$ rpki-client -vvf rpki.apnic.net/member_repository/A91CB86D/6F05820EE53E11EEA38F0877C4F9AE02/JWtdF5DSTE1slyBk6Rxq8AvWjjI.mft File: JWtdF5DSTE1slyBk6Rxq8AvWjjI.mft (raw, json) Hash identifier: ggH2f506hvX+k84/TzOlAW3ZPZmMO1AKyTd9gZaKCwk= Subject key identifier: 3C:BD:C6:BA:48:F4:70:B5:25:66:3E:D6:5C:6A:9B:18:F1:33:74:F4 Authority key identifier: 25:6B:5D:17:90:D2:4C:4D:6C:97:20:64:E9:1C:6A:F0:0B:D6:8E:32 Certificate issuer: /CN=A91CB86D/serialNumber=256B5D1790D24C4D6C972064E91C6AF00BD68E32 Certificate serial: 7F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JWtdF5DSTE1slyBk6Rxq8AvWjjI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CB86D/6F05820EE53E11EEA38F0877C4F9AE02/JWtdF5DSTE1slyBk6Rxq8AvWjjI.mft Manifest number: 7E Signing time: Thu 21 Nov 2024 04:46:28 +0000 Manifest this update: Thu 21 Nov 2024 04:46:28 +0000 Manifest next update: Thu 28 Nov 2024 04:46:28 +0000 Files and hashes: 1: JWtdF5DSTE1slyBk6Rxq8AvWjjI.crl (hash: edFvVthZMdIRCzXcxTK2Y1yIDUcMeDRHJcxbAwCatss=) 2: DC23F5180E1611EF91DF311EC4F9AE02.roa (hash: 5YTtYU8GaHrvE4yyR1EY9hka1AZ6ZuRNXoHQQl1jR3s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CB86D/6F05820EE53E11EEA38F0877C4F9AE02/JWtdF5DSTE1slyBk6Rxq8AvWjjI.crl rsync://rpki.apnic.net/member_repository/A91CB86D/6F05820EE53E11EEA38F0877C4F9AE02/JWtdF5DSTE1slyBk6Rxq8AvWjjI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JWtdF5DSTE1slyBk6Rxq8AvWjjI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 04:46:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 127 (0x7f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CB86D/serialNumber=256B5D1790D24C4D6C972064E91C6AF00BD68E32 Validity Not Before: Nov 21 04:46:28 2024 GMT Not After : Nov 28 04:46:28 2024 GMT Subject: CN=673ebb24-822b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:fe:94:96:01:63:09:06:c0:f9:62:73:35:0e: e5:b7:8a:42:89:06:b9:0d:9d:99:01:d9:0c:f3:37: 44:f9:6f:32:24:31:99:98:c1:fe:02:ff:1b:64:4a: 0b:36:71:f6:c6:db:71:83:d3:7c:ad:60:75:88:e0: 25:99:35:28:ed:ab:96:48:6a:30:62:02:ef:69:17: fa:73:dc:00:60:f9:56:47:1c:4d:eb:e2:c3:d3:e1: 68:0a:b2:f0:04:df:a9:6a:8c:c7:a3:1a:f2:5a:3e: d5:c2:c1:1c:8d:28:2d:5e:57:b0:90:15:08:f1:7b: 5f:3c:aa:24:5b:61:39:cf:b5:fa:b6:3a:06:a8:3f: 5a:08:28:fd:f2:8d:fc:9c:31:99:c4:13:12:b7:b7: 27:8b:40:5a:2b:07:15:e8:f3:6f:3d:d4:72:b5:72: e6:1a:e2:b0:fb:1d:62:83:ed:90:00:6e:a1:15:ff: a5:70:2b:b3:36:31:01:06:6b:f6:29:cd:1a:fe:a9: 73:d9:1a:ba:02:64:32:98:b6:98:c7:16:88:dc:70: c0:29:3f:1d:4f:d1:99:c9:ef:df:04:74:04:79:39: 84:e7:30:4f:52:71:5a:dc:03:77:73:ee:c7:90:83: 16:f0:82:c4:c4:72:50:0b:03:26:f3:83:e5:dc:5c: a7:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:BD:C6:BA:48:F4:70:B5:25:66:3E:D6:5C:6A:9B:18:F1:33:74:F4 X509v3 Authority Key Identifier: keyid:25:6B:5D:17:90:D2:4C:4D:6C:97:20:64:E9:1C:6A:F0:0B:D6:8E:32 