$ rpki-client -vvf rpki.apnic.net/member_repository/A91854B7/E180CE7A851E11EB8419B327C4F9AE02/-IuXQE-dwQ9aqwL3TsSQ-YrQ07A.mft File: -IuXQE-dwQ9aqwL3TsSQ-YrQ07A.mft (raw, json) Hash identifier: S2aKBfTHIQcRhj71v5/ZJe68zKC7NZ4Hn9Wnp9FtoLc= Subject key identifier: 36:A0:4D:52:07:34:91:E3:86:D4:1E:E7:C9:53:31:ED:98:35:70:4B Authority key identifier: F8:8B:97:40:4F:9D:C1:0F:5A:AB:02:F7:4E:C4:90:F9:8A:D0:D3:B0 Certificate issuer: /CN=A91854B7/serialNumber=F88B97404F9DC10F5AAB02F74EC490F98AD0D3B0 Certificate serial: 060C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-IuXQE-dwQ9aqwL3TsSQ-YrQ07A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91854B7/E180CE7A851E11EB8419B327C4F9AE02/-IuXQE-dwQ9aqwL3TsSQ-YrQ07A.mft Manifest number: 05FB Signing time: Fri 22 Nov 2024 22:19:30 +0000 Manifest this update: Fri 22 Nov 2024 22:19:30 +0000 Manifest next update: Fri 29 Nov 2024 22:19:30 +0000 Files and hashes: 1: -IuXQE-dwQ9aqwL3TsSQ-YrQ07A.crl (hash: iPIP/21/wGqhMzgdbrMHGExCyErJ8ksOOuaQTKu6wl4=) 2: 3EACF95EEBB511ECA410BF6DC4F9AE02.roa (hash: xFmg051Irl3QGxSaxPh5/PYgXOOm8roreRqol3Gv8es=) 3: 57D28CCA853E11EB9D9E2D39C4F9AE02.roa (hash: goZ7BQs8FCZwkLeH44QNaXxFhzltbICpUZt+GahLEkQ=) 4: 5892BB44853E11EB9D9E2D39C4F9AE02.roa (hash: pCDQvhpjTdtiJ3zqTDHJUEvIuviY7SsjRZSRovU8uCc=) 5: 1D526B2E5DB311EEA8990E1BC4F9AE02.roa (hash: SXTVWJ2PMrAIqDEbXazZSPAGB7rgkYD55HYA8ZjO4Yw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91854B7/E180CE7A851E11EB8419B327C4F9AE02/-IuXQE-dwQ9aqwL3TsSQ-YrQ07A.crl rsync://rpki.apnic.net/member_repository/A91854B7/E180CE7A851E11EB8419B327C4F9AE02/-IuXQE-dwQ9aqwL3TsSQ-YrQ07A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-IuXQE-dwQ9aqwL3TsSQ-YrQ07A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1548 (0x60c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91854B7/serialNumber=F88B97404F9DC10F5AAB02F74EC490F98AD0D3B0 Validity Not Before: Nov 22 22:19:30 2024 GMT Not After : Nov 29 22:19:30 2024 GMT Subject: CN=67410372-a766 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:9e:aa:3f:81:aa:af:d2:ec:d0:fa:d7:93:4b: 3d:d2:f3:3f:9a:cf:a3:78:1c:9b:9e:bf:9a:5f:2d: c9:d9:20:38:a2:51:b5:cb:0b:3f:66:4b:bf:1c:7c: 42:ee:a2:39:12:2e:12:d0:a9:a8:96:07:08:b6:af: 6d:72:e6:eb:ec:3e:cf:6f:1e:4e:a2:c9:4a:82:97: a1:cf:f6:75:cc:9d:07:32:63:1c:d5:f7:e1:d6:2f: 66:3a:01:b8:7a:ad:d4:88:3b:53:db:d0:92:e4:e9: da:4d:d4:14:85:95:a6:7f:26:ee:e0:ac:7c:ef:eb: 76:7b:0c:c6:e5:ee:83:be:30:4c:3b:a8:4f:f8:fb: 53:a4:b3:8a:ad:be:5b:b9:73:d3:43:89:0f:10:14: 64:d5:4a:62:ce:21:7c:ed:95:e9:b5:7c:84:b2:b6: 3a:ab:47:d6:64:c1:02:07:a6:33:e9:e8:d8:e8:ed: a3:b1:8d:d7:85:b5:45:e0:2f:ae:4a:fa:1c:27:18: 1b:aa:ef:76:f5:f4:de:59:bd:21:a6:f1:26:04:66: ee:52:7e:a7:57:e6:49:7f:d9:a4:37:cc:55:62:fd: 66:a6:c6:2b:51:01:93:28:60:7b:89:c1:4b:14:17: 8c:1c:94:07:09:4c:34:c5:8c:54:42:fb:83:d9:af: cb:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:A0:4D:52:07:34:91:E3:86:D4:1E:E7:C9:53:31:ED:98:35:70:4B