$ rpki-client -vvf rpki.apnic.net/member_repository/A91D366A/EC09AA4A307D11EDA6C3A212C4F9AE02/sGfGu3DfDcBM5398jXZwakn2y4U.mft File: sGfGu3DfDcBM5398jXZwakn2y4U.mft (raw, json) Hash identifier: Q3Ss4mSaPGxXbycl9noHSu58N2tQFd1v85Z7iZQv9eg= Subject key identifier: 1B:5F:D7:92:DB:D4:27:C9:E8:58:59:56:7D:87:1F:E4:E1:77:1F:53 Authority key identifier: B0:67:C6:BB:70:DF:0D:C0:4C:E7:7F:7C:8D:76:70:6A:49:F6:CB:85 Certificate issuer: /CN=A91D366A/serialNumber=B067C6BB70DF0DC04CE77F7C8D76706A49F6CB85 Certificate serial: 0217 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sGfGu3DfDcBM5398jXZwakn2y4U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D366A/EC09AA4A307D11EDA6C3A212C4F9AE02/sGfGu3DfDcBM5398jXZwakn2y4U.mft Manifest number: 01F3 Signing time: Thu 21 Nov 2024 01:47:01 +0000 Manifest this update: Thu 21 Nov 2024 01:47:01 +0000 Manifest next update: Thu 28 Nov 2024 01:47:01 +0000 Files and hashes: 1: sGfGu3DfDcBM5398jXZwakn2y4U.crl (hash: Ieh7x0ugg4aDlj8VG45TaWvnT5OFO5wr2948LgGlcvs=) 2: E309B1883C9711EF88C2B284C4F9AE02.roa (hash: w51TUZ9aKXo3NJmk6dhABfqfugO3+EeHqPsN7Ek6pSc=) 3: 8673F05C816911EF9022F40CC4F9AE02.roa (hash: Lvob14CywzAMuxThU8EVo51F2cECjcbnduJBtYIJSBI=) 4: 4E65B594D35711EEB8F04828C4F9AE02.roa (hash: oF0KHM0s6qEdjrzJyCovkn3VK6S/rVe2wxmJbXBONNA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D366A/EC09AA4A307D11EDA6C3A212C4F9AE02/sGfGu3DfDcBM5398jXZwakn2y4U.crl rsync://rpki.apnic.net/member_repository/A91D366A/EC09AA4A307D11EDA6C3A212C4F9AE02/sGfGu3DfDcBM5398jXZwakn2y4U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sGfGu3DfDcBM5398jXZwakn2y4U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:33:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 535 (0x217) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D366A/serialNumber=B067C6BB70DF0DC04CE77F7C8D76706A49F6CB85 Validity Not Before: Nov 21 01:47:01 2024 GMT Not After : Nov 28 01:47:01 2024 GMT Subject: CN=673e9115-c755 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:0d:f7:7d:cd:b2:1f:dc:31:7d:d0:63:b8:e3: 81:21:72:3a:4c:dd:9a:26:fd:79:d2:5f:c7:68:85: af:0c:6c:e8:30:7e:97:3a:07:fc:78:37:a6:16:84: 92:18:66:ad:db:fb:11:2b:19:25:96:a7:c3:d3:0c: 69:16:3b:da:20:b2:e9:81:6d:69:a2:55:09:6b:a8: a0:0f:96:ed:4b:e1:35:83:b4:16:4d:66:44:ab:35: 9e:8b:67:be:cd:97:35:97:a8:e1:90:e6:71:32:85: 28:30:bb:01:65:8b:49:53:07:0e:f5:56:9b:fa:13: 2b:0a:f7:7e:3f:a2:fa:38:d1:1b:b0:70:f9:8e:82: 7d:14:15:3e:a0:95:34:ab:e2:93:0e:3d:f7:63:b0: 23:0d:20:cb:fd:df:e5:f8:24:f6:25:d1:08:14:45: b3:8c:ae:4b:66:03:2b:7f:fa:c6:a2:4e:81:c8:d2: c7:23:bc:ac:1e:2a:8a:5f:54:ca:62:e8:d3:fc:75: a7:40:3d:ff:f4:dc:1d:cd:bd:31:ab:b9:54:33:25: e6:84:45:df:b3:39:61:26:50:29:ba:79:82:64:2e: 12:dd:6d:59:bf:54:99:eb:ef:bb:f5:e5:a2:ea:1c: d2:36:97:d8:d3:1d:b2:f2:a0:16:71:a3:79:8a:93: 73:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:5F:D7:92:DB:D4:27:C9:E8:58:59:56:7D:87:1F:E4:E1:77:1F:53 X509v3 Authority Key Identifier: keyid:B0:67:C6:BB:70:DF:0D:C0:4C:E7:7F:7C:8D:76:70:6A:49:F6:CB:85 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D366A/EC09AA4A307D11EDA6C3A212C4F9AE02/sGfGu3DfDcBM5398jXZwakn2y4U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sGfGu3DfDcBM5398jXZwakn2y4U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D366A/EC09AA4A307D11EDA6C3A212C4F9AE02/sGfGu3DfDcBM5398jXZwakn2y4U.