$ rpki-client -vvf rpki.apnic.net/member_repository/A917530D/DD7E091CB64B11EE91463760C4F9AE02/s5kvDUm69qNv2mWOW0WUaVIeW0Q.mft File: s5kvDUm69qNv2mWOW0WUaVIeW0Q.mft (raw, json) Hash identifier: i431Z8vEIUCCxx8raH9LeioeHt9hB45uu8XkeJSWhqE= Subject key identifier: 5F:79:74:60:F4:F6:43:A1:9E:8C:B3:2E:18:43:9A:BC:E8:EC:74:8A Authority key identifier: B3:99:2F:0D:49:BA:F6:A3:6F:DA:65:8E:5B:45:94:69:52:1E:5B:44 Certificate issuer: /CN=A917530D/serialNumber=B3992F0D49BAF6A36FDA658E5B459469521E5B44 Certificate serial: AB Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/s5kvDUm69qNv2mWOW0WUaVIeW0Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917530D/DD7E091CB64B11EE91463760C4F9AE02/s5kvDUm69qNv2mWOW0WUaVIeW0Q.mft Manifest number: A5 Signing time: Thu 21 Nov 2024 04:26:14 +0000 Manifest this update: Thu 21 Nov 2024 04:26:14 +0000 Manifest next update: Thu 28 Nov 2024 04:26:14 +0000 Files and hashes: 1: s5kvDUm69qNv2mWOW0WUaVIeW0Q.crl (hash: mv1CpnLKJNmKZ3e8OplMgyWs1AJgWtSAm/Lk+92yD+A=) 2: CEC3498AA67A11EFA2928C76C4F9AE02.roa (hash: rKfFnOy+XtC6BSsi/sLzyDlJ3V5ECCrJJ77H6TIINX8=) 3: A97CBD42A06611EFA888B57DC4F9AE02.roa (hash: 2eDNp0VKihD/HV+NCqOt2diAhbK7NfILsaTbYn0bFks=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917530D/DD7E091CB64B11EE91463760C4F9AE02/s5kvDUm69qNv2mWOW0WUaVIeW0Q.crl rsync://rpki.apnic.net/member_repository/A917530D/DD7E091CB64B11EE91463760C4F9AE02/s5kvDUm69qNv2mWOW0WUaVIeW0Q.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/s5kvDUm69qNv2mWOW0WUaVIeW0Q.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 02:50:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 171 (0xab) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917530D/serialNumber=B3992F0D49BAF6A36FDA658E5B459469521E5B44 Validity Not Before: Nov 21 04:26:14 2024 GMT Not After : Nov 28 04:26:14 2024 GMT Subject: CN=673eb666-286c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:b1:94:93:41:17:ad:7f:c8:2a:0f:95:67:3b: b4:6a:a7:86:bd:73:24:6c:d6:b6:8d:ed:f5:74:31: aa:42:3b:9d:96:0a:e5:6b:c7:34:fe:2e:ac:dc:98: 48:f1:d6:1b:62:bc:76:40:23:e5:71:6f:ae:01:dd: 63:90:cb:f5:5c:bb:e9:d1:70:ea:e4:a2:ad:41:9f: f2:70:bd:cb:d9:b0:cd:f1:09:37:93:7e:a9:45:1c: ae:99:3e:c5:14:95:07:0d:8b:b3:e6:8c:0b:5f:df: fc:21:40:35:27:a5:89:b5:63:9d:6a:bd:5f:0a:c7: b1:8c:82:8a:80:98:4e:52:90:c2:a1:6e:28:85:85: 67:87:7e:ae:ea:18:98:fa:2f:61:c8:28:4e:38:22: 1b:60:41:91:1b:b0:cf:9a:81:8f:7a:c4:1b:67:ff: e5:f5:a8:6b:3f:e5:2f:9c:bc:d6:c4:55:d2:f1:7c: 73:49:40:33:fc:dd:1b:42:fb:de:c2:b9:58:c2:c2: 8a:74:e2:75:98:91:ba:78:09:c9:86:87:0f:a6:96: df:99:d8:3c:64:1d:41:50:53:e2:90:fa:0b:a8:bd: d2:ac:7a:35:e1:cd:fe:19:32:70:90:76:ea:a1:74: 75:52:e5:1f:75:a5:5d:3b:ef:95:3b:b0:fc:74:b7: f9:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:79:74:60:F4:F6:43:A1:9E:8C:B3:2E:18:43:9A:BC:E8:EC:74:8A X509v3 Authority Key Identifier: keyid:B3:99:2F:0D:49:BA:F6:A3:6F:DA:65:8E:5B:45:94:69:52:1E:5B:44 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917530D/DD7E091CB64B11EE91463760C4F9AE02/s5kvDUm69qNv2mWOW0WUaVIeW0Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/s5kvDUm69qNv2mWOW0WUaVIeW0Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917530D/DD7E091CB64B11EE91463760C4F9AE02/s5kvDUm69qNv2mWOW0WUaVIeW0Q.