$ rpki-client -vvf rpki.apnic.net/member_repository/A91D8400/F681BBA4781111ECA397D034C4F9AE02/5dmsjXWxbbnyPICt2LO72OWLaHg.mft File: 5dmsjXWxbbnyPICt2LO72OWLaHg.mft (raw, json) Hash identifier: mpNbD2AdnxJ8vVVWpnBwZkqNQ3c06jzSPZHYygk+DD0= Subject key identifier: 9F:99:AC:9E:0F:95:33:BE:A3:91:96:9D:A9:7A:74:05:64:07:69:3B Authority key identifier: E5:D9:AC:8D:75:B1:6D:B9:F2:3C:80:AD:D8:B3:BB:D8:E5:8B:68:78 Certificate issuer: /CN=A91D8400/serialNumber=E5D9AC8D75B16DB9F23C80ADD8B3BBD8E58B6878 Certificate serial: 039A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5dmsjXWxbbnyPICt2LO72OWLaHg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D8400/F681BBA4781111ECA397D034C4F9AE02/5dmsjXWxbbnyPICt2LO72OWLaHg.mft Manifest number: 0396 Signing time: Sat 23 Nov 2024 00:20:17 +0000 Manifest this update: Sat 23 Nov 2024 00:20:17 +0000 Manifest next update: Sat 30 Nov 2024 00:20:17 +0000 Files and hashes: 1: 5dmsjXWxbbnyPICt2LO72OWLaHg.crl (hash: V+MfR3JbGkgUGKkwocc7Q569nI0vzroALy/3GZSoxi4=) 2: 46C1646C781611ECADCDAB0EC4F9AE02.roa (hash: iQ/vrHsjX2+tHZEpTj8rOF7TVYl+rxcjNmL10uTq7dk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D8400/F681BBA4781111ECA397D034C4F9AE02/5dmsjXWxbbnyPICt2LO72OWLaHg.crl rsync://rpki.apnic.net/member_repository/A91D8400/F681BBA4781111ECA397D034C4F9AE02/5dmsjXWxbbnyPICt2LO72OWLaHg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5dmsjXWxbbnyPICt2LO72OWLaHg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 922 (0x39a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D8400/serialNumber=E5D9AC8D75B16DB9F23C80ADD8B3BBD8E58B6878 Validity Not Before: Nov 23 00:20:17 2024 GMT Not After : Nov 30 00:20:17 2024 GMT Subject: CN=67411fc1-11ed Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:c9:09:86:fe:b7:02:6d:7a:44:58:f5:54:62: bd:d5:28:3a:d7:e2:e0:59:ff:3c:ac:d9:bd:e6:9e: 4f:07:e9:7e:29:15:05:85:c8:44:9e:f5:bb:b1:a0: 88:2b:bd:46:29:fc:f4:72:fe:49:03:67:ab:f7:d4: 9b:c8:18:79:71:62:ab:ba:ca:84:ef:f4:bd:70:e5: b9:02:66:5d:cd:55:bc:1e:61:18:6b:65:1f:e5:08: 80:c6:ea:63:4c:6e:82:ad:9b:63:81:69:ff:1a:be: 84:e1:0b:c8:b2:bd:68:e2:2d:5c:03:c6:ed:b0:de: 70:67:32:c2:4c:b7:ed:f9:92:2c:84:ec:d8:cb:9c: 0b:37:32:8b:0c:b7:cb:12:70:94:7b:6e:c3:67:86: 5a:ec:6f:e4:c7:ba:9c:95:b2:64:6a:ea:f1:b1:76: 95:20:1c:96:ea:28:17:cd:aa:67:b8:6c:1b:92:df: 11:5e:62:d6:eb:15:7b:b7:4b:9f:14:bd:7f:94:a4: 27:f1:c3:e8:40:b9:9c:a2:0a:9e:12:fa:ef:f1:81: 93:c5:8b:26:3f:89:06:61:db:c7:82:3d:93:7d:58: fc:8e:82:28:92:d4:82:67:19:93:33:21:d8:46:eb: bb:85:95:4c:21:3b:6a:a8:85:4c:38:52:1b:fc:55: 90:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9F:99:AC:9E:0F:95:33:BE:A3:91:96:9D:A9:7A:74:05:64:07:69:3B X509v3 Authority Key Identifier: keyid:E5:D9:AC:8D:75:B1:6D:B9:F2:3C:80:AD:D8:B3:BB:D8:E5:8B:68:78 