$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE216/AF57B6FCFE2811EAA7350158C4F9AE02/aKT8gS0BkTY-HEoTCZ9TsCc3ZXk.mft File: aKT8gS0BkTY-HEoTCZ9TsCc3ZXk.mft (raw, json) Hash identifier: PeAjgGoFTHHIRQ8JFaKqZjud7QAdhNEGwGT3msGw09s= Subject key identifier: 50:ED:46:AA:AF:CF:F8:7C:80:AE:2B:7A:8D:E6:BF:8D:E6:7D:82:10 Authority key identifier: 68:A4:FC:81:2D:01:91:36:3E:1C:4A:13:09:9F:53:B0:27:37:65:79 Certificate issuer: /CN=A91CE216/serialNumber=68A4FC812D0191363E1C4A13099F53B027376579 Certificate serial: 0758 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aKT8gS0BkTY-HEoTCZ9TsCc3ZXk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE216/AF57B6FCFE2811EAA7350158C4F9AE02/aKT8gS0BkTY-HEoTCZ9TsCc3ZXk.mft Manifest number: 0753 Signing time: Fri 22 Nov 2024 21:04:50 +0000 Manifest this update: Fri 22 Nov 2024 21:04:49 +0000 Manifest next update: Fri 29 Nov 2024 21:04:49 +0000 Files and hashes: 1: aKT8gS0BkTY-HEoTCZ9TsCc3ZXk.crl (hash: nMaNl5Tl+OxyG8c5U45JnelrSAD/p2UqoRFdkrsxhhE=) 2: 7F2355F2FE2A11EA8A51B85AC4F9AE02.roa (hash: IA44NsOrK26vTiCAA24OiQTy1Evi9ojQ75K61lOkBEo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE216/AF57B6FCFE2811EAA7350158C4F9AE02/aKT8gS0BkTY-HEoTCZ9TsCc3ZXk.crl rsync://rpki.apnic.net/member_repository/A91CE216/AF57B6FCFE2811EAA7350158C4F9AE02/aKT8gS0BkTY-HEoTCZ9TsCc3ZXk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aKT8gS0BkTY-HEoTCZ9TsCc3ZXk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1880 (0x758) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE216/serialNumber=68A4FC812D0191363E1C4A13099F53B027376579 Validity Not Before: Nov 22 21:04:49 2024 GMT Not After : Nov 29 21:04:49 2024 GMT Subject: CN=6740f1f2-8b79 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:6c:87:b8:28:43:09:92:dc:8d:3a:8a:16:05: 67:ed:6c:e7:e5:19:d7:d3:22:d2:15:68:89:b1:d2: 52:4d:60:a6:ff:c5:25:99:11:4e:b5:34:19:38:9f: 60:15:dd:97:d2:8a:04:13:28:1a:9a:e2:f5:12:f1: e1:d5:4a:60:dd:43:bd:77:89:9e:15:7d:80:e4:0d: 11:ad:49:a7:e7:ea:e9:91:8d:37:e9:ed:8d:16:77: 70:63:5c:3d:83:be:09:37:60:09:75:80:0c:ce:46: 2f:77:71:df:43:98:ff:18:ce:95:32:e6:dd:5d:59: 77:be:cc:b7:3f:e5:04:d8:4e:a7:61:34:3c:7a:f2: a4:27:2d:4f:39:35:17:82:e8:41:98:8a:61:9c:dd: 60:6f:da:2a:ff:de:2f:f7:40:7d:86:72:c2:87:c0: 77:e5:d8:b1:69:0f:e5:81:b4:20:05:0f:ff:c0:23: 34:e5:44:53:20:bc:ad:38:98:3d:29:8e:3d:1d:2e: f5:2d:c0:c7:41:68:b0:71:69:c8:1e:7c:72:8c:3b: 0f:38:16:80:97:b1:00:7b:69:83:0a:0e:94:60:cb: 66:ac:bf:3f:98:ab:a9:6d:88:68:a5:e6:91:fc:df: fa:18:74:12:33:48:dc:ad:6c:f1:76:1a:40:70:6e: 2e:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:ED:46:AA:AF:CF:F8:7C:80:AE:2B:7A:8D:E6:BF:8D:E6:7D:82:10 X509v3 Authority Key Identifier: keyid:68:A4:FC:81:2D:01:91:36:3E:1C:4A:13:09:9F:53:B0:27:37:65:79 