$ rpki-client -vvf rpki.apnic.net/member_repository/A91CF77D/11E259D0D22D11EA8AE73D27C4F9AE02/mD14MALFTaj4puKVg4ucrwE2Q1g.mft File: mD14MALFTaj4puKVg4ucrwE2Q1g.mft (raw, json) Hash identifier: EQV+ZkwXhntuPntQAL+RxaYPvz3/vS8+a+Abqi42UR0= Subject key identifier: 26:BC:B6:96:46:B9:77:77:C5:05:A8:25:6D:70:1F:DA:49:19:8D:2B Authority key identifier: 98:3D:78:30:02:C5:4D:A8:F8:A6:E2:95:83:8B:9C:AF:01:36:43:58 Certificate issuer: /CN=A91CF77D/serialNumber=983D783002C54DA8F8A6E295838B9CAF01364358 Certificate serial: 07D1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mD14MALFTaj4puKVg4ucrwE2Q1g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CF77D/11E259D0D22D11EA8AE73D27C4F9AE02/mD14MALFTaj4puKVg4ucrwE2Q1g.mft Manifest number: 07C9 Signing time: Fri 22 Nov 2024 20:42:58 +0000 Manifest this update: Fri 22 Nov 2024 20:42:57 +0000 Manifest next update: Fri 29 Nov 2024 20:42:57 +0000 Files and hashes: 1: mD14MALFTaj4puKVg4ucrwE2Q1g.crl (hash: xKZMHxACMNGAhiOmlI1hzmHvQdBjgSwS0S1GvU85kig=) 2: D24575B2D22E11EA9D4DDE29C4F9AE02.roa (hash: OISPqX+sjE+FviBwbW316CZ6fba2RRqY67rA1yB66hs=) 3: 8FADE73CA49B11EEB19E774BC4F9AE02.roa (hash: 7eZAVrRcBGBKFlQHZK9vBEWzwyr7ij0OTTCgEmnjTCo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CF77D/11E259D0D22D11EA8AE73D27C4F9AE02/mD14MALFTaj4puKVg4ucrwE2Q1g.crl rsync://rpki.apnic.net/member_repository/A91CF77D/11E259D0D22D11EA8AE73D27C4F9AE02/mD14MALFTaj4puKVg4ucrwE2Q1g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mD14MALFTaj4puKVg4ucrwE2Q1g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:42:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2001 (0x7d1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CF77D/serialNumber=983D783002C54DA8F8A6E295838B9CAF01364358 Validity Not Before: Nov 22 20:42:57 2024 GMT Not After : Nov 29 20:42:57 2024 GMT Subject: CN=6740ecd2-c8c0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:0f:0f:d1:a1:99:98:bc:75:2c:58:56:19:5d: a1:0b:3b:0d:07:0a:4a:b1:6f:77:93:20:68:31:4b: 5a:50:7a:35:59:a6:3e:33:f1:3f:dc:fa:3e:99:c3: 77:97:32:46:34:ff:6b:4c:bc:e7:86:4b:e6:70:5e: 65:4d:b5:b6:a0:a5:ed:9b:77:6c:04:15:66:fe:f6: e2:d4:d4:0f:2d:8a:e3:47:92:5b:47:6b:13:62:36: 14:17:41:89:4e:c9:89:65:0f:be:a6:c7:6b:29:c3: b4:3f:0c:92:25:14:57:01:57:1f:bc:fb:13:ae:d0: 9a:87:a3:f3:1f:72:a7:b8:27:ed:06:13:2c:e0:1c: fe:ce:c9:db:82:ea:fe:28:b0:6f:18:5d:da:ee:53: 45:15:3e:3d:e3:6f:8e:0b:71:66:db:88:ba:5f:e9: 59:f3:2f:44:05:4d:33:a3:a7:cc:f8:eb:bd:ff:2d: 9d:39:ff:3a:2e:3f:79:ef:d1:29:44:17:c6:ec:a1: 23:39:d4:a8:9e:e7:ea:3e:27:70:9e:25:62:75:3c: 66:bc:0a:56:90:a9:c8:d3:f0:4b:cd:3f:f3:81:5a: 9f:e0:cb:59:75:6c:c8:84:5f:16:37:71:a7:c3:33: 49:e8:a7:47:6e:c3:bd:05:f3:a4:38:97:04:13:cb: bc:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:BC:B6:96:46:B9:77:77:C5:05:A8:25:6D:70:1F:DA:49:19:8D:2B X509v3 Authority Key Identifier: keyid:98:3D:78:30:02:C5:4D:A8:F8:A6:E2:95:83:8B:9C:AF:01:36:43:58 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CF77D/11E259D0D22D11EA8AE73D27C4F9AE02/mD14MALFTaj4puKVg4ucrwE2Q1g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mD14MALFTaj4puKVg4ucrwE2Q1g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CF77D/11E259D0D22D11EA8AE73D27C4F9AE02/mD14MALFTaj4puKVg4ucrwE2Q1g.