$ rpki-client -vvf rpki.apnic.net/member_repository/A91E12AD/38DAA06C4B2111EAB7A00558C4F9AE02/s40rj01btqU-m0GSYQSBpdiBZUY.mft File: s40rj01btqU-m0GSYQSBpdiBZUY.mft (raw, json) Hash identifier: W+GhJNd0831CFBWY6vLSeSuFhPWs58pvM6XvjN4NVCo= Subject key identifier: 81:83:C6:80:92:0A:99:C5:3F:C4:C6:E9:E4:A5:11:B3:A6:FC:B6:CB Authority key identifier: B3:8D:2B:8F:4D:5B:B6:A5:3E:9B:41:92:61:04:81:A5:D8:81:65:46 Certificate issuer: /CN=A91E12AD/serialNumber=B38D2B8F4D5BB6A53E9B4192610481A5D8816546 Certificate serial: 0A81 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s40rj01btqU-m0GSYQSBpdiBZUY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E12AD/38DAA06C4B2111EAB7A00558C4F9AE02/s40rj01btqU-m0GSYQSBpdiBZUY.mft Manifest number: 0A7A Signing time: Fri 22 Nov 2024 19:23:14 +0000 Manifest this update: Fri 22 Nov 2024 19:23:14 +0000 Manifest next update: Fri 29 Nov 2024 19:23:14 +0000 Files and hashes: 1: s40rj01btqU-m0GSYQSBpdiBZUY.crl (hash: +buYpq2vqEqz+xydY+5ZqA7hl7xGNgjkXlfbeJmXV/0=) 2: 1E1E9122565411EBA14ED510C4F9AE02.roa (hash: j/OpYEtDuYk8PfhysOsvn+uhuepZ3xGdAVnmL79tUAw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E12AD/38DAA06C4B2111EAB7A00558C4F9AE02/s40rj01btqU-m0GSYQSBpdiBZUY.crl rsync://rpki.apnic.net/member_repository/A91E12AD/38DAA06C4B2111EAB7A00558C4F9AE02/s40rj01btqU-m0GSYQSBpdiBZUY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s40rj01btqU-m0GSYQSBpdiBZUY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 19:23:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2689 (0xa81) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E12AD/serialNumber=B38D2B8F4D5BB6A53E9B4192610481A5D8816546 Validity Not Before: Nov 22 19:23:14 2024 GMT Not After : Nov 29 19:23:14 2024 GMT Subject: CN=6740da22-804b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:d8:cf:a6:8f:44:a1:dd:c0:72:4c:c5:09:ce: 1c:03:62:dc:51:93:87:7c:b8:c1:d7:08:d7:4b:2b: 8f:4d:c4:a8:9e:76:ad:58:d5:50:12:cd:66:79:b4: 73:cc:eb:17:77:99:51:91:48:19:ff:19:9b:46:91: b7:70:d4:39:ed:0a:2b:76:03:1c:13:b5:a8:ee:29: f8:6b:42:e7:ad:e2:a0:ea:eb:74:f0:1d:3e:51:d3: e0:e7:93:fd:54:d0:b6:18:1c:31:3a:da:bb:ea:5d: 6f:74:77:6f:26:b4:a5:99:25:6d:9d:c8:31:83:3b: 1c:d3:17:fa:6f:55:02:91:7b:2e:2f:a1:0c:ec:bf: 17:2a:17:64:de:4e:5a:d1:88:79:b5:98:e4:38:0b: 4d:76:ea:0d:74:ee:71:2d:2a:5e:73:09:40:98:cc: 10:9f:49:55:43:55:fc:f1:08:b4:c1:99:01:70:cc: a9:fd:5f:e6:25:e3:f4:c1:1d:16:d4:6f:4b:5f:15: 22:dc:ce:65:fe:b1:fa:44:30:db:26:8c:ea:9b:f2: 42:e1:cb:56:d5:54:33:25:35:46:24:f1:40:3e:b3: 09:35:97:95:91:eb:49:08:28:2a:36:1b:f9:f7:07: 2a:ff:24:e6:cd:15:ff:54:d9:30:b5:1d:1c:d9:b7: 01:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:83:C6:80:92:0A:99:C5:3F:C4:C6:E9:E4:A5:11:B3:A6:FC:B6:CB X509v3 Authority Key Identifier: keyid:B3:8D:2B:8F:4D:5B:B6:A5:3E:9B:41:92:61:04:81:A5:D8:81:65:46 