$ rpki-client -vvf rpki.apnic.net/member_repository/A91C7C04/A0DB35525FB411EBAB7C6A23C4F9AE02/CuIi7F4XpuYytVnUnFse8zLaQ8s.mft File: CuIi7F4XpuYytVnUnFse8zLaQ8s.mft (raw, json) Hash identifier: nDAiG3EwD1p/ep21Ty+SrqBf/d+MswvzCEfCXBQHPzk= Subject key identifier: B6:F0:03:BD:00:31:38:26:3A:97:D3:23:64:21:EA:86:7C:5F:72:43 Authority key identifier: 0A:E2:22:EC:5E:17:A6:E6:32:B5:59:D4:9C:5B:1E:F3:32:DA:43:CB Certificate issuer: /CN=A91C7C04/serialNumber=0AE222EC5E17A6E632B559D49C5B1EF332DA43CB Certificate serial: 067D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CuIi7F4XpuYytVnUnFse8zLaQ8s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C7C04/A0DB35525FB411EBAB7C6A23C4F9AE02/CuIi7F4XpuYytVnUnFse8zLaQ8s.mft Manifest number: 0668 Signing time: Wed 20 Nov 2024 21:58:52 +0000 Manifest this update: Wed 20 Nov 2024 21:58:51 +0000 Manifest next update: Wed 27 Nov 2024 21:58:51 +0000 Files and hashes: 1: CuIi7F4XpuYytVnUnFse8zLaQ8s.crl (hash: NlVbrfI7WopEtK9KBzq/OPF6BBbcowhV0b2OUZX+pVs=) 2: B6F19E94169A11EFA5557A2DC4F9AE02.roa (hash: fYCEKAiD+0CbQbgCNRXdL37bQ/yzorg1n+JINWyYZdI=) 3: DA45147EB35E11EE8EED0E37C4F9AE02.roa (hash: O762b9O8eAbqPwdVQTVdzB2ShiBwgCIaagmOOLFp5cQ=) 4: A825CC96324011EC9E90243EC4F9AE02.roa (hash: 2z+OR2rQu6sBEbJLOp/mMwO5osx9cmu/7grhbghdb1o=) 5: F097281C169A11EF8927EC2DC4F9AE02.roa (hash: JIaim2olf0gNl+Ps/D08T7ObPPSK6cS50lZ3l089bvw=) 6: CD0B290A232111EF8E1B807FC4F9AE02.roa (hash: LBTuC9yWjJvg/GZ23+7h0Kpoc2FfkF84houmHqXZRxU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C7C04/A0DB35525FB411EBAB7C6A23C4F9AE02/CuIi7F4XpuYytVnUnFse8zLaQ8s.crl rsync://rpki.apnic.net/member_repository/A91C7C04/A0DB35525FB411EBAB7C6A23C4F9AE02/CuIi7F4XpuYytVnUnFse8zLaQ8s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CuIi7F4XpuYytVnUnFse8zLaQ8s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:33:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1661 (0x67d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C7C04/serialNumber=0AE222EC5E17A6E632B559D49C5B1EF332DA43CB Validity Not Before: Nov 20 21:58:51 2024 GMT Not After : Nov 27 21:58:51 2024 GMT Subject: CN=673e5b9b-731b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:d2:ab:80:cf:04:19:56:65:c3:11:d7:dc:56: c5:ed:d7:d2:c4:8e:e7:c7:fd:d1:d8:d0:28:25:a1: 98:dd:08:fc:ff:d0:c8:15:c6:8a:d7:2d:9e:f6:94: bc:ac:47:2a:44:25:98:03:7f:eb:9d:f5:b7:56:2d: 58:81:f2:8c:a3:d1:0a:14:fe:19:63:4d:f2:df:7a: 7b:0e:fe:4b:9b:5d:aa:2b:b9:78:6b:4f:e0:b3:36: 9a:a1:ec:1f:9f:f3:96:03:d3:c2:5b:d9:f8:62:6c: 72:e7:75:50:88:a0:80:3c:da:af:5f:db:51:91:d5: 85:6f:16:90:22:9c:4d:1f:c7:b7:79:68:5b:5b:88: 32:4a:0e:4e:d7:df:aa:9e:77:27:af:41:2c:92:cb: 30:f9:87:55:74:b5:7a:5c:10:4f:36:3c:ad:b8:a3: 8a:e1:c9:92:2a:bf:59:db:4d:ff:09:d1:11:65:19: ba:5a:bf:24:26:c6:b8:cf:88:5e:00:95:e5:d2:45: fd:5b:bb:3c:58:f4:2a:30:8b:4e:59:e7:e2:5f:93: 73:88:2a:40:d1:ef:64:ea:2a:ee:85:7c:d1:fc:50: 87:ea:c5:d0:c4:b3:05:3d:15:ba:86:96:52:10:60: 49:2a:f4:6e:18:bc:fa:b5:8d:24:2c:ef:c6:c6:a7: b5:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B6:F0:03:BD:00:31:38:26:3A:97:D3:23:64:21:EA:86:7C:5F:72:43 X509v3 Authority Key Identifier: keyid:0A:E2:22:EC:5E:17:A6:E6:32:B5:59:D4:9C:5B:1E:F3:32:DA:43:CB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C7C04/A0DB35525FB411EBAB7C6A23C4F9AE02/CuIi7F4XpuYytVnUnFse8zLaQ8s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CuIi7F4XpuYytVnUnFse8zLaQ8s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C7C04/A0DB35525FB411EBAB7C6A23C4F9AE02/CuIi7F4XpuYytVnUnFse8zLaQ8s.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 61:be:bb:fd:b1:f6:43:65:d4:f5:d3:41:31:c5:67:4b:8b:48: c3:86:d9:bb:17:29:c7:c3:0a:0d:b8:5b:29:87:16:d9:39:ee: 78:62:16:65:41:96:55:39:6e:90:d2:55:5c:cc:ba:b4:17:bc: cd:a9:4f:ed:d7:a4:b4:a1:89:c1:e8:80:aa:87:9d:b5:d1:40: 47:56:15:5b:60:f5:ed:36:1b:c2:73:6c:c5:6d:c4:c1:bb:83: e6:63:f1:a0:7d:45:a4:1c:04:11:b3:3b:81:1d:5c:ba:a9:6c: 04:3b:81:2e:6b:65:fc:70:9f:e6:28:fa:8e:4e:a3:23:e5:1a: 68:79:2b:70:a8:1b:78:f3:7b:9c:88:bc:00:f2:4f:63:f2:fa: 85:6e:9d:3d:9f:fa:aa:17:d8:3c:6d:31:7e:da:d4:18:a7:ea: 1a:08:61:5a:66:ac:44:67:9a:84:53:07:46:3c:52:97:a0:ad: 2c:f5:97:41:9f:67:c5:81:72:bd:7a:10:0b:1b:4d:d0:cb:65: ef:c3:f0:43:61:88:ce:6c:13:d0:2e:c6:cc:8c:65:f3:b4:0a: 71:b2:de:42:05:e6:49:28:78:a4:31:a0:84:46:88:c0:a7:e5: b0:84:fe:53:52:1d:af:39:ee:6d:82:93:76:75:3a:02:c2:80: 49:33:9c:61 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBn0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzdDMDQxMTAvBgNVBAUTKDBBRTIyMkVDNUUxN0E2RTYzMkI1NTlENDlDNUIxRUYz MzJEQTQzQ0IwHhcNMjQxMTIwMjE1ODUxWhcNMjQxMTI3MjE1ODUxWjAYMRYwFAYD VQQDEw02NzNlNWI5Yi03MzFiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAttKrgM8EGVZlwxHX3FbF7dfSxI7nx/3R2NAoJaGY3Qj8/9DIFcaK1y2e9pS8 rEcqRCWYA3/rnfW3Vi1YgfKMo9EKFP4ZY03y33p7Dv5Lm12qK7l4a0/gszaaoewf n/OWA9PCW9n4Ymxy53VQiKCAPNqvX9tRkdWFbxaQIpxNH8e3eWhbW4gySg5O19+q nncnr0Eskssw+YdVdLV6XBBPNjytuKOK4cmSKr9Z203/CdERZRm6Wr8kJsa4z4he AJXl0kX9W7s8WPQqMItOWefiX5NziCpA0e9k6iruhXzR/FCH6sXQxLMFPRW6hpZS EGBJKvRuGLz6tY0kLO/Gxqe1JwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLbwA70A MTgmOpfTI2Qh6oZ8X3JDMB8GA1UdIwQYMBaAFAriIuxeF6bmMrVZ1JxbHvMy2kPL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDN0MwNC9BMERCMzU1MjVG QjQxMUVCQUI3QzZBMjNDNEY5QUUwMi9DdUlpN0Y0WHB1WXl0Vm5VbkZzZTh6TGFR OHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0N1SWk3RjRYcHVZeXRWblVuRnNlOHpMYVE4cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD N0MwNC9BMERCMzU1MjVGQjQxMUVCQUI3QzZBMjNDNEY5QUUwMi9DdUlpN0Y0WHB1 WXl0Vm5VbkZzZTh6TGFROHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBhvrv9sfZDZdT100ExxWdLi0jDhtm7FynHwwoNuFsphxbZOe54YhZl QZZVOW6Q0lVczLq0F7zNqU/t16S0oYnB6ICqh5210UBHVhVbYPXtNhvCc2zFbcTB u4PmY/GgfUWkHAQRszuBHVy6qWwEO4Eua2X8cJ/mKPqOTqMj5RpoeStwqBt483uc iLwA8k9j8vqFbp09n/qqF9g8bTF+2tQYp+oaCGFaZqxEZ5qEUwdGPFKXoK0s9ZdB n2fFgXK9ehALG03Qy2Xvw/BDYYjObBPQLsbMjGXztApxst5CBeZJKHikMaCERojA p+WwhP5TUh2vOe5tgpN2dToCwoBJM5xh -----END CERTIFICATE-----Generated at Wed Nov 20 23:11:48 2024 by rpki-client on console-fra.rpki-client.org