$ rpki-client -vvf rpki.apnic.net/member_repository/A91B97DB/4E410ACE0F6F11EAAB0ADB64C4F9AE02/rT2HA4ULEnHo8xrgPjzJrEZg2UI.mft File: rT2HA4ULEnHo8xrgPjzJrEZg2UI.mft (raw, json) Hash identifier: edu4gE1g0NY6FUpmaIQx1fWOzmDk15qhGrQG7SuFu+U= Subject key identifier: 2B:D0:C4:09:90:E3:6A:61:0C:11:08:1A:CC:8A:DD:E6:51:A0:E8:EF Authority key identifier: AD:3D:87:03:85:0B:12:71:E8:F3:1A:E0:3E:3C:C9:AC:46:60:D9:42 Certificate issuer: /CN=A91B97DB/serialNumber=AD3D8703850B1271E8F31AE03E3CC9AC4660D942 Certificate serial: 0BB4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rT2HA4ULEnHo8xrgPjzJrEZg2UI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B97DB/4E410ACE0F6F11EAAB0ADB64C4F9AE02/rT2HA4ULEnHo8xrgPjzJrEZg2UI.mft Manifest number: 0BAC Signing time: Fri 22 Nov 2024 18:40:39 +0000 Manifest this update: Fri 22 Nov 2024 18:40:38 +0000 Manifest next update: Fri 29 Nov 2024 18:40:38 +0000 Files and hashes: 1: rT2HA4ULEnHo8xrgPjzJrEZg2UI.crl (hash: iY80qsqOjMVCrEMlCthTSOfsxoRP/hLnyglkdRpsxaQ=) 2: 5A0FAE220F7011EAB8E21167C4F9AE02.roa (hash: Y/uzlOIUU0V4v9M321Rye0oS4n7e4WmILr/kHV5za9Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B97DB/4E410ACE0F6F11EAAB0ADB64C4F9AE02/rT2HA4ULEnHo8xrgPjzJrEZg2UI.crl rsync://rpki.apnic.net/member_repository/A91B97DB/4E410ACE0F6F11EAAB0ADB64C4F9AE02/rT2HA4ULEnHo8xrgPjzJrEZg2UI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rT2HA4ULEnHo8xrgPjzJrEZg2UI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 18:40:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2996 (0xbb4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B97DB/serialNumber=AD3D8703850B1271E8F31AE03E3CC9AC4660D942 Validity Not Before: Nov 22 18:40:38 2024 GMT Not After : Nov 29 18:40:38 2024 GMT Subject: CN=6740d027-c671 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:28:26:9c:ef:0e:32:7b:71:9c:84:09:1d:44: 2a:90:17:75:18:ed:bf:3a:ca:ef:f9:62:ad:83:5d: 5c:f3:53:1d:e6:97:db:6e:0e:87:db:67:fb:09:c6: 21:01:34:04:18:b2:08:ec:88:e6:19:7d:1b:be:3e: 1a:e3:02:8f:7d:83:13:8f:98:8f:57:ef:17:15:b4: 68:e8:1c:29:22:75:3e:f3:56:90:1a:b7:cf:52:90: 39:f6:5d:72:df:f0:05:ce:6d:a6:75:31:ff:38:7f: 1b:56:7e:ae:f3:78:f6:6f:90:1b:9f:e3:a1:70:af: 07:ee:0d:a7:89:22:e9:1e:a6:02:48:9a:47:68:2e: 03:fe:38:a4:19:dd:47:bb:64:c6:e0:0f:03:0e:8f: 77:66:29:16:f1:2d:cc:7a:aa:e3:af:4f:00:cf:cf: 88:b2:b1:02:4f:e1:af:0a:4e:8c:94:98:16:50:49: e6:25:30:e5:2f:28:6b:42:34:9b:10:cd:ab:67:78: ed:b6:80:a8:6a:7b:45:57:b8:de:5f:cf:de:14:80: 35:e2:48:56:62:d8:f9:8c:dc:ae:5e:e9:55:a2:5f: 8f:66:d2:74:04:63:36:79:74:ce:34:45:1e:82:36: d9:4b:0a:a6:26:94:92:7b:e5:5a:e8:68:e4:52:65: 7a:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:D0:C4:09:90:E3:6A:61:0C:11:08:1A:CC:8A:DD:E6:51:A0:E8:EF X509v3 Authority Key Identifier: keyid:AD:3D:87:03:85:0B:12:71:E8:F3:1A:E0:3E:3C:C9:AC:46:60:D9:42 