$ rpki-client -vvf rpki.apnic.net/member_repository/A91D8EAF/10B0E3D004EA11EABEDC8161C4F9AE02/8dIEca4xiTbXk7RttEgiB9lyRYs.mft File: 8dIEca4xiTbXk7RttEgiB9lyRYs.mft (raw, json) Hash identifier: 1UPlvc0KORS7WYMJvVC098QYJgOU/9AwVCZfykh9/Dg= Subject key identifier: A3:97:6E:AA:A4:E7:20:43:73:5E:EC:44:F0:A4:52:D3:B9:DE:4C:A7 Authority key identifier: F1:D2:04:71:AE:31:89:36:D7:93:B4:6D:B4:48:22:07:D9:72:45:8B Certificate issuer: /CN=A91D8EAF/serialNumber=F1D20471AE318936D793B46DB4482207D972458B Certificate serial: 0BFF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8dIEca4xiTbXk7RttEgiB9lyRYs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D8EAF/10B0E3D004EA11EABEDC8161C4F9AE02/8dIEca4xiTbXk7RttEgiB9lyRYs.mft Manifest number: 0BEE Signing time: Fri 22 Nov 2024 18:24:08 +0000 Manifest this update: Fri 22 Nov 2024 18:24:07 +0000 Manifest next update: Fri 29 Nov 2024 18:24:07 +0000 Files and hashes: 1: 8dIEca4xiTbXk7RttEgiB9lyRYs.crl (hash: bAToJBaM8d+Nf4GRNpGpOTn+sjtx+XrjTcvkMAYn7lo=) 2: F4C2F7F604FF11EABFF6E022C4F9AE02.roa (hash: y72UxHLpWElT/p03BNJjswgeJmRwDTBW2SZ3AW6X+Xw=) 3: 168AD09A04EF11EA9060B76BC4F9AE02.roa (hash: 8ZRYSXtg5HDUZuCMB3d8EdToPRSyP0xYvVFsMZiV9Eg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D8EAF/10B0E3D004EA11EABEDC8161C4F9AE02/8dIEca4xiTbXk7RttEgiB9lyRYs.crl rsync://rpki.apnic.net/member_repository/A91D8EAF/10B0E3D004EA11EABEDC8161C4F9AE02/8dIEca4xiTbXk7RttEgiB9lyRYs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8dIEca4xiTbXk7RttEgiB9lyRYs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 18:24:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3071 (0xbff) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D8EAF/serialNumber=F1D20471AE318936D793B46DB4482207D972458B Validity Not Before: Nov 22 18:24:07 2024 GMT Not After : Nov 29 18:24:07 2024 GMT Subject: CN=6740cc48-ff37 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:0b:64:1e:6c:52:4a:c3:51:e7:99:ab:1a:2e: b6:73:c3:b4:39:96:df:bc:f7:23:47:c3:d5:7a:cf: 8c:8b:62:a9:d4:07:49:ab:8c:93:86:0d:84:d4:24: 36:f1:2e:66:2c:18:fc:2f:95:88:cc:6a:84:f3:0c: 64:8c:a1:11:5d:9e:1d:e6:f5:03:ec:1d:48:a1:ef: a5:55:42:97:5f:3c:22:e0:24:72:57:ba:ad:6e:86: 2e:c9:6e:92:cf:86:2b:11:d5:95:cc:71:38:c7:93: 67:37:20:4a:a1:a3:80:df:d5:01:94:cd:fd:07:f1: 45:59:fa:78:81:89:b8:94:06:69:5e:fe:8e:2e:f3: 72:f5:29:f3:fa:dd:9e:b4:36:32:bc:7f:89:9e:c5: c1:fb:80:83:77:c0:5e:3f:e6:b2:aa:d0:c4:0e:d4: 0f:52:6f:da:4e:f9:71:0b:47:0d:95:6c:53:70:7d: 24:48:88:4f:d1:78:54:36:59:b3:84:9a:b2:13:95: f6:ba:d7:50:16:82:b6:d4:09:4d:19:08:d5:f1:cc: db:14:7d:08:12:66:25:68:a7:64:16:3b:b6:d7:90: 4a:b3:2b:8a:36:50:5a:55:4a:ea:f8:2a:5b:47:3b: 01:21:38:10:a2:e3:0e:d5:2c:5e:74:ba:37:0a:33: 8b:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:97:6E:AA:A4:E7:20:43:73:5E:EC:44:F0:A4:52:D3:B9:DE:4C:A7 X509v3 Authority Key Identifier: keyid:F1:D2:04:71:AE:31:89:36:D7:93:B4:6D:B4:48:22:07:D9:72:45:8B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D8EAF/10B0E3D004EA11EABEDC8161C4F9AE02/8dIEca4xiTbXk7RttEgiB9lyRYs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8dIEca4xiTbXk7RttEgiB9lyRYs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D8EAF/10B0E3D004EA11EABEDC8161C4F9AE02/8dIEca4xiTbXk7RttEgiB9lyRYs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 91:67:6c:13:f9:9c:b8:78:5b:24:96:42:a8:4e:cb:37:79:3d: 29:8a:7a:26:fc:7c:43:fc:32:52:39:0e:74:f1:33:9d:a6:f4: 1d:1d:b7:6b:96:aa:45:27:d6:b3:cc:dc:bf:ed:84:66:f3:40: 1d:b8:ce:1c:8d:45:23:d3:89:f1:9b:4f:1d:31:fa:53:b0:fc: 47:5c:1c:30:20:d6:4e:51:01:de:53:63:61:9c:97:6c:ba:55: a6:a8:f7:ad:cb:b1:70:a2:c0:61:bc:d8:db:ae:aa:d0:51:74: a6:91:d5:a3:23:c0:9d:98:8a:ec:f3:af:88:d1:28:cc:ba:7b: c1:00:59:ff:dc:e1:5f:05:69:9e:39:f1:db:c8:b1:9d:f6:cf: fd:78:f1:67:5b:df:6d:2c:6f:92:4b:4b:62:9f:b4:da:4d:71: 02:8d:f3:81:76:e9:a3:34:d4:f9:14:ab:2f:1d:64:73:3a:36: c3:e0:83:9a:ec:76:b8:fc:77:0a:fb:8e:0b:a3:e2:6f:cf:1d: bd:a3:fc:12:b1:37:d5:5e:08:54:dc:57:45:1c:d7:2f:5a:3c: 56:6b:ac:3e:c7:e9:71:16:06:1b:b2:6d:47:3b:af:c1:c2:3d: 8b:e5:af:e1:2e:0e:f7:91:3b:c5:1a:14:23:7c:a0:ea:d0:da: dd:0c:48:39 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC/8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDhFQUYxMTAvBgNVBAUTKEYxRDIwNDcxQUUzMTg5MzZENzkzQjQ2REI0NDgyMjA3 RDk3MjQ1OEIwHhcNMjQxMTIyMTgyNDA3WhcNMjQxMTI5MTgyNDA3WjAYMRYwFAYD VQQDEw02NzQwY2M0OC1mZjM3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApwtkHmxSSsNR55mrGi62c8O0OZbfvPcjR8PVes+Mi2Kp1AdJq4yThg2E1CQ2 8S5mLBj8L5WIzGqE8wxkjKERXZ4d5vUD7B1Ioe+lVUKXXzwi4CRyV7qtboYuyW6S z4YrEdWVzHE4x5NnNyBKoaOA39UBlM39B/FFWfp4gYm4lAZpXv6OLvNy9Snz+t2e tDYyvH+JnsXB+4CDd8BeP+ayqtDEDtQPUm/aTvlxC0cNlWxTcH0kSIhP0XhUNlmz hJqyE5X2utdQFoK21AlNGQjV8czbFH0IEmYlaKdkFju215BKsyuKNlBaVUrq+Cpb RzsBITgQouMO1SxedLo3CjOLVQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKOXbqqk 5yBDc17sRPCkUtO53kynMB8GA1UdIwQYMBaAFPHSBHGuMYk215O0bbRIIgfZckWL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEOEVBRi8xMEIwRTNEMDA0 RUExMUVBQkVEQzgxNjFDNEY5QUUwMi84ZElFY2E0eGlUYlhrN1J0dEVnaUI5bHlS WXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzhkSUVjYTR4aVRiWGs3UnR0RWdpQjlseVJZcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE OEVBRi8xMEIwRTNEMDA0RUExMUVBQkVEQzgxNjFDNEY5QUUwMi84ZElFY2E0eGlU YlhrN1J0dEVnaUI5bHlSWXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCRZ2wT+Zy4eFsklkKoTss3eT0pinom/HxD/DJSOQ508TOdpvQdHbdr lqpFJ9azzNy/7YRm80AduM4cjUUj04nxm08dMfpTsPxHXBwwINZOUQHeU2NhnJds ulWmqPety7FwosBhvNjbrqrQUXSmkdWjI8CdmIrs86+I0SjMunvBAFn/3OFfBWme OfHbyLGd9s/9ePFnW99tLG+SS0tin7TaTXECjfOBdumjNNT5FKsvHWRzOjbD4IOa 7Ha4/HcK+44Lo+Jvzx29o/wSsTfVXghU3FdFHNcvWjxWa6w+x+lxFgYbsm1HO6/B wj2L5a/hLg73kTvFGhQjfKDq0NrdDEg5 -----END CERTIFICATE-----Generated at Fri Nov 22 19:45:04 2024 by rpki-client on console-fra.rpki-client.org