$ rpki-client -vvf rpki.apnic.net/member_repository/A91CF848/CADAB7B22E6E11EDAEAB3E36C4F9AE02/2zU_lsDQLN1MHwjaG8Fp_uWNcyE.mft File: 2zU_lsDQLN1MHwjaG8Fp_uWNcyE.mft (raw, json) Hash identifier: /HyWx1MEHQ5kh1tVFcRkNKvPXuDC0az+ZZl6y/EkfPI= Subject key identifier: 75:6B:D6:51:B6:BC:74:A4:9A:42:9B:FC:94:82:E6:28:E6:D7:4D:84 Authority key identifier: DB:35:3F:96:C0:D0:2C:DD:4C:1F:08:DA:1B:C1:69:FE:E5:8D:73:21 Certificate issuer: /CN=A91CF848/serialNumber=DB353F96C0D02CDD4C1F08DA1BC169FEE58D7321 Certificate serial: 01C4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2zU_lsDQLN1MHwjaG8Fp_uWNcyE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CF848/CADAB7B22E6E11EDAEAB3E36C4F9AE02/2zU_lsDQLN1MHwjaG8Fp_uWNcyE.mft Manifest number: 01C2 Signing time: Sat 23 Nov 2024 01:45:37 +0000 Manifest this update: Sat 23 Nov 2024 01:45:37 +0000 Manifest next update: Sat 30 Nov 2024 01:45:37 +0000 Files and hashes: 1: 2zU_lsDQLN1MHwjaG8Fp_uWNcyE.crl (hash: DnkJtH/fEKPBlD4fReTwwDE5imC31MfuLks1BhCcbvc=) 2: E9399E722E7211EDAE100C3DC4F9AE02.roa (hash: M3T7YxDp3PgO3w0LzCsSvdkq+omaAe3UAtVrwbaswoQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CF848/CADAB7B22E6E11EDAEAB3E36C4F9AE02/2zU_lsDQLN1MHwjaG8Fp_uWNcyE.crl rsync://rpki.apnic.net/member_repository/A91CF848/CADAB7B22E6E11EDAEAB3E36C4F9AE02/2zU_lsDQLN1MHwjaG8Fp_uWNcyE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2zU_lsDQLN1MHwjaG8Fp_uWNcyE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 452 (0x1c4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CF848/serialNumber=DB353F96C0D02CDD4C1F08DA1BC169FEE58D7321 Validity Not Before: Nov 23 01:45:37 2024 GMT Not After : Nov 30 01:45:37 2024 GMT Subject: CN=674133c1-5b9c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:4b:1a:50:49:f1:d6:9d:dc:d5:b5:c3:5f:1f: 35:52:47:0b:dc:24:07:a0:f5:c7:b9:f4:54:23:55: 42:88:95:13:f2:1e:e5:88:83:69:e8:a1:3e:8d:33: 10:cb:45:1f:c4:70:1e:7e:32:3a:20:d1:9c:e6:50: ad:29:94:21:e4:72:ab:54:80:40:99:9f:d4:d9:2b: 22:ba:d5:41:ea:f5:7e:c0:43:ba:38:85:40:c4:db: 1d:d6:e4:15:50:87:7f:68:e7:6c:cf:7a:a2:03:e4: aa:c8:34:f8:7b:30:b8:0e:96:96:5d:bb:40:74:d4: 79:27:da:16:83:7f:7e:e5:5c:63:03:8f:cd:76:97: ad:e2:ef:61:3e:db:cb:4f:db:56:ce:8c:48:29:59: 69:c9:c6:12:5d:1d:ce:32:68:21:7d:b5:df:f6:9c: ce:cb:c1:8e:b2:9b:33:7a:d9:a1:aa:0e:77:55:98: 6f:c9:28:87:f5:c7:45:4e:d1:68:52:27:2c:33:f7: a0:67:7f:90:87:e7:2c:6a:a9:00:a9:bd:7a:e6:f1: fc:c9:a7:f5:41:b5:26:e9:f0:be:9d:3e:56:53:f4: f6:0c:31:30:a9:65:ad:97:4e:5c:6c:f1:26:91:e2: 06:a6:5e:46:0d:ad:4e:ff:30:cd:e8:7e:73:51:bc: a6:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:6B:D6:51:B6:BC:74:A4:9A:42:9B:FC:94:82:E6:28:E6:D7:4D:84 X509v3 Authority Key Identifier: keyid:DB:35:3F:96:C0:D0:2C:DD:4C:1F:08:DA:1B:C1:69:FE:E5:8D:73:21 