$ rpki-client -vvf rpki.apnic.net/member_repository/A91DD902/570B3F8EC92611EDAF2B9D4DC4F9AE02/pnTGcB4rDOPRB-nyNsVc7-aHaPE.mft File: pnTGcB4rDOPRB-nyNsVc7-aHaPE.mft (raw, json) Hash identifier: K3Snn7YOtn1ge8sP6TdYbqWiAntV7MAjMeY/xUOWQm4= Subject key identifier: 51:47:D7:35:BB:E6:41:58:D1:EA:F3:E3:3D:74:C9:C6:F8:EB:92:0A Authority key identifier: A6:74:C6:70:1E:2B:0C:E3:D1:07:E9:F2:36:C5:5C:EF:E6:87:68:F1 Certificate issuer: /CN=A91DD902/serialNumber=A674C6701E2B0CE3D107E9F236C55CEFE68768F1 Certificate serial: 013D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pnTGcB4rDOPRB-nyNsVc7-aHaPE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DD902/570B3F8EC92611EDAF2B9D4DC4F9AE02/pnTGcB4rDOPRB-nyNsVc7-aHaPE.mft Manifest number: 013A Signing time: Thu 21 Nov 2024 02:44:21 +0000 Manifest this update: Thu 21 Nov 2024 02:44:21 +0000 Manifest next update: Thu 28 Nov 2024 02:44:21 +0000 Files and hashes: 1: pnTGcB4rDOPRB-nyNsVc7-aHaPE.crl (hash: okzHzTBhZBdGQkR2vmkP/Lw/18h1Wf+VMihp4H7Gxyw=) 2: 33A48584C92911EDAE3AB84EC4F9AE02.roa (hash: ZbC1fIWVYM0VLVl8rd4V+PKdCpSrgSM3tfi0uNsU2b0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DD902/570B3F8EC92611EDAF2B9D4DC4F9AE02/pnTGcB4rDOPRB-nyNsVc7-aHaPE.crl rsync://rpki.apnic.net/member_repository/A91DD902/570B3F8EC92611EDAF2B9D4DC4F9AE02/pnTGcB4rDOPRB-nyNsVc7-aHaPE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pnTGcB4rDOPRB-nyNsVc7-aHaPE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 02:44:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 317 (0x13d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DD902/serialNumber=A674C6701E2B0CE3D107E9F236C55CEFE68768F1 Validity Not Before: Nov 21 02:44:21 2024 GMT Not After : Nov 28 02:44:21 2024 GMT Subject: CN=673e9e85-c24b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:25:e9:89:c0:e1:6f:d8:e5:ea:81:71:a6:83: d3:c5:a9:b6:22:8f:f9:b8:f6:ef:e6:7e:63:2f:00: ba:bb:e9:47:c7:99:0a:a1:71:5e:e5:d6:a2:11:7a: e6:19:91:12:44:5b:0c:b6:1b:c8:71:a3:cf:10:13: a2:2c:3e:76:2d:08:31:08:23:58:2e:0e:4c:7b:d7: 7a:28:79:b9:1b:dc:ae:30:94:a3:53:f5:17:2b:24: f7:0b:2f:a5:b5:65:64:e5:15:92:0f:fe:e3:e3:0d: 5f:51:e0:d6:04:c8:b8:03:43:aa:02:e9:7c:a9:01: ae:17:ce:43:cf:74:37:5c:37:bf:fc:c3:d5:05:a1: 42:67:6d:94:7a:5f:1b:b2:fc:1d:a1:34:32:6e:af: d4:8a:94:52:58:88:b7:80:82:da:b1:04:b5:b7:88: d9:3b:ef:4b:aa:82:78:a9:81:49:70:97:b3:6e:ce: f6:19:08:93:99:5d:12:c3:a0:bc:e2:88:ee:53:62: 95:ff:5d:65:38:e7:a8:be:bd:89:1e:af:79:cf:5f: 69:7e:5e:32:e1:25:f0:a6:9a:40:9c:4b:76:cd:ef: 2d:70:81:24:95:63:a9:8b:26:80:f6:85:31:c0:23: a7:20:ba:fb:c8:b7:4c:59:03:e8:92:ab:17:31:df: 5f:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:47:D7:35:BB:E6:41:58:D1:EA:F3:E3:3D:74:C9:C6:F8:EB:92:0A X509v3 Authority Key Identifier: keyid:A6:74:C6:70:1E:2B:0C:E3:D1:07:E9:F2:36:C5:5C:EF:E6:87:68:F1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DD902/570B3F8EC92611EDAF2B9D4DC4F9AE02/pnTGcB4rDOPRB-nyNsVc7-aHaPE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pnTGcB4rDOPRB-nyNsVc7-aHaPE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DD902/570B3F8EC92611EDAF2B9D4DC4F9AE02/pnTGcB4rDOPRB-nyNsVc7-aHaPE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 04:2c:ce:57:dd:62:04:21:94:51:da:12:bf:31:35:cd:95:5b: b3:8f:20:a0:8a:3c:bd:db:65:36:6f:71:12:e2:58:06:4f:5c: 3f:91:e8:8e:f4:d2:a0:c2:7c:35:7c:11:fc:1d:f2:dd:61:96: ab:ef:f6:26:18:fd:fb:e1:f2:06:fa:f9:88:0f:40:d0:57:63: a8:e7:26:4c:d2:f2:66:13:be:81:62:20:36:cc:9b:0b:fd:b8: b6:0c:ed:24:eb:b4:0d:1f:0f:1b:74:2e:27:8a:f0:16:06:8f: eb:80:5a:d6:3c:51:2a:e0:e1:30:fe:b4:ef:c9:29:7b:c1:96: 32:f5:f5:72:e7:a3:31:cb:40:14:54:94:1c:b5:e8:45:45:cc: 4d:a3:0a:66:33:e5:87:d6:e2:0e:d2:e3:2e:06:01:c1:54:7b: 5d:4f:8a:1d:82:26:58:22:82:78:69:19:94:5e:82:fe:a4:6d: ec:34:8c:78:2f:6e:46:d0:3b:6f:03:d3:78:5a:df:92:df:ed: 4a:9f:d7:84:be:ba:3b:4e:a0:76:bd:be:39:5f:d3:12:4c:de: 8c:64:25:db:d7:c5:c0:cb:35:1f:92:b8:1d:ec:45:cd:65:2f: 90:9e:07:54:2f:46:9f:89:5f:ac:8a:ba:f2:f2:27:d4:29:ad: 37:10:e4:f9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAT0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REQ5MDIxMTAvBgNVBAUTKEE2NzRDNjcwMUUyQjBDRTNEMTA3RTlGMjM2QzU1Q0VG RTY4NzY4RjEwHhcNMjQxMTIxMDI0NDIxWhcNMjQxMTI4MDI0NDIxWjAYMRYwFAYD VQQDEw02NzNlOWU4NS1jMjRiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxSXpicDhb9jl6oFxpoPTxam2Io/5uPbv5n5jLwC6u+lHx5kKoXFe5daiEXrm GZESRFsMthvIcaPPEBOiLD52LQgxCCNYLg5Me9d6KHm5G9yuMJSjU/UXKyT3Cy+l tWVk5RWSD/7j4w1fUeDWBMi4A0OqAul8qQGuF85Dz3Q3XDe//MPVBaFCZ22Uel8b svwdoTQybq/UipRSWIi3gILasQS1t4jZO+9LqoJ4qYFJcJezbs72GQiTmV0Sw6C8 4ojuU2KV/11lOOeovr2JHq95z19pfl4y4SXwpppAnEt2ze8tcIEklWOpiyaA9oUx wCOnILr7yLdMWQPokqsXMd9fhQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFFH1zW7 5kFY0erz4z10ycb465IKMB8GA1UdIwQYMBaAFKZ0xnAeKwzj0Qfp8jbFXO/mh2jx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERDkwMi81NzBCM0Y4RUM5 MjYxMUVEQUYyQjlENERDNEY5QUUwMi9wblRHY0I0ckRPUFJCLW55TnNWYzctYUhh UEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BuVEdjQjRyRE9QUkItbnlOc1ZjNy1hSGFQRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RDkwMi81NzBCM0Y4RUM5MjYxMUVEQUYyQjlENERDNEY5QUUwMi9wblRHY0I0ckRP UFJCLW55TnNWYzctYUhhUEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAELM5X3WIEIZRR2hK/MTXNlVuzjyCgijy922U2b3ES4lgGT1w/keiO 9NKgwnw1fBH8HfLdYZar7/YmGP374fIG+vmID0DQV2Oo5yZM0vJmE76BYiA2zJsL /bi2DO0k67QNHw8bdC4nivAWBo/rgFrWPFEq4OEw/rTvySl7wZYy9fVy56Mxy0AU VJQctehFRcxNowpmM+WH1uIO0uMuBgHBVHtdT4odgiZYIoJ4aRmUXoL+pG3sNIx4 L25G0DtvA9N4Wt+S3+1Kn9eEvro7TqB2vb45X9MSTN6MZCXb18XAyzUfkrgd7EXN ZS+QngdUL0afiV+sirry8ifUKa03EOT5 -----END CERTIFICATE-----Generated at Thu Nov 21 05:06:06 2024 by rpki-client on console-fra.rpki-client.org