$ rpki-client -vvf rpki.apnic.net/member_repository/A91DC017/105AC8FC90C311EDBA1DCC23C4F9AE02/CqXeKSZaCOJ6WB2JRGW9zbc3Cbs.mft File: CqXeKSZaCOJ6WB2JRGW9zbc3Cbs.mft (raw, json) Hash identifier: wtMPfUV4EPaLypFIhp9PFb+1e6R6eD4uDNd0/5zB2qA= Subject key identifier: 47:7A:3E:1E:7F:63:1B:A7:49:47:D5:1E:46:40:D6:DB:12:F7:82:B7 Authority key identifier: 0A:A5:DE:29:26:5A:08:E2:7A:58:1D:89:44:65:BD:CD:B7:37:09:BB Certificate issuer: /CN=A91DC017/serialNumber=0AA5DE29265A08E27A581D894465BDCDB73709BB Certificate serial: 0170 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CqXeKSZaCOJ6WB2JRGW9zbc3Cbs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DC017/105AC8FC90C311EDBA1DCC23C4F9AE02/CqXeKSZaCOJ6WB2JRGW9zbc3Cbs.mft Manifest number: 0164 Signing time: Thu 21 Nov 2024 09:53:13 +0000 Manifest this update: Thu 21 Nov 2024 09:53:12 +0000 Manifest next update: Thu 28 Nov 2024 09:53:12 +0000 Files and hashes: 1: CqXeKSZaCOJ6WB2JRGW9zbc3Cbs.crl (hash: 7LrZSQbwsMAhfBatLZrrMGvE6Na1Frg9Rn+1VPbMeJQ=) 2: 69DDDFECA7EE11EF8C6E2652C4F9AE02.roa (hash: RaJbPCcc9BeQ/XdO6gqfmS1b+mW4ola9vkAinZ4p0X4=) 3: C0C268B8441C11EF9E110F1EC4F9AE02.roa (hash: m6rZeuVTK1YDhuaaIVhiTv3yauwN9+tcZ5dIfBdhpRQ=) 4: 1B8DE01C641911EF83FFBF3CC4F9AE02.roa (hash: mAZNBvYiKFXdkzpTN4tNBsnyhqKr4h/2Tyrx/kSmdy8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DC017/105AC8FC90C311EDBA1DCC23C4F9AE02/CqXeKSZaCOJ6WB2JRGW9zbc3Cbs.crl rsync://rpki.apnic.net/member_repository/A91DC017/105AC8FC90C311EDBA1DCC23C4F9AE02/CqXeKSZaCOJ6WB2JRGW9zbc3Cbs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CqXeKSZaCOJ6WB2JRGW9zbc3Cbs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 09:51:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 368 (0x170) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DC017/serialNumber=0AA5DE29265A08E27A581D894465BDCDB73709BB Validity Not Before: Nov 21 09:53:12 2024 GMT Not After : Nov 28 09:53:12 2024 GMT Subject: CN=673f0309-4155 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:fb:19:dc:4f:01:99:29:58:a7:03:14:76:fb: 99:df:1a:42:94:10:eb:2f:f6:fa:61:ee:26:ba:85: 13:97:77:6f:7f:7a:10:15:1d:6b:82:72:03:66:dd: 40:75:71:08:d5:d9:d5:fd:f6:c6:c6:02:8f:2f:e6: 76:0f:86:3d:a5:d8:48:b9:20:ea:a4:9b:0a:55:70: 0e:b3:2e:56:03:74:3c:6f:20:ff:e6:f0:9a:bd:95: 59:21:d9:9b:d3:b3:b0:c5:41:fb:bb:16:ef:5b:53: 8d:48:6a:cc:5d:69:ed:04:fa:2f:5d:97:d2:fb:73: c8:f5:0a:ea:06:44:57:78:54:a6:45:9e:da:82:55: 48:dc:33:e4:d9:52:f0:dc:2c:53:93:a0:90:7d:6d: 64:59:71:bf:1a:ff:10:eb:99:d4:f1:df:01:4c:ef: 01:52:4c:03:84:66:3c:7a:d1:ec:c2:ac:44:81:b1: e5:fa:1d:54:bf:a3:43:c1:55:c5:41:1d:30:25:5b: 18:84:d0:d6:bf:7a:89:c6:74:64:cd:72:1b:a5:11: 8f:4f:98:b1:6d:c4:40:6e:2f:84:19:b8:16:f6:1d: a4:8c:8d:fd:08:3c:1e:96:75:06:19:c4:83:e3:81: ad:41:49:96:a0:0f:df:d4:6b:1b:c6:ee:f5:a4:1d: 55:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:7A:3E:1E:7F:63:1B:A7:49:47:D5:1E:46:40:D6:DB:12:F7:82:B7 X509v3 Authority