$ rpki-client -vvf rpki.apnic.net/member_repository/A91B428B/3A0B6C0C847711EAB3B43680C4F9AE02/D-jKZIcKPWORHI0tZRuinKztDso.mft File: D-jKZIcKPWORHI0tZRuinKztDso.mft (raw, json) Hash identifier: 0M1U6/49dt0kCqehVhJybIiccCJdr39W3Xyf/OX8TWo= Subject key identifier: 1D:6B:0A:EC:96:5B:D4:AA:79:13:4C:A2:00:7D:D4:47:B0:2C:60:C2 Authority key identifier: 0F:E8:CA:64:87:0A:3D:63:91:1C:8D:2D:65:1B:A2:9C:AC:ED:0E:CA Certificate issuer: /CN=A91B428B/serialNumber=0FE8CA64870A3D63911C8D2D651BA29CACED0ECA Certificate serial: 095A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D-jKZIcKPWORHI0tZRuinKztDso.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B428B/3A0B6C0C847711EAB3B43680C4F9AE02/D-jKZIcKPWORHI0tZRuinKztDso.mft Manifest number: 0954 Signing time: Fri 22 Nov 2024 19:58:21 +0000 Manifest this update: Fri 22 Nov 2024 19:58:21 +0000 Manifest next update: Fri 29 Nov 2024 19:58:21 +0000 Files and hashes: 1: D-jKZIcKPWORHI0tZRuinKztDso.crl (hash: 0b5JlyfxH1VsO/1kAGgJDggWYipiJdmMZq77zy1vF08=) 2: 319DF660847811EA8EE07E81C4F9AE02.roa (hash: FKZsZ6eAd5BvbnauopEY4uKdxyNb8Ct9XBk7pe2RwBw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B428B/3A0B6C0C847711EAB3B43680C4F9AE02/D-jKZIcKPWORHI0tZRuinKztDso.crl rsync://rpki.apnic.net/member_repository/A91B428B/3A0B6C0C847711EAB3B43680C4F9AE02/D-jKZIcKPWORHI0tZRuinKztDso.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D-jKZIcKPWORHI0tZRuinKztDso.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 19:56:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2394 (0x95a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B428B/serialNumber=0FE8CA64870A3D63911C8D2D651BA29CACED0ECA Validity Not Before: Nov 22 19:58:21 2024 GMT Not After : Nov 29 19:58:21 2024 GMT Subject: CN=6740e25d-93cf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:0a:4f:17:5a:50:8b:3e:db:2d:9f:4d:42:da: 5e:ff:18:14:b6:05:8c:48:2f:9d:9d:ba:f5:9c:ad: 0b:e2:21:b5:12:16:71:90:de:da:fa:ce:e9:08:9c: 02:8a:6b:c5:1f:df:23:56:aa:04:5a:c8:b4:81:f4: 21:71:75:14:82:aa:36:4f:5c:2c:b1:52:20:d5:78: 11:67:21:64:e1:40:5a:0a:74:df:7c:45:c2:91:62: ca:1d:de:89:64:87:51:c9:71:13:17:d9:98:7a:35: da:90:f5:a3:06:e4:4c:9b:61:09:97:bd:09:07:88: 82:37:f5:26:72:97:67:e7:cd:12:99:2c:ae:59:0a: c7:cb:e9:11:5a:97:ea:36:43:3e:a7:79:8e:9a:8a: 04:69:89:67:6c:c3:4d:46:ac:b5:27:57:5a:b2:6c: d7:34:f2:54:66:2d:16:79:ad:34:59:8e:81:2b:26: 43:a5:4d:7c:1f:66:44:07:31:f2:f8:6a:9f:50:2b: d2:18:61:cc:46:f8:09:9f:ee:7e:97:7f:20:ec:ed: e7:72:45:2a:98:ea:bd:56:be:6f:cb:3f:9d:85:e5: da:fd:1b:de:cd:51:41:e3:59:a3:e2:77:f3:32:6e: 29:31:a5:18:e3:fb:38:1a:ed:f7:c0:70:cc:31:6f: c2:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:6B:0A:EC:96:5B:D4:AA:79:13:4C:A2:00:7D:D4:47:B0:2C:60:C2 X509v3 Authority Key Identifier: keyid:0F:E8:CA:64:87:0A:3D:63:91:1C:8D:2D:65:1B:A2:9C:AC:ED:0E:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B428B/3A0B6C0C847711EAB3B43680C4F9AE02/D-jKZIcKPWORHI0tZRuinKztDso.