$ rpki-client -vvf rpki.apnic.net/member_repository/A9189B41/69B7698E605911EF9C223760C4F9AE02/punLpSnAWpYkymA1SKPjFJF1jys.mft File: punLpSnAWpYkymA1SKPjFJF1jys.mft (raw, json) Hash identifier: rokuA4+ni1oiEzPSO5eogQBaq7NctyASiAMP48HzUXk= Subject key identifier: 94:21:D6:5A:D9:FF:32:CB:9A:CC:A3:AC:16:4C:D7:E1:C6:23:31:31 Authority key identifier: A6:E9:CB:A5:29:C0:5A:96:24:CA:60:35:48:A3:E3:14:91:75:8F:2B Certificate issuer: /CN=A9189B41/serialNumber=A6E9CBA529C05A9624CA603548A3E31491758F2B Certificate serial: 32 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/punLpSnAWpYkymA1SKPjFJF1jys.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9189B41/69B7698E605911EF9C223760C4F9AE02/punLpSnAWpYkymA1SKPjFJF1jys.mft Manifest number: 31 Signing time: Thu 21 Nov 2024 05:42:56 +0000 Manifest this update: Thu 21 Nov 2024 05:42:55 +0000 Manifest next update: Thu 28 Nov 2024 05:42:55 +0000 Files and hashes: 1: punLpSnAWpYkymA1SKPjFJF1jys.crl (hash: rMifJBPh7X+geU2wKmlenRo0Mr0iZEjYglrPZDR4998=) 2: 17AF252C605A11EFB7F45361C4F9AE02.roa (hash: hIohGLAEr9r6SYuLg+aGzwQmujzK2d8ao66pEwxDxz4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9189B41/69B7698E605911EF9C223760C4F9AE02/punLpSnAWpYkymA1SKPjFJF1jys.crl rsync://rpki.apnic.net/member_repository/A9189B41/69B7698E605911EF9C223760C4F9AE02/punLpSnAWpYkymA1SKPjFJF1jys.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/punLpSnAWpYkymA1SKPjFJF1jys.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 02:50:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 50 (0x32) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9189B41/serialNumber=A6E9CBA529C05A9624CA603548A3E31491758F2B Validity Not Before: Nov 21 05:42:55 2024 GMT Not After : Nov 28 05:42:55 2024 GMT Subject: CN=673ec860-de1e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:c7:07:9b:ea:79:42:fd:82:96:96:d1:69:c2: 4e:ae:c8:a2:53:6a:a6:41:b5:a7:1f:a8:18:36:cf: e9:2b:0f:31:36:d4:a3:c8:4a:21:91:8b:e0:7a:eb: d1:15:7c:be:f4:53:71:d4:bb:40:54:60:09:92:dc: 3e:88:5f:8b:6a:58:da:f8:b8:9c:74:3d:08:cf:45: 27:43:86:de:11:95:2b:c0:7c:69:3e:4a:e0:ec:d4: c0:bd:cc:16:f4:14:af:05:8f:d8:c5:6c:9a:19:78: f0:64:d5:97:93:b5:b5:f8:84:46:f8:f0:cb:6f:51: 65:ca:e0:09:e1:e8:6d:47:40:5c:6b:53:a8:a3:da: e6:1d:fb:43:c5:14:1f:f2:fc:a2:ab:13:c2:b2:d4: 54:da:6a:b5:cc:89:72:5d:51:2e:e9:86:cc:79:23: 32:c8:30:36:f1:69:8d:14:76:01:dd:16:f5:57:e9: b0:2d:55:34:8b:85:7e:fc:e8:a2:0b:f7:56:39:76: 2d:e2:12:d8:d1:d5:d1:d4:c4:7f:47:d7:92:0e:73: 47:d3:41:2d:bb:6b:2e:d7:51:57:3e:ce:8e:12:ce: 0b:30:64:23:8c:38:ec:57:9b:96:8b:c9:c2:72:c8: b5:6d:8b:5b:f1:06:77:95:77:e3:28:c3:35:aa:9c: 74:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:21:D6:5A:D9:FF:32:CB:9A:CC:A3:AC:16:4C:D7:E1:C6:23:31:31 X509v3 Authority Key Identifier: keyid:A6:E9:CB:A5:29:C0:5A:96:24:CA:60:35:48:A3:E3:14:91:75:8F:2B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9189B41/69B7698E605911EF9C223760C4F9AE02/punLpSnAWpYkymA1SKPjFJF1jys.