$ rpki-client -vvf rpki.apnic.net/member_repository/A91D14EF/26401006860B11EB91C12D63C4F9AE02/8bZbeXYWOXNS7L1KLHdPz37G1HA.mft File: 8bZbeXYWOXNS7L1KLHdPz37G1HA.mft (raw, json) Hash identifier: NvlGJDXac1Bts6oQ6FqMuDRAhX1dH1FiYlcbaIaBaVo= Subject key identifier: 31:6C:DF:A0:50:55:75:74:5B:01:97:95:88:20:2A:CC:50:EC:5A:80 Authority key identifier: F1:B6:5B:79:76:16:39:73:52:EC:BD:4A:2C:77:4F:CF:7E:C6:D4:70 Certificate issuer: /CN=A91D14EF/serialNumber=F1B65B797616397352ECBD4A2C774FCF7EC6D470 Certificate serial: 05F9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8bZbeXYWOXNS7L1KLHdPz37G1HA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D14EF/26401006860B11EB91C12D63C4F9AE02/8bZbeXYWOXNS7L1KLHdPz37G1HA.mft Manifest number: 05F4 Signing time: Fri 22 Nov 2024 22:20:58 +0000 Manifest this update: Fri 22 Nov 2024 22:20:57 +0000 Manifest next update: Fri 29 Nov 2024 22:20:57 +0000 Files and hashes: 1: 8bZbeXYWOXNS7L1KLHdPz37G1HA.crl (hash: w5hOWJbpOkwT7fsuHUJdAlwU/GOkYfd7om1bSci1Zks=) 2: 226402B0860D11EB8F541B68C4F9AE02.roa (hash: y7fGqG2zMTlsWUgwcSbG/aCOa1G0W3pseNmyoJID29o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D14EF/26401006860B11EB91C12D63C4F9AE02/8bZbeXYWOXNS7L1KLHdPz37G1HA.crl rsync://rpki.apnic.net/member_repository/A91D14EF/26401006860B11EB91C12D63C4F9AE02/8bZbeXYWOXNS7L1KLHdPz37G1HA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8bZbeXYWOXNS7L1KLHdPz37G1HA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1529 (0x5f9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D14EF/serialNumber=F1B65B797616397352ECBD4A2C774FCF7EC6D470 Validity Not Before: Nov 22 22:20:57 2024 GMT Not After : Nov 29 22:20:57 2024 GMT Subject: CN=674103c9-5f16 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:94:28:a9:63:9e:42:52:e8:66:8f:d9:3e:0e: 5a:bd:41:a3:a8:c0:f8:4a:e6:8f:42:1c:0e:49:1d: 6d:6b:3d:44:d1:b7:7c:89:2d:f3:ab:2e:37:ad:b9: f9:b5:1e:a6:a1:b9:f3:b6:68:a8:c8:5e:6c:c8:de: 62:a2:e1:67:8a:9a:ab:ef:b9:7a:cb:c1:89:8c:02: 15:50:29:88:1f:52:b0:b0:7c:66:a7:04:b7:f7:6c: 9b:6d:c8:60:83:45:49:38:fb:c6:21:8d:71:40:84: 76:04:e1:c3:dd:fd:d4:80:29:8d:62:95:55:1d:ca: 93:56:6d:ac:06:5d:22:f3:36:ac:f3:b2:9d:48:4d: 86:74:98:9c:00:60:04:0c:e8:bb:27:30:cb:eb:8e: 6c:31:83:70:19:c1:e3:3a:19:9d:14:db:3d:d4:5f: 1b:55:1b:d9:c3:53:4f:02:4b:7b:32:72:43:e9:2c: 40:0c:f2:64:e3:3f:ea:a6:ec:3f:ff:1e:3c:08:bf: 50:6c:d4:56:40:49:55:49:95:f8:4c:c8:c2:84:20: 7a:35:40:df:5c:20:d9:4e:d3:5d:71:12:80:92:3c: a7:89:92:9e:8b:e4:ce:5a:b2:fe:15:47:b2:8c:2a: 72:13:b5:af:d6:a2:94:83:cf:fa:73:2b:2c:af:dd: 11:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:6C:DF:A0:50:55:75:74:5B:01:97:95:88:20:2A:CC:50:EC:5A:80 X509v3 Authority Key Identifier: keyid:F1:B6:5B:79:76:16:39:73:52:EC:BD:4A:2C:77:4F:CF:7E:C6:D4:70 