$ rpki-client -vvf rpki.apnic.net/member_repository/A91C6A39/730F00B2B1C411E9BECB1825C4F9AE02/57QbPSVuxr0M5xIbNw3kdBuDXmE.mft File: 57QbPSVuxr0M5xIbNw3kdBuDXmE.mft (raw, json) Hash identifier: kS59sUh1SpURB/bSY3AUIh6heCoqdL2RmofOch0M0tA= Subject key identifier: EA:0E:27:C6:C4:3E:28:B5:AF:7F:9C:ED:45:02:1D:EF:98:66:2F:0D Authority key identifier: E7:B4:1B:3D:25:6E:C6:BD:0C:E7:12:1B:37:0D:E4:74:1B:83:5E:61 Certificate issuer: /CN=A91C6A39/serialNumber=E7B41B3D256EC6BD0CE7121B370DE4741B835E61 Certificate serial: 0D9B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/57QbPSVuxr0M5xIbNw3kdBuDXmE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C6A39/730F00B2B1C411E9BECB1825C4F9AE02/57QbPSVuxr0M5xIbNw3kdBuDXmE.mft Manifest number: 0D8E Signing time: Fri 22 Nov 2024 17:53:37 +0000 Manifest this update: Fri 22 Nov 2024 17:53:36 +0000 Manifest next update: Fri 29 Nov 2024 17:53:36 +0000 Files and hashes: 1: 57QbPSVuxr0M5xIbNw3kdBuDXmE.crl (hash: rL6OaJnGtlReuXAyxZ+hl1knDU6+AysHTl9lFMIVZd4=) 2: 032B593EB1C511E9A4B3CE25C4F9AE02.roa (hash: TXYafClgQVQeXJUBvNnLknPV2XqYxQCmJVpXmho0QT0=) 3: 0F56E156828C11EDA6BCA176C4F9AE02.roa (hash: mITwbrvKWowclf5I2rXkkctzGiZWQzeZoNrUMuqiu/E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C6A39/730F00B2B1C411E9BECB1825C4F9AE02/57QbPSVuxr0M5xIbNw3kdBuDXmE.crl rsync://rpki.apnic.net/member_repository/A91C6A39/730F00B2B1C411E9BECB1825C4F9AE02/57QbPSVuxr0M5xIbNw3kdBuDXmE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/57QbPSVuxr0M5xIbNw3kdBuDXmE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 17:53:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3483 (0xd9b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C6A39/serialNumber=E7B41B3D256EC6BD0CE7121B370DE4741B835E61 Validity Not Before: Nov 22 17:53:36 2024 GMT Not After : Nov 29 17:53:36 2024 GMT Subject: CN=6740c520-b516 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:a6:ea:c9:f8:96:cc:61:00:ac:92:96:2c:a8: e3:80:c6:7f:b6:94:f7:4c:25:7c:d7:29:36:aa:6b: ac:88:4a:a9:01:dd:cf:73:17:95:f5:15:82:f8:a9: 3c:b7:65:79:f5:43:6e:28:77:ee:6a:b6:68:63:93: da:4b:44:f8:6c:e0:75:f9:df:b7:e9:4b:80:a6:52: 3c:22:bb:86:ad:88:ed:68:8b:0d:d9:d8:22:bd:1e: 24:71:be:4a:3b:3b:14:94:0e:4d:f5:cd:12:bd:44: ba:6f:07:b5:64:8d:ca:25:19:48:4c:ae:59:16:22: e4:75:28:66:ed:3f:b3:1d:e6:1a:85:e5:0b:00:17: 6f:cd:7b:35:b7:a1:a4:78:bd:36:43:c8:48:a4:f2: ea:3c:57:b2:ab:c3:59:10:57:24:4f:82:70:29:4e: f3:fa:a9:d8:dd:f6:00:a2:5e:b5:f7:b5:5e:df:d1: 52:d4:8c:62:48:9a:51:c0:fd:66:ea:cb:87:e4:01: 10:de:3c:a2:d4:41:e0:72:a4:a4:b8:3f:87:df:d5: 3f:50:f9:1f:dc:39:0f:22:43:85:f6:2d:80:c7:b7: 04:07:e5:1f:c6:00:fc:4d:2e:a0:9c:9a:de:5b:b9: fb:af:01:1f:0b:be:89:0a:b7:0d:3a:6f:46:91:c1: 95:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:0E:27:C6:C4:3E:28:B5:AF:7F:9C:ED:45:02:1D:EF:98:66:2F:0D X509v3 Authority Key Identifier: