$ rpki-client -vvf rpki.apnic.net/member_repository/A91C9A8D/32F1F4C283E911ECB873C871C4F9AE02/4Y-ehXQ6vsrARiuP30On20pij_k.mft File: 4Y-ehXQ6vsrARiuP30On20pij_k.mft (raw, json) Hash identifier: 8zWP2Ty3ypEghE+pHzIQOd4JOM5fvuWkxQI5eB6rUoM= Subject key identifier: 0D:37:1C:0C:52:A1:10:A8:B2:94:0E:5A:AC:46:00:FD:23:26:57:8C Authority key identifier: E1:8F:9E:85:74:3A:BE:CA:C0:46:2B:8F:DF:43:A7:DB:4A:62:8F:F9 Certificate issuer: /CN=A91C9A8D/serialNumber=E18F9E85743ABECAC0462B8FDF43A7DB4A628FF9 Certificate serial: 037E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4Y-ehXQ6vsrARiuP30On20pij_k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C9A8D/32F1F4C283E911ECB873C871C4F9AE02/4Y-ehXQ6vsrARiuP30On20pij_k.mft Manifest number: 0378 Signing time: Sat 23 Nov 2024 00:26:15 +0000 Manifest this update: Sat 23 Nov 2024 00:26:15 +0000 Manifest next update: Sat 30 Nov 2024 00:26:14 +0000 Files and hashes: 1: 4Y-ehXQ6vsrARiuP30On20pij_k.crl (hash: nmz4inGcixiOiWlJXNNfNPPogCGiyDQZnTvE8uxKrvc=) 2: 5ADC253683EC11ECB7EC3B76C4F9AE02.roa (hash: l9MCX/ok3k/pBrf5kVJoFs4voysyb/A+G+zc7rR/ENo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C9A8D/32F1F4C283E911ECB873C871C4F9AE02/4Y-ehXQ6vsrARiuP30On20pij_k.crl rsync://rpki.apnic.net/member_repository/A91C9A8D/32F1F4C283E911ECB873C871C4F9AE02/4Y-ehXQ6vsrARiuP30On20pij_k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4Y-ehXQ6vsrARiuP30On20pij_k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 894 (0x37e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C9A8D/serialNumber=E18F9E85743ABECAC0462B8FDF43A7DB4A628FF9 Validity Not Before: Nov 23 00:26:15 2024 GMT Not After : Nov 30 00:26:14 2024 GMT Subject: CN=67412127-be54 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:2a:b2:de:4b:09:db:92:c8:17:30:03:cf:b3: 84:ab:11:62:39:11:c8:a6:bc:4a:b3:71:f3:6b:98: 02:65:80:54:bb:b6:fd:82:dc:e3:d7:27:d3:bf:69: 6f:fe:cf:0a:69:94:83:d4:fa:22:c4:e1:24:72:92: 46:0c:d8:17:05:bf:e6:28:c6:82:8b:6d:d6:b1:7b: 94:2c:ec:4c:af:34:fe:73:ed:d5:98:fd:6a:e1:bd: e0:3f:e5:b0:58:eb:06:88:66:e1:b4:0f:3f:c7:71: 53:7a:80:5f:11:d3:27:cb:09:4d:c3:54:b5:76:cb: 8a:82:49:ec:f6:2e:01:1e:9f:ff:d1:2e:53:21:37: 3e:f1:cf:2c:88:4c:0d:16:f2:a1:fa:90:cb:de:b9: 31:68:0a:fb:4f:25:29:43:e4:90:7d:b8:b6:61:c7: a6:45:cb:af:39:76:94:5e:6a:a0:51:b5:54:c1:1f: 25:ea:cc:39:ea:bc:96:54:ab:43:67:a6:ee:94:99: bd:32:7f:ec:4e:01:ee:b4:e2:af:17:fa:49:08:58: 49:b6:aa:9f:61:bb:78:d1:7c:ff:69:26:38:be:02: fd:f4:8f:9e:d6:c3:5e:e7:55:2a:7f:52:3d:d5:82: 2c:53:39:ec:28:d6:5a:ae:1d:f3:d8:ae:82:27:b1: 20:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:37:1C:0C:52:A1:10:A8:B2:94:0E:5A:AC:46:00:FD:23:26:57:8C X509v3 Authority Key Identifier: keyid:E1:8F:9E:85:74:3A:BE:CA:C0:46:2B:8F:DF:43:A7:DB:4A:62:8F:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C9A8D/32F1F4C283E911ECB873C871C4F9AE02/4Y-ehXQ6vsrARiuP30On20pij_k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4Y-ehXQ6vsrARiuP30On20pij_k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C9A8D/32F1F4C283E911ECB873C871C4F9AE02/4Y-ehXQ6vsrARiuP30On20pij_k.