$ rpki-client -vvf rpki.apnic.net/member_repository/A91B2C88/24299DCA978E11EBBD81B055C4F9AE02/2gE-F4NYyzWot2XJvAkK6c8cT74.mft File: 2gE-F4NYyzWot2XJvAkK6c8cT74.mft (raw, json) Hash identifier: TciNYSD445NFpIGb13XoutiF553SnBTifivxG/9s6ds= Subject key identifier: DF:96:CE:09:10:B4:72:88:D7:FA:8B:C2:26:59:1E:42:0B:ED:53:99 Authority key identifier: DA:01:3E:17:83:58:CB:35:A8:B7:65:C9:BC:09:0A:E9:CF:1C:4F:BE Certificate issuer: /CN=A91B2C88/serialNumber=DA013E178358CB35A8B765C9BC090AE9CF1C4FBE Certificate serial: 05DB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2gE-F4NYyzWot2XJvAkK6c8cT74.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B2C88/24299DCA978E11EBBD81B055C4F9AE02/2gE-F4NYyzWot2XJvAkK6c8cT74.mft Manifest number: 05D3 Signing time: Fri 22 Nov 2024 22:34:09 +0000 Manifest this update: Fri 22 Nov 2024 22:34:08 +0000 Manifest next update: Fri 29 Nov 2024 22:34:08 +0000 Files and hashes: 1: 2gE-F4NYyzWot2XJvAkK6c8cT74.crl (hash: tkluJ8A3MqPZu/M1QWoyW2GIbqurfdm/wPy+x7A3Q1w=) 2: 3C5E55F041A411ECA73C8C0EC4F9AE02.roa (hash: KMuh5ult9LiAce0tih+7IUcHZQamzlPDZPCJthZ1JAs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B2C88/24299DCA978E11EBBD81B055C4F9AE02/2gE-F4NYyzWot2XJvAkK6c8cT74.crl rsync://rpki.apnic.net/member_repository/A91B2C88/24299DCA978E11EBBD81B055C4F9AE02/2gE-F4NYyzWot2XJvAkK6c8cT74.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2gE-F4NYyzWot2XJvAkK6c8cT74.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1499 (0x5db) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B2C88/serialNumber=DA013E178358CB35A8B765C9BC090AE9CF1C4FBE Validity Not Before: Nov 22 22:34:08 2024 GMT Not After : Nov 29 22:34:08 2024 GMT Subject: CN=674106e0-9440 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:71:2b:6b:ad:de:43:cd:b3:39:d2:c0:2c:a4: d4:20:64:57:d4:0d:d8:35:26:9f:8b:61:de:ed:fd: e2:11:29:f8:8f:49:42:52:39:fb:bb:03:28:5b:ac: 35:28:1a:11:af:3e:ea:b4:6d:da:b2:2e:9a:ed:2a: 6a:b4:6f:d0:98:bc:4d:ec:37:14:b0:79:a6:8b:b3: 45:30:17:cd:a8:d7:f4:2f:ef:b8:3b:86:16:86:04: 09:65:5a:c1:1b:b5:38:bf:dd:92:1b:e7:1f:d1:f4: e6:00:fc:88:d7:db:46:17:77:33:8c:d0:c3:dd:b9: 8f:5e:af:59:26:84:0d:a8:a1:b2:85:15:d1:89:1f: 6c:da:23:73:2d:e9:2a:b1:c3:39:bc:45:c4:0b:bb: 89:85:8b:87:a7:05:7f:36:04:91:3d:e7:0d:38:18: 6e:03:5d:78:de:9b:28:30:47:62:fc:05:e6:65:27: bb:6a:d2:84:38:ee:da:1a:22:f6:10:d1:6f:ca:a1: d5:6c:74:f9:39:3b:0a:f3:8d:7e:f0:c4:c7:37:36: 79:d5:5d:03:ce:38:05:ad:9e:4c:cb:ae:e1:b2:44: fa:ab:55:ae:d3:62:fe:6c:a1:bf:63:b6:7b:5a:ee: dc:5f:68:45:ea:fd:83:ed:e3:a1:ac:ee:e0:6c:68: cb:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:96:CE:09:10:B4:72:88:D7:FA:8B:C2:26:59:1E:42:0B:ED:53:99 X509v3 Authority Key Identifier: keyid:DA:01:3E:17:83:58:CB:35:A8:B7:65:C9:BC:09:0A:E9:CF:1C:4F:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B2C88/24299DCA978E11EBBD81B055C4F9AE02/2gE-F4NYyzWot2XJvAkK6c8cT74.