$ rpki-client -vvf rpki.apnic.net/member_repository/A91B929F/3BE549CED64E11EB94D4F27DC4F9AE02/i1fdFr2X-1v8IdnMqeK4bVUC4og.mft File: i1fdFr2X-1v8IdnMqeK4bVUC4og.mft (raw, json) Hash identifier: kIOGOUEEQBqnS03GlYuV1oF6c1i8/mHD5mJOJlBCh3I= Subject key identifier: 74:43:BC:49:5A:41:2D:B7:79:85:4D:65:D7:31:72:F7:6B:B4:32:F0 Authority key identifier: 8B:57:DD:16:BD:97:FB:5B:FC:21:D9:CC:A9:E2:B8:6D:55:02:E2:88 Certificate issuer: /CN=A91B929F/serialNumber=8B57DD16BD97FB5BFC21D9CCA9E2B86D5502E288 Certificate serial: 052E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/i1fdFr2X-1v8IdnMqeK4bVUC4og.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B929F/3BE549CED64E11EB94D4F27DC4F9AE02/i1fdFr2X-1v8IdnMqeK4bVUC4og.mft Manifest number: 052A Signing time: Wed 20 Nov 2024 23:04:42 +0000 Manifest this update: Wed 20 Nov 2024 23:04:42 +0000 Manifest next update: Wed 27 Nov 2024 23:04:42 +0000 Files and hashes: 1: i1fdFr2X-1v8IdnMqeK4bVUC4og.crl (hash: vX1OB4tuKxpTshzeNcGDP0luOUTUAUiQRj5YTxQ6LyY=) 2: 2EA68D96D65211EB8DAD1886C4F9AE02.roa (hash: QfVYtd7FvBpsR5Tca8bnLg+O7UqwB1xI72oRETrqTpE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B929F/3BE549CED64E11EB94D4F27DC4F9AE02/i1fdFr2X-1v8IdnMqeK4bVUC4og.crl rsync://rpki.apnic.net/member_repository/A91B929F/3BE549CED64E11EB94D4F27DC4F9AE02/i1fdFr2X-1v8IdnMqeK4bVUC4og.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/i1fdFr2X-1v8IdnMqeK4bVUC4og.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:33:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1326 (0x52e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B929F/serialNumber=8B57DD16BD97FB5BFC21D9CCA9E2B86D5502E288 Validity Not Before: Nov 20 23:04:42 2024 GMT Not After : Nov 27 23:04:42 2024 GMT Subject: CN=673e6b0a-c82a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:01:0b:51:79:c1:75:1d:f0:0a:1d:89:80:a0: ec:55:b0:0e:72:89:de:4c:ef:31:aa:5b:08:d7:c2: d9:98:5a:76:ea:e0:bd:f7:df:bc:35:27:95:a9:3e: ab:37:c6:c6:1c:20:eb:40:b1:c0:9c:a2:d4:de:bb: 89:cc:11:8d:a6:56:fd:d8:0e:ed:da:15:9d:cd:ed: 74:f8:9a:17:eb:f1:3b:b0:9a:dc:a6:2d:47:47:0a: bd:cd:24:f0:1d:ca:25:cf:c2:92:3b:63:56:ed:2d: 6e:63:94:a4:58:e1:f3:f6:48:f4:21:09:69:75:39: 77:cf:3c:51:05:a8:51:e4:11:9b:c1:6f:38:49:4d: 49:49:87:b3:fb:4d:b4:12:5a:b0:d6:6f:31:16:f5: 42:a9:22:29:92:79:77:9d:64:53:3f:f0:40:21:2b: da:a2:f3:1b:30:d8:2d:ee:eb:96:3e:3f:c8:ad:3f: b8:15:5b:69:a4:6d:66:7c:b4:19:15:e8:e8:50:4f: b4:a2:e4:aa:bc:c9:3e:d6:e8:ea:57:bb:5c:08:b4: 0f:9f:70:d2:63:1f:6f:8a:b8:e5:2f:8f:fb:75:55: 87:ea:2d:6d:d7:0c:73:6c:5c:70:b2:51:34:5b:90: cc:bb:01:b1:93:96:92:48:75:ec:e7:2f:26:d8:55: 7e:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:43:BC:49:5A:41:2D:B7:79:85:4D:65:D7:31:72:F7:6B:B4:32:F0 X509v3 Authority Key Identifier: keyid:8B:57:DD:16:BD:97:FB:5B:FC:21:D9:CC:A9:E2:B8:6D:55:02:E2:88 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B929F/3BE549CED64E11EB94D4F27DC4F9AE02/i1fdFr2X-1v8IdnMqeK4bVUC4og.