$ rpki-client -vvf rpki.apnic.net/member_repository/A91D2CDA/2C7E72B85A1611EF82B6D912C4F9AE02/DlRiWWwMbnfhibUb4m4lyRU4xVw.mft File: DlRiWWwMbnfhibUb4m4lyRU4xVw.mft (raw, json) Hash identifier: sVQBmkuOy/7HtEedGSPDF6AYhVrs2D/bBURumqRt5E0= Subject key identifier: 9D:E5:56:BF:FC:1C:35:8B:4B:83:84:AE:4A:DE:12:29:40:FF:2D:30 Authority key identifier: 0E:54:62:59:6C:0C:6E:77:E1:89:B5:1B:E2:6E:25:C9:15:38:C5:5C Certificate issuer: /CN=A91D2CDA/serialNumber=0E5462596C0C6E77E189B51BE26E25C91538C55C Certificate serial: 39 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DlRiWWwMbnfhibUb4m4lyRU4xVw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D2CDA/2C7E72B85A1611EF82B6D912C4F9AE02/DlRiWWwMbnfhibUb4m4lyRU4xVw.mft Manifest number: 37 Signing time: Thu 21 Nov 2024 05:35:49 +0000 Manifest this update: Thu 21 Nov 2024 05:35:49 +0000 Manifest next update: Thu 28 Nov 2024 05:35:49 +0000 Files and hashes: 1: DlRiWWwMbnfhibUb4m4lyRU4xVw.crl (hash: H9ILNP9Hbkxg0bXHOAlkzB9sXD4L8+gkc8U2IbPVxe8=) 2: 609701825A1611EF9ED11513C4F9AE02.roa (hash: bgNsvlct6cf/BWMOzM4D0nnTwsIX5vRKPjJTejU5LP8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D2CDA/2C7E72B85A1611EF82B6D912C4F9AE02/DlRiWWwMbnfhibUb4m4lyRU4xVw.crl rsync://rpki.apnic.net/member_repository/A91D2CDA/2C7E72B85A1611EF82B6D912C4F9AE02/DlRiWWwMbnfhibUb4m4lyRU4xVw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DlRiWWwMbnfhibUb4m4lyRU4xVw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 05:18:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 57 (0x39) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D2CDA/serialNumber=0E5462596C0C6E77E189B51BE26E25C91538C55C Validity Not Before: Nov 21 05:35:49 2024 GMT Not After : Nov 28 05:35:49 2024 GMT Subject: CN=673ec6b5-6c54 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:87:a2:0a:61:89:28:e2:5e:24:5b:a8:ae:03: 16:16:80:69:c0:49:ae:5e:86:f1:47:d3:12:f9:4e: ec:5c:f7:ad:63:22:4c:a6:ec:fd:fc:f0:78:cc:a7: d0:16:03:e4:3b:23:bc:b3:7b:ca:7b:da:f9:a6:7c: f1:75:cd:5b:bf:0f:55:e9:f6:b3:ac:96:70:fa:05: 73:78:66:2f:45:93:1c:40:e0:db:40:75:bd:7e:38: 00:b8:6a:54:52:98:e2:0c:e2:08:24:84:7d:e4:e2: e8:8d:1d:63:fe:54:f4:ea:04:98:6f:42:88:94:61: 2e:bb:8c:63:25:bc:22:fa:83:43:59:6b:05:5a:81: 33:09:04:1c:76:d4:28:64:7d:7f:d0:25:0e:cd:ae: d2:a9:d4:10:00:66:c0:bd:56:05:96:f0:a4:08:5d: ca:bb:6a:da:ff:86:78:25:bf:5b:96:96:8e:cd:9f: 52:f8:3a:97:75:25:b9:cc:55:58:fc:bc:06:21:4c: 50:e9:d2:c4:d3:0d:c1:99:96:3f:27:d5:87:a6:94: e2:5a:20:6c:ca:98:ee:4a:c2:98:61:77:2e:6d:53: ce:2a:f6:c4:4b:a2:72:24:fa:a4:5d:64:24:ed:48: fa:ba:92:cf:8a:bb:8f:90:c8:b0:22:67:82:60:8c: 54:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:E5:56:BF:FC:1C:35:8B:4B:83:84:AE:4A:DE:12:29:40:FF:2D:30 X509v3 Authority Key Identifier: keyid:0E:54:62:59:6C:0C:6E:77:E1:89:B5:1B:E2:6E:25:C9:15:38:C5:5C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D2CDA/2C7E72B85A1611EF82B6D912C4F9AE02/DlRiWWwMbnfhibUb4m4lyRU4xVw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DlRiWWwMbnfhibUb4m4lyRU4xVw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D2CDA/2C7E72B85A1611EF82B6D912C4F9AE02/DlRiWWwMbnfhibUb4m4lyRU4xVw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8b:e5:f6:3a:af:69:88:10:f0:89:23:b0:09:0d:81:7a:5a:02: c8:e1:7f:62:8c:96:04:18:5e:60:e5:ca:0f:ce:d1:8c:30:4a: ef:57:42:c3:92:cf:ad:09:21:4c:53:e3:3b:4d:13:c6:f9:00: f8:07:39:c6:41:e3:d7:ce:6e:61:dc:94:eb:54:3b:e8:fd:ad: cc:4c:a5:5f:15:f6:10:cb:79:0d:a6:d9:ef:ee:d8:0f:df:f6: c2:ae:06:bc:61:41:d5:e9:7a:0f:9a:b2:f8:ff:a8:8b:f2:ee: 30:6e:ff:fe:57:ea:f0:a9:02:e5:55:39:52:26:bc:57:04:c1: 5e:a7:63:92:9d:d1:43:84:24:b3:40:8d:5e:16:58:1f:62:b9: 29:a0:9d:38:52:e0:19:8b:b4:9c:55:dc:c2:6c:ee:5f:e4:99: 69:2f:97:17:ca:98:30:07:49:d3:4c:04:b6:44:6e:6f:14:d0: 9a:ae:86:59:c0:20:62:8c:c0:35:c5:52:d1:30:77:7b:63:c4: c7:78:15:87:37:8e:c4:62:5d:23:c6:69:5f:9b:e3:a8:1d:5e: c7:3f:8a:7b:08:83:cf:02:12:ed:91:8d:9d:75:4e:63:98:5d: 31:38:a3:4d:09:29:f3:b3:c3:0f:b5:e1:64:e3:93:17:dc:c5: 01:59:e5:72 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBOTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE MkNEQTExMC8GA1UEBRMoMEU1NDYyNTk2QzBDNkU3N0UxODlCNTFCRTI2RTI1Qzkx NTM4QzU1QzAeFw0yNDExMjEwNTM1NDlaFw0yNDExMjgwNTM1NDlaMBgxFjAUBgNV BAMTDTY3M2VjNmI1LTZjNTQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCxh6IKYYko4l4kW6iuAxYWgGnASa5ehvFH0xL5Tuxc961jIkym7P388HjMp9AW A+Q7I7yze8p72vmmfPF1zVu/D1Xp9rOslnD6BXN4Zi9FkxxA4NtAdb1+OAC4alRS mOIM4ggkhH3k4uiNHWP+VPTqBJhvQoiUYS67jGMlvCL6g0NZawVagTMJBBx21Chk fX/QJQ7NrtKp1BAAZsC9VgWW8KQIXcq7atr/hnglv1uWlo7Nn1L4Opd1JbnMVVj8 vAYhTFDp0sTTDcGZlj8n1YemlOJaIGzKmO5Kwphhdy5tU84q9sRLonIk+qRdZCTt SPq6ks+Ku4+QyLAiZ4JgjFQrAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUneVWv/wc NYtLg4SuSt4SKUD/LTAwHwYDVR0jBBgwFoAUDlRiWWwMbnfhibUb4m4lyRU4xVww DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQyQ0RBLzJDN0U3MkI4NUEx NjExRUY4MkI2RDkxMkM0RjlBRTAyL0RsUmlXV3dNYm5maGliVWI0bTRseVJVNHhW dy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvRGxSaVdXd01ibmZoaWJVYjRtNGx5UlU0eFZ3LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQy Q0RBLzJDN0U3MkI4NUExNjExRUY4MkI2RDkxMkM0RjlBRTAyL0RsUmlXV3dNYm5m aGliVWI0bTRseVJVNHhWdy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAIvl9jqvaYgQ8IkjsAkNgXpaAsjhf2KMlgQYXmDlyg/O0YwwSu9XQsOS z60JIUxT4ztNE8b5APgHOcZB49fObmHclOtUO+j9rcxMpV8V9hDLeQ2m2e/u2A/f 9sKuBrxhQdXpeg+asvj/qIvy7jBu//5X6vCpAuVVOVImvFcEwV6nY5Kd0UOEJLNA jV4WWB9iuSmgnThS4BmLtJxV3MJs7l/kmWkvlxfKmDAHSdNMBLZEbm8U0JquhlnA IGKMwDXFUtEwd3tjxMd4FYc3jsRiXSPGaV+b46gdXsc/insIg88CEu2RjZ11TmOY XTE4o00JKfOzww+14WTjkxfcxQFZ5XI= -----END CERTIFICATE-----Generated at Thu Nov 21 06:50:51 2024 by rpki-client on console-fra.rpki-client.org