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2gE-F4NYyzWot2XJvAkK6c8cT74.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B2C88/24299DCA978E11EBBD81B055C4F9AE02/2gE-F4NYyzWot2XJvAkK6c8cT74.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7e:89:76:ba:6b:76:82:23:9f:ed:a7:90:28:16:ed:24:17:85: a7:9f:30:2b:a2:39:cf:24:1d:09:1f:98:41:c6:c8:d2:67:6d: 65:4d:f3:02:f4:8f:87:41:3e:d5:1f:54:4e:08:91:4e:8a:f6: 0a:76:7c:00:1f:72:4f:02:a6:b4:8d:1c:40:44:03:62:91:a4: c0:93:60:34:7b:76:f5:53:9b:8c:d1:96:de:2d:fc:f8:6c:a1: 93:b2:2e:fb:a2:91:47:a1:08:da:a8:a1:bc:46:e6:75:6d:eb: e0:8e:b9:c8:50:5f:e6:d2:e0:ee:01:da:30:9b:71:f4:fb:57: d3:88:9a:d1:5d:f7:4a:d1:2e:dc:61:7a:39:ad:e3:0d:3f:47: a2:3e:13:44:13:15:b8:12:a7:ca:8b:12:a8:51:57:f2:73:77: c1:3f:65:08:f9:b1:ea:5d:d2:b1:d9:18:36:82:43:f5:f9:17: 65:2f:cb:a7:9a:0d:ec:ef:9e:b7:d6:cc:e8:86:26:b2:2d:aa: 43:c1:84:ff:83:ab:f9:1f:7e:ec:a8:b8:3c:54:48:25:c4:c6: 4b:bc:38:ce:3d:9e:87:d1:df:5e:0a:94:62:2f:cd:d0:51:bc: e4:02:23:b5:b0:07:13:18:eb:3e:fb:a8:bd:f8:4f:b1:6c:46: c4:56:6e:01 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBdswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjJDODgxMTAvBgNVBAUTKERBMDEzRTE3ODM1OENCMzVBOEI3NjVDOUJDMDkwQUU5 Q0YxQzRGQkUwHhcNMjQxMTIyMjIzNDA4WhcNMjQxMTI5MjIzNDA4WjAYMRYwFAYD VQQDEw02NzQxMDZlMC05NDQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyHEra63eQ82zOdLALKTUIGRX1A3YNSafi2He7f3iESn4j0lCUjn7uwMoW6w1 KBoRrz7qtG3asi6a7SpqtG/QmLxN7DcUsHmmi7NFMBfNqNf0L++4O4YWhgQJZVrB G7U4v92SG+cf0fTmAPyI19tGF3czjNDD3bmPXq9ZJoQNqKGyhRXRiR9s2iNzLekq scM5vEXEC7uJhYuHpwV/NgSRPecNOBhuA1143psoMEdi/AXmZSe7atKEOO7aGiL2 ENFvyqHVbHT5OTsK841+8MTHNzZ51V0DzjgFrZ5My67hskT6q1Wu02L+bKG/Y7Z7 Wu7cX2hF6v2D7eOhrO7gbGjLHwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFN+WzgkQ tHKI1/qLwiZZHkIL7VOZMB8GA1UdIwQYMBaAFNoBPheDWMs1qLdlybwJCunPHE++ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMkM4OC8yNDI5OURDQTk3 OEUxMUVCQkQ4MUIwNTVDNEY5QUUwMi8yZ0UtRjROWXl6V290MlhKdkFrSzZjOGNU NzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJnRS1GNE5ZeXpXb3QyWEp2QWtLNmM4Y1Q3NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MkM4OC8yNDI5OURDQTk3OEUxMUVCQkQ4MUIwNTVDNEY5QUUwMi8yZ0UtRjROWXl6 V290MlhKdkFrSzZjOGNUNzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB+iXa6a3aCI5/tp5AoFu0kF4WnnzArojnPJB0JH5hBxsjSZ21lTfMC 9I+HQT7VH1ROCJFOivYKdnwAH3JPAqa0jRxARANikaTAk2A0e3b1U5uM0ZbeLfz4 bKGTsi77opFHoQjaqKG8RuZ1bevgjrnIUF/m0uDuAdowm3H0+1fTiJrRXfdK0S7c YXo5reMNP0eiPhNEExW4EqfKixKoUVfyc3fBP2UI+bHqXdKx2Rg2gkP1+RdlL8un mg3s75631szohiayLapDwYT/g6v5H37sqLg8VEglxMZLvDjOPZ6H0d9eCpRiL83Q UbzkAiO1sAcTGOs++6i9+E+xbEbEVm4B -----END CERTIFICATE-----Generated at Fri Nov 22 23:39:33 2024 by rpki-client on console-fra.rpki-client.org