$ rpki-client -vvf rpki.apnic.net/member_repository/A91A7CDD/8A23A6F8DD0D11EE9D292D6AC4F9AE02/g4qU7SUkCVmqbxVJEAOsbm0DlX4.mft File: g4qU7SUkCVmqbxVJEAOsbm0DlX4.mft (raw, json) Hash identifier: B5R7ihxOOQ2B8+MscHHIAavR7o4XVjNwQRYS84zAuUE= Subject key identifier: 66:21:D3:F5:91:16:BD:15:60:42:40:C5:BE:39:39:25:73:DF:BE:4C Authority key identifier: 83:8A:94:ED:25:24:09:59:AA:6F:15:49:10:03:AC:6E:6D:03:95:7E Certificate issuer: /CN=A91A7CDD/serialNumber=838A94ED25240959AA6F15491003AC6E6D03957E Certificate serial: 87 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/g4qU7SUkCVmqbxVJEAOsbm0DlX4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A7CDD/8A23A6F8DD0D11EE9D292D6AC4F9AE02/g4qU7SUkCVmqbxVJEAOsbm0DlX4.mft Manifest number: 85 Signing time: Thu 21 Nov 2024 04:43:15 +0000 Manifest this update: Thu 21 Nov 2024 04:43:14 +0000 Manifest next update: Thu 28 Nov 2024 04:43:14 +0000 Files and hashes: 1: g4qU7SUkCVmqbxVJEAOsbm0DlX4.crl (hash: Ro2AVIpU6US9vZ0NnheJDegXT/7g21kOpnB54Kuo+Lg=) 2: 1E595AE8DD0E11EE9833196BC4F9AE02.roa (hash: ABk7UnhSiI/cyac2q37QjbleVm+GdMhRfrm7xL7Vb0c=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A7CDD/8A23A6F8DD0D11EE9D292D6AC4F9AE02/g4qU7SUkCVmqbxVJEAOsbm0DlX4.crl rsync://rpki.apnic.net/member_repository/A91A7CDD/8A23A6F8DD0D11EE9D292D6AC4F9AE02/g4qU7SUkCVmqbxVJEAOsbm0DlX4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/g4qU7SUkCVmqbxVJEAOsbm0DlX4.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 02:50:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 135 (0x87) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A7CDD/serialNumber=838A94ED25240959AA6F15491003AC6E6D03957E Validity Not Before: Nov 21 04:43:14 2024 GMT Not After : Nov 28 04:43:14 2024 GMT Subject: CN=673eba62-26e9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:48:b4:91:2c:19:79:51:01:d0:11:12:4f:ff: cc:58:d9:d8:ad:21:d3:a7:61:12:6c:25:86:ca:dd: bb:94:82:e6:fc:50:48:1f:0d:2c:a4:b8:99:34:25: 17:2c:e9:cd:cf:29:33:af:46:a5:11:b2:1e:26:21: 17:25:46:a6:0d:b5:32:46:b4:35:f9:c4:b6:2a:b4: 49:42:de:47:f0:2d:e3:d7:26:02:96:09:07:b7:d5: e1:0b:0e:50:af:00:2a:a4:ec:a9:f2:b2:07:8e:8d: 85:cc:74:5a:c4:79:37:b3:ad:71:65:a7:eb:19:01: d4:47:e0:79:f2:e9:18:ba:5c:f3:ec:ad:cc:e2:eb: c5:8a:f9:ae:f7:84:4d:68:20:31:27:f6:3a:39:1f: 19:34:64:71:49:f6:43:68:21:ab:a8:1c:2b:c0:1f: 8a:5a:f9:b0:62:e4:4e:85:19:65:99:dc:bb:e6:6b: 8a:2b:80:42:26:a5:94:86:4c:b1:a9:ab:b8:c5:3e: 32:6f:90:44:9f:cf:6e:ad:7b:ea:c1:fc:13:4f:41: 2a:b8:30:23:54:bc:15:66:1c:57:60:21:4e:46:8c: 1b:47:2f:04:0e:5c:73:c8:88:68:32:8f:03:0d:14: d4:14:53:a2:1d:3f:29:d0:ee:19:77:c7:33:3b:c0: 29:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:21:D3:F5:91:16:BD:15:60:42:40:C5:BE:39:39:25:73:DF:BE:4C X509v3 Authority Key Identifier: keyid:83:8A:94:ED:25:24:09:59:AA:6F:15:49:10:03:AC:6E:6D:03:95:7E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A7CDD/8A23A6F8DD0D11EE9D292D6AC4F9AE02/g4qU7SUkCVmqbxVJEAOsbm0DlX4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/g4qU7SUkCVmqbxVJEAOsbm0DlX4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A7CDD/8A23A6F8DD0D11EE9D292D6AC4F9AE02/g4qU7SUkCVmqbxVJEAOsbm0DlX4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 59:9b:c2:63:a8:f9:3b:cb:09:31:bb:96:63:51:70:a7:ca:fe: de:32:5e:46:82:39:dd:e2:dd:c0:7a:53:f8:f8:a9:7f:68:fe: 73:1b:f7:51:fa:44:8e:d3:ef:03:63:bf:e0:af:24:c5:ee:25: cf:db:5e:9a:43:d1:c0:8b:0a:14:2f:3b:76:1a:6b:94:3a:35: 12:b0:ba:08:ea:23:c5:6e:22:90:f8:09:bb:63:a1:9b:26:23: 3a:d7:6b:96:5f:5c:ff:e8:8d:97:0c:d4:3b:01:88:55:ca:c8: a9:cf:60:68:49:9b:f5:ef:2b:76:c2:dd:0a:ad:49:57:90:c6: 58:19:32:f9:89:ae:b6:ce:12:b8:b5:46:46:8b:b8:6b:c1:21: 17:59:0e:c1:74:04:a1:84:c6:6c:55:95:62:e4:31:e9:47:d1: 28:ad:04:7a:60:b7:3b:fe:8e:c8:19:6c:3e:21:ef:08:ed:c8: e6:3e:c5:4e:79:56:34:54:6e:9e:04:fb:54:78:e5:92:5c:5c: be:53:00:0c:50:61:30:9b:08:48:55:2c:e5:07:e7:08:82:5d: 38:d6:5c:06:ef:76:e5:5d:11:dd:d8:d1:a5:64:a9:7d:62:ae: f7:58:2d:3d:c8:a7:4d:8e:32:ab:2f:35:b2:31:3b:a9:53:2a: 89:ed:ce:bb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTdDREQxMTAvBgNVBAUTKDgzOEE5NEVEMjUyNDA5NTlBQTZGMTU0OTEwMDNBQzZF NkQwMzk1N0UwHhcNMjQxMTIxMDQ0MzE0WhcNMjQxMTI4MDQ0MzE0WjAYMRYwFAYD VQQDEw02NzNlYmE2Mi0yNmU5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnki0kSwZeVEB0BEST//MWNnYrSHTp2ESbCWGyt27lILm/FBIHw0spLiZNCUX LOnNzykzr0alEbIeJiEXJUamDbUyRrQ1+cS2KrRJQt5H8C3j1yYClgkHt9XhCw5Q rwAqpOyp8rIHjo2FzHRaxHk3s61xZafrGQHUR+B58ukYulzz7K3M4uvFivmu94RN aCAxJ/Y6OR8ZNGRxSfZDaCGrqBwrwB+KWvmwYuROhRllmdy75muKK4BCJqWUhkyx qau4xT4yb5BEn89urXvqwfwTT0EquDAjVLwVZhxXYCFORowbRy8EDlxzyIhoMo8D DRTUFFOiHT8p0O4Zd8czO8ApxQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGYh0/WR Fr0VYEJAxb45OSVz375MMB8GA1UdIwQYMBaAFIOKlO0lJAlZqm8VSRADrG5tA5V+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBN0NERC84QTIzQTZGOERE MEQxMUVFOUQyOTJENkFDNEY5QUUwMi9nNHFVN1NVa0NWbXFieFZKRUFPc2JtMERs WDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2c0cVU3U1VrQ1ZtcWJ4VkpFQU9zYm0wRGxYNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB N0NERC84QTIzQTZGOEREMEQxMUVFOUQyOTJENkFDNEY5QUUwMi9nNHFVN1NVa0NW bXFieFZKRUFPc2JtMERsWDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBZm8JjqPk7ywkxu5ZjUXCnyv7eMl5Ggjnd4t3AelP4+Kl/aP5zG/dR +kSO0+8DY7/gryTF7iXP216aQ9HAiwoULzt2GmuUOjUSsLoI6iPFbiKQ+Am7Y6Gb JiM612uWX1z/6I2XDNQ7AYhVysipz2BoSZv17yt2wt0KrUlXkMZYGTL5ia62zhK4 tUZGi7hrwSEXWQ7BdAShhMZsVZVi5DHpR9EorQR6YLc7/o7IGWw+Ie8I7cjmPsVO eVY0VG6eBPtUeOWSXFy+UwAMUGEwmwhIVSzlB+cIgl041lwG73blXRHd2NGlZKl9 Yq73WC09yKdNjjKrLzWyMTupUyqJ7c67 -----END CERTIFICATE-----Generated at Thu Nov 21 06:50:47 2024 by rpki-client on console-fra.rpki-client.org