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5e:04:e1:8b:2f:26:68:97:b7:e3:36:a6:b1:5e:3b:dd:98:4f: 2d:c7:a5:c0:8e:58:7a:2c:84:b8:89:47:9d:48:e1:e0:3c:6a: 48:01:90:7f:7c:ce:49:ad:4d:03:86:0d:21:1e:cf:01:ad:d5: d8:40:0a:a1:df:7e:3e:3f:dc:72:45:f5:51:77:24:7f:e5:83: 2a:79:ca:7d:0e:e6:80:15:cb:f1:f1:7a:9f:32:3c:2e:cf:d8: ea:df:8e:70:ca:1b:89:25:c6:39:c8:7f:ec:d6:44:60:b8:cb: dd:fa:2b:e2:f1:b7:84:28:ca:eb:b9:04:6e:ff:bf:c6:5e:4e: 17:bb:6a:e2:5f:c7:3c:fc:25:60:d7:0f:c8:c7:56:24:1d:41: f9:5f:11:d1:1a:ec:98:75:62:6d:c4:86:16:7f:ee:32:c5:fb: 0e:c1:52:21:a0:e8:48:f0:2a:67:1e:77:43:f5:eb:53:b4:d4: f5:1f:50:ba:b9:ad:f4:dd:69:64:f4:b4:f5:30:03:4e:ba:7b: 45:2f:e6:54:73:c1:1a:7d:d2:68:80:88:15:6c:95:4a:a7:a8: 89:52:36:de:5b:64:32:65:ea:94:41:3f:89:db:25:dc:41:f9: 53:ab:12:58:39:81:a0:89:22:5e:a2:2d:04:7c:f7:b4:52:6f: e2:21:ea:bd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzUzMEQxMTAvBgNVBAUTKEIzOTkyRjBENDlCQUY2QTM2RkRBNjU4RTVCNDU5NDY5 NTIxRTVCNDQwHhcNMjQxMTIxMDQyNjE0WhcNMjQxMTI4MDQyNjE0WjAYMRYwFAYD VQQDEw02NzNlYjY2Ni0yODZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArLGUk0EXrX/IKg+VZzu0aqeGvXMkbNa2je31dDGqQjudlgrla8c0/i6s3JhI 8dYbYrx2QCPlcW+uAd1jkMv1XLvp0XDq5KKtQZ/ycL3L2bDN8Qk3k36pRRyumT7F FJUHDYuz5owLX9/8IUA1J6WJtWOdar1fCsexjIKKgJhOUpDCoW4ohYVnh36u6hiY +i9hyChOOCIbYEGRG7DPmoGPesQbZ//l9ahrP+UvnLzWxFXS8XxzSUAz/N0bQvve wrlYwsKKdOJ1mJG6eAnJhocPppbfmdg8ZB1BUFPikPoLqL3SrHo14c3+GTJwkHbq oXR1UuUfdaVdO++VO7D8dLf5nQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFF95dGD0 9kOhnoyzLhhDmrzo7HSKMB8GA1UdIwQYMBaAFLOZLw1Juvajb9pljltFlGlSHltE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NTMwRC9ERDdFMDkxQ0I2 NEIxMUVFOTE0NjM3NjBDNEY5QUUwMi9zNWt2RFVtNjlxTnYybVdPVzBXVWFWSWVX MFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3M1a3ZEVW02OXFOdjJtV09XMFdVYVZJZVcwUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NTMwRC9ERDdFMDkxQ0I2NEIxMUVFOTE0NjM3NjBDNEY5QUUwMi9zNWt2RFVtNjlx TnYybVdPVzBXVWFWSWVXMFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBeBOGLLyZol7fjNqaxXjvdmE8tx6XAjlh6LIS4iUedSOHgPGpIAZB/ fM5JrU0Dhg0hHs8BrdXYQAqh334+P9xyRfVRdyR/5YMqecp9DuaAFcvx8XqfMjwu z9jq345wyhuJJcY5yH/s1kRguMvd+ivi8beEKMrruQRu/7/GXk4Xu2riX8c8/CVg 1w/Ix1YkHUH5XxHRGuyYdWJtxIYWf+4yxfsOwVIhoOhI8CpnHndD9etTtNT1H1C6 ua303Wlk9LT1MANOuntFL+ZUc8EafdJogIgVbJVKp6iJUjbeW2QyZeqUQT+J2yXc QflTqxJYOYGgiSJeoi0EfPe0Um/iIeq9 -----END CERTIFICATE-----Generated at Thu Nov 21 05:05:58 2024 by rpki-client on console-fra.rpki-client.org