$ rpki-client -vvf rpki.apnic.net/member_repository/A91B9790/71805BAC5AE211EFAEB0312EC4F9AE02/iUKJrUDufmJvXNgvzsVAbbkeHnE.mft File: iUKJrUDufmJvXNgvzsVAbbkeHnE.mft (raw, json) Hash identifier: QWrjM4FV1lxhViAcgbVBGGH2/+JUc3RUyYBQ+4fxiVA= Subject key identifier: 53:D5:86:EE:78:15:FC:C7:0A:36:94:5A:2C:F9:AE:A8:A7:93:77:82 Authority key identifier: 89:42:89:AD:40:EE:7E:62:6F:5C:D8:2F:CE:C5:40:6D:B9:1E:1E:71 Certificate issuer: /CN=A91B9790/serialNumber=894289AD40EE7E626F5CD82FCEC5406DB91E1E71 Certificate serial: 3A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iUKJrUDufmJvXNgvzsVAbbkeHnE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B9790/71805BAC5AE211EFAEB0312EC4F9AE02/iUKJrUDufmJvXNgvzsVAbbkeHnE.mft Manifest number: 37 Signing time: Thu 21 Nov 2024 05:37:16 +0000 Manifest this update: Thu 21 Nov 2024 05:37:15 +0000 Manifest next update: Thu 28 Nov 2024 05:37:15 +0000 Files and hashes: 1: iUKJrUDufmJvXNgvzsVAbbkeHnE.crl (hash: Ej3gimHgXIHKF5rKDHTKzM25kh5et/2DO9jvYNBAYp0=) 2: B1CB71925DDF11EF8DBEED1FC4F9AE02.roa (hash: HSMhV9B6fnrXUJjpIZM4gDs/Fg5+cHbZVi57IqRBjEU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B9790/71805BAC5AE211EFAEB0312EC4F9AE02/iUKJrUDufmJvXNgvzsVAbbkeHnE.crl rsync://rpki.apnic.net/member_repository/A91B9790/71805BAC5AE211EFAEB0312EC4F9AE02/iUKJrUDufmJvXNgvzsVAbbkeHnE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iUKJrUDufmJvXNgvzsVAbbkeHnE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 05:18:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58 (0x3a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B9790/serialNumber=894289AD40EE7E626F5CD82FCEC5406DB91E1E71 Validity Not Before: Nov 21 05:37:15 2024 GMT Not After : Nov 28 05:37:15 2024 GMT Subject: CN=673ec70b-34ae Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:a6:e2:a8:30:52:25:57:6b:b6:42:08:b1:29: 37:d7:a8:cd:74:39:a0:9f:ad:d6:6e:6f:9e:31:c8: bb:75:73:59:59:54:1d:08:13:60:17:91:e0:7b:0d: eb:54:7a:38:b1:1a:1c:ab:74:af:22:1c:46:d3:fb: 41:8d:a7:79:6f:51:dc:29:e1:2c:a2:01:0c:8c:0d: c5:2f:c6:18:e4:fb:62:6a:ab:c3:6f:57:1e:68:eb: 51:3f:89:e2:05:d5:53:ec:fd:4e:5e:5d:df:3a:2f: 5e:3c:81:11:f2:01:e6:54:49:0a:c6:81:49:10:06: 53:6b:e3:b2:ad:12:1a:2a:3d:32:e2:65:01:59:79: 23:30:21:f0:e2:c3:f5:42:23:30:9c:85:cf:4c:b3: 47:1a:c2:5d:4b:e0:b0:49:41:64:a6:a4:74:5b:83: 15:05:bc:94:62:3d:ce:89:06:34:4b:1a:fe:fa:18: ec:25:87:00:aa:05:c9:84:10:d4:66:4f:e0:fc:25: a4:16:f1:99:12:28:9c:36:8c:c3:16:51:f3:13:2c: 1b:15:22:d5:1e:93:6f:f7:03:87:34:ce:3f:63:b6: a1:77:3a:f0:ef:2f:c0:27:7a:19:4d:60:45:6b:4f: f2:0d:95:04:f4:ca:5b:f6:b3:58:a7:d0:c8:29:76: 98:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:D5:86:EE:78:15:FC:C7:0A:36:94:5A:2C:F9:AE:A8:A7:93:77:82 X509v3 Authority Key Identifier: keyid:89:42:89:AD:40:EE:7E:62:6F:5C:D8:2F:CE:C5:40:6D:B9:1E:1E:71 