$ rpki-client -vvf rpki.apnic.net/member_repository/A91C74B5/9804356E34AA11EEA06AE133C4F9AE02/4OynvFsloMo3TZqDzEz5DdbPIgk.mft File: 4OynvFsloMo3TZqDzEz5DdbPIgk.mft (raw, json) Hash identifier: IXq2SAeuXVzNicd6Lh5Mq3B7zRDLerszjVRnLn3mm+k= Subject key identifier: FA:C4:1D:75:FD:5B:47:3B:CF:18:BD:CF:2B:B7:12:DA:4E:4C:4E:9A Authority key identifier: E0:EC:A7:BC:5B:25:A0:CA:37:4D:9A:83:CC:4C:F9:0D:D6:CF:22:09 Certificate issuer: /CN=A91C74B5/serialNumber=E0ECA7BC5B25A0CA374D9A83CC4CF90DD6CF2209 Certificate serial: 0100 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/4OynvFsloMo3TZqDzEz5DdbPIgk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C74B5/9804356E34AA11EEA06AE133C4F9AE02/4OynvFsloMo3TZqDzEz5DdbPIgk.mft Manifest number: F6 Signing time: Thu 21 Nov 2024 03:26:04 +0000 Manifest this update: Thu 21 Nov 2024 03:26:04 +0000 Manifest next update: Thu 28 Nov 2024 03:26:04 +0000 Files and hashes: 1: 4OynvFsloMo3TZqDzEz5DdbPIgk.crl (hash: ZQxgH0b0kphMMrDycFKEIMrmpKVnzWyGrV2DLIEFlOU=) 2: FBCA5E628A4E11EE8EFFA44BC4F9AE02.roa (hash: 8ZQF99ttZOTUWn8RGxYCMJjT/UlHEgzr991KGflkzBs=) 3: 23E0203034AF11EE90E6263DC4F9AE02.roa (hash: 99Zxb7vaD5skm/Wji+NgKYTp+kFQviV/tRwO1/z8ZWo=) 4: FE53F0DE34AA11EE85FF0735C4F9AE02.roa (hash: 4sja2KDglOPHlvxXAIDl6uJIrNWYcv3i/9rsdXyO1/U=) 5: 2343647034AF11EE90E6263DC4F9AE02.roa (hash: z8PyZSKkqE0OPDhgFdw2+5u40wblB/EVRusySHA4vow=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C74B5/9804356E34AA11EEA06AE133C4F9AE02/4OynvFsloMo3TZqDzEz5DdbPIgk.crl rsync://rpki.apnic.net/member_repository/A91C74B5/9804356E34AA11EEA06AE133C4F9AE02/4OynvFsloMo3TZqDzEz5DdbPIgk.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/4OynvFsloMo3TZqDzEz5DdbPIgk.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 02:50:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 256 (0x100) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C74B5/serialNumber=E0ECA7BC5B25A0CA374D9A83CC4CF90DD6CF2209 Validity Not Before: Nov 21 03:26:04 2024 GMT Not After : Nov 28 03:26:04 2024 GMT Subject: CN=673ea84c-39f1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:fe:6f:c5:1a:30:71:a1:52:99:a0:b5:a5:f2: 73:aa:da:a9:a4:f8:f1:ea:45:26:41:62:6b:0b:36: 28:d3:ad:94:b5:1e:03:2f:a8:51:37:f1:08:11:52: ed:4b:c1:c2:a5:cf:9f:16:48:ee:ba:76:34:2e:8e: 4f:e1:34:5c:9e:ba:10:8a:2a:4e:a2:1f:40:fd:70: ca:c6:e5:52:29:57:e7:6c:6a:c5:1b:d7:8d:96:93: f7:78:f4:04:63:e2:c1:35:45:5d:16:6e:b4:99:7e: 35:b0:c7:c1:c9:19:d7:70:b7:0d:43:9c:bc:14:e5: 4c:49:b6:75:b3:76:8f:11:91:24:ce:fc:61:fa:74: 3b:b5:43:dc:12:27:92:db:d3:a1:b1:58:02:57:0e: 40:42:3a:1f:73:28:b2:26:d8:2b:21:7d:30:00:af: a2:f5:a9:0b:cc:41:46:f3:a4:5f:73:e5:4e:b3:fa: 9a:a5:17:70:61:25:0d:bd:1f:74:75:36:b3:1b:19: 7c:2b:36:79:c3:32:74:22:41:38:6d:81:b5:11:5e: 18:74:dc:46:b6:4e:37:ad:99:9e:f3:d4:bb:e9:54: 53:67:4f:74:6f:ef:62:87:31:3e:fa:ad:62:0a:c2: 5b:d1:ce:a6:84:13:23:8f:ab:75:2b:9d:74:37:05: 