:c6:87:36:19:ba:da:00:e9:14:48:18:4d:17:c5:6f: e0:87:9c:30:d1:9e:5c:81:60:cb:1e:37:de:02:59:45:c7:2c: 0d:6b:6b:57:e1:9c:18:f1:d5:1e:41:0d:4f:ee:38:96:31:02: 1c:02:fb:64:a4:63:c7:f2:68:eb:c8:89:86:f0:45:3e:c0:e6: ec:e4:bd:83:f8:d5:b3:3b:02:45:fd:b0:29:7b:9b:5c:91:58: 16:8f:72:ea:45:8b:65:bb:c1:5f:cc:ec:6b:e7:69:03:69:b1: 3b:f6:aa:81:7e:45:b5:41:e2:17:9a:57:2d:18:0b:5b:1c:0a: 3b:b2:17:87:f4:a0:7c:c3:a6:6f:07:4c:9c:6b:89:d8:9a:14: 43:0f:7d:29:d9:6a:fe:e9:2d:41:e9:e9:ca:58:d2:5a:fc:76: 5f:99:53:ee:8a:d8:78:d8:8b:36:4e:8a:5b:e7:24:15:2c:c6: 2b:d2:f9:b5:fd:2a:19:3f:ea:9d:56:9b:b9:b1:f2:0d:f0:10: 7a:b3:a9:36:4f:10:78:6e:27:61:f9:1b:06:c4:40:82:e7:d6: 8d:6c:46:cb:ca:f2:c5:f3:0b:1e:f7:0e:ee:1d:54:fb:81:f4: c2:79:5f:d4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBWUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkFGQkExMTAvBgNVBAUTKEEzREREQUJFM0Q0NkI0NDgwMjYxREFCQkU1MjlBMDY2 QjYyMDVEOEIwHhcNMjQxMTIyMjI1NjE1WhcNMjQxMTI5MjI1NjE1WjAYMRYwFAYD VQQDEw02NzQxMGMwZi1jMDAwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvngq8j2UhQVVJ033AYGqpEAp71ABe95cNiom4/flgvsfZa3bDhKU8WkdXU4Z nrcz8mhV6ZPSS7JBMme2aVDYB9eZgM9ZqOQN3OG91tewVIKVXDL3Kzstlgwucca1 HpmmHs9a9pIqn2QFP7Pt8gHHaQRTBNoOsf7pzxXUL8zLJpwt9PdY/6jAE7A1GEqU vcdnRvHLIxmojsnrKvI1tDXZXuc0Hxk6jgzlmfl7gu+B2ZaELHHjzJtaWoF71SDs lmqn4D/Qo9grYYZjuL/IcC/HAbNOwBP5tmJI0ez/ipmb42GAwTLq6ltrHq3gQXTg ey83jf4J4RWMrufdDiwJ2TCUnwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOo12/gn 4gufjw53SqNsdZyYz7QiMB8GA1UdIwQYMBaAFKPd2r49RrRIAmHau+UpoGa2IF2L MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQUZCQS9ENDQyMEU5MEMx RjUxMUVCQUI3Nzk3N0JDNEY5QUUwMi9vOTNhdmoxR3RFZ0NZZHE3NVNtZ1pyWWdY WXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL285M2F2ajFHdEVnQ1lkcTc1U21nWnJZZ1hZcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QUZCQS9ENDQyMEU5MEMxRjUxMUVCQUI3Nzk3N0JDNEY5QUUwMi9vOTNhdmoxR3RF Z0NZZHE3NVNtZ1pyWWdYWXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBlzSu8Z9WIP11g5CLcSTjxDeKGPGTGhzYZutoA6RRIGE0XxW/gh5ww 0Z5cgWDLHjfeAllFxywNa2tX4ZwY8dUeQQ1P7jiWMQIcAvtkpGPH8mjryImG8EU+ wObs5L2D+NWzOwJF/bApe5tckVgWj3LqRYtlu8FfzOxr52kDabE79qqBfkW1QeIX mlctGAtbHAo7sheH9KB8w6ZvB0yca4nYmhRDD30p2Wr+6S1B6enKWNJa/HZfmVPu ith42Is2Topb5yQVLMYr0vm1/SoZP+qdVpu5sfIN8BB6s6k2TxB4bidh+RsGxECC 59aNbEbLyvLF8wse9w7uHVT7gfTCeV/U -----END CERTIFICATE-----Generated at Fri Nov 22 23:39:38 2024 by rpki-client on console-fra.rpki-client.org