$ rpki-client -vvf rpki.apnic.net/member_repository/A91C2B93/3AC874EE014311EF825A6465C4F9AE02/2dZffzYJDEAbzyDUvIDEPw3Fkz0.mft File: 2dZffzYJDEAbzyDUvIDEPw3Fkz0.mft (raw, json) Hash identifier: kyjhDuBqbvU7iZIn8JcTO1T9jqcoMqJxMLfCoBXyDmg= Subject key identifier: CE:40:85:C1:32:A9:DE:5D:05:54:48:68:50:29:8E:EB:2B:EB:6A:AE Authority key identifier: D9:D6:5F:7F:36:09:0C:40:1B:CF:20:D4:BC:80:C4:3F:0D:C5:93:3D Certificate issuer: /CN=A91C2B93/serialNumber=D9D65F7F36090C401BCF20D4BC80C43F0DC5933D Certificate serial: 71 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2dZffzYJDEAbzyDUvIDEPw3Fkz0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C2B93/3AC874EE014311EF825A6465C4F9AE02/2dZffzYJDEAbzyDUvIDEPw3Fkz0.mft Manifest number: 6E Signing time: Thu 21 Nov 2024 04:58:42 +0000 Manifest this update: Thu 21 Nov 2024 04:58:41 +0000 Manifest next update: Thu 28 Nov 2024 04:58:41 +0000 Files and hashes: 1: 2dZffzYJDEAbzyDUvIDEPw3Fkz0.crl (hash: E+cWi9rcmjlT3wYRZd3al4PrE4MCzukAsZ1wHf2xFAQ=) 2: B00A68E6014A11EFA8F03B5BC4F9AE02.roa (hash: dCFmmnGaeXc/Xyg5+AqlJy4nQ5RSSq2JLasc/NAHwbg=) 3: E2037F8C019911EFAFFEEC5DC4F9AE02.roa (hash: Om1Rc8FPcByfXN7P7h9FuPt4QrBbGaM+Ndfd120fzOc=) 4: B0BE3042014A11EFA8F03B5BC4F9AE02.roa (hash: KPY2wegfaa3tnC/Njnc64HaModZkMYm0j/OEMDfIXmk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C2B93/3AC874EE014311EF825A6465C4F9AE02/2dZffzYJDEAbzyDUvIDEPw3Fkz0.crl rsync://rpki.apnic.net/member_repository/A91C2B93/3AC874EE014311EF825A6465C4F9AE02/2dZffzYJDEAbzyDUvIDEPw3Fkz0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2dZffzYJDEAbzyDUvIDEPw3Fkz0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 04:58:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 113 (0x71) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C2B93/serialNumber=D9D65F7F36090C401BCF20D4BC80C43F0DC5933D Validity Not Before: Nov 21 04:58:41 2024 GMT Not After : Nov 28 04:58:41 2024 GMT Subject: CN=673ebe02-e515 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:f4:d2:cb:42:9a:a5:06:0a:87:cd:a6:50:8a: 05:27:59:2f:c4:af:fa:cd:c6:3a:81:4e:12:3d:df: b2:80:15:dc:e5:6a:73:1e:a5:be:11:65:ab:59:b3: 5e:9b:f5:60:46:9f:5c:94:ac:5c:83:5f:18:e7:13: 89:08:52:9a:d0:0d:65:78:4f:71:70:f1:4a:41:59: d6:b0:a8:c0:4b:76:b1:f4:9a:76:1a:b4:ae:76:06: ce:10:7a:08:cf:0d:41:e4:ef:96:ce:43:94:c8:72: 41:db:cc:44:66:f6:4c:70:cb:43:f5:e7:00:3d:c4: e8:13:69:d2:46:c7:71:4a:bf:87:de:1e:e9:53:ee: e9:57:0f:04:3a:51:98:2e:af:f9:f3:e8:a7:0f:97: 55:22:e4:23:3f:f0:db:ac:df:17:cb:31:58:9f:8a: d3:c0:4b:f7:db:95:db:c4:d2:af:f0:f2:46:fd:68: 39:08:46:1b:1c:97:ac:2d:0b:9e:82:c1:ea:e0:a7: 8f:fc:91:05:0a:66:0f:28:b6:1f:2a:f6:b9:1f:1b: eb:05:d4:0b:50:5f:e3:ae:87:32:8f:90:9c:f5:63: 1d:e3:b6:83:ed:45:62:b9:b3:45:c4:3f:c5:1b:85: eb:71:1b:6a:65:d0:c8:5c:76:19:69:7e:08:5f:60: c9:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:40:85:C1:32:A9:DE:5D:05:54:48:68:50:29:8E:EB:2B:EB:6A:AE X509v3 Authority Key Identifier: keyid:D9:D6:5F:7F:36:09:0C:40:1B:CF:20:D4:BC:80:C4:3F:0D:C5:93:3D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C2B93/3AC874EE014311EF825A6465C4F9AE02/2dZffzYJDEAbzyDUvIDEPw3Fkz0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2dZffzYJDEAbzyDUvIDEPw3Fkz0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C2B93/3AC874EE014311EF825A6465C4F9AE02/2dZffzYJDEAbzyDUvIDEPw3Fkz0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 12:8b:d6:05:f6:f3:31:b2:6e:6d:f1:e4:03:ba:a9:63:29:99: 1a:c0:9e:73:75:f6:96:a9:1d:a7:1d:b6:95:1a:00:16:53:8a: 91:1c:ff:e2:27:3e:16:f9:1a:c9:bc:5e:a3:80:58:c3:c6:67: 97:0e:05:31:89:50:6c:0f:0b:9a:86:eb:0e:20:8e:a9:07:12: f1:b3:80:bc:f7:d6:98:7f:25:80:13:12:97:4f:a9:b9:cf:53: dc:b9:e8:ae:73:6f:b1:ae:cb:2a:eb:b9:c0:d1:21:d9:d8:cf: 3d:d4:a0:16:8e:6d:6a:7d:6b:fd:36:d7:94:ca:6b:25:2d:bd: ad:8b:12:07:d3:62:5c:b4:ec:80:90:ba:1d:5b:44:0f:55:bf: 02:59:a0:6f:a5:0c:0e:36:d4:ce:da:d1:73:3d:ac:fe:18:60: 84:a7:e6:00:9f:d3:9f:63:2e:57:ad:1e:98:3a:93:7f:81:20: 08:7f:fe:67:97:52:20:16:e4:da:4f:f1:1c:d8:de:a8:43:dc: 80:82:7b:34:47:5c:7b:05:e6:4b:fe:fa:30:93:c1:0b:04:30: 1f:93:b3:9d:03:60:eb:2a:68:cb:c9:08:38:e8:84:25:be:44: 49:d4:4b:b5:d1:ab:cf:d3:af:ae:bc:72:91:b1:40:02:3b:e7: 2e:5c:b8:ce -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBcTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD MkI5MzExMC8GA1UEBRMoRDlENjVGN0YzNjA5MEM0MDFCQ0YyMEQ0QkM4MEM0M0Yw REM1OTMzRDAeFw0yNDExMjEwNDU4NDFaFw0yNDExMjgwNDU4NDFaMBgxFjAUBgNV BAMTDTY3M2ViZTAyLWU1MTUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCn9NLLQpqlBgqHzaZQigUnWS/Er/rNxjqBThI937KAFdzlanMepb4RZatZs16b 9WBGn1yUrFyDXxjnE4kIUprQDWV4T3Fw8UpBWdawqMBLdrH0mnYatK52Bs4QegjP DUHk75bOQ5TIckHbzERm9kxwy0P15wA9xOgTadJGx3FKv4feHulT7ulXDwQ6UZgu r/nz6KcPl1Ui5CM/8Nus3xfLMVifitPAS/fbldvE0q/w8kb9aDkIRhscl6wtC56C wergp4/8kQUKZg8oth8q9rkfG+sF1AtQX+OuhzKPkJz1Yx3jtoPtRWK5s0XEP8Ub hetxG2pl0MhcdhlpfghfYMnPAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUzkCFwTKp 3l0FVEhoUCmO6yvraq4wHwYDVR0jBBgwFoAU2dZffzYJDEAbzyDUvIDEPw3Fkz0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUMyQjkzLzNBQzg3NEVFMDE0 MzExRUY4MjVBNjQ2NUM0RjlBRTAyLzJkWmZmellKREVBYnp5RFV2SURFUHczRmt6 MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvMmRaZmZ6WUpERUFienlEVXZJREVQdzNGa3owLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUMy QjkzLzNBQzg3NEVFMDE0MzExRUY4MjVBNjQ2NUM0RjlBRTAyLzJkWmZmellKREVB Ynp5RFV2SURFUHczRmt6MC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBABKL1gX28zGybm3x5AO6qWMpmRrAnnN19papHacdtpUaABZTipEc/+In Phb5Gsm8XqOAWMPGZ5cOBTGJUGwPC5qG6w4gjqkHEvGzgLz31ph/JYATEpdPqbnP U9y56K5zb7GuyyrrucDRIdnYzz3UoBaObWp9a/0215TKayUtva2LEgfTYly07ICQ uh1bRA9VvwJZoG+lDA421M7a0XM9rP4YYISn5gCf059jLletHpg6k3+BIAh//meX UiAW5NpP8RzY3qhD3ICCezRHXHsF5kv++jCTwQsEMB+Ts50DYOsqaMvJCDjohCW+ REnUS7XRq8/Tr668cpGxQAI75y5cuM4= -----END CERTIFICATE-----Generated at Thu Nov 21 06:50:49 2024 by rpki-client on console-fra.rpki-client.org