keyid:E7:B4:1B:3D:25:6E:C6:BD:0C:E7:12:1B:37:0D:E4:74:1B:83:5E:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C6A39/730F00B2B1C411E9BECB1825C4F9AE02/57QbPSVuxr0M5xIbNw3kdBuDXmE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/57QbPSVuxr0M5xIbNw3kdBuDXmE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C6A39/730F00B2B1C411E9BECB1825C4F9AE02/57QbPSVuxr0M5xIbNw3kdBuDXmE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 96:88:e7:5b:e4:c2:02:fe:70:17:3c:94:14:99:cf:36:d1:c6: 96:a1:69:8c:59:80:1b:41:a1:cf:0e:72:2d:3f:7e:92:3e:bb: 1e:1b:b3:b4:86:b1:90:21:7b:28:e6:18:46:21:07:c1:4a:ff: e6:c2:be:bc:21:c8:a5:53:30:27:44:42:cc:78:e0:42:d8:2f: e2:c4:3d:34:44:fd:ce:5c:68:12:2f:82:2b:50:b4:36:ae:43: ff:e1:54:42:ec:3f:67:0a:cb:09:3e:66:cc:d0:fa:9a:39:c7: 8c:37:b9:79:60:96:5f:c3:ff:dd:e9:da:84:1a:65:8d:39:fa: ad:fe:0f:e5:6e:f5:55:00:e5:6e:d9:f5:4d:b9:10:87:42:e8: f4:17:24:55:f2:76:98:77:59:83:2f:10:fd:d3:d8:d3:98:96: 92:d0:f0:cf:2d:82:f4:96:83:70:00:6c:2c:12:d8:7c:11:aa: d8:f4:0b:21:45:55:f6:57:b6:ff:89:4d:a0:93:5f:28:05:11: 99:c1:e9:0e:f1:83:7a:be:09:51:d3:6e:2a:db:0f:61:30:79: b2:b6:a7:7a:c3:48:72:89:a8:98:b7:6e:89:9f:a4:81:9f:bc: 7a:06:23:d4:dd:87:74:62:b4:00:20:51:d7:0f:eb:52:c8:98: 1c:15:b2:b0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDZswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzZBMzkxMTAvBgNVBAUTKEU3QjQxQjNEMjU2RUM2QkQwQ0U3MTIxQjM3MERFNDc0 MUI4MzVFNjEwHhcNMjQxMTIyMTc1MzM2WhcNMjQxMTI5MTc1MzM2WjAYMRYwFAYD VQQDEw02NzQwYzUyMC1iNTE2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx6bqyfiWzGEArJKWLKjjgMZ/tpT3TCV81yk2qmusiEqpAd3PcxeV9RWC+Kk8 t2V59UNuKHfuarZoY5PaS0T4bOB1+d+36UuAplI8IruGrYjtaIsN2dgivR4kcb5K OzsUlA5N9c0SvUS6bwe1ZI3KJRlITK5ZFiLkdShm7T+zHeYaheULABdvzXs1t6Gk eL02Q8hIpPLqPFeyq8NZEFckT4JwKU7z+qnY3fYAol6197Ve39FS1IxiSJpRwP1m 6suH5AEQ3jyi1EHgcqSkuD+H39U/UPkf3DkPIkOF9i2Ax7cEB+UfxgD8TS6gnJre W7n7rwEfC76JCrcNOm9GkcGVXQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOoOJ8bE Pii1r3+c7UUCHe+YZi8NMB8GA1UdIwQYMBaAFOe0Gz0lbsa9DOcSGzcN5HQbg15h MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNkEzOS83MzBGMDBCMkIx QzQxMUU5QkVDQjE4MjVDNEY5QUUwMi81N1FiUFNWdXhyME01eEliTncza2RCdURY bUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzU3UWJQU1Z1eHIwTTV4SWJOdzNrZEJ1RFhtRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NkEzOS83MzBGMDBCMkIxQzQxMUU5QkVDQjE4MjVDNEY5QUUwMi81N1FiUFNWdXhy ME01eEliTncza2RCdURYbUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCWiOdb5MIC/nAXPJQUmc820caWoWmMWYAbQaHPDnItP36SPrseG7O0 hrGQIXso5hhGIQfBSv/mwr68IcilUzAnRELMeOBC2C/ixD00RP3OXGgSL4IrULQ2 rkP/4VRC7D9nCssJPmbM0PqaOceMN7l5YJZfw//d6dqEGmWNOfqt/g/lbvVVAOVu 2fVNuRCHQuj0FyRV8naYd1mDLxD909jTmJaS0PDPLYL0loNwAGwsEth8EarY9Ash RVX2V7b/iU2gk18oBRGZwekO8YN6vglR024q2w9hMHmytqd6w0hyiaiYt26Jn6SB n7x6BiPU3Yd0YrQAIFHXD+tSyJgcFbKw -----END CERTIFICATE-----Generated at Fri Nov 22 19:45:03 2024 by rpki-client on console-fra.rpki-client.org