$ rpki-client -vvf rpki.apnic.net/member_repository/A91A0E9D/9569ADB495DB11EFA4E2FB45C4F9AE02/0hsNWsWvkZAPUK2WADMT5R7WChA.mft File: 0hsNWsWvkZAPUK2WADMT5R7WChA.mft (raw, json) Hash identifier: OW/6edcGc/vUJj0MDs1bCZfQIEv60oO/iwyr4QiWqJ4= Subject key identifier: 69:06:BE:A0:FF:2E:04:51:AC:08:B3:2B:98:85:1D:FA:EE:27:CE:12 Authority key identifier: D2:1B:0D:5A:C5:AF:91:90:0F:50:AD:96:00:33:13:E5:1E:D6:0A:10 Certificate issuer: /CN=A91A0E9D/serialNumber=D21B0D5AC5AF91900F50AD96003313E51ED60A10 Certificate serial: 22 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0hsNWsWvkZAPUK2WADMT5R7WChA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A0E9D/9569ADB495DB11EFA4E2FB45C4F9AE02/0hsNWsWvkZAPUK2WADMT5R7WChA.mft Manifest number: 19 Signing time: Sat 23 Nov 2024 06:01:33 +0000 Manifest this update: Sat 23 Nov 2024 06:01:32 +0000 Manifest next update: Sat 30 Nov 2024 06:01:32 +0000 Files and hashes: 1: 0hsNWsWvkZAPUK2WADMT5R7WChA.crl (hash: wiv49i9kBiAVl1B1s0SY33GapdX8gHUEZ58ELXwgIjM=) 2: 3996C94896D211EF924C486FC4F9AE02.roa (hash: jPKROmghkPyJWap1Ck0b+pE8AGKhobQAaRNerFhIWOA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A0E9D/9569ADB495DB11EFA4E2FB45C4F9AE02/0hsNWsWvkZAPUK2WADMT5R7WChA.crl rsync://rpki.apnic.net/member_repository/A91A0E9D/9569ADB495DB11EFA4E2FB45C4F9AE02/0hsNWsWvkZAPUK2WADMT5R7WChA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0hsNWsWvkZAPUK2WADMT5R7WChA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 34 (0x22) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A0E9D/serialNumber=D21B0D5AC5AF91900F50AD96003313E51ED60A10 Validity Not Before: Nov 23 06:01:32 2024 GMT Not After : Nov 30 06:01:32 2024 GMT Subject: CN=67416fbc-1017 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:53:b0:15:86:a6:ba:c3:48:62:2c:65:4f:2e: 5e:b2:15:c8:f0:28:a0:73:a4:28:61:43:4e:76:b5: 01:3e:ff:ca:13:27:59:7f:20:2f:90:fc:34:0b:03: fb:fe:cb:01:47:f9:00:fe:b3:b6:1a:ce:86:51:b5: 4e:87:cd:e6:e7:f8:f1:da:5b:f5:5e:c4:a8:df:8c: 4b:96:7d:c3:d5:4d:dd:cb:08:1d:7b:f6:76:4e:54: 6e:78:61:51:5c:53:79:16:58:36:00:ec:d5:4f:78: 2b:ae:34:98:f0:1a:a5:40:f8:76:63:ba:95:2a:3e: 33:a7:15:5c:d9:c7:21:b6:ff:27:af:9b:5a:8f:12: 31:e6:ed:23:8d:bd:f3:4b:39:78:84:d5:d9:cd:f5: 37:c2:9b:02:42:d5:7d:44:89:4a:de:11:55:05:cf: a4:f8:a5:25:a2:69:e4:4f:c5:64:fa:01:e4:79:33: e4:9f:3f:66:7a:ce:c0:ad:26:2d:3b:0d:3c:a6:90: 15:ad:c1:e3:b6:b2:db:b2:bb:49:57:a7:2a:8a:82: a0:b3:9b:f8:8c:7b:7b:97:a7:f5:eb:99:6d:6a:04: ae:5d:11:33:11:3a:87:dc:79:4e:7d:d3:8b:20:69: 6a:d4:fb:d0:9b:9e:8f:7c:56:1c:4c:58:b6:75:a7: 28:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:06:BE:A0:FF:2E:04:51:AC:08:B3:2B:98:85:1D:FA:EE:27:CE:12 X509v3 Authority Key Identifier: keyid:D2:1B:0D:5A:C5:AF:91:90:0F:50:AD:96:00:33:13:E5:1E:D6:0A:10 