$ rpki-client -vvf rpki.apnic.net/member_repository/A91AB055/4ABBC01CF55511EEACF1234BC4F9AE02/mZsvZTnCPq60aeZ1OfstyTPZgEA.mft File: mZsvZTnCPq60aeZ1OfstyTPZgEA.mft (raw, json) Hash identifier: /+BNzNhhX2W6qg/toGOiNiKqWild/VIOnb7kAytlNtA= Subject key identifier: E1:7B:57:AD:4C:51:D5:8B:32:AF:D9:66:1C:D1:E8:72:E7:22:D3:22 Authority key identifier: 99:9B:2F:65:39:C2:3E:AE:B4:69:E6:75:39:FB:2D:C9:33:D9:80:40 Certificate issuer: /CN=A91AB055/serialNumber=999B2F6539C23EAEB469E67539FB2DC933D98040 Certificate serial: 76 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mZsvZTnCPq60aeZ1OfstyTPZgEA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AB055/4ABBC01CF55511EEACF1234BC4F9AE02/mZsvZTnCPq60aeZ1OfstyTPZgEA.mft Manifest number: 75 Signing time: Mon 25 Nov 2024 04:44:45 +0000 Manifest this update: Mon 25 Nov 2024 04:44:44 +0000 Manifest next update: Mon 02 Dec 2024 04:44:44 +0000 Files and hashes: 1: mZsvZTnCPq60aeZ1OfstyTPZgEA.crl (hash: 53k9FUk0GLD6sBBZINevhNbReXL7CceQeplN/GIPKuw=) 2: 83CA613CF55611EE8CE6274DC4F9AE02.roa (hash: ufXYT6M8+NAM8MxgjpkUV5nxmsL/JDOXu7NiWGw3BFA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AB055/4ABBC01CF55511EEACF1234BC4F9AE02/mZsvZTnCPq60aeZ1OfstyTPZgEA.crl rsync://rpki.apnic.net/member_repository/A91AB055/4ABBC01CF55511EEACF1234BC4F9AE02/mZsvZTnCPq60aeZ1OfstyTPZgEA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mZsvZTnCPq60aeZ1OfstyTPZgEA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 02 Dec 2024 04:44:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 118 (0x76) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AB055/serialNumber=999B2F6539C23EAEB469E67539FB2DC933D98040 Validity Not Before: Nov 25 04:44:44 2024 GMT Not After : Dec 2 04:44:44 2024 GMT Subject: CN=674400bc-b0f7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:bc:00:5d:a0:e2:1d:ae:df:2f:14:bf:16:2b: 14:84:56:3d:97:0d:b0:2e:77:44:33:03:3b:14:80: 45:66:ca:7f:c2:31:78:97:78:39:25:7f:b5:53:03: 9f:3e:70:e7:9c:1b:bf:98:cc:b8:4d:ee:8d:3d:4f: b7:8c:fc:05:4f:3d:7e:cf:41:db:ff:f4:15:3e:97: 09:83:c7:4e:30:69:07:1d:52:27:76:a5:8e:c2:2b: ed:38:93:ae:ae:8e:47:ba:e8:2d:d4:9c:be:e0:4c: 53:64:6b:66:a4:68:72:82:ad:40:01:d8:26:7a:cf: 50:6a:ca:8e:0e:57:97:35:05:ec:10:71:ca:2d:17: 77:1b:81:24:48:b4:17:21:cd:33:3d:31:a7:19:3e: 8d:4b:77:82:aa:d0:eb:45:0e:45:3b:a4:92:10:69: 99:1e:74:9b:ea:12:23:4d:be:55:a6:6c:5e:bc:ed: 37:03:a9:13:90:f9:60:87:ed:1a:bb:43:0c:00:31: ab:f1:38:4a:2f:6c:fa:41:2f:2a:2c:a9:9b:71:f5: ed:4d:b9:66:4a:a6:38:87:0b:59:6d:ea:51:5d:6d: f7:0d:05:96:8c:71:cf:81:84:59:26:b2:6b:4a:60: e2:65:8b:44:34:4f:73:49:33:b1:50:1e:40:d7:94: 7d:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:7B:57:AD:4C:51:D5:8B:32:AF:D9:66:1C:D1:E8:72:E7:22:D3:22 X509v3 Authority Key Identifier: keyid:99:9B:2F:65:39:C2:3E:AE:B4:69:E6:75:39:FB:2D:C9:33:D9:80:40 