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/punLpSnAWpYkymA1SKPjFJF1jys.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9189B41/69B7698E605911EF9C223760C4F9AE02/punLpSnAWpYkymA1SKPjFJF1jys.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ba:57:a9:e2:84:1f:cd:0b:db:e2:13:b7:df:2b:5f:c5:14:b3: e6:8d:87:5f:e0:b9:61:d9:27:6a:75:76:d3:11:f6:ac:4a:88: b7:0e:85:56:b2:1f:df:5c:ea:eb:67:a6:a6:fa:f7:5e:bf:af: 90:41:04:55:4a:26:57:8b:08:af:b3:52:0b:3c:23:f5:27:bf: fa:a3:9d:f7:82:e7:9a:e3:46:65:aa:6e:05:67:38:03:d6:41: fc:d0:89:99:45:eb:7a:5a:1b:c0:e7:bd:78:9a:8e:22:35:6d: 75:2c:12:80:d0:48:ef:37:26:5c:39:09:e8:02:5a:10:1c:d7: 4d:f7:ca:79:63:2b:46:fd:3c:82:e4:c3:e3:12:c1:32:1c:0e: 8f:5e:21:ce:4f:32:5d:6e:2f:d3:ab:da:83:a6:df:15:0e:20: 7f:d1:68:6e:5e:d9:4a:17:bb:51:7a:2b:64:57:bd:a4:f3:6b: 08:63:ac:a9:e2:6c:66:63:24:5d:96:66:75:1a:b1:2f:a8:d3: 3d:02:d1:f5:12:82:ba:37:ad:e2:bf:ce:7e:53:b5:98:22:bb: 0d:9b:de:ad:0c:4d:ef:20:a0:f1:30:a0:a6:81:f3:0e:c3:70: 0e:95:57:79:39:96:be:78:98:e4:34:8b:31:f1:03:72:da:13: d6:08:19:75 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBMjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE4 OUI0MTExMC8GA1UEBRMoQTZFOUNCQTUyOUMwNUE5NjI0Q0E2MDM1NDhBM0UzMTQ5 MTc1OEYyQjAeFw0yNDExMjEwNTQyNTVaFw0yNDExMjgwNTQyNTVaMBgxFjAUBgNV BAMTDTY3M2VjODYwLWRlMWUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC3xweb6nlC/YKWltFpwk6uyKJTaqZBtacfqBg2z+krDzE21KPISiGRi+B669EV fL70U3HUu0BUYAmS3D6IX4tqWNr4uJx0PQjPRSdDht4RlSvAfGk+SuDs1MC9zBb0 FK8Fj9jFbJoZePBk1ZeTtbX4hEb48MtvUWXK4Anh6G1HQFxrU6ij2uYd+0PFFB/y /KKrE8Ky1FTaarXMiXJdUS7phsx5IzLIMDbxaY0UdgHdFvVX6bAtVTSLhX786KIL 91Y5di3iEtjR1dHUxH9H15IOc0fTQS27ay7XUVc+zo4SzgswZCOMOOxXm5aLycJy yLVti1vxBneVd+MowzWqnHRFAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUlCHWWtn/ MsuazKOsFkzX4cYjMTEwHwYDVR0jBBgwFoAUpunLpSnAWpYkymA1SKPjFJF1jysw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTg5QjQxLzY5Qjc2OThFNjA1 OTExRUY5QzIyMzc2MEM0RjlBRTAyL3B1bkxwU25BV3BZa3ltQTFTS1BqRkpGMWp5 cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvcHVuTHBTbkFXcFlreW1BMVNLUGpGSkYxanlzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTg5 QjQxLzY5Qjc2OThFNjA1OTExRUY5QzIyMzc2MEM0RjlBRTAyL3B1bkxwU25BV3BZ a3ltQTFTS1BqRkpGMWp5cy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBALpXqeKEH80L2+ITt98rX8UUs+aNh1/guWHZJ2p1dtMR9qxKiLcOhVay H99c6utnpqb6916/r5BBBFVKJleLCK+zUgs8I/Unv/qjnfeC55rjRmWqbgVnOAPW QfzQiZlF63paG8DnvXiajiI1bXUsEoDQSO83Jlw5CegCWhAc1033ynljK0b9PILk w+MSwTIcDo9eIc5PMl1uL9Or2oOm3xUOIH/RaG5e2UoXu1F6K2RXvaTzawhjrKni bGZjJF2WZnUasS+o0z0C0fUSgro3reK/zn5TtZgiuw2b3q0MTe8goPEwoKaB8w7D cA6VV3k5lr54mOQ0izHxA3LaE9YIGXU= -----END CERTIFICATE-----Generated at Thu Nov 21 06:50:18 2024 by rpki-client on console-fra.rpki-client.org