$ rpki-client -vvf rpki.apnic.net/member_repository/A91A1857/F1307B74DAD711E99F8CAC78C4F9AE02/ipvaaFOfcVjLATcgqZNvJkuaU3s.mft File: ipvaaFOfcVjLATcgqZNvJkuaU3s.mft (raw, json) Hash identifier: UWCELy9y1+VJDOWIXxSzqbibyFqnRKEXR6Gxjee438o= Subject key identifier: 02:58:4F:FD:D4:84:C7:00:28:6B:0E:55:B2:39:06:F2:A8:00:28:74 Authority key identifier: 8A:9B:DA:68:53:9F:71:58:CB:01:37:20:A9:93:6F:26:4B:9A:53:7B Certificate issuer: /CN=A91A1857/serialNumber=8A9BDA68539F7158CB013720A9936F264B9A537B Certificate serial: 0CD2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ipvaaFOfcVjLATcgqZNvJkuaU3s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A1857/F1307B74DAD711E99F8CAC78C4F9AE02/ipvaaFOfcVjLATcgqZNvJkuaU3s.mft Manifest number: 0CC4 Signing time: Fri 22 Nov 2024 18:03:41 +0000 Manifest this update: Fri 22 Nov 2024 18:03:41 +0000 Manifest next update: Fri 29 Nov 2024 18:03:41 +0000 Files and hashes: 1: ipvaaFOfcVjLATcgqZNvJkuaU3s.crl (hash: mZ+UuWMgv9dCPFePMLP2maGXmcAimT5RUgNfJdMELfE=) 2: F23EB988E9A811E9864E3674C4F9AE02.roa (hash: 8eP4hTFPvkA+DZka7Owe6Pw6H4BJETlKYc1wPRQQyeA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A1857/F1307B74DAD711E99F8CAC78C4F9AE02/ipvaaFOfcVjLATcgqZNvJkuaU3s.crl rsync://rpki.apnic.net/member_repository/A91A1857/F1307B74DAD711E99F8CAC78C4F9AE02/ipvaaFOfcVjLATcgqZNvJkuaU3s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ipvaaFOfcVjLATcgqZNvJkuaU3s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 18:03:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3282 (0xcd2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A1857/serialNumber=8A9BDA68539F7158CB013720A9936F264B9A537B Validity Not Before: Nov 22 18:03:41 2024 GMT Not After : Nov 29 18:03:41 2024 GMT Subject: CN=6740c77d-22d9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:e4:fa:d6:cb:e3:8a:5e:5a:dc:6e:74:07:5b: 74:88:25:9a:9b:68:54:b4:d5:47:5a:0d:6e:f6:8f: 76:9f:42:98:e0:ff:1d:45:f8:f7:a8:24:51:47:ae: 7c:44:f7:5a:c7:9e:20:9a:b3:a4:7a:cf:b5:1f:8d: 37:89:e1:3f:5f:00:8a:4e:94:93:be:f9:b8:b7:44: 9b:e1:5c:6d:e9:46:25:28:7c:30:a2:76:75:81:40: 6b:b6:05:52:84:3d:5a:fb:38:26:ee:56:be:8b:0c: 77:87:cd:a1:00:a5:c6:58:52:c9:78:96:f7:b1:2b: 6c:e0:55:07:53:32:9a:eb:fd:f1:ca:72:30:f7:06: 28:06:b1:e5:91:9b:45:0f:ba:40:08:26:43:43:0e: 09:1a:20:f3:2e:96:97:58:58:6f:72:2a:36:74:29: 58:13:6a:2b:73:db:fb:d4:d7:21:38:e3:50:69:b3: cb:c9:ba:e1:32:fa:f7:3e:66:12:55:53:0e:0c:2b: 1c:a0:b6:25:60:29:fb:07:e6:3b:05:8b:36:6b:80: 80:23:e3:d2:4a:1f:e6:86:06:d9:30:91:47:a2:6a: 07:29:29:c5:71:22:b2:87:80:c5:7b:1f:c5:cf:73: df:77:bd:c8:5e:71:52:03:d9:da:5b:17:5c:34:61: 63:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:58:4F:FD:D4:84:C7:00:28:6B:0E:55:B2:39:06:F2:A8:00:28:74 X509v3 Authority Key Identifier: keyid:8A:9B:DA:68:53:9F:71:58:CB:01:37:20:A9:93:6F:26:4B:9A:53:7B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A1857/F1307B74DAD711E99F8CAC78C4F9AE02/ipvaaFOfcVjLATcgqZNvJkuaU3s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ipvaaFOfcVjLATcgqZNvJkuaU3s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A1857/F1307B74DAD711E99F8CAC78C4F9AE02/ipvaaFOfcVjLATcgqZNvJkuaU3s.