$ rpki-client -vvf rpki.apnic.net/member_repository/A91D4345/EC78CDDA053811EAB5897668C4F9AE02/5TfQw0j9fcSfX8OwBmoxxYT64as.mft File: 5TfQw0j9fcSfX8OwBmoxxYT64as.mft (raw, json) Hash identifier: RGRFfppNpV75UDee2X5ZopGxg0q8vIPZt3dCF/ymLB8= Subject key identifier: C1:0B:89:02:88:8E:17:AB:06:E4:FC:A0:2A:E2:1B:EE:5C:22:89:B7 Authority key identifier: E5:37:D0:C3:48:FD:7D:C4:9F:5F:C3:B0:06:6A:31:C5:84:FA:E1:AB Certificate issuer: /CN=A91D4345/serialNumber=E537D0C348FD7DC49F5FC3B0066A31C584FAE1AB Certificate serial: 0BF4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5TfQw0j9fcSfX8OwBmoxxYT64as.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D4345/EC78CDDA053811EAB5897668C4F9AE02/5TfQw0j9fcSfX8OwBmoxxYT64as.mft Manifest number: 0BE8 Signing time: Fri 22 Nov 2024 18:26:30 +0000 Manifest this update: Fri 22 Nov 2024 18:26:30 +0000 Manifest next update: Fri 29 Nov 2024 18:26:30 +0000 Files and hashes: 1: 5TfQw0j9fcSfX8OwBmoxxYT64as.crl (hash: YN1a6eN4xO2t3lQNeTB38CNk/fANXYGXCies/iAgRqA=) 2: F3529CDCAE1511EE92D99E46C4F9AE02.roa (hash: vERej6PFMwMOORNrIHg1KRCb9Qq6yxbmNgCH2y9OYoM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D4345/EC78CDDA053811EAB5897668C4F9AE02/5TfQw0j9fcSfX8OwBmoxxYT64as.crl rsync://rpki.apnic.net/member_repository/A91D4345/EC78CDDA053811EAB5897668C4F9AE02/5TfQw0j9fcSfX8OwBmoxxYT64as.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5TfQw0j9fcSfX8OwBmoxxYT64as.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 18:26:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3060 (0xbf4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D4345/serialNumber=E537D0C348FD7DC49F5FC3B0066A31C584FAE1AB Validity Not Before: Nov 22 18:26:30 2024 GMT Not After : Nov 29 18:26:30 2024 GMT Subject: CN=6740ccd6-9b0a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:96:25:d1:1f:88:0e:41:82:d6:4a:e0:45:8b: 58:8d:d4:ee:b1:a8:0c:25:08:4a:9c:54:98:3e:20: 53:0c:a6:29:9b:34:a6:1c:ee:57:bc:52:4a:1a:12: 9f:ad:79:ec:84:ff:e6:ad:71:94:07:51:05:79:59: 50:2a:e4:79:4d:94:90:32:57:71:7f:c2:9a:e8:1f: 3b:36:f9:8d:65:45:ae:2a:65:37:4e:b6:db:d5:d4: 32:e1:bf:90:5a:16:9b:a9:8a:09:f2:49:52:d7:95: a4:09:4d:8f:01:59:b5:88:69:4f:2c:72:12:df:c0: 9f:ef:53:27:6b:3e:09:e0:1b:e8:d1:e3:d5:78:65: f2:1b:fe:89:71:6b:d8:65:ab:d2:6a:29:6b:4b:d7: a9:b8:43:c4:61:ab:22:b2:11:12:51:57:4a:fe:d8: 59:45:7e:31:04:56:ae:65:05:ea:c3:8c:f7:ac:08: 78:e6:cb:82:94:0f:88:17:8b:21:ca:f7:a0:57:ac: 7c:e4:bf:75:93:3e:62:2d:67:d3:ef:15:9b:11:e3: 44:c8:b1:25:42:45:00:b4:d6:ec:cb:22:81:8c:62: 23:05:50:2e:8f:f1:82:67:f4:d9:c2:1f:bb:e0:d2: 95:89:b6:f3:f0:d7:72:fa:0a:96:03:d3:f4:a7:57: 87:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:0B:89:02:88:8E:17:AB:06:E4:FC:A0:2A:E2:1B:EE:5C:22:89:B7 X509v3 Authority Key Identifier: keyid:E5:37:D0:C3:48:FD:7D:C4:9F:5F:C3:B0:06:6A:31:C5:84:FA:E1:AB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D4345/EC78CDDA053811EAB5897668C4F9AE02/5TfQw0j9fcSfX8OwBmoxxYT64as.