$ rpki-client -vvf rpki.apnic.net/member_repository/A91D09BC/D35B082EA70711EF99A57741C4F9AE02/AfBcfqXyou38GDiX9YNZgrLPA78.mft File: AfBcfqXyou38GDiX9YNZgrLPA78.mft (raw, json) Hash identifier: gZeFTgfRpL/3pgfv20TewdoxxkAv73PAazWGX6ZYrSM= Subject key identifier: 58:A2:61:CA:EF:81:09:5D:C2:48:D1:B5:17:19:7A:7E:7F:FE:21:BA Authority key identifier: 01:F0:5C:7E:A5:F2:A2:ED:FC:18:38:97:F5:83:59:82:B2:CF:03:BF Certificate issuer: /CN=A91D09BC/serialNumber=01F05C7EA5F2A2EDFC183897F5835982B2CF03BF Certificate serial: 04 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AfBcfqXyou38GDiX9YNZgrLPA78.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D09BC/D35B082EA70711EF99A57741C4F9AE02/AfBcfqXyou38GDiX9YNZgrLPA78.mft Manifest number: 03 Signing time: Thu 21 Nov 2024 06:18:12 +0000 Manifest this update: Thu 21 Nov 2024 06:18:11 +0000 Manifest next update: Thu 28 Nov 2024 06:18:11 +0000 Files and hashes: 1: AfBcfqXyou38GDiX9YNZgrLPA78.crl (hash: ZtjiTwe6bFHNtlJEPz6kfS1Dwx9e1gtn8ikaGqxAmxM=) 2: A69DB4ACA70811EFB1511445C4F9AE02.roa (hash: ve1sSgZ6oct5AOmrySo9DC5xQlX3NPwVMFkq6CjA+1w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D09BC/D35B082EA70711EF99A57741C4F9AE02/AfBcfqXyou38GDiX9YNZgrLPA78.crl rsync://rpki.apnic.net/member_repository/A91D09BC/D35B082EA70711EF99A57741C4F9AE02/AfBcfqXyou38GDiX9YNZgrLPA78.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AfBcfqXyou38GDiX9YNZgrLPA78.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 05:18:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4 (0x4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D09BC/serialNumber=01F05C7EA5F2A2EDFC183897F5835982B2CF03BF Validity Not Before: Nov 21 06:18:11 2024 GMT Not After : Nov 28 06:18:11 2024 GMT Subject: CN=673ed0a3-9404 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f9:20:f6:31:d0:2f:04:c7:83:3c:f9:c0:c3:3f: 2a:f8:79:4b:9e:34:c1:7d:d6:a5:d6:b9:d0:5c:d1: a2:fd:6d:cf:a1:07:6a:b1:e4:4c:07:18:22:6a:38: 7f:31:0e:be:ae:1d:71:da:c2:77:07:47:91:e8:db: ac:b0:de:d2:8d:82:70:54:91:89:c5:a4:6c:e6:65: 7b:73:74:e9:0a:0a:7b:da:b4:d1:1f:7e:e9:ad:d0: f1:b8:15:16:ac:8a:8d:e7:e7:2b:54:b6:48:30:8f: 17:e1:d5:25:b2:42:d4:56:20:a4:42:81:10:cb:e5: c5:e6:13:93:76:64:4b:97:aa:24:25:93:ba:ff:09: e2:47:f1:25:4d:5e:cd:52:55:0c:e5:53:fa:da:1f: 0e:d4:f7:28:6f:83:0c:61:42:3d:6f:be:61:bb:27: 32:a2:d0:4d:dd:52:ff:83:28:8d:a6:3d:05:e4:e0: 6c:79:3d:39:84:48:b0:18:e7:67:8a:5f:b6:bc:39: 5c:73:17:c0:2b:d9:00:18:fa:76:52:64:42:e6:8f: 7e:a1:6b:19:44:03:1d:a2:d6:0b:55:4d:91:7f:c6: 63:80:a4:5b:50:40:0c:ff:0a:b7:52:21:b1:92:9f: ae:7a:d6:82:da:8e:53:a7:9b:be:e0:ae:2b:4a:c7: 9c:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:A2:61:CA:EF:81:09:5D:C2:48:D1:B5:17:19:7A:7E:7F:FE:21:BA X509v3 Authority Key Identifier: keyid:01:F0:5C:7E:A5:F2:A2:ED:FC:18:38:97:F5:83:59:82:B2:CF:03:BF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D09BC/D35B082EA70711EF99A57741C4F9AE02/AfBcfqXyou38GDiX9YNZgrLPA78.