$ rpki-client -vvf rpki.apnic.net/member_repository/A91AF317/4FD576808C6F11EBBA819F31C4F9AE02/d5zZIVaek_nSaxOlqn43bPtfBpA.mft File: d5zZIVaek_nSaxOlqn43bPtfBpA.mft (raw, json) Hash identifier: cO0wP9+iqXWdlMaosYmtm9lF/C2q+MhclV+q3QRfekk= Subject key identifier: 72:1F:0D:B0:D5:8A:2C:20:36:63:37:34:59:0C:23:1C:EF:FE:FC:7B Authority key identifier: 77:9C:D9:21:56:9E:93:F9:D2:6B:13:A5:AA:7E:37:6C:FB:5F:06:90 Certificate issuer: /CN=A91AF317/serialNumber=779CD921569E93F9D26B13A5AA7E376CFB5F0690 Certificate serial: 05F2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d5zZIVaek_nSaxOlqn43bPtfBpA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AF317/4FD576808C6F11EBBA819F31C4F9AE02/d5zZIVaek_nSaxOlqn43bPtfBpA.mft Manifest number: 05EC Signing time: Fri 22 Nov 2024 22:24:57 +0000 Manifest this update: Fri 22 Nov 2024 22:24:56 +0000 Manifest next update: Fri 29 Nov 2024 22:24:56 +0000 Files and hashes: 1: d5zZIVaek_nSaxOlqn43bPtfBpA.crl (hash: 2k+IGSxewjufPYeyRR88cUArKnGSTTHROWZxAWlG4xA=) 2: 291E55288C7111EBA752313FC4F9AE02.roa (hash: A4h072jPvWuDDgO/u+pRW1SBWKkT2qV8RaMiezxbECY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AF317/4FD576808C6F11EBBA819F31C4F9AE02/d5zZIVaek_nSaxOlqn43bPtfBpA.crl rsync://rpki.apnic.net/member_repository/A91AF317/4FD576808C6F11EBBA819F31C4F9AE02/d5zZIVaek_nSaxOlqn43bPtfBpA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d5zZIVaek_nSaxOlqn43bPtfBpA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1522 (0x5f2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AF317/serialNumber=779CD921569E93F9D26B13A5AA7E376CFB5F0690 Validity Not Before: Nov 22 22:24:56 2024 GMT Not After : Nov 29 22:24:56 2024 GMT Subject: CN=674104b9-051a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:da:d4:76:2f:c6:cf:0d:f4:d1:f6:81:ca:d9: 20:fb:e9:05:99:d8:89:27:3c:f0:0e:9f:01:3d:b7: 6d:5d:b6:b0:f7:90:ef:e3:2e:bb:8b:2f:99:66:7e: e1:20:ff:e2:f9:28:f0:eb:f8:61:8e:68:b9:b9:6c: 28:a8:93:4e:29:4e:d7:01:03:c5:78:cf:ad:a5:c2: 33:89:e1:30:08:1b:dc:3f:0e:cd:db:dd:ae:b6:ad: 1d:6c:04:73:a0:de:43:f5:df:27:3d:b1:19:a2:5b: 7e:3e:9d:46:c1:dc:63:96:59:92:ad:75:60:06:e0: 56:ba:cc:31:1a:6c:3d:02:20:29:d3:da:e6:26:68: 4b:6d:e4:f2:a7:5e:e6:61:f1:79:05:0c:a4:ed:1a: bd:27:a1:18:44:9d:27:55:a7:9b:c1:b0:dd:cd:82: e1:98:21:0a:66:2a:01:b4:79:a4:cd:2a:00:0b:83: 19:a2:85:c5:ad:54:74:cf:68:4a:f5:0b:ee:92:49: 5c:ff:68:e2:75:17:a4:8b:da:fd:a2:78:66:42:81: 76:2a:c2:50:1f:56:87:2a:2c:2b:6b:12:df:6e:a2: 4d:01:41:be:41:2f:06:7f:46:44:a1:1a:98:96:3f: de:0a:41:03:74:38:1a:91:88:96:1b:68:b6:ba:d5: e3:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:1F:0D:B0:D5:8A:2C:20:36:63:37:34:59:0C:23:1C:EF:FE:FC:7B X509v3 Authority Key Identifier: keyid:77:9C:D9:21:56:9E:93:F9:D2:6B:13:A5:AA:7E:37:6C:FB:5F:06:90 