$ rpki-client -vvf rpki.apnic.net/member_repository/A91C8DD5/D5A1A1C612A711E7ADB4DE4DC4F9AE02/1sP4E3joVAB4unmUQu7b7HgOD3s.mft File: 1sP4E3joVAB4unmUQu7b7HgOD3s.mft (raw, json) Hash identifier: WqHBrdgkkGP7w5DsrDyRplKGOSBue6Oc7zzWoQu2CKA= Subject key identifier: 78:FA:B7:2C:FE:20:E1:25:86:43:9B:6A:32:5E:05:65:62:7A:15:DB Authority key identifier: D6:C3:F8:13:78:E8:54:00:78:BA:79:94:42:EE:DB:EC:78:0E:0F:7B Certificate issuer: /CN=A91C8DD5/serialNumber=D6C3F81378E8540078BA799442EEDBEC780E0F7B Certificate serial: 1AEA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1sP4E3joVAB4unmUQu7b7HgOD3s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C8DD5/D5A1A1C612A711E7ADB4DE4DC4F9AE02/1sP4E3joVAB4unmUQu7b7HgOD3s.mft Manifest number: 1AE1 Signing time: Fri 22 Nov 2024 16:18:32 +0000 Manifest this update: Fri 22 Nov 2024 16:18:31 +0000 Manifest next update: Fri 29 Nov 2024 16:18:31 +0000 Files and hashes: 1: 1sP4E3joVAB4unmUQu7b7HgOD3s.crl (hash: +ekNKlTKWJej/kksBKeiBOq8Lfs5dAZbYENLZqmQ1wM=) 2: 020A31F812B011E7A7C42661C4F9AE02.roa (hash: N/QKwYU99zSxNpR5M+QspbIb1HfEPDfTD2V5TEy4RLU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C8DD5/D5A1A1C612A711E7ADB4DE4DC4F9AE02/1sP4E3joVAB4unmUQu7b7HgOD3s.crl rsync://rpki.apnic.net/member_repository/A91C8DD5/D5A1A1C612A711E7ADB4DE4DC4F9AE02/1sP4E3joVAB4unmUQu7b7HgOD3s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1sP4E3joVAB4unmUQu7b7HgOD3s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 16:18:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6890 (0x1aea) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C8DD5/serialNumber=D6C3F81378E8540078BA799442EEDBEC780E0F7B Validity Not Before: Nov 22 16:18:31 2024 GMT Not After : Nov 29 16:18:31 2024 GMT Subject: CN=6740aed8-a970 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:72:f0:ca:a0:ab:3c:b8:31:ea:2b:2d:e5:88: 66:57:88:5c:a8:01:1d:a1:e6:0e:3f:37:a7:91:b2: ab:0a:8a:de:8a:1b:ab:66:a6:b9:93:39:e0:0d:ae: 73:01:9d:e3:e7:76:19:4c:ef:d3:70:6d:5f:c1:45: a1:10:65:57:c2:ea:cf:49:29:2a:da:87:22:40:14: 00:c4:7d:b5:f9:c6:c3:60:60:5f:70:a6:4c:b1:41: 81:04:56:49:9c:80:95:5c:23:e1:ad:18:c7:41:67: 25:c7:81:0d:9c:bb:cb:f1:91:5e:b6:27:f3:de:d5: b1:6f:a9:58:65:24:c4:22:8f:8d:7d:bc:5d:61:7f: 75:bf:f8:0e:40:23:e8:cf:a8:a8:8f:11:c1:3d:d7: 48:99:c4:8b:31:42:76:1e:23:90:e0:2c:dc:24:bb: 28:50:7a:eb:70:eb:50:c7:c8:bd:ba:63:24:93:92: 41:cb:d0:e1:cb:3d:8a:f2:bf:31:e6:2e:20:9d:63: f3:88:43:f9:31:1f:93:5f:c0:cf:15:16:be:25:c2: 0a:2b:41:3e:c2:f3:59:35:f1:90:fa:b8:df:e8:38: 98:fb:1a:2f:9f:b3:39:3a:55:e7:43:9d:a6:48:77: 77:f9:ae:44:bf:eb:bb:6f:6b:67:e7:a1:ab:13:84: 8d:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:FA:B7:2C:FE:20:E1:25:86:43:9B:6A:32:5E:05:65:62:7A:15:DB X509v3 Authority Key Identifier: keyid:D6:C3:F8:13:78:E8:54:00:78:BA:79:94:42:EE:DB:EC:78:0E:0F:7B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C8DD5/D5A1A1C612A711E7ADB4DE4DC4F9AE02/1sP4E3joVAB4unmUQu7b7HgOD3s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1sP4E3joVAB4unmUQu7b7HgOD3s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C8DD5/D5A1A1C612A711E7ADB4DE4DC4F9AE02/1sP4E3joVAB4unmUQu7b7HgOD3s.