$ rpki-client -vvf rpki.apnic.net/member_repository/A91C40D6/CA8E7F7EA54411EA94DA3683C4F9AE02/jnhDSe8t33hXX9VMx47YxFyXbL8.mft File: jnhDSe8t33hXX9VMx47YxFyXbL8.mft (raw, json) Hash identifier: TEuHINI4GDpHAS436DUoNxexqlrbdfTisTCeeBB6fMk= Subject key identifier: 9A:AE:8C:22:B2:33:CC:44:48:86:77:77:91:69:E2:95:AD:1A:28:50 Authority key identifier: 8E:78:43:49:EF:2D:DF:78:57:5F:D5:4C:C7:8E:D8:C4:5C:97:6C:BF Certificate issuer: /CN=A91C40D6/serialNumber=8E784349EF2DDF78575FD54CC78ED8C45C976CBF Certificate serial: 08CE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jnhDSe8t33hXX9VMx47YxFyXbL8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C40D6/CA8E7F7EA54411EA94DA3683C4F9AE02/jnhDSe8t33hXX9VMx47YxFyXbL8.mft Manifest number: 08BB Signing time: Fri 22 Nov 2024 20:15:16 +0000 Manifest this update: Fri 22 Nov 2024 20:15:16 +0000 Manifest next update: Fri 29 Nov 2024 20:15:16 +0000 Files and hashes: 1: jnhDSe8t33hXX9VMx47YxFyXbL8.crl (hash: dA9OLCq1Th4lIfTQtfjtOyCnJTrOeb/oY8p6axljo6s=) 2: A84D830AA54511EAA942C683C4F9AE02.roa (hash: LRUqK0HbwhlophByZnm497LSzITbbBMeAuaK57/ofL0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C40D6/CA8E7F7EA54411EA94DA3683C4F9AE02/jnhDSe8t33hXX9VMx47YxFyXbL8.crl rsync://rpki.apnic.net/member_repository/A91C40D6/CA8E7F7EA54411EA94DA3683C4F9AE02/jnhDSe8t33hXX9VMx47YxFyXbL8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jnhDSe8t33hXX9VMx47YxFyXbL8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 19:56:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2254 (0x8ce) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C40D6/serialNumber=8E784349EF2DDF78575FD54CC78ED8C45C976CBF Validity Not Before: Nov 22 20:15:16 2024 GMT Not After : Nov 29 20:15:16 2024 GMT Subject: CN=6740e654-466c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:f1:4e:21:21:f0:4e:9b:e4:8a:cb:30:06:4b: 92:2a:e4:fc:e5:0a:1a:f6:21:24:93:c4:c6:8a:e2: df:67:db:8f:69:d9:0f:99:75:6d:24:69:b5:7c:84: 03:3e:17:c6:0d:f1:ad:7a:3a:b4:43:b6:db:4c:27: 5f:0f:19:91:96:af:8d:c4:32:e5:f8:eb:d8:6c:cd: d2:88:d7:f2:81:e2:64:cb:6a:59:ae:8d:03:92:0a: 20:cd:98:92:15:65:c7:84:85:d2:41:87:ec:a2:24: 2b:52:ec:77:88:fd:6e:72:17:82:e5:9d:b6:c5:4b: 5b:df:ef:72:31:18:9e:5b:6c:9c:87:d1:00:5d:47: 75:b2:a5:8d:f1:15:db:8e:31:48:f7:15:77:9a:52: 3a:1b:43:d7:56:55:4b:3e:51:df:27:5b:4c:30:70: f8:55:1c:ec:f1:48:2f:a2:98:b0:b5:d0:09:18:17: b9:39:82:44:b5:3b:5a:bf:de:f4:b1:91:6a:80:f1: 6a:15:1a:80:c3:bc:85:f0:50:c3:1e:3e:2d:31:d7: bc:51:76:5b:11:3a:d5:9a:19:f9:3f:70:b2:24:71: 6c:45:10:73:26:72:d1:c9:0b:d5:69:59:7e:9a:2e: 53:fe:f8:96:89:8e:4d:55:84:ee:74:97:a6:d9:a6: 15:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:AE:8C:22:B2:33:CC:44:48:86:77:77:91:69:E2:95:AD:1A:28:50 X509v3 Authority Key Identifier: keyid:8E:78:43:49:EF:2D:DF:78:57:5F:D5:4C:C7:8E:D8:C4:5C:97:6C:BF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C40D6/CA8E7F7EA54411EA94DA3683C4F9AE02/jnhDSe8t33hXX9VMx47YxFyXbL8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jnhDSe8t33hXX9VMx47YxFyXbL8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C40D6/CA8E7F7EA54411EA94DA3683C4F9AE02/jnhDSe8t33hXX9VMx47YxFyXbL8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2f:2a:40:72:ab:7d:55:56:b2:cc:69:fc:29:7b:7b:73:1e:7f: df:6a:02:46:c4:0e:46:3a:a7:5b:19:d6:ca:23:a9:b7:52:f2: 01:f9:3e:99:cd:cd:87:13:bd:20:e5:31:5b:e1:48:39:58:83: d7:1a:73:86:9d:67:f3:b5:07:8d:02:36:6c:5e:a4:39:e6:ae: 9c:cd:e8:03:ed:fb:99:bd:ed:01:65:9d:57:24:de:de:c8:7b: 80:f5:fb:b4:c3:2b:4b:10:42:e8:cf:22:43:12:20:d9:42:85: e6:08:8b:8b:23:7e:4e:b9:3b:02:9f:b6:26:d0:5d:f8:dd:ea: bd:a5:c4:d0:fe:fd:e8:0d:33:0c:77:90:03:7f:be:28:8e:ca: 8d:df:95:3b:05:39:e3:45:92:cb:c0:4f:1f:41:fb:57:3a:76: 1a:81:b4:0d:56:ea:d3:24:55:e8:3c:38:da:67:87:3b:4f:fe: e5:da:33:21:20:8f:0e:9a:de:52:00:6a:12:98:1d:86:42:13: 77:8b:4c:32:20:de:41:01:10:5d:dc:b4:31:e5:d8:20:c5:1b: 6f:2c:54:e9:ef:3a:17:28:ba:e3:26:43:ea:23:f3:31:2a:ae: 74:74:4d:b9:ea:a2:62:f3:88:39:e4:8d:f4:60:2b:3c:a9:8b: 43:6e:22:0d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCM4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzQwRDYxMTAvBgNVBAUTKDhFNzg0MzQ5RUYyRERGNzg1NzVGRDU0Q0M3OEVEOEM0 NUM5NzZDQkYwHhcNMjQxMTIyMjAxNTE2WhcNMjQxMTI5MjAxNTE2WjAYMRYwFAYD VQQDEw02NzQwZTY1NC00NjZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAofFOISHwTpvkisswBkuSKuT85Qoa9iEkk8TGiuLfZ9uPadkPmXVtJGm1fIQD PhfGDfGtejq0Q7bbTCdfDxmRlq+NxDLl+OvYbM3SiNfygeJky2pZro0DkgogzZiS FWXHhIXSQYfsoiQrUux3iP1ucheC5Z22xUtb3+9yMRieW2ych9EAXUd1sqWN8RXb jjFI9xV3mlI6G0PXVlVLPlHfJ1tMMHD4VRzs8UgvopiwtdAJGBe5OYJEtTtav970 sZFqgPFqFRqAw7yF8FDDHj4tMde8UXZbETrVmhn5P3CyJHFsRRBzJnLRyQvVaVl+ mi5T/viWiY5NVYTudJem2aYVgQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJqujCKy M8xESIZ3d5Fp4pWtGihQMB8GA1UdIwQYMBaAFI54Q0nvLd94V1/VTMeO2MRcl2y/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNDBENi9DQThFN0Y3RUE1 NDQxMUVBOTREQTM2ODNDNEY5QUUwMi9qbmhEU2U4dDMzaFhYOVZNeDQ3WXhGeVhi TDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2puaERTZTh0MzNoWFg5Vk14NDdZeEZ5WGJMOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NDBENi9DQThFN0Y3RUE1NDQxMUVBOTREQTM2ODNDNEY5QUUwMi9qbmhEU2U4dDMz aFhYOVZNeDQ3WXhGeVhiTDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAvKkByq31VVrLMafwpe3tzHn/fagJGxA5GOqdbGdbKI6m3UvIB+T6Z zc2HE70g5TFb4Ug5WIPXGnOGnWfztQeNAjZsXqQ55q6czegD7fuZve0BZZ1XJN7e yHuA9fu0wytLEELozyJDEiDZQoXmCIuLI35OuTsCn7Ym0F343eq9pcTQ/v3oDTMM d5ADf74ojsqN35U7BTnjRZLLwE8fQftXOnYagbQNVurTJFXoPDjaZ4c7T/7l2jMh II8Omt5SAGoSmB2GQhN3i0wyIN5BARBd3LQx5dggxRtvLFTp7zoXKLrjJkPqI/Mx Kq50dE256qJi84g55I30YCs8qYtDbiIN -----END CERTIFICATE-----Generated at Fri Nov 22 21:05:32 2024 by rpki-client on console-fra.rpki-client.org