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AF317/4FD576808C6F11EBBA819F31C4F9AE02/d5zZIVaek_nSaxOlqn43bPtfBpA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d5zZIVaek_nSaxOlqn43bPtfBpA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AF317/4FD576808C6F11EBBA819F31C4F9AE02/d5zZIVaek_nSaxOlqn43bPtfBpA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9c:df:20:3f:01:0c:7b:58:d0:77:38:12:fb:53:96:c0:5a:e5: 9f:4f:c1:4d:f3:84:28:9b:2f:44:1c:67:b1:35:4a:44:60:2b: c0:42:89:09:5b:d2:f2:93:97:bc:7b:6d:9b:f0:bc:6c:66:67: 17:06:64:41:2e:87:89:97:d9:ee:e5:aa:da:da:d1:a9:11:4a: 6f:ce:57:0b:dc:a3:54:2b:ff:10:05:25:d4:b6:39:7f:ec:a9: 1d:5e:56:78:97:20:26:79:2b:b3:e3:be:f1:ad:e7:88:d6:e5: b1:c5:94:8f:93:5f:83:95:09:7a:63:1e:81:1c:cd:a1:57:64: 8a:bd:72:52:42:18:a4:e9:9a:e5:31:96:40:eb:d2:f2:55:f0: be:c9:66:33:e7:66:4c:a1:75:12:1d:07:e1:12:9e:f7:2f:68: 8a:69:0d:c8:20:08:ec:95:8a:a8:fa:b4:de:ef:7b:99:e7:a8: f6:95:f1:c3:c4:4f:e1:a4:91:67:3d:de:c3:c0:35:0e:cf:ee: 16:3b:e9:7d:8a:f8:14:db:d0:81:9a:a6:c4:22:36:a1:62:2c: 97:fd:00:86:8c:6e:93:68:f5:69:56:8b:5f:a0:40:7b:be:03: 26:80:3f:a1:c1:c2:76:cc:f4:69:4a:d7:0c:42:0c:08:c5:11: 00:45:c8:0c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBfIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUYzMTcxMTAvBgNVBAUTKDc3OUNEOTIxNTY5RTkzRjlEMjZCMTNBNUFBN0UzNzZD RkI1RjA2OTAwHhcNMjQxMTIyMjIyNDU2WhcNMjQxMTI5MjIyNDU2WjAYMRYwFAYD VQQDEw02NzQxMDRiOS0wNTFhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxNrUdi/Gzw300faBytkg++kFmdiJJzzwDp8BPbdtXbaw95Dv4y67iy+ZZn7h IP/i+Sjw6/hhjmi5uWwoqJNOKU7XAQPFeM+tpcIzieEwCBvcPw7N292utq0dbARz oN5D9d8nPbEZolt+Pp1GwdxjllmSrXVgBuBWuswxGmw9AiAp09rmJmhLbeTyp17m YfF5BQyk7Rq9J6EYRJ0nVaebwbDdzYLhmCEKZioBtHmkzSoAC4MZooXFrVR0z2hK 9Qvukklc/2jidReki9r9onhmQoF2KsJQH1aHKiwraxLfbqJNAUG+QS8Gf0ZEoRqY lj/eCkEDdDgakYiWG2i2utXjawIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHIfDbDV iiwgNmM3NFkMIxzv/vx7MB8GA1UdIwQYMBaAFHec2SFWnpP50msTpap+N2z7XwaQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRjMxNy80RkQ1NzY4MDhD NkYxMUVCQkE4MTlGMzFDNEY5QUUwMi9kNXpaSVZhZWtfblNheE9scW40M2JQdGZC cEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2Q1elpJVmFla19uU2F4T2xxbjQzYlB0ZkJwQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB RjMxNy80RkQ1NzY4MDhDNkYxMUVCQkE4MTlGMzFDNEY5QUUwMi9kNXpaSVZhZWtf blNheE9scW40M2JQdGZCcEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCc3yA/AQx7WNB3OBL7U5bAWuWfT8FN84Qomy9EHGexNUpEYCvAQokJ W9Lyk5e8e22b8LxsZmcXBmRBLoeJl9nu5ara2tGpEUpvzlcL3KNUK/8QBSXUtjl/ 7KkdXlZ4lyAmeSuz477xreeI1uWxxZSPk1+DlQl6Yx6BHM2hV2SKvXJSQhik6Zrl MZZA69LyVfC+yWYz52ZMoXUSHQfhEp73L2iKaQ3IIAjslYqo+rTe73uZ56j2lfHD xE/hpJFnPd7DwDUOz+4WO+l9ivgU29CBmqbEIjahYiyX/QCGjG6TaPVpVotfoEB7 vgMmgD+hwcJ2zPRpStcMQgwIxREARcgM -----END CERTIFICATE-----Generated at Fri Nov 22 23:39:32 2024 by rpki-client on console-fra.rpki-client.org