$ rpki-client -vvf rpki.apnic.net/member_repository/A91C7773/AD32237CA2E811E9BAE78D47C4F9AE02/2QDd8konYiv5ZDdX7byv-u4yHDc.mft File: 2QDd8konYiv5ZDdX7byv-u4yHDc.mft (raw, json) Hash identifier: u4/w88ueBZ8WgV4vHE2d5x47JYkFNqlFW+m04OYCfkc= Subject key identifier: A9:94:DD:65:D0:06:A5:40:03:89:8E:44:3A:AE:06:03:4A:DC:43:F1 Authority key identifier: D9:00:DD:F2:4A:27:62:2B:F9:64:37:57:ED:BC:AF:FA:EE:32:1C:37 Certificate issuer: /CN=A91C7773/serialNumber=D900DDF24A27622BF9643757EDBCAFFAEE321C37 Certificate serial: 0E02 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2QDd8konYiv5ZDdX7byv-u4yHDc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C7773/AD32237CA2E811E9BAE78D47C4F9AE02/2QDd8konYiv5ZDdX7byv-u4yHDc.mft Manifest number: 0DE9 Signing time: Fri 22 Nov 2024 17:48:32 +0000 Manifest this update: Fri 22 Nov 2024 17:48:32 +0000 Manifest next update: Fri 29 Nov 2024 17:48:32 +0000 Files and hashes: 1: 2QDd8konYiv5ZDdX7byv-u4yHDc.crl (hash: W4n/ruSSKIGgD46SoVCfe/mNIlp/74MzrCNkIUhfq68=) 2: A47D2EC84C1E11EEBA8CDB4BC4F9AE02.roa (hash: xJh5HRbn741snUCbMX+RHgdNum29ocH1QT8bD3kB9Uw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C7773/AD32237CA2E811E9BAE78D47C4F9AE02/2QDd8konYiv5ZDdX7byv-u4yHDc.crl rsync://rpki.apnic.net/member_repository/A91C7773/AD32237CA2E811E9BAE78D47C4F9AE02/2QDd8konYiv5ZDdX7byv-u4yHDc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2QDd8konYiv5ZDdX7byv-u4yHDc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 17:48:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3586 (0xe02) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C7773/serialNumber=D900DDF24A27622BF9643757EDBCAFFAEE321C37 Validity Not Before: Nov 22 17:48:32 2024 GMT Not After : Nov 29 17:48:32 2024 GMT Subject: CN=6740c3f0-b65e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:5d:bd:5b:ff:07:0b:11:58:fb:a3:a1:3e:53: 4a:f1:e8:23:d6:3a:de:d8:42:d0:c4:e0:b2:02:09: 17:c2:6b:a3:29:c9:32:0a:6f:b7:fd:70:ca:03:d3: 3e:80:bb:f1:22:af:82:9e:bf:06:e9:9a:a8:48:69: 77:83:cc:fd:8e:0f:82:44:89:49:85:7e:5b:17:53: c8:36:b7:86:cb:13:0f:92:f9:a9:9e:98:83:22:8d: e4:16:25:09:21:05:85:9e:62:da:e4:59:91:18:96: cb:c2:de:10:30:6f:50:03:d0:78:f4:af:4f:28:5d: 3a:c8:78:55:f3:5a:d5:33:9f:65:7c:4c:f8:0f:b6: 3c:dd:d1:b3:38:cc:c6:5b:87:52:09:ac:25:cf:37: e5:9e:7f:d7:bd:e9:2d:4f:0f:25:0f:b4:8b:a0:63: cb:34:52:43:fa:95:ef:6b:6a:40:01:07:9a:2e:98: 28:c7:50:85:89:d7:53:0b:e5:29:b6:82:ce:83:f0: 47:a3:2e:d7:09:c2:2a:00:4f:25:5d:87:bf:44:52: 4e:30:66:e6:0f:fc:66:ad:af:b9:b3:61:e6:05:8d: 4f:c4:25:75:50:d9:72:a3:3e:b0:d2:56:b1:2c:8b: 6d:63:db:c9:c7:8e:d5:6e:de:60:21:2b:aa:32:7f: 4e:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:94:DD:65:D0:06:A5:40:03:89:8E:44:3A:AE:06:03:4A:DC:43:F1 X509v3 Authority Key Identifier: keyid:D9:00:DD:F2:4A:27:62:2B:F9:64:37:57:ED:BC:AF:FA:EE:32:1C:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C7773/AD32237CA2E811E9BAE78D47C4F9AE02/2QDd8konYiv5ZDdX7byv-u4yHDc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2QDd8konYiv5ZDdX7byv-u4yHDc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C7773/AD32237CA2E811E9BAE78D47C4F9AE02/2QDd8konYiv5ZDdX7byv-u4yHDc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 77:d1:26:e3:b1:d1:30:30:db:0a:07:8d:b6:d0:37:01:f5:28: 22:ad:12:62:63:32:d0:d8:16:45:ee:b5:ae:69:6e:66:aa:80: ac:b8:82:be:8b:94:ae:25:21:97:23:b9:ba:79:1a:c9:f9:b8: f4:1c:e5:aa:ae:d3:ad:7a:57:36:e1:15:26:a1:6a:31:c5:40: 51:c9:be:fb:a8:e0:57:18:7d:5e:89:38:eb:62:e5:41:ca:e1: 70:4e:8a:e2:32:05:de:36:74:08:d5:11:c2:6a:f7:ea:91:80: 95:15:ea:ad:69:89:2e:7f:d2:66:6e:2a:6c:7f:b3:97:64:54: e6:95:89:b7:d4:5a:bc:68:34:99:04:56:17:57:56:8b:bf:7e: b6:68:ed:98:74:97:cc:80:ac:a9:7c:16:9e:18:ff:d3:47:4e: 3a:72:e9:93:4e:4a:31:e7:96:22:d6:0b:60:50:a2:80:77:b5: aa:cd:f1:22:af:ab:44:f2:96:0a:1b:64:4b:e7:b4:88:d0:53: b2:06:57:46:bd:18:50:8b:3c:fe:15:b1:fc:dd:65:52:92:56: d4:ab:8b:06:7d:0e:eb:78:9b:3b:df:b3:1f:96:d4:7f:13:b0: 6d:4e:3d:6f:de:b2:90:5c:38:1a:c2:7b:ab:3f:65:c5:6e:e2: 6c:03:f7:f4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDgIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qzc3NzMxMTAvBgNVBAUTKEQ5MDBEREYyNEEyNzYyMkJGOTY0Mzc1N0VEQkNBRkZB RUUzMjFDMzcwHhcNMjQxMTIyMTc0ODMyWhcNMjQxMTI5MTc0ODMyWjAYMRYwFAYD VQQDEw02NzQwYzNmMC1iNjVlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzV29W/8HCxFY+6OhPlNK8egj1jre2ELQxOCyAgkXwmujKckyCm+3/XDKA9M+ gLvxIq+Cnr8G6ZqoSGl3g8z9jg+CRIlJhX5bF1PINreGyxMPkvmpnpiDIo3kFiUJ IQWFnmLa5FmRGJbLwt4QMG9QA9B49K9PKF06yHhV81rVM59lfEz4D7Y83dGzOMzG W4dSCawlzzflnn/XvektTw8lD7SLoGPLNFJD+pXva2pAAQeaLpgox1CFiddTC+Up toLOg/BHoy7XCcIqAE8lXYe/RFJOMGbmD/xmra+5s2HmBY1PxCV1UNlyoz6w0lax LIttY9vJx47Vbt5gISuqMn9OxwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKmU3WXQ BqVAA4mORDquBgNK3EPxMB8GA1UdIwQYMBaAFNkA3fJKJ2Ir+WQ3V+28r/ruMhw3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNzc3My9BRDMyMjM3Q0Ey RTgxMUU5QkFFNzhENDdDNEY5QUUwMi8yUURkOGtvbllpdjVaRGRYN2J5di11NHlI RGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJRRGQ4a29uWWl2NVpEZFg3Ynl2LXU0eUhEYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD Nzc3My9BRDMyMjM3Q0EyRTgxMUU5QkFFNzhENDdDNEY5QUUwMi8yUURkOGtvbllp djVaRGRYN2J5di11NHlIRGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB30SbjsdEwMNsKB4220DcB9SgirRJiYzLQ2BZF7rWuaW5mqoCsuIK+ i5SuJSGXI7m6eRrJ+bj0HOWqrtOtelc24RUmoWoxxUBRyb77qOBXGH1eiTjrYuVB yuFwToriMgXeNnQI1RHCavfqkYCVFeqtaYkuf9Jmbipsf7OXZFTmlYm31Fq8aDSZ BFYXV1aLv362aO2YdJfMgKypfBaeGP/TR046cumTTkox55Yi1gtgUKKAd7WqzfEi r6tE8pYKG2RL57SI0FOyBldGvRhQizz+FbH83WVSklbUq4sGfQ7reJs737MfltR/ E7BtTj1v3rKQXDgawnurP2XFbuJsA/f0 -----END CERTIFICATE-----Generated at Fri Nov 22 19:45:03 2024 by rpki-client on console-fra.rpki-client.org