$ rpki-client -vvf rpki.apnic.net/member_repository/A917A362/7CBA4C4C726E11EE9FE35061C4F9AE02/5sRskdEtWFoSsFVpYh3uGtP4kI4.mft File: 5sRskdEtWFoSsFVpYh3uGtP4kI4.mft (raw, json) Hash identifier: evlOJtRySPmn43VjLJstAZO8rLKvFkoUSm2LVW28lqA= Subject key identifier: 86:DA:D4:59:74:FC:23:C5:24:D3:AE:75:09:E6:3C:D1:9B:7E:2F:E8 Authority key identifier: E6:C4:6C:91:D1:2D:58:5A:12:B0:55:69:62:1D:EE:1A:D3:F8:90:8E Certificate issuer: /CN=A917A362/serialNumber=E6C46C91D12D585A12B05569621DEE1AD3F8908E Certificate serial: D1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5sRskdEtWFoSsFVpYh3uGtP4kI4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917A362/7CBA4C4C726E11EE9FE35061C4F9AE02/5sRskdEtWFoSsFVpYh3uGtP4kI4.mft Manifest number: CE Signing time: Sat 23 Nov 2024 03:50:16 +0000 Manifest this update: Sat 23 Nov 2024 03:50:15 +0000 Manifest next update: Sat 30 Nov 2024 03:50:15 +0000 Files and hashes: 1: 5sRskdEtWFoSsFVpYh3uGtP4kI4.crl (hash: 7FVoCTO2CTS7zi4MTSY3ysvM5QvggYA5FyWFJZpEpyo=) 2: 1B299892726F11EEB1217365C4F9AE02.roa (hash: 6cDYRuNREDOcfjp20jGUwg25me6jxHxjZr5vSBlmhG8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917A362/7CBA4C4C726E11EE9FE35061C4F9AE02/5sRskdEtWFoSsFVpYh3uGtP4kI4.crl rsync://rpki.apnic.net/member_repository/A917A362/7CBA4C4C726E11EE9FE35061C4F9AE02/5sRskdEtWFoSsFVpYh3uGtP4kI4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5sRskdEtWFoSsFVpYh3uGtP4kI4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 209 (0xd1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917A362/serialNumber=E6C46C91D12D585A12B05569621DEE1AD3F8908E Validity Not Before: Nov 23 03:50:15 2024 GMT Not After : Nov 30 03:50:15 2024 GMT Subject: CN=674150f7-0dc9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:07:67:cc:9b:28:89:32:f0:a5:6b:25:76:a8: 94:23:f9:7c:4e:3c:35:64:44:4e:12:ce:c5:7c:40: fd:e0:1b:43:82:cf:88:91:5d:5c:2c:cc:c1:a4:85: 78:29:5c:b8:2b:da:c2:f5:1b:25:10:79:a0:c9:b9: 96:d6:0d:39:a4:ff:44:9d:8c:cc:79:82:a6:e0:60: e8:b3:06:b5:6b:c7:64:92:0f:68:10:72:3c:1e:35: 7d:bf:2e:38:9e:b8:b7:44:f3:54:6f:0d:d7:47:e5: 4c:39:45:e8:7f:6c:51:b2:62:ad:67:46:0f:26:1f: 68:ab:3c:a1:e7:f1:d7:9f:30:d2:52:60:c7:a0:2c: 3e:f7:8c:fd:de:9b:aa:92:62:b2:f0:ed:60:4e:1d: bc:8a:70:9b:bb:f1:e4:30:71:81:b7:36:1d:9a:2a: 7b:38:f3:bf:39:59:9b:1c:68:85:49:b3:2a:2a:d0: 5a:33:fc:a1:b8:27:82:07:e7:b4:0a:6c:e2:63:bc: f9:88:c0:bf:04:9a:0e:44:87:d0:e4:91:11:de:f0: b1:08:a2:0d:65:39:d9:ed:8a:12:10:9a:cd:46:85: 36:e3:5c:2e:da:69:82:1a:1a:bd:f0:d7:52:b3:f3: 5e:96:90:05:7d:19:8a:1a:7f:66:79:2f:7c:de:46: bc:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:DA:D4:59:74:FC:23:C5:24:D3:AE:75:09:E6:3C:D1:9B:7E:2F:E8 X509v3 Authority Key Identifier: keyid:E6:C4:6C:91:D1:2D:58:5A:12:B0:55:69:62:1D:EE:1A:D3:F8:90:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917A362/7CBA4C4C726E11EE9FE35061C4F9AE02/5sRskdEtWFoSsFVpYh3uGtP4kI4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5sRskdEtWFoSsFVpYh3uGtP4kI4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917A362/7CBA4C4C726E11EE9FE35061C4F9AE02/5sRskdEtWFoSsFVpYh3uGtP4kI4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bd:8a:24:eb:b7:f2:bf:83:be:2e:88:d0:10:a8:88:21:28:50: 19:d3:8d:60:a4:95:4c:eb:ee:de:ac:25:16:79:6a:b3:23:3a: e7:00:15:39:7d:bb:c0:fb:74:4a:e8:3c:33:4f:1c:cf:17:9a: 8b:12:12:21:92:a8:58:86:fc:b2:ed:90:ad:4d:a6:a6:3e:77: 5b:cb:c1:34:f7:8b:e7:4c:fc:8e:21:c5:32:a3:50:8f:1f:7d: 33:16:55:31:aa:4d:60:2f:26:3b:ac:09:ba:c6:20:41:d7:b2: 48:e6:a1:6a:f9:6b:4f:44:b3:b5:f6:3f:53:2b:b0:8c:fc:45: 28:6e:dc:4b:9f:e1:99:d1:7c:7a:4a:4f:6d:0a:38:6a:8f:da: b3:56:9a:75:04:7b:a3:af:70:dd:97:9f:1a:e6:ee:79:7d:30: fb:ab:47:fc:e8:22:a3:3a:29:9e:c8:11:6c:b9:77:0c:d5:b7: 20:49:a5:93:23:7e:bd:c5:69:db:1f:bf:e6:fe:58:38:7f:9e: b1:8e:a5:60:d1:9f:49:4a:8f:a3:92:10:fb:86:44:1f:93:b5: 97:f0:78:54:a3:30:5f:2d:f1:6d:e5:1e:3a:88:c9:6d:3e:ca: 67:ce:cf:b4:3f:88:75:18:33:60:4c:9f:37:63:61:31:8a:45: 5e:7c:79:e7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICANEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0EzNjIxMTAvBgNVBAUTKEU2QzQ2QzkxRDEyRDU4NUExMkIwNTU2OTYyMURFRTFB RDNGODkwOEUwHhcNMjQxMTIzMDM1MDE1WhcNMjQxMTMwMDM1MDE1WjAYMRYwFAYD VQQDEw02NzQxNTBmNy0wZGM5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApQdnzJsoiTLwpWsldqiUI/l8Tjw1ZEROEs7FfED94BtDgs+IkV1cLMzBpIV4 KVy4K9rC9RslEHmgybmW1g05pP9EnYzMeYKm4GDoswa1a8dkkg9oEHI8HjV9vy44 nri3RPNUbw3XR+VMOUXof2xRsmKtZ0YPJh9oqzyh5/HXnzDSUmDHoCw+94z93puq kmKy8O1gTh28inCbu/HkMHGBtzYdmip7OPO/OVmbHGiFSbMqKtBaM/yhuCeCB+e0 CmziY7z5iMC/BJoORIfQ5JER3vCxCKINZTnZ7YoSEJrNRoU241wu2mmCGhq98NdS s/NelpAFfRmKGn9meS983ka8AwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIba1Fl0 /CPFJNOudQnmPNGbfi/oMB8GA1UdIwQYMBaAFObEbJHRLVhaErBVaWId7hrT+JCO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QTM2Mi83Q0JBNEM0Qzcy NkUxMUVFOUZFMzUwNjFDNEY5QUUwMi81c1Jza2RFdFdGb1NzRlZwWWgzdUd0UDRr STQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVzUnNrZEV0V0ZvU3NGVnBZaDN1R3RQNGtJNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QTM2Mi83Q0JBNEM0QzcyNkUxMUVFOUZFMzUwNjFDNEY5QUUwMi81c1Jza2RFdFdG b1NzRlZwWWgzdUd0UDRrSTQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC9iiTrt/K/g74uiNAQqIghKFAZ041gpJVM6+7erCUWeWqzIzrnABU5 fbvA+3RK6DwzTxzPF5qLEhIhkqhYhvyy7ZCtTaamPndby8E094vnTPyOIcUyo1CP H30zFlUxqk1gLyY7rAm6xiBB17JI5qFq+WtPRLO19j9TK7CM/EUobtxLn+GZ0Xx6 Sk9tCjhqj9qzVpp1BHujr3Ddl58a5u55fTD7q0f86CKjOimeyBFsuXcM1bcgSaWT I369xWnbH7/m/lg4f56xjqVg0Z9JSo+jkhD7hkQfk7WX8HhUozBfLfFt5R46iMlt Pspnzs+0P4h1GDNgTJ83Y2ExikVefHnn -----END CERTIFICATE-----Generated at Sat Nov 23 05:02:51 2024 by rpki-client on console-fra.rpki-client.org