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CF848/CADAB7B22E6E11EDAEAB3E36C4F9AE02/2zU_lsDQLN1MHwjaG8Fp_uWNcyE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2zU_lsDQLN1MHwjaG8Fp_uWNcyE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CF848/CADAB7B22E6E11EDAEAB3E36C4F9AE02/2zU_lsDQLN1MHwjaG8Fp_uWNcyE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 70:4b:71:77:10:f8:3a:0e:5a:14:3f:3c:ef:56:0e:5c:a6:6e: 07:37:a2:64:df:0e:85:e4:e8:27:7c:43:b3:52:dc:0f:ee:7e: 34:29:71:dc:5b:75:d5:6c:61:15:c1:af:c6:0f:ff:ed:fb:cb: 97:b9:c6:a2:f6:9f:1c:65:2e:1d:24:96:c7:45:d5:7f:71:07: b4:da:ce:5c:90:22:66:89:f8:a1:c5:01:3e:cd:a0:e5:e9:1a: 29:76:96:19:80:4d:c3:60:b5:07:a8:dc:d1:a5:13:15:13:2d: ff:a2:c4:58:84:b4:9e:2a:5e:2f:88:c0:3b:fc:81:e7:e6:40: f5:80:fe:b3:e6:2a:87:56:a8:c8:af:59:97:17:57:98:21:88: c5:d5:c8:e0:a4:97:b1:34:fd:d0:3d:18:3b:fc:67:bb:3e:c3: a1:f1:fb:21:d2:ca:32:fb:c7:4f:5a:1f:6d:a2:9a:cc:c8:04: 9a:e9:c8:c9:62:ff:36:f0:d0:c3:46:f2:88:7f:9d:76:76:d0: ac:d0:82:f5:5f:19:cd:b9:7c:14:ae:41:41:49:44:f7:a3:ce: 0a:ad:45:c4:f1:6e:37:ed:cd:6a:28:d8:bc:8c:53:20:e6:3a: 99:e3:fb:28:cc:c6:a4:7c:ff:58:1e:09:aa:5f:4f:f5:8e:91: 0e:37:0b:dd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAcQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0Y4NDgxMTAvBgNVBAUTKERCMzUzRjk2QzBEMDJDREQ0QzFGMDhEQTFCQzE2OUZF RTU4RDczMjEwHhcNMjQxMTIzMDE0NTM3WhcNMjQxMTMwMDE0NTM3WjAYMRYwFAYD VQQDEw02NzQxMzNjMS01YjljMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw0saUEnx1p3c1bXDXx81UkcL3CQHoPXHufRUI1VCiJUT8h7liINp6KE+jTMQ y0UfxHAefjI6INGc5lCtKZQh5HKrVIBAmZ/U2SsiutVB6vV+wEO6OIVAxNsd1uQV UId/aOdsz3qiA+SqyDT4ezC4DpaWXbtAdNR5J9oWg39+5VxjA4/Ndpet4u9hPtvL T9tWzoxIKVlpycYSXR3OMmghfbXf9pzOy8GOspszetmhqg53VZhvySiH9cdFTtFo UicsM/egZ3+Qh+csaqkAqb165vH8yaf1QbUm6fC+nT5WU/T2DDEwqWWtl05cbPEm keIGpl5GDa1O/zDN6H5zUbymMQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHVr1lG2 vHSkmkKb/JSC5ijm102EMB8GA1UdIwQYMBaAFNs1P5bA0CzdTB8I2hvBaf7ljXMh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRjg0OC9DQURBQjdCMjJF NkUxMUVEQUVBQjNFMzZDNEY5QUUwMi8yelVfbHNEUUxOMU1Id2phRzhGcF91V05j eUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJ6VV9sc0RRTE4xTUh3amFHOEZwX3VXTmN5RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD Rjg0OC9DQURBQjdCMjJFNkUxMUVEQUVBQjNFMzZDNEY5QUUwMi8yelVfbHNEUUxO MU1Id2phRzhGcF91V05jeUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBwS3F3EPg6DloUPzzvVg5cpm4HN6Jk3w6F5OgnfEOzUtwP7n40KXHc W3XVbGEVwa/GD//t+8uXucai9p8cZS4dJJbHRdV/cQe02s5ckCJmifihxQE+zaDl 6RopdpYZgE3DYLUHqNzRpRMVEy3/osRYhLSeKl4viMA7/IHn5kD1gP6z5iqHVqjI r1mXF1eYIYjF1cjgpJexNP3QPRg7/Ge7PsOh8fsh0soy+8dPWh9toprMyASa6cjJ Yv828NDDRvKIf512dtCs0IL1XxnNuXwUrkFBSUT3o84KrUXE8W437c1qKNi8jFMg 5jqZ4/sozMakfP9YHgmqX0/1jpEONwvd -----END CERTIFICATE-----Generated at Sat Nov 23 02:33:46 2024 by rpki-client on console-fra.rpki-client.org