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AB055/4ABBC01CF55511EEACF1234BC4F9AE02/mZsvZTnCPq60aeZ1OfstyTPZgEA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mZsvZTnCPq60aeZ1OfstyTPZgEA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AB055/4ABBC01CF55511EEACF1234BC4F9AE02/mZsvZTnCPq60aeZ1OfstyTPZgEA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 71:2d:c8:07:db:42:23:ec:61:9d:d9:97:4b:9d:35:ec:ad:2e: 31:e6:9a:26:53:ef:00:cf:ce:a8:7a:fd:9d:9c:81:46:af:2e: 22:ff:96:97:9b:3d:73:3c:47:a6:d0:48:f4:62:fc:a5:2c:51: ee:e2:e3:a8:5a:3a:94:df:ef:e9:2f:e1:00:bc:f0:e3:9a:88: 52:99:fd:45:b8:27:49:07:0b:2a:c3:1a:76:6e:e2:53:90:fe: 21:4f:94:32:a0:bb:9d:61:9a:b3:e2:03:90:96:9f:2c:54:73: e2:2f:b7:4d:32:fc:37:a0:15:e5:8d:92:60:0b:3b:84:d8:7b: d1:46:8b:68:33:ab:f6:f7:ce:fb:86:20:95:a3:47:4b:35:cc: 4e:ef:91:9a:4f:03:eb:e3:2f:8e:af:21:7e:24:d2:82:05:91: 93:29:bd:0a:78:7c:b1:f3:fd:9e:2c:a6:45:0d:2a:35:ea:fe: 12:5b:46:d9:3c:29:8f:27:f9:34:d1:20:cc:bb:bf:97:5e:34: 3f:c2:fb:f3:ba:7c:ec:d4:6c:9a:5f:85:c0:1c:84:10:e6:11: 2f:d3:c0:af:a8:20:a4:40:4a:ff:1d:8c:0b:e2:6a:b5:29:27: 95:83:e1:e9:c9:a0:32:d5:93:5b:06:4a:1a:51:27:b0:8e:10: 8d:0b:27:7e -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBdjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB QjA1NTExMC8GA1UEBRMoOTk5QjJGNjUzOUMyM0VBRUI0NjlFNjc1MzlGQjJEQzkz M0Q5ODA0MDAeFw0yNDExMjUwNDQ0NDRaFw0yNDEyMDIwNDQ0NDRaMBgxFjAUBgNV BAMTDTY3NDQwMGJjLWIwZjcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDPvABdoOIdrt8vFL8WKxSEVj2XDbAud0QzAzsUgEVmyn/CMXiXeDklf7VTA58+ cOecG7+YzLhN7o09T7eM/AVPPX7PQdv/9BU+lwmDx04waQcdUid2pY7CK+04k66u jke66C3UnL7gTFNka2akaHKCrUAB2CZ6z1Bqyo4OV5c1BewQccotF3cbgSRItBch zTM9MacZPo1Ld4Kq0OtFDkU7pJIQaZkedJvqEiNNvlWmbF687TcDqROQ+WCH7Rq7 QwwAMavxOEovbPpBLyosqZtx9e1NuWZKpjiHC1lt6lFdbfcNBZaMcc+BhFkmsmtK YOJli0Q0T3NJM7FQHkDXlH2JAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU4XtXrUxR 1Ysyr9lmHNHocuci0yIwHwYDVR0jBBgwFoAUmZsvZTnCPq60aeZ1OfstyTPZgEAw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUFCMDU1LzRBQkJDMDFDRjU1 NTExRUVBQ0YxMjM0QkM0RjlBRTAyL21ac3ZaVG5DUHE2MGFlWjFPZnN0eVRQWmdF QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvbVpzdlpUbkNQcTYwYWVaMU9mc3R5VFBaZ0VBLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUFC MDU1LzRBQkJDMDFDRjU1NTExRUVBQ0YxMjM0QkM0RjlBRTAyL21ac3ZaVG5DUHE2 MGFlWjFPZnN0eVRQWmdFQS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAHEtyAfbQiPsYZ3Zl0udNeytLjHmmiZT7wDPzqh6/Z2cgUavLiL/lpeb PXM8R6bQSPRi/KUsUe7i46haOpTf7+kv4QC88OOaiFKZ/UW4J0kHCyrDGnZu4lOQ /iFPlDKgu51hmrPiA5CWnyxUc+Ivt00y/DegFeWNkmALO4TYe9FGi2gzq/b3zvuG IJWjR0s1zE7vkZpPA+vjL46vIX4k0oIFkZMpvQp4fLHz/Z4spkUNKjXq/hJbRtk8 KY8n+TTRIMy7v5deND/C+/O6fOzUbJpfhcAchBDmES/TwK+oIKRASv8djAviarUp J5WD4enJoDLVk1sGShpRJ7COEI0LJ34= -----END CERTIFICATE-----Generated at Mon Nov 25 06:05:09 2024 by rpki-client on console-fra.rpki-client.org