$ rpki-client -vvf rpki.apnic.net/member_repository/A91116E6/D7D3623831F611EF92AD8D10C4F9AE02/MkzIe8yExoFRzDczpQjHilxbSYo.mft File: MkzIe8yExoFRzDczpQjHilxbSYo.mft (raw, json) Hash identifier: nbgaKCpNpV+sPXSD78vjkGuSdQpZngIpD4QvXy7v8gU= Subject key identifier: 6A:D2:A4:A3:37:BD:7E:45:7B:D2:5F:6A:2F:F5:2D:16:24:F2:9D:24 Authority key identifier: 32:4C:C8:7B:CC:84:C6:81:51:CC:37:33:A5:08:C7:8A:5C:5B:49:8A Certificate issuer: /CN=A91116E6/serialNumber=324CC87BCC84C68151CC3733A508C78A5C5B498A Certificate serial: 53 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MkzIe8yExoFRzDczpQjHilxbSYo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91116E6/D7D3623831F611EF92AD8D10C4F9AE02/MkzIe8yExoFRzDczpQjHilxbSYo.mft Manifest number: 51 Signing time: Sat 23 Nov 2024 05:11:32 +0000 Manifest this update: Sat 23 Nov 2024 05:11:32 +0000 Manifest next update: Sat 30 Nov 2024 05:11:32 +0000 Files and hashes: 1: MkzIe8yExoFRzDczpQjHilxbSYo.crl (hash: pW06cwFbctrkkDIQqdnLOfnVKrq6/bqL4z4oLRdI4+g=) 2: 9CE0AEFA31F711EFA9A9A54AC4F9AE02.roa (hash: GXX1SqQqnLs/QR8YWu9cJWfVt1DZZvg7YhJhKqg5IbE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91116E6/D7D3623831F611EF92AD8D10C4F9AE02/MkzIe8yExoFRzDczpQjHilxbSYo.crl rsync://rpki.apnic.net/member_repository/A91116E6/D7D3623831F611EF92AD8D10C4F9AE02/MkzIe8yExoFRzDczpQjHilxbSYo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MkzIe8yExoFRzDczpQjHilxbSYo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 83 (0x53) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91116E6/serialNumber=324CC87BCC84C68151CC3733A508C78A5C5B498A Validity Not Before: Nov 23 05:11:32 2024 GMT Not After : Nov 30 05:11:32 2024 GMT Subject: CN=67416404-948e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:2f:7a:fa:d4:3d:99:c6:13:c3:b9:6a:36:8d: 34:16:6e:63:af:d3:fc:49:3a:f0:3e:c9:76:52:96: 26:ba:3b:99:c0:e5:6d:7d:25:3f:71:ce:f8:2c:5b: e0:90:84:c9:ac:d9:5c:98:d0:9a:d9:85:81:b6:1e: a5:90:e2:8c:59:96:c5:fe:95:20:8a:c2:2c:38:27: 23:32:4e:55:b1:a8:67:53:97:96:4b:b7:ce:36:6e: 0e:30:97:ec:79:ab:77:34:42:c0:4c:26:0f:ff:25: 9a:f3:98:a4:0f:15:cb:c6:d2:91:a2:30:2b:f0:56: 63:d6:2e:c5:76:73:06:12:5f:90:43:25:3c:54:f5: 74:fa:9b:6f:a8:9c:53:86:ba:f0:c7:46:ee:7c:6d: b9:8d:5b:38:27:0f:2f:0d:4b:06:ca:f5:1e:67:6b: b1:07:a4:1b:50:14:39:63:7b:2a:d3:03:a5:db:01: ba:35:ef:1e:f5:61:87:4b:29:d9:c0:9f:f4:75:4e: 46:1e:7b:89:71:20:93:27:e6:77:ae:9e:7f:d5:b3: 6d:66:d8:60:9e:02:9b:15:40:2a:43:8d:e3:f2:a8: 7c:03:02:e4:31:c3:8d:e7:72:44:60:95:e1:65:79: 92:c8:91:b1:fd:be:1e:12:43:76:5b:7e:a1:04:bc: 26:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:D2:A4:A3:37:BD:7E:45:7B:D2:5F:6A:2F:F5:2D:16:24:F2:9D:24 X509v3 Authority Key Identifier: keyid:32:4C:C8:7B:CC:84:C6:81:51:CC:37:33:A5:08:C7:8A:5C:5B:49:8A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91116E6/D7D3623831F611EF92AD8D10C4F9AE02/MkzIe8yExoFRzDczpQjHilxbSYo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MkzIe8yExoFRzDczpQjHilxbSYo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91116E6/D7D3623831F611EF92AD8D10C4F9AE02/MkzIe8yExoFRzDczpQjHilxbSYo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7e:bd:a4:86:6a:26:ec:cb:72:02:1b:00:63:d1:00:07:c9:38: 2e:16:85:0b:eb:f9:68:43:12:51:17:82:5b:ba:89:fc:25:bf: 72:40:0a:8e:b8:e8:09:a6:ec:a4:71:22:f8:6d:47:5f:b7:c5: 69:e5:75:52:55:fa:6e:85:a3:27:c9:81:46:83:37:30:41:13: 12:1f:26:9d:43:0f:c2:b4:68:31:12:b2:98:01:18:a9:1a:7f: e0:19:82:f5:e4:6f:3f:ad:b1:c8:95:e7:61:61:44:f2:0d:32: d2:13:0e:7a:c1:cc:ef:d0:c1:78:ce:c9:69:97:cc:a8:6d:e7: 66:d7:0b:3f:77:f4:6a:a4:3c:f6:28:5d:25:6a:9a:40:61:22: 20:e0:22:c9:92:b0:18:a5:cb:68:10:d7:bd:fd:d9:71:08:0e: 34:75:b1:45:7a:08:d6:49:ff:40:2d:39:1a:4a:90:a0:a5:82: 8a:c5:76:d6:ba:ad:45:e4:3f:1b:80:7d:1f:28:e0:81:50:fb: 32:cf:23:bf:c5:9c:6c:e8:4b:1f:04:ef:7a:3d:43:97:70:35: 05:25:65:ee:a1:bb:63:84:da:ae:7b:b3:79:e1:d7:b0:e1:87: 3d:b5:91:88:52:78:9a:65:c9:36:f4:66:35:3a:3f:be:aa:f4: 0b:01:00:47 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBUzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx MTZFNjExMC8GA1UEBRMoMzI0Q0M4N0JDQzg0QzY4MTUxQ0MzNzMzQTUwOEM3OEE1 QzVCNDk4QTAeFw0yNDExMjMwNTExMzJaFw0yNDExMzAwNTExMzJaMBgxFjAUBgNV BAMTDTY3NDE2NDA0LTk0OGUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQClL3r61D2ZxhPDuWo2jTQWbmOv0/xJOvA+yXZSlia6O5nA5W19JT9xzvgsW+CQ hMms2VyY0JrZhYG2HqWQ4oxZlsX+lSCKwiw4JyMyTlWxqGdTl5ZLt842bg4wl+x5 q3c0QsBMJg//JZrzmKQPFcvG0pGiMCvwVmPWLsV2cwYSX5BDJTxU9XT6m2+onFOG uvDHRu58bbmNWzgnDy8NSwbK9R5na7EHpBtQFDljeyrTA6XbAbo17x71YYdLKdnA n/R1TkYee4lxIJMn5neunn/Vs21m2GCeApsVQCpDjePyqHwDAuQxw43nckRgleFl eZLIkbH9vh4SQ3ZbfqEEvCZFAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUatKkoze9 fkV70l9qL/UtFiTynSQwHwYDVR0jBBgwFoAUMkzIe8yExoFRzDczpQjHilxbSYow DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTExNkU2L0Q3RDM2MjM4MzFG NjExRUY5MkFEOEQxMEM0RjlBRTAyL01rekllOHlFeG9GUnpEY3pwUWpIaWx4YlNZ by5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvTWt6SWU4eUV4b0ZSekRjenBRakhpbHhiU1lvLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTEx NkU2L0Q3RDM2MjM4MzFGNjExRUY5MkFEOEQxMEM0RjlBRTAyL01rekllOHlFeG9G UnpEY3pwUWpIaWx4YlNZby5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAH69pIZqJuzLcgIbAGPRAAfJOC4WhQvr+WhDElEXglu6ifwlv3JACo64 6Amm7KRxIvhtR1+3xWnldVJV+m6FoyfJgUaDNzBBExIfJp1DD8K0aDESspgBGKka f+AZgvXkbz+tsciV52FhRPINMtITDnrBzO/QwXjOyWmXzKht52bXCz939GqkPPYo XSVqmkBhIiDgIsmSsBily2gQ17392XEIDjR1sUV6CNZJ/0AtORpKkKClgorFdta6 rUXkPxuAfR8o4IFQ+zLPI7/FnGzoSx8E73o9Q5dwNQUlZe6hu2OE2q57s3nh17Dh hz21kYhSeJplyTb0ZjU6P76q9AsBAEc= -----END CERTIFICATE-----Generated at Sat Nov 23 06:21:21 2024 by rpki-client on console-fra.rpki-client.org