$ rpki-client -vvf rpki.apnic.net/member_repository/A91D4D97/1F6146E0567811EC922A3567C4F9AE02/cn1G1OfHecpnYSxgtGVS68IZkPs.mft File: cn1G1OfHecpnYSxgtGVS68IZkPs.mft (raw, json) Hash identifier: Jsda7f/LHEVIlmhZkPWgfbsF+Tz3UrQSX0EAoi5y+Xk= Subject key identifier: EB:5D:37:98:9F:3C:83:B9:03:C0:32:E5:B1:1F:52:25:57:35:C0:52 Authority key identifier: 72:7D:46:D4:E7:C7:79:CA:67:61:2C:60:B4:65:52:EB:C2:19:90:FB Certificate issuer: /CN=A91D4D97/serialNumber=727D46D4E7C779CA67612C60B46552EBC21990FB Certificate serial: 03EF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cn1G1OfHecpnYSxgtGVS68IZkPs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D4D97/1F6146E0567811EC922A3567C4F9AE02/cn1G1OfHecpnYSxgtGVS68IZkPs.mft Manifest number: 03EB Signing time: Sat 23 Nov 2024 00:05:24 +0000 Manifest this update: Sat 23 Nov 2024 00:05:24 +0000 Manifest next update: Sat 30 Nov 2024 00:05:24 +0000 Files and hashes: 1: cn1G1OfHecpnYSxgtGVS68IZkPs.crl (hash: 966JwVw9LYfkR9vgJAnFSPPtp3KOP3SzngFJV3T2N7g=) 2: A9E2BE54567B11ECB346816BC4F9AE02.roa (hash: TPVU1s6exIqwh/rpq/ezgL4ll5z3zJFyVmt+0YWYn8g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D4D97/1F6146E0567811EC922A3567C4F9AE02/cn1G1OfHecpnYSxgtGVS68IZkPs.crl rsync://rpki.apnic.net/member_repository/A91D4D97/1F6146E0567811EC922A3567C4F9AE02/cn1G1OfHecpnYSxgtGVS68IZkPs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cn1G1OfHecpnYSxgtGVS68IZkPs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1007 (0x3ef) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D4D97/serialNumber=727D46D4E7C779CA67612C60B46552EBC21990FB Validity Not Before: Nov 23 00:05:24 2024 GMT Not After : Nov 30 00:05:24 2024 GMT Subject: CN=67411c44-1f93 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:64:e4:96:04:d6:a6:31:54:a5:50:a1:d8:ba: c9:38:65:ec:ec:da:1f:f4:68:a8:6a:2b:4d:fa:3e: 6b:85:0e:df:78:12:ac:7d:85:dd:82:49:2b:b2:a8: 76:86:5f:0b:13:3c:9d:36:84:bd:bb:dc:91:86:0c: 12:d3:c0:80:8a:e4:fd:d1:18:db:3e:f1:e9:18:a1: 24:af:9c:65:05:bf:13:80:65:b8:aa:e4:82:d4:41: 42:14:3d:35:bf:51:1c:86:96:37:86:b0:35:df:1d: c7:c0:35:18:88:04:85:29:6f:8c:ed:51:1c:8d:f5: 4e:e4:9c:ce:f3:6f:46:7d:2c:30:4d:36:cf:5c:b2: 5e:2d:b2:f5:4b:a5:36:cf:fd:ed:fd:1a:a5:ac:64: 5f:c2:f1:10:31:6f:72:f3:14:54:65:02:f0:37:eb: 9c:04:c1:a4:be:53:19:fd:86:36:02:bb:82:61:af: ee:ab:f7:89:21:64:a1:35:a2:0e:a3:84:bc:a7:7e: 91:20:6b:d8:fe:03:6f:a3:44:6c:87:12:80:bc:ad: c0:f8:48:c9:a6:6f:63:3d:1f:99:01:03:cd:2e:7c: d4:fd:b3:4a:a9:b8:a1:3e:b3:a0:92:c1:fd:60:4d: b9:db:87:49:c4:94:a8:19:93:a0:78:fe:b3:79:34: 6d:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:5D:37:98:9F:3C:83:B9:03:C0:32:E5:B1:1F:52:25:57:35:C0:52 X509v3 Authority Key Identifier: keyid:72:7D:46:D4:E7:C7:79:CA:67:61:2C:60:B4:65:52:EB:C2:19:90:FB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D4D97/1F6146E0567811EC922A3567C4F9AE02/cn1G1OfHecpnYSxgtGVS68IZkPs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cn1G1OfHecpnYSxgtGVS68IZkPs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D4D97/1F6146E0567811EC922A3567C4F9AE02/cn1G1OfHecpnYSxgtGVS68IZkPs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 33:21:a7:92:dc:85:05:ad:65:bc:50:4e:21:78:39:76:f7:f3: 57:94:94:5b:dc:24:2d:2c:4f:9d:5f:c3:50:fc:2d:b8:c9:f5: 84:d4:d3:58:1b:0a:c0:86:f3:35:f9:ec:2e:e4:ea:92:f9:a2: ba:a5:1c:f2:d4:16:4d:93:82:d2:3e:a9:15:2a:c1:46:39:4f: 02:d7:1f:ee:c5:d2:e0:68:5b:d3:f5:0e:31:a7:a2:c3:00:46: a0:d1:56:8b:45:89:51:8c:83:fb:f2:dd:0f:cd:66:c7:a5:fb: af:a0:c0:5c:ee:88:49:d8:72:0a:9e:e3:c7:82:41:13:42:94: 51:fb:57:43:44:a2:be:f6:08:a2:01:c4:66:0b:c5:56:b4:41: 54:3e:4e:89:4d:78:ad:a5:29:80:c5:3b:ff:51:85:aa:0d:9b: 18:79:8a:14:97:7d:a2:9c:6d:7b:91:eb:0c:fb:a2:c4:cd:ae: 18:99:1b:fb:e9:86:1a:5a:4a:4b:69:67:cf:99:8e:61:91:8d: 19:5c:92:bf:1a:a1:8e:29:46:15:b7:db:ca:d3:b4:e1:cd:7f: 7f:9c:f5:ba:39:83:87:0e:4b:d5:ce:cf:0b:c8:35:7b:0f:7a: f0:55:be:ac:6b:17:4e:d9:10:a2:8a:ce:97:10:26:14:1f:19: 08:c3:72:09 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA+8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDREOTcxMTAvBgNVBAUTKDcyN0Q0NkQ0RTdDNzc5Q0E2NzYxMkM2MEI0NjU1MkVC QzIxOTkwRkIwHhcNMjQxMTIzMDAwNTI0WhcNMjQxMTMwMDAwNTI0WjAYMRYwFAYD VQQDEw02NzQxMWM0NC0xZjkzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqmTklgTWpjFUpVCh2LrJOGXs7Nof9GioaitN+j5rhQ7feBKsfYXdgkkrsqh2 hl8LEzydNoS9u9yRhgwS08CAiuT90RjbPvHpGKEkr5xlBb8TgGW4quSC1EFCFD01 v1EchpY3hrA13x3HwDUYiASFKW+M7VEcjfVO5JzO829GfSwwTTbPXLJeLbL1S6U2 z/3t/RqlrGRfwvEQMW9y8xRUZQLwN+ucBMGkvlMZ/YY2AruCYa/uq/eJIWShNaIO o4S8p36RIGvY/gNvo0RshxKAvK3A+EjJpm9jPR+ZAQPNLnzU/bNKqbihPrOgksH9 YE2524dJxJSoGZOgeP6zeTRtewIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOtdN5if PIO5A8Ay5bEfUiVXNcBSMB8GA1UdIwQYMBaAFHJ9RtTnx3nKZ2EsYLRlUuvCGZD7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENEQ5Ny8xRjYxNDZFMDU2 NzgxMUVDOTIyQTM1NjdDNEY5QUUwMi9jbjFHMU9mSGVjcG5ZU3hndEdWUzY4SVpr UHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NuMUcxT2ZIZWNwbllTeGd0R1ZTNjhJWmtQcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NEQ5Ny8xRjYxNDZFMDU2NzgxMUVDOTIyQTM1NjdDNEY5QUUwMi9jbjFHMU9mSGVj cG5ZU3hndEdWUzY4SVprUHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAzIaeS3IUFrWW8UE4heDl29/NXlJRb3CQtLE+dX8NQ/C24yfWE1NNY GwrAhvM1+ewu5OqS+aK6pRzy1BZNk4LSPqkVKsFGOU8C1x/uxdLgaFvT9Q4xp6LD AEag0VaLRYlRjIP78t0PzWbHpfuvoMBc7ohJ2HIKnuPHgkETQpRR+1dDRKK+9gii AcRmC8VWtEFUPk6JTXitpSmAxTv/UYWqDZsYeYoUl32inG17kesM+6LEza4YmRv7 6YYaWkpLaWfPmY5hkY0ZXJK/GqGOKUYVt9vK07ThzX9/nPW6OYOHDkvVzs8LyDV7 D3rwVb6saxdO2RCiis6XECYUHxkIw3IJ -----END CERTIFICATE-----Generated at Sat Nov 23 00:49:38 2024 by rpki-client on console-fra.rpki-client.org