$ rpki-client -vvf rpki.apnic.net/member_repository/A91872ED/ED8C96901D6C11E28A38A3AD08B02CD2/aPr52s4ZdoysPU7XuyQ3K_-m0Bg.mft File: aPr52s4ZdoysPU7XuyQ3K_-m0Bg.mft (raw, json) Hash identifier: lnAlnBWTtFFmRIdmE9I9n+UwOgjpTsET6dNb/Y0C6JQ= Subject key identifier: 2E:45:58:2B:17:B7:B0:60:79:79:ED:66:59:FC:95:2E:AD:BF:ED:A4 Authority key identifier: 68:FA:F9:DA:CE:19:76:8C:AC:3D:4E:D7:BB:24:37:2B:FF:A6:D0:18 Certificate issuer: /CN=A91872ED/serialNumber=68FAF9DACE19768CAC3D4ED7BB24372BFFA6D018 Certificate serial: 34A8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aPr52s4ZdoysPU7XuyQ3K_-m0Bg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91872ED/ED8C96901D6C11E28A38A3AD08B02CD2/aPr52s4ZdoysPU7XuyQ3K_-m0Bg.mft Manifest number: 345D Signing time: Fri 22 Nov 2024 14:17:25 +0000 Manifest this update: Fri 22 Nov 2024 14:17:25 +0000 Manifest next update: Fri 29 Nov 2024 14:17:25 +0000 Files and hashes: 1: aPr52s4ZdoysPU7XuyQ3K_-m0Bg.crl (hash: /mnH7cLgtPO2rcm8sQTH1r4obLyACLb8FnRa4WvsRLQ=) 2: 797B4DEC293B11E8B187196DC4F9AE02.roa (hash: m0T5p+j/9s+rm9D6YdSh//2Alx2Eae+Du8lbaB1hR7Y=) 3: 1921C8926CDF11EAB92A3A24C4F9AE02.roa (hash: IkqW+PwyXlQ+AUTKEJ4fHo5q5mHtKj5Ve8Q8p0ADu48=) 4: 707EE02E54EC11E791C3F825C4F9AE02.roa (hash: yT6VnRLmIX4JBA9GtJaKAexfPeVPPL2P99luRa7FJpM=) 5: 19ACBFF66CDF11EAB92A3A24C4F9AE02.roa (hash: rb6m6NgtqMNqMVoEYBcUFewdPh6xLzsagwAw8cSDCbE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91872ED/ED8C96901D6C11E28A38A3AD08B02CD2/aPr52s4ZdoysPU7XuyQ3K_-m0Bg.crl rsync://rpki.apnic.net/member_repository/A91872ED/ED8C96901D6C11E28A38A3AD08B02CD2/aPr52s4ZdoysPU7XuyQ3K_-m0Bg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aPr52s4ZdoysPU7XuyQ3K_-m0Bg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 14:17:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13480 (0x34a8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91872ED/serialNumber=68FAF9DACE19768CAC3D4ED7BB24372BFFA6D018 Validity Not Before: Nov 22 14:17:25 2024 GMT Not After : Nov 29 14:17:25 2024 GMT Subject: CN=67409275-d16c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:13:07:f1:af:bb:16:d3:c9:e7:da:ad:cc:a4: 54:32:80:9b:e9:95:59:79:d6:5e:87:a3:7d:84:11: ee:00:fb:f7:11:fb:59:90:a0:1e:04:2a:99:62:c7: 52:4f:72:ca:bb:4f:67:c2:ca:f3:70:d0:91:13:32: 89:0f:e0:6e:b8:1e:02:db:3b:cd:00:d0:aa:76:23: 00:7a:6d:13:69:0b:75:94:d2:ca:72:a4:b6:49:e3: 8a:15:6a:51:4d:5f:76:94:b1:1d:d5:da:46:17:71: ba:d9:db:6b:44:fe:7f:dc:6c:86:27:d7:46:ec:3f: 78:d7:ad:0a:fb:fc:45:f9:81:79:7b:62:09:0f:b8: c4:2e:83:f8:d8:91:54:7c:66:c1:51:9f:77:10:9e: 1f:a0:73:21:8c:cc:da:b8:2e:74:c5:79:bf:8d:68: 1b:a4:c0:34:80:4a:26:97:0e:42:f2:59:65:21:72: 4d:f7:e1:73:f2:ee:09:02:ab:85:1b:9c:17:31:e2: 02:58:d8:72:99:8e:e6:31:17:4c:d5:98:b0:59:4a: 89:53:64:2b:f3:f2:5d:9d:d0:8f:f8:83:60:0a:ae: ed:ab:5a:30:c8:43:1f:ae:75:73:85:14:24:28:e0: ed:4e:45:dd:d2:42:8d:9c:f3:3f:7e:17:d8:c5:72: d9:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:45:58:2B:17:B7:B0:60:79:79:ED:66:59:FC:95:2E:AD:BF:ED:A4 