$ rpki-client -vvf rpki.apnic.net/member_repository/A91D1306/FE49749883CA11E7B8240A42C4F9AE02/4E-yqmJ9l7mJrs_oaXTjxfMDEho.mft File: 4E-yqmJ9l7mJrs_oaXTjxfMDEho.mft (raw, json) Hash identifier: rpIzDBab/BzXbrcfwtJP2ATCxYV5bm4ZVJ5OkkMnrsI= Subject key identifier: 70:97:1B:04:89:70:02:F2:0B:F1:2F:39:A0:54:50:26:D9:99:31:F6 Authority key identifier: E0:4F:B2:AA:62:7D:97:B9:89:AE:CF:E8:69:74:E3:C5:F3:03:12:1A Certificate issuer: /CN=A91D1306/serialNumber=E04FB2AA627D97B989AECFE86974E3C5F303121A Certificate serial: 18AE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4E-yqmJ9l7mJrs_oaXTjxfMDEho.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D1306/FE49749883CA11E7B8240A42C4F9AE02/4E-yqmJ9l7mJrs_oaXTjxfMDEho.mft Manifest number: 18A4 Signing time: Fri 22 Nov 2024 16:28:24 +0000 Manifest this update: Fri 22 Nov 2024 16:28:24 +0000 Manifest next update: Fri 29 Nov 2024 16:28:23 +0000 Files and hashes: 1: 4E-yqmJ9l7mJrs_oaXTjxfMDEho.crl (hash: 1vO9Xf/k4HhoJXCIFUFLt5BKTfVh8It+z4GzdFKpB0w=) 2: 66BEBEDE83CB11E796105342C4F9AE02.roa (hash: B440WbdvKbjd1VY/h7WWP2ns/DY0sOenjaoST0N8qSQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D1306/FE49749883CA11E7B8240A42C4F9AE02/4E-yqmJ9l7mJrs_oaXTjxfMDEho.crl rsync://rpki.apnic.net/member_repository/A91D1306/FE49749883CA11E7B8240A42C4F9AE02/4E-yqmJ9l7mJrs_oaXTjxfMDEho.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4E-yqmJ9l7mJrs_oaXTjxfMDEho.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 16:28:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6318 (0x18ae) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D1306/serialNumber=E04FB2AA627D97B989AECFE86974E3C5F303121A Validity Not Before: Nov 22 16:28:24 2024 GMT Not After : Nov 29 16:28:23 2024 GMT Subject: CN=6740b128-0c6f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:a3:5a:1b:00:c1:fd:85:0c:e7:41:5e:8a:26: 6c:e8:5e:b4:96:59:47:8f:c3:78:79:ca:49:45:16: 3d:76:18:59:4f:7a:6b:1c:16:82:36:95:9b:26:e9: f5:bc:1f:fe:42:dc:d8:29:1e:86:a3:2d:8e:69:4c: 0b:55:27:53:9c:82:e7:72:9c:6d:26:14:2f:00:76: e1:23:99:d6:c0:20:9c:3a:fe:58:09:aa:3a:68:70: 8d:60:cd:76:71:e3:2c:31:65:cf:91:66:84:de:1e: db:81:e6:ff:0f:5f:3c:90:3e:fe:90:45:59:75:3d: b2:62:6c:31:41:0b:65:17:b0:69:c8:d3:9f:68:f8: 84:77:64:36:cd:12:1d:7b:25:37:8e:1c:cb:ad:f3: 77:af:11:d1:13:d9:00:e1:c8:16:71:de:1d:16:da: 08:4f:dd:d0:a5:88:8a:68:d2:f3:8c:93:b8:95:1e: a7:17:59:7b:0b:92:cc:75:bc:77:45:61:dd:98:79: a0:83:a3:29:f2:08:9b:4a:d7:79:60:5d:fe:24:99: 9f:2b:ac:c6:64:c0:ab:bf:8a:b0:03:f4:73:10:eb: 29:e5:af:46:8d:f5:12:0e:8a:a9:45:c8:14:45:67: 45:d3:b6:78:84:a3:2d:37:6e:84:5d:a6:8e:36:68: c3:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:97:1B:04:89:70:02:F2:0B:F1:2F:39:A0:54:50:26:D9:99:31:F6 X509v3 Authority Key Identifier: keyid:E0:4F:B2:AA:62:7D:97:B9:89:AE:CF:E8:69:74:E3:C5:F3:03:12:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D1306/FE49749883CA11E7B8240A42C4F9AE02/4E-yqmJ9l7mJrs_oaXTjxfMDEho.