$ rpki-client -vvf rpki.apnic.net/member_repository/A91289A2/FB52F64E8E6311EC9E015D6DC4F9AE02/aBQMFYJe1QoDeBBSrd4uyhpv6jo.mft File: aBQMFYJe1QoDeBBSrd4uyhpv6jo.mft (raw, json) Hash identifier: b185lyrL1Zo4gBShzJ1FPLOTMtXc9677HS6gOS/I1xM= Subject key identifier: DC:28:AA:99:ED:08:9A:C5:E8:DD:B7:81:E8:D8:26:B1:87:15:CF:B3 Authority key identifier: 68:14:0C:15:82:5E:D5:0A:03:78:10:52:AD:DE:2E:CA:1A:6F:EA:3A Certificate issuer: /CN=A91289A2/serialNumber=68140C15825ED50A03781052ADDE2ECA1A6FEA3A Certificate serial: 0367 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aBQMFYJe1QoDeBBSrd4uyhpv6jo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91289A2/FB52F64E8E6311EC9E015D6DC4F9AE02/aBQMFYJe1QoDeBBSrd4uyhpv6jo.mft Manifest number: 0362 Signing time: Sat 23 Nov 2024 00:31:07 +0000 Manifest this update: Sat 23 Nov 2024 00:31:07 +0000 Manifest next update: Sat 30 Nov 2024 00:31:07 +0000 Files and hashes: 1: aBQMFYJe1QoDeBBSrd4uyhpv6jo.crl (hash: 3Hel69wVmUCuy/yiOP8iv24DUkAI0XFlMJdZjVrrcik=) 2: 97E8ACD68E6611EC9EBE626FC4F9AE02.roa (hash: wBGsilyc7oO2j5bPBJp9S/aCZ2aHQ7LJrqUCQk35490=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91289A2/FB52F64E8E6311EC9E015D6DC4F9AE02/aBQMFYJe1QoDeBBSrd4uyhpv6jo.crl rsync://rpki.apnic.net/member_repository/A91289A2/FB52F64E8E6311EC9E015D6DC4F9AE02/aBQMFYJe1QoDeBBSrd4uyhpv6jo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aBQMFYJe1QoDeBBSrd4uyhpv6jo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 871 (0x367) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91289A2/serialNumber=68140C15825ED50A03781052ADDE2ECA1A6FEA3A Validity Not Before: Nov 23 00:31:07 2024 GMT Not After : Nov 30 00:31:07 2024 GMT Subject: CN=6741224b-9976 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:c2:5a:5a:94:80:14:14:ac:4b:f5:28:2a:a5: bd:a5:9f:9b:b7:7b:b4:e6:99:4c:8c:29:f9:1f:f3: 62:7a:51:79:98:e0:cd:52:29:a2:df:96:6e:4a:77: 4a:b9:44:7d:a6:03:9d:5c:7f:56:73:fd:8b:ca:a4: 72:67:da:98:5f:a9:9d:b9:6f:bd:75:53:5b:2d:de: 33:b5:3f:8e:e5:10:a6:ae:ed:c0:3d:f4:53:dd:17: 90:ca:24:c3:fe:52:61:b0:0d:e2:d1:35:1c:64:47: 7b:51:95:3d:9c:c0:99:51:2c:aa:d8:01:27:a5:1b: c4:d0:f2:70:74:2c:94:7a:6e:ee:62:1c:1f:ca:7b: f2:e7:58:67:0b:94:48:13:03:c7:be:7e:36:43:25: 61:e7:19:16:18:e1:c9:86:df:4d:a9:41:aa:95:16: 82:8f:91:a1:a0:c5:be:10:f1:d0:b6:50:54:94:68: 6b:cd:7f:ff:c1:8a:68:f8:87:f2:a5:34:c0:41:08: c5:e1:05:30:92:5c:dc:22:ab:85:09:f8:3b:65:6a: 0e:96:7c:2e:b2:a6:e8:e1:27:fb:58:63:ec:b6:95: 40:0b:5e:3c:b8:f7:71:d8:bc:51:df:8f:64:ac:f3: 25:a7:ce:3a:fc:54:33:dc:dc:cd:2e:ac:6b:60:24: a0:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:28:AA:99:ED:08:9A:C5:E8:DD:B7:81:E8:D8:26:B1:87:15:CF:B3 X509v3 Authority Key Identifier: keyid:68:14:0C:15:82:5E:D5:0A:03:78:10:52:AD:DE:2E:CA:1A:6F:EA:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91289A2/FB52F64E8E6311EC9E015D6DC4F9AE02/aBQMFYJe1QoDeBBSrd4uyhpv6jo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aBQMFYJe1QoDeBBSrd4uyhpv6jo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91289A2/FB52F64E8E6311EC9E015D6DC4F9AE02/aBQMFYJe1QoDeBBSrd4uyhpv6jo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 47:9a:48:46:d9:98:9d:97:ea:92:c5:e1:a2:5c:e8:0a:cc:9c: 02:85:28:00:c8:77:1f:e6:82:30:77:15:62:69:fe:aa:c1:33: a0:91:8c:d7:57:cc:ce:a5:d9:7a:68:dc:f3:75:4f:7e:44:1a: 6a:01:f3:92:08:3c:af:ce:cb:df:0e:a2:a3:d6:53:a7:e5:2c: 43:5d:db:c1:33:72:12:a9:ef:2e:77:6a:de:86:cb:bc:e6:9d: 16:32:fa:2b:d6:b3:80:4c:1c:b7:b0:bf:77:e7:aa:7c:54:86: f3:cc:d0:1b:52:5c:06:a8:d6:fd:cc:27:50:40:83:30:c1:74: 8e:31:37:87:44:7a:85:a1:3f:7b:19:9b:11:01:c5:7f:74:02: 13:0f:f8:a5:f7:d2:20:60:46:63:21:8b:c8:ac:19:90:2b:93: 81:fe:7b:8f:fd:74:a7:0a:da:9d:ee:16:4c:b3:1c:07:28:6c: 3f:82:ff:15:a5:a8:bd:54:a6:3a:a6:ee:84:f1:8c:53:aa:69: b3:86:10:9a:00:db:44:bd:98:a7:6e:f2:98:c2:de:8e:df:db: 32:a9:f3:38:bc:a2:89:49:2c:b8:89:32:e2:d5:dd:bd:6e:84: b3:6e:e6:b2:cb:28:58:40:bf:c9:a5:e3:9d:c7:c4:5a:ef:78: 11:80:5e:ee -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA2cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mjg5QTIxMTAvBgNVBAUTKDY4MTQwQzE1ODI1RUQ1MEEwMzc4MTA1MkFEREUyRUNB MUE2RkVBM0EwHhcNMjQxMTIzMDAzMTA3WhcNMjQxMTMwMDAzMTA3WjAYMRYwFAYD VQQDEw02NzQxMjI0Yi05OTc2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArsJaWpSAFBSsS/UoKqW9pZ+bt3u05plMjCn5H/NielF5mODNUimi35ZuSndK uUR9pgOdXH9Wc/2LyqRyZ9qYX6mduW+9dVNbLd4ztT+O5RCmru3APfRT3ReQyiTD /lJhsA3i0TUcZEd7UZU9nMCZUSyq2AEnpRvE0PJwdCyUem7uYhwfynvy51hnC5RI EwPHvn42QyVh5xkWGOHJht9NqUGqlRaCj5GhoMW+EPHQtlBUlGhrzX//wYpo+Ify pTTAQQjF4QUwklzcIquFCfg7ZWoOlnwusqbo4Sf7WGPstpVAC148uPdx2LxR349k rPMlp846/FQz3NzNLqxrYCSgUwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNwoqpnt CJrF6N23gejYJrGHFc+zMB8GA1UdIwQYMBaAFGgUDBWCXtUKA3gQUq3eLsoab+o6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyODlBMi9GQjUyRjY0RThF NjMxMUVDOUUwMTVENkRDNEY5QUUwMi9hQlFNRllKZTFRb0RlQkJTcmQ0dXlocHY2 am8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FCUU1GWUplMVFvRGVCQlNyZDR1eWhwdjZqby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy ODlBMi9GQjUyRjY0RThFNjMxMUVDOUUwMTVENkRDNEY5QUUwMi9hQlFNRllKZTFR b0RlQkJTcmQ0dXlocHY2am8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBHmkhG2Zidl+qSxeGiXOgKzJwChSgAyHcf5oIwdxViaf6qwTOgkYzX V8zOpdl6aNzzdU9+RBpqAfOSCDyvzsvfDqKj1lOn5SxDXdvBM3ISqe8ud2rehsu8 5p0WMvor1rOATBy3sL9356p8VIbzzNAbUlwGqNb9zCdQQIMwwXSOMTeHRHqFoT97 GZsRAcV/dAITD/il99IgYEZjIYvIrBmQK5OB/nuP/XSnCtqd7hZMsxwHKGw/gv8V pai9VKY6pu6E8YxTqmmzhhCaANtEvZinbvKYwt6O39syqfM4vKKJSSy4iTLi1d29 boSzbuayyyhYQL/JpeOdx8Ra73gRgF7u -----END CERTIFICATE-----Generated at Sat Nov 23 02:33:32 2024 by rpki-client on console-fra.rpki-client.org