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4b:8f:b2:f4:10:20:8b:a8:63:01:91:db:59:91:6e:88:c3:0a: 51:e6:4a:6e:d0:e9:b7:21:a0:df:f8:9a:b3:d4:a3:09:54:3c: 7c:86:f6:ec:2f:04:19:0b:fb:ae:fe:70:22:46:20:a3:0e:50: 5d:16:c6:74:c2:94:6c:95:38:e2:fa:cb:af:fd:93:c7:1c:a4: da:5a:32:f2:e2:bf:45:50:5c:6b:68:12:e4:89:35:5e:d0:e5: 18:08:33:b2:2b:b8:eb:c0:a8:99:04:50:45:18:be:ec:63:09: 4d:1c:07:4f:c2:e3:5f:6b:e8:2b:e0:08:52:ec:d8:48:b4:aa: 65:bf:8a:97:f0:25:f5:64:ab:6b:72:2b:e8:84:8b:6a:1f:a2: e5:68:28:77:e4:84:2f:b3:af:00:21:89:d6:cb:cd:47:7c:fd: 05:89:fb:21:e9:fc:3b:74:5c:c9:59:28:a9:b6:34:63:b5:2f: 08:39:5a:59:a8:30:78:9b:94:f3:2c:ef:4f:0f:6f:4b:03:92: 24:70:4f:50:96:f4:4b:f4:ad:cf:c1:3b:87:ad:b5:3a:47:8a: a0:49:ca:07:80:6d:ad:d4:7b:78:29:ee:4d:83:c8:72:e7:8c: 2a:30:31:07:a3:ca:95:ae:35:ce:e5:18:f8:ca:b5:61:99:34: 9f:de:42:79 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDNIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTE4NTcxMTAvBgNVBAUTKDhBOUJEQTY4NTM5RjcxNThDQjAxMzcyMEE5OTM2RjI2 NEI5QTUzN0IwHhcNMjQxMTIyMTgwMzQxWhcNMjQxMTI5MTgwMzQxWjAYMRYwFAYD VQQDEw02NzQwYzc3ZC0yMmQ5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7uT61svjil5a3G50B1t0iCWam2hUtNVHWg1u9o92n0KY4P8dRfj3qCRRR658 RPdax54gmrOkes+1H403ieE/XwCKTpSTvvm4t0Sb4Vxt6UYlKHwwonZ1gUBrtgVS hD1a+zgm7la+iwx3h82hAKXGWFLJeJb3sSts4FUHUzKa6/3xynIw9wYoBrHlkZtF D7pACCZDQw4JGiDzLpaXWFhvcio2dClYE2orc9v71NchOONQabPLybrhMvr3PmYS VVMODCscoLYlYCn7B+Y7BYs2a4CAI+PSSh/mhgbZMJFHomoHKSnFcSKyh4DFex/F z3Pfd73IXnFSA9naWxdcNGFj5wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAJYT/3U hMcAKGsOVbI5BvKoACh0MB8GA1UdIwQYMBaAFIqb2mhTn3FYywE3IKmTbyZLmlN7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMTg1Ny9GMTMwN0I3NERB RDcxMUU5OUY4Q0FDNzhDNEY5QUUwMi9pcHZhYUZPZmNWakxBVGNncVpOdkprdWFV M3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lwdmFhRk9mY1ZqTEFUY2dxWk52Smt1YVUzcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MTg1Ny9GMTMwN0I3NERBRDcxMUU5OUY4Q0FDNzhDNEY5QUUwMi9pcHZhYUZPZmNW akxBVGNncVpOdkprdWFVM3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBLj7L0ECCLqGMBkdtZkW6IwwpR5kpu0Om3IaDf+Jqz1KMJVDx8hvbs LwQZC/uu/nAiRiCjDlBdFsZ0wpRslTji+suv/ZPHHKTaWjLy4r9FUFxraBLkiTVe 0OUYCDOyK7jrwKiZBFBFGL7sYwlNHAdPwuNfa+gr4AhS7NhItKplv4qX8CX1ZKtr civohItqH6LlaCh35IQvs68AIYnWy81HfP0Fifsh6fw7dFzJWSiptjRjtS8IOVpZ qDB4m5TzLO9PD29LA5IkcE9QlvRL9K3PwTuHrbU6R4qgScoHgG2t1Ht4Ke5Ng8hy 54wqMDEHo8qVrjXO5Rj4yrVhmTSf3kJ5 -----END CERTIFICATE-----Generated at Fri Nov 22 19:45:01 2024 by rpki-client on console-fra.rpki-client.org