$ rpki-client -vvf rpki.apnic.net/member_repository/A91764E1/6231A02EC67D11EE87027B3AC4F9AE02/cOiFV7DAgsmwbs9ZuPKKdwOmOAE.mft File: cOiFV7DAgsmwbs9ZuPKKdwOmOAE.mft (raw, json) Hash identifier: X/FyTGMrG3jq3x/28SNcXvpseuj5oUZ8M5ay+z/fYDs= Subject key identifier: 32:1E:54:90:CD:87:E3:14:D7:E1:00:D9:55:2F:D9:4A:69:90:93:EA Authority key identifier: 70:E8:85:57:B0:C0:82:C9:B0:6E:CF:59:B8:F2:8A:77:03:A6:38:01 Certificate issuer: /CN=A91764E1/serialNumber=70E88557B0C082C9B06ECF59B8F28A7703A63801 Certificate serial: 93 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/cOiFV7DAgsmwbs9ZuPKKdwOmOAE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91764E1/6231A02EC67D11EE87027B3AC4F9AE02/cOiFV7DAgsmwbs9ZuPKKdwOmOAE.mft Manifest number: 92 Signing time: Thu 21 Nov 2024 04:34:12 +0000 Manifest this update: Thu 21 Nov 2024 04:34:12 +0000 Manifest next update: Thu 28 Nov 2024 04:34:12 +0000 Files and hashes: 1: cOiFV7DAgsmwbs9ZuPKKdwOmOAE.crl (hash: rWC3Fxm9C3nFDg85XCdnGIVbDLb6hvmY10ao8keUnqE=) 2: 0C708FB4C67E11EE87B34958C4F9AE02.roa (hash: jp89TTV8B+141e9uQTYuaE2J8FxHwbPZjEdj0Ee+U6M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91764E1/6231A02EC67D11EE87027B3AC4F9AE02/cOiFV7DAgsmwbs9ZuPKKdwOmOAE.crl rsync://rpki.apnic.net/member_repository/A91764E1/6231A02EC67D11EE87027B3AC4F9AE02/cOiFV7DAgsmwbs9ZuPKKdwOmOAE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/cOiFV7DAgsmwbs9ZuPKKdwOmOAE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 02:50:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 147 (0x93) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91764E1/serialNumber=70E88557B0C082C9B06ECF59B8F28A7703A63801 Validity Not Before: Nov 21 04:34:12 2024 GMT Not After : Nov 28 04:34:12 2024 GMT Subject: CN=673eb844-ccd5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:b4:c0:6a:a4:f1:ab:fd:65:85:42:e7:7a:35: 1d:41:e5:51:86:fd:66:f0:54:7c:cc:b8:ca:96:6d: a7:a2:c8:f6:08:51:7c:a9:ce:29:20:54:84:4d:02: d7:7b:28:12:b0:da:bd:a5:15:af:1a:46:bf:10:12: 3e:40:f0:0b:9f:29:3c:52:13:59:45:47:f2:d0:33: 96:d0:c8:08:3b:ed:e7:7c:7d:b1:0f:ea:21:d1:96: 54:ad:dc:3b:af:4e:b6:2a:0d:9e:df:a3:51:ee:d8: 5b:49:24:94:e8:7e:cb:4d:8f:21:12:a0:e9:64:f9: 8f:18:89:01:9b:49:b9:34:93:aa:8f:cb:2a:37:67: 33:0d:fe:f6:df:85:b7:0a:f4:79:d3:48:5c:2a:ab: 36:a7:aa:a4:1d:7b:66:8a:87:ce:38:82:a5:84:d4: 55:66:98:dd:a4:6c:d1:35:79:ed:39:0b:15:33:dd: ed:67:6b:e4:84:84:65:06:d8:cb:7e:11:5c:90:8a: 90:6e:18:2e:69:81:e2:ed:87:96:74:16:c2:61:62: 01:be:07:53:47:91:0f:a9:67:76:2d:0c:4b:72:9b: 01:fc:06:b5:de:51:ee:b0:20:6c:aa:6b:2f:15:d2: dd:41:9a:a1:1a:53:44:91:48:2e:c7:22:b3:1c:4e: 71:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:1E:54:90:CD:87:E3:14:D7:E1:00:D9:55:2F:D9:4A:69:90:93:EA X509v3 Authority Key Identifier: keyid:70:E8:85:57:B0:C0:82:C9:B0:6E:CF:59:B8:F2:8A:77:03:A6:38:01 