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4f:7a:a2:c0:16:f3:4c:7f:92:47:b2:f6:e1:56:53:f7:4d:e6: 4b:66:72:81:c6:cf:a9:8a:03:7e:c3:1e:46:a1:77:a2:cf:dc: 4a:98:5b:4e:44:dc:bb:24:68:14:3c:19:50:f9:ee:b6:ce:08: e3:52:8d:7c:6c:b2:5a:e6:ef:f2:88:83:42:68:e1:19:26:66: 36:64:78:be:59:59:f0:fc:42:43:d6:81:1c:29:08:7c:b3:49: dc:de:e7:09:6c:e1:c9:98:3c:bb:c5:74:d8:f3:c1:85:82:d8: 64:df:5b:6a:a1:f9:82:16:53:ef:a8:f8:06:8d:a1:62:20:22: 78:a2:47:df:25:8f:05:02:7d:78:51:d3:67:dd:b3:86:28:32: 79:61:24:11:21:21:f8:80:7c:5e:20:ed:00:12:46:86:a7:2c: bd:77:98:36:eb:ca:9a:47:1f:ca:8d:75:d2:81:87:ae:68:26: c4:fa:25:34:52:87:14:c5:56:d5:51:47:d4:06:ea:de:12:c3: ce:6d:f3:a4:d6:cb:57:19:d1:5e:9d:ad:6a:ec:0b:a7:ba:1c: e3:09:12:cb:3c:58:65:10:db:e9:2b:8d:bf:7a:71:15:93:a0: 4b:fd:7d:ba:0f:5a:80:ad:98:0b:c9:a6:52:7e:f5:3a:f3:10: 0f:81:18:96 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICGuowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzhERDUxMTAvBgNVBAUTKEQ2QzNGODEzNzhFODU0MDA3OEJBNzk5NDQyRUVEQkVD NzgwRTBGN0IwHhcNMjQxMTIyMTYxODMxWhcNMjQxMTI5MTYxODMxWjAYMRYwFAYD VQQDEw02NzQwYWVkOC1hOTcwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0HLwyqCrPLgx6ist5YhmV4hcqAEdoeYOPzenkbKrCoreihurZqa5kzngDa5z AZ3j53YZTO/TcG1fwUWhEGVXwurPSSkq2ociQBQAxH21+cbDYGBfcKZMsUGBBFZJ nICVXCPhrRjHQWclx4ENnLvL8ZFetifz3tWxb6lYZSTEIo+NfbxdYX91v/gOQCPo z6iojxHBPddImcSLMUJ2HiOQ4CzcJLsoUHrrcOtQx8i9umMkk5JBy9Dhyz2K8r8x 5i4gnWPziEP5MR+TX8DPFRa+JcIKK0E+wvNZNfGQ+rjf6DiY+xovn7M5OlXnQ52m SHd3+a5Ev+u7b2tn56GrE4SNnQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHj6tyz+ IOElhkObajJeBWViehXbMB8GA1UdIwQYMBaAFNbD+BN46FQAeLp5lELu2+x4Dg97 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOERENS9ENUExQTFDNjEy QTcxMUU3QURCNERFNERDNEY5QUUwMi8xc1A0RTNqb1ZBQjR1bm1VUXU3YjdIZ09E M3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFzUDRFM2pvVkFCNHVubVVRdTdiN0hnT0Qzcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD OERENS9ENUExQTFDNjEyQTcxMUU3QURCNERFNERDNEY5QUUwMi8xc1A0RTNqb1ZB QjR1bm1VUXU3YjdIZ09EM3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBPeqLAFvNMf5JHsvbhVlP3TeZLZnKBxs+pigN+wx5GoXeiz9xKmFtO RNy7JGgUPBlQ+e62zgjjUo18bLJa5u/yiINCaOEZJmY2ZHi+WVnw/EJD1oEcKQh8 s0nc3ucJbOHJmDy7xXTY88GFgthk31tqofmCFlPvqPgGjaFiICJ4okffJY8FAn14 UdNn3bOGKDJ5YSQRISH4gHxeIO0AEkaGpyy9d5g268qaRx/KjXXSgYeuaCbE+iU0 UocUxVbVUUfUBureEsPObfOk1stXGdFena1q7AunuhzjCRLLPFhlENvpK42/enEV k6BL/X26D1qArZgLyaZSfvU68xAPgRiW -----END CERTIFICATE-----Generated at Fri Nov 22 17:56:20 2024 by rpki-client on console-fra.rpki-client.org