$ rpki-client -vvf rpki.apnic.net/member_repository/A91478C3/E3D9194C9D2C11E980221829C4F9AE02/kSqzn8e7y-8c8mfp0_cZyaTwoRQ.mft File: kSqzn8e7y-8c8mfp0_cZyaTwoRQ.mft (raw, json) Hash identifier: EAhMsDQemKD3YxFgQ3R8nhuQXcQa30svD+Poce5Wcyw= Subject key identifier: 1A:7F:DC:B3:29:15:A3:15:E8:77:33:24:13:28:0A:E1:76:DA:1B:6E Authority key identifier: 91:2A:B3:9F:C7:BB:CB:EF:1C:F2:67:E9:D3:F7:19:C9:A4:F0:A1:14 Certificate issuer: /CN=A91478C3/serialNumber=912AB39FC7BBCBEF1CF267E9D3F719C9A4F0A114 Certificate serial: 0DF7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kSqzn8e7y-8c8mfp0_cZyaTwoRQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91478C3/E3D9194C9D2C11E980221829C4F9AE02/kSqzn8e7y-8c8mfp0_cZyaTwoRQ.mft Manifest number: 0DF0 Signing time: Fri 22 Nov 2024 17:46:00 +0000 Manifest this update: Fri 22 Nov 2024 17:45:59 +0000 Manifest next update: Fri 29 Nov 2024 17:45:59 +0000 Files and hashes: 1: kSqzn8e7y-8c8mfp0_cZyaTwoRQ.crl (hash: dqmTV0YvY94tuBK/1OHdxIBFQGjDk/Cplx4x4r+gnEA=) 2: 36477FF69D2E11E99A95DC2AC4F9AE02.roa (hash: 3ATWfniZagbwXrzzSjogNdEqrQHRXjVZAQ8fSZkSCBY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91478C3/E3D9194C9D2C11E980221829C4F9AE02/kSqzn8e7y-8c8mfp0_cZyaTwoRQ.crl rsync://rpki.apnic.net/member_repository/A91478C3/E3D9194C9D2C11E980221829C4F9AE02/kSqzn8e7y-8c8mfp0_cZyaTwoRQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kSqzn8e7y-8c8mfp0_cZyaTwoRQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 17:45:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3575 (0xdf7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91478C3/serialNumber=912AB39FC7BBCBEF1CF267E9D3F719C9A4F0A114 Validity Not Before: Nov 22 17:45:59 2024 GMT Not After : Nov 29 17:45:59 2024 GMT Subject: CN=6740c358-e581 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:27:50:71:36:cb:fb:df:67:d5:47:bb:5f:db: 52:65:7a:7e:96:e0:ae:bb:cc:b4:e5:03:ce:fe:12: 7f:c9:0d:90:40:a7:20:59:d7:11:31:ba:6c:bf:0f: 9d:c8:8f:49:e6:11:ee:51:19:a7:d2:81:2c:91:0f: 36:c6:83:8b:8b:6e:a6:58:e5:91:db:3e:de:75:48: 6e:2e:7b:7c:b5:93:d1:82:27:e0:ea:64:92:ac:75: d9:36:0d:01:5d:34:1c:5f:47:ef:e6:f7:89:4a:bf: b2:b2:25:24:60:be:4a:1a:c7:85:4f:27:c7:9d:b7: cf:02:ec:91:05:79:20:e1:ab:eb:34:7f:7a:1b:81: 81:50:69:8a:87:08:f7:ee:ec:81:61:35:57:b4:ad: c7:93:61:44:db:f2:0f:e0:76:dc:5d:7a:75:96:07: d5:db:00:0b:bb:98:7b:8a:09:46:09:f4:c2:43:30: 71:24:b5:5a:9c:95:47:0c:ab:37:d4:92:75:79:a7: 70:8c:54:25:45:b8:80:5d:46:f1:5d:3c:b8:ef:c7: 35:98:47:9f:5d:ed:48:4a:2c:dc:b3:9e:89:c8:15: a9:de:7d:a2:70:3e:fa:f6:02:54:9c:d1:fd:46:10: cf:38:c0:d2:a3:ac:01:7b:ae:c5:0c:03:9c:1e:4c: 71:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:7F:DC:B3:29:15:A3:15:E8:77:33:24:13:28:0A:E1:76:DA:1B:6E X509v3 Authority Key Identifier: keyid:91:2A:B3:9F:C7:BB:CB:EF:1C:F2:67:E9:D3:F7:19:C9:A4:F0:A1:14 