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4E-yqmJ9l7mJrs_oaXTjxfMDEho.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D1306/FE49749883CA11E7B8240A42C4F9AE02/4E-yqmJ9l7mJrs_oaXTjxfMDEho.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c8:11:6c:70:b5:c7:0f:ac:ef:48:4d:4f:0c:65:c1:14:3a:fa: b1:55:ec:05:68:3b:a6:83:94:c2:dd:22:2f:36:a0:ce:9e:ae: 0a:71:01:1a:b0:a5:b2:3a:b1:22:7c:ec:b4:4e:78:d6:0f:52: 1a:e1:53:54:43:c7:7c:2b:a5:91:e9:ea:a1:18:50:7b:7b:99: 07:df:80:38:70:5b:ea:0c:70:80:51:fe:6e:b1:eb:16:cc:9e: c1:34:d9:c8:fa:b1:e2:37:32:44:0f:41:15:bf:ef:8b:8c:96: 31:71:c1:c7:48:bf:46:80:b0:88:8e:71:6e:d6:25:04:7a:cb: b3:7d:84:99:72:80:cb:ff:ea:4b:e3:e9:32:fe:77:7a:ae:ce: 29:63:54:6d:45:a2:c3:f9:23:0c:aa:ea:2c:6d:3f:fd:0c:88: 12:57:36:bc:3c:c0:e4:42:d1:7a:d9:0d:fd:65:ce:3c:c3:26: 3f:b8:b6:80:15:7f:5f:68:30:51:51:14:1b:37:c6:c4:c8:04: 7f:27:df:23:90:9f:8d:3e:47:b0:ef:ff:ff:24:dc:c0:95:04: b3:df:2e:7c:a3:7f:8d:19:27:e5:f3:37:b7:62:1c:f3:07:00: 85:ca:4b:29:36:6a:ba:6e:04:52:95:e4:3c:5e:bf:6e:88:ab: 6a:94:45:c6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICGK4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDEzMDYxMTAvBgNVBAUTKEUwNEZCMkFBNjI3RDk3Qjk4OUFFQ0ZFODY5NzRFM0M1 RjMwMzEyMUEwHhcNMjQxMTIyMTYyODI0WhcNMjQxMTI5MTYyODIzWjAYMRYwFAYD VQQDEw02NzQwYjEyOC0wYzZmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4qNaGwDB/YUM50FeiiZs6F60lllHj8N4ecpJRRY9dhhZT3prHBaCNpWbJun1 vB/+QtzYKR6Goy2OaUwLVSdTnILncpxtJhQvAHbhI5nWwCCcOv5YCao6aHCNYM12 ceMsMWXPkWaE3h7bgeb/D188kD7+kEVZdT2yYmwxQQtlF7BpyNOfaPiEd2Q2zRId eyU3jhzLrfN3rxHRE9kA4cgWcd4dFtoIT93QpYiKaNLzjJO4lR6nF1l7C5LMdbx3 RWHdmHmgg6Mp8gibStd5YF3+JJmfK6zGZMCrv4qwA/RzEOsp5a9GjfUSDoqpRcgU RWdF07Z4hKMtN26EXaaONmjDpQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHCXGwSJ cALyC/EvOaBUUCbZmTH2MB8GA1UdIwQYMBaAFOBPsqpifZe5ia7P6Gl048XzAxIa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMTMwNi9GRTQ5NzQ5ODgz Q0ExMUU3QjgyNDBBNDJDNEY5QUUwMi80RS15cW1KOWw3bUpyc19vYVhUanhmTURF aG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRFLXlxbUo5bDdtSnJzX29hWFRqeGZNREVoby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MTMwNi9GRTQ5NzQ5ODgzQ0ExMUU3QjgyNDBBNDJDNEY5QUUwMi80RS15cW1KOWw3 bUpyc19vYVhUanhmTURFaG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDIEWxwtccPrO9ITU8MZcEUOvqxVewFaDumg5TC3SIvNqDOnq4KcQEa sKWyOrEifOy0TnjWD1Ia4VNUQ8d8K6WR6eqhGFB7e5kH34A4cFvqDHCAUf5usesW zJ7BNNnI+rHiNzJED0EVv++LjJYxccHHSL9GgLCIjnFu1iUEesuzfYSZcoDL/+pL 4+ky/nd6rs4pY1RtRaLD+SMMquosbT/9DIgSVza8PMDkQtF62Q39Zc48wyY/uLaA FX9faDBRURQbN8bEyAR/J98jkJ+NPkew7///JNzAlQSz3y58o3+NGSfl8ze3Yhzz BwCFykspNmq6bgRSleQ8Xr9uiKtqlEXG -----END CERTIFICATE-----Generated at Fri Nov 22 17:56:21 2024 by rpki-client on console-fra.rpki-client.org