$ rpki-client -vvf rpki.apnic.net/member_repository/A91AF3E2/DA622E9A5B9E11EFBCDBC55BC4F9AE02/9rpuYwpqqY2CFWgmTgJ7mI31ybo.mft File: 9rpuYwpqqY2CFWgmTgJ7mI31ybo.mft (raw, json) Hash identifier: OTwilX3MK3tSXhH5Zgm3QAi9mHOWgN9L5bBjS5iZK5s= Subject key identifier: 42:4E:93:B8:66:EF:33:7D:88:04:FC:FD:AD:9E:DB:D4:91:28:D6:2B Authority key identifier: F6:BA:6E:63:0A:6A:A9:8D:82:15:68:26:4E:02:7B:98:8D:F5:C9:BA Certificate issuer: /CN=A91AF3E2/serialNumber=F6BA6E630A6AA98D821568264E027B988DF5C9BA Certificate serial: 35 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9rpuYwpqqY2CFWgmTgJ7mI31ybo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AF3E2/DA622E9A5B9E11EFBCDBC55BC4F9AE02/9rpuYwpqqY2CFWgmTgJ7mI31ybo.mft Manifest number: 34 Signing time: Thu 21 Nov 2024 05:39:29 +0000 Manifest this update: Thu 21 Nov 2024 05:39:28 +0000 Manifest next update: Thu 28 Nov 2024 05:39:28 +0000 Files and hashes: 1: 9rpuYwpqqY2CFWgmTgJ7mI31ybo.crl (hash: 9OTIKrkcsD9BDy19vF1i//fNLpzASVuLri3pk5fa4A0=) 2: 1CDD9EF85B9F11EFACE3275CC4F9AE02.roa (hash: pt3TVE6FWWML9qDR6bF+JwKplcatGSeeBfxTZrbxiy4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AF3E2/DA622E9A5B9E11EFBCDBC55BC4F9AE02/9rpuYwpqqY2CFWgmTgJ7mI31ybo.crl rsync://rpki.apnic.net/member_repository/A91AF3E2/DA622E9A5B9E11EFBCDBC55BC4F9AE02/9rpuYwpqqY2CFWgmTgJ7mI31ybo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9rpuYwpqqY2CFWgmTgJ7mI31ybo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 05:18:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 53 (0x35) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AF3E2/serialNumber=F6BA6E630A6AA98D821568264E027B988DF5C9BA Validity Not Before: Nov 21 05:39:28 2024 GMT Not After : Nov 28 05:39:28 2024 GMT Subject: CN=673ec791-7b8d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:93:2e:4d:ee:d9:46:ab:05:99:c9:32:a1:c2: 35:83:e5:b7:d3:45:c5:2e:94:a5:d5:b7:75:a5:de: a7:90:3c:da:55:7d:92:89:2d:0d:91:94:a1:88:c3: 8a:80:d5:bf:12:cb:46:fa:f2:cd:d8:f5:16:63:d9: 1c:ef:f6:16:a2:60:4d:de:3d:1b:59:31:e6:11:b8: a5:14:7e:e0:f3:9d:5c:92:cb:04:db:d3:d1:5b:01: 00:d5:5a:2d:c5:b8:cc:d7:89:c0:91:ed:82:57:37: 00:a4:cb:d5:4f:9a:df:12:50:5e:fe:85:9c:b1:a3: 48:cc:d7:99:5b:19:d4:51:bc:46:6a:9b:a0:de:e5: fb:c7:19:81:af:c2:19:66:04:90:d6:fc:92:88:fd: b4:40:a7:e1:67:e2:2a:d9:80:06:1c:97:58:cb:70: 6c:e2:9c:97:80:38:74:e5:75:3e:33:6e:14:d0:2e: 6a:b2:58:2c:42:52:69:83:e4:0e:05:cb:84:03:69: b1:b6:2f:63:b5:a7:ca:8e:ec:08:71:5b:60:43:9b: b9:03:18:2c:d8:19:b0:ec:fb:ef:34:df:83:db:71: 90:e0:7d:78:c4:0a:7b:c8:9e:2a:42:3c:51:69:38: 96:13:45:7c:69:c4:96:78:97:f6:ae:c4:49:23:24: 82:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:4E:93:B8:66:EF:33:7D:88:04:FC:FD:AD:9E:DB:D4:91:28:D6:2B X509v3 Authority Key Identifier: keyid:F6:BA:6E:63:0A:6A:A9:8D:82:15:68:26:4E:02:7B:98:8D:F5:C9:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AF3E2/DA622E9A5B9E11EFBCDBC55BC4F9AE02/9rpuYwpqqY2CFWgmTgJ7mI31ybo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9rpuYwpqqY2CFWgmTgJ7mI31ybo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AF3E2/DA622E9A5B9E11EFBCDBC55BC4F9AE02/9rpuYwpqqY2CFWgmTgJ7mI31ybo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a4:c1:ec:29:06:8c:91:26:a0:b3:24:7a:d7:6b:3e:f2:8c:79: 59:d5:76:09:1b:e9:95:77:c3:d2:c8:bc:8a:57:1d:8e:72:31: 97:45:f3:1f:0e:15:90:87:85:fa:29:96:95:a1:4d:6d:bb:e2: 93:40:3e:a3:bc:8e:9b:51:d8:04:55:4b:38:be:c2:c1:a3:b5: c0:13:73:23:37:e1:63:e2:7e:d5:aa:26:dc:30:95:a7:dc:f2: df:cd:1d:3b:63:af:24:ef:63:bc:82:2a:e1:ba:27:ed:48:47: 81:ca:04:29:01:55:a5:48:66:8f:40:da:95:6f:4d:bd:ba:3d: 6d:ed:79:83:50:51:d7:a5:4a:00:b9:6f:5f:55:90:b0:75:e3: 4e:c1:1e:06:2d:68:41:4a:55:89:c3:6a:bd:10:55:d6:a6:3c: 98:90:fc:6d:fb:7c:bc:ff:c1:2c:2f:1e:db:b9:30:b7:04:bd: 49:f2:84:a9:44:04:65:7e:4d:54:26:72:77:3d:53:04:96:5d: c3:b5:7e:70:99:1e:eb:75:8c:8d:39:45:07:58:12:58:79:01: 60:e1:5e:f1:c6:3e:c4:4f:7c:97:70:2d:c8:41:bf:b6:d2:7c: f5:21:1e:d5:dd:5d:82:66:68:e5:19:eb:a6:ba:86:48:0e:24: 98:7e:8d:9f -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBNTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB RjNFMjExMC8GA1UEBRMoRjZCQTZFNjMwQTZBQTk4RDgyMTU2ODI2NEUwMjdCOTg4 REY1QzlCQTAeFw0yNDExMjEwNTM5MjhaFw0yNDExMjgwNTM5MjhaMBgxFjAUBgNV BAMTDTY3M2VjNzkxLTdiOGQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDqky5N7tlGqwWZyTKhwjWD5bfTRcUulKXVt3Wl3qeQPNpVfZKJLQ2RlKGIw4qA 1b8Sy0b68s3Y9RZj2Rzv9haiYE3ePRtZMeYRuKUUfuDznVySywTb09FbAQDVWi3F uMzXicCR7YJXNwCky9VPmt8SUF7+hZyxo0jM15lbGdRRvEZqm6De5fvHGYGvwhlm BJDW/JKI/bRAp+Fn4irZgAYcl1jLcGzinJeAOHTldT4zbhTQLmqyWCxCUmmD5A4F y4QDabG2L2O1p8qO7AhxW2BDm7kDGCzYGbDs++8034PbcZDgfXjECnvInipCPFFp OJYTRXxpxJZ4l/auxEkjJIKNAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUQk6TuGbv M32IBPz9rZ7b1JEo1iswHwYDVR0jBBgwFoAU9rpuYwpqqY2CFWgmTgJ7mI31ybow DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUFGM0UyL0RBNjIyRTlBNUI5 RTExRUZCQ0RCQzU1QkM0RjlBRTAyLzlycHVZd3BxcVkyQ0ZXZ21UZ0o3bUkzMXli by5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvOXJwdVl3cHFxWTJDRldnbVRnSjdtSTMxeWJvLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUFG M0UyL0RBNjIyRTlBNUI5RTExRUZCQ0RCQzU1QkM0RjlBRTAyLzlycHVZd3BxcVky Q0ZXZ21UZ0o3bUkzMXliby5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAKTB7CkGjJEmoLMketdrPvKMeVnVdgkb6ZV3w9LIvIpXHY5yMZdF8x8O FZCHhfoplpWhTW274pNAPqO8jptR2ARVSzi+wsGjtcATcyM34WPiftWqJtwwlafc 8t/NHTtjryTvY7yCKuG6J+1IR4HKBCkBVaVIZo9A2pVvTb26PW3teYNQUdelSgC5 b19VkLB1407BHgYtaEFKVYnDar0QVdamPJiQ/G37fLz/wSwvHtu5MLcEvUnyhKlE BGV+TVQmcnc9UwSWXcO1fnCZHut1jI05RQdYElh5AWDhXvHGPsRPfJdwLchBv7bS fPUhHtXdXYJmaOUZ66a6hkgOJJh+jZ8= -----END CERTIFICATE-----Generated at Thu Nov 21 06:50:48 2024 by rpki-client on console-fra.rpki-client.org