$ rpki-client -vvf rpki.apnic.net/member_repository/A91386E8/4889594EA80011EB90650A15C4F9AE02/MOI2HN2l66cF86ay--vl232vEPE.mft File: MOI2HN2l66cF86ay--vl232vEPE.mft (raw, json) Hash identifier: 5dJymsVgo3PyvLDBAeiRC8sOP0Wm/3E4Lzdkz83pG1A= Subject key identifier: B3:D8:9F:6D:13:2B:37:A0:13:D4:EA:3A:EC:44:B4:04:57:78:27:13 Authority key identifier: 30:E2:36:1C:DD:A5:EB:A7:05:F3:A6:B2:FB:EB:E5:DB:7D:AF:10:F1 Certificate issuer: /CN=A91386E8/serialNumber=30E2361CDDA5EBA705F3A6B2FBEBE5DB7DAF10F1 Certificate serial: 05B3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MOI2HN2l66cF86ay--vl232vEPE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91386E8/4889594EA80011EB90650A15C4F9AE02/MOI2HN2l66cF86ay--vl232vEPE.mft Manifest number: 05AB Signing time: Fri 22 Nov 2024 22:44:11 +0000 Manifest this update: Fri 22 Nov 2024 22:44:10 +0000 Manifest next update: Fri 29 Nov 2024 22:44:10 +0000 Files and hashes: 1: MOI2HN2l66cF86ay--vl232vEPE.crl (hash: EtjH6Q1YKm2qmnBuO0jH4fWkbj6AsCYQjcelz5eoOA4=) 2: 65C6DD42E15211EC8EEE9668C4F9AE02.roa (hash: LDk3Seu3QVripuVl2tqg++SzvTjmU8fS2eeY7JVY2JQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91386E8/4889594EA80011EB90650A15C4F9AE02/MOI2HN2l66cF86ay--vl232vEPE.crl rsync://rpki.apnic.net/member_repository/A91386E8/4889594EA80011EB90650A15C4F9AE02/MOI2HN2l66cF86ay--vl232vEPE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MOI2HN2l66cF86ay--vl232vEPE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1459 (0x5b3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91386E8/serialNumber=30E2361CDDA5EBA705F3A6B2FBEBE5DB7DAF10F1 Validity Not Before: Nov 22 22:44:10 2024 GMT Not After : Nov 29 22:44:10 2024 GMT Subject: CN=6741093b-9c71 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:a9:2f:27:70:a5:07:97:d4:8e:80:79:5e:b5: 59:0b:e8:60:47:b7:b9:2f:a7:22:09:3b:8d:bf:5f: ea:43:f0:b3:fc:da:86:3e:7b:b0:1f:a4:13:51:02: 6e:24:02:b7:80:80:7c:50:5f:da:5c:16:fc:09:8b: c7:90:ce:65:3a:af:a1:35:3c:a0:15:c5:48:45:c0: 1f:ce:6d:d6:fb:f4:b5:26:7b:0d:16:a9:77:24:96: c6:78:8c:0b:d6:8e:b2:dd:44:a1:55:2a:6b:72:9b: 5b:d1:2f:e5:16:83:17:29:3a:d0:13:29:c8:bb:4a: 5d:4b:af:39:90:f7:22:63:b1:ae:c7:2a:02:7e:85: a7:e0:19:8f:a4:ac:39:7d:b4:02:6d:b2:55:a1:b4: cb:fc:22:04:f6:00:18:79:de:37:74:c4:46:2c:49: 68:4f:06:2e:73:11:5e:d2:c9:e6:85:80:dc:4a:30: bf:36:31:e0:1a:66:8a:5f:4b:ba:fd:90:3b:5f:b1: f0:b4:fe:52:c8:ed:e3:ae:a8:ce:1d:59:98:29:d3: 48:4c:6c:df:15:0e:82:fc:c7:be:1d:6d:38:19:f5: ed:db:ad:f8:28:70:bd:97:4d:9b:52:b2:d8:ff:f4: 05:de:f1:a6:3a:43:81:d1:4c:67:90:19:87:1d:91: 33:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:D8:9F:6D:13:2B:37:A0:13:D4:EA:3A:EC:44:B4:04:57:78:27:13 X509v3 Authority Key Identifier: keyid:30:E2:36:1C:DD:A5:EB:A7:05:F3:A6:B2:FB:EB:E5:DB:7D:AF:10:F1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91386E8/4889594EA80011EB90650A15C4F9AE02/MOI2HN2l66cF86ay--vl232vEPE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MOI2HN2l66cF86ay--vl232vEPE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91386E8/4889594EA80011EB90650A15C4F9AE02/MOI2HN2l66cF86ay--vl232vEPE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 60:ef:d5:c1:b9:2c:fb:f3:2f:34:10:4e:c8:10:1a:a0:7f:d1: 31:63:04:86:c3:af:01:75:99:f2:e9:c2:ea:bc:92:18:0f:38: 52:7d:d0:b1:e8:d2:66:46:db:26:1a:6c:ff:70:d2:b3:4f:6e: f0:11:be:3d:86:39:c9:f9:37:43:77:94:31:d9:c9:25:06:d7: 10:b8:3b:bf:7e:37:07:9f:4a:01:ca:5e:e5:10:cd:11:f7:10: f3:de:68:0a:e3:a7:0f:6a:07:cf:c4:65:89:e4:03:66:d3:c3: 68:86:f8:06:2d:5e:92:b2:87:64:71:ef:8c:13:70:88:6b:73: ca:90:92:63:0e:74:87:58:14:b7:19:42:c8:b1:5a:02:0f:a8: c5:ce:3d:0f:16:fb:91:ed:0d:7c:ec:67:c0:d9:1d:76:16:13: 6a:b4:e1:1b:65:2b:5e:6d:9d:ac:12:e3:74:b6:a8:f0:12:e1: 7e:83:4f:66:98:1f:64:b9:ec:91:cf:de:4b:8e:f7:e4:2c:b5: 34:24:01:9e:d4:3c:3c:fa:9e:c8:c6:73:68:8d:52:ea:68:a6: 34:f9:66:b4:12:db:25:39:58:f9:03:0a:f2:26:0e:fa:aa:6c: eb:08:fc:ed:03:36:61:71:b0:13:ab:d1:dc:73:2c:a4:77:5c: cc:df:b5:b1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBbMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mzg2RTgxMTAvBgNVBAUTKDMwRTIzNjFDRERBNUVCQTcwNUYzQTZCMkZCRUJFNURC N0RBRjEwRjEwHhcNMjQxMTIyMjI0NDEwWhcNMjQxMTI5MjI0NDEwWjAYMRYwFAYD VQQDEw02NzQxMDkzYi05YzcxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5akvJ3ClB5fUjoB5XrVZC+hgR7e5L6ciCTuNv1/qQ/Cz/NqGPnuwH6QTUQJu JAK3gIB8UF/aXBb8CYvHkM5lOq+hNTygFcVIRcAfzm3W+/S1JnsNFql3JJbGeIwL 1o6y3UShVSprcptb0S/lFoMXKTrQEynIu0pdS685kPciY7GuxyoCfoWn4BmPpKw5 fbQCbbJVobTL/CIE9gAYed43dMRGLEloTwYucxFe0snmhYDcSjC/NjHgGmaKX0u6 /ZA7X7HwtP5SyO3jrqjOHVmYKdNITGzfFQ6C/Me+HW04GfXt2634KHC9l02bUrLY //QF3vGmOkOB0UxnkBmHHZEziQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLPYn20T KzegE9TqOuxEtARXeCcTMB8GA1UdIwQYMBaAFDDiNhzdpeunBfOmsvvr5dt9rxDx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzODZFOC80ODg5NTk0RUE4 MDAxMUVCOTA2NTBBMTVDNEY5QUUwMi9NT0kySE4ybDY2Y0Y4NmF5LS12bDIzMnZF UEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL01PSTJITjJsNjZjRjg2YXktLXZsMjMydkVQRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz ODZFOC80ODg5NTk0RUE4MDAxMUVCOTA2NTBBMTVDNEY5QUUwMi9NT0kySE4ybDY2 Y0Y4NmF5LS12bDIzMnZFUEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBg79XBuSz78y80EE7IEBqgf9ExYwSGw68BdZny6cLqvJIYDzhSfdCx 6NJmRtsmGmz/cNKzT27wEb49hjnJ+TdDd5Qx2cklBtcQuDu/fjcHn0oByl7lEM0R 9xDz3mgK46cPagfPxGWJ5ANm08NohvgGLV6Ssodkce+ME3CIa3PKkJJjDnSHWBS3 GULIsVoCD6jFzj0PFvuR7Q187GfA2R12FhNqtOEbZStebZ2sEuN0tqjwEuF+g09m mB9kueyRz95LjvfkLLU0JAGe1Dw8+p7IxnNojVLqaKY0+Wa0EtslOVj5AwryJg76 qmzrCPztAzZhcbATq9Hccyykd1zM37Wx -----END CERTIFICATE-----Generated at Fri Nov 22 23:39:24 2024 by rpki-client on console-fra.rpki-client.org