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91478C3/E3D9194C9D2C11E980221829C4F9AE02/kSqzn8e7y-8c8mfp0_cZyaTwoRQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kSqzn8e7y-8c8mfp0_cZyaTwoRQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91478C3/E3D9194C9D2C11E980221829C4F9AE02/kSqzn8e7y-8c8mfp0_cZyaTwoRQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 29:41:c7:cb:7d:93:a0:1d:86:e6:03:ce:25:3d:36:bd:40:06: d0:f7:31:50:8c:6d:77:c3:71:ea:a7:bd:ea:5e:8c:27:ed:df: fe:d6:89:b6:fd:6f:2f:82:f1:00:d2:0e:f2:3c:22:dc:81:d8: d1:f6:7d:8a:8f:4e:c1:11:62:cd:bd:0b:e8:e8:64:c2:76:0a: de:53:43:f8:20:c0:81:78:11:10:22:74:d8:d7:b5:cb:e2:15: 6b:cd:f4:ca:e7:c0:12:8c:7b:54:a9:65:2b:94:54:f6:0d:19: 12:05:e2:f2:c2:cf:42:57:1e:98:7f:a3:80:0d:dc:2c:1f:fe: 3d:5d:70:71:2c:69:03:c0:ce:4d:ac:3f:44:ca:a7:75:ff:7c: 08:d1:49:e2:0b:19:8a:d8:bd:4f:06:10:70:b9:7c:cf:9a:b6: 9e:b9:ec:3f:bc:b5:56:ce:ce:2e:90:05:bc:41:d5:fc:fa:5e: 87:b4:cb:4c:c9:16:fa:d6:c3:89:71:43:1a:bf:e4:1f:df:74: e3:0c:9d:57:66:b1:2e:76:f2:53:b1:58:bf:a9:a7:01:fc:a1: 5c:25:83:e8:67:67:04:b8:a2:43:a1:0e:85:0c:e9:10:3c:2f: d5:a9:a2:ee:a0:5e:83:15:35:8d:74:b3:ae:f6:69:b1:55:4f: 0f:5a:1f:b9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDfcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDc4QzMxMTAvBgNVBAUTKDkxMkFCMzlGQzdCQkNCRUYxQ0YyNjdFOUQzRjcxOUM5 QTRGMEExMTQwHhcNMjQxMTIyMTc0NTU5WhcNMjQxMTI5MTc0NTU5WjAYMRYwFAYD VQQDEw02NzQwYzM1OC1lNTgxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuydQcTbL+99n1Ue7X9tSZXp+luCuu8y05QPO/hJ/yQ2QQKcgWdcRMbpsvw+d yI9J5hHuURmn0oEskQ82xoOLi26mWOWR2z7edUhuLnt8tZPRgifg6mSSrHXZNg0B XTQcX0fv5veJSr+ysiUkYL5KGseFTyfHnbfPAuyRBXkg4avrNH96G4GBUGmKhwj3 7uyBYTVXtK3Hk2FE2/IP4HbcXXp1lgfV2wALu5h7iglGCfTCQzBxJLVanJVHDKs3 1JJ1eadwjFQlRbiAXUbxXTy478c1mEefXe1ISizcs56JyBWp3n2icD769gJUnNH9 RhDPOMDSo6wBe67FDAOcHkxx5QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBp/3LMp FaMV6HczJBMoCuF22htuMB8GA1UdIwQYMBaAFJEqs5/Hu8vvHPJn6dP3Gcmk8KEU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NzhDMy9FM0Q5MTk0QzlE MkMxMUU5ODAyMjE4MjlDNEY5QUUwMi9rU3F6bjhlN3ktOGM4bWZwMF9jWnlhVHdv UlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tTcXpuOGU3eS04YzhtZnAwX2NaeWFUd29SUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NzhDMy9FM0Q5MTk0QzlEMkMxMUU5ODAyMjE4MjlDNEY5QUUwMi9rU3F6bjhlN3kt OGM4bWZwMF9jWnlhVHdvUlEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQApQcfLfZOgHYbmA84lPTa9QAbQ9zFQjG13w3Hqp73qXown7d/+1om2 /W8vgvEA0g7yPCLcgdjR9n2Kj07BEWLNvQvo6GTCdgreU0P4IMCBeBEQInTY17XL 4hVrzfTK58ASjHtUqWUrlFT2DRkSBeLyws9CVx6Yf6OADdwsH/49XXBxLGkDwM5N rD9Eyqd1/3wI0UniCxmK2L1PBhBwuXzPmraeuew/vLVWzs4ukAW8QdX8+l6HtMtM yRb61sOJcUMav+Qf33TjDJ1XZrEudvJTsVi/qacB/KFcJYPoZ2cEuKJDoQ6FDOkQ PC/VqaLuoF6DFTWNdLOu9mmxVU8PWh+5 -----END CERTIFICATE-----Generated at Fri Nov 22 19:44:57 2024 by rpki-client on console-fra.rpki-client.org