Key Identifier: keyid:0A:A5:DE:29:26:5A:08:E2:7A:58:1D:89:44:65:BD:CD:B7:37:09:BB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DC017/105AC8FC90C311EDBA1DCC23C4F9AE02/CqXeKSZaCOJ6WB2JRGW9zbc3Cbs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CqXeKSZaCOJ6WB2JRGW9zbc3Cbs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DC017/105AC8FC90C311EDBA1DCC23C4F9AE02/CqXeKSZaCOJ6WB2JRGW9zbc3Cbs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 34:f5:08:bd:98:9f:e9:5a:13:fc:39:fb:ca:68:e0:69:3c:dc: f7:40:7d:dd:a0:bb:b7:66:9e:aa:c2:25:8d:6f:85:ff:fd:59: 8e:9b:41:87:e5:83:2b:44:13:36:04:8c:f3:6c:e4:2a:32:37: 2e:ad:fd:ca:7b:b6:56:8e:73:56:e3:78:50:fb:09:c0:d2:37: eb:ea:21:61:4d:04:e9:ba:a2:94:eb:3c:5a:0c:dd:6c:d3:96: 29:23:94:79:91:cc:1f:b5:e1:20:2d:43:26:fe:2e:72:79:8b: 60:d1:9e:40:21:31:42:e0:e2:7b:33:f1:24:3f:26:b0:3b:98: de:e3:7b:1e:86:fb:87:de:37:5b:0a:2e:53:b6:1a:27:c1:25: 0d:f8:02:04:8d:c3:b1:ce:31:5d:40:ea:68:e6:98:2f:5c:11: 34:f2:d7:6e:29:d8:17:1c:c6:de:4b:9e:09:17:8b:60:52:e4: 47:8d:70:78:20:1d:c3:85:bc:50:78:be:31:54:05:c2:92:ea: 2a:41:71:68:aa:8a:4c:18:be:3f:b5:15:fb:7e:55:6c:a1:7a: c9:dc:df:0a:aa:8b:40:e4:09:02:42:96:9f:36:5b:49:e1:a3: 98:42:9e:8a:2c:64:b1:ed:1a:91:43:ac:a7:1e:9a:d8:ae:73: fb:3c:96:b2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAXAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REMwMTcxMTAvBgNVBAUTKDBBQTVERTI5MjY1QTA4RTI3QTU4MUQ4OTQ0NjVCRENE QjczNzA5QkIwHhcNMjQxMTIxMDk1MzEyWhcNMjQxMTI4MDk1MzEyWjAYMRYwFAYD VQQDEw02NzNmMDMwOS00MTU1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmfsZ3E8BmSlYpwMUdvuZ3xpClBDrL/b6Ye4muoUTl3dvf3oQFR1rgnIDZt1A dXEI1dnV/fbGxgKPL+Z2D4Y9pdhIuSDqpJsKVXAOsy5WA3Q8byD/5vCavZVZIdmb 07OwxUH7uxbvW1ONSGrMXWntBPovXZfS+3PI9QrqBkRXeFSmRZ7aglVI3DPk2VLw 3CxTk6CQfW1kWXG/Gv8Q65nU8d8BTO8BUkwDhGY8etHswqxEgbHl+h1Uv6NDwVXF QR0wJVsYhNDWv3qJxnRkzXIbpRGPT5ixbcRAbi+EGbgW9h2kjI39CDwelnUGGcSD 44GtQUmWoA/f1Gsbxu71pB1V6QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEd6Ph5/ YxunSUfVHkZA1tsS94K3MB8GA1UdIwQYMBaAFAql3ikmWgjielgdiURlvc23Nwm7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQzAxNy8xMDVBQzhGQzkw QzMxMUVEQkExRENDMjNDNEY5QUUwMi9DcVhlS1NaYUNPSjZXQjJKUkdXOXpiYzND YnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NxWGVLU1phQ09KNldCMkpSR1c5emJjM0Nicy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QzAxNy8xMDVBQzhGQzkwQzMxMUVEQkExRENDMjNDNEY5QUUwMi9DcVhlS1NaYUNP SjZXQjJKUkdXOXpiYzNDYnMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA09Qi9mJ/pWhP8OfvKaOBpPNz3QH3doLu3Zp6qwiWNb4X//VmOm0GH 5YMrRBM2BIzzbOQqMjcurf3Ke7ZWjnNW43hQ+wnA0jfr6iFhTQTpuqKU6zxaDN1s 05YpI5R5kcwfteEgLUMm/i5yeYtg0Z5AITFC4OJ7M/EkPyawO5je43sehvuH3jdb Ci5TthonwSUN+AIEjcOxzjFdQOpo5pgvXBE08tduKdgXHMbeS54JF4tgUuRHjXB4 IB3DhbxQeL4xVAXCkuoqQXFoqopMGL4/tRX7flVsoXrJ3N8KqotA5AkCQpafNltJ 4aOYQp6KLGSx7RqRQ6ynHprYrnP7PJay -----END CERTIFICATE-----Generated at Thu Nov 21 11:06:29 2024 by rpki-client on console-fra.rpki-client.org