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D8400/F681BBA4781111ECA397D034C4F9AE02/5dmsjXWxbbnyPICt2LO72OWLaHg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5dmsjXWxbbnyPICt2LO72OWLaHg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D8400/F681BBA4781111ECA397D034C4F9AE02/5dmsjXWxbbnyPICt2LO72OWLaHg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 41:95:7d:73:c5:09:c9:d5:f2:21:bd:92:c7:b9:6a:69:eb:aa: 8e:b2:b9:42:cc:4d:d7:5b:8b:61:2a:f8:1e:10:e2:9e:cf:29: 3f:86:24:e8:9e:df:ac:24:95:be:8a:33:57:08:e0:6c:34:67: ec:79:90:2a:64:16:e8:56:58:58:57:7a:c2:e5:0c:6f:7a:e7: 79:83:47:18:ba:7d:e3:71:08:03:87:c2:39:e2:5a:03:73:df: 7a:bf:1d:0c:03:b9:8d:d7:24:71:dc:1a:3f:bc:b5:89:cc:94: ca:84:0d:4e:a6:53:bb:b1:75:14:f2:55:30:1b:d3:0f:8a:36: d7:d6:ab:33:38:b5:1c:c1:19:8c:43:dc:a5:86:c9:d6:e2:af: 81:37:6c:6b:ec:32:6c:c8:4c:0b:44:fb:47:b8:04:c5:7d:94: 2d:4d:ef:54:cc:88:d2:5b:c7:b2:58:eb:c8:9d:1f:04:a0:0c: fc:fc:d2:98:3b:d0:e1:ff:4a:78:a1:b0:2c:64:0e:6b:5b:ce: cf:66:2e:8a:cb:06:26:69:4c:9b:e5:bd:02:65:ef:f5:05:f7: 96:cd:29:a8:88:c9:90:3e:1e:4d:51:6b:61:3c:2a:f7:e3:90: 73:0f:38:e2:6b:26:0b:26:e6:8a:2d:00:1e:25:47:6a:d1:44: 01:bc:04:d7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA5owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDg0MDAxMTAvBgNVBAUTKEU1RDlBQzhENzVCMTZEQjlGMjNDODBBREQ4QjNCQkQ4 RTU4QjY4NzgwHhcNMjQxMTIzMDAyMDE3WhcNMjQxMTMwMDAyMDE3WjAYMRYwFAYD VQQDEw02NzQxMWZjMS0xMWVkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuMkJhv63Am16RFj1VGK91Sg61+LgWf88rNm95p5PB+l+KRUFhchEnvW7saCI K71GKfz0cv5JA2er99SbyBh5cWKrusqE7/S9cOW5AmZdzVW8HmEYa2Uf5QiAxupj TG6CrZtjgWn/Gr6E4QvIsr1o4i1cA8btsN5wZzLCTLft+ZIshOzYy5wLNzKLDLfL EnCUe27DZ4Za7G/kx7qclbJkaurxsXaVIByW6igXzapnuGwbkt8RXmLW6xV7t0uf FL1/lKQn8cPoQLmcogqeEvrv8YGTxYsmP4kGYdvHgj2TfVj8joIoktSCZxmTMyHY Ruu7hZVMITtqqIVMOFIb/FWQfQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJ+ZrJ4P lTO+o5GWnal6dAVkB2k7MB8GA1UdIwQYMBaAFOXZrI11sW258jyArdizu9jli2h4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEODQwMC9GNjgxQkJBNDc4 MTExMUVDQTM5N0QwMzRDNEY5QUUwMi81ZG1zalhXeGJibnlQSUN0MkxPNzJPV0xh SGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVkbXNqWFd4YmJueVBJQ3QyTE83Mk9XTGFIZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE ODQwMC9GNjgxQkJBNDc4MTExMUVDQTM5N0QwMzRDNEY5QUUwMi81ZG1zalhXeGJi bnlQSUN0MkxPNzJPV0xhSGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBBlX1zxQnJ1fIhvZLHuWpp66qOsrlCzE3XW4thKvgeEOKezyk/hiTo nt+sJJW+ijNXCOBsNGfseZAqZBboVlhYV3rC5Qxveud5g0cYun3jcQgDh8I54loD c996vx0MA7mN1yRx3Bo/vLWJzJTKhA1OplO7sXUU8lUwG9MPijbX1qszOLUcwRmM Q9ylhsnW4q+BN2xr7DJsyEwLRPtHuATFfZQtTe9UzIjSW8eyWOvInR8EoAz8/NKY O9Dh/0p4obAsZA5rW87PZi6KywYmaUyb5b0CZe/1BfeWzSmoiMmQPh5NUWthPCr3 45BzDzjiayYLJuaKLQAeJUdq0UQBvATX -----END CERTIFICATE-----Generated at Sat Nov 23 02:33:46 2024 by rpki-client on console-fra.rpki-client.org