$ rpki-client -vvf rpki.apnic.net/member_repository/A91B9B0D/A28ECBC08AB611EB8237D414C4F9AE02/5NYtMSl_F-ScQvp6e2YjYkrZQXU.mft File: 5NYtMSl_F-ScQvp6e2YjYkrZQXU.mft (raw, json) Hash identifier: iwuENQtt1/Cu0q8nZBLnT7U6jJ37Ztg+GwF7aba7OFM= Subject key identifier: 99:F5:DB:BC:E7:5D:74:DA:D5:14:B0:DF:A3:82:A3:EC:2A:B6:95:6F Authority key identifier: E4:D6:2D:31:29:7F:17:E4:9C:42:FA:7A:7B:66:23:62:4A:D9:41:75 Certificate issuer: /CN=A91B9B0D/serialNumber=E4D62D31297F17E49C42FA7A7B6623624AD94175 Certificate serial: 05F3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5NYtMSl_F-ScQvp6e2YjYkrZQXU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B9B0D/A28ECBC08AB611EB8237D414C4F9AE02/5NYtMSl_F-ScQvp6e2YjYkrZQXU.mft Manifest number: 05EE Signing time: Fri 22 Nov 2024 22:23:54 +0000 Manifest this update: Fri 22 Nov 2024 22:23:53 +0000 Manifest next update: Fri 29 Nov 2024 22:23:53 +0000 Files and hashes: 1: 5NYtMSl_F-ScQvp6e2YjYkrZQXU.crl (hash: 9QLjHz35A1242dBULtql8/dieMpGvc34Mn6xy8ZKVTI=) 2: 3F9CDA68179911EDB9008D18C4F9AE02.roa (hash: uQ87OwRIbPff2rIgxwDqjjJe9H/t71HNB3Wpu5Q8ifI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B9B0D/A28ECBC08AB611EB8237D414C4F9AE02/5NYtMSl_F-ScQvp6e2YjYkrZQXU.crl rsync://rpki.apnic.net/member_repository/A91B9B0D/A28ECBC08AB611EB8237D414C4F9AE02/5NYtMSl_F-ScQvp6e2YjYkrZQXU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5NYtMSl_F-ScQvp6e2YjYkrZQXU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1523 (0x5f3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B9B0D/serialNumber=E4D62D31297F17E49C42FA7A7B6623624AD94175 Validity Not Before: Nov 22 22:23:53 2024 GMT Not After : Nov 29 22:23:53 2024 GMT Subject: CN=67410479-5036 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:f6:03:6f:50:d1:45:19:81:e4:ab:3b:88:b1: d1:9c:43:cb:d1:53:70:9b:b7:fd:b2:13:b7:74:a5: 80:7e:7d:4d:4b:60:42:5d:f5:f7:c7:aa:0f:d9:b2: a9:bc:e4:81:55:78:96:82:ca:e1:52:9b:ac:9a:89: 1c:fc:39:7f:b4:36:2c:0f:b2:98:1f:8f:85:b8:27: d4:d8:f5:c8:75:7a:72:c5:ad:98:4f:0d:e7:cb:e6: a3:57:8b:19:f1:84:96:6b:10:58:ae:f4:f4:85:d5: 3a:ba:ca:82:54:1e:e6:91:bc:5e:39:6f:48:53:f9: df:42:c8:80:a4:e9:50:fb:e7:60:02:d7:97:5d:e9: 64:0c:2a:e5:fa:3a:18:76:55:51:a8:b1:62:86:1d: 34:98:42:9c:78:2c:c4:c0:aa:80:b2:de:0a:a4:c3: 90:52:9c:cf:e4:31:00:6b:52:70:dc:ac:42:9c:fb: 6b:3b:99:65:71:92:5c:f0:29:ca:0a:18:1a:5e:f6: c6:cc:b7:0a:91:60:d1:96:7e:5c:de:31:00:c5:14: 85:b1:6c:2e:c7:6f:24:88:55:c3:86:65:6c:cb:bd: 99:97:0f:33:c8:b8:53:25:b2:72:61:da:a9:af:c7: 6a:4c:ef:7d:83:67:0d:52:2a:28:11:cc:c7:57:50: 50:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:F5:DB:BC:E7:5D:74:DA:D5:14:B0:DF:A3:82:A3:EC:2A:B6:95:6F X509v3 Authority Key Identifier: keyid:E4:D6:2D:31:29:7F:17:E4:9C:42:FA:7A:7B:66:23:62:4A:D9:41:75 