$ rpki-client -vvf rpki.apnic.net/member_repository/A91CD4E0/834571168D7B11EB8D8BD60BC4F9AE02/07TuvD2fWh6iApZpmumSiBsdjf0.mft File: 07TuvD2fWh6iApZpmumSiBsdjf0.mft (raw, json) Hash identifier: yb0HqLlLyRA+QEO9lgr8cwPzBEYhUR4lwKVNfH9fCvE= Subject key identifier: A1:9A:A3:E2:ED:2E:7C:7A:26:29:C4:81:B5:71:13:E2:A3:D1:00:3B Authority key identifier: D3:B4:EE:BC:3D:9F:5A:1E:A2:02:96:69:9A:E9:92:88:1B:1D:8D:FD Certificate issuer: /CN=A91CD4E0/serialNumber=D3B4EEBC3D9F5A1EA20296699AE992881B1D8DFD Certificate serial: 05F1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/07TuvD2fWh6iApZpmumSiBsdjf0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CD4E0/834571168D7B11EB8D8BD60BC4F9AE02/07TuvD2fWh6iApZpmumSiBsdjf0.mft Manifest number: 05EF Signing time: Fri 22 Nov 2024 14:49:38 +0000 Manifest this update: Fri 22 Nov 2024 14:49:38 +0000 Manifest next update: Fri 29 Nov 2024 14:49:38 +0000 Files and hashes: 1: 07TuvD2fWh6iApZpmumSiBsdjf0.crl (hash: b2zUY3UxOAcG0Z558XvuQZ1ZPrkOix4ObFFivNCoMu0=) 2: E969742CB33B11EEB4D87842C4F9AE02.roa (hash: /bP5RMzdbkL7/5EZqhq7cO3FfNuTY5k1xdEgv+lDTck=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CD4E0/834571168D7B11EB8D8BD60BC4F9AE02/07TuvD2fWh6iApZpmumSiBsdjf0.crl rsync://rpki.apnic.net/member_repository/A91CD4E0/834571168D7B11EB8D8BD60BC4F9AE02/07TuvD2fWh6iApZpmumSiBsdjf0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/07TuvD2fWh6iApZpmumSiBsdjf0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 14:49:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1521 (0x5f1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CD4E0/serialNumber=D3B4EEBC3D9F5A1EA20296699AE992881B1D8DFD Validity Not Before: Nov 22 14:49:38 2024 GMT Not After : Nov 29 14:49:38 2024 GMT Subject: CN=67409a02-5a54 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:5f:5c:36:22:01:c3:0e:9b:40:df:8d:d2:82: 4e:5a:6a:37:b5:73:53:2b:99:37:94:b9:87:aa:fb: f3:22:23:26:c4:40:a5:e8:56:12:95:ff:0a:a4:d6: 6d:13:a0:42:a7:0f:e6:09:6f:11:45:ab:2d:03:3f: de:fd:86:66:25:d2:21:c5:6b:e6:0e:55:f0:b6:f4: 6e:8a:d8:56:bb:f0:61:a6:f4:47:72:c3:f5:9a:a2: cd:48:6f:6a:97:3a:17:9a:2e:1c:7e:5c:d7:ed:3a: a8:ce:10:c3:8e:7b:e3:04:6a:d2:80:f4:18:8e:48: f2:8c:50:f2:88:0c:6a:54:9d:bc:72:c4:fa:d7:bc: cd:d4:1a:54:17:34:fa:83:d3:26:2a:e4:8b:32:89: 10:f0:93:a9:78:6a:8c:a0:af:c9:90:1a:4a:34:65: fc:34:04:e2:60:ac:a6:ad:e3:4c:b4:4d:38:94:11: f1:5a:42:5c:60:fb:8f:56:53:6f:df:bf:20:f7:66: 16:67:47:3c:07:d1:90:dc:23:14:50:d2:af:6c:01: 9c:a6:62:58:a5:01:8a:e9:6f:3e:1c:0f:16:ba:dd: b2:5b:dd:ef:dc:1d:75:45:3d:0f:b1:04:87:21:26: 48:c7:87:1c:6d:c2:d4:88:f2:81:67:44:90:42:6b: f3:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:9A:A3:E2:ED:2E:7C:7A:26:29:C4:81:B5:71:13:E2:A3:D1:00:3B X509v3 Authority Key Identifier: keyid:D3:B4:EE:BC:3D:9F:5A:1E:A2:02:96:69:9A:E9:92:88:1B:1D:8D:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CD4E0/834571168D7B11EB8D8BD60BC4F9AE02/07TuvD2fWh6iApZpmumSiBsdjf0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/07TuvD2fWh6iApZpmumSiBsdjf0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CD4E0/834571168D7B11EB8D8BD60BC4F9AE02/07TuvD2fWh6iApZpmumSiBsdjf0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 65:fe:7d:77:b8:10:85:da:59:b8:7b:d1:6d:e2:65:7c:77:2f: 30:d0:8f:4e:3f:3e:d7:1d:35:17:b7:c1:9b:9c:6c:25:47:9e: 74:b7:93:38:3d:fa:51:22:1c:af:4f:b2:0c:6a:b8:2d:bc:83: 41:86:ff:74:15:4f:eb:83:fe:57:29:6a:0a:cf:fd:a3:18:df: db:10:76:09:a6:88:f3:82:5e:bb:17:dc:b6:06:9d:7e:0d:a6: 36:53:46:80:5c:c0:48:0c:e0:e2:f5:0f:fd:d8:44:b9:f4:87: ca:15:47:0a:6e:a8:c9:21:a1:ca:32:43:54:f1:4f:ce:fb:02: fc:e2:33:c0:0b:fd:84:01:02:55:43:d7:84:82:5b:18:13:62: ff:96:1f:8a:55:0c:46:ef:ec:4b:a3:a1:f8:77:a5:58:e6:0b: e1:7a:9a:84:4b:7a:e7:a3:ba:f4:32:c8:f4:bb:6f:85:d5:99: 06:db:aa:91:e4:a6:64:2d:0a:19:46:2a:66:af:a4:4c:8f:b9: 5d:df:80:ab:48:a1:9d:4d:2e:6e:75:58:b7:71:2a:03:78:6e: b6:0c:1f:09:63:01:2b:7c:15:cb:52:f0:3a:11:bb:0f:c7:a5: 7d:6a:8a:16:50:7e:38:dd:1e:77:9c:21:ff:71:c1:70:b0:0f: 98:b4:08:f4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBfEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0Q0RTAxMTAvBgNVBAUTKEQzQjRFRUJDM0Q5RjVBMUVBMjAyOTY2OTlBRTk5Mjg4 MUIxRDhERkQwHhcNMjQxMTIyMTQ0OTM4WhcNMjQxMTI5MTQ0OTM4WjAYMRYwFAYD VQQDEw02NzQwOWEwMi01YTU0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA219cNiIBww6bQN+N0oJOWmo3tXNTK5k3lLmHqvvzIiMmxECl6FYSlf8KpNZt E6BCpw/mCW8RRastAz/e/YZmJdIhxWvmDlXwtvRuithWu/BhpvRHcsP1mqLNSG9q lzoXmi4cflzX7TqozhDDjnvjBGrSgPQYjkjyjFDyiAxqVJ28csT617zN1BpUFzT6 g9MmKuSLMokQ8JOpeGqMoK/JkBpKNGX8NATiYKymreNMtE04lBHxWkJcYPuPVlNv 378g92YWZ0c8B9GQ3CMUUNKvbAGcpmJYpQGK6W8+HA8Wut2yW93v3B11RT0PsQSH ISZIx4ccbcLUiPKBZ0SQQmvzTQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKGao+Lt Lnx6JinEgbVxE+Kj0QA7MB8GA1UdIwQYMBaAFNO07rw9n1oeogKWaZrpkogbHY39 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRDRFMC84MzQ1NzExNjhE N0IxMUVCOEQ4QkQ2MEJDNEY5QUUwMi8wN1R1dkQyZldoNmlBcFpwbXVtU2lCc2Rq ZjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzA3VHV2RDJmV2g2aUFwWnBtdW1TaUJzZGpmMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RDRFMC84MzQ1NzExNjhEN0IxMUVCOEQ4QkQ2MEJDNEY5QUUwMi8wN1R1dkQyZldo NmlBcFpwbXVtU2lCc2RqZjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBl/n13uBCF2lm4e9Ft4mV8dy8w0I9OPz7XHTUXt8GbnGwlR550t5M4 PfpRIhyvT7IMargtvINBhv90FU/rg/5XKWoKz/2jGN/bEHYJpojzgl67F9y2Bp1+ DaY2U0aAXMBIDODi9Q/92ES59IfKFUcKbqjJIaHKMkNU8U/O+wL84jPAC/2EAQJV Q9eEglsYE2L/lh+KVQxG7+xLo6H4d6VY5gvhepqES3rno7r0Msj0u2+F1ZkG26qR 5KZkLQoZRipmr6RMj7ld34CrSKGdTS5udVi3cSoDeG62DB8JYwErfBXLUvA6EbsP x6V9aooWUH443R53nCH/ccFwsA+YtAj0 -----END CERTIFICATE-----Generated at Fri Nov 22 16:50:04 2024 by rpki-client on console-ams.rpki-client.org