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/i1fdFr2X-1v8IdnMqeK4bVUC4og.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B929F/3BE549CED64E11EB94D4F27DC4F9AE02/i1fdFr2X-1v8IdnMqeK4bVUC4og.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption cb:e3:94:d5:5c:7b:4b:09:93:c8:02:fb:eb:c0:05:49:42:11: 48:78:58:2e:9e:5f:b8:71:cd:6b:9c:9d:ef:6f:cc:63:88:10: b0:af:ba:73:5d:bc:d8:cc:c3:63:49:10:70:fb:02:2c:b3:9b: 9e:8c:4c:a9:c2:15:7f:43:39:6a:63:86:1d:cf:10:64:ff:bc: 73:2f:79:9b:d7:00:34:11:1b:72:e6:be:95:39:6d:30:1b:c9: 67:30:7d:87:a9:30:9f:01:5f:62:72:1f:7c:f8:76:c7:c6:e1: 72:d7:c9:5e:09:e0:9e:30:44:3f:b9:ad:f3:2f:5a:38:85:76: 94:ca:a1:64:43:28:84:45:ce:34:19:73:49:42:82:5c:21:8b: ac:0b:89:cd:4d:9f:8a:17:8a:a1:c9:5d:af:c6:8c:73:5c:bf: 90:eb:13:60:0b:db:dd:45:ea:94:f0:ae:93:bc:39:df:36:b2: cf:c5:ec:71:43:51:3e:cb:81:5f:cf:ef:20:5a:e6:e7:c2:63: ee:b2:2d:f6:70:ac:ef:83:9a:8d:f2:b5:27:de:c0:82:95:dc: 6f:e1:95:84:87:e9:80:7d:6b:08:19:a7:81:7f:91:49:f5:a0: 23:b1:57:66:f7:87:98:6e:40:f8:31:05:25:83:33:9e:e7:43: c0:09:04:b0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBS4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjkyOUYxMTAvBgNVBAUTKDhCNTdERDE2QkQ5N0ZCNUJGQzIxRDlDQ0E5RTJCODZE NTUwMkUyODgwHhcNMjQxMTIwMjMwNDQyWhcNMjQxMTI3MjMwNDQyWjAYMRYwFAYD VQQDEw02NzNlNmIwYS1jODJhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwQELUXnBdR3wCh2JgKDsVbAOconeTO8xqlsI18LZmFp26uC999+8NSeVqT6r N8bGHCDrQLHAnKLU3ruJzBGNplb92A7t2hWdze10+JoX6/E7sJrcpi1HRwq9zSTw Hcolz8KSO2NW7S1uY5SkWOHz9kj0IQlpdTl3zzxRBahR5BGbwW84SU1JSYez+020 Elqw1m8xFvVCqSIpknl3nWRTP/BAISvaovMbMNgt7uuWPj/IrT+4FVtppG1mfLQZ FejoUE+0ouSqvMk+1ujqV7tcCLQPn3DSYx9virjlL4/7dVWH6i1t1wxzbFxwslE0 W5DMuwGxk5aSSHXs5y8m2FV+HQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHRDvEla QS23eYVNZdcxcvdrtDLwMB8GA1UdIwQYMBaAFItX3Ra9l/tb/CHZzKniuG1VAuKI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCOTI5Ri8zQkU1NDlDRUQ2 NEUxMUVCOTRENEYyN0RDNEY5QUUwMi9pMWZkRnIyWC0xdjhJZG5NcWVLNGJWVUM0 b2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2kxZmRGcjJYLTF2OElkbk1xZUs0YlZVQzRvZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC OTI5Ri8zQkU1NDlDRUQ2NEUxMUVCOTRENEYyN0RDNEY5QUUwMi9pMWZkRnIyWC0x djhJZG5NcWVLNGJWVUM0b2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDL45TVXHtLCZPIAvvrwAVJQhFIeFgunl+4cc1rnJ3vb8xjiBCwr7pz XbzYzMNjSRBw+wIss5uejEypwhV/QzlqY4YdzxBk/7xzL3mb1wA0ERty5r6VOW0w G8lnMH2HqTCfAV9ich98+HbHxuFy18leCeCeMEQ/ua3zL1o4hXaUyqFkQyiERc40 GXNJQoJcIYusC4nNTZ+KF4qhyV2vxoxzXL+Q6xNgC9vdReqU8K6TvDnfNrLPxexx Q1E+y4Ffz+8gWubnwmPusi32cKzvg5qN8rUn3sCCldxv4ZWEh+mAfWsIGaeBf5FJ 9aAjsVdm94eYbkD4MQUlgzOe50PACQSw -----END CERTIFICATE-----Generated at Thu Nov 21 00:21:23 2024 by rpki-client on console-fra.rpki-client.org