$ rpki-client -vvf rpki.apnic.net/member_repository/A91DBA5B/4D7CE66A70E711EFB444AF70C4F9AE02/i0hqzK8SpnqVaI6NEb1ljAQcElo.mft File: i0hqzK8SpnqVaI6NEb1ljAQcElo.mft (raw, json) Hash identifier: mefeu6VJaL3bbCg5S8JqGTo/YXCc9trrLDr3kEk/jhI= Subject key identifier: 3A:4B:E4:74:FC:22:6C:A5:78:4C:45:2D:34:68:40:32:AA:34:56:62 Authority key identifier: 8B:48:6A:CC:AF:12:A6:7A:95:68:8E:8D:11:BD:65:8C:04:1C:12:5A Certificate issuer: /CN=A91DBA5B/serialNumber=8B486ACCAF12A67A95688E8D11BD658C041C125A Certificate serial: 27 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/i0hqzK8SpnqVaI6NEb1ljAQcElo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DBA5B/4D7CE66A70E711EFB444AF70C4F9AE02/i0hqzK8SpnqVaI6NEb1ljAQcElo.mft Manifest number: 26 Signing time: Thu 21 Nov 2024 05:50:52 +0000 Manifest this update: Thu 21 Nov 2024 05:50:52 +0000 Manifest next update: Thu 28 Nov 2024 05:50:52 +0000 Files and hashes: 1: i0hqzK8SpnqVaI6NEb1ljAQcElo.crl (hash: 5TO6vvA+fYsnPEQa/KL8I67j40HzgKXrhdPrUvsmQ64=) 2: F305F43270E711EF8573CF71C4F9AE02.roa (hash: aci5Spv/e6z609EwzRrCe3VebaHTH23V/kyd6t5TMtw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DBA5B/4D7CE66A70E711EFB444AF70C4F9AE02/i0hqzK8SpnqVaI6NEb1ljAQcElo.crl rsync://rpki.apnic.net/member_repository/A91DBA5B/4D7CE66A70E711EFB444AF70C4F9AE02/i0hqzK8SpnqVaI6NEb1ljAQcElo.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/i0hqzK8SpnqVaI6NEb1ljAQcElo.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 02:50:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 39 (0x27) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DBA5B/serialNumber=8B486ACCAF12A67A95688E8D11BD658C041C125A Validity Not Before: Nov 21 05:50:52 2024 GMT Not After : Nov 28 05:50:52 2024 GMT Subject: CN=673eca3c-ec6f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:38:8d:9a:ee:07:9e:97:74:b7:2b:36:f1:37: c7:89:ed:49:4d:95:e5:7b:c5:87:e0:a7:2e:7f:e7: 89:a1:e8:e2:f5:17:95:ba:af:b4:65:17:f4:ce:aa: 7b:7d:c2:03:f8:1f:74:17:00:24:3f:ab:84:47:5b: 2b:60:1e:d6:f5:d8:74:62:7e:16:41:24:52:02:78: 6c:b4:2a:0a:1d:9e:a4:66:24:c5:97:04:16:f8:f6: 50:84:d7:16:3f:90:8d:f0:be:ba:97:67:b0:61:5b: 83:10:f1:65:f3:1a:48:c8:b3:4e:62:1b:68:1b:b7: 96:46:55:72:39:14:6e:31:f3:91:56:da:49:7e:08: 4f:6c:6a:92:c1:a9:1a:89:a1:44:a8:1f:90:c2:9f: 90:21:5c:5e:15:45:58:46:d9:2c:00:1e:ab:a5:b8: e8:69:10:e9:23:45:74:d4:15:c7:c7:4e:13:21:c1: bf:e5:07:96:19:5e:86:89:82:e0:29:95:51:f5:cb: 86:03:68:40:8a:80:0e:a8:3b:96:5c:b8:b5:5d:10: 53:cc:0f:39:f6:da:cb:40:21:a7:53:18:cf:56:e5: 48:8e:29:5f:7e:d6:12:3e:3e:90:d7:60:4d:a0:44: 54:a3:e1:a3:bd:18:b6:e9:7c:1c:af:b8:e5:f6:d2: 63:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:4B:E4:74:FC:22:6C:A5:78:4C:45:2D:34:68:40:32:AA:34:56:62 X509v3 Authority Key Identifier: