$ rpki-client -vvf rpki.apnic.net/member_repository/A91ACFEB/CB2C33E6936E11EAA5E56B7EC4F9AE02/U4XhOhtYRftEzutr7Y3rTomvOCk.mft File: U4XhOhtYRftEzutr7Y3rTomvOCk.mft (raw, json) Hash identifier: Pm1Vy/l/vNrBTA/opqKYBywzoL1Enc+t+Z+pHubgYtw= Subject key identifier: E6:70:2E:21:28:7B:33:59:6C:A3:44:9F:13:A1:56:14:15:D5:3B:24 Authority key identifier: 53:85:E1:3A:1B:58:45:FB:44:CE:EB:6B:ED:8D:EB:4E:89:AF:38:29 Certificate issuer: /CN=A91ACFEB/serialNumber=5385E13A1B5845FB44CEEB6BED8DEB4E89AF3829 Certificate serial: 0917 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U4XhOhtYRftEzutr7Y3rTomvOCk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ACFEB/CB2C33E6936E11EAA5E56B7EC4F9AE02/U4XhOhtYRftEzutr7Y3rTomvOCk.mft Manifest number: 0909 Signing time: Fri 22 Nov 2024 20:07:22 +0000 Manifest this update: Fri 22 Nov 2024 20:07:22 +0000 Manifest next update: Fri 29 Nov 2024 20:07:21 +0000 Files and hashes: 1: U4XhOhtYRftEzutr7Y3rTomvOCk.crl (hash: 3sVdCXEBN/5n16PEtE72BMZL9W0hjB6BGVkgIh51Cik=) 2: 3636BCD2937011EA8A795583C4F9AE02.roa (hash: YRt4jKdI4p9jPEw/yG2fC1+AmKWnjwB4/jgfu0A37Zs=) 3: 35831FCE937011EA8A795583C4F9AE02.roa (hash: quwFz9je4iFlkCJSU3B1mU1SM1se6oAq60Dc17Nx0YY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ACFEB/CB2C33E6936E11EAA5E56B7EC4F9AE02/U4XhOhtYRftEzutr7Y3rTomvOCk.crl rsync://rpki.apnic.net/member_repository/A91ACFEB/CB2C33E6936E11EAA5E56B7EC4F9AE02/U4XhOhtYRftEzutr7Y3rTomvOCk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U4XhOhtYRftEzutr7Y3rTomvOCk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 19:56:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2327 (0x917) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ACFEB/serialNumber=5385E13A1B5845FB44CEEB6BED8DEB4E89AF3829 Validity Not Before: Nov 22 20:07:22 2024 GMT Not After : Nov 29 20:07:21 2024 GMT Subject: CN=6740e47a-5ed4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:eb:dd:ea:8c:3b:65:15:bc:81:d1:d4:c5:a6: 15:d1:5b:95:90:39:42:05:bd:a1:53:83:44:ce:c0: dc:b1:9f:29:91:aa:f4:65:aa:1d:25:32:fe:c5:3e: 66:9b:3f:d8:6c:46:f1:c7:04:1d:18:26:46:82:ba: a3:1f:2d:33:1e:02:b7:99:4d:68:c5:30:98:b0:fa: 08:e4:07:c2:07:d9:6c:5f:46:a8:e5:7d:3e:6e:0b: fe:5e:5a:11:6f:c0:fd:03:18:a0:6c:20:b6:23:ce: e7:34:e3:d0:31:19:04:c5:d0:cd:20:58:95:63:26: a7:5f:7f:6c:bc:5f:fe:13:51:7b:cf:c3:e6:05:b8: a3:25:20:95:7c:9f:8a:e0:9d:85:74:b7:54:86:38: 0d:84:09:ff:7a:8e:eb:f3:14:b1:e0:32:af:4d:e5: 74:16:fa:e9:90:bd:b7:42:f8:ee:7d:8c:fc:92:b2: 50:27:2c:48:d9:d4:60:3b:45:94:5c:7c:52:10:ab: ef:58:6e:1b:a3:31:20:3b:50:83:ab:55:4c:5f:df: 12:f6:50:0a:c3:c4:d4:0f:a6:20:e9:59:ee:1c:8d: b0:8a:30:03:c2:57:ae:db:46:33:bc:17:08:26:e9: 88:21:40:b3:ab:c9:f8:75:5e:72:90:ae:87:99:66: 6b:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:70:2E:21:28:7B:33:59:6C:A3:44:9F:13:A1:56:14:15:D5:3B:24 X509v3 Authority Key Identifier: keyid:53:85:E1:3A:1B:58:45:FB:44:CE:EB:6B:ED:8D:EB:4E:89:AF:38:29 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ACFEB/CB2C33E6936E11EAA5E56B7EC4F9AE02/U4XhOhtYRftEzutr7Y3rTomvOCk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U4XhOhtYRftEzutr7Y3rTomvOCk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ACFEB/CB2C33E6936E11EAA5E56B7EC4F9AE02/U4XhOhtYRftEzutr7Y3rTomvOCk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2d:5b:e1:70:f1:cf:84:c8:11:21:d0:0d:e8:b5:7d:6d:3a:62: ef:d4:c9:6d:db:54:15:a6:61:13:3d:aa:3a:25:be:04:23:2a: ec:e6:34:7b:e1:f1:88:52:a5:46:7d:1c:63:0f:85:39:ae:06: f4:a2:00:1c:eb:40:81:92:08:55:05:9e:ce:79:c8:d3:8d:00: b4:3b:48:c6:59:75:23:a7:d3:a7:20:68:0b:d4:77:d8:ff:9f: dd:92:f3:3e:97:0f:c9:6c:6e:cd:a3:33:8e:5b:47:0f:8a:a0: 80:cc:48:5f:6a:bb:88:26:34:ec:f6:04:00:39:1a:d9:be:f7: 0b:ed:02:14:7c:64:94:ac:f2:34:39:b1:ef:fe:24:d2:50:0b: d3:2c:af:63:67:89:e4:91:55:5a:75:f0:c8:57:9c:39:ce:df: e3:be:bb:93:07:2a:57:2b:3f:a5:e2:4a:da:b4:81:36:bb:cf: 95:34:8e:0a:ff:d9:6b:f8:ae:df:e9:62:d9:52:f2:cf:22:99: d3:98:ce:26:8c:3e:d1:f4:db:3e:5f:b9:39:7b:03:0e:28:29: 1f:2d:08:f2:14:26:a8:34:4b:0a:01:cd:b4:fe:61:c3:1a:7a: cb:98:24:ee:09:a1:01:17:86:87:5b:34:cf:33:2d:f7:6b:5e: 14:5c:e5:e1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCRcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUNGRUIxMTAvBgNVBAUTKDUzODVFMTNBMUI1ODQ1RkI0NENFRUI2QkVEOERFQjRF ODlBRjM4MjkwHhcNMjQxMTIyMjAwNzIyWhcNMjQxMTI5MjAwNzIxWjAYMRYwFAYD VQQDEw02NzQwZTQ3YS01ZWQ0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5Ovd6ow7ZRW8gdHUxaYV0VuVkDlCBb2hU4NEzsDcsZ8pkar0ZaodJTL+xT5m mz/YbEbxxwQdGCZGgrqjHy0zHgK3mU1oxTCYsPoI5AfCB9lsX0ao5X0+bgv+XloR b8D9AxigbCC2I87nNOPQMRkExdDNIFiVYyanX39svF/+E1F7z8PmBbijJSCVfJ+K 4J2FdLdUhjgNhAn/eo7r8xSx4DKvTeV0FvrpkL23QvjufYz8krJQJyxI2dRgO0WU XHxSEKvvWG4bozEgO1CDq1VMX98S9lAKw8TUD6Yg6VnuHI2wijADwleu20YzvBcI JumIIUCzq8n4dV5ykK6HmWZr7wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOZwLiEo ezNZbKNEnxOhVhQV1TskMB8GA1UdIwQYMBaAFFOF4TobWEX7RM7ra+2N606Jrzgp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQ0ZFQi9DQjJDMzNFNjkz NkUxMUVBQTVFNTZCN0VDNEY5QUUwMi9VNFhoT2h0WVJmdEV6dXRyN1kzclRvbXZP Q2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1U0WGhPaHRZUmZ0RXp1dHI3WTNyVG9tdk9Day5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB Q0ZFQi9DQjJDMzNFNjkzNkUxMUVBQTVFNTZCN0VDNEY5QUUwMi9VNFhoT2h0WVJm dEV6dXRyN1kzclRvbXZPQ2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAtW+Fw8c+EyBEh0A3otX1tOmLv1Mlt21QVpmETPao6Jb4EIyrs5jR7 4fGIUqVGfRxjD4U5rgb0ogAc60CBkghVBZ7OecjTjQC0O0jGWXUjp9OnIGgL1HfY /5/dkvM+lw/JbG7NozOOW0cPiqCAzEhfaruIJjTs9gQAORrZvvcL7QIUfGSUrPI0 ObHv/iTSUAvTLK9jZ4nkkVVadfDIV5w5zt/jvruTBypXKz+l4kratIE2u8+VNI4K /9lr+K7f6WLZUvLPIpnTmM4mjD7R9Ns+X7k5ewMOKCkfLQjyFCaoNEsKAc20/mHD GnrLmCTuCaEBF4aHWzTPMy33a14UXOXh -----END CERTIFICATE-----Generated at Fri Nov 22 21:05:32 2024 by rpki-client on console-fra.rpki-client.org