$ rpki-client -vvf rpki.apnic.net/member_repository/A91A4A13/BB6C9B54B98011EDA37B1B65C4F9AE02/pfsx1NUSX3yarlADNaSA_HeQjxU.mft File: pfsx1NUSX3yarlADNaSA_HeQjxU.mft (raw, json) Hash identifier: r+j7A0kpqDqdNaMXaHANS+yAGQPayIpY9NxzK/a1PJU= Subject key identifier: 23:2F:4E:72:42:01:49:74:99:0E:85:6C:D8:23:F6:D0:C3:E1:DE:B4 Authority key identifier: A5:FB:31:D4:D5:12:5F:7C:9A:AE:50:03:35:A4:80:FC:77:90:8F:15 Certificate issuer: /CN=A91A4A13/serialNumber=A5FB31D4D5125F7C9AAE500335A480FC77908F15 Certificate serial: 014B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pfsx1NUSX3yarlADNaSA_HeQjxU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A4A13/BB6C9B54B98011EDA37B1B65C4F9AE02/pfsx1NUSX3yarlADNaSA_HeQjxU.mft Manifest number: 0147 Signing time: Sat 23 Nov 2024 02:36:09 +0000 Manifest this update: Sat 23 Nov 2024 02:36:08 +0000 Manifest next update: Sat 30 Nov 2024 02:36:08 +0000 Files and hashes: 1: pfsx1NUSX3yarlADNaSA_HeQjxU.crl (hash: Alsqu6RYcKStl6JlPzLeMcR3mTlftlraMTfqYvKwagM=) 2: A8D327E4BBC711ED8DF23C40C4F9AE02.roa (hash: jtm4IGu6ehkk/GhdKICbbynbKgcYNoX0OJfsqwSmMDI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A4A13/BB6C9B54B98011EDA37B1B65C4F9AE02/pfsx1NUSX3yarlADNaSA_HeQjxU.crl rsync://rpki.apnic.net/member_repository/A91A4A13/BB6C9B54B98011EDA37B1B65C4F9AE02/pfsx1NUSX3yarlADNaSA_HeQjxU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pfsx1NUSX3yarlADNaSA_HeQjxU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:36:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 331 (0x14b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A4A13/serialNumber=A5FB31D4D5125F7C9AAE500335A480FC77908F15 Validity Not Before: Nov 23 02:36:08 2024 GMT Not After : Nov 30 02:36:08 2024 GMT Subject: CN=67413f98-5531 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:dc:1c:5a:fc:d9:1c:5d:30:38:30:3f:a1:be: f8:7a:15:d4:80:44:d6:2f:03:1d:a5:3b:fe:b8:60: b1:24:be:4b:1a:77:d3:66:7f:75:1e:c6:84:3a:80: f6:47:4b:c2:2c:36:cc:90:57:15:46:4f:8b:80:d8: 19:8a:2d:2c:a7:9f:09:e4:bf:4d:9e:e1:88:90:3a: 20:9d:11:ee:a3:8c:4e:a9:63:9f:07:69:95:46:68: 0a:63:fb:f2:1b:6c:94:de:8b:28:ac:b4:6f:2b:ec: cf:d6:7c:c6:14:8d:90:38:b6:d3:25:89:f3:b7:fb: 08:46:68:75:30:cf:4c:d8:b3:08:4f:6e:e0:0d:ca: 6d:3b:b7:21:c2:e2:2e:62:ff:f1:d4:fe:50:d9:57: 71:c3:ae:78:cd:b4:e4:bf:5f:95:ed:a2:8d:eb:e0: 61:c1:20:6f:ac:cc:2c:4d:5f:85:20:12:2f:a2:b1: 7f:12:5e:b6:22:2c:5f:a2:f0:8b:b9:a0:ba:e7:84: 3d:da:4b:d0:59:44:06:3d:cc:e7:e7:4f:8c:97:39: 32:e5:71:03:84:6f:30:50:ca:54:a5:e8:1e:ce:7d: ec:53:08:c0:46:22:6b:10:91:b2:fb:ef:ca:6c:97: db:a5:1a:b8:58:00:13:5d:bc:be:27:16:2d:52:ee: 88:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:2F:4E:72:42:01:49:74:99:0E:85:6C:D8:23:F6:D0:C3:E1:DE:B4 X509v3 Authority Key Identifier: keyid:A5:FB:31:D4:D5:12:5F:7C:9A:AE:50:03:35:A4:80:FC:77:90:8F:15 