$ rpki-client -vvf rpki.apnic.net/member_repository/A91C7C44/D533A7B463DE11ED80BCD337C4F9AE02/s0it0HgdstIdxNM510-HoDk4ycc.mft File: s0it0HgdstIdxNM510-HoDk4ycc.mft (raw, json) Hash identifier: Oy88d/8+q8q1FANaK6N8GPsw7GVKNusXEVn5gA5VyQk= Subject key identifier: 83:D0:83:DA:97:F2:8A:67:22:75:9F:1F:EF:87:5A:43:A4:48:EC:E2 Authority key identifier: B3:48:AD:D0:78:1D:B2:D2:1D:C4:D3:39:D7:4F:87:A0:39:38:C9:C7 Certificate issuer: /CN=A91C7C44/serialNumber=B348ADD0781DB2D21DC4D339D74F87A03938C9C7 Certificate serial: 0186 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s0it0HgdstIdxNM510-HoDk4ycc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C7C44/D533A7B463DE11ED80BCD337C4F9AE02/s0it0HgdstIdxNM510-HoDk4ycc.mft Manifest number: 0182 Signing time: Sat 23 Nov 2024 02:03:35 +0000 Manifest this update: Sat 23 Nov 2024 02:03:35 +0000 Manifest next update: Sat 30 Nov 2024 02:03:35 +0000 Files and hashes: 1: s0it0HgdstIdxNM510-HoDk4ycc.crl (hash: lolLvf8LusMRQV2UuvpUkk0nOkrPxugs6nVjy2frm1A=) 2: 945D844463E311EDAD1B0B3FC4F9AE02.roa (hash: I1X7JACg/hLAWHCM0UINIChuMTlGhLwT5KCeL2gJlpM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C7C44/D533A7B463DE11ED80BCD337C4F9AE02/s0it0HgdstIdxNM510-HoDk4ycc.crl rsync://rpki.apnic.net/member_repository/A91C7C44/D533A7B463DE11ED80BCD337C4F9AE02/s0it0HgdstIdxNM510-HoDk4ycc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s0it0HgdstIdxNM510-HoDk4ycc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:03:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 390 (0x186) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C7C44/serialNumber=B348ADD0781DB2D21DC4D339D74F87A03938C9C7 Validity Not Before: Nov 23 02:03:35 2024 GMT Not After : Nov 30 02:03:35 2024 GMT Subject: CN=674137f7-da60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:05:3b:31:2b:08:7a:e3:da:eb:d4:66:c6:22: 96:51:5d:55:26:25:fc:1a:be:4e:89:23:3b:54:9a: 51:75:30:15:e9:df:2e:90:b7:11:7c:18:99:68:49: e3:73:d7:b3:f0:94:0c:26:a0:38:fd:08:d8:4f:eb: 9e:64:90:54:55:c0:3b:ec:f2:b9:59:e6:a7:10:4c: 5d:9f:21:d2:56:2e:c5:d2:a2:ba:fe:08:be:4e:8e: 85:9e:58:39:74:e0:d2:0b:ac:44:a9:22:e5:88:5f: 73:db:2c:a4:e8:0c:83:0f:77:f5:ed:c7:0f:2d:07: 30:76:a7:06:b6:01:c3:b7:4c:1b:24:80:2b:e3:4b: bc:1a:40:fe:15:03:55:08:e7:ef:33:7e:94:36:1a: 34:8b:39:eb:a2:ee:5b:03:f1:22:76:e6:e2:6b:9e: 8c:d2:8e:0d:6b:fa:98:b1:6e:df:c4:cf:e1:1b:39: 55:d5:96:7a:70:59:df:a1:97:4b:a6:c9:57:f8:21: dd:80:08:75:ee:2d:87:5f:67:34:36:fc:6c:a3:03: bc:1a:6c:fa:97:b6:5d:4f:c4:1b:b7:e6:fc:ad:4e: 24:77:6d:9c:58:23:a5:38:fe:f9:56:89:32:7e:07: fb:5a:39:65:5e:74:88:26:01:69:cd:e3:33:32:d6: 23:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:D0:83:DA:97:F2:8A:67:22:75:9F:1F:EF:87:5A:43:A4:48:EC:E2 X509v3 Authority Key Identifier: keyid:B3:48:AD:D0:78:1D:B2:D2:1D:C4:D3:39:D7:4F:87:A0:39:38:C9:C7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C7C44/D533A7B463DE11ED80BCD337C4F9AE02/s0it0HgdstIdxNM510-HoDk4ycc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s0it0HgdstIdxNM510-HoDk4ycc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C7C44/D533A7B463DE11ED80BCD337C4F9AE02/s0it0HgdstIdxNM510-HoDk4ycc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 84:39:e6:11:c2:92:2c:a5:83:b2:a8:67:83:79:a0:87:b7:f8: ff:b0:8d:41:8b:68:c1:a6:3c:27:7e:6a:35:27:32:59:7a:ce: 83:39:3c:12:07:ab:7c:09:6f:07:1a:6b:f0:75:44:4d:00:74: c0:52:e1:f1:21:4a:51:41:0e:63:db:86:c5:07:d3:5d:6b:cc: f7:2b:6a:32:46:b1:ed:a9:06:6e:9f:3e:e3:f7:31:ba:0d:10: bc:42:2d:b7:c1:8e:2e:f2:b4:b0:93:36:6e:88:49:44:78:6e: 26:ae:20:8c:6f:4a:12:23:05:ae:0c:97:4f:8e:5b:4a:d9:fb: b1:b3:bb:27:b2:fe:f6:db:59:19:58:07:fd:58:60:79:16:c1: f7:9d:c2:d4:e7:86:eb:e7:0e:cd:12:ac:7c:28:0a:ce:84:3d: eb:9c:03:b1:3c:a3:ed:35:f2:96:b6:ec:2d:7c:45:e6:9d:17: 40:03:3e:3d:cb:35:2d:64:33:a9:88:2e:92:c7:c1:be:82:ec: 08:04:ae:82:49:f5:1e:1f:af:6b:77:83:12:43:38:9c:7c:79: db:ce:c2:21:2d:53:cc:07:55:f3:d5:f6:5f:83:6a:42:04:45: 83:b9:36:bf:01:51:bf:60:a4:14:ac:e1:6d:8d:8f:6d:21:c0: e3:bb:d1:5e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAYYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzdDNDQxMTAvBgNVBAUTKEIzNDhBREQwNzgxREIyRDIxREM0RDMzOUQ3NEY4N0Ew MzkzOEM5QzcwHhcNMjQxMTIzMDIwMzM1WhcNMjQxMTMwMDIwMzM1WjAYMRYwFAYD VQQDEw02NzQxMzdmNy1kYTYwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1AU7MSsIeuPa69RmxiKWUV1VJiX8Gr5OiSM7VJpRdTAV6d8ukLcRfBiZaEnj c9ez8JQMJqA4/QjYT+ueZJBUVcA77PK5WeanEExdnyHSVi7F0qK6/gi+To6Fnlg5 dODSC6xEqSLliF9z2yyk6AyDD3f17ccPLQcwdqcGtgHDt0wbJIAr40u8GkD+FQNV COfvM36UNho0iznrou5bA/Eidubia56M0o4Na/qYsW7fxM/hGzlV1ZZ6cFnfoZdL pslX+CHdgAh17i2HX2c0NvxsowO8Gmz6l7ZdT8Qbt+b8rU4kd22cWCOlOP75Voky fgf7WjllXnSIJgFpzeMzMtYjyQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIPQg9qX 8opnInWfH++HWkOkSOziMB8GA1UdIwQYMBaAFLNIrdB4HbLSHcTTOddPh6A5OMnH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDN0M0NC9ENTMzQTdCNDYz REUxMUVEODBCQ0QzMzdDNEY5QUUwMi9zMGl0MEhnZHN0SWR4Tk01MTAtSG9EazR5 Y2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3MwaXQwSGdkc3RJZHhOTTUxMC1Ib0RrNHljYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD N0M0NC9ENTMzQTdCNDYzREUxMUVEODBCQ0QzMzdDNEY5QUUwMi9zMGl0MEhnZHN0 SWR4Tk01MTAtSG9EazR5Y2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCEOeYRwpIspYOyqGeDeaCHt/j/sI1Bi2jBpjwnfmo1JzJZes6DOTwS B6t8CW8HGmvwdURNAHTAUuHxIUpRQQ5j24bFB9Nda8z3K2oyRrHtqQZunz7j9zG6 DRC8Qi23wY4u8rSwkzZuiElEeG4mriCMb0oSIwWuDJdPjltK2fuxs7snsv7221kZ WAf9WGB5FsH3ncLU54br5w7NEqx8KArOhD3rnAOxPKPtNfKWtuwtfEXmnRdAAz49 yzUtZDOpiC6Sx8G+guwIBK6CSfUeH69rd4MSQzicfHnbzsIhLVPMB1Xz1fZfg2pC BEWDuTa/AVG/YKQUrOFtjY9tIcDju9Fe -----END CERTIFICATE-----Generated at Sat Nov 23 05:02:57 2024 by rpki-client on console-fra.rpki-client.org