$ rpki-client -vvf rpki.apnic.net/member_repository/A91B7B61/BE68D302CAAA11EBB8C02B5CC4F9AE02/cYQNfZjFz5vWvrRIatRnQGXxR0E.mft File: cYQNfZjFz5vWvrRIatRnQGXxR0E.mft (raw, json) Hash identifier: vgUYavXQcCYOUv5Erh9ZQt20/8BhkZKTJuoOI+TiAAQ= Subject key identifier: 35:B6:97:B2:2F:31:F9:37:BA:00:4C:9F:95:6A:64:17:2E:8A:E7:00 Authority key identifier: 71:84:0D:7D:98:C5:CF:9B:D6:BE:B4:48:6A:D4:67:40:65:F1:47:41 Certificate issuer: /CN=A91B7B61/serialNumber=71840D7D98C5CF9BD6BEB4486AD4674065F14741 Certificate serial: 054D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cYQNfZjFz5vWvrRIatRnQGXxR0E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B7B61/BE68D302CAAA11EBB8C02B5CC4F9AE02/cYQNfZjFz5vWvrRIatRnQGXxR0E.mft Manifest number: 0549 Signing time: Fri 22 Nov 2024 23:00:42 +0000 Manifest this update: Fri 22 Nov 2024 23:00:42 +0000 Manifest next update: Fri 29 Nov 2024 23:00:42 +0000 Files and hashes: 1: cYQNfZjFz5vWvrRIatRnQGXxR0E.crl (hash: bTGEKySdBWr5x0Db7eFKBsq2GYJqVIEQmpaQNUEHpy4=) 2: C2EFC706CAAE11EBA95C5E64C4F9AE02.roa (hash: CjCSmslBUSukL+VQeriKJzpmD5FpwHuT7xL5fJExCAg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B7B61/BE68D302CAAA11EBB8C02B5CC4F9AE02/cYQNfZjFz5vWvrRIatRnQGXxR0E.crl rsync://rpki.apnic.net/member_repository/A91B7B61/BE68D302CAAA11EBB8C02B5CC4F9AE02/cYQNfZjFz5vWvrRIatRnQGXxR0E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cYQNfZjFz5vWvrRIatRnQGXxR0E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1357 (0x54d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B7B61/serialNumber=71840D7D98C5CF9BD6BEB4486AD4674065F14741 Validity Not Before: Nov 22 23:00:42 2024 GMT Not After : Nov 29 23:00:42 2024 GMT Subject: CN=67410d1a-3d3e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:77:23:32:fc:d3:ec:54:0a:6f:00:13:27:18: 52:93:4f:a7:31:e7:6f:9b:d1:c1:5b:a1:97:25:dd: 42:10:b5:cf:36:03:8b:13:35:38:ea:99:76:64:66: fd:df:18:a8:5f:8c:9c:c3:22:96:6d:98:81:ce:6f: e2:69:e8:95:fd:25:1a:15:47:ce:b0:40:33:bc:8b: f2:ba:60:1b:10:68:5e:02:28:21:0c:f7:06:22:71: 62:fb:93:7b:82:57:c5:00:42:bb:3c:34:75:99:c3: 24:6e:c4:24:1b:6f:39:c9:29:a6:3f:32:7b:66:4c: b7:24:71:d9:40:81:97:b7:da:76:dd:41:f3:1c:4d: ec:10:d6:a4:c9:e8:a5:d5:27:c0:e3:f6:90:e5:c0: 47:35:77:ca:e1:07:83:b8:13:e0:ae:2a:cf:58:d6: 2e:1a:4d:59:75:4c:5e:ab:dd:5c:ff:a8:96:72:91: e1:76:a1:6c:da:d9:f2:12:4f:a9:d5:48:b4:7b:0e: 80:80:10:7e:fd:30:9a:d7:1c:dd:b4:96:d0:12:d2: 0b:66:e8:ab:d9:10:5e:fb:27:63:3a:0f:39:ad:46: 5f:53:a4:89:11:15:dc:a4:c6:93:33:98:da:0b:4e: 98:bb:e5:83:70:bc:cf:1c:b4:13:82:d5:ef:74:90: 75:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:B6:97:B2:2F:31:F9:37:BA:00:4C:9F:95:6A:64:17:2E:8A:E7:00 X509v3 Authority Key Identifier: keyid:71:84:0D:7D:98:C5:CF:9B:D6:BE:B4:48:6A:D4:67:40:65:F1:47:41 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B7B61/BE68D302CAAA11EBB8C02B5CC4F9AE02/cYQNfZjFz5vWvrRIatRnQGXxR0E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cYQNfZjFz5vWvrRIatRnQGXxR0E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B7B61/BE68D302CAAA11EBB8C02B5CC4F9AE02/cYQNfZjFz5vWvrRIatRnQGXxR0E.