$ rpki-client -vvf rpki.apnic.net/member_repository/A91CFFA0/1D66D486D8CB11E9BAE24D21C4F9AE02/rdlBjw-bVfO3N2oJPbEdutOu_sg.mft File: rdlBjw-bVfO3N2oJPbEdutOu_sg.mft (raw, json) Hash identifier: vFI+hbgqeLjAT7xBA48Mtbf5VRLTragenqCvKOXT3Js= Subject key identifier: C9:1B:42:D5:A3:36:5F:04:99:9E:38:55:C0:41:D8:31:08:EE:6A:D8 Authority key identifier: AD:D9:41:8F:0F:9B:55:F3:B7:37:6A:09:3D:B1:1D:BA:D3:AE:FE:C8 Certificate issuer: /CN=A91CFFA0/serialNumber=ADD9418F0F9B55F3B7376A093DB11DBAD3AEFEC8 Certificate serial: 0E90 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rdlBjw-bVfO3N2oJPbEdutOu_sg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CFFA0/1D66D486D8CB11E9BAE24D21C4F9AE02/rdlBjw-bVfO3N2oJPbEdutOu_sg.mft Manifest number: 0D9F Signing time: Wed 20 Nov 2024 17:59:48 +0000 Manifest this update: Wed 20 Nov 2024 17:59:47 +0000 Manifest next update: Wed 27 Nov 2024 17:59:47 +0000 Files and hashes: 1: rdlBjw-bVfO3N2oJPbEdutOu_sg.crl (hash: LqAcLcb2vQMnTOauSP7zGKJj5/T9RkhCELl0o0V+BNM=) 2: C735E33E1CB511EAB25B4768C4F9AE02.roa (hash: xsRvYHkt1kSJe/5WADtn9IbTwxTSTZmiIotthIwgGiQ=) 3: 59C7E67C77CC11EAB764ED34C4F9AE02.roa (hash: 1Zg3uJs0B9SBEAEBnlt+lBVE6s62+7/QDv6bVIsWqaU=) 4: 8C9FFE4C0F2F11EE85C26C11C4F9AE02.roa (hash: 3RupdV0E3AJ2Yrqp3j0pmtVBbkL6edsyZAqwmmp5q2E=) 5: 1B88FC66823D11EC8E3CB427C4F9AE02.roa (hash: Rl4wvZ1bQ+rW5Jss4ptaS97YoQDCBwchiKCYjFlSZFQ=) 6: 2C3F5F0C1CB711EAAA03506DC4F9AE02.roa (hash: Nsyuz4pVBmCSLGABPSKpBQa3yU72+R4F7kivIeQsp5M=) 7: E79C4936420D11EC89D7C163C4F9AE02.roa (hash: QqIyGCefAxLeqvom8feWqLCBzkG8r/+a3a+PgxerWrc=) 8: 5767371863FE11ED9287A15DC4F9AE02.roa (hash: NUGyAFMudd4W/tVG3a1eAkUvEMA4o5S8MAWd7i/0OBw=) 9: B3B97C46510311EDA562C34DC4F9AE02.roa (hash: RIPvfK8QUF5wmav7mk9nMb7DDj6cSNmzn+eFWQglssU=) 10: 0134DE8CC77211EC9B377B2DC4F9AE02.roa (hash: oHIaP2NJ8qCLYstJJ6+GfE8mMKYeymY1s7uux8FYeyI=) 11: 849EBBA60CCA11ED97820077C4F9AE02.roa (hash: +7m2OTWuKLLYbb41sDTiQAOToUAeHchnEjf9Iro+vW4=) 12: B86FBE4A2E3611EB84E66039C4F9AE02.roa (hash: R4wrT8zc1K+DV4H+c/LYTsZfoq1c/8r9FMd3l3K1fsM=) 13: AB2FDD4CA56911EA8F159D7BC4F9AE02.roa (hash: mCmcaYB22H4c0Nk62d6wSTOP7zL9gZg8L5pxFEpRgDM=) 14: 27F85F401B0811EEA3313C43C4F9AE02.roa (hash: MHsKA6rSmP/5ljZEq6IWVKWYpT2ymttT4WvGNnnCU0M=) 15: 8B0EC9621D0611EDBAB65333C4F9AE02.roa (hash: M696+5UFpF5kX1zKZ1iE9zRBar+hYBuMMv70MsqSzFc=) 16: FB9C6A1A77CA11EA95ECC830C4F9AE02.roa (hash: 0nN9mR6Movdpj9mFe9MyLylah55uw7sKp19/HTYnsn0=) 17: 624A8CB0A75211EDB46F8967C4F9AE02.roa (hash: DNAussOAhhKTgiB9XEna+amUcXb0mthrv74FzgccW7M=) 18: 640C18A214AD11EEAA685687C4F9AE02.roa (hash: V+Z1scvo5UHb+Ra3Ka2uleBikTmA8/0+Tgf2EQamPk4=) 19: DA05FC5C58A311EC952D4D56C4F9AE02.roa (hash: gNaJnFa9XuSHzmfL6Uwro9V8guRgZQ3ViR+mA1En7q0=) 20: 706D3EA4140211EB87D7320FC4F9AE02.roa (hash: OR4FotIF7u5M2RKgTvF/yMCSACYQcBm42uVHareeY0s=) 21: AE9742429B5711EB8E3BEB19C4F9AE02.roa (hash: L3UG8gL8J7aKAeycb8PsA3dBmQsih+G0FiTvQ7phQ3U=) 22: 5A4C001A77CC11EAB764ED34C4F9AE02.roa (hash: VjkFtnXBH2zgR/7GAmCLy2av4peQDcQ6/XsDR3llBbs=) 23: 6ACBF170CC4C11ED8B54A36FC4F9AE02.roa (hash: aulda/IDBjINvkVmDSR5SF4+9AqLl56cfZfOgOUn0Sc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CFFA0/1D66D486D8CB11E9BAE24D21C4F9AE02/rdlBjw-bVfO3N2oJPbEdutOu_sg.crl rsync://rpki.apnic.net/member_repository/A91CFFA0/1D66D486D8CB11E9BAE24D21C4F9AE02/rdlBjw-bVfO3N2oJPbEdutOu_sg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rdlBjw-bVfO3N2oJPbEdutOu_sg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 17:59:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3728 (0xe90) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CFFA0/serialNumber=ADD9418F0F9B55F3B7376A093DB11DBAD3AEFEC8 Validity Not Before: Nov 20 17:59:47 2024 GMT Not After : Nov 27 17:59:47 2024 GMT Subject: CN=673e2393-fb3a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:07:23:11:71:ab:09:a3:4e:6d:63:75:eb:48: 02:6d:e9:11:cd:7b:0b:2b:46:40:93:43:31:50:56: 08:40:17:66:cc:30:b8:05:50:c5:84:76:bf:c4:cf: 7a:d4:66:1e:e8:c1:c3:98:bb:a4:18:fc:97:02:d5: 9c:04:8d:01:46:57:fe:0b:bd:c9:fd:2f:8b:50:57: 19:94:a6:0d:5e:a2:29:84:d5:f6:d6:1b:71:12:b5: a6:54:10:cd:7e:0e:e5:a6:db:64:11:b8:35:2e:67: 8c:4e:73:7b:2a:3c:b1:67:c8:96:a3:d3:f5:43:ba: 71:6d:85:fa:22:a3:ba:6f:80:32:34:90:31:09:98: 26:17:7b:bc:ef:76:5f:d4:3a:4e:86:ca:c0:e0:4e: 63:f2:6b:35:91:2a:65:ac:69:15:20:d7:f4:58:a2: 77:c0:87:89:53:36:23:8f:75:71:c5:eb:fd:d9:b6: 81:02:b5:21:d9:e6:36:4c:30:0f:5a:75:58:b0:b6: a9:5a:9b:d5:31:1f:9c:d1:61:e3:72:30:0c:2e:87: ea:2e:60:ec:52:9f:c8:3d:55:bd:fb:38:52:28:9c: 59:82:d8:53:35:61:70:f0:8d:29:c5:02:ea:a8:21: 61:bb:d7:e6:60:c5:6b:1b:90:ee:e2:30:df:dc:1d: 42:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:1B:42:D5:A3:36:5F:04:99:9E:38:55:C0:41:D8:31:08:EE:6A:D8 X509v3 Authority Key Identifier: keyid:AD:D9:41:8F:0F:9B:55:F3:B7:37:6A:09:3D:B1:1D:BA:D3:AE:FE:C8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CFFA0/1D66D486D8CB11E9BAE24D21C4F9AE02/rdlBjw-bVfO3N2oJPbEdutOu_sg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rdlBjw-bVfO3N2oJPbEdutOu_sg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CFFA0/1D66D486D8CB11E9BAE24D21C4F9AE02/rdlBjw-bVfO3N2oJPbEdutOu_sg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a5:a0:4e:d4:9c:cb:0f:2d:44:d0:37:73:72:ee:56:c1:6a:66: 