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E12AD/38DAA06C4B2111EAB7A00558C4F9AE02/s40rj01btqU-m0GSYQSBpdiBZUY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s40rj01btqU-m0GSYQSBpdiBZUY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E12AD/38DAA06C4B2111EAB7A00558C4F9AE02/s40rj01btqU-m0GSYQSBpdiBZUY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 97:72:58:4c:24:0a:24:3c:52:6f:61:57:ac:47:aa:b3:51:4f: 35:02:07:1e:c8:84:18:ad:17:b7:34:3d:3a:d1:fc:38:69:aa: 15:88:4d:e1:90:2a:4d:2c:64:b1:d9:17:65:8c:14:ba:21:2e: 02:4f:87:56:f7:8e:45:e2:2e:f0:e1:bb:6e:f8:bc:81:a2:d2: b1:fc:89:ac:f5:a7:b3:f1:65:ce:1a:8d:19:97:82:51:a6:d9: 6c:22:13:af:ce:81:f3:cc:bb:f3:aa:46:47:4d:f9:bc:cd:8e: ac:26:75:aa:7d:36:49:66:8e:74:57:da:ca:2d:b4:6f:91:07: a6:67:fc:41:15:fc:54:17:d7:3d:b2:cb:63:7a:9e:b5:34:22: c9:b3:7d:9b:ff:af:63:be:1f:fa:42:3b:c5:8c:f6:5c:69:fd: da:50:70:47:5c:38:e6:62:7a:2e:54:20:1b:26:7b:7e:eb:57: 55:e4:bc:54:b2:28:34:f2:de:fc:91:8f:6f:97:e7:ae:cf:27: ec:fa:d5:55:e5:ca:1f:33:68:a7:f3:3f:9d:54:b7:54:92:02: 43:83:22:7b:2b:1d:68:ac:43:34:fb:92:71:88:ba:54:21:a3: 0c:0a:f1:19:0f:f5:de:01:e8:23:47:43:a9:1a:ec:f4:f8:6c: 09:c9:a3:a6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCoEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTEyQUQxMTAvBgNVBAUTKEIzOEQyQjhGNEQ1QkI2QTUzRTlCNDE5MjYxMDQ4MUE1 RDg4MTY1NDYwHhcNMjQxMTIyMTkyMzE0WhcNMjQxMTI5MTkyMzE0WjAYMRYwFAYD VQQDEw02NzQwZGEyMi04MDRiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr9jPpo9Eod3AckzFCc4cA2LcUZOHfLjB1wjXSyuPTcSonnatWNVQEs1mebRz zOsXd5lRkUgZ/xmbRpG3cNQ57QordgMcE7Wo7in4a0LnreKg6ut08B0+UdPg55P9 VNC2GBwxOtq76l1vdHdvJrSlmSVtncgxgzsc0xf6b1UCkXsuL6EM7L8XKhdk3k5a 0Yh5tZjkOAtNduoNdO5xLSpecwlAmMwQn0lVQ1X88Qi0wZkBcMyp/V/mJeP0wR0W 1G9LXxUi3M5l/rH6RDDbJozqm/JC4ctW1VQzJTVGJPFAPrMJNZeVketJCCgqNhv5 9wcq/yTmzRX/VNkwtR0c2bcBMQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIGDxoCS CpnFP8TG6eSlEbOm/LbLMB8GA1UdIwQYMBaAFLONK49NW7alPptBkmEEgaXYgWVG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMTJBRC8zOERBQTA2QzRC MjExMUVBQjdBMDA1NThDNEY5QUUwMi9zNDByajAxYnRxVS1tMEdTWVFTQnBkaUJa VVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3M0MHJqMDFidHFVLW0wR1NZUVNCcGRpQlpVWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MTJBRC8zOERBQTA2QzRCMjExMUVBQjdBMDA1NThDNEY5QUUwMi9zNDByajAxYnRx VS1tMEdTWVFTQnBkaUJaVVkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCXclhMJAokPFJvYVesR6qzUU81AgceyIQYrRe3ND060fw4aaoViE3h kCpNLGSx2RdljBS6IS4CT4dW945F4i7w4btu+LyBotKx/Ims9aez8WXOGo0Zl4JR ptlsIhOvzoHzzLvzqkZHTfm8zY6sJnWqfTZJZo50V9rKLbRvkQemZ/xBFfxUF9c9 sstjep61NCLJs32b/69jvh/6QjvFjPZcaf3aUHBHXDjmYnouVCAbJnt+61dV5LxU sig08t78kY9vl+euzyfs+tVV5cofM2in8z+dVLdUkgJDgyJ7Kx1orEM0+5JxiLpU IaMMCvEZD/XeAegjR0OpGuz0+GwJyaOm -----END CERTIFICATE-----Generated at Fri Nov 22 21:05:33 2024 by rpki-client on console-fra.rpki-client.org