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A0E9D/9569ADB495DB11EFA4E2FB45C4F9AE02/0hsNWsWvkZAPUK2WADMT5R7WChA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0hsNWsWvkZAPUK2WADMT5R7WChA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A0E9D/9569ADB495DB11EFA4E2FB45C4F9AE02/0hsNWsWvkZAPUK2WADMT5R7WChA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0d:83:94:46:78:6d:b5:8d:fd:49:01:ef:30:bc:24:ac:bf:a2: 73:d7:9f:b3:c8:d9:e3:fb:3d:34:cb:46:bc:a3:2a:0d:c0:23: 91:74:4c:82:29:f8:24:34:20:45:bb:ca:ce:35:13:4b:f2:fa: e0:14:69:b2:cf:a2:d3:57:cb:87:e4:a1:e4:40:3b:d0:97:0a: ef:a7:8e:2c:66:95:3b:38:39:6f:89:64:14:44:bb:11:02:dd: d4:1c:99:f4:8d:3a:6e:ff:5c:bf:40:76:21:3f:7a:ad:72:93: fd:07:31:e0:64:e6:59:04:3b:22:04:da:86:bf:37:23:c2:e1: 46:c1:23:be:b3:4c:8f:c8:bb:db:78:84:b5:07:16:8f:07:f6: 89:ad:d4:ea:57:af:22:38:2e:a2:73:8b:21:56:03:a5:5d:d5: d4:e1:12:a2:a3:a4:0e:19:c7:65:93:b4:e9:6c:1d:d9:89:be: 31:47:55:bb:24:06:e0:21:8b:b8:ac:57:6c:3e:d8:b5:de:16: 57:6f:1b:9b:fe:6b:8a:48:65:0e:86:16:66:bb:e1:2a:f7:a1: e5:5b:12:2e:d7:63:13:db:10:74:c1:b3:ff:ad:b5:41:ba:64: b9:5c:5e:eb:71:7b:e2:fb:31:cb:6e:15:95:3f:9f:72:b9:6e: 93:37:c5:36 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBIjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB MEU5RDExMC8GA1UEBRMoRDIxQjBENUFDNUFGOTE5MDBGNTBBRDk2MDAzMzEzRTUx RUQ2MEExMDAeFw0yNDExMjMwNjAxMzJaFw0yNDExMzAwNjAxMzJaMBgxFjAUBgNV BAMTDTY3NDE2ZmJjLTEwMTcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCcU7AVhqa6w0hiLGVPLl6yFcjwKKBzpChhQ052tQE+/8oTJ1l/IC+Q/DQLA/v+ ywFH+QD+s7YazoZRtU6Hzebn+PHaW/VexKjfjEuWfcPVTd3LCB179nZOVG54YVFc U3kWWDYA7NVPeCuuNJjwGqVA+HZjupUqPjOnFVzZxyG2/yevm1qPEjHm7SONvfNL OXiE1dnN9TfCmwJC1X1EiUreEVUFz6T4pSWiaeRPxWT6AeR5M+SfP2Z6zsCtJi07 DTymkBWtweO2stuyu0lXpyqKgqCzm/iMe3uXp/XrmW1qBK5dETMROofceU5904sg aWrU+9Cbno98VhxMWLZ1pyifAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUaQa+oP8u BFGsCLMrmIUd+u4nzhIwHwYDVR0jBBgwFoAU0hsNWsWvkZAPUK2WADMT5R7WChAw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUEwRTlELzk1NjlBREI0OTVE QjExRUZBNEUyRkI0NUM0RjlBRTAyLzBoc05Xc1d2a1pBUFVLMldBRE1UNVI3V0No QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvMGhzTldzV3ZrWkFQVUsyV0FETVQ1UjdXQ2hBLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUEw RTlELzk1NjlBREI0OTVEQjExRUZBNEUyRkI0NUM0RjlBRTAyLzBoc05Xc1d2a1pB UFVLMldBRE1UNVI3V0NoQS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAA2DlEZ4bbWN/UkB7zC8JKy/onPXn7PI2eP7PTTLRryjKg3AI5F0TIIp +CQ0IEW7ys41E0vy+uAUabLPotNXy4fkoeRAO9CXCu+njixmlTs4OW+JZBREuxEC 3dQcmfSNOm7/XL9AdiE/eq1yk/0HMeBk5lkEOyIE2oa/NyPC4UbBI76zTI/Iu9t4 hLUHFo8H9omt1OpXryI4LqJziyFWA6Vd1dThEqKjpA4Zx2WTtOlsHdmJvjFHVbsk BuAhi7isV2w+2LXeFldvG5v+a4pIZQ6GFma74Sr3oeVbEi7XYxPbEHTBs/+ttUG6 ZLlcXutxe+L7MctuFZU/n3K5bpM3xTY= -----END CERTIFICATE-----Generated at Sat Nov 23 07:31:31 2024 by rpki-client on console-fra.rpki-client.org