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D-jKZIcKPWORHI0tZRuinKztDso.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B428B/3A0B6C0C847711EAB3B43680C4F9AE02/D-jKZIcKPWORHI0tZRuinKztDso.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 48:51:6e:4e:36:c9:f8:92:8f:9b:8d:1d:44:fb:8d:fb:29:b1: 0b:6e:ad:0d:14:fa:e5:c0:fc:39:34:5c:32:3f:48:50:06:d0: f8:af:8b:fc:bd:45:72:52:fe:74:7c:2e:50:71:e3:0a:6d:6e: bd:bd:05:b9:30:cb:1a:29:cf:01:90:e3:ab:8e:dd:a7:b9:18: 11:24:8b:1a:94:de:e0:d8:e4:62:f1:68:b7:dc:50:cb:33:d3: 93:e4:f2:88:7f:f4:4a:33:94:ae:05:ea:17:d4:52:69:1d:f6: a5:a3:2f:52:e0:61:85:fe:87:a6:71:62:07:a0:de:37:eb:3f: b2:2a:7a:d7:08:1f:2e:a0:e3:4f:4f:74:a5:9c:59:f9:31:dd: 87:a8:e6:5a:1d:06:61:c5:79:cc:da:28:c9:23:4c:75:85:55: ce:a8:84:a1:25:fc:e4:37:1a:87:de:f7:65:97:3f:df:86:83: 34:1a:07:37:68:a1:d1:f1:4d:79:00:09:ec:f6:69:a5:60:2b: c1:d7:94:b6:d9:e1:23:5c:32:6b:b2:93:61:84:57:95:20:ed: 4c:be:04:6b:a4:7f:28:d0:86:fe:13:25:60:c3:ec:de:4a:88: 22:0f:8d:53:6b:26:3d:ac:00:95:36:70:b5:9c:df:b4:bc:e7: 52:8c:07:23 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCVowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjQyOEIxMTAvBgNVBAUTKDBGRThDQTY0ODcwQTNENjM5MTFDOEQyRDY1MUJBMjlD QUNFRDBFQ0EwHhcNMjQxMTIyMTk1ODIxWhcNMjQxMTI5MTk1ODIxWjAYMRYwFAYD VQQDEw02NzQwZTI1ZC05M2NmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzwpPF1pQiz7bLZ9NQtpe/xgUtgWMSC+dnbr1nK0L4iG1EhZxkN7a+s7pCJwC imvFH98jVqoEWsi0gfQhcXUUgqo2T1wssVIg1XgRZyFk4UBaCnTffEXCkWLKHd6J ZIdRyXETF9mYejXakPWjBuRMm2EJl70JB4iCN/Umcpdn580SmSyuWQrHy+kRWpfq NkM+p3mOmooEaYlnbMNNRqy1J1dasmzXNPJUZi0Wea00WY6BKyZDpU18H2ZEBzHy +GqfUCvSGGHMRvgJn+5+l38g7O3nckUqmOq9Vr5vyz+dheXa/RvezVFB41mj4nfz Mm4pMaUY4/s4Gu33wHDMMW/C0wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB1rCuyW W9SqeRNMogB91EewLGDCMB8GA1UdIwQYMBaAFA/oymSHCj1jkRyNLWUbopys7Q7K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNDI4Qi8zQTBCNkMwQzg0 NzcxMUVBQjNCNDM2ODBDNEY5QUUwMi9ELWpLWkljS1BXT1JISTB0WlJ1aW5LenRE c28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0QtaktaSWNLUFdPUkhJMHRaUnVpbkt6dERzby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NDI4Qi8zQTBCNkMwQzg0NzcxMUVBQjNCNDM2ODBDNEY5QUUwMi9ELWpLWkljS1BX T1JISTB0WlJ1aW5LenREc28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBIUW5ONsn4ko+bjR1E+437KbELbq0NFPrlwPw5NFwyP0hQBtD4r4v8 vUVyUv50fC5QceMKbW69vQW5MMsaKc8BkOOrjt2nuRgRJIsalN7g2ORi8Wi33FDL M9OT5PKIf/RKM5SuBeoX1FJpHfaloy9S4GGF/oemcWIHoN436z+yKnrXCB8uoONP T3SlnFn5Md2HqOZaHQZhxXnM2ijJI0x1hVXOqIShJfzkNxqH3vdllz/fhoM0Ggc3 aKHR8U15AAns9mmlYCvB15S22eEjXDJrspNhhFeVIO1MvgRrpH8o0Ib+EyVgw+ze SogiD41TayY9rACVNnC1nN+0vOdSjAcj -----END CERTIFICATE-----Generated at Fri Nov 22 21:05:32 2024 by rpki-client on console-fra.rpki-client.org