$ rpki-client -vvf rpki.apnic.net/member_repository/A9157DA9/423E1AD45A1811EFBD477338C4F9AE02/71OR8qIt1l9IQxoyJt3MZbdllqk.mft File: 71OR8qIt1l9IQxoyJt3MZbdllqk.mft (raw, json) Hash identifier: EJtozvpOlnY/EyHIlNQkmila2OHdAmOnxFSlmK0CApo= Subject key identifier: 53:E0:04:42:A0:80:06:7F:93:D4:86:B1:BC:E5:30:E7:69:15:CD:38 Authority key identifier: EF:53:91:F2:A2:2D:D6:5F:48:43:1A:32:26:DD:CC:65:B7:65:96:A9 Certificate issuer: /CN=A9157DA9/serialNumber=EF5391F2A22DD65F48431A3226DDCC65B76596A9 Certificate serial: 3A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/71OR8qIt1l9IQxoyJt3MZbdllqk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9157DA9/423E1AD45A1811EFBD477338C4F9AE02/71OR8qIt1l9IQxoyJt3MZbdllqk.mft Manifest number: 38 Signing time: Sat 23 Nov 2024 05:28:29 +0000 Manifest this update: Sat 23 Nov 2024 05:28:29 +0000 Manifest next update: Sat 30 Nov 2024 05:28:29 +0000 Files and hashes: 1: 71OR8qIt1l9IQxoyJt3MZbdllqk.crl (hash: crAq4sSocH9MYvYt7nUA1OEir0QJrsysE5f+y0nAyhw=) 2: 897F96FC5A1811EFAF24E138C4F9AE02.roa (hash: V/66FKVQueBWCxe2q60voG68SskFvIkojTU44XWkp4w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9157DA9/423E1AD45A1811EFBD477338C4F9AE02/71OR8qIt1l9IQxoyJt3MZbdllqk.crl rsync://rpki.apnic.net/member_repository/A9157DA9/423E1AD45A1811EFBD477338C4F9AE02/71OR8qIt1l9IQxoyJt3MZbdllqk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/71OR8qIt1l9IQxoyJt3MZbdllqk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58 (0x3a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9157DA9/serialNumber=EF5391F2A22DD65F48431A3226DDCC65B76596A9 Validity Not Before: Nov 23 05:28:29 2024 GMT Not After : Nov 30 05:28:29 2024 GMT Subject: CN=674167fd-40a8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:da:f3:15:17:90:f5:ff:81:94:56:bd:53:69: 0f:2b:c0:31:64:b4:3e:50:87:ac:26:cb:59:1b:4c: 4b:85:46:59:9c:f9:1f:e4:f0:c2:cc:52:15:24:df: 52:77:00:94:74:b1:1e:f2:34:40:5f:4a:1f:fd:c9: 74:26:14:b6:a9:64:49:f3:ea:b5:2c:35:f6:18:e1: 9e:fe:40:85:71:db:b4:dd:01:3a:9d:cc:01:38:5a: 4f:64:f1:fb:22:01:4e:61:28:9f:1e:e7:da:1b:69: 34:b6:b5:d1:0b:82:b6:54:14:4c:64:b0:29:20:1d: b7:31:4d:79:cc:41:b9:af:72:77:a2:23:9d:d0:fc: f0:e8:32:6a:93:a1:55:11:eb:15:86:8a:e5:a6:13: 90:54:b5:75:83:62:22:8b:91:b1:a2:22:02:15:58: 85:e4:ce:96:fc:33:65:06:f2:1c:c8:81:e5:12:d9: 60:c4:e2:e8:ed:9c:8b:54:8a:76:73:9f:03:cd:aa: 30:7f:8a:a8:c7:bd:29:f7:ae:02:48:95:03:27:d0: dc:81:06:b5:54:2c:6c:35:aa:7e:b7:ee:40:06:99: 06:bd:ba:21:9c:4d:38:82:8e:36:fb:ce:b1:4b:1e: 84:ff:d7:b9:39:fc:c8:60:29:46:9e:e8:6e:67:f2: 74:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:E0:04:42:A0:80:06:7F:93:D4:86:B1:BC:E5:30:E7:69:15:CD:38 X509v3 Authority Key Identifier: keyid:EF:53:91:F2:A2:2D:D6:5F:48:43:1A:32:26:DD:CC:65:B7:65:96:A9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9157DA9/423E1AD45A1811EFBD477338C4F9AE02/71OR8qIt1l9IQxoyJt3MZbdllqk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/71OR8qIt1l9IQxoyJt3MZbdllqk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9157DA9/423E1AD45A1811EFBD477338C4F9AE02/71OR8qIt1l9IQxoyJt3MZbdllqk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 46:7b:32:38:61:bf:51:1a:f1:7d:a8:8b:50:88:14:18:04:f8: cf:9f:28:a5:ba:a7:98:78:69:1f:97:8e:3e:4a:09:59:9c:0f: 55:82:63:8a:47:30:69:f9:2d:51:64:49:8f:54:da:05:9e:f5: c9:8f:ca:52:64:78:fa:83:5e:81:7a:d4:15:16:9d:89:cd:4f: ca:15:a9:c1:e2:87:0b:d3:ab:c3:23:19:b1:33:e3:59:91:5e: 5c:5b:37:02:e3:90:dd:54:fb:47:2c:bd:5f:59:ad:7c:13:1e: ad:1b:91:3a:ec:3a:e4:e7:cb:37:ca:72:ce:8a:ac:de:c1:bd: eb:7c:43:5e:8f:1c:54:b7:7a:ce:0a:3e:5b:5a:5e:25:62:20: 45:4b:ad:24:9e:9b:13:e7:dc:33:06:c1:92:62:bf:b4:39:1c: 24:05:8f:d3:f6:cb:91:52:b5:f1:63:93:cc:8f:44:46:42:35: 6a:0f:8b:e6:60:35:fd:bf:0b:d2:7b:ba:24:34:b1:55:88:ea: 1a:9c:93:24:3d:99:73:15:4c:fd:83:97:7e:e4:2a:61:a4:ff: b7:73:c2:91:18:48:d5:1d:8a:76:7e:2f:99:d9:39:ea:69:56: 20:87:22:7e:ee:c8:e9:f5:b1:9a:28:78:2c:b6:95:ca:f1:cb: 12:89:7f:4b -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBOjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1 N0RBOTExMC8GA1UEBRMoRUY1MzkxRjJBMjJERDY1RjQ4NDMxQTMyMjZERENDNjVC NzY1OTZBOTAeFw0yNDExMjMwNTI4MjlaFw0yNDExMzAwNTI4MjlaMBgxFjAUBgNV BAMTDTY3NDE2N2ZkLTQwYTgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCv2vMVF5D1/4GUVr1TaQ8rwDFktD5Qh6wmy1kbTEuFRlmc+R/k8MLMUhUk31J3 AJR0sR7yNEBfSh/9yXQmFLapZEnz6rUsNfYY4Z7+QIVx27TdATqdzAE4Wk9k8fsi AU5hKJ8e59obaTS2tdELgrZUFExksCkgHbcxTXnMQbmvcneiI53Q/PDoMmqToVUR 6xWGiuWmE5BUtXWDYiKLkbGiIgIVWIXkzpb8M2UG8hzIgeUS2WDE4ujtnItUinZz nwPNqjB/iqjHvSn3rgJIlQMn0NyBBrVULGw1qn637kAGmQa9uiGcTTiCjjb7zrFL HoT/17k5/MhgKUae6G5n8nQ1AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUU+AEQqCA Bn+T1IaxvOUw52kVzTgwHwYDVR0jBBgwFoAU71OR8qIt1l9IQxoyJt3MZbdllqkw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTU3REE5LzQyM0UxQUQ0NUEx ODExRUZCRDQ3NzMzOEM0RjlBRTAyLzcxT1I4cUl0MWw5SVF4b3lKdDNNWmJkbGxx ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvNzFPUjhxSXQxbDlJUXhveUp0M01aYmRsbHFrLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTU3 REE5LzQyM0UxQUQ0NUExODExRUZCRDQ3NzMzOEM0RjlBRTAyLzcxT1I4cUl0MWw5 SVF4b3lKdDNNWmJkbGxxay5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAEZ7Mjhhv1Ea8X2oi1CIFBgE+M+fKKW6p5h4aR+Xjj5KCVmcD1WCY4pH MGn5LVFkSY9U2gWe9cmPylJkePqDXoF61BUWnYnNT8oVqcHihwvTq8MjGbEz41mR XlxbNwLjkN1U+0csvV9ZrXwTHq0bkTrsOuTnyzfKcs6KrN7Bvet8Q16PHFS3es4K PltaXiViIEVLrSSemxPn3DMGwZJiv7Q5HCQFj9P2y5FStfFjk8yPREZCNWoPi+Zg Nf2/C9J7uiQ0sVWI6hqckyQ9mXMVTP2Dl37kKmGk/7dzwpEYSNUdinZ+L5nZOepp ViCHIn7uyOn1sZooeCy2lcrxyxKJf0s= -----END CERTIFICATE-----Generated at Sat Nov 23 06:21:25 2024 by rpki-client on console-fra.rpki-client.org