2d:86:0a:02:ca:17:a3:1c:9a:98:40:e3:78:a0:90:6d:a0:1c: bf:fc:97:c6:02:64:f9:92:7f:f2:73:c7:34:d9:c2:94:43:1b: a5:fb:da:95:03:3f:9f:02:e5:6d:87:4f:b9:7b:f5:7f:1b:e3: f1:bf:bf:f9:58:b4:40:f7:98:b5:24:d4:66:ed:a0:f7:59:34: 98:ec:cd:9b:66:73:45:78:4c:e6:b8:4e:bd:8f:8a:3d:9d:57: 6c:3a:78:39:26:d9:f2:63:bf:f8:d9:9a:81:d9:4f:aa:1b:40: a6:4c:54:38:68:47:f0:80:57:99:d0:38:2f:69:0e:b9:b1:a7: 93:68:a0:04:77:9a:ae:f1:2c:55:3a:47:d2:e4:7f:2b:36:40: 1b:52:3e:59:bb:35:bd:c2:f5:65:cb:d3:7d:9c:ef:ac:dc:59: d3:04:35:76:e3:f4:a6:90:6b:db:86:8f:62:57:0d:6e:cd:2f: 79:a5:39:d2:8a:a5:44:0e:37:c1:de:45:91:b6:be:ee:ba:af: 54:39:06:85:89:69:6c:ed:5b:6b:82:ce:32:69:47:41:f5:c6: 5d:ac:20:54:ab:43:f4:ab:1c:ae:37:a7:99:1a:46:e9:b6:16: 7a:ba:be:02 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDpAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0ZGQTAxMTAvBgNVBAUTKEFERDk0MThGMEY5QjU1RjNCNzM3NkEwOTNEQjExREJB RDNBRUZFQzgwHhcNMjQxMTIwMTc1OTQ3WhcNMjQxMTI3MTc1OTQ3WjAYMRYwFAYD VQQDEw02NzNlMjM5My1mYjNhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAswcjEXGrCaNObWN160gCbekRzXsLK0ZAk0MxUFYIQBdmzDC4BVDFhHa/xM96 1GYe6MHDmLukGPyXAtWcBI0BRlf+C73J/S+LUFcZlKYNXqIphNX21htxErWmVBDN fg7lpttkEbg1LmeMTnN7KjyxZ8iWo9P1Q7pxbYX6IqO6b4AyNJAxCZgmF3u873Zf 1DpOhsrA4E5j8ms1kSplrGkVINf0WKJ3wIeJUzYjj3Vxxev92baBArUh2eY2TDAP WnVYsLapWpvVMR+c0WHjcjAMLofqLmDsUp/IPVW9+zhSKJxZgthTNWFw8I0pxQLq qCFhu9fmYMVrG5Du4jDf3B1CawIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMkbQtWj Nl8EmZ44VcBB2DEI7mrYMB8GA1UdIwQYMBaAFK3ZQY8Pm1XztzdqCT2xHbrTrv7I MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRkZBMC8xRDY2RDQ4NkQ4 Q0IxMUU5QkFFMjREMjFDNEY5QUUwMi9yZGxCanctYlZmTzNOMm9KUGJFZHV0T3Vf c2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JkbEJqdy1iVmZPM04yb0pQYkVkdXRPdV9zZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RkZBMC8xRDY2RDQ4NkQ4Q0IxMUU5QkFFMjREMjFDNEY5QUUwMi9yZGxCanctYlZm TzNOMm9KUGJFZHV0T3Vfc2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCloE7UnMsPLUTQN3Ny7lbBamYthgoCyhejHJqYQON4oJBtoBy//JfG AmT5kn/yc8c02cKUQxul+9qVAz+fAuVth0+5e/V/G+Pxv7/5WLRA95i1JNRm7aD3 WTSY7M2bZnNFeEzmuE69j4o9nVdsOng5JtnyY7/42ZqB2U+qG0CmTFQ4aEfwgFeZ 0DgvaQ65saeTaKAEd5qu8SxVOkfS5H8rNkAbUj5ZuzW9wvVly9N9nO+s3FnTBDV2 4/SmkGvbho9iVw1uzS95pTnSiqVEDjfB3kWRtr7uuq9UOQaFiWls7Vtrgs4yaUdB 9cZdrCBUq0P0qxyuN6eZGkbpthZ6ur4C -----END CERTIFICATE-----Generated at Wed Nov 20 20:07:28 2024 by rpki-client on console-fra.rpki-client.org