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B97DB/4E410ACE0F6F11EAAB0ADB64C4F9AE02/rT2HA4ULEnHo8xrgPjzJrEZg2UI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rT2HA4ULEnHo8xrgPjzJrEZg2UI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B97DB/4E410ACE0F6F11EAAB0ADB64C4F9AE02/rT2HA4ULEnHo8xrgPjzJrEZg2UI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 85:5f:b3:6f:ab:cd:bf:cc:1a:29:f5:8c:89:ef:6f:09:ea:b5: 65:44:7f:f4:48:c0:2b:c8:c6:10:ba:0d:72:a9:58:1e:ef:aa: 2f:51:45:d8:7e:66:53:d4:a7:7a:80:ec:22:f8:7d:3a:3d:fd: 01:05:b8:d2:66:0e:89:bd:33:dc:28:af:e6:04:97:e5:79:02: dd:7c:6b:c7:f2:fc:bb:15:2f:1e:d1:23:47:92:40:5d:fa:5e: f9:e4:5f:8a:d2:7a:c0:77:2e:1e:cd:e8:d4:12:1a:7e:15:4b: 24:76:13:76:4e:e2:52:4a:f2:55:55:33:e6:59:2f:dd:f3:cd: b3:22:b8:de:71:a9:ce:ae:59:c2:08:12:e9:9b:4e:90:3d:93: 50:8b:bd:c3:98:e0:a0:19:1c:38:45:72:f9:d8:04:69:4a:ca: 51:d4:42:dc:c2:0d:61:49:08:39:00:e6:3d:a4:fe:6a:c7:ee: 55:aa:a8:46:19:95:9c:65:48:20:83:a9:65:5e:a2:27:73:80: 64:b7:6d:1a:25:21:4b:c8:59:c6:d0:08:1f:24:ac:02:ed:9f: 6f:e7:78:76:ab:55:b7:20:bd:31:dc:ef:f4:a6:61:7d:b6:48: 0f:e7:6d:2a:1c:0d:7f:7e:b6:a4:80:76:a9:2d:5c:61:f4:ee: 18:4c:55:4f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC7QwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qjk3REIxMTAvBgNVBAUTKEFEM0Q4NzAzODUwQjEyNzFFOEYzMUFFMDNFM0NDOUFD NDY2MEQ5NDIwHhcNMjQxMTIyMTg0MDM4WhcNMjQxMTI5MTg0MDM4WjAYMRYwFAYD VQQDEw02NzQwZDAyNy1jNjcxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuCgmnO8OMntxnIQJHUQqkBd1GO2/Osrv+WKtg11c81Md5pfbbg6H22f7CcYh ATQEGLII7IjmGX0bvj4a4wKPfYMTj5iPV+8XFbRo6BwpInU+81aQGrfPUpA59l1y 3/AFzm2mdTH/OH8bVn6u83j2b5Abn+OhcK8H7g2niSLpHqYCSJpHaC4D/jikGd1H u2TG4A8DDo93ZikW8S3Meqrjr08Az8+IsrECT+GvCk6MlJgWUEnmJTDlLyhrQjSb EM2rZ3jttoCoantFV7jeX8/eFIA14khWYtj5jNyuXulVol+PZtJ0BGM2eXTONEUe gjbZSwqmJpSSe+Va6GjkUmV65wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCvQxAmQ 42phDBEIGsyK3eZRoOjvMB8GA1UdIwQYMBaAFK09hwOFCxJx6PMa4D48yaxGYNlC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCOTdEQi80RTQxMEFDRTBG NkYxMUVBQUIwQURCNjRDNEY5QUUwMi9yVDJIQTRVTEVuSG84eHJnUGp6SnJFWmcy VUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JUMkhBNFVMRW5Ibzh4cmdQanpKckVaZzJVSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC OTdEQi80RTQxMEFDRTBGNkYxMUVBQUIwQURCNjRDNEY5QUUwMi9yVDJIQTRVTEVu SG84eHJnUGp6SnJFWmcyVUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCFX7Nvq82/zBop9YyJ728J6rVlRH/0SMAryMYQug1yqVge76ovUUXY fmZT1Kd6gOwi+H06Pf0BBbjSZg6JvTPcKK/mBJfleQLdfGvH8vy7FS8e0SNHkkBd +l755F+K0nrAdy4ezejUEhp+FUskdhN2TuJSSvJVVTPmWS/d882zIrjecanOrlnC CBLpm06QPZNQi73DmOCgGRw4RXL52ARpSspR1ELcwg1hSQg5AOY9pP5qx+5VqqhG GZWcZUggg6llXqInc4Bkt20aJSFLyFnG0AgfJKwC7Z9v53h2q1W3IL0x3O/0pmF9 tkgP520qHA1/frakgHapLVxh9O4YTFVP -----END CERTIFICATE-----Generated at Fri Nov 22 19:45:02 2024 by rpki-client on console-fra.rpki-client.org