$ rpki-client -vvf rpki.apnic.net/member_repository/A918B591/D233C6462F7111EBB6ED3E22C4F9AE02/47jqsa6RbflaLVWue7e7eaULSuc.mft File: 47jqsa6RbflaLVWue7e7eaULSuc.mft (raw, json) Hash identifier: D2VgamfTq23vlqMKY21CSjbYvmkRxjnh59wf9SH0X4Y= Subject key identifier: 5B:F4:E1:1C:F1:84:BD:A0:B5:3E:93:19:5D:5D:45:CF:3E:66:E1:92 Authority key identifier: E3:B8:EA:B1:AE:91:6D:F9:5A:2D:55:AE:7B:B7:BB:79:A5:0B:4A:E7 Certificate issuer: /CN=A918B591/serialNumber=E3B8EAB1AE916DF95A2D55AE7BB7BB79A50B4AE7 Certificate serial: 06D9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/47jqsa6RbflaLVWue7e7eaULSuc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918B591/D233C6462F7111EBB6ED3E22C4F9AE02/47jqsa6RbflaLVWue7e7eaULSuc.mft Manifest number: 06D3 Signing time: Fri 22 Nov 2024 21:37:34 +0000 Manifest this update: Fri 22 Nov 2024 21:37:33 +0000 Manifest next update: Fri 29 Nov 2024 21:37:33 +0000 Files and hashes: 1: 47jqsa6RbflaLVWue7e7eaULSuc.crl (hash: EAb9Xwi9TSRCQ90SDzpaEP6yw2oK407boG89smg0ry8=) 2: D2E2417A2F7211EB80969C22C4F9AE02.roa (hash: xD5zoFxi5V/haijCFX+sW8lJO7TZJGfn2t06N67wG1c=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918B591/D233C6462F7111EBB6ED3E22C4F9AE02/47jqsa6RbflaLVWue7e7eaULSuc.crl rsync://rpki.apnic.net/member_repository/A918B591/D233C6462F7111EBB6ED3E22C4F9AE02/47jqsa6RbflaLVWue7e7eaULSuc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/47jqsa6RbflaLVWue7e7eaULSuc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1753 (0x6d9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918B591/serialNumber=E3B8EAB1AE916DF95A2D55AE7BB7BB79A50B4AE7 Validity Not Before: Nov 22 21:37:33 2024 GMT Not After : Nov 29 21:37:33 2024 GMT Subject: CN=6740f99d-ae62 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fd:5a:7f:4c:20:cc:fc:f1:87:7e:86:5e:18:06: 78:ae:72:c7:76:5c:46:da:b4:e3:df:30:20:79:5d: 4b:35:82:a7:60:aa:9d:22:2a:79:c7:fb:30:9e:76: ca:b6:db:a1:a5:b4:98:80:0b:d8:77:a6:ec:a0:b3: 69:64:50:68:6d:56:ae:c0:7e:c7:41:46:17:c5:a1: a4:ac:f5:02:7b:7e:9d:06:0b:5d:62:7a:20:69:06: f8:5e:9f:91:8e:f7:75:13:bf:3b:67:01:a1:11:37: 6f:22:57:4c:d1:c0:50:f6:a9:88:2a:b0:d6:ca:ae: d3:52:91:ed:75:72:91:39:f0:74:ac:4b:3c:d6:03: 55:f0:b3:d7:f5:63:10:66:c2:0c:f7:b6:30:1c:3a: 73:4f:9f:0e:dd:8b:bd:25:90:20:4f:34:fa:77:23: 4b:60:20:28:cd:09:8b:bf:bc:77:56:6c:4d:52:1d: cc:89:96:1b:d7:05:95:10:60:16:e5:13:25:74:f7: 84:73:91:e9:fb:a3:31:b3:30:d6:2f:4a:52:bc:1e: 0a:a1:21:32:ee:60:fd:70:a9:b3:b7:3d:8a:59:10: e9:ab:cb:d6:6f:ae:fb:ba:2e:88:a6:f6:dc:75:ad: e4:31:e5:4f:06:51:41:32:10:cb:53:38:db:6d:89: 96:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:F4:E1:1C:F1:84:BD:A0:B5:3E:93:19:5D:5D:45:CF:3E:66:E1:92 X509v3 Authority Key Identifier: keyid:E3:B8:EA:B1:AE:91:6D:F9:5A:2D:55:AE:7B:B7:BB:79:A5:0B:4A:E7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918B591/D233C6462F7111EBB6ED3E22C4F9AE02/47jqsa6RbflaLVWue7e7eaULSuc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/47jqsa6RbflaLVWue7e7eaULSuc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918B591/D233C6462F7111EBB6ED3E22C4F9AE02/47jqsa6RbflaLVWue7e7eaULSuc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 66:23:a5:0a:a7:9c:a6:c0:01:d6:71:0d:6a:35:e3:c8:95:dc: b7:bf:59:d8:f2:69:ce:ac:5f:73:b6:65:3f:33:16:f2:e4:36: 37:1c:86:81:a6:c3:c8:70:c8:0b:42:14:33:66:6c:11:dd:6b: ad:d3:f4:b0:6a:7a:92:ba:fa:8c:cf:07:37:84:68:f1:69:99: 05:15:1e:a4:51:e7:ef:13:55:ad:04:35:69:39:45:0f:0d:92: cf:70:e7:e1:f7:db:5a:68:be:6a:4b:7c:ce:e5:36:26:eb:d9: fb:7a:09:0f:c9:c7:f2:a8:da:00:64:6c:96:de:14:3f:9c:8c: 6d:35:d5:ea:43:69:72:7c:21:8b:e9:e6:e4:57:10:62:17:6a: 30:4b:ed:6b:41:9c:9a:4b:09:4e:49:ad:c0:ac:5e:ed:71:af: 85:83:15:b5:cf:89:db:12:cd:1a:88:c4:c4:90:49:e0:79:74: 18:14:c5:a8:10:ca:58:63:01:80:02:11:52:c5:98:62:2e:66: 1e:de:2e:ea:4c:a4:a8:69:e6:48:b7:bf:d2:46:fe:c8:ee:84: 4a:80:9c:8c:d7:d0:8b:14:87:4e:8b:82:66:2c:a0:e4:88:fc: 6a:f8:2a:b5:48:4c:e5:f8:1a:dc:c6:78:4d:29:8a:05:2e:f6: bf:8e:78:54 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBtkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEI1OTExMTAvBgNVBAUTKEUzQjhFQUIxQUU5MTZERjk1QTJENTVBRTdCQjdCQjc5 QTUwQjRBRTcwHhcNMjQxMTIyMjEzNzMzWhcNMjQxMTI5MjEzNzMzWjAYMRYwFAYD VQQDEw02NzQwZjk5ZC1hZTYyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA/Vp/TCDM/PGHfoZeGAZ4rnLHdlxG2rTj3zAgeV1LNYKnYKqdIip5x/swnnbK ttuhpbSYgAvYd6bsoLNpZFBobVauwH7HQUYXxaGkrPUCe36dBgtdYnogaQb4Xp+R jvd1E787ZwGhETdvIldM0cBQ9qmIKrDWyq7TUpHtdXKROfB0rEs81gNV8LPX9WMQ ZsIM97YwHDpzT58O3Yu9JZAgTzT6dyNLYCAozQmLv7x3VmxNUh3MiZYb1wWVEGAW 5RMldPeEc5Hp+6MxszDWL0pSvB4KoSEy7mD9cKmztz2KWRDpq8vWb677ui6Ipvbc da3kMeVPBlFBMhDLUzjbbYmW2QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFv04Rzx hL2gtT6TGV1dRc8+ZuGSMB8GA1UdIwQYMBaAFOO46rGukW35Wi1Vrnu3u3mlC0rn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QjU5MS9EMjMzQzY0NjJG NzExMUVCQjZFRDNFMjJDNEY5QUUwMi80N2pxc2E2UmJmbGFMVld1ZTdlN2VhVUxT dWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzQ3anFzYTZSYmZsYUxWV3VlN2U3ZWFVTFN1Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 QjU5MS9EMjMzQzY0NjJGNzExMUVCQjZFRDNFMjJDNEY5QUUwMi80N2pxc2E2UmJm bGFMVld1ZTdlN2VhVUxTdWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBmI6UKp5ymwAHWcQ1qNePIldy3v1nY8mnOrF9ztmU/Mxby5DY3HIaB psPIcMgLQhQzZmwR3Wut0/SwanqSuvqMzwc3hGjxaZkFFR6kUefvE1WtBDVpOUUP DZLPcOfh99taaL5qS3zO5TYm69n7egkPycfyqNoAZGyW3hQ/nIxtNdXqQ2lyfCGL 6ebkVxBiF2owS+1rQZyaSwlOSa3ArF7tca+FgxW1z4nbEs0aiMTEkEngeXQYFMWo EMpYYwGAAhFSxZhiLmYe3i7qTKSoaeZIt7/SRv7I7oRKgJyM19CLFIdOi4JmLKDk iPxq+Cq1SEzl+BrcxnhNKYoFLva/jnhU -----END CERTIFICATE-----Generated at Fri Nov 22 22:24:10 2024 by rpki-client on console-fra.rpki-client.org