$ rpki-client -vvf rpki.apnic.net/member_repository/A91B4873/4E25C8BC38E711EF844B4F65C4F9AE02/5bRMaejecz32GWYFbn5BXsfHDSo.mft File: 5bRMaejecz32GWYFbn5BXsfHDSo.mft (raw, json) Hash identifier: hoWYc3MgxN5jI4OMk73E5PW15JMJbnApSAAAPE29Dvo= Subject key identifier: 64:00:EC:D5:E4:BE:27:08:BE:BE:C1:86:0F:EB:DD:FC:C7:55:D4:4B Authority key identifier: E5:B4:4C:69:E8:DE:73:3D:F6:19:66:05:6E:7E:41:5E:C7:C7:0D:2A Certificate issuer: /CN=A91B4873/serialNumber=E5B44C69E8DE733DF61966056E7E415EC7C70D2A Certificate serial: 4A Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5bRMaejecz32GWYFbn5BXsfHDSo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B4873/4E25C8BC38E711EF844B4F65C4F9AE02/5bRMaejecz32GWYFbn5BXsfHDSo.mft Manifest number: 49 Signing time: Thu 21 Nov 2024 05:22:40 +0000 Manifest this update: Thu 21 Nov 2024 05:22:39 +0000 Manifest next update: Thu 28 Nov 2024 05:22:39 +0000 Files and hashes: 1: 5bRMaejecz32GWYFbn5BXsfHDSo.crl (hash: WmlOEJv9E7+ssRqvSppYogUJrah68kibfNcPWGOMQig=) 2: 01F62A6438F011EF9A82662BC4F9AE02.roa (hash: 6ibBV+FsUpvviGFZhtbUaWu715IOaDD6qWu96emn7VA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B4873/4E25C8BC38E711EF844B4F65C4F9AE02/5bRMaejecz32GWYFbn5BXsfHDSo.crl rsync://rpki.apnic.net/member_repository/A91B4873/4E25C8BC38E711EF844B4F65C4F9AE02/5bRMaejecz32GWYFbn5BXsfHDSo.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5bRMaejecz32GWYFbn5BXsfHDSo.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 02:50:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 74 (0x4a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B4873/serialNumber=E5B44C69E8DE733DF61966056E7E415EC7C70D2A Validity Not Before: Nov 21 05:22:39 2024 GMT Not After : Nov 28 05:22:39 2024 GMT Subject: CN=673ec3a0-ed8f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:3b:fe:99:a6:81:53:ad:2e:f4:e1:5e:a8:14: c4:6e:ad:47:6c:26:2c:84:c2:ca:f0:66:f1:ae:24: 6f:7f:0f:79:0e:fd:96:26:7b:8e:87:87:bc:07:25: ed:39:23:0c:1e:9b:6d:ed:c1:e5:4a:3a:6d:51:4e: 69:82:60:4f:3e:7d:05:15:54:ae:b7:a5:bd:b0:f1: fa:e2:1a:73:b8:ed:46:b4:e4:44:41:50:9a:95:25: ab:45:c2:04:68:53:fd:bf:d5:0a:6a:91:1f:86:3b: aa:79:9c:75:93:49:32:9e:c4:eb:f3:92:88:fd:48: 1e:60:db:56:2c:89:fe:81:30:71:aa:8b:d5:06:43: 49:ad:de:2f:6b:3e:30:e0:bd:b8:24:52:eb:a1:c8: 14:49:2a:c6:21:f6:72:38:2a:5a:1b:9f:88:3b:c2: 35:c6:98:a2:be:b4:8c:57:d4:b1:48:4e:e0:e4:31: 87:33:2f:b4:5e:5a:19:d2:c0:65:6e:0f:e8:50:8f: 68:91:20:f0:d2:32:b6:01:e4:85:71:17:b5:f6:bb: 42:d9:a2:c9:7a:df:eb:fd:f6:10:ad:71:7b:71:d5: ad:d8:8e:12:11:fa:cf:ac:e2:2c:0b:d1:15:53:01: 81:8f:07:c7:f8:f0:af:0b:af:4d:0d:46:9e:71:2f: d4:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:00:EC:D5:E4:BE:27:08:BE:BE:C1:86:0F:EB:DD:FC:C7:55:D4:4B X509v3 Authority Key Identifier: keyid:E5:B4:4C:69:E8:DE:73:3D:F6:19:66:05:6E:7E:41:5E:C7:C7:0D:2A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B4873/4E25C8BC38E711EF844B4F65C4F9AE02/5bRMaejecz32GWYFbn5BXsfHDSo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5bRMaejecz32GWYFbn5BXsfHDSo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B4873/4E25C8BC38E711EF844B4F65C4F9AE02/5bRMaejecz32GWYFbn5BXsfHDSo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption cd:d1:5b:ff:b6:20:03:89:ea:c5:59:d6:05:d2:1e:a5:4d:c2: 3b:41:d1:c1:77:5a:82:01:83:e9:c7:57:66:f5:77:db:53:b2: 95:bb:59:a5:7c:73:33:a0:07:27:22:d4:c8:a7:5a:a6:84:06: 5c:b3:82:5c:a7:a9:0a:ad:ee:6e:2f:1e:6d:cd:d1:37:d5:61: 78:85:21:9d:af:d4:f8:a2:3b:be:1a:7d:7d:4a:c2:e3:8f:ca: 31:8c:5f:1d:b4:93:af:90:de:3d:e1:96:55:5a:20:00:a9:c0: bd:aa:07:a5:f3:81:d2:ec:6e:35:a6:35:71:f5:2c:75:87:10: 0a:4c:9f:79:6f:0d:4a:da:dd:05:6b:36:0f:94:b7:53:a6:bf: d6:2d:93:3f:96:46:5a:1f:9b:67:8c:81:7d:09:3c:23:6b:12: 54:65:c1:87:6c:94:bb:6c:7c:e6:5f:6f:8e:ef:cb:ef:29:61: 16:84:fd:53:60:0e:71:2a:3e:51:c2:3c:76:17:c6:5c:46:38: 8c:28:d4:15:80:6c:dd:2f:1f:c5:51:72:e3:1a:b4:08:dd:d1: 10:ca:43:77:1a:08:97:43:6e:57:6b:38:c0:67:40:fc:65:a6: 95:f8:c0:d4:cf:79:a2:75:b6:2b:5a:6c:3f:15:fe:51:8e:4c: 91:1c:2a:b4 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBSjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC NDg3MzExMC8GA1UEBRMoRTVCNDRDNjlFOERFNzMzREY2MTk2NjA1NkU3RTQxNUVD N0M3MEQyQTAeFw0yNDExMjEwNTIyMzlaFw0yNDExMjgwNTIyMzlaMBgxFjAUBgNV BAMTDTY3M2VjM2EwLWVkOGYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDMO/6ZpoFTrS704V6oFMRurUdsJiyEwsrwZvGuJG9/D3kO/ZYme46Hh7wHJe05 Iwwem23tweVKOm1RTmmCYE8+fQUVVK63pb2w8friGnO47Ua05ERBUJqVJatFwgRo U/2/1QpqkR+GO6p5nHWTSTKexOvzkoj9SB5g21Ysif6BMHGqi9UGQ0mt3i9rPjDg vbgkUuuhyBRJKsYh9nI4Klobn4g7wjXGmKK+tIxX1LFITuDkMYczL7ReWhnSwGVu D+hQj2iRIPDSMrYB5IVxF7X2u0LZosl63+v99hCtcXtx1a3YjhIR+s+s4iwL0RVT AYGPB8f48K8Lr00NRp5xL9RrAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUZADs1eS+ Jwi+vsGGD+vd/MdV1EswHwYDVR0jBBgwFoAU5bRMaejecz32GWYFbn5BXsfHDSow DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUI0ODczLzRFMjVDOEJDMzhF NzExRUY4NDRCNEY2NUM0RjlBRTAyLzViUk1hZWplY3ozMkdXWUZibjVCWHNmSERT by5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvNWJSTWFlamVjejMyR1dZRmJuNUJYc2ZIRFNvLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUI0 ODczLzRFMjVDOEJDMzhFNzExRUY4NDRCNEY2NUM0RjlBRTAyLzViUk1hZWplY3oz MkdXWUZibjVCWHNmSERTby5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAM3RW/+2IAOJ6sVZ1gXSHqVNwjtB0cF3WoIBg+nHV2b1d9tTspW7WaV8 czOgByci1MinWqaEBlyzglynqQqt7m4vHm3N0TfVYXiFIZ2v1PiiO74afX1KwuOP yjGMXx20k6+Q3j3hllVaIACpwL2qB6XzgdLsbjWmNXH1LHWHEApMn3lvDUra3QVr Ng+Ut1Omv9Ytkz+WRlofm2eMgX0JPCNrElRlwYdslLtsfOZfb47vy+8pYRaE/VNg DnEqPlHCPHYXxlxGOIwo1BWAbN0vH8VRcuMatAjd0RDKQ3caCJdDbldrOMBnQPxl ppX4wNTPeaJ1titabD8V/lGOTJEcKrQ= -----END CERTIFICATE-----Generated at Thu Nov 21 06:50:48 2024 by rpki-client on console-fra.rpki-client.org