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 53:55:4b:97:28:71:55:be:d9:ff:5b:9e:09:40:00:ff:d9:b7: 8c:e5:e3:e2:f9:c8:00:09:ff:c8:eb:87:e6:e6:91:c7:f2:3b: 68:6b:a5:2d:c2:55:9d:12:e7:56:bf:2c:3f:4b:aa:45:49:de: e2:bc:8a:be:62:f5:3b:73:8b:1e:5d:0e:05:88:a5:9e:91:5e: 0f:16:10:50:d0:bd:8d:13:41:ec:5e:53:5a:3d:8c:18:3f:21: 5b:93:fd:87:01:47:10:c7:37:9e:09:96:8d:b7:8f:a3:a8:c4: 67:ac:9f:58:2a:e6:f8:b5:7a:6b:f9:72:89:b1:5d:c7:bc:13: 3b:57:af:bd:00:8c:57:e4:8b:69:79:e0:58:d6:f9:32:38:d5: ec:f0:91:8a:ff:35:89:65:be:14:e7:9d:43:6e:e4:db:ff:39: 96:a1:d1:4c:86:b3:9a:6c:d5:5b:2c:d8:ed:c5:1a:e7:86:8d: 8e:fb:0c:77:a1:6a:fc:8e:63:ab:e2:56:af:1c:3b:08:f0:2f: ed:94:51:b6:f5:75:4a:bf:4c:cd:e8:ce:28:65:ea:c3:1c:ab: c8:65:68:59:a4:96:bc:d0:d5:e1:ab:d7:03:89:cc:97:8e:c0: 18:12:ea:36:23:c7:70:85:9a:5c:3a:a0:b8:58:c7:13:79:f7: 78:dd:d5:cf -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBU0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjdCNjExMTAvBgNVBAUTKDcxODQwRDdEOThDNUNGOUJENkJFQjQ0ODZBRDQ2NzQw NjVGMTQ3NDEwHhcNMjQxMTIyMjMwMDQyWhcNMjQxMTI5MjMwMDQyWjAYMRYwFAYD VQQDEw02NzQxMGQxYS0zZDNlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqXcjMvzT7FQKbwATJxhSk0+nMedvm9HBW6GXJd1CELXPNgOLEzU46pl2ZGb9 3xioX4ycwyKWbZiBzm/iaeiV/SUaFUfOsEAzvIvyumAbEGheAighDPcGInFi+5N7 glfFAEK7PDR1mcMkbsQkG285ySmmPzJ7Zky3JHHZQIGXt9p23UHzHE3sENakyeil 1SfA4/aQ5cBHNXfK4QeDuBPgrirPWNYuGk1ZdUxeq91c/6iWcpHhdqFs2tnyEk+p 1Ui0ew6AgBB+/TCa1xzdtJbQEtILZuir2RBe+ydjOg85rUZfU6SJERXcpMaTM5ja C06Yu+WDcLzPHLQTgtXvdJB1gwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDW2l7Iv Mfk3ugBMn5VqZBcuiucAMB8GA1UdIwQYMBaAFHGEDX2Yxc+b1r60SGrUZ0Bl8UdB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCN0I2MS9CRTY4RDMwMkNB QUExMUVCQjhDMDJCNUNDNEY5QUUwMi9jWVFOZlpqRno1dld2clJJYXRSblFHWHhS MEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NZUU5mWmpGejV2V3ZyUklhdFJuUUdYeFIwRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC N0I2MS9CRTY4RDMwMkNBQUExMUVCQjhDMDJCNUNDNEY5QUUwMi9jWVFOZlpqRno1 dld2clJJYXRSblFHWHhSMEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBTVUuXKHFVvtn/W54JQAD/2beM5ePi+cgACf/I64fm5pHH8jtoa6Ut wlWdEudWvyw/S6pFSd7ivIq+YvU7c4seXQ4FiKWekV4PFhBQ0L2NE0HsXlNaPYwY PyFbk/2HAUcQxzeeCZaNt4+jqMRnrJ9YKub4tXpr+XKJsV3HvBM7V6+9AIxX5Itp eeBY1vkyONXs8JGK/zWJZb4U551DbuTb/zmWodFMhrOabNVbLNjtxRrnho2O+wx3 oWr8jmOr4lavHDsI8C/tlFG29XVKv0zN6M4oZerDHKvIZWhZpJa80NXhq9cDicyX jsAYEuo2I8dwhZpcOqC4WMcTefd43dXP -----END CERTIFICATE-----Generated at Sat Nov 23 00:49:37 2024 by rpki-client on console-fra.rpki-client.org