$ rpki-client -vvf rpki.apnic.net/member_repository/A91CB435/EC0590465BE911EB9668001EC4F9AE02/mMl-BS19mtU2CVm50-B22t126gE.mft File: mMl-BS19mtU2CVm50-B22t126gE.mft (raw, json) Hash identifier: nSvkrNd7yYR5nzpJuHaZZasZglGzvnQShWLkJBhkqTY= Subject key identifier: C7:E2:67:B2:95:C4:F7:3B:45:E2:ED:18:FA:18:3B:83:03:5B:15:96 Authority key identifier: 98:C9:7E:05:2D:7D:9A:D5:36:09:59:B9:D3:E0:76:DA:DD:76:EA:01 Certificate issuer: /CN=A91CB435/serialNumber=98C97E052D7D9AD5360959B9D3E076DADD76EA01 Certificate serial: 0670 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/mMl-BS19mtU2CVm50-B22t126gE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CB435/EC0590465BE911EB9668001EC4F9AE02/mMl-BS19mtU2CVm50-B22t126gE.mft Manifest number: 0665 Signing time: Wed 20 Nov 2024 21:57:15 +0000 Manifest this update: Wed 20 Nov 2024 21:57:14 +0000 Manifest next update: Wed 27 Nov 2024 21:57:14 +0000 Files and hashes: 1: mMl-BS19mtU2CVm50-B22t126gE.crl (hash: i/Nowd0kmc8KzOp+OPbKcoibLPQEcpz1MHifR/7/XXM=) 2: F07A52005BEA11EB9863331EC4F9AE02.roa (hash: JfxeOd6cRi7KX9xc58yMMc6yyj7Cm4GP42UD9FpSFGI=) 3: F1541C9C5BEA11EB9863331EC4F9AE02.roa (hash: In2tzB1kyTLYqr+oV0wjHkiLI0adEmKOWeAAfiinzls=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CB435/EC0590465BE911EB9668001EC4F9AE02/mMl-BS19mtU2CVm50-B22t126gE.crl rsync://rpki.apnic.net/member_repository/A91CB435/EC0590465BE911EB9668001EC4F9AE02/mMl-BS19mtU2CVm50-B22t126gE.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/mMl-BS19mtU2CVm50-B22t126gE.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 19:46:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1648 (0x670) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CB435/serialNumber=98C97E052D7D9AD5360959B9D3E076DADD76EA01 Validity Not Before: Nov 20 21:57:14 2024 GMT Not After : Nov 27 21:57:14 2024 GMT Subject: CN=673e5b3a-0b56 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:51:0a:63:29:91:ab:38:d3:58:9a:33:4a:dc: 36:54:6a:42:aa:4e:10:86:75:6a:8f:3d:ff:52:df: 94:b4:96:ac:ec:3a:89:10:54:eb:26:8e:55:88:4d: 28:32:45:c3:79:ca:c8:b8:6c:b2:9f:65:4e:e4:c7: 53:97:3f:62:55:ee:f7:3f:d3:74:bd:8e:a6:b6:ed: 34:7a:98:e6:94:47:f9:6e:51:fe:57:ec:e1:8c:6f: 25:d3:1b:53:60:85:54:c3:42:ac:cc:78:12:6e:ad: f2:9c:ba:aa:42:02:f1:0f:de:48:e2:a2:e9:fd:39: 8d:20:d0:9e:08:67:67:89:08:d6:6a:9b:6f:c6:1d: f7:2b:97:40:61:db:17:ef:91:7a:59:d9:03:23:99: 18:83:18:70:53:af:68:a0:2d:de:d6:e6:ce:ec:9d: 43:62:7f:fd:48:90:eb:28:f2:73:46:19:08:9c:a3: c2:60:a9:b8:f5:54:1b:b1:55:f7:92:61:1a:14:e8: 8b:09:9f:58:0c:80:30:d9:28:a0:61:34:4a:95:e7: 65:7b:db:2a:94:8c:63:29:1d:0f:27:4c:26:7c:a1: b3:dd:bb:90:88:2a:f8:08:58:be:63:5a:88:be:11: 81:81:62:b5:72:92:d8:6a:3f:c4:58:ef:45:bd:7d: ee:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:E2:67:B2:95:C4:F7:3B:45:E2:ED:18:FA:18:3B:83:03:5B:15:96 X509v3 Authority Key Identifier: keyid:98:C9:7E:05:2D:7D:9A:D5:36:09:59:B9:D3:E0:76:DA:DD:76:EA:01 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CB435/EC0590465BE911EB9668001EC4F9AE02/mMl-BS19mtU2CVm50-B22t126gE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/mMl-BS19mtU2CVm50-B22t126gE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CB435/EC0590465BE911EB9668001EC4F9AE02/mMl-BS19mtU2CVm50-B22t126gE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 36:96:98:c4:30:ae:44:4f:5b:a5:03:8c:7a:bc:f0:15:8d:03: 64:93:dd:0c:81:b4:f9:92:4a:09:6d:40:8f:ec:13:72:21:16: f8:82:61:c8:26:05:d2:2e:2e:ef:47:46:ae:d1:8f:c7:32:cc: 60:a8:e3:37:5c:f3:a2:80:96:5e:a6:7d:80:b7:71:59:21:a5: ad:f5:ae:19:37:c6:48:dc:bf:74:a2:9a:a8:30:f3:d2:be:b8: a9:bb:d2:52:61:ff:c5:9a:11:e0:98:f0:fa:1e:74:bc:24:34: 70:bf:5e:41:8b:72:97:42:9a:1b:4a:bf:99:9c:e4:47:38:9e: 0e:9e:29:da:56:0d:f4:7c:aa:d1:06:b6:96:8e:de:c0:cc:30: 76:f1:03:40:2b:06:f8:c1:6b:db:4c:7a:a7:3a:a3:84:f1:94: d5:60:bd:8b:92:f8:ea:05:77:70:e5:f3:5e:8d:b5:cf:de:cf: b6:38:2d:88:dc:20:80:c5:5e:33:6e:8e:28:22:b4:2e:27:04: 02:f0:02:f4:e4:94:57:06:e9:84:9d:fc:58:2b:0d:ce:b8:a5: cf:d9:03:5a:0b:35:2b:da:b8:85:3a:e3:4d:7b:9d:81:62:52: 7a:60:4f:8d:86:e5:96:1c:29:8e:4d:16:ff:97:2c:84:99:73: 4d:53:db:bc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBnAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0I0MzUxMTAvBgNVBAUTKDk4Qzk3RTA1MkQ3RDlBRDUzNjA5NTlCOUQzRTA3NkRB REQ3NkVBMDEwHhcNMjQxMTIwMjE1NzE0WhcNMjQxMTI3MjE1NzE0WjAYMRYwFAYD VQQDEw02NzNlNWIzYS0wYjU2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqlEKYymRqzjTWJozStw2VGpCqk4QhnVqjz3/Ut+UtJas7DqJEFTrJo5ViE0o MkXDecrIuGyyn2VO5MdTlz9iVe73P9N0vY6mtu00epjmlEf5blH+V+zhjG8l0xtT YIVUw0KszHgSbq3ynLqqQgLxD95I4qLp/TmNINCeCGdniQjWaptvxh33K5dAYdsX 75F6WdkDI5kYgxhwU69ooC3e1ubO7J1DYn/9SJDrKPJzRhkInKPCYKm49VQbsVX3 kmEaFOiLCZ9YDIAw2SigYTRKledle9sqlIxjKR0PJ0wmfKGz3buQiCr4CFi+Y1qI vhGBgWK1cpLYaj/EWO9FvX3ulwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMfiZ7KV xPc7ReLtGPoYO4MDWxWWMB8GA1UdIwQYMBaAFJjJfgUtfZrVNglZudPgdtrdduoB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQjQzNS9FQzA1OTA0NjVC RTkxMUVCOTY2ODAwMUVDNEY5QUUwMi9tTWwtQlMxOW10VTJDVm01MC1CMjJ0MTI2 Z0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL21NbC1CUzE5bXRVMkNWbTUwLUIyMnQxMjZnRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD QjQzNS9FQzA1OTA0NjVCRTkxMUVCOTY2ODAwMUVDNEY5QUUwMi9tTWwtQlMxOW10 VTJDVm01MC1CMjJ0MTI2Z0UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA2lpjEMK5ET1ulA4x6vPAVjQNkk90MgbT5kkoJbUCP7BNyIRb4gmHI JgXSLi7vR0au0Y/HMsxgqOM3XPOigJZepn2At3FZIaWt9a4ZN8ZI3L90opqoMPPS vripu9JSYf/FmhHgmPD6HnS8JDRwv15Bi3KXQpobSr+ZnORHOJ4OninaVg30fKrR BraWjt7AzDB28QNAKwb4wWvbTHqnOqOE8ZTVYL2LkvjqBXdw5fNejbXP3s+2OC2I 3CCAxV4zbo4oIrQuJwQC8AL05JRXBumEnfxYKw3OuKXP2QNaCzUr2riFOuNNe52B YlJ6YE+NhuWWHCmOTRb/lyyEmXNNU9u8 -----END CERTIFICATE-----Generated at Wed Nov 20 23:11:48 2024 by rpki-client on console-fra.rpki-client.org