$ rpki-client -vvf rpki.apnic.net/member_repository/A91A5D8A/BA2F1B9ACAEE11EBA2FBD056C4F9AE02/eFfRGlHcrpwuCIahDOBvVfW4QwA.mft File: eFfRGlHcrpwuCIahDOBvVfW4QwA.mft (raw, json) Hash identifier: XsN887uCBvP94ztyrp//hTeWvZpw8owi7ej50egNBTQ= Subject key identifier: E6:08:34:4E:1E:DF:93:D3:66:A2:91:D5:B4:C6:71:D9:2B:51:BB:DD Authority key identifier: 78:57:D1:1A:51:DC:AE:9C:2E:08:86:A1:0C:E0:6F:55:F5:B8:43:00 Certificate issuer: /CN=A91A5D8A/serialNumber=7857D11A51DCAE9C2E0886A10CE06F55F5B84300 Certificate serial: 0550 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eFfRGlHcrpwuCIahDOBvVfW4QwA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A5D8A/BA2F1B9ACAEE11EBA2FBD056C4F9AE02/eFfRGlHcrpwuCIahDOBvVfW4QwA.mft Manifest number: 0549 Signing time: Wed 20 Nov 2024 23:01:02 +0000 Manifest this update: Wed 20 Nov 2024 23:01:01 +0000 Manifest next update: Wed 27 Nov 2024 23:01:01 +0000 Files and hashes: 1: eFfRGlHcrpwuCIahDOBvVfW4QwA.crl (hash: yugGjzmqfK2MN4wDaHnqarJ3pvJIIoqF1wt9P7L2CsI=) 2: 8183B0FACAF111EBA40AF15BC4F9AE02.roa (hash: XwG0FHSlMJ0rTygHTL6/8gSgzUHSXejVg64oWEJojIA=) 3: 18981398329B11EDB9F09862C4F9AE02.roa (hash: va0dDvMjHYfQf8YH7iN9o7r8RUidDQZSikq8ZnL2A8Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A5D8A/BA2F1B9ACAEE11EBA2FBD056C4F9AE02/eFfRGlHcrpwuCIahDOBvVfW4QwA.crl rsync://rpki.apnic.net/member_repository/A91A5D8A/BA2F1B9ACAEE11EBA2FBD056C4F9AE02/eFfRGlHcrpwuCIahDOBvVfW4QwA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eFfRGlHcrpwuCIahDOBvVfW4QwA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:33:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1360 (0x550) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A5D8A/serialNumber=7857D11A51DCAE9C2E0886A10CE06F55F5B84300 Validity Not Before: Nov 20 23:01:01 2024 GMT Not After : Nov 27 23:01:01 2024 GMT Subject: CN=673e6a2d-946b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:c1:0b:c6:62:fb:88:43:a3:19:1f:f4:eb:88: ad:dd:01:54:27:60:ce:da:ad:ef:65:cd:95:b7:7f: eb:81:00:f1:4c:c0:20:e3:9a:7f:d8:99:6f:43:48: dd:b6:bf:4b:7e:b5:8c:a1:42:cf:25:27:1a:73:88: e7:ed:29:6e:01:ec:0f:cd:e9:cc:74:e7:d5:0a:ec: 26:d9:a2:72:3a:f8:75:51:42:42:ba:6b:98:9b:a8: 83:83:18:37:19:9d:8d:54:dc:81:f2:c5:a7:0a:48: 79:2e:c3:62:8a:c2:58:03:45:28:5b:bf:5d:28:98: 6e:ae:3a:b9:12:c9:e9:ba:6d:76:c8:6a:f9:8f:f2: e8:d8:48:af:e6:d7:e5:4a:83:0d:40:9b:a6:7d:1a: ea:57:4e:28:e5:03:f7:69:79:50:e8:1f:86:8b:a7: 6f:fb:09:d3:e7:c4:27:43:b8:b4:2f:c9:db:ed:4b: d2:15:09:c7:19:5e:04:d5:91:1b:0e:bd:86:8f:fe: 6a:f2:e3:db:c8:bc:ee:c3:26:91:d5:fe:ec:f3:8c: 97:a6:a5:63:bc:8e:f8:fe:be:45:86:48:d9:9d:d2: e8:45:40:1b:29:6b:d3:0b:5a:2d:81:8a:7b:c6:0b: ef:03:0b:c4:9f:c6:e7:aa:47:c0:b5:b8:08:42:13: a4:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:08:34:4E:1E:DF:93:D3:66:A2:91:D5:B4:C6:71:D9:2B:51:BB:DD X509v3 Authority Key Identifier: keyid:78:57:D1:1A:51:DC:AE:9C:2E:08:86:A1:0C:E0:6F:55:F5:B8:43:00 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A5D8A/BA2F1B9ACAEE11EBA2FBD056C4F9AE02/eFfRGlHcrpwuCIahDOBvVfW4QwA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eFfRGlHcrpwuCIahDOBvVfW4QwA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A5D8A/BA2F1B9ACAEE11EBA2FBD056C4F9AE02/eFfRGlHcrpwuCIahDOBvVfW4QwA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5a:04:08:b4:cc:0a:d0:10:cb:8d:7c:ad:79:16:5b:76:28:ec: 7e:3f:dd:f5:9b:6c:34:42:fc:1c:74:28:a6:c0:4d:f9:8f:47: 51:89:d5:78:4f:39:17:29:eb:6a:58:0d:d5:ec:5e:37:39:64: 33:80:87:3c:1e:82:b8:07:b6:4a:18:77:b5:63:48:53:0e:98: 6b:4a:9f:38:7c:2c:ff:3f:31:44:e9:3b:6f:e4:6e:fe:50:89: b6:0c:53:d4:f4:f1:97:41:85:c2:ef:1f:c8:e3:25:0a:fb:a9: f5:cf:3d:9d:1f:ad:51:fa:d1:59:e4:ff:d7:48:80:dc:08:3c: 53:55:60:4a:16:e8:19:ca:d5:c8:3c:99:5c:2e:ca:7d:4e:c3: b8:56:4a:c6:f3:e2:6f:8b:b0:35:b6:19:d3:d5:34:c0:1c:0a: a2:7b:89:0d:2a:de:d3:96:89:ed:62:68:49:1d:a2:05:96:18: cc:b6:7b:04:d8:55:81:28:f4:69:e9:c9:b3:96:1f:42:81:2b: d0:01:3d:0d:5f:8b:c0:65:cb:30:32:27:4a:93:78:89:a8:8b: 00:87:a1:c5:14:3a:e0:3f:89:e6:1c:be:40:ec:9d:f2:db:d8: c8:09:55:23:cb:07:cc:66:14:b6:2d:3c:42:dc:5f:85:59:7a: 8b:9e:23:f0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBVAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTVEOEExMTAvBgNVBAUTKDc4NTdEMTFBNTFEQ0FFOUMyRTA4ODZBMTBDRTA2RjU1 RjVCODQzMDAwHhcNMjQxMTIwMjMwMTAxWhcNMjQxMTI3MjMwMTAxWjAYMRYwFAYD VQQDEw02NzNlNmEyZC05NDZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxsELxmL7iEOjGR/064it3QFUJ2DO2q3vZc2Vt3/rgQDxTMAg45p/2JlvQ0jd tr9LfrWMoULPJScac4jn7SluAewPzenMdOfVCuwm2aJyOvh1UUJCumuYm6iDgxg3 GZ2NVNyB8sWnCkh5LsNiisJYA0UoW79dKJhurjq5Esnpum12yGr5j/Lo2Eiv5tfl SoMNQJumfRrqV04o5QP3aXlQ6B+Gi6dv+wnT58QnQ7i0L8nb7UvSFQnHGV4E1ZEb Dr2Gj/5q8uPbyLzuwyaR1f7s84yXpqVjvI74/r5FhkjZndLoRUAbKWvTC1otgYp7 xgvvAwvEn8bnqkfAtbgIQhOk/QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOYINE4e 35PTZqKR1bTGcdkrUbvdMB8GA1UdIwQYMBaAFHhX0RpR3K6cLgiGoQzgb1X1uEMA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNUQ4QS9CQTJGMUI5QUNB RUUxMUVCQTJGQkQwNTZDNEY5QUUwMi9lRmZSR2xIY3Jwd3VDSWFoRE9CdlZmVzRR d0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2VGZlJHbEhjcnB3dUNJYWhET0J2VmZXNFF3QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NUQ4QS9CQTJGMUI5QUNBRUUxMUVCQTJGQkQwNTZDNEY5QUUwMi9lRmZSR2xIY3Jw d3VDSWFoRE9CdlZmVzRRd0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBaBAi0zArQEMuNfK15Flt2KOx+P931m2w0QvwcdCimwE35j0dRidV4 TzkXKetqWA3V7F43OWQzgIc8HoK4B7ZKGHe1Y0hTDphrSp84fCz/PzFE6Ttv5G7+ UIm2DFPU9PGXQYXC7x/I4yUK+6n1zz2dH61R+tFZ5P/XSIDcCDxTVWBKFugZytXI PJlcLsp9TsO4VkrG8+Jvi7A1thnT1TTAHAqie4kNKt7TlontYmhJHaIFlhjMtnsE 2FWBKPRp6cmzlh9CgSvQAT0NX4vAZcswMidKk3iJqIsAh6HFFDrgP4nmHL5A7J3y 29jICVUjywfMZhS2LTxC3F+FWXqLniPw -----END CERTIFICATE-----Generated at Thu Nov 21 00:21:23 2024 by rpki-client on console-fra.rpki-client.org