keyid:8B:48:6A:CC:AF:12:A6:7A:95:68:8E:8D:11:BD:65:8C:04:1C:12:5A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DBA5B/4D7CE66A70E711EFB444AF70C4F9AE02/i0hqzK8SpnqVaI6NEb1ljAQcElo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/i0hqzK8SpnqVaI6NEb1ljAQcElo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DBA5B/4D7CE66A70E711EFB444AF70C4F9AE02/i0hqzK8SpnqVaI6NEb1ljAQcElo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b8:e1:57:a1:e4:8b:cb:24:6c:ed:a6:9e:57:41:40:32:d6:cd: e3:f0:34:3b:49:59:a2:a1:43:af:95:eb:cc:3b:ca:db:f3:28: 92:83:3c:89:95:fd:14:81:67:7f:29:de:a4:59:42:16:c4:42: 05:08:85:a3:8f:38:ec:ec:d1:da:91:92:cc:03:1f:b2:a5:5f: 3c:c0:31:8a:67:72:a4:58:f0:70:20:10:ba:b1:15:16:b9:8f: aa:60:17:0f:76:be:6c:ee:90:f3:67:24:e4:7a:11:91:78:1f: 52:41:52:20:31:8b:53:95:a3:3f:58:82:61:f4:f2:85:9e:35: 3e:0a:ca:98:c8:52:57:a7:cc:bd:42:8a:e8:8c:cd:be:4b:e3: a0:34:20:44:e6:50:6e:1c:b0:16:96:4f:7f:7d:f3:cc:70:45: ed:e0:fd:da:3d:67:1d:94:9d:5a:e4:c6:fe:16:5e:30:05:2e: 87:29:8e:71:41:18:6d:0c:e4:27:c7:04:3a:98:dd:8f:ba:3f: 08:9f:1b:e2:53:ec:a9:9b:05:4c:36:17:f7:14:12:f6:29:65: 5e:84:08:59:9f:4a:13:e2:24:67:da:1f:cb:18:e7:8f:8f:f1: 51:69:67:68:bb:85:e0:d5:ae:4d:47:ee:86:9d:43:cf:48:6d: c8:e6:7a:27 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBJzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE QkE1QjExMC8GA1UEBRMoOEI0ODZBQ0NBRjEyQTY3QTk1Njg4RThEMTFCRDY1OEMw NDFDMTI1QTAeFw0yNDExMjEwNTUwNTJaFw0yNDExMjgwNTUwNTJaMBgxFjAUBgNV BAMTDTY3M2VjYTNjLWVjNmYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCzOI2a7geel3S3KzbxN8eJ7UlNleV7xYfgpy5/54mh6OL1F5W6r7RlF/TOqnt9 wgP4H3QXACQ/q4RHWytgHtb12HRifhZBJFICeGy0KgodnqRmJMWXBBb49lCE1xY/ kI3wvrqXZ7BhW4MQ8WXzGkjIs05iG2gbt5ZGVXI5FG4x85FW2kl+CE9sapLBqRqJ oUSoH5DCn5AhXF4VRVhG2SwAHquluOhpEOkjRXTUFcfHThMhwb/lB5YZXoaJguAp lVH1y4YDaECKgA6oO5ZcuLVdEFPMDzn22stAIadTGM9W5UiOKV9+1hI+PpDXYE2g RFSj4aO9GLbpfByvuOX20mOdAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUOkvkdPwi bKV4TEUtNGhAMqo0VmIwHwYDVR0jBBgwFoAUi0hqzK8SpnqVaI6NEb1ljAQcElow DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MURCQTVCLzREN0NFNjZBNzBF NzExRUZCNDQ0QUY3MEM0RjlBRTAyL2kwaHF6SzhTcG5xVmFJNk5FYjFsakFRY0Vs by5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvaTBocXpLOFNwbnFWYUk2TkViMWxqQVFjRWxvLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MURC QTVCLzREN0NFNjZBNzBFNzExRUZCNDQ0QUY3MEM0RjlBRTAyL2kwaHF6SzhTcG5x VmFJNk5FYjFsakFRY0Vsby5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBALjhV6Hki8skbO2mnldBQDLWzePwNDtJWaKhQ6+V68w7ytvzKJKDPImV /RSBZ38p3qRZQhbEQgUIhaOPOOzs0dqRkswDH7KlXzzAMYpncqRY8HAgELqxFRa5 j6pgFw92vmzukPNnJOR6EZF4H1JBUiAxi1OVoz9YgmH08oWeNT4KypjIUlenzL1C iuiMzb5L46A0IETmUG4csBaWT39988xwRe3g/do9Zx2UnVrkxv4WXjAFLocpjnFB GG0M5CfHBDqY3Y+6PwifG+JT7KmbBUw2F/cUEvYpZV6ECFmfShPiJGfaH8sY54+P 8VFpZ2i7heDVrk1H7oadQ89Ibcjmeic= -----END CERTIFICATE-----Generated at Thu Nov 21 06:50:51 2024 by rpki-client on console-fra.rpki-client.org