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B9B0D/A28ECBC08AB611EB8237D414C4F9AE02/5NYtMSl_F-ScQvp6e2YjYkrZQXU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5NYtMSl_F-ScQvp6e2YjYkrZQXU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B9B0D/A28ECBC08AB611EB8237D414C4F9AE02/5NYtMSl_F-ScQvp6e2YjYkrZQXU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 56:6d:f8:c3:3d:2e:21:c5:eb:ed:c9:8d:e6:10:18:a8:67:83: 99:99:d5:f6:ca:3f:b5:38:9e:32:5b:c0:48:d8:3e:38:9c:5e: 6a:b8:b2:be:d6:47:c6:e1:6d:68:08:14:ed:12:2a:cd:25:06: ac:36:d0:72:68:a4:30:6c:a0:fd:1b:ec:11:15:6b:44:af:71: 42:87:5e:50:78:5f:d1:21:26:04:b4:ab:43:36:71:d5:cf:68: e5:cd:21:ed:05:ae:51:2f:6b:a7:fc:6d:af:71:04:fb:b2:bc: 24:37:31:de:fb:cc:19:da:64:cd:3b:26:7c:04:56:d0:bc:36: 68:1b:5f:40:73:a9:9b:6f:53:6b:0e:8f:8b:a7:1c:51:c2:63: ca:94:af:e0:e4:72:f8:09:8d:2c:45:64:c1:3e:5a:b8:c5:c9: 42:ad:00:0e:f6:e0:e6:1e:42:83:cc:3a:3c:1b:37:ef:12:e8: 7b:5b:1c:b8:3e:b1:b9:c3:92:6c:dc:9a:fe:ad:23:7c:f6:c0: 45:45:8f:d3:32:69:2c:39:97:a8:f8:e5:13:5d:0f:26:69:c5: ac:e2:20:11:c1:48:1d:1b:c0:c3:ad:3b:58:62:d7:66:6b:c5: 43:9a:7d:88:a4:99:bd:44:45:74:b8:7a:ec:32:ad:5f:b2:bf: 72:12:ec:ff -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBfMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjlCMEQxMTAvBgNVBAUTKEU0RDYyRDMxMjk3RjE3RTQ5QzQyRkE3QTdCNjYyMzYy NEFEOTQxNzUwHhcNMjQxMTIyMjIyMzUzWhcNMjQxMTI5MjIyMzUzWjAYMRYwFAYD VQQDEw02NzQxMDQ3OS01MDM2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyPYDb1DRRRmB5Ks7iLHRnEPL0VNwm7f9shO3dKWAfn1NS2BCXfX3x6oP2bKp vOSBVXiWgsrhUpusmokc/Dl/tDYsD7KYH4+FuCfU2PXIdXpyxa2YTw3ny+ajV4sZ 8YSWaxBYrvT0hdU6usqCVB7mkbxeOW9IU/nfQsiApOlQ++dgAteXXelkDCrl+joY dlVRqLFihh00mEKceCzEwKqAst4KpMOQUpzP5DEAa1Jw3KxCnPtrO5llcZJc8CnK ChgaXvbGzLcKkWDRln5c3jEAxRSFsWwux28kiFXDhmVsy72Zlw8zyLhTJbJyYdqp r8dqTO99g2cNUiooEczHV1BQ+QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJn127zn XXTa1RSw36OCo+wqtpVvMB8GA1UdIwQYMBaAFOTWLTEpfxfknEL6entmI2JK2UF1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCOUIwRC9BMjhFQ0JDMDhB QjYxMUVCODIzN0Q0MTRDNEY5QUUwMi81Tll0TVNsX0YtU2NRdnA2ZTJZallrclpR WFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVOWXRNU2xfRi1TY1F2cDZlMllqWWtyWlFYVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC OUIwRC9BMjhFQ0JDMDhBQjYxMUVCODIzN0Q0MTRDNEY5QUUwMi81Tll0TVNsX0Yt U2NRdnA2ZTJZallrclpRWFUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBWbfjDPS4hxevtyY3mEBioZ4OZmdX2yj+1OJ4yW8BI2D44nF5quLK+ 1kfG4W1oCBTtEirNJQasNtByaKQwbKD9G+wRFWtEr3FCh15QeF/RISYEtKtDNnHV z2jlzSHtBa5RL2un/G2vcQT7srwkNzHe+8wZ2mTNOyZ8BFbQvDZoG19Ac6mbb1Nr Do+LpxxRwmPKlK/g5HL4CY0sRWTBPlq4xclCrQAO9uDmHkKDzDo8GzfvEuh7Wxy4 PrG5w5Js3Jr+rSN89sBFRY/TMmksOZeo+OUTXQ8macWs4iARwUgdG8DDrTtYYtdm a8VDmn2IpJm9REV0uHrsMq1fsr9yEuz/ -----END CERTIFICATE-----Generated at Fri Nov 22 23:39:33 2024 by rpki-client on console-fra.rpki-client.org