$ rpki-client -vvf rpki.apnic.net/member_repository/A91190B4/BC8C10AE573C11EAB0A4E335C4F9AE02/peado7v7jl3TlkjmpD4A-nI95lg.mft File: peado7v7jl3TlkjmpD4A-nI95lg.mft (raw, json) Hash identifier: Zup/ZnqOBT7VMAGVCtAF6cejC4k+1J221iYAqUU6VdA= Subject key identifier: 12:05:91:B2:90:69:84:A3:2E:AF:1D:16:00:38:88:50:97:E3:03:D1 Authority key identifier: A5:E6:9D:A3:BB:FB:8E:5D:D3:96:48:E6:A4:3E:00:FA:72:3D:E6:58 Certificate issuer: /CN=A91190B4/serialNumber=A5E69DA3BBFB8E5DD39648E6A43E00FA723DE658 Certificate serial: 0A48 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/peado7v7jl3TlkjmpD4A-nI95lg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91190B4/BC8C10AE573C11EAB0A4E335C4F9AE02/peado7v7jl3TlkjmpD4A-nI95lg.mft Manifest number: 0A41 Signing time: Fri 22 Nov 2024 19:30:42 +0000 Manifest this update: Fri 22 Nov 2024 19:30:42 +0000 Manifest next update: Fri 29 Nov 2024 19:30:42 +0000 Files and hashes: 1: peado7v7jl3TlkjmpD4A-nI95lg.crl (hash: zusrnI05MmkA05byIgTch2k9KXWhFLP0llzclCPkbxs=) 2: 55BC5674573F11EAA8901D3EC4F9AE02.roa (hash: rdqj8/PeZ1X7JbGyHFdOgeZIkKmjTUjAK8v5yOyh4l0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91190B4/BC8C10AE573C11EAB0A4E335C4F9AE02/peado7v7jl3TlkjmpD4A-nI95lg.crl rsync://rpki.apnic.net/member_repository/A91190B4/BC8C10AE573C11EAB0A4E335C4F9AE02/peado7v7jl3TlkjmpD4A-nI95lg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/peado7v7jl3TlkjmpD4A-nI95lg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 19:30:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2632 (0xa48) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91190B4/serialNumber=A5E69DA3BBFB8E5DD39648E6A43E00FA723DE658 Validity Not Before: Nov 22 19:30:42 2024 GMT Not After : Nov 29 19:30:42 2024 GMT Subject: CN=6740dbe2-3676 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:7d:fc:20:d2:b8:81:8b:19:0c:23:7d:ad:66: 11:ff:78:e7:92:94:f0:99:0a:1d:85:8a:c4:ab:72: 0d:38:70:f3:2f:78:3b:c1:04:a6:e1:7f:31:12:b1: 89:d1:7b:10:c8:3d:d7:2a:86:c2:a6:52:f2:d8:8f: 09:e0:9a:b6:c1:a1:09:5e:46:ca:fa:29:01:61:bb: 5f:21:03:77:7a:48:3a:95:94:73:c6:0b:f0:d9:89: 14:b7:e8:1c:3a:4d:42:6d:00:02:7a:e4:a4:90:e2: 15:ae:2b:70:83:ac:9b:da:69:4e:96:73:7e:96:bb: 24:49:89:5b:fa:08:07:f5:66:d1:01:b2:35:23:79: 22:09:b4:54:d5:4b:59:d7:a9:8e:19:33:dc:de:f3: c6:0d:27:5e:3e:00:b8:c3:ba:03:4f:d7:c7:18:bb: 2d:c9:3e:64:b4:69:b8:6c:fa:51:77:c4:4b:4d:bd: 37:e5:8f:6e:2b:af:86:6e:18:99:27:c9:2b:b1:60: 95:01:0c:f1:1f:57:83:7b:6b:42:7c:5b:93:41:a1: 92:0f:5b:40:7d:de:eb:07:f4:db:c0:c9:a3:ee:3f: 01:0b:2a:12:f1:33:c7:73:f2:0a:a1:c5:60:c9:f6: 05:10:33:44:58:b6:2f:62:04:a2:0a:2a:e7:40:31: 5e:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:05:91:B2:90:69:84:A3:2E:AF:1D:16:00:38:88:50:97:E3:03:D1 X509v3 Authority Key Identifier: keyid:A5:E6:9D:A3:BB:FB:8E:5D:D3:96:48:E6:A4:3E:00:FA:72:3D:E6:58 