X509v3 Authority Key Identifier: keyid:F8:8B:97:40:4F:9D:C1:0F:5A:AB:02:F7:4E:C4:90:F9:8A:D0:D3:B0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91854B7/E180CE7A851E11EB8419B327C4F9AE02/-IuXQE-dwQ9aqwL3TsSQ-YrQ07A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-IuXQE-dwQ9aqwL3TsSQ-YrQ07A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91854B7/E180CE7A851E11EB8419B327C4F9AE02/-IuXQE-dwQ9aqwL3TsSQ-YrQ07A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0e:16:09:fb:f3:ba:df:39:f0:e7:31:a3:c4:ef:ee:3b:23:13: 59:f4:26:46:7e:12:88:95:65:14:04:33:ff:d4:96:e5:95:f7: 2c:19:ca:5b:ac:a4:72:40:7d:55:a5:64:41:02:db:ef:7b:1c: 65:f5:43:65:54:1b:a1:37:44:ac:f9:07:fa:43:81:40:ed:8a: fe:b5:c2:46:3f:27:85:65:a0:ba:fb:ce:f2:90:53:f5:38:44: 84:c5:b7:94:8f:0f:33:5c:da:04:98:68:38:5e:33:4a:19:d8: 16:08:0a:77:d2:ad:9e:77:82:b2:31:70:9a:eb:57:a9:c5:c5: 4c:b2:24:4e:b1:8c:35:2f:08:c9:51:fe:e3:f0:b0:ea:31:16: 4a:23:67:1d:92:89:a4:f9:ce:68:cc:db:a0:a1:ee:59:49:36: ac:4b:34:38:45:80:60:a4:79:d4:49:b5:fa:d4:f0:d3:aa:32: 3d:c1:51:be:00:2b:1d:fe:71:77:3e:0a:0d:b4:f5:e1:a2:af: e5:68:b7:84:c4:cd:56:15:87:42:36:0d:fa:f5:f1:7b:48:a2: 40:cc:02:98:4e:d0:18:08:0e:28:91:01:4b:40:fc:e0:72:75: fd:4c:39:8e:15:8c:d0:f4:39:99:e4:c8:d4:0f:b8:b8:1e:d3: d1:12:f8:12 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBgwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODU0QjcxMTAvBgNVBAUTKEY4OEI5NzQwNEY5REMxMEY1QUFCMDJGNzRFQzQ5MEY5 OEFEMEQzQjAwHhcNMjQxMTIyMjIxOTMwWhcNMjQxMTI5MjIxOTMwWjAYMRYwFAYD VQQDEw02NzQxMDM3Mi1hNzY2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzp6qP4Gqr9Ls0PrXk0s90vM/ms+jeBybnr+aXy3J2SA4olG1yws/Zku/HHxC 7qI5Ei4S0KmolgcItq9tcubr7D7Pbx5OoslKgpehz/Z1zJ0HMmMc1ffh1i9mOgG4 eq3UiDtT29CS5OnaTdQUhZWmfybu4Kx87+t2ewzG5e6DvjBMO6hP+PtTpLOKrb5b uXPTQ4kPEBRk1UpiziF87ZXptXyEsrY6q0fWZMECB6Yz6ejY6O2jsY3XhbVF4C+u SvocJxgbqu929fTeWb0hpvEmBGbuUn6nV+ZJf9mkN8xVYv1mpsYrUQGTKGB7icFL FBeMHJQHCUw0xYxUQvuD2a/LFQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDagTVIH NJHjhtQe58lTMe2YNXBLMB8GA1UdIwQYMBaAFPiLl0BPncEPWqsC907EkPmK0NOw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NTRCNy9FMTgwQ0U3QTg1 MUUxMUVCODQxOUIzMjdDNEY5QUUwMi8tSXVYUUUtZHdROWFxd0wzVHNTUS1ZclEw N0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1JdVhRRS1kd1E5YXF3TDNUc1NRLVlyUTA3QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NTRCNy9FMTgwQ0U3QTg1MUUxMUVCODQxOUIzMjdDNEY5QUUwMi8tSXVYUUUtZHdR OWFxd0wzVHNTUS1ZclEwN0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAOFgn787rfOfDnMaPE7+47IxNZ9CZGfhKIlWUUBDP/1JbllfcsGcpb rKRyQH1VpWRBAtvvexxl9UNlVBuhN0Ss+Qf6Q4FA7Yr+tcJGPyeFZaC6+87ykFP1 OESExbeUjw8zXNoEmGg4XjNKGdgWCAp30q2ed4KyMXCa61epxcVMsiROsYw1LwjJ Uf7j8LDqMRZKI2cdkomk+c5ozNugoe5ZSTasSzQ4RYBgpHnUSbX61PDTqjI9wVG+ ACsd/nF3PgoNtPXhoq/laLeExM1WFYdCNg369fF7SKJAzAKYTtAYCA4okQFLQPzg cnX9TDmOFYzQ9DmZ5MjUD7i4HtPREvgS -----END CERTIFICATE-----Generated at Fri Nov 22 23:39:30 2024 by rpki-client on console-fra.rpki-client.org