$ rpki-client -vvf rpki.apnic.net/member_repository/A9172D91/EA672A5C19E711E8B243D57CC4F9AE02/4u3kp-qXJminlbJ7qdyH9LkNqJc.mft File: 4u3kp-qXJminlbJ7qdyH9LkNqJc.mft (raw, json) Hash identifier: hlu9r9MrCGc5/mivsAYJLCt7k4L239dlSLwolpfG4jo= Subject key identifier: 04:91:E0:B6:0A:1A:26:94:35:27:5E:49:63:B9:63:E3:CE:6A:B2:B4 Authority key identifier: E2:ED:E4:A7:EA:97:26:68:A7:95:B2:7B:A9:DC:87:F4:B9:0D:A8:97 Certificate issuer: /CN=A9172D91/serialNumber=E2EDE4A7EA972668A795B27BA9DC87F4B90DA897 Certificate serial: 160D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4u3kp-qXJminlbJ7qdyH9LkNqJc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9172D91/EA672A5C19E711E8B243D57CC4F9AE02/4u3kp-qXJminlbJ7qdyH9LkNqJc.mft Manifest number: 15D2 Signing time: Wed 20 Nov 2024 16:45:31 +0000 Manifest this update: Wed 20 Nov 2024 16:45:31 +0000 Manifest next update: Wed 27 Nov 2024 16:45:31 +0000 Files and hashes: 1: 4u3kp-qXJminlbJ7qdyH9LkNqJc.crl (hash: Ru0UfuOs1I6v6j2mTGz5NHh4goPhap6zSktdZOB/L/w=) 2: 854D304E0C9B11EC8433FE7AC4F9AE02.roa (hash: pak3Iy8E0gYpnvDkmWBebcI4LeVYUCjbRqic1+nKIXc=) 3: 9C79DBD23E7911EBBFFAC96BC4F9AE02.roa (hash: v+Ks9nZk5YSGi8jwz8W2ujGkO89h3nHyAUbCbrfDviU=) 4: 13E506A05F8D11EFA0D0E63EC4F9AE02.roa (hash: Bl23zpewApgpzjPo1Wxfa1uYD3V+asmFP19wOmf9DgQ=) 5: 2357FC145F8D11EF94E7303FC4F9AE02.roa (hash: Adsar2w8VAjS3SUaIO5TAhSv+c7iSEo6NtUlziAok5s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9172D91/EA672A5C19E711E8B243D57CC4F9AE02/4u3kp-qXJminlbJ7qdyH9LkNqJc.crl rsync://rpki.apnic.net/member_repository/A9172D91/EA672A5C19E711E8B243D57CC4F9AE02/4u3kp-qXJminlbJ7qdyH9LkNqJc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4u3kp-qXJminlbJ7qdyH9LkNqJc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 16:45:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5645 (0x160d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9172D91/serialNumber=E2EDE4A7EA972668A795B27BA9DC87F4B90DA897 Validity Not Before: Nov 20 16:45:31 2024 GMT Not After : Nov 27 16:45:31 2024 GMT Subject: CN=673e122b-6aea Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:6e:d0:e3:8f:52:d8:3e:c3:c1:18:65:d7:50: 41:5f:95:78:a8:65:b7:36:4f:ee:49:3f:99:50:34: 4b:38:9f:6e:10:e2:81:18:99:c0:4d:41:f0:e4:c8: a4:f1:e7:15:c1:c5:b6:c9:19:d9:9e:33:2d:97:8d: 5c:be:a5:00:ee:7d:88:f1:9a:15:13:91:ed:de:c9: 8e:9f:5f:f9:2d:de:70:31:5d:35:f6:91:63:07:9b: 9b:46:22:ff:2c:8d:32:56:f9:8d:74:1c:c4:9e:48: 15:79:b9:79:3e:bb:6f:e3:32:b2:62:36:be:be:8a: d7:4d:9c:ef:99:97:a0:8c:24:d1:fd:fd:55:b0:cc: f0:97:2d:30:9c:cb:79:d1:a6:da:1e:94:74:01:76: 0a:70:b9:2a:7b:ec:fd:2f:c7:e8:78:82:22:88:6f: 52:32:7e:5b:c2:3f:c1:66:8e:a6:80:f6:e2:2a:65: 0d:0d:66:93:fc:c0:17:6e:f2:d6:1d:a7:85:81:5f: 56:6b:3e:63:7d:7a:80:40:2c:e7:85:aa:10:be:6c: c3:cd:e7:a7:4b:66:1f:66:ac:f5:71:b5:66:f3:26: ed:d8:17:ec:07:e4:04:13:0f:e9:b6:5d:5e:f7:63: 01:c7:5b:fb:dc:ac:61:ee:b3:0a:39:9e:de:da:62: 3a:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:91:E0:B6:0A:1A:26:94:35:27:5E:49:63:B9:63:E3:CE:6A:B2:B4 