$ rpki-client -vvf rpki.apnic.net/member_repository/A91BF905/1FA7C46C48D311EA8AAE4668C4F9AE02/IaR__8gaEzNcB7kmBaLd_RgHoUw.mft File: IaR__8gaEzNcB7kmBaLd_RgHoUw.mft (raw, json) Hash identifier: LjQ0bf7o1hPEc6/3cA4v5L6Xt/3wdur6R7jIhikUIrM= Subject key identifier: 26:02:1D:3B:6B:93:23:2B:70:57:CE:88:40:1C:D5:C9:AB:AF:EB:8A Authority key identifier: 21:A4:7F:FF:C8:1A:13:33:5C:07:B9:26:05:A2:DD:FD:18:07:A1:4C Certificate issuer: /CN=A91BF905/serialNumber=21A47FFFC81A13335C07B92605A2DDFD1807A14C Certificate serial: 0A97 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IaR__8gaEzNcB7kmBaLd_RgHoUw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BF905/1FA7C46C48D311EA8AAE4668C4F9AE02/IaR__8gaEzNcB7kmBaLd_RgHoUw.mft Manifest number: 0A8B Signing time: Fri 22 Nov 2024 19:22:09 +0000 Manifest this update: Fri 22 Nov 2024 19:22:08 +0000 Manifest next update: Fri 29 Nov 2024 19:22:08 +0000 Files and hashes: 1: IaR__8gaEzNcB7kmBaLd_RgHoUw.crl (hash: 45Ll/P2DQEq/1IC2AnCUvcLvWk2D2+xwAOzMMj25xkc=) 2: CDEFCF14801F11EF99206C47C4F9AE02.roa (hash: RMagxS9fF4MOIlqdvj1T37sYlt01e4qRdvTOPSHcQyU=) 3: A558194E801F11EFB86B2647C4F9AE02.roa (hash: 6ExiSFvRcHAeJ7B+wvsVJT4/UUiJai/2ESDav7XvIM0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BF905/1FA7C46C48D311EA8AAE4668C4F9AE02/IaR__8gaEzNcB7kmBaLd_RgHoUw.crl rsync://rpki.apnic.net/member_repository/A91BF905/1FA7C46C48D311EA8AAE4668C4F9AE02/IaR__8gaEzNcB7kmBaLd_RgHoUw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IaR__8gaEzNcB7kmBaLd_RgHoUw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 19:22:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2711 (0xa97) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BF905/serialNumber=21A47FFFC81A13335C07B92605A2DDFD1807A14C Validity Not Before: Nov 22 19:22:08 2024 GMT Not After : Nov 29 19:22:08 2024 GMT Subject: CN=6740d9e0-966b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:f0:6b:b6:18:91:62:6a:b2:60:06:2a:b9:39: 9a:64:ca:b8:20:b1:55:5d:06:6a:94:11:da:70:69: a9:7c:1a:50:fb:01:ff:9a:d0:73:af:e6:de:61:c6: ab:50:4d:ab:16:40:24:c1:b2:e2:b1:35:70:a6:60: 7b:38:6c:c5:3c:9d:8b:60:ec:db:fa:c7:7d:03:eb: 95:93:5c:a7:c8:44:91:e0:f8:44:ff:52:3f:71:33: 12:c5:8d:d8:fa:a7:ff:cf:46:1c:7d:04:50:3f:48: 3d:b3:da:10:23:28:70:e4:e5:7b:35:c3:46:3a:dd: 48:51:d5:48:58:ce:32:d6:4c:80:c0:6c:2b:57:34: 44:af:a0:a9:34:19:ea:db:f6:b5:f0:f3:9b:6f:29: f3:b9:6a:35:96:99:38:ba:4b:29:11:a6:4d:65:c3: 2b:c1:46:39:25:c7:ed:19:d4:b2:5c:ff:70:94:ad: 1f:4d:f8:64:a3:06:9b:48:ce:d6:4d:12:7c:ff:13: 80:65:be:a8:42:c3:74:e9:8d:b8:e7:de:0f:e8:4a: 79:8d:2b:53:a9:5a:02:c5:1d:0f:5c:e0:db:e4:12: 53:02:4d:0c:6f:17:e8:6c:69:62:f0:d5:dc:87:2c: b2:68:7e:3c:bf:22:fe:bd:f5:1d:05:67:13:97:a4: ea:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:02:1D:3B:6B:93:23:2B:70:57:CE:88:40:1C:D5:C9:AB:AF:EB:8A X509v3 Authority Key Identifier: keyid:21:A4:7F:FF:C8:1A:13:33:5C:07:B9:26:05:A2:DD:FD:18:07:A1:4C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BF905/1FA7C46C48D311EA8AAE4668C4F9AE02/IaR__8gaEzNcB7kmBaLd_RgHoUw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IaR__8gaEzNcB7kmBaLd_RgHoUw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BF905/1FA7C46C48D311EA8AAE4668C4F9AE02/IaR__8gaEzNcB7kmBaLd_RgHoUw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8b:35:fc:7d:9c:50:4d:fa:90:6e:e8:4a:ce:1a:88:32:7f:5d: 1f:0a:18:b0:87:11:f1:fa:12:2a:25:ae:9d:0c:1f:29:21:ed: 7d:76:90:31:89:03:fa:04:99:ae:26:b0:91:cc:6a:95:c4:87: 5d:74:eb:ce:fb:7a:9d:74:4a:99:0a:ce:29:be:da:15:90:d3: fb:ec:c3:b5:84:db:b5:e8:68:88:d0:a7:6a:92:89:26:cf:2e: c4:8a:e4:57:28:86:f1:48:25:36:30:17:02:48:aa:e6:fe:3c: 4f:bd:72:c2:fb:e9:e3:a2:98:97:06:dc:4d:7f:dc:5a:d2:d9: 93:16:85:c1:46:cc:a2:25:00:9a:71:c7:36:38:8c:c4:40:67: 5b:7d:99:7a:b9:b4:0c:18:8d:48:11:08:c9:5a:0c:0c:d8:f2: e1:6f:da:46:27:2b:5a:d6:0f:52:1c:c8:34:fb:30:4c:8d:84: ef:12:ac:43:c5:41:a9:9f:50:42:c4:a0:43:90:89:35:4e:c0: 9a:44:1a:08:e2:e3:b6:6a:7e:28:d0:cf:e9:51:6c:1f:e8:44: 91:ac:8b:9e:9e:2e:0e:e9:73:18:b2:83:8a:9f:ee:dd:6e:d6: 53:99:97:e3:16:c6:fe:02:d8:d3:21:f9:95:2f:6c:d3:66:6c: 93:40:7b:20 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCpcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkY5MDUxMTAvBgNVBAUTKDIxQTQ3RkZGQzgxQTEzMzM1QzA3QjkyNjA1QTJEREZE MTgwN0ExNEMwHhcNMjQxMTIyMTkyMjA4WhcNMjQxMTI5MTkyMjA4WjAYMRYwFAYD VQQDEw02NzQwZDllMC05NjZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvPBrthiRYmqyYAYquTmaZMq4ILFVXQZqlBHacGmpfBpQ+wH/mtBzr+beYcar UE2rFkAkwbLisTVwpmB7OGzFPJ2LYOzb+sd9A+uVk1ynyESR4PhE/1I/cTMSxY3Y +qf/z0YcfQRQP0g9s9oQIyhw5OV7NcNGOt1IUdVIWM4y1kyAwGwrVzREr6CpNBnq 2/a18PObbynzuWo1lpk4ukspEaZNZcMrwUY5JcftGdSyXP9wlK0fTfhkowabSM7W TRJ8/xOAZb6oQsN06Y24594P6Ep5jStTqVoCxR0PXODb5BJTAk0MbxfobGli8NXc hyyyaH48vyL+vfUdBWcTl6TqhQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCYCHTtr kyMrcFfOiEAc1cmrr+uKMB8GA1UdIwQYMBaAFCGkf//IGhMzXAe5JgWi3f0YB6FM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCRjkwNS8xRkE3QzQ2QzQ4 RDMxMUVBOEFBRTQ2NjhDNEY5QUUwMi9JYVJfXzhnYUV6TmNCN2ttQmFMZF9SZ0hv VXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lhUl9fOGdhRXpOY0I3a21CYUxkX1JnSG9Vdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC RjkwNS8xRkE3QzQ2QzQ4RDMxMUVBOEFBRTQ2NjhDNEY5QUUwMi9JYVJfXzhnYUV6 TmNCN2ttQmFMZF9SZ0hvVXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCLNfx9nFBN+pBu6ErOGogyf10fChiwhxHx+hIqJa6dDB8pIe19dpAx iQP6BJmuJrCRzGqVxIdddOvO+3qddEqZCs4pvtoVkNP77MO1hNu16GiI0Kdqkokm zy7EiuRXKIbxSCU2MBcCSKrm/jxPvXLC++njopiXBtxNf9xa0tmTFoXBRsyiJQCa ccc2OIzEQGdbfZl6ubQMGI1IEQjJWgwM2PLhb9pGJyta1g9SHMg0+zBMjYTvEqxD xUGpn1BCxKBDkIk1TsCaRBoI4uO2an4o0M/pUWwf6ESRrIueni4O6XMYsoOKn+7d btZTmZfjFsb+AtjTIfmVL2zTZmyTQHsg -----END CERTIFICATE-----Generated at Fri Nov 22 21:05:32 2024 by rpki-client on console-fra.rpki-client.org