$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE6EC/D3AB601614C811E5A2FCEF15C4F9AE02/ocI5ZXBAF3JCnrjLsN9mU_FnjPY.mft File: ocI5ZXBAF3JCnrjLsN9mU_FnjPY.mft (raw, json) Hash identifier: GQoXA3bJBqqFXIkh0dZasMsRvQpyWdW70h/QCqJWmxE= Subject key identifier: B5:C6:AA:B8:D8:E2:5A:7A:B2:4E:A4:C5:BF:B8:5B:BE:D7:55:2B:F7 Authority key identifier: A1:C2:39:65:70:40:17:72:42:9E:B8:CB:B0:DF:66:53:F1:67:8C:F6 Certificate issuer: /CN=A91CE6EC/serialNumber=A1C2396570401772429EB8CBB0DF6653F1678CF6 Certificate serial: 251F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ocI5ZXBAF3JCnrjLsN9mU_FnjPY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE6EC/D3AB601614C811E5A2FCEF15C4F9AE02/ocI5ZXBAF3JCnrjLsN9mU_FnjPY.mft Manifest number: 2516 Signing time: Fri 22 Nov 2024 15:45:26 +0000 Manifest this update: Fri 22 Nov 2024 15:45:26 +0000 Manifest next update: Fri 29 Nov 2024 15:45:26 +0000 Files and hashes: 1: ocI5ZXBAF3JCnrjLsN9mU_FnjPY.crl (hash: KuKxHc8YBVYz+aI+2on7E3+8Ktzbucq2VQYn63ZHpqM=) 2: F3CB78DC2D1D11EFB1125716C4F9AE02.roa (hash: TPPWZGP5sV9IJtZUwLcKpBnJCq1AW3jjv3oaEJcerEg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE6EC/D3AB601614C811E5A2FCEF15C4F9AE02/ocI5ZXBAF3JCnrjLsN9mU_FnjPY.crl rsync://rpki.apnic.net/member_repository/A91CE6EC/D3AB601614C811E5A2FCEF15C4F9AE02/ocI5ZXBAF3JCnrjLsN9mU_FnjPY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ocI5ZXBAF3JCnrjLsN9mU_FnjPY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 15:45:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9503 (0x251f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE6EC/serialNumber=A1C2396570401772429EB8CBB0DF6653F1678CF6 Validity Not Before: Nov 22 15:45:26 2024 GMT Not After : Nov 29 15:45:26 2024 GMT Subject: CN=6740a716-82bd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:79:71:2c:b1:0e:77:a1:a6:07:09:b3:62:cb: e0:65:70:f1:7a:e3:72:40:ab:8e:08:db:ae:3e:73: a3:2a:5e:41:bd:76:c8:61:7c:36:30:83:8c:e2:fd: 24:cf:69:d6:d5:e5:c1:a0:9c:70:48:31:1b:60:d4: 7b:91:7d:bf:cc:ca:f2:46:28:fc:15:a8:c0:b4:65: cc:5e:79:15:10:aa:fa:75:36:4b:f0:b6:e0:66:20: 65:70:12:26:5f:c7:90:4d:52:42:38:11:ed:ce:81: 44:06:54:83:7e:8f:f9:f2:18:40:97:81:09:53:d4: 16:27:f7:12:c7:62:83:35:33:66:fd:63:e2:db:fe: 29:ae:fb:c6:1e:a0:a3:4e:3f:96:2c:1e:d3:ba:eb: c2:7b:51:df:d1:74:7a:6c:b1:d6:ac:c5:46:dd:33: 82:e8:a3:62:6e:d9:62:44:67:91:7d:c3:d2:42:b4: d7:f1:fb:7e:a9:2f:4f:2c:f9:e0:20:d0:97:32:81: 46:29:9f:f8:a1:71:90:09:e8:52:de:c9:da:08:42: 2d:44:d0:03:96:b2:c4:00:bc:ca:af:e4:63:e8:54: 99:36:8c:b2:55:79:7f:5c:27:42:8a:96:de:51:2f: 30:d8:f7:74:5c:e5:9a:87:4c:f7:37:2d:70:da:59: bf:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:C6:AA:B8:D8:E2:5A:7A:B2:4E:A4:C5:BF:B8:5B:BE:D7:55:2B:F7 X509v3 Authority Key Identifier: keyid:A1:C2:39:65:70:40:17:72:42:9E:B8:CB:B0:DF:66:53:F1:67:8C:F6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE6EC/D3AB601614C811E5A2FCEF15C4F9AE02/ocI5ZXBAF3JCnrjLsN9mU_FnjPY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ocI5ZXBAF3JCnrjLsN9mU_FnjPY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE6EC/D3AB601614C811E5A2FCEF15C4F9AE02/ocI5ZXBAF3JCnrjLsN9mU_FnjPY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a1:75:47:7c:d8:9f:f0:09:5c:3c:72:e2:ec:7c:7a:b8:7e:04: 03:f7:64:bb:ee:84:e3:a2:48:17:c8:03:9e:10:b8:b9:e5:e9: 72:46:f4:ee:a9:5f:98:d4:f3:55:38:63:f1:ec:2c:ff:ee:05: 68:4c:39:14:e2:6a:5e:07:4c:e5:28:62:08:80:cd:6b:b7:4f: 5b:ec:16:0b:d6:96:d0:19:91:83:7e:a5:e1:10:db:bb:c3:e9: f9:ef:f0:5f:d3:56:4e:33:38:a0:7f:62:87:a2:f4:88:21:74: 07:0a:21:8d:97:76:c5:f7:c7:e9:11:b7:22:bd:10:81:73:3b: 2d:e9:14:fb:81:28:95:52:70:7c:f9:23:d3:c0:e7:26:0b:80: e4:0e:d7:09:cd:e1:fd:4d:53:73:81:f6:c9:80:db:11:bb:9f: 5c:ca:b3:d4:5a:10:d1:d6:a5:6f:07:bc:52:df:c7:2a:7b:d8: b0:21:8c:43:4c:e5:ff:57:50:fc:0a:1f:21:a7:56:7e:9d:30: 32:49:f6:32:34:18:23:20:8d:7a:d0:4b:48:73:7f:f3:7c:f8: 52:05:0b:61:b2:4c:0f:e8:85:2b:82:5a:e0:a7:1d:64:e5:6b: 89:bb:cb:c6:0f:4a:46:6c:0c:91:e2:a6:91:a7:c7:97:83:85: 4d:5c:af:35 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICJR8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0U2RUMxMTAvBgNVBAUTKEExQzIzOTY1NzA0MDE3NzI0MjlFQjhDQkIwREY2NjUz RjE2NzhDRjYwHhcNMjQxMTIyMTU0NTI2WhcNMjQxMTI5MTU0NTI2WjAYMRYwFAYD VQQDEw02NzQwYTcxNi04MmJkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwXlxLLEOd6GmBwmzYsvgZXDxeuNyQKuOCNuuPnOjKl5BvXbIYXw2MIOM4v0k z2nW1eXBoJxwSDEbYNR7kX2/zMryRij8FajAtGXMXnkVEKr6dTZL8LbgZiBlcBIm X8eQTVJCOBHtzoFEBlSDfo/58hhAl4EJU9QWJ/cSx2KDNTNm/WPi2/4prvvGHqCj Tj+WLB7TuuvCe1Hf0XR6bLHWrMVG3TOC6KNibtliRGeRfcPSQrTX8ft+qS9PLPng INCXMoFGKZ/4oXGQCehS3snaCEItRNADlrLEALzKr+Rj6FSZNoyyVXl/XCdCipbe US8w2Pd0XOWah0z3Ny1w2lm/sQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLXGqrjY 4lp6sk6kxb+4W77XVSv3MB8GA1UdIwQYMBaAFKHCOWVwQBdyQp64y7DfZlPxZ4z2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTZFQy9EM0FCNjAxNjE0 QzgxMUU1QTJGQ0VGMTVDNEY5QUUwMi9vY0k1WlhCQUYzSkNucmpMc045bVVfRm5q UFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29jSTVaWEJBRjNKQ25yakxzTjltVV9GbmpQWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RTZFQy9EM0FCNjAxNjE0QzgxMUU1QTJGQ0VGMTVDNEY5QUUwMi9vY0k1WlhCQUYz SkNucmpMc045bVVfRm5qUFkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQChdUd82J/wCVw8cuLsfHq4fgQD92S77oTjokgXyAOeELi55elyRvTu qV+Y1PNVOGPx7Cz/7gVoTDkU4mpeB0zlKGIIgM1rt09b7BYL1pbQGZGDfqXhENu7 w+n57/Bf01ZOMzigf2KHovSIIXQHCiGNl3bF98fpEbcivRCBczst6RT7gSiVUnB8 +SPTwOcmC4DkDtcJzeH9TVNzgfbJgNsRu59cyrPUWhDR1qVvB7xS38cqe9iwIYxD TOX/V1D8Ch8hp1Z+nTAySfYyNBgjII160EtIc3/zfPhSBQthskwP6IUrglrgpx1k 5WuJu8vGD0pGbAyR4qaRp8eXg4VNXK81 -----END CERTIFICATE-----Generated at Fri Nov 22 17:56:20 2024 by rpki-client on console-fra.rpki-client.org