$ rpki-client -vvf rpki.apnic.net/member_repository/A91C6E49/B33AA7A6538111ED8AA98F77C4F9AE02/B7Y7XcFse0rper0AhqMVbV10Rlk.mft File: B7Y7XcFse0rper0AhqMVbV10Rlk.mft (raw, json) Hash identifier: ieR3PdyqTU+Q/bHI+5RFoN/T8CdsEkZodv9fvOIiJ0I= Subject key identifier: 09:08:D4:FE:D6:C6:55:5A:02:D9:8C:73:B7:1E:14:6B:62:AB:AE:19 Authority key identifier: 07:B6:3B:5D:C1:6C:7B:4A:E9:7A:BD:00:86:A3:15:6D:5D:74:46:59 Certificate issuer: /CN=A91C6E49/serialNumber=07B63B5DC16C7B4AE97ABD0086A3156D5D744659 Certificate serial: 018D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/B7Y7XcFse0rper0AhqMVbV10Rlk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C6E49/B33AA7A6538111ED8AA98F77C4F9AE02/B7Y7XcFse0rper0AhqMVbV10Rlk.mft Manifest number: 0189 Signing time: Sat 23 Nov 2024 01:58:10 +0000 Manifest this update: Sat 23 Nov 2024 01:58:10 +0000 Manifest next update: Sat 30 Nov 2024 01:58:10 +0000 Files and hashes: 1: B7Y7XcFse0rper0AhqMVbV10Rlk.crl (hash: 5ekuIRx77R5t8iaHM+UrWn73t1a1hFothiin2ijz1Pc=) 2: 98FD8A0E538411ED8D781C7CC4F9AE02.roa (hash: lJnZtZDQNzdO0qp1p8vNJySg5lDyaZrljj6ja2HApOA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C6E49/B33AA7A6538111ED8AA98F77C4F9AE02/B7Y7XcFse0rper0AhqMVbV10Rlk.crl rsync://rpki.apnic.net/member_repository/A91C6E49/B33AA7A6538111ED8AA98F77C4F9AE02/B7Y7XcFse0rper0AhqMVbV10Rlk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/B7Y7XcFse0rper0AhqMVbV10Rlk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 01:58:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 397 (0x18d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C6E49/serialNumber=07B63B5DC16C7B4AE97ABD0086A3156D5D744659 Validity Not Before: Nov 23 01:58:10 2024 GMT Not After : Nov 30 01:58:10 2024 GMT Subject: CN=674136b2-db8e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:55:05:85:a3:75:db:63:28:2f:a6:6b:f2:87: c3:24:e0:09:19:21:f5:5a:a2:3d:a5:e7:b4:b7:15: a5:86:dc:6d:02:3b:c7:b3:a0:d3:d3:c1:da:d5:a1: 89:77:99:01:09:a3:bf:31:7e:7c:ae:7d:eb:00:c3: 6a:cc:86:5b:33:74:78:14:61:1f:c7:04:69:43:06: 85:fb:c2:09:c8:f1:13:dd:88:48:a6:5f:b4:c3:06: ad:0e:5e:fb:6c:bd:99:2f:8f:47:e0:2d:4b:5d:df: 94:1d:cd:d6:52:ab:d9:cc:c1:29:e3:12:c2:66:e7: f8:a8:a3:da:a7:f0:0f:e5:d4:17:f4:f0:1b:ba:e0: 4c:d5:46:11:73:d8:20:ff:73:d3:f9:a2:f5:aa:62: 54:f1:5f:23:cc:91:4b:ab:8b:70:32:80:6a:26:84: f6:47:53:6f:e7:1c:6f:d3:dd:70:16:cb:1e:1f:75: 03:73:63:5c:f2:e3:f8:44:ba:82:e5:1a:80:dc:3a: 49:39:cd:13:a5:b1:6b:7a:fc:d8:e6:13:58:17:34: 2a:bd:06:f9:bf:57:bc:0b:f7:60:8c:19:48:00:8f: d9:66:f8:99:ce:7e:3c:7d:c3:5a:44:74:92:e0:a9: f1:7c:ee:71:06:54:c9:17:21:e7:96:9c:ab:a6:df: 50:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:08:D4:FE:D6:C6:55:5A:02:D9:8C:73:B7:1E:14:6B:62:AB:AE:19 X509v3 Authority Key Identifier: