$ rpki-client -vvf rpki.apnic.net/member_repository/A91A8D22/252697981D9211E2B618CAF408B02CD2/poP2ckwCoT8tOc8vIVAL4AOA3eM.mft File: poP2ckwCoT8tOc8vIVAL4AOA3eM.mft (raw, json) Hash identifier: /7oC+TQTvdYQecXkvFAIgvqsQN4FfjlxoTfFV98SAXI= Subject key identifier: 07:E4:17:91:CC:F4:A3:01:EB:04:F2:62:C9:1A:98:AB:62:FF:36:DC Authority key identifier: A6:83:F6:72:4C:02:A1:3F:2D:39:CF:2F:21:50:0B:E0:03:80:DD:E3 Certificate issuer: /CN=A91A8D22/serialNumber=A683F6724C02A13F2D39CF2F21500BE00380DDE3 Certificate serial: 3473 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/poP2ckwCoT8tOc8vIVAL4AOA3eM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A8D22/252697981D9211E2B618CAF408B02CD2/poP2ckwCoT8tOc8vIVAL4AOA3eM.mft Manifest number: 344C Signing time: Fri 22 Nov 2024 14:45:29 +0000 Manifest this update: Fri 22 Nov 2024 14:45:28 +0000 Manifest next update: Fri 29 Nov 2024 14:45:28 +0000 Files and hashes: 1: poP2ckwCoT8tOc8vIVAL4AOA3eM.crl (hash: M10p7BNcMpKynW5fn4jrk9thYcAXFb96Y5B7ye6FRo0=) 2: 5B5ECC52474711ECA7B2426CC4F9AE02.roa (hash: dC278Jasv16ABeBncckRYaabj45oiL9uCdUDcCgUOqw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A8D22/252697981D9211E2B618CAF408B02CD2/poP2ckwCoT8tOc8vIVAL4AOA3eM.crl rsync://rpki.apnic.net/member_repository/A91A8D22/252697981D9211E2B618CAF408B02CD2/poP2ckwCoT8tOc8vIVAL4AOA3eM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/poP2ckwCoT8tOc8vIVAL4AOA3eM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 14:45:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13427 (0x3473) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A8D22/serialNumber=A683F6724C02A13F2D39CF2F21500BE00380DDE3 Validity Not Before: Nov 22 14:45:28 2024 GMT Not After : Nov 29 14:45:28 2024 GMT Subject: CN=67409909-a9e1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:b8:f5:24:34:4d:18:35:e5:d8:9e:57:2b:1c: d8:1c:fd:e7:97:d1:48:f1:68:ac:99:be:ee:d7:79: 7e:f6:44:be:b1:75:54:d3:8d:e2:75:3c:12:eb:5e: 07:c9:68:ac:d8:e6:7e:26:43:8c:07:5d:d1:63:8b: d8:8c:51:30:e9:13:d8:d5:82:c6:ed:0c:4d:f7:8c: f3:89:98:20:24:9e:30:44:ab:40:e5:43:65:05:5f: 32:ba:de:71:18:85:bb:63:2a:17:70:94:0e:b7:23: 05:55:67:15:85:ba:1c:60:d1:b0:78:f5:8a:10:ac: 65:bb:c2:54:1a:62:41:af:5b:52:89:e1:29:ee:a2: ca:b4:a0:9d:82:dc:2a:92:4c:17:6d:89:11:0d:fd: ae:6c:b9:e2:03:75:8c:e5:0e:19:6d:0e:ed:80:ff: 7d:41:c1:5d:2a:5d:26:81:bf:7e:0b:86:bb:25:0a: 74:c7:84:64:da:9c:8e:08:06:15:15:76:f5:42:87: 3e:43:0e:d3:3b:0e:e9:ad:a0:c0:b7:d0:bf:ae:9f: 50:2c:ca:85:57:5f:27:87:ef:23:d0:47:a8:be:b6: 8b:a0:9a:16:a2:64:d3:e4:15:5f:db:bd:2a:59:ea: e6:f2:ba:16:1c:2b:87:c7:e9:64:b8:4b:3e:0a:f2: 11:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:E4:17:91:CC:F4:A3:01:EB:04:F2:62:C9:1A:98:AB:62:FF:36:DC X509v3 Authority Key Identifier: keyid:A6:83:F6:72:4C:02:A1:3F:2D:39:CF:2F:21:50:0B:E0:03:80:DD:E3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A8D22/252697981D9211E2B618CAF408B02CD2/poP2ckwCoT8tOc8vIVAL4AOA3eM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/poP2ckwCoT8tOc8vIVAL4AOA3eM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A8D22/252697981D9211E2B618CAF408B02CD2/poP2ckwCoT8tOc8vIVAL4AOA3eM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 54:34:a7:9a:b0:1c:53:05:f2:d7:1d:01:db:f1:34:1a:90:84: d2:fa:8d:00:57:9d:be:9e:ba:fe:21:33:d1:d2:a6:1e:82:dc: cc:8a:fb:49:75:7e:e5:ea:c8:7a:05:cb:8c:ec:37:28:35:73: 1d:ba:c2:e1:a6:a5:20:4a:21:ba:59:14:51:2a:c8:af:0f:4a: a6:5f:9d:34:47:77:9f:9b:c7:85:b1:35:5d:57:df:7d:7a:1c: 17:b4:f1:7e:7d:4e:44:95:29:85:fc:a1:d6:ac:08:aa:94:9d: 0b:74:a8:44:0b:20:12:28:4c:b3:08:31:ba:99:5c:6d:5b:a6: 4a:80:03:d7:eb:c7:b3:41:c0:8d:10:0b:b5:83:48:7e:ca:18: 21:4e:96:cb:21:a8:83:80:50:63:16:b7:a9:a5:ea:c2:56:09: f1:25:c0:48:13:f0:0e:58:aa:75:50:58:b3:83:6c:a2:fb:f5: 92:28:ac:72:22:b4:20:9e:24:d5:23:c5:85:c8:6b:e0:9c:17: bc:31:ef:dc:b4:2c:3a:6d:bd:23:32:cf:e0:68:0c:51:f5:72: 27:9b:d3:a4:47:32:df:19:d0:ff:07:10:90:09:ae:90:5d:97: d5:b1:52:3e:60:15:58:9d:14:13:28:f8:3b:be:76:4b:54:96: 44:50:7a:63 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNHMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QThEMjIxMTAvBgNVBAUTKEE2ODNGNjcyNEMwMkExM0YyRDM5Q0YyRjIxNTAwQkUw MDM4MERERTMwHhcNMjQxMTIyMTQ0NTI4WhcNMjQxMTI5MTQ0NTI4WjAYMRYwFAYD VQQDEw02NzQwOTkwOS1hOWUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA37j1JDRNGDXl2J5XKxzYHP3nl9FI8Wismb7u13l+9kS+sXVU043idTwS614H yWis2OZ+JkOMB13RY4vYjFEw6RPY1YLG7QxN94zziZggJJ4wRKtA5UNlBV8yut5x GIW7YyoXcJQOtyMFVWcVhbocYNGwePWKEKxlu8JUGmJBr1tSieEp7qLKtKCdgtwq kkwXbYkRDf2ubLniA3WM5Q4ZbQ7tgP99QcFdKl0mgb9+C4a7JQp0x4Rk2pyOCAYV FXb1Qoc+Qw7TOw7praDAt9C/rp9QLMqFV18nh+8j0EeovraLoJoWomTT5BVf270q Werm8roWHCuHx+lkuEs+CvIRXwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAfkF5HM 9KMB6wTyYskamKti/zbcMB8GA1UdIwQYMBaAFKaD9nJMAqE/LTnPLyFQC+ADgN3j MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBOEQyMi8yNTI2OTc5ODFE OTIxMUUyQjYxOENBRjQwOEIwMkNEMi9wb1AyY2t3Q29UOHRPYzh2SVZBTDRBT0Ez ZU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BvUDJja3dDb1Q4dE9jOHZJVkFMNEFPQTNlTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB OEQyMi8yNTI2OTc5ODFEOTIxMUUyQjYxOENBRjQwOEIwMkNEMi9wb1AyY2t3Q29U OHRPYzh2SVZBTDRBT0EzZU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBUNKeasBxTBfLXHQHb8TQakITS+o0AV52+nrr+ITPR0qYegtzMivtJ dX7l6sh6BcuM7DcoNXMdusLhpqUgSiG6WRRRKsivD0qmX500R3efm8eFsTVdV999 ehwXtPF+fU5ElSmF/KHWrAiqlJ0LdKhECyASKEyzCDG6mVxtW6ZKgAPX68ezQcCN EAu1g0h+yhghTpbLIaiDgFBjFrepperCVgnxJcBIE/AOWKp1UFizg2yi+/WSKKxy IrQgniTVI8WFyGvgnBe8Me/ctCw6bb0jMs/gaAxR9XInm9OkRzLfGdD/BxCQCa6Q XZfVsVI+YBVYnRQTKPg7vnZLVJZEUHpj -----END CERTIFICATE-----Generated at Fri Nov 22 17:56:19 2024 by rpki-client on console-fra.rpki-client.org