$ rpki-client -vvf rpki.apnic.net/member_repository/A91442DE/52043414B23A11EB9074774AC4F9AE02/ahpG6ANoiAaY7zBCQgW5d5voseA.mft File: ahpG6ANoiAaY7zBCQgW5d5voseA.mft (raw, json) Hash identifier: FajlhN3b+fLye4+8m7Lr94h5jrUhKz8/IVsCOt4UasE= Subject key identifier: D8:70:8C:B9:83:DE:16:02:2E:4E:12:82:9E:E7:09:FA:2E:54:2F:EB Authority key identifier: 6A:1A:46:E8:03:68:88:06:98:EF:30:42:42:05:B9:77:9B:E8:B1:E0 Certificate issuer: /CN=A91442DE/serialNumber=6A1A46E80368880698EF30424205B9779BE8B1E0 Certificate serial: 0589 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ahpG6ANoiAaY7zBCQgW5d5voseA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91442DE/52043414B23A11EB9074774AC4F9AE02/ahpG6ANoiAaY7zBCQgW5d5voseA.mft Manifest number: 0585 Signing time: Wed 20 Nov 2024 22:47:56 +0000 Manifest this update: Wed 20 Nov 2024 22:47:55 +0000 Manifest next update: Wed 27 Nov 2024 22:47:55 +0000 Files and hashes: 1: ahpG6ANoiAaY7zBCQgW5d5voseA.crl (hash: VsXRY1Oknek6lwD81gfNZ3yB9wn0FiO2M/IX6PFkvKY=) 2: 0D5812C4B2E711EB8A61B44EC4F9AE02.roa (hash: 9tQnJbgHn9CXIDaZmtJ4XxjigORNQV18RL9rnYpJw1M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91442DE/52043414B23A11EB9074774AC4F9AE02/ahpG6ANoiAaY7zBCQgW5d5voseA.crl rsync://rpki.apnic.net/member_repository/A91442DE/52043414B23A11EB9074774AC4F9AE02/ahpG6ANoiAaY7zBCQgW5d5voseA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ahpG6ANoiAaY7zBCQgW5d5voseA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:33:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1417 (0x589) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91442DE/serialNumber=6A1A46E80368880698EF30424205B9779BE8B1E0 Validity Not Before: Nov 20 22:47:55 2024 GMT Not After : Nov 27 22:47:55 2024 GMT Subject: CN=673e671b-5b7b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:0b:85:a3:06:3e:a1:a0:c7:89:2a:31:7f:13: c8:1b:bd:b1:7a:1f:7c:b4:b3:e3:cc:ee:27:33:37: 03:df:5c:1c:94:54:a8:4f:f4:00:4d:2d:38:21:76: 51:bb:8d:ac:00:d1:0b:c9:6f:f6:21:fb:7f:5b:dd: c9:4a:d2:ee:79:1d:39:38:67:b2:75:ce:3e:29:80: 24:03:36:94:a5:ed:38:2f:78:30:08:00:9c:de:fa: 3e:76:78:b3:23:05:76:25:14:ce:82:84:52:ee:14: f0:4f:87:56:8e:2e:22:a8:a7:df:38:c0:68:89:8f: 41:e0:22:23:12:92:e2:bd:a2:6e:73:15:f6:be:a7: de:80:5d:e7:28:5a:c7:ee:82:eb:88:e7:f8:80:73: 3b:19:73:e5:42:2c:04:f0:ff:fc:f1:33:4a:c1:93: 25:99:6a:01:00:df:bd:ec:7d:62:f0:54:9f:c9:ff: a0:7d:59:65:57:71:2c:03:9e:e3:69:3f:aa:0d:0f: a8:9b:ee:cb:0d:a3:4c:5e:ad:a3:86:af:53:f2:10: 48:7c:63:dd:40:3e:92:3c:c6:4e:00:9c:2e:b2:ca: c1:64:34:21:78:d8:42:4d:25:59:51:dc:cb:56:1f: 8c:9b:28:9d:53:d5:26:63:53:52:66:0c:0c:2a:a0: 2a:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:70:8C:B9:83:DE:16:02:2E:4E:12:82:9E:E7:09:FA:2E:54:2F:EB X509v3 Authority Key Identifier: keyid:6A:1A:46:E8:03:68:88:06:98:EF:30:42:42:05:B9:77:9B:E8:B1:E0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91442DE/52043414B23A11EB9074774AC4F9AE02/ahpG6ANoiAaY7zBCQgW5d5voseA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ahpG6ANoiAaY7zBCQgW5d5voseA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91442DE/52043414B23A11EB9074774AC4F9AE02/ahpG6ANoiAaY7zBCQgW5d5voseA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 67:87:ff:93:3c:4c:82:f3:1b:59:50:ab:f0:f3:95:ee:aa:f9: 00:5d:cb:06:3a:4e:46:f5:3e:6b:0c:b4:a1:11:8f:38:63:89: 71:91:8e:b6:37:e5:93:f5:1b:74:0a:08:0c:cf:43:d8:cc:9d: da:5b:27:86:e1:f0:68:7c:da:ed:5d:b0:b1:7b:ff:20:eb:b2: 19:a8:6f:d5:ef:21:5d:58:b7:39:3e:c2:7f:3f:76:e8:c4:43: c8:df:14:8e:fd:a7:38:ca:74:77:a0:93:c8:b3:ab:04:54:c4: dd:8c:c2:ab:c6:34:c9:01:5b:b7:3a:78:e7:33:f7:fe:bf:9f: 54:cf:3d:8e:55:16:1e:3f:34:7b:6f:95:74:f3:fb:af:30:97: 74:07:e6:35:93:28:a4:8f:90:40:85:eb:fb:f3:cc:16:ea:1c: 51:dc:aa:eb:f0:5b:2e:e4:ca:16:39:b8:6c:f9:5e:b6:3e:99: ce:16:fe:0c:65:f7:ee:35:2a:5b:a7:5f:cf:3d:4c:aa:18:65: 2d:ac:14:ae:40:fb:5e:70:06:d0:28:d1:07:42:95:58:c8:11: 80:ad:22:b7:fe:35:97:44:91:22:ca:11:5d:d1:32:f2:8b:f7: 8b:0f:0f:e8:6d:4b:a1:f4:5b:2f:47:9b:1d:c1:d6:4c:f2:9f: d5:1a:2e:6e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBYkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDQyREUxMTAvBgNVBAUTKDZBMUE0NkU4MDM2ODg4MDY5OEVGMzA0MjQyMDVCOTc3 OUJFOEIxRTAwHhcNMjQxMTIwMjI0NzU1WhcNMjQxMTI3MjI0NzU1WjAYMRYwFAYD VQQDEw02NzNlNjcxYi01YjdiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtwuFowY+oaDHiSoxfxPIG72xeh98tLPjzO4nMzcD31wclFSoT/QATS04IXZR u42sANELyW/2Ift/W93JStLueR05OGeydc4+KYAkAzaUpe04L3gwCACc3vo+dniz IwV2JRTOgoRS7hTwT4dWji4iqKffOMBoiY9B4CIjEpLivaJucxX2vqfegF3nKFrH 7oLriOf4gHM7GXPlQiwE8P/88TNKwZMlmWoBAN+97H1i8FSfyf+gfVllV3EsA57j aT+qDQ+om+7LDaNMXq2jhq9T8hBIfGPdQD6SPMZOAJwussrBZDQheNhCTSVZUdzL Vh+MmyidU9UmY1NSZgwMKqAqIwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNhwjLmD 3hYCLk4Sgp7nCfouVC/rMB8GA1UdIwQYMBaAFGoaRugDaIgGmO8wQkIFuXeb6LHg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NDJERS81MjA0MzQxNEIy M0ExMUVCOTA3NDc3NEFDNEY5QUUwMi9haHBHNkFOb2lBYVk3ekJDUWdXNWQ1dm9z ZUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FocEc2QU5vaUFhWTd6QkNRZ1c1ZDV2b3NlQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NDJERS81MjA0MzQxNEIyM0ExMUVCOTA3NDc3NEFDNEY5QUUwMi9haHBHNkFOb2lB YVk3ekJDUWdXNWQ1dm9zZUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBnh/+TPEyC8xtZUKvw85XuqvkAXcsGOk5G9T5rDLShEY84Y4lxkY62 N+WT9Rt0CggMz0PYzJ3aWyeG4fBofNrtXbCxe/8g67IZqG/V7yFdWLc5PsJ/P3bo xEPI3xSO/ac4ynR3oJPIs6sEVMTdjMKrxjTJAVu3OnjnM/f+v59Uzz2OVRYePzR7 b5V08/uvMJd0B+Y1kyikj5BAhev788wW6hxR3Krr8Fsu5MoWObhs+V62PpnOFv4M ZffuNSpbp1/PPUyqGGUtrBSuQPtecAbQKNEHQpVYyBGArSK3/jWXRJEiyhFd0TLy i/eLDw/obUuh9FsvR5sdwdZM8p/VGi5u -----END CERTIFICATE-----Generated at Thu Nov 21 00:21:20 2024 by rpki-client on console-fra.rpki-client.org