$ rpki-client -vvf rpki.apnic.net/member_repository/A91FD38A/9AEF17BE05F411EA886A3C23C4F9AE02/tiCpxJY3Zsw8WAYGlJIun2eIEd4.mft File: tiCpxJY3Zsw8WAYGlJIun2eIEd4.mft (raw, json) Hash identifier: BpjlGC7xG2d6LpG87VYmjS2L+iO8bT2hmNjBBiXXcds= Subject key identifier: 25:16:9B:FF:8B:7A:EB:3C:B4:EF:81:6E:14:7E:3F:B2:A6:F4:77:0D Authority key identifier: B6:20:A9:C4:96:37:66:CC:3C:58:06:06:94:92:2E:9F:67:88:11:DE Certificate issuer: /CN=A91FD38A/serialNumber=B620A9C4963766CC3C58060694922E9F678811DE Certificate serial: 0BE7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tiCpxJY3Zsw8WAYGlJIun2eIEd4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FD38A/9AEF17BE05F411EA886A3C23C4F9AE02/tiCpxJY3Zsw8WAYGlJIun2eIEd4.mft Manifest number: 0BDF Signing time: Fri 22 Nov 2024 18:27:37 +0000 Manifest this update: Fri 22 Nov 2024 18:27:36 +0000 Manifest next update: Fri 29 Nov 2024 18:27:36 +0000 Files and hashes: 1: tiCpxJY3Zsw8WAYGlJIun2eIEd4.crl (hash: NtMDR83sz9zR/p6kEP/JrrRfbUPRJX+BJ4oeTo0efQk=) 2: AA5D86B2381311EA998E103FC4F9AE02.roa (hash: IMXg+e7lIl/+YhIBBHrlvZcdovKUHcbEwD83DK84h1A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FD38A/9AEF17BE05F411EA886A3C23C4F9AE02/tiCpxJY3Zsw8WAYGlJIun2eIEd4.crl rsync://rpki.apnic.net/member_repository/A91FD38A/9AEF17BE05F411EA886A3C23C4F9AE02/tiCpxJY3Zsw8WAYGlJIun2eIEd4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tiCpxJY3Zsw8WAYGlJIun2eIEd4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 18:27:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3047 (0xbe7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FD38A/serialNumber=B620A9C4963766CC3C58060694922E9F678811DE Validity Not Before: Nov 22 18:27:36 2024 GMT Not After : Nov 29 18:27:36 2024 GMT Subject: CN=6740cd18-729a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:a3:fb:69:78:30:fa:a2:b7:b2:0e:70:86:22: 26:b1:e9:a1:b4:a0:46:ee:44:67:42:81:6d:64:af: e2:97:32:f2:5d:77:95:82:82:57:e2:8c:b7:70:17: 65:a3:08:27:b3:d2:46:fe:1f:81:b1:90:03:60:78: 8a:89:97:53:70:10:6c:45:f8:5c:9f:5c:ac:65:58: 74:82:8d:5b:6b:ce:19:46:59:b7:14:f2:b0:0f:5d: 19:24:65:f4:1f:83:1f:2b:6e:cf:25:17:30:32:49: df:d7:cc:c4:3d:29:3e:70:43:44:cd:50:7e:dc:52: b8:16:b5:1f:37:75:75:75:d7:2c:a0:8b:63:a8:79: 25:5e:d0:26:6e:51:84:a2:2c:92:fc:4c:2e:af:78: 68:8e:ea:ed:71:c0:cc:31:3d:41:6d:60:35:d0:22: 40:94:65:50:8f:69:ac:6e:7b:0e:3a:f3:70:2d:e9: 96:fb:d6:d8:a4:58:ec:5e:31:70:16:e7:5e:61:27: c8:ab:be:e9:09:b1:af:10:67:52:7c:5c:b0:55:00: 13:c2:62:8f:28:4d:01:2e:f4:62:2d:73:0e:87:f3: 37:3a:6e:ce:ba:ab:02:ae:c4:4b:0a:32:38:2c:9c: 28:ae:53:21:3c:e2:e3:be:c8:35:35:21:13:21:d9: 68:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:16:9B:FF:8B:7A:EB:3C:B4:EF:81:6E:14:7E:3F:B2:A6:F4:77:0D X509v3 Authority Key Identifier: keyid:B6:20:A9:C4:96:37:66:CC:3C:58:06:06:94:92:2E:9F:67:88:11:DE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FD38A/9AEF17BE05F411EA886A3C23C4F9AE02/tiCpxJY3Zsw8WAYGlJIun2eIEd4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tiCpxJY3Zsw8WAYGlJIun2eIEd4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FD38A/9AEF17BE05F411EA886A3C23C4F9AE02/tiCpxJY3Zsw8WAYGlJIun2eIEd4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 75:1a:bb:10:4b:b9:05:db:1b:3b:90:cb:5a:74:8b:64:90:a6: e0:ec:f1:d1:ef:b6:fc:de:72:a7:5b:ca:02:fe:bd:30:45:5c: 34:66:7b:32:6d:d1:53:74:74:42:90:f5:66:dd:3c:ab:d2:1e: 70:1c:78:ec:ad:e7:3d:b8:87:42:37:69:b1:06:cd:c2:61:ce: c9:e8:e1:8d:5e:9a:0f:19:4c:3e:b1:c4:80:8b:ca:37:a4:c9: 76:49:a3:24:8d:58:89:d7:84:0c:22:7d:fa:7b:eb:f0:5b:e9: a3:7d:4e:01:41:8a:f5:68:d8:96:bb:03:ce:44:a9:a8:05:7b: b9:25:ee:ae:ca:4c:37:d1:5d:21:d4:d3:26:65:fc:68:9a:ed: 0e:54:55:4b:f2:8b:5d:5e:92:8f:ff:b0:ac:06:74:a3:59:53: c8:a2:70:73:b3:2e:45:c1:bf:04:35:4d:ec:f7:19:e4:32:b7: dd:37:87:c3:5a:90:93:8b:53:7d:0b:64:db:e8:71:62:ad:5f: 70:20:0b:61:81:21:3a:d3:fb:86:fd:b7:67:51:45:bb:84:62: 53:a1:17:b9:cf:a0:47:21:f7:8a:1f:74:aa:d4:dd:7b:e3:b9: 90:35:70:80:af:71:5a:3d:75:64:ab:7d:ee:28:b8:16:82:7c: a0:02:38:24 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC+cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkQzOEExMTAvBgNVBAUTKEI2MjBBOUM0OTYzNzY2Q0MzQzU4MDYwNjk0OTIyRTlG Njc4ODExREUwHhcNMjQxMTIyMTgyNzM2WhcNMjQxMTI5MTgyNzM2WjAYMRYwFAYD VQQDEw02NzQwY2QxOC03MjlhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzKP7aXgw+qK3sg5whiImsemhtKBG7kRnQoFtZK/ilzLyXXeVgoJX4oy3cBdl owgns9JG/h+BsZADYHiKiZdTcBBsRfhcn1ysZVh0go1ba84ZRlm3FPKwD10ZJGX0 H4MfK27PJRcwMknf18zEPSk+cENEzVB+3FK4FrUfN3V1ddcsoItjqHklXtAmblGE oiyS/Ewur3hojurtccDMMT1BbWA10CJAlGVQj2msbnsOOvNwLemW+9bYpFjsXjFw FudeYSfIq77pCbGvEGdSfFywVQATwmKPKE0BLvRiLXMOh/M3Om7OuqsCrsRLCjI4 LJworlMhPOLjvsg1NSETIdloAwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCUWm/+L eus8tO+BbhR+P7Km9HcNMB8GA1UdIwQYMBaAFLYgqcSWN2bMPFgGBpSSLp9niBHe MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRDM4QS85QUVGMTdCRTA1 RjQxMUVBODg2QTNDMjNDNEY5QUUwMi90aUNweEpZM1pzdzhXQVlHbEpJdW4yZUlF ZDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RpQ3B4SlkzWnN3OFdBWUdsSkl1bjJlSUVkNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG RDM4QS85QUVGMTdCRTA1RjQxMUVBODg2QTNDMjNDNEY5QUUwMi90aUNweEpZM1pz dzhXQVlHbEpJdW4yZUlFZDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB1GrsQS7kF2xs7kMtadItkkKbg7PHR77b83nKnW8oC/r0wRVw0Znsy bdFTdHRCkPVm3Tyr0h5wHHjsrec9uIdCN2mxBs3CYc7J6OGNXpoPGUw+scSAi8o3 pMl2SaMkjViJ14QMIn36e+vwW+mjfU4BQYr1aNiWuwPORKmoBXu5Je6uykw30V0h 1NMmZfxomu0OVFVL8otdXpKP/7CsBnSjWVPIonBzsy5Fwb8ENU3s9xnkMrfdN4fD WpCTi1N9C2Tb6HFirV9wIAthgSE60/uG/bdnUUW7hGJToRe5z6BHIfeKH3Sq1N17 47mQNXCAr3FaPXVkq33uKLgWgnygAjgk -----END CERTIFICATE-----Generated at Fri Nov 22 19:45:05 2024 by rpki-client on console-fra.rpki-client.org