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CB86D/6F05820EE53E11EEA38F0877C4F9AE02/JWtdF5DSTE1slyBk6Rxq8AvWjjI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JWtdF5DSTE1slyBk6Rxq8AvWjjI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CB86D/6F05820EE53E11EEA38F0877C4F9AE02/JWtdF5DSTE1slyBk6Rxq8AvWjjI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a3:67:b1:7d:12:fe:1d:a6:08:5a:54:fb:aa:9a:54:67:50:5c: 08:d6:d3:ad:c8:50:cf:f1:5f:11:7a:23:5d:5b:47:f4:52:06: cd:a8:18:5c:73:5e:03:b2:45:ac:c3:00:b0:06:39:83:fe:23: 6c:df:b4:39:6c:e1:eb:87:1d:ed:e3:71:5b:ea:b7:a3:f9:5e: fd:cb:a4:28:81:0e:ec:42:84:c3:54:39:92:74:6a:ff:c4:99: 3d:16:45:0e:43:f7:b3:1b:43:61:7d:ab:e3:46:96:3e:2d:52: fe:08:6f:1f:8d:28:42:76:14:96:88:9f:0f:f5:35:f1:35:82: 0f:67:cd:e2:d4:24:07:35:70:5c:69:e7:21:0a:eb:84:b4:24: 0d:b5:19:52:10:1e:37:f1:8e:02:30:d6:13:24:a0:93:b4:c6: 5e:b2:40:06:57:dd:90:c1:5e:0a:64:cb:93:85:52:91:c7:6c: 73:72:c7:b6:7c:68:49:aa:3f:f7:ab:03:49:07:83:93:3c:9c: be:cc:15:40:d7:9c:d6:81:f5:4b:30:96:18:82:a4:6c:ff:32: 04:0c:17:60:8e:0b:b7:64:6b:09:fa:34:23:77:ad:43:fd:f5: e6:b7:6b:c4:e1:b4:0a:f0:ce:07:47:4c:78:1b:51:9b:01:f6: 67:19:3f:cb -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBfzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD Qjg2RDExMC8GA1UEBRMoMjU2QjVEMTc5MEQyNEM0RDZDOTcyMDY0RTkxQzZBRjAw QkQ2OEUzMjAeFw0yNDExMjEwNDQ2MjhaFw0yNDExMjgwNDQ2MjhaMBgxFjAUBgNV BAMTDTY3M2ViYjI0LTgyMmIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDv/pSWAWMJBsD5YnM1DuW3ikKJBrkNnZkB2QzzN0T5bzIkMZmYwf4C/xtkSgs2 cfbG23GD03ytYHWI4CWZNSjtq5ZIajBiAu9pF/pz3ABg+VZHHE3r4sPT4WgKsvAE 36lqjMejGvJaPtXCwRyNKC1eV7CQFQjxe188qiRbYTnPtfq2OgaoP1oIKP3yjfyc MZnEExK3tyeLQForBxXo82891HK1cuYa4rD7HWKD7ZAAbqEV/6VwK7M2MQEGa/Yp zRr+qXPZGroCZDKYtpjHFojccMApPx1P0ZnJ798EdAR5OYTnME9ScVrcA3dz7seQ gxbwgsTEclALAybzg+XcXKfBAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUPL3Gukj0 cLUlZj7WXGqbGPEzdPQwHwYDVR0jBBgwFoAUJWtdF5DSTE1slyBk6Rxq8AvWjjIw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUNCODZELzZGMDU4MjBFRTUz RTExRUVBMzhGMDg3N0M0RjlBRTAyL0pXdGRGNURTVEUxc2x5Qms2UnhxOEF2V2pq SS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvSld0ZEY1RFNURTFzbHlCazZSeHE4QXZXampJLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUNC ODZELzZGMDU4MjBFRTUzRTExRUVBMzhGMDg3N0M0RjlBRTAyL0pXdGRGNURTVEUx c2x5Qms2UnhxOEF2V2pqSS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAKNnsX0S/h2mCFpU+6qaVGdQXAjW063IUM/xXxF6I11bR/RSBs2oGFxz XgOyRazDALAGOYP+I2zftDls4euHHe3jcVvqt6P5Xv3LpCiBDuxChMNUOZJ0av/E mT0WRQ5D97MbQ2F9q+NGlj4tUv4Ibx+NKEJ2FJaInw/1NfE1gg9nzeLUJAc1cFxp 5yEK64S0JA21GVIQHjfxjgIw1hMkoJO0xl6yQAZX3ZDBXgpky5OFUpHHbHNyx7Z8 aEmqP/erA0kHg5M8nL7MFUDXnNaB9UswlhiCpGz/MgQMF2COC7dkawn6NCN3rUP9 9ea3a8ThtArwzgdHTHgbUZsB9mcZP8s= -----END CERTIFICATE-----Generated at Thu Nov 21 06:50:50 2024 by rpki-client on console-fra.rpki-client.org