$ rpki-client -vvf rpki.apnic.net/member_repository/A91B588F/784D94B8B76111E6B1175A3CC4F9AE02/DfoUcOPJ6yHxewN7BM9O1UJO88k.mft File: DfoUcOPJ6yHxewN7BM9O1UJO88k.mft (raw, json) Hash identifier: 2Qgw/+noIxu3uSIl6onBeghxr4wL2Pnom/EjA1S6rGQ= Subject key identifier: 2A:21:8E:1A:33:3C:55:58:9F:53:62:A8:93:61:2F:DE:1F:9D:02:73 Authority key identifier: 0D:FA:14:70:E3:C9:EB:21:F1:7B:03:7B:04:CF:4E:D5:42:4E:F3:C9 Certificate issuer: /CN=A91B588F/serialNumber=0DFA1470E3C9EB21F17B037B04CF4ED5424EF3C9 Certificate serial: 1CC9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DfoUcOPJ6yHxewN7BM9O1UJO88k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B588F/784D94B8B76111E6B1175A3CC4F9AE02/DfoUcOPJ6yHxewN7BM9O1UJO88k.mft Manifest number: 1CBC Signing time: Fri 22 Nov 2024 16:10:23 +0000 Manifest this update: Fri 22 Nov 2024 16:10:22 +0000 Manifest next update: Fri 29 Nov 2024 16:10:22 +0000 Files and hashes: 1: DfoUcOPJ6yHxewN7BM9O1UJO88k.crl (hash: 8v43m0MNKywY7lp5//96g0L/8xesfkmn4FUfTeoB76w=) 2: 234A77E28D2111ECB33BB01AC4F9AE02.roa (hash: QN4dhYeOYexv58OGwmZdyDg8Z4B86G7ksX83Qid7CHk=) 3: 09DBF798B76311E6AF11523EC4F9AE02.roa (hash: oh/v7iVJL2nmvk/qjcAVXe7OglXKPf/jEhdssMeYp/k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B588F/784D94B8B76111E6B1175A3CC4F9AE02/DfoUcOPJ6yHxewN7BM9O1UJO88k.crl rsync://rpki.apnic.net/member_repository/A91B588F/784D94B8B76111E6B1175A3CC4F9AE02/DfoUcOPJ6yHxewN7BM9O1UJO88k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DfoUcOPJ6yHxewN7BM9O1UJO88k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 16:10:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7369 (0x1cc9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B588F/serialNumber=0DFA1470E3C9EB21F17B037B04CF4ED5424EF3C9 Validity Not Before: Nov 22 16:10:22 2024 GMT Not After : Nov 29 16:10:22 2024 GMT Subject: CN=6740acee-08d2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:7e:93:39:bf:e3:f6:21:f3:82:8c:47:b4:d2: e3:cc:19:b9:d1:2a:f4:cd:ab:6e:be:e3:24:6d:39: ac:eb:fd:78:92:2d:d0:51:46:2d:83:5a:c3:58:45: 5b:f8:8a:bb:51:4d:8c:d7:fc:16:dc:74:dc:0b:82: 8e:4f:c9:40:9e:2d:69:9f:56:d0:03:b0:00:9a:b0: 94:6a:16:fb:5c:70:07:f1:ae:6e:5a:2c:93:85:c2: a9:f1:8f:15:a0:66:ee:bd:51:c8:a0:d1:76:0e:f9: 4b:74:5a:7f:46:a4:d5:b5:85:9b:d2:63:e6:e9:ef: 23:ac:58:4b:44:15:07:ea:5f:11:e9:c3:1e:b0:59: f6:7e:20:fe:67:3f:fe:71:23:3e:3f:76:c0:1c:10: 92:ad:49:59:4a:c3:00:d2:f2:f8:7d:86:80:f4:9e: 5b:dd:49:40:54:96:12:b9:54:ef:18:0a:27:b2:fd: 90:2b:91:bf:d4:5e:a1:9d:83:29:fd:89:58:f3:b6: 68:33:2a:83:63:ae:2a:e5:c1:41:9a:11:5a:c2:5b: d8:9f:e0:0e:e8:28:36:86:c2:36:01:06:57:7a:40: 7d:1f:b8:7a:8e:91:90:22:29:44:c2:d5:25:e7:49: 01:ef:7e:02:9f:a5:37:e0:38:2e:93:c2:de:34:40: 6c:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:21:8E:1A:33:3C:55:58:9F:53:62:A8:93:61:2F:DE:1F:9D:02:73 X509v3 Authority Key Identifier: keyid:0D:FA:14:70:E3:C9:EB:21:F1:7B:03:7B:04:CF:4E:D5:42:4E:F3:C9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B588F/784D94B8B76111E6B1175A3CC4F9AE02/DfoUcOPJ6yHxewN7BM9O1UJO88k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DfoUcOPJ6yHxewN7BM9O1UJO88k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B588F/784D94B8B76111E6B1175A3CC4F9AE02/DfoUcOPJ6yHxewN7BM9O1UJO88k.