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 18:b4:ed:02:00:e4:83:dc:69:9b:3c:6c:47:d7:51:e9:57:07: 70:7a:33:13:7b:9c:53:57:6b:d4:59:4c:27:88:31:fc:b3:33: 3b:29:33:fe:c2:27:76:aa:2c:03:bb:81:f3:70:57:1d:f0:f7: c7:74:de:c4:1a:6c:64:28:b4:4f:ff:2e:9b:de:8f:7b:2d:d6: d5:eb:8c:a1:70:0d:54:20:e3:82:61:61:41:6b:ce:2e:8d:07: 59:fd:d3:4f:94:91:d3:db:eb:ff:89:b3:50:77:f4:e0:84:82: 85:13:30:f1:ad:08:43:0a:64:5d:3b:6f:be:c4:34:3a:93:d4: f8:51:df:a8:18:ba:63:ea:77:66:86:5e:f6:14:42:be:d8:13: 26:92:8b:2d:9c:a7:40:ce:a3:be:5a:22:77:af:3f:df:a8:85: 37:9e:99:26:95:13:ae:f3:ac:2f:7d:ac:03:65:37:da:28:f3: c9:12:a6:ec:46:db:df:8e:3e:10:6f:4c:e9:fb:a9:a3:40:5e: 6c:de:7e:88:6f:ee:22:65:c1:9b:01:f6:24:9c:ad:03:9f:b8: 8f:24:66:c7:94:16:cf:08:dd:1b:db:ba:16:6c:f0:ee:8b:ad: 5f:11:c5:ee:38:6c:0d:46:a0:0d:bd:29:81:a3:0e:7a:7b:f6: a8:f9:a2:9f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAhcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDM2NkExMTAvBgNVBAUTKEIwNjdDNkJCNzBERjBEQzA0Q0U3N0Y3QzhENzY3MDZB NDlGNkNCODUwHhcNMjQxMTIxMDE0NzAxWhcNMjQxMTI4MDE0NzAxWjAYMRYwFAYD VQQDEw02NzNlOTExNS1jNzU1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuA33fc2yH9wxfdBjuOOBIXI6TN2aJv150l/HaIWvDGzoMH6XOgf8eDemFoSS GGat2/sRKxkllqfD0wxpFjvaILLpgW1polUJa6igD5btS+E1g7QWTWZEqzWei2e+ zZc1l6jhkOZxMoUoMLsBZYtJUwcO9Vab+hMrCvd+P6L6ONEbsHD5joJ9FBU+oJU0 q+KTDj33Y7AjDSDL/d/l+CT2JdEIFEWzjK5LZgMrf/rGok6ByNLHI7ysHiqKX1TK YujT/HWnQD3/9Nwdzb0xq7lUMyXmhEXfszlhJlApunmCZC4S3W1Zv1SZ6++79eWi 6hzSNpfY0x2y8qAWcaN5ipNzLwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBtf15Lb 1CfJ6FhZVn2HH+Thdx9TMB8GA1UdIwQYMBaAFLBnxrtw3w3ATOd/fI12cGpJ9suF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMzY2QS9FQzA5QUE0QTMw N0QxMUVEQTZDM0EyMTJDNEY5QUUwMi9zR2ZHdTNEZkRjQk01Mzk4alhad2FrbjJ5 NFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3NHZkd1M0RmRGNCTTUzOThqWFp3YWtuMnk0VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MzY2QS9FQzA5QUE0QTMwN0QxMUVEQTZDM0EyMTJDNEY5QUUwMi9zR2ZHdTNEZkRj Qk01Mzk4alhad2FrbjJ5NFUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAYtO0CAOSD3GmbPGxH11HpVwdwejMTe5xTV2vUWUwniDH8szM7KTP+ wid2qiwDu4HzcFcd8PfHdN7EGmxkKLRP/y6b3o97LdbV64yhcA1UIOOCYWFBa84u jQdZ/dNPlJHT2+v/ibNQd/TghIKFEzDxrQhDCmRdO2++xDQ6k9T4Ud+oGLpj6ndm hl72FEK+2BMmkostnKdAzqO+WiJ3rz/fqIU3npkmlROu86wvfawDZTfaKPPJEqbs Rtvfjj4Qb0zp+6mjQF5s3n6Ib+4iZcGbAfYknK0Dn7iPJGbHlBbPCN0b27oWbPDu i61fEcXuOGwNRqANvSmBow56e/ao+aKf -----END CERTIFICATE-----Generated at Thu Nov 21 03:12:05 2024 by rpki-client on console-fra.rpki-client.org