$ rpki-client -vvf rpki.apnic.net/member_repository/A91E27F3/A6DE1CE81DA111E2A32EF29308B02CD2/1AI0WEr2BZHzfdP7on68uFzHZWo.mft File: 1AI0WEr2BZHzfdP7on68uFzHZWo.mft (raw, json) Hash identifier: lFBllc1It7t+QxNPH5Qiqi9KIS3waSMYvCl5DmG5DAg= Subject key identifier: 98:57:84:93:41:05:71:B9:41:4E:46:C8:2F:87:87:6D:43:C7:F1:50 Authority key identifier: D4:02:34:58:4A:F6:05:91:F3:7D:D3:FB:A2:7E:BC:B8:5C:C7:65:6A Certificate issuer: /CN=A91E27F3/serialNumber=D40234584AF60591F37DD3FBA27EBCB85CC7656A Certificate serial: 3434 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1AI0WEr2BZHzfdP7on68uFzHZWo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E27F3/A6DE1CE81DA111E2A32EF29308B02CD2/1AI0WEr2BZHzfdP7on68uFzHZWo.mft Manifest number: 342F Signing time: Fri 22 Nov 2024 15:07:14 +0000 Manifest this update: Fri 22 Nov 2024 15:07:14 +0000 Manifest next update: Fri 29 Nov 2024 15:07:14 +0000 Files and hashes: 1: 1AI0WEr2BZHzfdP7on68uFzHZWo.crl (hash: UDcE20CBz+6f0QC94WVT68rF80lBGd+EU3h34Hamt7Q=) 2: 1B4B4FC2152F11ECB72E546FC4F9AE02.roa (hash: 08icoQFu/lUzJ7/49iluwBG/IFFfyhiQgRTkubc2rPw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E27F3/A6DE1CE81DA111E2A32EF29308B02CD2/1AI0WEr2BZHzfdP7on68uFzHZWo.crl rsync://rpki.apnic.net/member_repository/A91E27F3/A6DE1CE81DA111E2A32EF29308B02CD2/1AI0WEr2BZHzfdP7on68uFzHZWo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1AI0WEr2BZHzfdP7on68uFzHZWo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 15:07:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13364 (0x3434) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E27F3/serialNumber=D40234584AF60591F37DD3FBA27EBCB85CC7656A Validity Not Before: Nov 22 15:07:14 2024 GMT Not After : Nov 29 15:07:14 2024 GMT Subject: CN=67409e22-95d0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:c7:52:ac:0c:70:6f:be:f5:6d:93:25:70:49: c3:b6:5f:5f:77:47:d1:fc:d9:98:70:55:d4:f6:e0: 42:38:e6:5a:0c:8f:ff:38:4c:14:b9:61:76:b1:48: a8:48:ca:27:1a:6f:22:77:c0:ca:be:0a:4b:58:85: 17:3b:82:c5:c4:9a:7a:13:ce:42:a9:24:b0:5b:e7: 5d:b7:4c:b7:06:e3:9f:2f:62:1a:f5:91:6c:68:a8: a0:48:08:6d:fb:3b:20:2b:f7:70:e6:ad:69:db:81: 32:85:00:2f:59:e9:1b:c1:97:05:64:ad:d6:75:40: ff:60:c2:b4:17:5a:c1:e8:ba:76:df:d7:d6:53:1d: cb:9e:67:d4:f1:9f:b3:b5:d3:a2:ce:11:ea:7c:ed: d9:80:b2:02:00:ad:8d:dd:fc:42:a6:6e:9e:20:eb: b0:c6:4f:5d:be:fd:18:4d:3e:c6:02:bc:db:a6:29: 43:b9:ce:08:17:0b:96:55:9b:97:bd:b0:65:2b:63: a2:88:12:e5:35:f4:a8:3a:0d:e3:60:de:a6:69:63: 71:f5:76:dd:e9:d1:70:5a:73:86:67:ed:83:e5:b7: b2:4c:ba:b7:7a:7a:07:31:71:c0:8f:20:76:b6:3b: 17:86:64:3e:cc:f2:3a:78:86:2b:8d:12:a6:fc:9f: 75:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:57:84:93:41:05:71:B9:41:4E:46:C8:2F:87:87:6D:43:C7:F1:50 X509v3 Authority Key Identifier: keyid:D4:02:34:58:4A:F6:05:91:F3:7D:D3:FB:A2:7E:BC:B8:5C:C7:65:6A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E27F3/A6DE1CE81DA111E2A32EF29308B02CD2/1AI0WEr2BZHzfdP7on68uFzHZWo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1AI0WEr2BZHzfdP7on68uFzHZWo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E27F3/A6DE1CE81DA111E2A32EF29308B02CD2/1AI0WEr2BZHzfdP7on68uFzHZWo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2f:f1:6a:11:7c:2d:01:21:30:5f:ae:16:6f:e9:d4:7e:aa:f1: 01:b7:04:52:42:6c:4e:cc:19:66:e8:35:39:e4:5e:4f:71:e6: 53:6b:9d:bb:e6:8f:fa:49:54:c1:b5:ec:25:47:45:58:28:0d: 67:af:ac:40:e2:af:dc:db:09:0f:38:19:49:62:c7:7b:76:30: 31:12:5e:1b:d2:9c:5e:40:27:7d:8b:f3:da:34:26:f3:ce:96: 2b:97:c3:3a:58:e5:d1:03:b8:bc:f4:1d:3c:a3:90:6e:d0:d6: 79:55:6c:e1:38:af:1b:1f:70:2f:98:e3:83:a4:c9:9e:d6:b3: 8e:43:c0:bf:1e:64:4e:b4:7b:75:c2:47:1c:e6:5d:ba:67:96: a6:30:86:4f:39:81:42:d3:cb:a3:b6:4a:f8:52:3d:1c:6d:02: 6a:4b:ca:ea:5c:17:dc:43:54:df:e9:2c:9b:3b:b5:58:9b:0f: ee:ca:4c:1e:8f:bf:7a:63:8a:78:d1:08:12:0b:3a:9c:cf:21: 16:c2:ac:28:38:c9:68:7d:e1:0a:8b:a1:bb:a7:97:31:8b:83: 95:6b:54:0b:2b:53:91:ad:cf:52:0f:b4:8e:0e:19:dd:ee:bc: ff:b2:24:73:cb:b4:e1:f8:88:15:c6:f2:ce:e7:30:b3:93:68: 5e:52:0e:43 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNDQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTI3RjMxMTAvBgNVBAUTKEQ0MDIzNDU4NEFGNjA1OTFGMzdERDNGQkEyN0VCQ0I4 NUNDNzY1NkEwHhcNMjQxMTIyMTUwNzE0WhcNMjQxMTI5MTUwNzE0WjAYMRYwFAYD VQQDEw02NzQwOWUyMi05NWQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtcdSrAxwb771bZMlcEnDtl9fd0fR/NmYcFXU9uBCOOZaDI//OEwUuWF2sUio SMonGm8id8DKvgpLWIUXO4LFxJp6E85CqSSwW+ddt0y3BuOfL2Ia9ZFsaKigSAht +zsgK/dw5q1p24EyhQAvWekbwZcFZK3WdUD/YMK0F1rB6Lp239fWUx3LnmfU8Z+z tdOizhHqfO3ZgLICAK2N3fxCpm6eIOuwxk9dvv0YTT7GArzbpilDuc4IFwuWVZuX vbBlK2OiiBLlNfSoOg3jYN6maWNx9Xbd6dFwWnOGZ+2D5beyTLq3enoHMXHAjyB2 tjsXhmQ+zPI6eIYrjRKm/J91twIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJhXhJNB BXG5QU5GyC+Hh21Dx/FQMB8GA1UdIwQYMBaAFNQCNFhK9gWR833T+6J+vLhcx2Vq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMjdGMy9BNkRFMUNFODFE QTExMUUyQTMyRUYyOTMwOEIwMkNEMi8xQUkwV0VyMkJaSHpmZFA3b242OHVGekha V28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFBSTBXRXIyQlpIemZkUDdvbjY4dUZ6SFpXby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MjdGMy9BNkRFMUNFODFEQTExMUUyQTMyRUYyOTMwOEIwMkNEMi8xQUkwV0VyMkJa SHpmZFA3b242OHVGekhaV28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAv8WoRfC0BITBfrhZv6dR+qvEBtwRSQmxOzBlm6DU55F5PceZTa527 5o/6SVTBtewlR0VYKA1nr6xA4q/c2wkPOBlJYsd7djAxEl4b0pxeQCd9i/PaNCbz zpYrl8M6WOXRA7i89B08o5Bu0NZ5VWzhOK8bH3AvmOODpMme1rOOQ8C/HmROtHt1 wkcc5l26Z5amMIZPOYFC08ujtkr4Uj0cbQJqS8rqXBfcQ1Tf6SybO7VYmw/uykwe j796Y4p40QgSCzqczyEWwqwoOMlofeEKi6G7p5cxi4OVa1QLK1ORrc9SD7SODhnd 7rz/siRzy7Th+IgVxvLO5zCzk2heUg5D -----END CERTIFICATE-----Generated at Fri Nov 22 17:56:22 2024 by rpki-client on console-fra.rpki-client.org