keyid:07:B6:3B:5D:C1:6C:7B:4A:E9:7A:BD:00:86:A3:15:6D:5D:74:46:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C6E49/B33AA7A6538111ED8AA98F77C4F9AE02/B7Y7XcFse0rper0AhqMVbV10Rlk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/B7Y7XcFse0rper0AhqMVbV10Rlk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C6E49/B33AA7A6538111ED8AA98F77C4F9AE02/B7Y7XcFse0rper0AhqMVbV10Rlk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b2:ed:d9:44:76:bd:72:64:e5:8c:fb:43:4f:25:56:a0:e4:ac: ea:bb:3d:1d:35:d8:2a:98:a3:a9:ac:c4:f7:fb:af:86:ff:26: 72:9a:bd:6a:f7:ae:ac:17:50:4a:cc:03:03:87:9a:f3:aa:d6: 1f:bc:45:57:4d:b1:b6:6d:9c:90:1a:bc:1d:ed:e7:62:4f:99: 87:73:88:a9:83:92:9c:91:7a:46:20:47:60:9b:12:0d:b0:85: f1:8e:1d:85:88:57:8c:37:fb:a2:6e:65:e6:cf:f6:af:95:b0: f4:2b:a1:c8:01:35:2f:38:90:9b:69:1c:42:0f:11:fc:af:9d: d5:3e:10:f3:dd:ee:3d:c0:81:00:98:89:62:e6:7b:07:79:60: 93:f2:25:99:04:3a:e7:67:60:ea:0b:df:63:4e:a4:8e:71:b8: c9:28:f9:e3:82:4c:18:33:84:62:0b:f6:01:91:78:11:fb:f6: 1c:1c:05:b9:1a:1c:44:7c:a2:db:fc:e6:68:19:51:f6:13:25: 75:3f:ee:e2:2a:2f:55:7d:23:68:ff:49:54:83:3a:44:e5:58: ff:1a:35:db:7e:9c:b9:c4:9d:41:d3:dc:f5:74:9f:04:fb:bd: ed:5d:17:b2:bf:9d:6f:9c:95:dd:4e:7a:a2:6c:12:d4:a3:35: 3a:2e:b4:b5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAY0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzZFNDkxMTAvBgNVBAUTKDA3QjYzQjVEQzE2QzdCNEFFOTdBQkQwMDg2QTMxNTZE NUQ3NDQ2NTkwHhcNMjQxMTIzMDE1ODEwWhcNMjQxMTMwMDE1ODEwWjAYMRYwFAYD VQQDEw02NzQxMzZiMi1kYjhlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsVUFhaN122MoL6Zr8ofDJOAJGSH1WqI9pee0txWlhtxtAjvHs6DT08Ha1aGJ d5kBCaO/MX58rn3rAMNqzIZbM3R4FGEfxwRpQwaF+8IJyPET3YhIpl+0wwatDl77 bL2ZL49H4C1LXd+UHc3WUqvZzMEp4xLCZuf4qKPap/AP5dQX9PAbuuBM1UYRc9gg /3PT+aL1qmJU8V8jzJFLq4twMoBqJoT2R1Nv5xxv091wFsseH3UDc2Nc8uP4RLqC 5RqA3DpJOc0TpbFrevzY5hNYFzQqvQb5v1e8C/dgjBlIAI/ZZviZzn48fcNaRHSS 4KnxfO5xBlTJFyHnlpyrpt9QQQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAkI1P7W xlVaAtmMc7ceFGtiq64ZMB8GA1UdIwQYMBaAFAe2O13BbHtK6Xq9AIajFW1ddEZZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNkU0OS9CMzNBQTdBNjUz ODExMUVEOEFBOThGNzdDNEY5QUUwMi9CN1k3WGNGc2UwcnBlcjBBaHFNVmJWMTBS bGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0I3WTdYY0ZzZTBycGVyMEFocU1WYlYxMFJsay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NkU0OS9CMzNBQTdBNjUzODExMUVEOEFBOThGNzdDNEY5QUUwMi9CN1k3WGNGc2Uw cnBlcjBBaHFNVmJWMTBSbGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCy7dlEdr1yZOWM+0NPJVag5Kzquz0dNdgqmKOprMT3+6+G/yZymr1q 966sF1BKzAMDh5rzqtYfvEVXTbG2bZyQGrwd7ediT5mHc4ipg5KckXpGIEdgmxIN sIXxjh2FiFeMN/uibmXmz/avlbD0K6HIATUvOJCbaRxCDxH8r53VPhDz3e49wIEA mIli5nsHeWCT8iWZBDrnZ2DqC99jTqSOcbjJKPnjgkwYM4RiC/YBkXgR+/YcHAW5 GhxEfKLb/OZoGVH2EyV1P+7iKi9VfSNo/0lUgzpE5Vj/GjXbfpy5xJ1B09z1dJ8E +73tXReyv51vnJXdTnqibBLUozU6LrS1 -----END CERTIFICATE-----Generated at Sat Nov 23 05:02:57 2024 by rpki-client on console-fra.rpki-client.org