8d:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:C4:1D:75:FD:5B:47:3B:CF:18:BD:CF:2B:B7:12:DA:4E:4C:4E:9A X509v3 Authority Key Identifier: keyid:E0:EC:A7:BC:5B:25:A0:CA:37:4D:9A:83:CC:4C:F9:0D:D6:CF:22:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C74B5/9804356E34AA11EEA06AE133C4F9AE02/4OynvFsloMo3TZqDzEz5DdbPIgk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/4OynvFsloMo3TZqDzEz5DdbPIgk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C74B5/9804356E34AA11EEA06AE133C4F9AE02/4OynvFsloMo3TZqDzEz5DdbPIgk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 94:4d:80:f5:3e:a2:03:74:23:56:69:a7:87:0d:93:36:0b:c5: ba:dd:4b:64:b6:81:c6:59:b1:b8:92:3f:43:e6:da:f8:ad:55: 1d:b5:8a:8a:44:be:19:61:ad:67:51:86:19:20:bd:66:15:b6: ac:74:92:52:28:07:fd:82:88:73:e3:6a:c0:74:aa:ec:fa:ec: 83:68:a0:bd:f1:35:49:eb:b5:ae:b7:2d:da:55:40:7d:76:f9: 7e:ff:45:70:93:be:6e:d6:70:cd:19:98:ed:03:09:95:fd:09: bc:d8:03:02:3e:eb:26:10:1f:64:56:a0:50:3d:19:e7:3f:8e: 06:60:00:bd:ba:ca:bd:4a:31:60:06:9d:6c:66:b6:bb:bf:e8: 04:93:42:a5:a2:36:f7:0b:36:02:49:6f:3a:a1:70:fd:47:68: 09:7d:11:c3:ff:b8:32:a4:8b:75:21:6e:19:38:13:b7:b7:91: aa:26:04:f2:ad:b1:2d:46:4b:cf:b8:c9:37:f1:46:ee:81:f9: 2a:c1:a3:23:6e:8f:c0:ab:8a:1d:84:4a:44:e3:39:19:d5:1e: fc:da:30:0c:bf:be:83:e9:71:21:8d:41:49:ae:90:83:b6:5b: 61:62:50:80:fc:25:cd:7a:15:3d:80:56:67:e4:ed:9f:67:20: 51:7a:d3:43 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qzc0QjUxMTAvBgNVBAUTKEUwRUNBN0JDNUIyNUEwQ0EzNzREOUE4M0NDNENGOTBE RDZDRjIyMDkwHhcNMjQxMTIxMDMyNjA0WhcNMjQxMTI4MDMyNjA0WjAYMRYwFAYD VQQDEw02NzNlYTg0Yy0zOWYxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7f5vxRowcaFSmaC1pfJzqtqppPjx6kUmQWJrCzYo062UtR4DL6hRN/EIEVLt S8HCpc+fFkjuunY0Lo5P4TRcnroQiipOoh9A/XDKxuVSKVfnbGrFG9eNlpP3ePQE Y+LBNUVdFm60mX41sMfByRnXcLcNQ5y8FOVMSbZ1s3aPEZEkzvxh+nQ7tUPcEieS 29OhsVgCVw5AQjofcyiyJtgrIX0wAK+i9akLzEFG86Rfc+VOs/qapRdwYSUNvR90 dTazGxl8KzZ5wzJ0IkE4bYG1EV4YdNxGtk43rZme89S76VRTZ090b+9ihzE++q1i CsJb0c6mhBMjj6t1K510NwWNzQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPrEHXX9 W0c7zxi9zyu3EtpOTE6aMB8GA1UdIwQYMBaAFODsp7xbJaDKN02ag8xM+Q3WzyIJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNzRCNS85ODA0MzU2RTM0 QUExMUVFQTA2QUUxMzNDNEY5QUUwMi80T3ludkZzbG9NbzNUWnFEekV6NURkYlBJ Z2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzRPeW52RnNsb01vM1RacUR6RXo1RGRiUElnay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NzRCNS85ODA0MzU2RTM0QUExMUVFQTA2QUUxMzNDNEY5QUUwMi80T3ludkZzbG9N bzNUWnFEekV6NURkYlBJZ2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCUTYD1PqIDdCNWaaeHDZM2C8W63UtktoHGWbG4kj9D5tr4rVUdtYqK RL4ZYa1nUYYZIL1mFbasdJJSKAf9gohz42rAdKrs+uyDaKC98TVJ67Wuty3aVUB9 dvl+/0Vwk75u1nDNGZjtAwmV/Qm82AMCPusmEB9kVqBQPRnnP44GYAC9usq9SjFg Bp1sZra7v+gEk0Klojb3CzYCSW86oXD9R2gJfRHD/7gypIt1IW4ZOBO3t5GqJgTy rbEtRkvPuMk38UbugfkqwaMjbo/Aq4odhEpE4zkZ1R782jAMv76D6XEhjUFJrpCD tlthYlCA/CXNehU9gFZn5O2fZyBRetND -----END CERTIFICATE-----Generated at Thu Nov 21 05:06:04 2024 by rpki-client on console-fra.rpki-client.org