$ rpki-client -vvf rpki.apnic.net/member_repository/A91FDAD4/C85E837A439911ED839D720EC4F9AE02/rehZrZQNGhc_pkzXBYZ9SH5nNog.mft File: rehZrZQNGhc_pkzXBYZ9SH5nNog.mft (raw, json) Hash identifier: aRRnDS2XRala3Pe3a7FMhof2za6gcgcCpBUSfe2t7rE= Subject key identifier: 42:DA:FD:AE:4F:01:DA:C2:5A:FF:3B:A4:AC:50:13:71:34:38:F8:4A Authority key identifier: AD:E8:59:AD:94:0D:1A:17:3F:A6:4C:D7:05:86:7D:48:7E:67:36:88 Certificate issuer: /CN=A91FDAD4/serialNumber=ADE859AD940D1A173FA64CD705867D487E673688 Certificate serial: 0197 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/rehZrZQNGhc_pkzXBYZ9SH5nNog.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FDAD4/C85E837A439911ED839D720EC4F9AE02/rehZrZQNGhc_pkzXBYZ9SH5nNog.mft Manifest number: 0193 Signing time: Sat 23 Nov 2024 00:20:07 +0000 Manifest this update: Sat 23 Nov 2024 00:20:06 +0000 Manifest next update: Sat 30 Nov 2024 00:20:06 +0000 Files and hashes: 1: rehZrZQNGhc_pkzXBYZ9SH5nNog.crl (hash: r79Ny1EahOUx+ztXp15w+BcPMNTRJ2VtCHwr5Vzf5dE=) 2: A99BC9D64CAC11EDA3BF485AC4F9AE02.roa (hash: 3rJgdxfYw3z0Qha7Cf2nWFVdNS9QkKvrwb2nEAGi284=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FDAD4/C85E837A439911ED839D720EC4F9AE02/rehZrZQNGhc_pkzXBYZ9SH5nNog.crl rsync://rpki.apnic.net/member_repository/A91FDAD4/C85E837A439911ED839D720EC4F9AE02/rehZrZQNGhc_pkzXBYZ9SH5nNog.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/rehZrZQNGhc_pkzXBYZ9SH5nNog.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:44:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 407 (0x197) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FDAD4/serialNumber=ADE859AD940D1A173FA64CD705867D487E673688 Validity Not Before: Nov 23 00:20:06 2024 GMT Not After : Nov 30 00:20:06 2024 GMT Subject: CN=67411fb7-6a3b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:6d:24:c3:14:c5:22:62:56:33:06:ec:bd:bc: 47:b6:ab:87:55:98:b6:b1:a2:4f:47:9b:58:c8:3e: d2:8d:b7:4f:02:be:ce:97:a4:86:d8:71:2d:fc:d9: 5b:e1:bd:af:f7:f1:69:5b:05:66:eb:ae:5b:4c:96: 27:2a:32:54:c6:4c:e6:3f:ac:69:58:6d:a8:d2:a1: 93:db:bc:c8:fb:e9:c1:79:e5:c9:73:00:0e:4a:c3: 92:c5:2b:04:58:74:8d:4c:a1:b4:fd:35:89:29:c1: 5a:a4:ea:2b:85:59:ed:84:ae:bd:2e:7a:fd:43:f9: 3a:dd:1f:dd:5e:90:17:d3:08:73:1e:16:f3:b2:87: ac:3b:d9:24:f9:25:a2:d4:ef:43:b9:06:36:a4:6e: f6:18:6b:ca:6b:3f:1f:a9:b6:a1:a1:bc:be:f9:7b: 31:aa:90:55:e3:75:4a:66:36:d1:91:fd:fa:14:12: 42:a1:63:89:73:73:70:ae:8e:dd:d6:c3:d5:94:b9: 66:7d:c5:e4:15:03:6a:d5:91:75:ad:5d:a7:4b:14: ef:b8:c1:df:78:bd:28:69:aa:71:d5:33:0d:55:93: bf:f0:a9:79:8f:0f:5f:69:79:75:4a:63:53:ae:92: c9:91:e2:9a:42:d7:92:91:a5:bb:ac:13:44:94:79: 2a:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:DA:FD:AE:4F:01:DA:C2:5A:FF:3B:A4:AC:50:13:71:34:38:F8:4A X509v3 Authority Key Identifier: keyid:AD:E8:59:AD:94:0D:1A:17:3F:A6:4C:D7:05:86:7D:48:7E:67:36:88 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FDAD4/C85E837A439911ED839D720EC4F9AE02/rehZrZQNGhc_pkzXBYZ9SH5nNog.