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5TfQw0j9fcSfX8OwBmoxxYT64as.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D4345/EC78CDDA053811EAB5897668C4F9AE02/5TfQw0j9fcSfX8OwBmoxxYT64as.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 84:91:57:6c:18:2e:d9:a2:d4:0b:a1:31:49:dd:5e:e6:c2:f8: c7:fe:8d:eb:f2:94:8b:d2:56:88:a5:7b:9e:9f:d5:c4:a6:87: 43:f2:de:83:06:5b:b2:a6:99:a8:35:28:be:26:82:b8:af:64: 65:00:a2:d9:20:93:5b:49:d0:75:01:97:4e:45:82:f9:b7:3f: a7:ef:73:9f:d0:aa:8e:66:ab:32:bf:ec:64:c8:7f:99:f2:4b: 30:be:2f:8d:0b:e4:33:e2:93:b3:00:53:db:a1:16:1c:a7:88: f3:ce:9c:d3:b3:9e:69:ec:85:07:0b:ae:06:45:3b:e3:4a:9b: 9e:f2:4d:c7:36:81:b7:1c:0b:d0:d3:eb:62:17:dd:3d:d7:0a: d3:5e:cb:90:1d:6b:da:8c:9d:e4:ab:8c:44:96:1a:3d:b1:cf: 95:16:c2:35:c1:c7:6a:c0:21:b1:cb:90:c7:21:51:88:aa:d6: 49:63:6b:b9:7a:30:0c:78:3c:79:4f:93:4f:31:a4:16:91:58: 5c:a1:bc:8f:b2:8c:45:49:00:c2:ee:84:ad:5d:58:6e:bb:32: 8b:a4:a0:ec:84:a1:cc:39:d6:04:9b:d8:ed:26:ca:b3:68:6a: 43:95:92:f1:e5:96:92:15:e7:6b:89:62:0a:28:ff:b9:e5:3e: 75:75:64:50 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC/QwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDQzNDUxMTAvBgNVBAUTKEU1MzdEMEMzNDhGRDdEQzQ5RjVGQzNCMDA2NkEzMUM1 ODRGQUUxQUIwHhcNMjQxMTIyMTgyNjMwWhcNMjQxMTI5MTgyNjMwWjAYMRYwFAYD VQQDEw02NzQwY2NkNi05YjBhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv5Yl0R+IDkGC1krgRYtYjdTusagMJQhKnFSYPiBTDKYpmzSmHO5XvFJKGhKf rXnshP/mrXGUB1EFeVlQKuR5TZSQMldxf8Ka6B87NvmNZUWuKmU3Trbb1dQy4b+Q WhabqYoJ8klS15WkCU2PAVm1iGlPLHIS38Cf71Mnaz4J4Bvo0ePVeGXyG/6JcWvY ZavSailrS9epuEPEYasishESUVdK/thZRX4xBFauZQXqw4z3rAh45suClA+IF4sh yvegV6x85L91kz5iLWfT7xWbEeNEyLElQkUAtNbsyyKBjGIjBVAuj/GCZ/TZwh+7 4NKVibbz8Ndy+gqWA9P0p1eHKQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMELiQKI jherBuT8oCriG+5cIom3MB8GA1UdIwQYMBaAFOU30MNI/X3En1/DsAZqMcWE+uGr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENDM0NS9FQzc4Q0REQTA1 MzgxMUVBQjU4OTc2NjhDNEY5QUUwMi81VGZRdzBqOWZjU2ZYOE93Qm1veHhZVDY0 YXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVUZlF3MGo5ZmNTZlg4T3dCbW94eFlUNjRhcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NDM0NS9FQzc4Q0REQTA1MzgxMUVBQjU4OTc2NjhDNEY5QUUwMi81VGZRdzBqOWZj U2ZYOE93Qm1veHhZVDY0YXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCEkVdsGC7ZotQLoTFJ3V7mwvjH/o3r8pSL0laIpXuen9XEpodD8t6D BluyppmoNSi+JoK4r2RlAKLZIJNbSdB1AZdORYL5tz+n73Of0KqOZqsyv+xkyH+Z 8kswvi+NC+Qz4pOzAFPboRYcp4jzzpzTs55p7IUHC64GRTvjSpue8k3HNoG3HAvQ 0+tiF9091wrTXsuQHWvajJ3kq4xElho9sc+VFsI1wcdqwCGxy5DHIVGIqtZJY2u5 ejAMeDx5T5NPMaQWkVhcobyPsoxFSQDC7oStXVhuuzKLpKDshKHMOdYEm9jtJsqz aGpDlZLx5ZaSFedriWIKKP+55T51dWRQ -----END CERTIFICATE-----Generated at Fri Nov 22 19:45:03 2024 by rpki-client on console-fra.rpki-client.org