$ rpki-client -vvf rpki.apnic.net/member_repository/A91E1511/8D34323C13F811EFA384CE23C4F9AE02/29u3f7gUXp1EhgdPtz74TVSOpiI.mft File: 29u3f7gUXp1EhgdPtz74TVSOpiI.mft (raw, json) Hash identifier: yylOdi8a7F6UO7hqur13snwYcJI1GZgA4nfIGNvulU4= Subject key identifier: 05:B3:96:12:FB:A0:D3:6D:7B:FA:BF:09:05:B5:EE:93:C6:F7:D9:62 Authority key identifier: DB:DB:B7:7F:B8:14:5E:9D:44:86:07:4F:B7:3E:F8:4D:54:8E:A6:22 Certificate issuer: /CN=A91E1511/serialNumber=DBDBB77FB8145E9D4486074FB73EF84D548EA622 Certificate serial: 64 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/29u3f7gUXp1EhgdPtz74TVSOpiI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E1511/8D34323C13F811EFA384CE23C4F9AE02/29u3f7gUXp1EhgdPtz74TVSOpiI.mft Manifest number: 63 Signing time: Sat 23 Nov 2024 04:58:54 +0000 Manifest this update: Sat 23 Nov 2024 04:58:53 +0000 Manifest next update: Sat 30 Nov 2024 04:58:53 +0000 Files and hashes: 1: 29u3f7gUXp1EhgdPtz74TVSOpiI.crl (hash: 9ix+3b/tfiwRIIk+S5JV5/i7yiOdv09/no4XjFiBkII=) 2: 5741EB0A159311EFA0CC790BC4F9AE02.roa (hash: jE4GzHd14AerZws/zq+eZy5XQS34aDVO012G4f0K8Tw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E1511/8D34323C13F811EFA384CE23C4F9AE02/29u3f7gUXp1EhgdPtz74TVSOpiI.crl rsync://rpki.apnic.net/member_repository/A91E1511/8D34323C13F811EFA384CE23C4F9AE02/29u3f7gUXp1EhgdPtz74TVSOpiI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/29u3f7gUXp1EhgdPtz74TVSOpiI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 100 (0x64) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E1511/serialNumber=DBDBB77FB8145E9D4486074FB73EF84D548EA622 Validity Not Before: Nov 23 04:58:53 2024 GMT Not After : Nov 30 04:58:53 2024 GMT Subject: CN=6741610d-5bec Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:7d:78:be:cf:b2:f6:c2:5d:9f:a5:ed:82:79: 37:d6:12:70:4a:6a:a5:a3:bc:a9:9e:bc:24:58:a4: 4f:84:74:ea:f1:08:cc:fa:49:5f:d4:18:42:cc:00: 08:c1:29:0b:2b:2a:38:c6:5c:68:33:e4:25:02:7d: 97:57:68:ca:88:0f:ef:41:c6:0e:9f:ee:a0:f3:a0: b5:5a:ba:1f:da:88:5a:84:0c:78:58:b1:ca:0d:92: e0:ce:52:5d:bd:dc:99:8f:ae:1d:b8:d6:63:d5:62: e6:93:4a:1c:29:82:5a:2c:00:42:da:50:8d:47:1e: ed:a3:2f:dc:05:b0:51:37:4c:c3:0c:21:26:88:23: 40:f6:a8:ce:2d:96:8f:fd:2f:40:93:f9:45:8b:28: 22:fa:db:dc:44:e6:93:fe:dc:01:d7:14:8b:a1:f3: f6:fb:87:29:dc:99:28:82:eb:5e:02:9a:2b:1a:09: 6f:16:96:13:b7:1a:94:eb:9d:a5:3a:57:46:13:5c: 5f:d3:a2:ca:f9:40:5b:28:7b:3e:4f:89:b6:19:53: 3a:06:9b:9d:44:76:e1:e7:ca:58:29:60:5c:63:99: 91:9a:91:97:48:d7:61:8b:e3:ca:c5:be:d8:d0:5c: d9:64:a7:bb:c1:3b:69:ea:55:0b:83:85:55:94:6b: 02:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:B3:96:12:FB:A0:D3:6D:7B:FA:BF:09:05:B5:EE:93:C6:F7:D9:62 X509v3 Authority Key Identifier: keyid:DB:DB:B7:7F:B8:14:5E:9D:44:86:07:4F:B7:3E:F8:4D:54:8E:A6:22 