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/rehZrZQNGhc_pkzXBYZ9SH5nNog.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FDAD4/C85E837A439911ED839D720EC4F9AE02/rehZrZQNGhc_pkzXBYZ9SH5nNog.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 44:66:4a:5d:5f:e2:67:36:51:1d:58:bb:c4:7b:11:37:1f:05: 49:d3:9e:56:ab:8d:ed:2b:54:ea:86:cc:28:ca:2e:9e:4b:0b: 02:e5:8a:d6:ba:4d:91:24:eb:cc:db:b7:e9:8f:62:cf:92:92: af:66:6c:f0:79:7d:da:5e:af:a7:9e:57:34:fb:b4:1b:9e:f2: 3a:92:04:2b:86:84:03:0d:3b:fe:62:8c:8b:8b:00:da:57:e0: 12:04:54:b7:13:09:db:4e:0f:c3:4a:e5:de:6d:b2:2a:0c:fd: d5:4c:f4:50:20:4c:b1:af:e3:2c:2f:2f:bc:50:b7:6b:67:f7: e8:fd:eb:e6:8b:e1:5b:45:70:33:37:e8:7d:a5:24:c2:85:05: 5a:23:73:9e:dc:5c:be:db:06:b2:b7:69:da:6b:07:69:28:1f: a8:54:23:80:44:4d:89:44:ff:29:fe:51:98:f2:2d:9b:b9:77: ec:61:74:70:ba:77:1b:d9:f3:7b:6f:be:ce:48:5a:3e:23:b8: 9c:b5:5f:6f:8c:61:42:5f:18:2c:c2:65:c3:79:08:d3:dd:ad: 73:5f:61:5c:7e:34:90:1f:90:10:5d:ba:ad:71:c7:24:df:bc: ff:c8:ae:61:a2:e5:40:08:8a:f3:c6:9a:96:65:5a:56:e2:c1: 70:28:32:6b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAZcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkRBRDQxMTAvBgNVBAUTKEFERTg1OUFEOTQwRDFBMTczRkE2NENENzA1ODY3RDQ4 N0U2NzM2ODgwHhcNMjQxMTIzMDAyMDA2WhcNMjQxMTMwMDAyMDA2WjAYMRYwFAYD VQQDEw02NzQxMWZiNy02YTNiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzm0kwxTFImJWMwbsvbxHtquHVZi2saJPR5tYyD7SjbdPAr7Ol6SG2HEt/Nlb 4b2v9/FpWwVm665bTJYnKjJUxkzmP6xpWG2o0qGT27zI++nBeeXJcwAOSsOSxSsE WHSNTKG0/TWJKcFapOorhVnthK69Lnr9Q/k63R/dXpAX0whzHhbzsoesO9kk+SWi 1O9DuQY2pG72GGvKaz8fqbahoby++XsxqpBV43VKZjbRkf36FBJCoWOJc3Nwro7d 1sPVlLlmfcXkFQNq1ZF1rV2nSxTvuMHfeL0oaapx1TMNVZO/8Kl5jw9faXl1SmNT rpLJkeKaQteSkaW7rBNElHkqVQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFELa/a5P AdrCWv87pKxQE3E0OPhKMB8GA1UdIwQYMBaAFK3oWa2UDRoXP6ZM1wWGfUh+ZzaI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGREFENC9DODVFODM3QTQz OTkxMUVEODM5RDcyMEVDNEY5QUUwMi9yZWhaclpRTkdoY19wa3pYQllaOVNINW5O b2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL3JlaFpyWlFOR2hjX3BrelhCWVo5U0g1bk5vZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG REFENC9DODVFODM3QTQzOTkxMUVEODM5RDcyMEVDNEY5QUUwMi9yZWhaclpRTkdo Y19wa3pYQllaOVNINW5Ob2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBEZkpdX+JnNlEdWLvEexE3HwVJ055Wq43tK1Tqhswoyi6eSwsC5YrW uk2RJOvM27fpj2LPkpKvZmzweX3aXq+nnlc0+7QbnvI6kgQrhoQDDTv+YoyLiwDa V+ASBFS3EwnbTg/DSuXebbIqDP3VTPRQIEyxr+MsLy+8ULdrZ/fo/evmi+FbRXAz N+h9pSTChQVaI3Oe3Fy+2wayt2naawdpKB+oVCOARE2JRP8p/lGY8i2buXfsYXRw uncb2fN7b77OSFo+I7ictV9vjGFCXxgswmXDeQjT3a1zX2FcfjSQH5AQXbqtccck 37z/yK5houVACIrzxpqWZVpW4sFwKDJr -----END CERTIFICATE-----Generated at Sat Nov 23 02:33:52 2024 by rpki-client on console-fra.rpki-client.org