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE216/AF57B6FCFE2811EAA7350158C4F9AE02/aKT8gS0BkTY-HEoTCZ9TsCc3ZXk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aKT8gS0BkTY-HEoTCZ9TsCc3ZXk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE216/AF57B6FCFE2811EAA7350158C4F9AE02/aKT8gS0BkTY-HEoTCZ9TsCc3ZXk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2e:c4:c0:f4:75:46:91:b7:24:09:8d:30:9f:1c:a7:f5:a7:32: ab:cd:4d:bf:6d:95:5d:44:82:f8:69:da:b2:d1:76:42:0f:f0: d8:72:bd:94:a4:25:9b:bb:ad:1e:e7:49:78:af:15:60:04:83: 34:17:f0:5e:8f:4f:98:a3:d3:e7:80:42:c5:74:3f:55:ba:ff: 5a:1a:0b:10:e7:c8:6e:a0:2b:e5:f9:1c:e3:2b:e5:e4:c6:35: db:35:c4:26:90:45:b7:f4:62:da:18:6a:ad:09:56:df:d1:47: 84:35:c4:a2:f6:2e:71:d8:1f:0f:fb:52:bd:27:d5:1f:df:b3: 20:5a:78:7c:c6:ef:dc:a6:e3:f9:e4:67:2a:8c:d1:fc:9f:47: a8:ce:7b:23:31:3b:52:74:78:14:ba:26:71:8f:ac:70:cc:46: f0:71:f5:93:5b:d3:99:24:64:49:68:12:96:c7:0b:2f:14:e0: d5:6b:dc:0d:13:05:0b:41:d3:c1:64:bd:99:74:ef:21:cc:40: 4b:4d:a3:81:2b:de:3d:da:68:14:62:76:9e:3c:b4:bd:8b:41: ad:0d:d6:82:7d:8a:9c:31:ef:55:36:4d:a1:f5:99:2c:e5:af: 9b:d7:3d:12:13:97:b9:ed:fb:7c:52:a5:37:03:16:62:d2:3f: 5e:0e:42:99 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB1gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0UyMTYxMTAvBgNVBAUTKDY4QTRGQzgxMkQwMTkxMzYzRTFDNEExMzA5OUY1M0Iw MjczNzY1NzkwHhcNMjQxMTIyMjEwNDQ5WhcNMjQxMTI5MjEwNDQ5WjAYMRYwFAYD VQQDEw02NzQwZjFmMi04Yjc5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2GyHuChDCZLcjTqKFgVn7Wzn5RnX0yLSFWiJsdJSTWCm/8UlmRFOtTQZOJ9g Fd2X0ooEEygamuL1EvHh1Upg3UO9d4meFX2A5A0RrUmn5+rpkY036e2NFndwY1w9 g74JN2AJdYAMzkYvd3HfQ5j/GM6VMubdXVl3vsy3P+UE2E6nYTQ8evKkJy1POTUX guhBmIphnN1gb9oq/94v90B9hnLCh8B35dixaQ/lgbQgBQ//wCM05URTILytOJg9 KY49HS71LcDHQWiwcWnIHnxyjDsPOBaAl7EAe2mDCg6UYMtmrL8/mKupbYhopeaR /N/6GHQSM0jcrWzxdhpAcG4u4wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFDtRqqv z/h8gK4reo3mv43mfYIQMB8GA1UdIwQYMBaAFGik/IEtAZE2PhxKEwmfU7AnN2V5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTIxNi9BRjU3QjZGQ0ZF MjgxMUVBQTczNTAxNThDNEY5QUUwMi9hS1Q4Z1MwQmtUWS1IRW9UQ1o5VHNDYzNa WGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FLVDhnUzBCa1RZLUhFb1RDWjlUc0NjM1pYay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RTIxNi9BRjU3QjZGQ0ZFMjgxMUVBQTczNTAxNThDNEY5QUUwMi9hS1Q4Z1MwQmtU WS1IRW9UQ1o5VHNDYzNaWGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAuxMD0dUaRtyQJjTCfHKf1pzKrzU2/bZVdRIL4adqy0XZCD/DYcr2U pCWbu60e50l4rxVgBIM0F/Bej0+Yo9PngELFdD9Vuv9aGgsQ58huoCvl+RzjK+Xk xjXbNcQmkEW39GLaGGqtCVbf0UeENcSi9i5x2B8P+1K9J9Uf37MgWnh8xu/cpuP5 5GcqjNH8n0eoznsjMTtSdHgUuiZxj6xwzEbwcfWTW9OZJGRJaBKWxwsvFODVa9wN EwULQdPBZL2ZdO8hzEBLTaOBK9492mgUYnaePLS9i0GtDdaCfYqcMe9VNk2h9Zks 5a+b1z0SE5e57ft8UqU3AxZi0j9eDkKZ -----END CERTIFICATE-----Generated at Fri Nov 22 22:24:12 2024 by rpki-client on console-fra.rpki-client.org