$ rpki-client -vvf rpki.apnic.net/member_repository/A91C23DC/06639F860A9311EA85AD886AC4F9AE02/VfLkh0AFjo_MT5AaSjPh9BdiAPg.mft File: VfLkh0AFjo_MT5AaSjPh9BdiAPg.mft (raw, json) Hash identifier: JPw5xnmRZMViWqo9K6IBYGFjX+6ShMF05MsU7XE6+ow= Subject key identifier: 39:3A:B7:CA:CA:4D:FE:DB:0D:33:68:3A:3A:17:79:EE:79:99:BB:C8 Authority key identifier: 55:F2:E4:87:40:05:8E:8F:CC:4F:90:1A:4A:33:E1:F4:17:62:00:F8 Certificate issuer: /CN=A91C23DC/serialNumber=55F2E48740058E8FCC4F901A4A33E1F4176200F8 Certificate serial: 0BDA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VfLkh0AFjo_MT5AaSjPh9BdiAPg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C23DC/06639F860A9311EA85AD886AC4F9AE02/VfLkh0AFjo_MT5AaSjPh9BdiAPg.mft Manifest number: 0BCC Signing time: Fri 22 Nov 2024 18:34:37 +0000 Manifest this update: Fri 22 Nov 2024 18:34:36 +0000 Manifest next update: Fri 29 Nov 2024 18:34:36 +0000 Files and hashes: 1: VfLkh0AFjo_MT5AaSjPh9BdiAPg.crl (hash: ndG3qWW+KrhmcT6OPHl/pt/S1aiAoCvnrZWlhKcEzUo=) 2: 598BD2E268D111ED99477B87C4F9AE02.roa (hash: CC9X+3CcYjfvDOG+Jd491zfowlADhabzoyJw/gqJGUg=) 3: 5AA3FD0868D111ED99477B87C4F9AE02.roa (hash: erICH0cme0SAzh4DFMOpR5Ja+e0q51Z/KWddXql4mQA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C23DC/06639F860A9311EA85AD886AC4F9AE02/VfLkh0AFjo_MT5AaSjPh9BdiAPg.crl rsync://rpki.apnic.net/member_repository/A91C23DC/06639F860A9311EA85AD886AC4F9AE02/VfLkh0AFjo_MT5AaSjPh9BdiAPg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VfLkh0AFjo_MT5AaSjPh9BdiAPg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 18:34:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3034 (0xbda) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C23DC/serialNumber=55F2E48740058E8FCC4F901A4A33E1F4176200F8 Validity Not Before: Nov 22 18:34:36 2024 GMT Not After : Nov 29 18:34:36 2024 GMT Subject: CN=6740cebc-f174 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:db:86:0e:6a:3b:f7:83:e0:19:1a:26:5f:fd: 84:06:fe:be:80:a0:ba:72:3f:85:2a:1b:b4:f5:be: 1c:8b:26:a0:4a:c5:20:9f:1d:cd:03:f8:6c:7c:05: 83:fb:03:2d:8c:2d:bb:f7:a6:78:32:24:56:5c:fa: 10:ed:37:6d:fa:1e:06:50:21:63:3b:b2:1e:d2:ab: 69:9e:15:66:6f:d9:df:89:9e:ae:72:74:f1:d6:78: 7e:48:e0:97:06:2e:4b:aa:04:b0:a6:ed:58:21:21: 0a:14:69:07:c1:3b:1a:ca:63:28:5f:94:43:f3:81: 6f:4c:7b:70:3e:27:2f:62:9f:a3:0a:8b:96:d9:33: 26:48:65:5a:60:71:b6:cc:c3:b5:57:c6:99:13:ec: 15:82:46:45:c2:8e:b6:14:03:08:de:65:72:da:c2: b5:9b:22:ee:f6:74:c6:9c:b2:66:87:69:d6:92:ff: 71:1f:4e:99:50:0c:ff:b4:10:e0:30:fc:88:99:c1: 2d:88:c0:73:7c:a4:74:c3:9d:85:67:ea:28:77:d4: bf:1a:ba:45:a8:44:dc:d4:be:e2:bf:bb:31:13:2d: ce:cd:d1:85:3a:e0:92:1a:bf:55:d8:ef:fd:a8:cd: d5:a7:7d:26:fb:c7:b5:c4:ed:f8:c4:49:3d:8b:46: 1e:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:3A:B7:CA:CA:4D:FE:DB:0D:33:68:3A:3A:17:79:EE:79:99:BB:C8 X509v3 Authority Key Identifier: keyid:55:F2:E4:87:40:05:8E:8F:CC:4F:90:1A:4A:33:E1:F4:17:62:00:F8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C23DC/06639F860A9311EA85AD886AC4F9AE02/VfLkh0AFjo_MT5AaSjPh9BdiAPg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VfLkh0AFjo_MT5AaSjPh9BdiAPg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C23DC/06639F860A9311EA85AD886AC4F9AE02/VfLkh0AFjo_MT5AaSjPh9BdiAPg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2c:31:52:bb:a2:b3:54:57:cd:be:f9:22:a8:3f:47:df:c5:7e: 85:eb:0f:47:37:b7:6a:15:00:ef:a7:27:b5:3d:f7:96:04:3c: 0c:db:9e:b3:35:da:c8:da:6a:96:37:f6:66:5e:f4:64:29:08: a3:56:87:56:7f:8e:c5:a3:9e:16:b8:d8:f1:d8:43:e4:b4:00: f6:27:0a:ae:ce:65:17:ef:17:a2:8b:46:6e:a2:09:be:80:88: b6:6f:dc:40:52:2d:0d:34:66:7a:ad:d0:fb:84:bb:4a:d2:f7: b7:15:8d:5b:2d:e6:57:f3:cb:3e:8b:73:ce:6e:35:1f:25:d8: e8:4b:73:c9:d7:62:b4:bf:ba:a7:78:99:e3:1b:4c:9a:aa:d8: d4:c1:fb:f8:17:67:1b:c4:e5:5f:8f:90:76:d7:24:b0:b2:f7: f2:9d:e8:26:67:ca:73:dd:ea:aa:7d:76:9b:18:de:37:d8:21: 15:0b:19:d0:cd:04:08:36:3f:4f:42:73:31:49:53:71:8f:61: c9:d4:80:8b:2e:2e:07:ff:f3:ce:be:fb:4b:ec:0e:70:12:77: d7:87:ec:48:a8:09:7b:92:86:c3:3f:40:e0:c4:c5:56:78:84: 93:17:4c:56:10:54:4b:fa:cb:b2:72:1b:8d:34:c1:39:ad:16: 03:45:04:26 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC9owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzIzREMxMTAvBgNVBAUTKDU1RjJFNDg3NDAwNThFOEZDQzRGOTAxQTRBMzNFMUY0 MTc2MjAwRjgwHhcNMjQxMTIyMTgzNDM2WhcNMjQxMTI5MTgzNDM2WjAYMRYwFAYD VQQDEw02NzQwY2ViYy1mMTc0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz9uGDmo794PgGRomX/2EBv6+gKC6cj+FKhu09b4ciyagSsUgnx3NA/hsfAWD +wMtjC2796Z4MiRWXPoQ7Tdt+h4GUCFjO7Ie0qtpnhVmb9nfiZ6ucnTx1nh+SOCX Bi5LqgSwpu1YISEKFGkHwTsaymMoX5RD84FvTHtwPicvYp+jCouW2TMmSGVaYHG2 zMO1V8aZE+wVgkZFwo62FAMI3mVy2sK1myLu9nTGnLJmh2nWkv9xH06ZUAz/tBDg MPyImcEtiMBzfKR0w52FZ+ood9S/GrpFqETc1L7iv7sxEy3OzdGFOuCSGr9V2O/9 qM3Vp30m+8e1xO34xEk9i0YeowIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDk6t8rK Tf7bDTNoOjoXee55mbvIMB8GA1UdIwQYMBaAFFXy5IdABY6PzE+QGkoz4fQXYgD4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMjNEQy8wNjYzOUY4NjBB OTMxMUVBODVBRDg4NkFDNEY5QUUwMi9WZkxraDBBRmpvX01UNUFhU2pQaDlCZGlB UGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1ZmTGtoMEFGam9fTVQ1QWFTalBoOUJkaUFQZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MjNEQy8wNjYzOUY4NjBBOTMxMUVBODVBRDg4NkFDNEY5QUUwMi9WZkxraDBBRmpv X01UNUFhU2pQaDlCZGlBUGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAsMVK7orNUV82++SKoP0ffxX6F6w9HN7dqFQDvpye1PfeWBDwM256z NdrI2mqWN/ZmXvRkKQijVodWf47Fo54WuNjx2EPktAD2JwquzmUX7xeii0Zuogm+ gIi2b9xAUi0NNGZ6rdD7hLtK0ve3FY1bLeZX88s+i3PObjUfJdjoS3PJ12K0v7qn eJnjG0yaqtjUwfv4F2cbxOVfj5B21ySwsvfynegmZ8pz3eqqfXabGN432CEVCxnQ zQQINj9PQnMxSVNxj2HJ1ICLLi4H//POvvtL7A5wEnfXh+xIqAl7kobDP0DgxMVW eISTF0xWEFRL+suychuNNME5rRYDRQQm -----END CERTIFICATE-----Generated at Fri Nov 22 19:45:03 2024 by rpki-client on console-fra.rpki-client.org