$ rpki-client -vvf rpki.apnic.net/member_repository/A91C8F68/6B60BFBA3A3111EDA10CA761C4F9AE02/o9wYjy1VW0FacV8lkDahpg_8uNk.mft File: o9wYjy1VW0FacV8lkDahpg_8uNk.mft (raw, json) Hash identifier: LQYYqzA0FIDdULEkOzfzb0eN34snrlDKxJUOs9mIFhw= Subject key identifier: 1B:7C:46:7D:1B:9C:A6:D6:4C:5C:B2:88:E8:B2:9B:96:93:D6:61:44 Authority key identifier: A3:DC:18:8F:2D:55:5B:41:5A:71:5F:25:90:36:A1:A6:0F:FC:B8:D9 Certificate issuer: /CN=A91C8F68/serialNumber=A3DC188F2D555B415A715F259036A1A60FFCB8D9 Certificate serial: 01AB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o9wYjy1VW0FacV8lkDahpg_8uNk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C8F68/6B60BFBA3A3111EDA10CA761C4F9AE02/o9wYjy1VW0FacV8lkDahpg_8uNk.mft Manifest number: 01A7 Signing time: Sat 23 Nov 2024 01:50:12 +0000 Manifest this update: Sat 23 Nov 2024 01:50:11 +0000 Manifest next update: Sat 30 Nov 2024 01:50:11 +0000 Files and hashes: 1: o9wYjy1VW0FacV8lkDahpg_8uNk.crl (hash: c8xc13lfawPa55cfIIZmU3Smtuxnys1DGWvyo3x1RFk=) 2: 2A766EA23A3411EDA1B7D863C4F9AE02.roa (hash: JUU9x04r0AO1GN2PUUX6ELgHywTKgyrE2nXs4Tcl03M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C8F68/6B60BFBA3A3111EDA10CA761C4F9AE02/o9wYjy1VW0FacV8lkDahpg_8uNk.crl rsync://rpki.apnic.net/member_repository/A91C8F68/6B60BFBA3A3111EDA10CA761C4F9AE02/o9wYjy1VW0FacV8lkDahpg_8uNk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o9wYjy1VW0FacV8lkDahpg_8uNk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 427 (0x1ab) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C8F68/serialNumber=A3DC188F2D555B415A715F259036A1A60FFCB8D9 Validity Not Before: Nov 23 01:50:11 2024 GMT Not After : Nov 30 01:50:11 2024 GMT Subject: CN=674134d4-154b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:3b:81:57:f1:db:8f:c3:bd:f0:3b:34:bd:11: 24:dd:03:ca:85:ed:a9:44:55:fe:63:06:c3:b6:27: 45:c9:23:64:ca:a5:d5:1e:e8:6f:95:c1:a8:4a:df: ca:9a:36:27:14:1c:3f:b6:a9:97:c6:03:58:02:76: ce:c8:b3:25:07:9e:ce:15:9b:67:a1:b4:55:24:65: 8d:60:49:e2:25:35:bf:2a:6c:fd:84:8f:29:73:d1: 7e:7f:25:1c:2a:82:74:a3:12:6a:ef:3b:c6:04:f9: f6:ae:b0:3a:7d:77:7b:b0:54:6e:51:d6:77:be:7f: 20:a8:af:cb:99:25:2a:2c:1d:a4:40:45:4a:8c:cf: f3:b9:97:c8:82:13:a4:aa:d3:3e:fb:c2:34:92:67: dc:75:b9:47:fc:8f:3e:7e:7b:99:4a:22:86:3d:0b: 06:09:69:34:60:60:ac:55:23:23:de:c4:f2:da:a0: d6:97:52:44:7d:20:f3:44:52:c3:80:ae:5b:8d:f1: 96:53:ba:50:30:4f:81:a8:7c:c2:17:b5:8e:ff:11: 45:98:91:2b:9c:75:88:28:46:0e:a2:38:dc:e4:9b: 20:46:15:6b:e5:92:8d:3b:1a:4e:67:47:3c:8f:a6: 84:3f:60:c4:56:0c:b4:b4:d6:3a:a6:07:7e:4e:b2: 28:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:7C:46:7D:1B:9C:A6:D6:4C:5C:B2:88:E8:B2:9B:96:93:D6:61:44 X509v3 Authority Key Identifier: keyid:A3:DC:18:8F:2D:55:5B:41:5A:71:5F:25:90:36:A1:A6:0F:FC:B8:D9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C8F68/6B60BFBA3A3111EDA10CA761C4F9AE02/o9wYjy1VW0FacV8lkDahpg_8uNk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o9wYjy1VW0FacV8lkDahpg_8uNk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C8F68/6B60BFBA3A3111EDA10CA761C4F9AE02/o9wYjy1VW0FacV8lkDahpg_8uNk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 53:88:5c:57:ef:d5:9b:74:aa:7e:3d:4d:df:f2:42:bf:a3:74: 85:e1:2b:24:45:7e:1b:d3:4f:47:4c:fb:d4:5a:dc:0a:43:a1: df:c1:7b:5a:7b:35:d1:37:35:f5:ac:e7:4c:6d:db:e4:54:2b: 88:5a:3b:ff:e5:91:8a:a7:cc:22:c3:c5:df:61:5d:70:75:fe: 6e:91:48:2c:05:24:c8:5a:64:b6:b9:8f:1c:28:03:d9:f2:50: 4d:4a:cd:e5:cc:9b:34:ad:3c:43:e3:70:db:35:a9:ba:11:bb: 50:8f:72:c6:c1:f5:7c:9e:ff:26:be:9a:29:f6:e8:b3:0e:aa: 57:21:c3:4c:48:ac:aa:73:9a:7d:42:2d:dd:b5:4d:45:78:20: ad:1c:bb:31:9a:7b:4e:fc:17:43:68:64:a2:43:53:0e:59:67: aa:c8:27:21:2e:df:eb:55:14:b9:f2:c0:f8:c1:8d:01:20:8c: 2b:4d:44:5d:2d:41:ef:c1:52:5d:8f:53:f9:f9:62:2f:ab:fa: 97:c2:3b:90:01:38:24:05:2f:49:13:ac:16:d3:86:77:91:58: 53:cf:40:7a:87:f2:70:c5:0e:d7:0f:7b:4f:6b:4f:f0:7f:1b: 11:ed:08:10:73:80:e2:f4:da:8a:e8:76:5d:b9:e7:e0:11:0c: 98:70:bf:ca -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAaswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzhGNjgxMTAvBgNVBAUTKEEzREMxODhGMkQ1NTVCNDE1QTcxNUYyNTkwMzZBMUE2 MEZGQ0I4RDkwHhcNMjQxMTIzMDE1MDExWhcNMjQxMTMwMDE1MDExWjAYMRYwFAYD VQQDEw02NzQxMzRkNC0xNTRiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsDuBV/Hbj8O98Ds0vREk3QPKhe2pRFX+YwbDtidFySNkyqXVHuhvlcGoSt/K mjYnFBw/tqmXxgNYAnbOyLMlB57OFZtnobRVJGWNYEniJTW/Kmz9hI8pc9F+fyUc KoJ0oxJq7zvGBPn2rrA6fXd7sFRuUdZ3vn8gqK/LmSUqLB2kQEVKjM/zuZfIghOk qtM++8I0kmfcdblH/I8+fnuZSiKGPQsGCWk0YGCsVSMj3sTy2qDWl1JEfSDzRFLD gK5bjfGWU7pQME+BqHzCF7WO/xFFmJErnHWIKEYOojjc5JsgRhVr5ZKNOxpOZ0c8 j6aEP2DEVgy0tNY6pgd+TrIo9wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBt8Rn0b nKbWTFyyiOiym5aT1mFEMB8GA1UdIwQYMBaAFKPcGI8tVVtBWnFfJZA2oaYP/LjZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOEY2OC82QjYwQkZCQTNB MzExMUVEQTEwQ0E3NjFDNEY5QUUwMi9vOXdZankxVlcwRmFjVjhsa0RhaHBnXzh1 TmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL285d1lqeTFWVzBGYWNWOGxrRGFocGdfOHVOay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD OEY2OC82QjYwQkZCQTNBMzExMUVEQTEwQ0E3NjFDNEY5QUUwMi9vOXdZankxVlcw RmFjVjhsa0RhaHBnXzh1TmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBTiFxX79WbdKp+PU3f8kK/o3SF4SskRX4b009HTPvUWtwKQ6HfwXta ezXRNzX1rOdMbdvkVCuIWjv/5ZGKp8wiw8XfYV1wdf5ukUgsBSTIWmS2uY8cKAPZ 8lBNSs3lzJs0rTxD43DbNam6EbtQj3LGwfV8nv8mvpop9uizDqpXIcNMSKyqc5p9 Qi3dtU1FeCCtHLsxmntO/BdDaGSiQ1MOWWeqyCchLt/rVRS58sD4wY0BIIwrTURd LUHvwVJdj1P5+WIvq/qXwjuQATgkBS9JE6wW04Z3kVhTz0B6h/JwxQ7XD3tPa0/w fxsR7QgQc4Di9NqK6HZduefgEQyYcL/K -----END CERTIFICATE-----Generated at Sat Nov 23 02:33:45 2024 by rpki-client on console-fra.rpki-client.org