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91190B4/BC8C10AE573C11EAB0A4E335C4F9AE02/peado7v7jl3TlkjmpD4A-nI95lg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/peado7v7jl3TlkjmpD4A-nI95lg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91190B4/BC8C10AE573C11EAB0A4E335C4F9AE02/peado7v7jl3TlkjmpD4A-nI95lg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7b:c0:f2:ab:45:77:89:f3:10:e9:3d:8b:48:ae:b5:bc:5e:77: 66:8f:7e:5e:42:f4:f1:b3:98:e4:de:68:f5:e3:34:a9:20:c4: 12:ff:83:71:7d:80:ce:d7:af:98:5b:64:df:63:1b:80:5b:e3: e8:54:a1:f5:2e:e2:94:e1:d0:f4:ab:39:96:f1:1f:da:f4:0a: 84:94:85:3f:71:75:49:ce:eb:95:6e:ba:a9:15:80:ee:da:6b: 60:8e:39:7c:8e:b0:ef:a0:fa:52:f7:1a:c9:76:fe:98:aa:15: 99:60:50:64:47:e2:12:23:b5:07:c5:c6:7b:1f:01:1f:91:6d: 9a:69:56:9b:e9:e0:92:5c:3a:01:b6:5d:97:c0:45:39:49:7c: 46:41:75:08:8b:f3:ae:af:39:5c:75:20:47:ea:96:61:c4:1f: de:88:0e:59:de:f7:3d:15:ec:24:ce:22:17:01:d5:c5:b8:39: 39:18:b8:bc:2d:79:da:ea:58:b4:aa:b5:5f:43:d7:57:63:b3: cb:76:11:33:da:77:d0:d5:56:43:0b:97:16:4b:e9:cc:41:7b: 44:f1:82:91:06:45:cb:dd:30:3a:33:b1:85:b8:c0:fc:be:68: 66:d3:7e:58:f5:e8:0a:d9:3f:68:4c:87:69:03:6b:88:2f:6e: 0d:7d:0e:88 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCkgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTkwQjQxMTAvBgNVBAUTKEE1RTY5REEzQkJGQjhFNUREMzk2NDhFNkE0M0UwMEZB NzIzREU2NTgwHhcNMjQxMTIyMTkzMDQyWhcNMjQxMTI5MTkzMDQyWjAYMRYwFAYD VQQDEw02NzQwZGJlMi0zNjc2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAm338INK4gYsZDCN9rWYR/3jnkpTwmQodhYrEq3INOHDzL3g7wQSm4X8xErGJ 0XsQyD3XKobCplLy2I8J4Jq2waEJXkbK+ikBYbtfIQN3ekg6lZRzxgvw2YkUt+gc Ok1CbQACeuSkkOIVritwg6yb2mlOlnN+lrskSYlb+ggH9WbRAbI1I3kiCbRU1UtZ 16mOGTPc3vPGDSdePgC4w7oDT9fHGLstyT5ktGm4bPpRd8RLTb035Y9uK6+GbhiZ J8krsWCVAQzxH1eDe2tCfFuTQaGSD1tAfd7rB/TbwMmj7j8BCyoS8TPHc/IKocVg yfYFEDNEWLYvYgSiCirnQDFebQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBIFkbKQ aYSjLq8dFgA4iFCX4wPRMB8GA1UdIwQYMBaAFKXmnaO7+45d05ZI5qQ+APpyPeZY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExOTBCNC9CQzhDMTBBRTU3 M0MxMUVBQjBBNEUzMzVDNEY5QUUwMi9wZWFkbzd2N2psM1Rsa2ptcEQ0QS1uSTk1 bGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BlYWRvN3Y3amwzVGxram1wRDRBLW5JOTVsZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx OTBCNC9CQzhDMTBBRTU3M0MxMUVBQjBBNEUzMzVDNEY5QUUwMi9wZWFkbzd2N2ps M1Rsa2ptcEQ0QS1uSTk1bGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB7wPKrRXeJ8xDpPYtIrrW8Xndmj35eQvTxs5jk3mj14zSpIMQS/4Nx fYDO16+YW2TfYxuAW+PoVKH1LuKU4dD0qzmW8R/a9AqElIU/cXVJzuuVbrqpFYDu 2mtgjjl8jrDvoPpS9xrJdv6YqhWZYFBkR+ISI7UHxcZ7HwEfkW2aaVab6eCSXDoB tl2XwEU5SXxGQXUIi/OurzlcdSBH6pZhxB/eiA5Z3vc9FewkziIXAdXFuDk5GLi8 LXna6li0qrVfQ9dXY7PLdhEz2nfQ1VZDC5cWS+nMQXtE8YKRBkXL3TA6M7GFuMD8 vmhm035Y9egK2T9oTIdpA2uIL24NfQ6I -----END CERTIFICATE-----Generated at Fri Nov 22 22:14:21 2024 by rpki-client on console-ams.rpki-client.org