$ rpki-client -vvf rpki.apnic.net/member_repository/A911E6CA/7409B47A4FC711EA8E46D415C4F9AE02/drnTOfrNYrR-k-iITehQOW2877Q.mft File: drnTOfrNYrR-k-iITehQOW2877Q.mft (raw, json) Hash identifier: PtnoTyQ+dKovUmK3vq8GNJW8EayQvCJR+9q5wZnGM24= Subject key identifier: D6:FE:B9:4D:AC:BF:76:3A:81:40:9D:DE:50:52:DA:AD:20:85:CB:EE Authority key identifier: 76:B9:D3:39:FA:CD:62:B4:7E:93:E8:88:4D:E8:50:39:6D:BC:EF:B4 Certificate issuer: /CN=A911E6CA/serialNumber=76B9D339FACD62B47E93E8884DE850396DBCEFB4 Certificate serial: 0A86 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/drnTOfrNYrR-k-iITehQOW2877Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911E6CA/7409B47A4FC711EA8E46D415C4F9AE02/drnTOfrNYrR-k-iITehQOW2877Q.mft Manifest number: 0A71 Signing time: Fri 22 Nov 2024 19:25:22 +0000 Manifest this update: Fri 22 Nov 2024 19:25:21 +0000 Manifest next update: Fri 29 Nov 2024 19:25:21 +0000 Files and hashes: 1: drnTOfrNYrR-k-iITehQOW2877Q.crl (hash: ijJy3jBZDCcQFwrPXf8Bdb7UPenEeHyRgQSszRkRzYs=) 2: 83882F7AF83B11ECB4154E31C4F9AE02.roa (hash: EhSHrFVVtHL5lFFl+aVbUcLo1qXdi3FAtdOJlX814u4=) 3: 4FFC83964CA311EE815AF017C4F9AE02.roa (hash: vgN7wLEDbyrBifRerfum3Fk0T52cGWinYY+zg+1VrHM=) 4: AA1ABF0AB20011EA9C0DFB2FC4F9AE02.roa (hash: H5ZVPVTct0U6OTmtMr1f5SRBkjmlilrIyET1lT5wzps=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911E6CA/7409B47A4FC711EA8E46D415C4F9AE02/drnTOfrNYrR-k-iITehQOW2877Q.crl rsync://rpki.apnic.net/member_repository/A911E6CA/7409B47A4FC711EA8E46D415C4F9AE02/drnTOfrNYrR-k-iITehQOW2877Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/drnTOfrNYrR-k-iITehQOW2877Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 19:25:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2694 (0xa86) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911E6CA/serialNumber=76B9D339FACD62B47E93E8884DE850396DBCEFB4 Validity Not Before: Nov 22 19:25:21 2024 GMT Not After : Nov 29 19:25:21 2024 GMT Subject: CN=6740daa2-4193 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:23:f0:ee:1d:7b:28:61:13:de:49:28:12:3d: 2d:6b:a7:1c:c8:f1:44:bc:5f:e9:b6:d6:49:df:f4: f1:e6:53:bf:c7:b4:5f:b1:ae:88:8f:7d:4e:3f:d8: 90:7d:06:4a:a0:49:18:97:fb:05:26:ef:bd:7b:16: 08:3a:2c:73:c6:8a:c4:64:31:86:29:46:e3:38:03: 89:71:a2:29:d6:bf:bc:b5:16:fa:ef:0b:48:79:66: bf:27:77:56:ae:9a:b5:ae:e5:e4:0b:71:33:58:7b: ad:8b:97:57:57:7c:db:cb:d1:b7:94:db:7a:91:90: 12:96:6a:ec:b5:5a:29:a8:88:46:69:76:6d:ba:bc: 23:a3:3a:b1:f8:e5:47:c9:a8:80:01:db:fa:81:6f: ae:8f:3d:83:1b:19:a5:e4:5a:a7:f9:89:a9:05:24: f2:86:37:2e:c9:1a:97:65:bb:71:3d:6e:50:6a:d1: f9:59:a0:6b:5b:76:87:45:44:cb:86:eb:a0:d4:b1: 1c:aa:57:bf:3a:cd:ba:b2:b1:10:2d:69:6f:22:0a: ba:48:86:5b:54:a3:74:a7:45:41:ea:b2:ca:e1:15: cb:d9:0c:ba:db:70:c7:2c:71:1a:14:27:e5:bd:a4: 2f:ce:08:c9:a4:5e:02:63:87:69:91:59:d8:f5:1b: 36:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:FE:B9:4D:AC:BF:76:3A:81:40:9D:DE:50:52:DA:AD:20:85:CB:EE X509v3 Authority Key Identifier: keyid:76:B9:D3:39:FA:CD:62:B4:7E:93:E8:88:4D:E8:50:39:6D:BC:EF:B4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911E6CA/7409B47A4FC711EA8E46D415C4F9AE02/drnTOfrNYrR-k-iITehQOW2877Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/drnTOfrNYrR-k-iITehQOW2877Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911E6CA/7409B47A4FC711EA8E46D415C4F9AE02/drnTOfrNYrR-k-iITehQOW2877Q.