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A4A13/BB6C9B54B98011EDA37B1B65C4F9AE02/pfsx1NUSX3yarlADNaSA_HeQjxU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pfsx1NUSX3yarlADNaSA_HeQjxU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A4A13/BB6C9B54B98011EDA37B1B65C4F9AE02/pfsx1NUSX3yarlADNaSA_HeQjxU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 41:db:c1:c6:2f:bb:09:39:79:91:1d:cd:fe:4c:ee:0c:8f:e3: 20:d0:40:97:21:5b:1d:db:24:ad:61:31:7d:d7:ae:a6:95:dd: fe:79:f4:e7:9a:ed:e8:15:e9:d1:a5:9e:fa:cc:0a:cc:cc:e6: 00:1f:a8:58:a6:42:19:81:e1:22:b2:80:7e:eb:50:65:5b:e1: 9d:b3:7d:a0:7b:eb:72:2c:5a:90:d1:43:a4:bb:97:e3:5a:8c: d1:25:6d:8e:91:a7:79:9e:99:df:00:68:8b:b3:7d:88:59:84: 05:45:bf:9d:4b:50:74:1f:44:84:89:d2:0e:7c:6d:b9:03:11: bb:29:91:dd:29:be:fc:e1:bb:23:a5:9a:1f:42:6c:f9:d8:f7: 3d:78:44:d1:dc:2c:86:c3:62:bf:9b:c0:20:18:8c:d7:9d:d7: 3f:90:20:70:6e:79:c8:b8:21:a0:6a:1f:89:83:bc:1e:06:40: bd:38:eb:f7:52:d3:ab:78:88:03:77:13:53:29:d6:72:67:74: a8:3d:d4:87:c4:b7:57:ed:82:f7:40:c2:f0:46:2f:5a:c9:66: b9:df:5c:fe:00:59:cc:fe:4f:6c:d6:15:19:86:c1:28:f3:1b: 4b:8e:27:01:ab:10:07:b8:d5:05:04:eb:ae:df:92:24:68:8b: 38:e5:a2:fe -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAUswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTRBMTMxMTAvBgNVBAUTKEE1RkIzMUQ0RDUxMjVGN0M5QUFFNTAwMzM1QTQ4MEZD Nzc5MDhGMTUwHhcNMjQxMTIzMDIzNjA4WhcNMjQxMTMwMDIzNjA4WjAYMRYwFAYD VQQDEw02NzQxM2Y5OC01NTMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAo9wcWvzZHF0wODA/ob74ehXUgETWLwMdpTv+uGCxJL5LGnfTZn91HsaEOoD2 R0vCLDbMkFcVRk+LgNgZii0sp58J5L9NnuGIkDognRHuo4xOqWOfB2mVRmgKY/vy G2yU3osorLRvK+zP1nzGFI2QOLbTJYnzt/sIRmh1MM9M2LMIT27gDcptO7chwuIu Yv/x1P5Q2Vdxw654zbTkv1+V7aKN6+BhwSBvrMwsTV+FIBIvorF/El62IixfovCL uaC654Q92kvQWUQGPczn50+Mlzky5XEDhG8wUMpUpegezn3sUwjARiJrEJGy++/K bJfbpRq4WAATXby+JxYtUu6IYwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCMvTnJC AUl0mQ6FbNgj9tDD4d60MB8GA1UdIwQYMBaAFKX7MdTVEl98mq5QAzWkgPx3kI8V MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNEExMy9CQjZDOUI1NEI5 ODAxMUVEQTM3QjFCNjVDNEY5QUUwMi9wZnN4MU5VU1gzeWFybEFETmFTQV9IZVFq eFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3Bmc3gxTlVTWDN5YXJsQUROYVNBX0hlUWp4VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NEExMy9CQjZDOUI1NEI5ODAxMUVEQTM3QjFCNjVDNEY5QUUwMi9wZnN4MU5VU1gz eWFybEFETmFTQV9IZVFqeFUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBB28HGL7sJOXmRHc3+TO4Mj+Mg0ECXIVsd2yStYTF9166mld3+efTn mu3oFenRpZ76zArMzOYAH6hYpkIZgeEisoB+61BlW+Gds32ge+tyLFqQ0UOku5fj WozRJW2Okad5npnfAGiLs32IWYQFRb+dS1B0H0SEidIOfG25AxG7KZHdKb784bsj pZofQmz52Pc9eETR3CyGw2K/m8AgGIzXndc/kCBwbnnIuCGgah+Jg7weBkC9OOv3 UtOreIgDdxNTKdZyZ3SoPdSHxLdX7YL3QMLwRi9ayWa531z+AFnM/k9s1hUZhsEo 8xtLjicBqxAHuNUFBOuu35IkaIs45aL+ -----END CERTIFICATE-----Generated at Sat Nov 23 05:02:54 2024 by rpki-client on console-fra.rpki-client.org