$ rpki-client -vvf rpki.apnic.net/member_repository/A91DBA5B/58004AAA70E711EFB444AF70C4F9AE02/30fOzFfqiK65ajhlVgufImC6mQ4.mft File: 30fOzFfqiK65ajhlVgufImC6mQ4.mft (raw, json) Hash identifier: P7RZMrvriFlMgS17IxPUm0/CbnBgBWFLH5OeU3g1ZX0= Subject key identifier: 08:59:A1:2A:0C:A0:39:B1:77:F1:6B:4A:2A:51:1A:DD:BF:0D:EC:23 Authority key identifier: DF:47:CE:CC:57:EA:88:AE:B9:6A:38:65:56:0B:9F:22:60:BA:99:0E Certificate issuer: /CN=A91DBA5B/serialNumber=DF47CECC57EA88AEB96A3865560B9F2260BA990E Certificate serial: 27 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/30fOzFfqiK65ajhlVgufImC6mQ4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DBA5B/58004AAA70E711EFB444AF70C4F9AE02/30fOzFfqiK65ajhlVgufImC6mQ4.mft Manifest number: 26 Signing time: Thu 21 Nov 2024 05:50:55 +0000 Manifest this update: Thu 21 Nov 2024 05:50:54 +0000 Manifest next update: Thu 28 Nov 2024 05:50:54 +0000 Files and hashes: 1: 30fOzFfqiK65ajhlVgufImC6mQ4.crl (hash: L7ZtpU3NY6Qz9G5UhJtUrtnaWPFmv4Cke50kbI+9548=) 2: 02389B7670E811EFA8DBE571C4F9AE02.roa (hash: AxDsA8rt+K98y/uEnY4JUiHZ0XXqFDNJTlI0IgqxxqQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DBA5B/58004AAA70E711EFB444AF70C4F9AE02/30fOzFfqiK65ajhlVgufImC6mQ4.crl rsync://rpki.apnic.net/member_repository/A91DBA5B/58004AAA70E711EFB444AF70C4F9AE02/30fOzFfqiK65ajhlVgufImC6mQ4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/30fOzFfqiK65ajhlVgufImC6mQ4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 05:18:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 39 (0x27) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DBA5B/serialNumber=DF47CECC57EA88AEB96A3865560B9F2260BA990E Validity Not Before: Nov 21 05:50:54 2024 GMT Not After : Nov 28 05:50:54 2024 GMT Subject: CN=673eca3f-5a89 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f2:ec:e6:44:76:d3:ba:c5:4a:4d:d2:c1:0b:9e: 1f:94:38:27:fb:33:fe:be:5a:53:5c:85:f4:75:2c: 87:ca:fa:a0:27:bc:c4:88:36:1d:2c:9b:93:ed:cd: a3:29:5e:34:36:ca:8e:2a:f8:93:f8:2c:67:f5:52: c3:45:ab:41:52:6a:b8:f0:e8:fa:2e:6e:29:67:0c: 97:07:ab:43:93:04:42:86:ed:d1:f1:ed:da:c3:9d: 7f:d1:5b:c0:c1:7f:03:45:74:68:38:c3:0c:d1:4c: 27:87:13:d2:af:91:a3:88:e3:8a:ec:2f:d0:b8:a8: 6d:e8:05:71:e0:51:01:64:f6:60:f7:1a:28:07:47: b3:0d:2b:23:ca:ac:40:22:7c:77:96:35:58:54:89: 10:75:27:01:cc:1d:c1:9a:d1:be:0e:04:d1:86:ca: ff:f8:0f:b4:33:ec:04:72:36:a9:5c:c4:52:5b:43: 50:99:7a:80:89:86:b4:e4:47:bb:c7:9e:9c:88:3a: e0:1c:af:b2:67:bc:d7:b1:be:cd:81:8a:69:dc:4b: 39:3b:73:60:46:0b:ea:8a:36:1d:51:a1:d8:ee:34: 31:89:be:d7:e1:f2:55:e8:d7:05:75:e0:7e:75:46: da:0d:75:aa:01:a2:e2:e8:c0:3d:2b:25:e4:36:2f: 6c:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:59:A1:2A:0C:A0:39:B1:77:F1:6B:4A:2A:51:1A:DD:BF:0D:EC:23 X509v3 Authority Key Identifier: keyid:DF:47:CE:CC:57:EA:88:AE:B9:6A:38:65:56:0B:9F:22:60:BA:99:0E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DBA5B/58004AAA70E711EFB444AF70C4F9AE02/30fOzFfqiK65ajhlVgufImC6mQ4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/30fOzFfqiK65ajhlVgufImC6mQ4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DBA5B/58004AAA70E711EFB444AF70C4F9AE02/30fOzFfqiK65ajhlVgufImC6mQ4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 84:70:f7:30:ca:2b:43:df:48:6c:9a:94:87:0c:1f:a5:80:6f: 28:31:ae:52:c0:7c:af:e2:26:74:11:0c:23:0f:bb:90:9b:d9: 95:00:48:0f:5d:d1:9b:fa:80:6f:27:e1:99:78:63:75:78:3d: 44:b2:3c:e0:28:9a:74:6a:9a:9d:6a:dc:c1:7a:da:5c:4c:0d: 92:ba:98:98:88:76:56:a5:3d:67:5f:62:53:a6:50:6e:70:cf: b0:48:20:4c:a0:6b:29:da:a9:bc:03:99:f0:46:54:9f:b0:01: 7e:9b:50:95:16:cd:2b:38:f4:ac:53:02:b8:84:18:38:17:04: d8:cd:62:8b:66:22:ff:64:73:fb:40:57:ab:8f:ae:ba:19:ab: fd:68:5a:d4:85:f4:9b:e3:1b:53:4b:08:8e:9a:13:a0:d8:59: 0d:cb:6e:64:d2:f8:9a:92:dd:66:d9:2d:79:3c:66:82:24:3a: 22:dc:32:ae:2a:ee:e0:02:b8:fc:05:48:a5:0e:5a:09:18:4d: 71:3c:8f:aa:f7:f6:32:a7:37:ca:6c:37:96:10:46:90:06:2b: dc:7a:25:5f:37:10:96:ed:21:cc:53:80:69:db:f8:91:a3:48: fe:31:88:05:bd:e4:9a:0a:ee:bd:52:38:81:f5:9c:c1:fb:66: 9e:6c:5c:48 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBJzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE QkE1QjExMC8GA1UEBRMoREY0N0NFQ0M1N0VBODhBRUI5NkEzODY1NTYwQjlGMjI2 MEJBOTkwRTAeFw0yNDExMjEwNTUwNTRaFw0yNDExMjgwNTUwNTRaMBgxFjAUBgNV BAMTDTY3M2VjYTNmLTVhODkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDy7OZEdtO6xUpN0sELnh+UOCf7M/6+WlNchfR1LIfK+qAnvMSINh0sm5PtzaMp XjQ2yo4q+JP4LGf1UsNFq0FSarjw6PoubilnDJcHq0OTBEKG7dHx7drDnX/RW8DB fwNFdGg4wwzRTCeHE9KvkaOI44rsL9C4qG3oBXHgUQFk9mD3GigHR7MNKyPKrEAi fHeWNVhUiRB1JwHMHcGa0b4OBNGGyv/4D7Qz7ARyNqlcxFJbQ1CZeoCJhrTkR7vH npyIOuAcr7JnvNexvs2BimncSzk7c2BGC+qKNh1RodjuNDGJvtfh8lXo1wV14H51 RtoNdaoBouLowD0rJeQ2L2wJAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUCFmhKgyg ObF38WtKKlEa3b8N7CMwHwYDVR0jBBgwFoAU30fOzFfqiK65ajhlVgufImC6mQ4w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MURCQTVCLzU4MDA0QUFBNzBF NzExRUZCNDQ0QUY3MEM0RjlBRTAyLzMwZk96RmZxaUs2NWFqaGxWZ3VmSW1DNm1R NC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvMzBmT3pGZnFpSzY1YWpobFZndWZJbUM2bVE0LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MURC QTVCLzU4MDA0QUFBNzBFNzExRUZCNDQ0QUY3MEM0RjlBRTAyLzMwZk96RmZxaUs2 NWFqaGxWZ3VmSW1DNm1RNC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAIRw9zDKK0PfSGyalIcMH6WAbygxrlLAfK/iJnQRDCMPu5Cb2ZUASA9d 0Zv6gG8n4Zl4Y3V4PUSyPOAomnRqmp1q3MF62lxMDZK6mJiIdlalPWdfYlOmUG5w z7BIIEygaynaqbwDmfBGVJ+wAX6bUJUWzSs49KxTAriEGDgXBNjNYotmIv9kc/tA V6uPrroZq/1oWtSF9JvjG1NLCI6aE6DYWQ3LbmTS+JqS3WbZLXk8ZoIkOiLcMq4q 7uACuPwFSKUOWgkYTXE8j6r39jKnN8psN5YQRpAGK9x6JV83EJbtIcxTgGnb+JGj SP4xiAW95JoK7r1SOIH1nMH7Zp5sXEg= -----END CERTIFICATE-----Generated at Thu Nov 21 07:40:39 2024 by rpki-client on console-ams.rpki-client.org