$ rpki-client -vvf rpki.apnic.net/member_repository/A91A78A7/50D61BB6713D11ED9FDF3D12C4F9AE02/n095sMMg0u--SKvL-paoRdZHlu8.mft File: n095sMMg0u--SKvL-paoRdZHlu8.mft (raw, json) Hash identifier: 2o4RqzZDTuF2/nFYrPAG9mKEvafYOraqZRw3x7BOrN0= Subject key identifier: 04:23:CD:AB:3E:A7:78:D7:B8:64:05:FA:A1:6A:C6:AE:7A:12:74:E5 Authority key identifier: 9F:4F:79:B0:C3:20:D2:EF:BE:48:AB:CB:FA:96:A8:45:D6:47:96:EF Certificate issuer: /CN=A91A78A7/serialNumber=9F4F79B0C320D2EFBE48ABCBFA96A845D64796EF Certificate serial: 0171 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/n095sMMg0u--SKvL-paoRdZHlu8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A78A7/50D61BB6713D11ED9FDF3D12C4F9AE02/n095sMMg0u--SKvL-paoRdZHlu8.mft Manifest number: 0171 Signing time: Thu 21 Nov 2024 01:30:36 +0000 Manifest this update: Thu 21 Nov 2024 01:30:36 +0000 Manifest next update: Thu 28 Nov 2024 01:30:36 +0000 Files and hashes: 1: n095sMMg0u--SKvL-paoRdZHlu8.crl (hash: 7sF1ovJcGzv5iVruz75yXtYcBvfMMV7f55Ph2v/h0mA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A78A7/50D61BB6713D11ED9FDF3D12C4F9AE02/n095sMMg0u--SKvL-paoRdZHlu8.crl rsync://rpki.apnic.net/member_repository/A91A78A7/50D61BB6713D11ED9FDF3D12C4F9AE02/n095sMMg0u--SKvL-paoRdZHlu8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/n095sMMg0u--SKvL-paoRdZHlu8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 19:45:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 369 (0x171) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A78A7/serialNumber=9F4F79B0C320D2EFBE48ABCBFA96A845D64796EF Validity Not Before: Nov 21 01:30:36 2024 GMT Not After : Nov 28 01:30:36 2024 GMT Subject: CN=673e8d3c-12f7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:53:0b:64:f3:34:45:6c:7c:7e:1d:2d:91:7d: f3:63:c9:85:3d:ed:66:c1:bb:b0:6f:5d:4b:28:b9: d6:b0:26:29:be:cc:cb:b4:f1:bb:ae:d5:44:70:34: dd:bf:6e:fb:f2:49:63:3d:a4:8b:12:87:64:55:93: 8e:4a:3d:fb:d5:83:4b:db:12:56:f1:61:9d:79:05: e5:fb:3f:7a:48:5e:e7:54:21:10:ab:82:5c:2f:98: 13:29:b5:42:c8:14:a0:f7:48:0c:88:f5:99:68:91: 91:36:ef:19:01:df:4f:f3:03:6c:d0:d5:c1:63:3b: af:51:aa:cb:0d:91:a5:a5:ac:b4:bb:4a:e0:36:89: 1a:9a:96:7f:40:25:22:f1:f0:85:53:54:d8:b9:b3: 1a:e6:ab:c6:61:cf:6e:a8:e6:00:bb:db:d1:cf:ad: 8e:b1:2c:29:cf:37:28:d1:c2:e7:b2:16:e1:5f:92: 44:8a:00:d8:bd:80:29:12:a5:90:19:47:80:cb:0b: 49:ae:20:3e:74:b3:78:df:c3:7a:86:72:dd:11:9d: 34:a8:64:7e:30:9a:5a:6a:f8:0a:09:1a:dc:f3:3e: d1:1b:42:c6:5d:40:66:69:f7:60:1b:3c:7b:c0:bc: b2:95:04:cd:8e:35:2b:ef:93:97:5c:d5:e4:26:0f: b1:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:23:CD:AB:3E:A7:78:D7:B8:64:05:FA:A1:6A:C6:AE:7A:12:74:E5 X509v3 Authority Key Identifier: keyid:9F:4F:79:B0:C3:20:D2:EF:BE:48:AB:CB:FA:96:A8:45:D6:47:96:EF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A78A7/50D61BB6713D11ED9FDF3D12C4F9AE02/n095sMMg0u--SKvL-paoRdZHlu8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/n095sMMg0u--SKvL-paoRdZHlu8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A78A7/50D61BB6713D11ED9FDF3D12C4F9AE02/n095sMMg0u--SKvL-paoRdZHlu8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 21:73:bb:08:7d:15:1e:65:e5:20:f8:a2:94:1c:b6:a3:dd:de: 5e:36:0a:cc:48:3a:d6:76:36:a0:3d:d7:68:d2:c2:d3:b8:51: b5:b7:c4:9d:6e:09:4f:d3:80:2a:08:7c:5f:52:bb:8c:c2:87: 91:62:b5:b2:68:d5:13:8e:73:19:f9:4b:4c:4e:ac:30:2b:2d: aa:c2:e1:4c:50:ba:25:b9:82:81:c8:4f:d0:f7:c0:1e:03:3e: 69:6f:e4:23:c9:c7:66:11:a0:03:ed:3e:e2:90:48:a6:63:de: b0:51:75:0c:eb:7a:68:da:c9:4f:69:7c:67:15:62:a8:1a:d3: 31:86:48:f1:2d:97:de:b4:fb:da:99:21:82:41:fd:59:0a:1e: 9d:26:56:92:0a:11:1f:f6:b8:47:a9:f7:74:ea:11:9e:2e:d7: 0f:fe:96:9b:ee:b0:c5:42:ff:22:42:b2:49:11:29:7e:da:f5: db:55:bf:05:94:18:c2:70:a3:89:27:c6:af:b4:4a:8e:53:32: 4c:0b:a7:01:64:0d:bb:56:8e:23:ae:a7:76:32:55:58:fe:5c: 88:ef:89:ba:93:18:af:ca:b8:80:47:c9:36:fb:5a:e4:9b:95: 27:a9:d9:49:a7:1f:1d:0d:9f:0e:86:17:79:70:d4:84:eb:fd: 9d:11:7d:5d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAXEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTc4QTcxMTAvBgNVBAUTKDlGNEY3OUIwQzMyMEQyRUZCRTQ4QUJDQkZBOTZBODQ1 RDY0Nzk2RUYwHhcNMjQxMTIxMDEzMDM2WhcNMjQxMTI4MDEzMDM2WjAYMRYwFAYD VQQDEw02NzNlOGQzYy0xMmY3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1VMLZPM0RWx8fh0tkX3zY8mFPe1mwbuwb11LKLnWsCYpvszLtPG7rtVEcDTd v2778kljPaSLEodkVZOOSj371YNL2xJW8WGdeQXl+z96SF7nVCEQq4JcL5gTKbVC yBSg90gMiPWZaJGRNu8ZAd9P8wNs0NXBYzuvUarLDZGlpay0u0rgNokampZ/QCUi 8fCFU1TYubMa5qvGYc9uqOYAu9vRz62OsSwpzzco0cLnshbhX5JEigDYvYApEqWQ GUeAywtJriA+dLN438N6hnLdEZ00qGR+MJpaavgKCRrc8z7RG0LGXUBmafdgGzx7 wLyylQTNjjUr75OXXNXkJg+xkQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAQjzas+ p3jXuGQF+qFqxq56EnTlMB8GA1UdIwQYMBaAFJ9PebDDINLvvkiry/qWqEXWR5bv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNzhBNy81MEQ2MUJCNjcx M0QxMUVEOUZERjNEMTJDNEY5QUUwMi9uMDk1c01NZzB1LS1TS3ZMLXBhb1JkWkhs dTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL24wOTVzTU1nMHUtLVNLdkwtcGFvUmRaSGx1OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NzhBNy81MEQ2MUJCNjcxM0QxMUVEOUZERjNEMTJDNEY5QUUwMi9uMDk1c01NZzB1 LS1TS3ZMLXBhb1JkWkhsdTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAhc7sIfRUeZeUg+KKUHLaj3d5eNgrMSDrWdjagPddo0sLTuFG1t8Sd bglP04AqCHxfUruMwoeRYrWyaNUTjnMZ+UtMTqwwKy2qwuFMULoluYKByE/Q98Ae Az5pb+QjycdmEaAD7T7ikEimY96wUXUM63po2slPaXxnFWKoGtMxhkjxLZfetPva mSGCQf1ZCh6dJlaSChEf9rhHqfd06hGeLtcP/pab7rDFQv8iQrJJESl+2vXbVb8F lBjCcKOJJ8avtEqOUzJMC6cBZA27Vo4jrqd2MlVY/lyI74m6kxivyriAR8k2+1rk m5UnqdlJpx8dDZ8Ohhd5cNSE6/2dEX1d -----END CERTIFICATE-----Generated at Thu Nov 21 03:12:02 2024 by rpki-client on console-fra.rpki-client.org