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 47:56:dc:af:25:37:6f:e5:06:3e:57:ce:6b:e1:ff:d2:b8:32: 6f:53:bd:d5:d1:84:32:8c:4a:47:45:34:b5:ba:06:59:c2:06: b6:ee:6e:68:0e:09:34:f7:f3:99:0c:51:36:8a:17:66:12:2c: 28:8b:33:6e:2e:02:df:f9:57:c8:b1:0e:a5:64:e8:a5:e1:5f: 1e:db:0d:80:37:a7:d9:6e:00:9e:de:46:6a:f1:18:47:15:47: cd:a8:19:a3:b4:73:29:86:53:46:10:9c:fa:6e:7d:5d:b6:44: f4:14:12:56:67:0b:e1:7e:2c:55:21:a7:24:6f:21:36:ca:b6: 5d:be:c8:56:a9:5c:c8:f5:00:a0:ff:3d:cd:3a:1d:c0:6b:65: e8:59:cf:3e:b9:19:01:b7:09:01:97:55:f0:0e:b7:f6:d6:1f: 53:d7:e2:cf:3c:26:a9:59:5f:b5:d2:da:e8:f0:64:29:01:21: 74:37:ca:de:49:ff:ce:17:2a:0b:e8:cb:b7:c3:a0:06:19:8d: 11:21:54:18:8f:ce:69:a2:7f:30:bc:2b:df:0d:d9:6c:b7:0d: 7c:31:b7:55:19:97:30:f7:52:b5:68:f4:41:16:ad:33:eb:a6: 2c:f1:d3:ec:64:ab:47:fb:c9:02:00:ff:3b:6c:ac:4b:cf:74: 38:ad:62:63 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCoYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUU2Q0ExMTAvBgNVBAUTKDc2QjlEMzM5RkFDRDYyQjQ3RTkzRTg4ODRERTg1MDM5 NkRCQ0VGQjQwHhcNMjQxMTIyMTkyNTIxWhcNMjQxMTI5MTkyNTIxWjAYMRYwFAYD VQQDEw02NzQwZGFhMi00MTkzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyiPw7h17KGET3kkoEj0ta6ccyPFEvF/pttZJ3/Tx5lO/x7Rfsa6Ij31OP9iQ fQZKoEkYl/sFJu+9exYIOixzxorEZDGGKUbjOAOJcaIp1r+8tRb67wtIeWa/J3dW rpq1ruXkC3EzWHuti5dXV3zby9G3lNt6kZASlmrstVopqIhGaXZturwjozqx+OVH yaiAAdv6gW+ujz2DGxml5Fqn+YmpBSTyhjcuyRqXZbtxPW5QatH5WaBrW3aHRUTL huug1LEcqle/Os26srEQLWlvIgq6SIZbVKN0p0VB6rLK4RXL2Qy623DHLHEaFCfl vaQvzgjJpF4CY4dpkVnY9Rs26wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNb+uU2s v3Y6gUCd3lBS2q0ghcvuMB8GA1UdIwQYMBaAFHa50zn6zWK0fpPoiE3oUDltvO+0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRTZDQS83NDA5QjQ3QTRG QzcxMUVBOEU0NkQ0MTVDNEY5QUUwMi9kcm5UT2ZyTllyUi1rLWlJVGVoUU9XMjg3 N1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2RyblRPZnJOWXJSLWstaUlUZWhRT1cyODc3US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx RTZDQS83NDA5QjQ3QTRGQzcxMUVBOEU0NkQ0MTVDNEY5QUUwMi9kcm5UT2ZyTlly Ui1rLWlJVGVoUU9XMjg3N1EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBHVtyvJTdv5QY+V85r4f/SuDJvU73V0YQyjEpHRTS1ugZZwga27m5o Dgk09/OZDFE2ihdmEiwoizNuLgLf+VfIsQ6lZOil4V8e2w2AN6fZbgCe3kZq8RhH FUfNqBmjtHMphlNGEJz6bn1dtkT0FBJWZwvhfixVIackbyE2yrZdvshWqVzI9QCg /z3NOh3Aa2XoWc8+uRkBtwkBl1XwDrf21h9T1+LPPCapWV+10tro8GQpASF0N8re Sf/OFyoL6Mu3w6AGGY0RIVQYj85pon8wvCvfDdlstw18MbdVGZcw91K1aPRBFq0z 66Ys8dPsZKtH+8kCAP87bKxLz3Q4rWJj -----END CERTIFICATE-----Generated at Fri Nov 22 21:05:26 2024 by rpki-client on console-fra.rpki-client.org