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E1511/8D34323C13F811EFA384CE23C4F9AE02/29u3f7gUXp1EhgdPtz74TVSOpiI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/29u3f7gUXp1EhgdPtz74TVSOpiI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E1511/8D34323C13F811EFA384CE23C4F9AE02/29u3f7gUXp1EhgdPtz74TVSOpiI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a3:91:94:9d:5f:86:48:f2:b7:c4:27:6f:da:a5:6e:d8:a2:38: ba:25:19:af:34:db:b0:78:2e:30:d3:ba:a6:83:b9:bc:05:c7: 0d:33:e5:f1:04:80:f4:25:8f:7c:bb:f4:89:85:4d:ba:99:64: 3b:b7:aa:9f:1d:0d:79:79:17:3d:7b:7a:24:e8:e8:46:b4:7b: a3:ec:08:e3:9f:f5:8f:c3:ac:e0:b5:da:83:e7:6d:86:03:1f: 9e:9d:ab:65:53:e9:66:5b:32:a2:75:df:87:d0:7b:f8:87:18: af:15:09:99:31:5f:34:9f:ff:90:ee:bd:0d:9c:15:a5:a3:4a: 5e:74:68:c5:1b:39:c6:4b:14:9e:2c:7b:24:63:f3:75:23:bd: 2f:db:92:c0:a0:d5:15:94:29:cb:74:70:f3:71:23:1e:d8:33: d5:33:71:63:68:2e:cb:25:bc:a7:97:2e:e6:0c:4b:6f:30:cf: 37:77:38:58:70:a6:bc:75:ba:b8:fb:e5:0d:31:a9:fc:88:9e: fc:c6:23:13:f4:d0:30:1c:e9:d4:5b:c1:8c:a6:4d:9b:ee:57: 0d:b4:f7:e7:d1:e6:af:6b:cc:7a:5c:18:fa:01:f9:6f:bf:ff: f3:76:0e:56:3c:7a:8d:c5:4d:81:a8:26:fc:a1:d7:ce:95:bd: ff:48:24:84 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBZDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF MTUxMTExMC8GA1UEBRMoREJEQkI3N0ZCODE0NUU5RDQ0ODYwNzRGQjczRUY4NEQ1 NDhFQTYyMjAeFw0yNDExMjMwNDU4NTNaFw0yNDExMzAwNDU4NTNaMBgxFjAUBgNV BAMTDTY3NDE2MTBkLTViZWMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCzfXi+z7L2wl2fpe2CeTfWEnBKaqWjvKmevCRYpE+EdOrxCMz6SV/UGELMAAjB KQsrKjjGXGgz5CUCfZdXaMqID+9Bxg6f7qDzoLVauh/aiFqEDHhYscoNkuDOUl29 3JmPrh241mPVYuaTShwpglosAELaUI1HHu2jL9wFsFE3TMMMISaII0D2qM4tlo/9 L0CT+UWLKCL629xE5pP+3AHXFIuh8/b7hyncmSiC614CmisaCW8WlhO3GpTrnaU6 V0YTXF/Tosr5QFsoez5PibYZUzoGm51EduHnylgpYFxjmZGakZdI12GL48rFvtjQ XNlkp7vBO2nqVQuDhVWUawJXAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUBbOWEvug 0217+r8JBbXuk8b32WIwHwYDVR0jBBgwFoAU29u3f7gUXp1EhgdPtz74TVSOpiIw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUUxNTExLzhEMzQzMjNDMTNG ODExRUZBMzg0Q0UyM0M0RjlBRTAyLzI5dTNmN2dVWHAxRWhnZFB0ejc0VFZTT3Bp SS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvMjl1M2Y3Z1VYcDFFaGdkUHR6NzRUVlNPcGlJLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUUx NTExLzhEMzQzMjNDMTNGODExRUZBMzg0Q0UyM0M0RjlBRTAyLzI5dTNmN2dVWHAx RWhnZFB0ejc0VFZTT3BpSS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAKORlJ1fhkjyt8Qnb9qlbtiiOLolGa8027B4LjDTuqaDubwFxw0z5fEE gPQlj3y79ImFTbqZZDu3qp8dDXl5Fz17eiTo6Ea0e6PsCOOf9Y/DrOC12oPnbYYD H56dq2VT6WZbMqJ134fQe/iHGK8VCZkxXzSf/5DuvQ2cFaWjSl50aMUbOcZLFJ4s eyRj83UjvS/bksCg1RWUKct0cPNxIx7YM9UzcWNoLsslvKeXLuYMS28wzzd3OFhw prx1urj75Q0xqfyInvzGIxP00DAc6dRbwYymTZvuVw209+fR5q9rzHpcGPoB+W+/ //N2DlY8eo3FTYGoJvyh186Vvf9IJIQ= -----END CERTIFICATE-----Generated at Sat Nov 23 06:21:30 2024 by rpki-client on console-fra.rpki-client.org