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption af:5b:75:ae:48:b6:02:27:78:d2:46:6f:b1:67:ed:42:19:f8: 46:50:0b:fe:df:77:42:f7:3b:38:7a:99:8f:04:59:3b:5d:d7: 62:06:41:a2:a8:92:02:e5:2f:01:9d:4b:4b:4d:ca:4b:87:23: 9e:d6:99:f3:65:bc:a8:08:1a:e0:42:bb:e4:20:33:91:1f:5c: 19:a1:97:bb:f1:86:1e:88:30:b7:55:29:d1:46:e5:f1:02:86: 4d:df:29:65:e0:96:e1:6c:3c:39:84:cc:fb:80:d5:72:10:b3: b5:cb:c9:9b:48:37:6f:6e:5b:b5:ff:ee:62:78:39:a6:cc:ad: b3:57:bd:b3:3a:0f:f8:dd:c5:ed:d2:64:b9:06:f4:fd:29:33: 0a:bf:21:a3:68:97:a6:21:b5:ae:85:33:57:0c:9e:e4:ea:1e: 90:05:ae:00:86:28:37:b7:ca:f4:6e:be:88:f5:ce:3d:5d:e0: bf:2d:bd:f7:d7:15:5f:ac:f7:61:ac:d7:11:a3:76:76:cc:9a: 0e:c7:e9:64:90:9b:65:6f:b3:54:36:d3:60:09:9d:35:2d:39: a6:dc:45:20:68:03:b1:99:50:60:af:00:ba:3b:61:46:9b:b3: e9:a4:45:53:c1:24:44:b2:93:6b:6f:79:35:52:e4:42:dc:87: 41:d0:49:ba -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA34wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzlBOEQxMTAvBgNVBAUTKEUxOEY5RTg1NzQzQUJFQ0FDMDQ2MkI4RkRGNDNBN0RC NEE2MjhGRjkwHhcNMjQxMTIzMDAyNjE1WhcNMjQxMTMwMDAyNjE0WjAYMRYwFAYD VQQDEw02NzQxMjEyNy1iZTU0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxCqy3ksJ25LIFzADz7OEqxFiORHIprxKs3Hza5gCZYBUu7b9gtzj1yfTv2lv /s8KaZSD1PoixOEkcpJGDNgXBb/mKMaCi23WsXuULOxMrzT+c+3VmP1q4b3gP+Ww WOsGiGbhtA8/x3FTeoBfEdMnywlNw1S1dsuKgkns9i4BHp//0S5TITc+8c8siEwN FvKh+pDL3rkxaAr7TyUpQ+SQfbi2YcemRcuvOXaUXmqgUbVUwR8l6sw56ryWVKtD Z6bulJm9Mn/sTgHutOKvF/pJCFhJtqqfYbt40Xz/aSY4vgL99I+e1sNe51Uqf1I9 1YIsUznsKNZarh3z2K6CJ7EgWwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFA03HAxS oRCospQOWqxGAP0jJleMMB8GA1UdIwQYMBaAFOGPnoV0Or7KwEYrj99Dp9tKYo/5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOUE4RC8zMkYxRjRDMjgz RTkxMUVDQjg3M0M4NzFDNEY5QUUwMi80WS1laFhRNnZzckFSaXVQMzBPbjIwcGlq X2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRZLWVoWFE2dnNyQVJpdVAzME9uMjBwaWpfay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD OUE4RC8zMkYxRjRDMjgzRTkxMUVDQjg3M0M4NzFDNEY5QUUwMi80WS1laFhRNnZz ckFSaXVQMzBPbjIwcGlqX2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCvW3WuSLYCJ3jSRm+xZ+1CGfhGUAv+33dC9zs4epmPBFk7XddiBkGi qJIC5S8BnUtLTcpLhyOe1pnzZbyoCBrgQrvkIDORH1wZoZe78YYeiDC3VSnRRuXx AoZN3yll4JbhbDw5hMz7gNVyELO1y8mbSDdvblu1/+5ieDmmzK2zV72zOg/43cXt 0mS5BvT9KTMKvyGjaJemIbWuhTNXDJ7k6h6QBa4Ahig3t8r0br6I9c49XeC/Lb33 1xVfrPdhrNcRo3Z2zJoOx+lkkJtlb7NUNtNgCZ01LTmm3EUgaAOxmVBgrwC6O2FG m7PppEVTwSREspNrb3k1UuRC3IdB0Em6 -----END CERTIFICATE-----Generated at Sat Nov 23 02:33:46 2024 by rpki-client on console-fra.rpki-client.org