$ rpki-client -vvf rpki.apnic.net/member_repository/A91CABF0/D96BA660C09911EEB9505A41C4F9AE02/_IholOLXDjUuTxaAUsUbBasFrMU.mft File: _IholOLXDjUuTxaAUsUbBasFrMU.mft (raw, json) Hash identifier: qBfo2FIy4JJ7PCh6dlaJ89S1r3Yjif46LUpO5QNt0Fg= Subject key identifier: E2:41:51:9D:CB:68:AE:A0:69:56:98:5A:B8:5D:1B:1B:91:29:01:B4 Authority key identifier: FC:88:68:94:E2:D7:0E:35:2E:4F:16:80:52:C5:1B:05:AB:05:AC:C5 Certificate issuer: /CN=A91CABF0/serialNumber=FC886894E2D70E352E4F168052C51B05AB05ACC5 Certificate serial: 9B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_IholOLXDjUuTxaAUsUbBasFrMU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CABF0/D96BA660C09911EEB9505A41C4F9AE02/_IholOLXDjUuTxaAUsUbBasFrMU.mft Manifest number: 99 Signing time: Sat 23 Nov 2024 04:25:26 +0000 Manifest this update: Sat 23 Nov 2024 04:25:25 +0000 Manifest next update: Sat 30 Nov 2024 04:25:25 +0000 Files and hashes: 1: _IholOLXDjUuTxaAUsUbBasFrMU.crl (hash: 7ivXYmL86lmWpM+q2ZYl3FowtdWoiS0fwMHoUTKARu0=) 2: 740B66A6C09A11EE9839DC42C4F9AE02.roa (hash: NOsPGGlDSlCfn8hbBHu4EWI+usdJzaN80KZom3HQWsg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CABF0/D96BA660C09911EEB9505A41C4F9AE02/_IholOLXDjUuTxaAUsUbBasFrMU.crl rsync://rpki.apnic.net/member_repository/A91CABF0/D96BA660C09911EEB9505A41C4F9AE02/_IholOLXDjUuTxaAUsUbBasFrMU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_IholOLXDjUuTxaAUsUbBasFrMU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 155 (0x9b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CABF0/serialNumber=FC886894E2D70E352E4F168052C51B05AB05ACC5 Validity Not Before: Nov 23 04:25:25 2024 GMT Not After : Nov 30 04:25:25 2024 GMT Subject: CN=67415936-a93e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:7a:e5:c5:5c:e6:5d:94:ed:d3:e5:02:3c:50: 1b:b1:6c:69:33:84:1c:26:a7:02:55:1b:6a:fb:dc: 52:bc:6b:56:40:e3:8a:02:50:17:8d:6d:50:59:da: 96:d1:ff:a2:18:6d:58:72:c2:13:99:4b:2e:f9:b4: 51:ff:30:c6:6e:20:74:0f:a9:c2:f2:63:87:9e:8c: d8:88:46:46:ce:7d:9a:bf:12:ec:e6:07:84:c4:78: a8:1f:bc:22:64:cb:70:70:0a:38:7f:1a:e5:14:11: 87:94:9c:90:01:65:9b:34:90:6b:b3:9e:b3:ec:2c: d0:20:09:41:d5:34:89:a5:e5:3e:81:91:11:f7:07: 5f:58:f7:cf:23:21:61:60:98:32:82:12:6f:9e:7d: ff:8e:ef:10:71:1e:e6:85:53:c9:bb:23:78:a9:d3: a5:e4:ca:fb:a4:f6:1e:0b:cf:08:14:cd:44:81:18: 8a:86:fc:95:b4:ca:7b:fa:4d:13:b2:55:4e:98:e0: 39:e4:de:1c:f1:3e:57:a6:ac:5e:cf:b7:b9:0a:e3: 61:7a:a8:ec:c6:18:73:00:96:d5:c0:77:62:31:e5: a0:ac:8d:c8:cc:8d:cb:e8:e7:39:fe:a0:7b:70:94: bb:a9:46:e8:19:4e:5b:bb:7d:65:f7:63:91:3a:3d: d8:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:41:51:9D:CB:68:AE:A0:69:56:98:5A:B8:5D:1B:1B:91:29:01:B4 X509v3 Authority Key Identifier: keyid:FC:88:68:94:E2:D7:0E:35:2E:4F:16:80:52:C5:1B:05:AB:05:AC:C5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CABF0/D96BA660C09911EEB9505A41C4F9AE02/_IholOLXDjUuTxaAUsUbBasFrMU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_IholOLXDjUuTxaAUsUbBasFrMU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CABF0/D96BA660C09911EEB9505A41C4F9AE02/_IholOLXDjUuTxaAUsUbBasFrMU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 12:a2:87:26:93:e4:b5:d1:b6:cd:ab:79:f2:75:a2:0d:3b:c5: 70:ab:62:0e:c1:96:7e:c5:fb:87:f2:0f:74:6f:12:92:ee:27: d1:62:e0:09:c1:2c:66:e7:42:af:f9:1d:3e:32:30:e5:4f:0b: 96:18:a1:f8:d2:33:cb:c2:ea:12:9e:1b:4d:3c:7b:8f:0c:89: 19:1a:61:ae:2f:ab:cc:b2:13:75:29:4c:48:a2:dc:a6:56:81: e2:84:3b:c7:ce:54:50:50:72:24:4b:c3:fc:77:65:da:ab:51: 57:36:81:8d:00:c7:02:e0:ca:ba:73:08:61:1a:d9:fe:62:3b: 20:1d:e7:a8:80:e7:bc:5c:f1:58:36:4a:44:af:95:f5:35:51: 03:98:7b:d3:35:e5:f6:86:86:2d:a7:95:2d:ae:82:10:e1:5f: 8c:9a:a5:69:1a:41:31:eb:bc:c9:66:71:6d:7e:7f:c3:66:12: 24:bd:ce:38:49:c1:bd:35:dd:f3:fc:a1:eb:59:ec:df:41:a4: 3d:d2:41:86:60:8f:a0:ba:1b:21:34:c0:4d:34:de:ca:10:22: 6c:dd:03:31:06:1e:eb:51:4c:aa:2f:12:6f:7b:b4:d2:40:ac: 9f:14:65:00:32:bd:a2:08:5b:b7:60:02:f3:ac:1a:63:fa:84: 67:ec:5b:ea -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0FCRjAxMTAvBgNVBAUTKEZDODg2ODk0RTJENzBFMzUyRTRGMTY4MDUyQzUxQjA1 QUIwNUFDQzUwHhcNMjQxMTIzMDQyNTI1WhcNMjQxMTMwMDQyNTI1WjAYMRYwFAYD VQQDEw02NzQxNTkzNi1hOTNlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxHrlxVzmXZTt0+UCPFAbsWxpM4QcJqcCVRtq+9xSvGtWQOOKAlAXjW1QWdqW 0f+iGG1YcsITmUsu+bRR/zDGbiB0D6nC8mOHnozYiEZGzn2avxLs5geExHioH7wi ZMtwcAo4fxrlFBGHlJyQAWWbNJBrs56z7CzQIAlB1TSJpeU+gZER9wdfWPfPIyFh YJgyghJvnn3/ju8QcR7mhVPJuyN4qdOl5Mr7pPYeC88IFM1EgRiKhvyVtMp7+k0T slVOmOA55N4c8T5Xpqxez7e5CuNheqjsxhhzAJbVwHdiMeWgrI3IzI3L6Oc5/qB7 cJS7qUboGU5bu31l92OROj3YiwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOJBUZ3L aK6gaVaYWrhdGxuRKQG0MB8GA1UdIwQYMBaAFPyIaJTi1w41Lk8WgFLFGwWrBazF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQUJGMC9EOTZCQTY2MEMw OTkxMUVFQjk1MDVBNDFDNEY5QUUwMi9fSWhvbE9MWERqVXVUeGFBVXNVYkJhc0Zy TVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL19JaG9sT0xYRGpVdVR4YUFVc1ViQmFzRnJNVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD QUJGMC9EOTZCQTY2MEMwOTkxMUVFQjk1MDVBNDFDNEY5QUUwMi9fSWhvbE9MWERq VXVUeGFBVXNVYkJhc0ZyTVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQASoocmk+S10bbNq3nydaINO8Vwq2IOwZZ+xfuH8g90bxKS7ifRYuAJ wSxm50Kv+R0+MjDlTwuWGKH40jPLwuoSnhtNPHuPDIkZGmGuL6vMshN1KUxIotym VoHihDvHzlRQUHIkS8P8d2Xaq1FXNoGNAMcC4Mq6cwhhGtn+YjsgHeeogOe8XPFY NkpEr5X1NVEDmHvTNeX2hoYtp5UtroIQ4V+MmqVpGkEx67zJZnFtfn/DZhIkvc44 ScG9Nd3z/KHrWezfQaQ90kGGYI+guhshNMBNNN7KECJs3QMxBh7rUUyqLxJve7TS QKyfFGUAMr2iCFu3YALzrBpj+oRn7Fvq -----END CERTIFICATE-----Generated at Sat Nov 23 06:21:29 2024 by rpki-client on console-fra.rpki-client.org