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91764E1/6231A02EC67D11EE87027B3AC4F9AE02/cOiFV7DAgsmwbs9ZuPKKdwOmOAE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/cOiFV7DAgsmwbs9ZuPKKdwOmOAE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91764E1/6231A02EC67D11EE87027B3AC4F9AE02/cOiFV7DAgsmwbs9ZuPKKdwOmOAE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 88:d6:05:68:eb:4d:f1:67:93:df:9c:f9:79:19:6e:8c:31:83: 6e:ad:ee:0e:5d:4d:15:bc:a8:61:63:04:53:ae:c1:e1:9e:bb: f9:24:11:a3:60:3c:ee:89:76:d5:55:09:3e:3e:84:31:16:8d: f4:5b:51:4f:3b:2a:78:20:7e:a2:66:93:d6:61:01:5e:b7:4a: d6:47:70:eb:56:06:56:f7:7e:6d:ae:fb:c9:5f:6e:ca:c5:34: 68:93:66:ac:fc:c2:3b:6d:13:7f:2b:3e:85:12:7f:a5:02:0a: d7:93:25:3f:de:e9:e5:5e:f2:2e:ea:45:ec:8f:e8:59:b7:a2: 5d:a2:62:7e:c8:69:8b:80:73:4a:89:29:18:e2:16:b8:27:10: 9b:c0:57:df:2b:42:44:08:97:16:06:a3:69:f8:97:46:54:ab: ea:e3:e6:2c:8f:00:c8:ae:62:4e:13:9a:63:8b:b8:97:09:8c: 2b:21:98:3a:d8:d6:9c:11:ad:2a:b3:30:39:a0:76:d1:79:3e: e6:d8:9d:c2:bd:cb:f0:8d:2c:70:69:6b:1d:7a:79:73:65:82: 2d:8b:7c:24:11:b6:c4:71:68:c4:99:09:44:62:04:e6:03:d0: 5d:7c:63:d4:e4:1a:c8:e0:aa:c5:6b:b4:57:45:24:aa:8a:c2: 45:71:f1:d1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzY0RTExMTAvBgNVBAUTKDcwRTg4NTU3QjBDMDgyQzlCMDZFQ0Y1OUI4RjI4QTc3 MDNBNjM4MDEwHhcNMjQxMTIxMDQzNDEyWhcNMjQxMTI4MDQzNDEyWjAYMRYwFAYD VQQDEw02NzNlYjg0NC1jY2Q1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyrTAaqTxq/1lhULnejUdQeVRhv1m8FR8zLjKlm2nosj2CFF8qc4pIFSETQLX eygSsNq9pRWvGka/EBI+QPALnyk8UhNZRUfy0DOW0MgIO+3nfH2xD+oh0ZZUrdw7 r062Kg2e36NR7thbSSSU6H7LTY8hEqDpZPmPGIkBm0m5NJOqj8sqN2czDf7234W3 CvR500hcKqs2p6qkHXtmiofOOIKlhNRVZpjdpGzRNXntOQsVM93tZ2vkhIRlBtjL fhFckIqQbhguaYHi7YeWdBbCYWIBvgdTR5EPqWd2LQxLcpsB/Aa13lHusCBsqmsv FdLdQZqhGlNEkUguxyKzHE5xEQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDIeVJDN h+MU1+EA2VUv2UppkJPqMB8GA1UdIwQYMBaAFHDohVewwILJsG7PWbjyincDpjgB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NjRFMS82MjMxQTAyRUM2 N0QxMUVFODcwMjdCM0FDNEY5QUUwMi9jT2lGVjdEQWdzbXdiczladVBLS2R3T21P QUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2NPaUZWN0RBZ3Ntd2JzOVp1UEtLZHdPbU9BRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NjRFMS82MjMxQTAyRUM2N0QxMUVFODcwMjdCM0FDNEY5QUUwMi9jT2lGVjdEQWdz bXdiczladVBLS2R3T21PQUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCI1gVo603xZ5PfnPl5GW6MMYNure4OXU0VvKhhYwRTrsHhnrv5JBGj YDzuiXbVVQk+PoQxFo30W1FPOyp4IH6iZpPWYQFet0rWR3DrVgZW935trvvJX27K xTRok2as/MI7bRN/Kz6FEn+lAgrXkyU/3unlXvIu6kXsj+hZt6JdomJ+yGmLgHNK iSkY4ha4JxCbwFffK0JECJcWBqNp+JdGVKvq4+YsjwDIrmJOE5pji7iXCYwrIZg6 2NacEa0qszA5oHbReT7m2J3CvcvwjSxwaWsdenlzZYIti3wkEbbEcWjEmQlEYgTm A9BdfGPU5BrI4KrFa7RXRSSqisJFcfHR -----END CERTIFICATE-----Generated at Thu Nov 21 06:50:17 2024 by rpki-client on console-fra.rpki-client.org