$ rpki-client -vvf rpki.apnic.net/member_repository/A91B5CEA/1F63A56864EE11EDA4A34513C4F9AE02/RITQfaaNUwUM3PaxPAwFReZFfOU.mft File: RITQfaaNUwUM3PaxPAwFReZFfOU.mft (raw, json) Hash identifier: SXn668iVTXZf+BqvC/7Tk2Fr3V8fSiVdh7FFii0FLW8= Subject key identifier: 05:69:2E:6F:33:B6:51:21:20:1E:B3:F9:73:2E:DD:A6:30:30:05:EF Authority key identifier: 44:84:D0:7D:A6:8D:53:05:0C:DC:F6:B1:3C:0C:05:45:E6:45:7C:E5 Certificate issuer: /CN=A91B5CEA/serialNumber=4484D07DA68D53050CDCF6B13C0C0545E6457CE5 Certificate serial: 017F Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/RITQfaaNUwUM3PaxPAwFReZFfOU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B5CEA/1F63A56864EE11EDA4A34513C4F9AE02/RITQfaaNUwUM3PaxPAwFReZFfOU.mft Manifest number: 017C Signing time: Thu 21 Nov 2024 02:05:45 +0000 Manifest this update: Thu 21 Nov 2024 02:05:44 +0000 Manifest next update: Thu 28 Nov 2024 02:05:44 +0000 Files and hashes: 1: RITQfaaNUwUM3PaxPAwFReZFfOU.crl (hash: yeDe3lobRaABgsJWWp/uftUw3Hk6FZZFiageFsS3zII=) 2: B3795CBC64F211ED9AEC046FC4F9AE02.roa (hash: EdWi73Mh5xQLy3TivA4ubB2nlEznz8QrqPnUKcwGaiM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B5CEA/1F63A56864EE11EDA4A34513C4F9AE02/RITQfaaNUwUM3PaxPAwFReZFfOU.crl rsync://rpki.apnic.net/member_repository/A91B5CEA/1F63A56864EE11EDA4A34513C4F9AE02/RITQfaaNUwUM3PaxPAwFReZFfOU.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/RITQfaaNUwUM3PaxPAwFReZFfOU.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 19:46:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 383 (0x17f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B5CEA/serialNumber=4484D07DA68D53050CDCF6B13C0C0545E6457CE5 Validity Not Before: Nov 21 02:05:44 2024 GMT Not After : Nov 28 02:05:44 2024 GMT Subject: CN=673e9578-bc13 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:b2:c2:77:d9:b2:39:b8:b1:ab:44:6f:c2:d0: e4:b4:2f:f0:17:f6:ac:12:9e:0f:89:f2:79:5c:32: 13:24:16:c0:73:99:06:07:ae:4c:9a:33:21:02:1f: 06:c1:36:86:58:08:19:13:c9:91:f9:c9:95:dd:30: d8:ad:85:01:69:fc:a3:10:76:20:0b:33:3d:29:41: 57:38:44:e4:44:09:c0:d9:3e:25:f9:4f:9b:53:20: b5:16:97:eb:67:61:94:6c:bb:a4:7a:3d:94:37:c2: 39:73:51:f8:75:18:e6:24:28:c6:da:19:83:d9:f8: bf:a8:51:96:3e:9f:6a:78:ae:17:c1:72:15:af:34: 79:7e:3e:5f:3a:98:26:92:84:f6:ca:02:a8:1a:48: 94:9d:57:f0:16:d7:0c:13:fd:8e:0a:63:af:22:72: 36:e7:7b:e9:09:ce:63:be:46:ac:a6:2e:ea:26:e4: 09:dd:b9:e1:9b:2f:7a:34:a6:e5:e7:a4:8a:f8:af: 5b:27:47:b7:f9:5e:42:e2:af:d7:df:2e:26:98:4c: 81:dd:ad:9a:1a:69:c0:81:fb:1f:f8:d8:d1:7d:f5: f9:2d:f5:77:5b:73:9d:c4:08:63:ef:fd:bd:86:5f: 58:99:97:70:1e:5c:a5:df:d0:3b:31:ae:b5:c0:e6: 48:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:69:2E:6F:33:B6:51:21:20:1E:B3:F9:73:2E:DD:A6:30:30:05:EF X509v3 Authority Key Identifier: keyid:44:84:D0:7D:A6:8D:53:05:0C:DC:F6:B1:3C:0C:05:45:E6:45:7C:E5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B5CEA/1F63A56864EE11EDA4A34513C4F9AE02/RITQfaaNUwUM3PaxPAwFReZFfOU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/RITQfaaNUwUM3PaxPAwFReZFfOU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B5CEA/1F63A56864EE11EDA4A34513C4F9AE02/RITQfaaNUwUM3PaxPAwFReZFfOU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b2:15:6f:32:15:63:e0:fe:4c:62:6e:82:5a:41:e5:35:92:b8: b0:c5:60:7c:e4:b3:5e:39:2c:28:17:b6:86:2c:52:cd:2e:5d: ed:3f:91:28:da:7f:38:e4:36:b5:72:17:8b:07:4d:bc:0f:94: 64:e2:94:39:c3:5b:a6:5a:0a:66:95:3b:2a:bf:85:b3:0c:5d: b7:a7:96:f9:dc:bd:ec:c2:87:7e:96:52:c2:42:7d:34:cf:e9: 0b:a3:0e:bd:11:79:48:e8:7d:d6:57:b1:2f:4a:7b:97:aa:4a: 77:8c:99:fe:db:16:6b:b2:39:07:08:0d:7a:35:f0:48:8d:81: d2:d9:5a:7a:fe:e6:9c:75:5d:a7:95:c7:3f:ec:7d:ac:f6:a8: ec:88:bb:79:27:8d:74:02:09:18:fa:93:ac:37:54:3a:f5:80: 4c:ba:76:02:10:ac:7a:dd:be:5f:fe:1e:df:85:99:ff:6d:ee: ff:21:95:65:6f:72:36:69:9d:a8:3b:80:c8:b5:84:05:64:c9: 8b:e2:d0:80:54:d9:c1:87:c4:4b:12:8e:a4:5e:94:af:0f:d8: 61:da:2d:dc:4e:40:d6:18:10:36:e3:50:50:8e:c5:0b:8c:8d: d6:e2:b7:49:42:66:2f:85:be:01:fa:9b:05:bf:98:34:24:5c: 9f:24:3b:2a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAX8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjVDRUExMTAvBgNVBAUTKDQ0ODREMDdEQTY4RDUzMDUwQ0RDRjZCMTNDMEMwNTQ1 RTY0NTdDRTUwHhcNMjQxMTIxMDIwNTQ0WhcNMjQxMTI4MDIwNTQ0WjAYMRYwFAYD VQQDEw02NzNlOTU3OC1iYzEzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtLLCd9myObixq0RvwtDktC/wF/asEp4PifJ5XDITJBbAc5kGB65MmjMhAh8G wTaGWAgZE8mR+cmV3TDYrYUBafyjEHYgCzM9KUFXOETkRAnA2T4l+U+bUyC1Fpfr Z2GUbLukej2UN8I5c1H4dRjmJCjG2hmD2fi/qFGWPp9qeK4XwXIVrzR5fj5fOpgm koT2ygKoGkiUnVfwFtcME/2OCmOvInI253vpCc5jvkaspi7qJuQJ3bnhmy96NKbl 56SK+K9bJ0e3+V5C4q/X3y4mmEyB3a2aGmnAgfsf+NjRffX5LfV3W3OdxAhj7/29 hl9YmZdwHlyl39A7Ma61wOZIHQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAVpLm8z tlEhIB6z+XMu3aYwMAXvMB8GA1UdIwQYMBaAFESE0H2mjVMFDNz2sTwMBUXmRXzl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNUNFQS8xRjYzQTU2ODY0 RUUxMUVEQTRBMzQ1MTNDNEY5QUUwMi9SSVRRZmFhTlV3VU0zUGF4UEF3RlJlWkZm T1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL1JJVFFmYWFOVXdVTTNQYXhQQXdGUmVaRmZPVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NUNFQS8xRjYzQTU2ODY0RUUxMUVEQTRBMzQ1MTNDNEY5QUUwMi9SSVRRZmFhTlV3 VU0zUGF4UEF3RlJlWkZmT1UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCyFW8yFWPg/kxiboJaQeU1kriwxWB85LNeOSwoF7aGLFLNLl3tP5Eo 2n845Da1cheLB028D5Rk4pQ5w1umWgpmlTsqv4WzDF23p5b53L3swod+llLCQn00 z+kLow69EXlI6H3WV7EvSnuXqkp3jJn+2xZrsjkHCA16NfBIjYHS2Vp6/uacdV2n lcc/7H2s9qjsiLt5J410AgkY+pOsN1Q69YBMunYCEKx63b5f/h7fhZn/be7/IZVl b3I2aZ2oO4DItYQFZMmL4tCAVNnBh8RLEo6kXpSvD9hh2i3cTkDWGBA241BQjsUL jI3W4rdJQmYvhb4B+psFv5g0JFyfJDsq -----END CERTIFICATE-----Generated at Thu Nov 21 03:12:03 2024 by rpki-client on console-fra.rpki-client.org