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B9790/71805BAC5AE211EFAEB0312EC4F9AE02/iUKJrUDufmJvXNgvzsVAbbkeHnE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iUKJrUDufmJvXNgvzsVAbbkeHnE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B9790/71805BAC5AE211EFAEB0312EC4F9AE02/iUKJrUDufmJvXNgvzsVAbbkeHnE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 15:87:ca:2d:2f:43:70:99:a4:6a:fe:45:94:47:d0:c6:20:60: 7f:05:29:d3:23:72:ed:e3:b5:79:6c:e5:28:86:9b:8d:1d:81: ca:22:3f:cc:e4:6b:7b:b7:76:f9:b4:a3:10:2e:dd:e8:d5:d3: c2:61:85:5f:2b:cb:8c:1f:e9:ca:77:a8:16:90:2e:1c:cd:94: 93:6a:87:b8:d5:89:59:30:5b:9f:0b:b5:00:d4:80:ce:97:5e: de:9a:2c:eb:ba:81:fa:c9:db:73:97:19:55:c8:fd:5b:29:7c: e7:20:a6:74:2e:58:e1:89:e6:6a:17:de:5b:30:f4:a9:fb:04: 20:c0:23:e8:d7:31:5b:2d:bb:f9:2b:20:35:90:d3:56:6f:1e: 8e:ab:85:9d:b9:ca:56:99:f3:9b:e5:5c:9c:1e:c9:5d:23:a9: 88:30:5a:cf:68:5b:99:9a:54:35:83:17:15:1f:bb:4e:4a:66: 85:6b:1f:ef:ae:cc:33:37:34:e2:f7:af:8d:65:eb:df:dc:4c: 87:b1:f0:03:fb:14:e4:52:e1:46:5c:a5:38:20:a9:4b:08:30: 9c:09:6f:4f:07:bf:32:29:96:e1:fb:bd:7a:bb:72:29:7e:a6: 2f:f7:ab:46:45:70:8b:20:f9:10:e6:45:80:24:85:6c:dc:4d: c3:ac:f4:d3 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBOjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC OTc5MDExMC8GA1UEBRMoODk0Mjg5QUQ0MEVFN0U2MjZGNUNEODJGQ0VDNTQwNkRC OTFFMUU3MTAeFw0yNDExMjEwNTM3MTVaFw0yNDExMjgwNTM3MTVaMBgxFjAUBgNV BAMTDTY3M2VjNzBiLTM0YWUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC4puKoMFIlV2u2QgixKTfXqM10OaCfrdZub54xyLt1c1lZVB0IE2AXkeB7DetU ejixGhyrdK8iHEbT+0GNp3lvUdwp4SyiAQyMDcUvxhjk+2Jqq8NvVx5o61E/ieIF 1VPs/U5eXd86L148gRHyAeZUSQrGgUkQBlNr47KtEhoqPTLiZQFZeSMwIfDiw/VC IzCchc9Ms0cawl1L4LBJQWSmpHRbgxUFvJRiPc6JBjRLGv76GOwlhwCqBcmEENRm T+D8JaQW8ZkSKJw2jMMWUfMTLBsVItUek2/3A4c0zj9jtqF3OvDvL8AnehlNYEVr T/INlQT0ylv2s1in0MgpdpgvAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUU9WG7ngV /McKNpRaLPmuqKeTd4IwHwYDVR0jBBgwFoAUiUKJrUDufmJvXNgvzsVAbbkeHnEw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUI5NzkwLzcxODA1QkFDNUFF MjExRUZBRUIwMzEyRUM0RjlBRTAyL2lVS0pyVUR1Zm1KdlhOZ3Z6c1ZBYmJrZUhu RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvaVVLSnJVRHVmbUp2WE5ndnpzVkFiYmtlSG5FLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUI5 NzkwLzcxODA1QkFDNUFFMjExRUZBRUIwMzEyRUM0RjlBRTAyL2lVS0pyVUR1Zm1K dlhOZ3Z6c1ZBYmJrZUhuRS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBABWHyi0vQ3CZpGr+RZRH0MYgYH8FKdMjcu3jtXls5SiGm40dgcoiP8zk a3u3dvm0oxAu3ejV08JhhV8ry4wf6cp3qBaQLhzNlJNqh7jViVkwW58LtQDUgM6X Xt6aLOu6gfrJ23OXGVXI/VspfOcgpnQuWOGJ5moX3lsw9Kn7BCDAI+jXMVstu/kr IDWQ01ZvHo6rhZ25ylaZ85vlXJweyV0jqYgwWs9oW5maVDWDFxUfu05KZoVrH++u zDM3NOL3r41l69/cTIex8AP7FORS4UZcpTggqUsIMJwJb08HvzIpluH7vXq7cil+ pi/3q0ZFcIsg+RDmRYAkhWzcTcOs9NM= -----END CERTIFICATE-----Generated at Thu Nov 21 06:50:49 2024 by rpki-client on console-fra.rpki-client.org