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 62:1a:a0:dd:b1:56:40:7f:1a:ea:5a:0b:26:71:b5:c7:45:ed: b2:ed:04:08:ca:1a:27:4f:04:8c:a5:51:e0:25:32:4a:ba:74: bf:db:15:9c:e1:1e:e7:1e:9b:a3:58:2d:0b:b4:29:91:7b:0a: dd:47:95:c7:a8:ec:11:ef:0f:a9:1b:c5:2b:fb:a8:6e:82:52: 5d:16:7c:72:a4:f3:c8:e1:64:0f:b7:af:8e:68:e0:4d:8b:75: 5a:85:f1:2f:fd:75:48:f2:4d:f7:2b:a5:99:78:f3:69:32:52: c5:27:6e:53:c9:75:57:bf:5a:ef:7f:db:9a:41:36:25:06:e3: 12:a3:9d:d5:af:a9:8a:9d:39:77:89:38:74:ac:6c:a8:35:1b: 14:95:93:8e:a8:7c:f3:bf:41:1d:a0:10:e5:35:8b:b7:86:a4: b5:2c:98:ee:d0:de:d4:a6:39:71:38:c5:9e:ba:39:2f:9f:6e: ce:61:b7:38:17:eb:52:52:db:21:21:23:2e:8b:ff:ff:da:b0: a8:c8:1c:49:2c:33:ae:f1:af:d4:43:c1:5b:08:fd:9b:4f:a4: e0:2a:ac:28:6f:7f:99:32:54:15:2f:dc:4e:5f:20:de:6f:4e: 4a:f2:eb:b6:44:9b:d8:cf:fa:84:77:46:39:69:7b:61:bc:9f: 25:f7:56:1a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICHMkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjU4OEYxMTAvBgNVBAUTKDBERkExNDcwRTNDOUVCMjFGMTdCMDM3QjA0Q0Y0RUQ1 NDI0RUYzQzkwHhcNMjQxMTIyMTYxMDIyWhcNMjQxMTI5MTYxMDIyWjAYMRYwFAYD VQQDEw02NzQwYWNlZS0wOGQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzX6TOb/j9iHzgoxHtNLjzBm50Sr0zatuvuMkbTms6/14ki3QUUYtg1rDWEVb +Iq7UU2M1/wW3HTcC4KOT8lAni1pn1bQA7AAmrCUahb7XHAH8a5uWiyThcKp8Y8V oGbuvVHIoNF2DvlLdFp/RqTVtYWb0mPm6e8jrFhLRBUH6l8R6cMesFn2fiD+Zz/+ cSM+P3bAHBCSrUlZSsMA0vL4fYaA9J5b3UlAVJYSuVTvGAonsv2QK5G/1F6hnYMp /YlY87ZoMyqDY64q5cFBmhFawlvYn+AO6Cg2hsI2AQZXekB9H7h6jpGQIilEwtUl 50kB734Cn6U34Dguk8LeNEBsxQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCohjhoz PFVYn1NiqJNhL94fnQJzMB8GA1UdIwQYMBaAFA36FHDjyesh8XsDewTPTtVCTvPJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNTg4Ri83ODREOTRCOEI3 NjExMUU2QjExNzVBM0NDNEY5QUUwMi9EZm9VY09QSjZ5SHhld043Qk05TzFVSk84 OGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0Rmb1VjT1BKNnlIeGV3TjdCTTlPMVVKTzg4ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NTg4Ri83ODREOTRCOEI3NjExMUU2QjExNzVBM0NDNEY5QUUwMi9EZm9VY09QSjZ5 SHhld043Qk05TzFVSk84OGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBiGqDdsVZAfxrqWgsmcbXHRe2y7QQIyhonTwSMpVHgJTJKunS/2xWc 4R7nHpujWC0LtCmRewrdR5XHqOwR7w+pG8Ur+6huglJdFnxypPPI4WQPt6+OaOBN i3VahfEv/XVI8k33K6WZePNpMlLFJ25TyXVXv1rvf9uaQTYlBuMSo53Vr6mKnTl3 iTh0rGyoNRsUlZOOqHzzv0EdoBDlNYu3hqS1LJju0N7UpjlxOMWeujkvn27OYbc4 F+tSUtshISMui///2rCoyBxJLDOu8a/UQ8FbCP2bT6TgKqwob3+ZMlQVL9xOXyDe b05K8uu2RJvYz/qEd0Y5aXthvJ8l91Ya -----END CERTIFICATE-----Generated at Fri Nov 22 17:56:19 2024 by rpki-client on console-fra.rpki-client.org