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D14EF/26401006860B11EB91C12D63C4F9AE02/8bZbeXYWOXNS7L1KLHdPz37G1HA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8bZbeXYWOXNS7L1KLHdPz37G1HA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D14EF/26401006860B11EB91C12D63C4F9AE02/8bZbeXYWOXNS7L1KLHdPz37G1HA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5d:b9:19:ad:cf:a5:7d:17:1e:ba:dc:29:c3:54:ca:b9:1b:12: 6f:22:1a:e2:52:ef:2e:de:da:b2:d3:3a:14:0f:f1:77:8a:ae: f7:c3:1f:b4:f1:64:ef:e9:63:36:27:4a:0e:93:1b:6b:0d:e7: 2e:2a:43:c0:94:16:49:55:f6:57:84:66:60:af:f7:6b:34:8b: dd:ab:ae:b1:ff:7e:0d:75:9d:bc:cf:b6:bf:95:66:f5:39:96: bc:f6:9b:00:8a:63:ce:22:49:30:3e:70:6a:ad:90:53:ee:96: 38:bc:9c:22:6d:bb:a0:96:51:ee:24:c8:49:93:f9:a6:a8:2b: df:d1:bf:aa:ed:8c:b7:3c:83:4f:a7:df:77:8f:14:37:8e:76: 28:0f:2c:05:58:1e:d0:a2:58:f7:ca:84:c0:94:4b:67:3e:a6: 6e:85:6d:2f:a4:1c:44:d3:22:d0:fe:3c:cc:0c:24:1f:50:26: 12:c9:1b:5f:3f:76:39:50:9b:8c:49:ec:13:86:42:d2:c6:3f: 51:91:6d:69:c1:ad:be:6a:18:25:ee:67:b7:c8:99:b2:f3:6b: 86:4a:8f:9c:d1:a7:37:c7:89:ae:f2:94:30:71:ea:0a:d0:d7: 04:c8:8c:a9:36:d3:d8:34:61:c4:a0:eb:86:64:d1:8a:a5:5f: 12:94:67:34 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBfkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDE0RUYxMTAvBgNVBAUTKEYxQjY1Qjc5NzYxNjM5NzM1MkVDQkQ0QTJDNzc0RkNG N0VDNkQ0NzAwHhcNMjQxMTIyMjIyMDU3WhcNMjQxMTI5MjIyMDU3WjAYMRYwFAYD VQQDEw02NzQxMDNjOS01ZjE2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArpQoqWOeQlLoZo/ZPg5avUGjqMD4SuaPQhwOSR1taz1E0bd8iS3zqy43rbn5 tR6mobnztmioyF5syN5iouFnipqr77l6y8GJjAIVUCmIH1KwsHxmpwS392ybbchg g0VJOPvGIY1xQIR2BOHD3f3UgCmNYpVVHcqTVm2sBl0i8zas87KdSE2GdJicAGAE DOi7JzDL645sMYNwGcHjOhmdFNs91F8bVRvZw1NPAkt7MnJD6SxADPJk4z/qpuw/ /x48CL9QbNRWQElVSZX4TMjChCB6NUDfXCDZTtNdcRKAkjyniZKei+TOWrL+FUey jCpyE7Wv1qKUg8/6cyssr90R3QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDFs36BQ VXV0WwGXlYggKsxQ7FqAMB8GA1UdIwQYMBaAFPG2W3l2FjlzUuy9Six3T89+xtRw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMTRFRi8yNjQwMTAwNjg2 MEIxMUVCOTFDMTJENjNDNEY5QUUwMi84YlpiZVhZV09YTlM3TDFLTEhkUHozN0cx SEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzhiWmJlWFlXT1hOUzdMMUtMSGRQejM3RzFIQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MTRFRi8yNjQwMTAwNjg2MEIxMUVCOTFDMTJENjNDNEY5QUUwMi84YlpiZVhZV09Y TlM3TDFLTEhkUHozN0cxSEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBduRmtz6V9Fx663CnDVMq5GxJvIhriUu8u3tqy0zoUD/F3iq73wx+0 8WTv6WM2J0oOkxtrDecuKkPAlBZJVfZXhGZgr/drNIvdq66x/34NdZ28z7a/lWb1 OZa89psAimPOIkkwPnBqrZBT7pY4vJwibbugllHuJMhJk/mmqCvf0b+q7Yy3PINP p993jxQ3jnYoDywFWB7Qolj3yoTAlEtnPqZuhW0vpBxE0yLQ/jzMDCQfUCYSyRtf P3Y5UJuMSewThkLSxj9RkW1pwa2+ahgl7me3yJmy82uGSo+c0ac3x4mu8pQwceoK 0NcEyIypNtPYNGHEoOuGZNGKpV8SlGc0 -----END CERTIFICATE-----Generated at Fri Nov 22 23:39:34 2024 by rpki-client on console-fra.rpki-client.org