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 44:dd:ec:f6:e0:13:e0:e0:0e:ce:3c:50:e5:88:dd:e5:6e:20: 19:60:6f:28:29:96:a4:d9:59:b2:69:93:0f:e7:b5:eb:c9:15: ea:f5:ee:40:52:97:b8:44:9d:18:5f:2a:24:9a:6b:77:20:f2: 89:5f:20:7e:0a:f5:05:8d:1f:82:ca:e4:94:c0:22:1d:da:8f: 5b:b1:4d:d5:89:1f:4d:53:54:37:2e:33:7d:0e:c3:ed:3b:75: c5:08:ec:c7:92:b8:21:01:bc:83:c1:ed:e4:fd:e6:b9:9e:91: 45:e7:5d:2b:4f:ce:7e:b6:a2:08:e6:9f:78:9b:4d:68:90:f0: d0:fe:87:14:34:8c:7a:04:22:24:b6:2b:f9:f1:5c:13:47:c3: 6e:97:e9:4d:4f:a8:0b:c9:0f:52:09:62:76:4f:c0:df:ca:ff: 8d:7f:37:21:a3:86:79:68:c2:8d:a8:0c:9c:1a:cd:3c:37:b8: 49:be:60:24:a5:aa:0a:87:53:b5:e2:ad:8e:e7:6b:93:78:6c: 43:08:fd:b9:98:ed:2f:ff:c0:ed:5f:0a:53:ad:33:f3:2e:ec: cf:20:c6:b0:56:50:24:12:33:8e:b8:83:2a:6f:fc:9b:c8:8a: 1c:65:ef:a6:d7:07:23:b1:61:ab:4a:fb:d6:42:20:bc:1e:c7: 23:c1:5e:09 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB9EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0Y3N0QxMTAvBgNVBAUTKDk4M0Q3ODMwMDJDNTREQThGOEE2RTI5NTgzOEI5Q0FG MDEzNjQzNTgwHhcNMjQxMTIyMjA0MjU3WhcNMjQxMTI5MjA0MjU3WjAYMRYwFAYD VQQDEw02NzQwZWNkMi1jOGMwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAog8P0aGZmLx1LFhWGV2hCzsNBwpKsW93kyBoMUtaUHo1WaY+M/E/3Po+mcN3 lzJGNP9rTLznhkvmcF5lTbW2oKXtm3dsBBVm/vbi1NQPLYrjR5JbR2sTYjYUF0GJ TsmJZQ++psdrKcO0PwySJRRXAVcfvPsTrtCah6PzH3KnuCftBhMs4Bz+zsnbgur+ KLBvGF3a7lNFFT4942+OC3Fm24i6X+lZ8y9EBU0zo6fM+Ou9/y2dOf86Lj9579Ep RBfG7KEjOdSonufqPidwniVidTxmvApWkKnI0/BLzT/zgVqf4MtZdWzIhF8WN3Gn wzNJ6KdHbsO9BfOkOJcEE8u8iQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCa8tpZG uXd3xQWoJW1wH9pJGY0rMB8GA1UdIwQYMBaAFJg9eDACxU2o+KbilYOLnK8BNkNY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRjc3RC8xMUUyNTlEMEQy MkQxMUVBOEFFNzNEMjdDNEY5QUUwMi9tRDE0TUFMRlRhajRwdUtWZzR1Y3J3RTJR MWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL21EMTRNQUxGVGFqNHB1S1ZnNHVjcndFMlExZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD Rjc3RC8xMUUyNTlEMEQyMkQxMUVBOEFFNzNEMjdDNEY5QUUwMi9tRDE0TUFMRlRh ajRwdUtWZzR1Y3J3RTJRMWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBE3ez24BPg4A7OPFDliN3lbiAZYG8oKZak2VmyaZMP57XryRXq9e5A Upe4RJ0YXyokmmt3IPKJXyB+CvUFjR+CyuSUwCId2o9bsU3ViR9NU1Q3LjN9DsPt O3XFCOzHkrghAbyDwe3k/ea5npFF510rT85+tqII5p94m01okPDQ/ocUNIx6BCIk tiv58VwTR8Nul+lNT6gLyQ9SCWJ2T8Dfyv+Nfzcho4Z5aMKNqAycGs08N7hJvmAk paoKh1O14q2O52uTeGxDCP25mO0v/8DtXwpTrTPzLuzPIMawVlAkEjOOuIMqb/yb yIocZe+m1wcjsWGrSvvWQiC8HscjwV4J -----END CERTIFICATE-----Generated at Fri Nov 22 22:24:12 2024 by rpki-client on console-fra.rpki-client.org