X509v3 Authority Key Identifier: keyid:68:FA:F9:DA:CE:19:76:8C:AC:3D:4E:D7:BB:24:37:2B:FF:A6:D0:18 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91872ED/ED8C96901D6C11E28A38A3AD08B02CD2/aPr52s4ZdoysPU7XuyQ3K_-m0Bg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aPr52s4ZdoysPU7XuyQ3K_-m0Bg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91872ED/ED8C96901D6C11E28A38A3AD08B02CD2/aPr52s4ZdoysPU7XuyQ3K_-m0Bg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 00:8d:42:43:47:ef:93:45:80:55:17:a8:8c:76:59:1a:c2:79: db:80:6d:04:5d:95:3c:97:cb:10:3c:da:b0:bf:94:e3:87:e9: 58:0f:f2:38:11:ec:2c:8e:ea:91:95:10:43:75:d3:36:c5:eb: 73:19:1d:18:b9:29:23:0a:07:99:77:96:dd:fc:aa:7a:8a:e9: 79:f6:fa:de:2f:d9:58:7a:1b:46:f2:d5:0d:01:f1:09:21:44: 73:76:a9:ae:70:43:51:47:14:66:f7:05:c1:d4:cf:fe:e8:77: 3c:98:14:54:12:bd:1a:a8:f2:01:f8:25:47:d1:6c:b0:61:0d: a3:80:68:02:40:8b:ec:00:84:27:02:f7:82:7a:a5:71:a8:20: c2:eb:f9:f4:25:51:81:fa:68:0a:b4:74:fb:6b:7a:7a:a1:11: 94:b9:36:1e:20:78:1c:83:32:6f:bc:2e:f3:6a:6a:f0:3f:14: d0:3d:f0:0d:42:4e:fb:ab:10:02:76:ce:5c:82:48:0a:eb:7c: 51:ed:b2:11:a1:94:29:bd:a6:a5:1a:55:14:df:81:e5:cd:57: be:0e:54:ab:ea:77:3c:32:33:c5:d4:72:bc:6e:40:27:a0:44: 29:f7:b7:de:d8:d9:ce:9c:86:4c:72:a0:19:98:9c:84:73:fb: 50:ee:87:8d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNKgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODcyRUQxMTAvBgNVBAUTKDY4RkFGOURBQ0UxOTc2OENBQzNENEVEN0JCMjQzNzJC RkZBNkQwMTgwHhcNMjQxMTIyMTQxNzI1WhcNMjQxMTI5MTQxNzI1WjAYMRYwFAYD VQQDEw02NzQwOTI3NS1kMTZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0RMH8a+7FtPJ59qtzKRUMoCb6ZVZedZeh6N9hBHuAPv3EftZkKAeBCqZYsdS T3LKu09nwsrzcNCREzKJD+BuuB4C2zvNANCqdiMAem0TaQt1lNLKcqS2SeOKFWpR TV92lLEd1dpGF3G62dtrRP5/3GyGJ9dG7D94160K+/xF+YF5e2IJD7jELoP42JFU fGbBUZ93EJ4foHMhjMzauC50xXm/jWgbpMA0gEomlw5C8lllIXJN9+Fz8u4JAquF G5wXMeICWNhymY7mMRdM1ZiwWUqJU2Qr8/JdndCP+INgCq7tq1owyEMfrnVzhRQk KODtTkXd0kKNnPM/fhfYxXLZNwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFC5FWCsX t7BgeXntZln8lS6tv+2kMB8GA1UdIwQYMBaAFGj6+drOGXaMrD1O17skNyv/ptAY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NzJFRC9FRDhDOTY5MDFE NkMxMUUyOEEzOEEzQUQwOEIwMkNEMi9hUHI1MnM0WmRveXNQVTdYdXlRM0tfLW0w QmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FQcjUyczRaZG95c1BVN1h1eVEzS18tbTBCZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NzJFRC9FRDhDOTY5MDFENkMxMUUyOEEzOEEzQUQwOEIwMkNEMi9hUHI1MnM0WmRv eXNQVTdYdXlRM0tfLW0wQmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAAjUJDR++TRYBVF6iMdlkawnnbgG0EXZU8l8sQPNqwv5Tjh+lYD/I4 EewsjuqRlRBDddM2xetzGR0YuSkjCgeZd5bd/Kp6iul59vreL9lYehtG8tUNAfEJ IURzdqmucENRRxRm9wXB1M/+6Hc8mBRUEr0aqPIB+CVH0WywYQ2jgGgCQIvsAIQn AveCeqVxqCDC6/n0JVGB+mgKtHT7a3p6oRGUuTYeIHgcgzJvvC7zamrwPxTQPfAN Qk77qxACds5cgkgK63xR7bIRoZQpvaalGlUU34HlzVe+DlSr6nc8MjPF1HK8bkAn oEQp97fe2NnOnIZMcqAZmJyEc/tQ7oeN -----END CERTIFICATE-----Generated at Fri Nov 22 15:25:38 2024 by rpki-client on console-fra.rpki-client.org