X509v3 Authority Key Identifier: keyid:E2:ED:E4:A7:EA:97:26:68:A7:95:B2:7B:A9:DC:87:F4:B9:0D:A8:97 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9172D91/EA672A5C19E711E8B243D57CC4F9AE02/4u3kp-qXJminlbJ7qdyH9LkNqJc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4u3kp-qXJminlbJ7qdyH9LkNqJc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9172D91/EA672A5C19E711E8B243D57CC4F9AE02/4u3kp-qXJminlbJ7qdyH9LkNqJc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption af:cd:d9:65:e8:6f:af:5f:10:7a:6a:e0:d5:46:21:6d:31:d6: 17:0e:ef:86:8a:4f:1a:2a:bd:46:d1:b1:6c:7f:2c:f8:4c:c8: ee:a0:19:13:e6:b1:df:a8:f9:62:6d:ca:83:81:c1:55:84:9a: 70:81:b9:d1:ed:76:52:89:cb:3c:0b:51:dc:f3:0b:15:c7:2d: b1:45:bb:01:bf:70:9d:fa:b8:ed:e1:c9:b3:a5:d1:be:22:2f: 4a:01:49:29:ac:32:0f:15:72:8d:60:bf:23:50:b1:ec:26:06: 5e:93:99:9e:a5:bc:6c:bf:a5:7d:f2:3f:dc:a4:c5:26:81:a0: fd:6c:51:61:b0:1b:dc:d6:89:cd:5f:2d:e6:59:6a:d0:7e:31: 68:f7:d1:c8:a3:af:2b:0a:89:b3:57:e8:72:79:e1:48:f9:d6: fe:80:91:77:af:59:6d:6e:3a:8e:3a:3d:a0:42:fc:d7:56:f5: 80:13:69:c6:5a:cd:91:94:6c:d8:2c:8f:f4:25:4c:b4:c6:d8: 31:cd:6b:1f:b6:20:51:95:9e:fc:e6:bd:cf:5f:55:0a:a8:07: 20:00:d9:5a:a4:20:f6:97:51:c2:39:33:e2:a6:43:89:99:31: 07:62:96:5d:8f:3e:61:31:85:06:53:7a:af:eb:1a:1f:b3:e9: 00:d7:46:8c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFg0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzJEOTExMTAvBgNVBAUTKEUyRURFNEE3RUE5NzI2NjhBNzk1QjI3QkE5REM4N0Y0 QjkwREE4OTcwHhcNMjQxMTIwMTY0NTMxWhcNMjQxMTI3MTY0NTMxWjAYMRYwFAYD VQQDEw02NzNlMTIyYi02YWVhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx27Q449S2D7DwRhl11BBX5V4qGW3Nk/uST+ZUDRLOJ9uEOKBGJnATUHw5Mik 8ecVwcW2yRnZnjMtl41cvqUA7n2I8ZoVE5Ht3smOn1/5Ld5wMV019pFjB5ubRiL/ LI0yVvmNdBzEnkgVebl5Prtv4zKyYja+vorXTZzvmZegjCTR/f1VsMzwly0wnMt5 0abaHpR0AXYKcLkqe+z9L8foeIIiiG9SMn5bwj/BZo6mgPbiKmUNDWaT/MAXbvLW HaeFgV9Waz5jfXqAQCznhaoQvmzDzeenS2YfZqz1cbVm8ybt2BfsB+QEEw/ptl1e 92MBx1v73Kxh7rMKOZ7e2mI6sQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFASR4LYK GiaUNSdeSWO5Y+POarK0MB8GA1UdIwQYMBaAFOLt5KfqlyZop5Wye6nch/S5DaiX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MkQ5MS9FQTY3MkE1QzE5 RTcxMUU4QjI0M0Q1N0NDNEY5QUUwMi80dTNrcC1xWEptaW5sYko3cWR5SDlMa05x SmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzR1M2twLXFYSm1pbmxiSjdxZHlIOUxrTnFKYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MkQ5MS9FQTY3MkE1QzE5RTcxMUU4QjI0M0Q1N0NDNEY5QUUwMi80dTNrcC1xWEpt aW5sYko3cWR5SDlMa05xSmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCvzdll6G+vXxB6auDVRiFtMdYXDu+Gik8aKr1G0bFsfyz4TMjuoBkT 5rHfqPlibcqDgcFVhJpwgbnR7XZSics8C1Hc8wsVxy2xRbsBv3Cd+rjt4cmzpdG+ Ii9KAUkprDIPFXKNYL8jULHsJgZek5mepbxsv6V98j/cpMUmgaD9bFFhsBvc1onN Xy3mWWrQfjFo99HIo68rComzV+hyeeFI+db+gJF3r1ltbjqOOj2gQvzXVvWAE2nG Ws2RlGzYLI/0JUy0xtgxzWsftiBRlZ785r3PX1UKqAcgANlapCD2l1HCOTPipkOJ mTEHYpZdjz5hMYUGU3qv6xofs+kA10aM -----END CERTIFICATE-----Generated at Wed Nov 20 18:44:59 2024 by rpki-client on console-fra.rpki-client.org