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AfBcfqXyou38GDiX9YNZgrLPA78.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D09BC/D35B082EA70711EF99A57741C4F9AE02/AfBcfqXyou38GDiX9YNZgrLPA78.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 55:f2:96:c5:ff:38:22:ef:31:bb:68:44:ce:c7:44:9f:ec:47: d2:e2:03:54:27:2c:12:9f:89:ed:ff:f7:c7:fe:d9:31:f2:9a: 06:09:1f:5a:80:5a:1e:dd:3d:40:44:17:10:e0:64:ec:37:2f: fd:72:57:3c:db:d6:49:c9:53:f3:5b:a9:e7:e4:75:c2:8e:a7: 5f:97:a5:93:47:1b:1c:f9:95:5d:56:f2:ea:2d:f5:7a:17:25: 03:e0:4c:1d:ba:0c:73:d3:6b:4f:24:29:c0:d8:c0:ab:fe:4f: 67:db:7b:1f:f7:89:38:d4:55:e1:6c:cb:26:50:ef:b4:26:86: fa:7b:5e:7b:48:b4:c3:87:5f:7c:ee:29:15:80:20:cb:86:f6: 18:ab:49:aa:20:f6:49:23:0e:c3:3c:99:67:b1:68:8d:16:e4: 65:cf:02:e0:bb:29:54:12:d8:bc:38:ca:3f:24:7a:63:3d:d2: f1:52:0a:21:c2:e3:80:ba:f7:35:93:c8:ec:c8:c4:b5:1b:5d: 92:a4:9b:5e:2a:d9:1f:6b:fb:1a:1c:75:c5:9e:dc:0e:dd:39: 0b:73:2c:a7:55:cf:1b:d2:1f:99:a3:15:49:66:cd:fc:6b:4d: fe:cd:83:64:fd:cf:86:fb:9f:2a:66:23:89:e7:fb:76:0c:d1: 24:f1:b1:0d -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBBDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE MDlCQzExMC8GA1UEBRMoMDFGMDVDN0VBNUYyQTJFREZDMTgzODk3RjU4MzU5ODJC MkNGMDNCRjAeFw0yNDExMjEwNjE4MTFaFw0yNDExMjgwNjE4MTFaMBgxFjAUBgNV BAMTDTY3M2VkMGEzLTk0MDQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQD5IPYx0C8Ex4M8+cDDPyr4eUueNMF91qXWudBc0aL9bc+hB2qx5EwHGCJqOH8x Dr6uHXHawncHR5Ho26yw3tKNgnBUkYnFpGzmZXtzdOkKCnvatNEffumt0PG4FRas io3n5ytUtkgwjxfh1SWyQtRWIKRCgRDL5cXmE5N2ZEuXqiQlk7r/CeJH8SVNXs1S VQzlU/raHw7U9yhvgwxhQj1vvmG7JzKi0E3dUv+DKI2mPQXk4Gx5PTmESLAY52eK X7a8OVxzF8Ar2QAY+nZSZELmj36haxlEAx2i1gtVTZF/xmOApFtQQAz/CrdSIbGS n6561oLajlOnm77gritKx5yjAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUWKJhyu+B CV3CSNG1Fxl6fn/+IbowHwYDVR0jBBgwFoAUAfBcfqXyou38GDiX9YNZgrLPA78w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQwOUJDL0QzNUIwODJFQTcw NzExRUY5OUE1Nzc0MUM0RjlBRTAyL0FmQmNmcVh5b3UzOEdEaVg5WU5aZ3JMUEE3 OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvQWZCY2ZxWHlvdTM4R0RpWDlZTlpnckxQQTc4LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQw OUJDL0QzNUIwODJFQTcwNzExRUY5OUE1Nzc0MUM0RjlBRTAyL0FmQmNmcVh5b3Uz OEdEaVg5WU5aZ3JMUEE3OC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAFXylsX/OCLvMbtoRM7HRJ/sR9LiA1QnLBKfie3/98f+2THymgYJH1qA Wh7dPUBEFxDgZOw3L/1yVzzb1knJU/NbqefkdcKOp1+XpZNHGxz5lV1W8uot9XoX JQPgTB26DHPTa08kKcDYwKv+T2fbex/3iTjUVeFsyyZQ77Qmhvp7XntItMOHX3zu KRWAIMuG9hirSaog9kkjDsM8mWexaI0W5GXPAuC7KVQS2Lw4yj8kemM90vFSCiHC 44C69zWTyOzIxLUbXZKkm14q2R9r+xocdcWe3A7dOQtzLKdVzxvSH5mjFUlmzfxr Tf7Ng2T9z4b7nypmI4nn+3YM0STxsQ0= -----END CERTIFICATE-----Generated at Thu Nov 21 08:04:54 2024 by rpki-client on console-fra.rpki-client.org