$ rpki-client -vvf rpki.apnic.net/member_repository/A91D1234/B0FF30FED02511ECA012553FC4F9AE02/08Yi55Dx3vFpKLvlVBgXJ8-MiPg.mft File: 08Yi55Dx3vFpKLvlVBgXJ8-MiPg.mft (raw, json) Hash identifier: nwKCZFpdjni/L3YJHupnqyuPqvyxoXjFH85sKfNDL1U= Subject key identifier: A6:47:5E:EA:E8:24:DC:3A:0C:91:13:12:9D:01:4D:0C:F7:ED:09:03 Authority key identifier: D3:C6:22:E7:90:F1:DE:F1:69:28:BB:E5:54:18:17:27:CF:8C:88:F8 Certificate issuer: /CN=A91D1234/serialNumber=D3C622E790F1DEF16928BBE554181727CF8C88F8 Certificate serial: 02B6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/08Yi55Dx3vFpKLvlVBgXJ8-MiPg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D1234/B0FF30FED02511ECA012553FC4F9AE02/08Yi55Dx3vFpKLvlVBgXJ8-MiPg.mft Manifest number: 02B3 Signing time: Sat 23 Nov 2024 01:01:52 +0000 Manifest this update: Sat 23 Nov 2024 01:01:52 +0000 Manifest next update: Sat 30 Nov 2024 01:01:52 +0000 Files and hashes: 1: 08Yi55Dx3vFpKLvlVBgXJ8-MiPg.crl (hash: VgpVOSHvb9ZW0MQBFeCOMeybWlnzOlUWpEkPpYvJ3aw=) 2: 84A0C6B4D02811ECB2472344C4F9AE02.roa (hash: r+FlKKjUNgnx6Bj8dzyLXGS4dtd9pVHhE7jzwzS2cXI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D1234/B0FF30FED02511ECA012553FC4F9AE02/08Yi55Dx3vFpKLvlVBgXJ8-MiPg.crl rsync://rpki.apnic.net/member_repository/A91D1234/B0FF30FED02511ECA012553FC4F9AE02/08Yi55Dx3vFpKLvlVBgXJ8-MiPg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/08Yi55Dx3vFpKLvlVBgXJ8-MiPg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 694 (0x2b6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D1234/serialNumber=D3C622E790F1DEF16928BBE554181727CF8C88F8 Validity Not Before: Nov 23 01:01:52 2024 GMT Not After : Nov 30 01:01:52 2024 GMT Subject: CN=67412980-fd57 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:09:08:36:c5:b1:45:8b:24:a0:25:0b:8f:49: 59:5f:91:8d:c4:b7:3c:e8:dc:d6:9c:12:bf:d0:0c: c0:58:7a:d2:db:94:7a:08:bd:af:02:cb:f3:46:51: 60:53:53:89:59:a6:20:45:5a:6c:6d:ad:23:a1:6f: 7f:62:f5:72:e4:ec:bd:7d:d5:51:6c:6a:3a:77:96: 8a:c1:91:d7:2c:d5:a0:77:f5:1a:d6:e6:36:a9:b4: 10:c0:b8:a0:f0:df:e0:00:33:37:cf:88:2e:27:c8: 3b:15:c5:5d:11:1c:11:db:b9:46:a9:bf:e6:ab:ff: 7d:08:94:ed:e3:76:e8:35:dd:c1:b1:fd:56:ee:f9: 41:07:45:81:a6:0e:64:a4:ef:17:5a:a6:48:c4:82: 50:78:01:11:3a:04:51:d3:74:f9:6e:1f:75:9e:8e: d3:bc:fe:90:9b:c1:a0:5a:c2:66:92:2b:3c:38:3a: e8:4e:d6:37:80:73:13:39:c2:ef:34:34:f3:4c:f5: 4b:e9:f5:7a:aa:76:00:74:11:93:52:e3:0f:1b:13: c7:38:3d:cd:3e:4c:e9:64:cf:ff:19:3e:c0:87:a4: cd:23:6f:c8:c4:8d:e8:d4:de:c9:d5:ce:f8:47:10: d4:5b:0c:3a:7c:be:f2:9a:09:e1:14:e0:96:fe:bd: 07:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:47:5E:EA:E8:24:DC:3A:0C:91:13:12:9D:01:4D:0C:F7:ED:09:03 X509v3 Authority Key Identifier: keyid:D3:C6:22:E7:90:F1:DE:F1:69:28:BB:E5:54:18:17:27:CF:8C:88:F8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D1234/B0FF30FED02511ECA012553FC4F9AE02/08Yi55Dx3vFpKLvlVBgXJ8-MiPg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/08Yi55Dx3vFpKLvlVBgXJ8-MiPg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D1234/B0FF30FED02511ECA012553FC4F9AE02/08Yi55Dx3vFpKLvlVBgXJ8-MiPg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 25:c2:74:a1:ff:f5:ae:5b:d5:57:ef:e7:58:1a:a8:d1:aa:47: 4c:32:5b:23:78:b2:59:ac:65:08:d4:07:65:25:8b:4f:e6:57: 7a:01:25:8b:c8:47:a4:2c:aa:ae:22:1e:e7:36:d1:ea:b8:27: ba:5b:6b:14:a5:29:c6:75:d0:50:f3:f8:a2:53:15:9a:d6:54: e7:82:17:29:5a:0f:33:9a:65:b9:7b:22:04:c8:cd:66:2a:ce: 8b:a6:9f:d6:a8:06:77:1e:73:29:58:36:8b:17:79:1f:fb:67: 36:92:c2:7f:0c:f4:c1:ff:96:45:57:ff:36:a5:3d:14:95:91: c2:78:e1:e0:1d:7e:40:36:4e:7a:64:9e:cc:6e:24:91:23:b3: 6b:b5:c0:3e:1f:2e:61:75:6a:e5:9c:f2:01:0f:bb:a0:d0:22: 04:15:a7:c7:7c:91:31:54:44:f1:70:cd:0b:16:68:ad:f9:bb: a8:0e:76:e6:07:46:40:d9:0e:59:bd:07:4c:8c:c8:dd:a0:d7: f5:d5:0d:d4:f5:6c:31:a4:13:1c:37:62:ef:fb:bd:22:2d:99: ac:a2:3e:1e:a0:bf:4f:4f:c8:a7:f4:8a:f5:06:a4:55:14:b7: 0f:c4:e5:a8:04:6c:3d:9d:f8:63:53:80:70:35:4f:3d:f9:aa: da:a6:cb:7c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICArYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDEyMzQxMTAvBgNVBAUTKEQzQzYyMkU3OTBGMURFRjE2OTI4QkJFNTU0MTgxNzI3 Q0Y4Qzg4RjgwHhcNMjQxMTIzMDEwMTUyWhcNMjQxMTMwMDEwMTUyWjAYMRYwFAYD VQQDEw02NzQxMjk4MC1mZDU3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzQkINsWxRYskoCULj0lZX5GNxLc86NzWnBK/0AzAWHrS25R6CL2vAsvzRlFg U1OJWaYgRVpsba0joW9/YvVy5Oy9fdVRbGo6d5aKwZHXLNWgd/Ua1uY2qbQQwLig 8N/gADM3z4guJ8g7FcVdERwR27lGqb/mq/99CJTt43boNd3Bsf1W7vlBB0WBpg5k pO8XWqZIxIJQeAEROgRR03T5bh91no7TvP6Qm8GgWsJmkis8ODroTtY3gHMTOcLv NDTzTPVL6fV6qnYAdBGTUuMPGxPHOD3NPkzpZM//GT7Ah6TNI2/IxI3o1N7J1c74 RxDUWww6fL7ymgnhFOCW/r0H7wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKZHXuro JNw6DJETEp0BTQz37QkDMB8GA1UdIwQYMBaAFNPGIueQ8d7xaSi75VQYFyfPjIj4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMTIzNC9CMEZGMzBGRUQw MjUxMUVDQTAxMjU1M0ZDNEY5QUUwMi8wOFlpNTVEeDN2RnBLTHZsVkJnWEo4LU1p UGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzA4WWk1NUR4M3ZGcEtMdmxWQmdYSjgtTWlQZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MTIzNC9CMEZGMzBGRUQwMjUxMUVDQTAxMjU1M0ZDNEY5QUUwMi8wOFlpNTVEeDN2 RnBLTHZsVkJnWEo4LU1pUGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAlwnSh//WuW9VX7+dYGqjRqkdMMlsjeLJZrGUI1AdlJYtP5ld6ASWL yEekLKquIh7nNtHquCe6W2sUpSnGddBQ8/iiUxWa1lTnghcpWg8zmmW5eyIEyM1m Ks6Lpp/WqAZ3HnMpWDaLF3kf+2c2ksJ/DPTB/5ZFV/82pT0UlZHCeOHgHX5ANk56 ZJ7MbiSRI7NrtcA+Hy5hdWrlnPIBD7ug0CIEFafHfJExVETxcM0LFmit+buoDnbm B0ZA2Q5ZvQdMjMjdoNf11Q3U9WwxpBMcN2Lv+70iLZmsoj4eoL9PT8in9Ir1BqRV FLcPxOWoBGw9nfhjU4BwNU89+arapst8 -----END CERTIFICATE-----Generated at Sat Nov 23 02:33:46 2024 by rpki-client on console-fra.rpki-client.org