$ rpki-client -vvf rpki.apnic.net/member_repository/A91E2AE5/8D3E54EAED5911E3B09011925911EA32/tDpaYNRoBqaf_vfGdiGexLqLo20.mft File: tDpaYNRoBqaf_vfGdiGexLqLo20.mft (raw, json) Hash identifier: jsKrQhK58UU8seFMjksThiKq1v+ZYVzJMAxUZfDQT1U= Subject key identifier: 2A:03:28:25:A0:B4:C7:EE:A2:82:E2:DC:63:BB:48:14:5B:29:50:EF Authority key identifier: B4:3A:5A:60:D4:68:06:A6:9F:FE:F7:C6:76:21:9E:C4:BA:8B:A3:6D Certificate issuer: /CN=A91E2AE5/serialNumber=B43A5A60D46806A69FFEF7C676219EC4BA8BA36D Certificate serial: 2B2C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tDpaYNRoBqaf_vfGdiGexLqLo20.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E2AE5/8D3E54EAED5911E3B09011925911EA32/tDpaYNRoBqaf_vfGdiGexLqLo20.mft Manifest number: 2B0B Signing time: Fri 22 Nov 2024 15:34:42 +0000 Manifest this update: Fri 22 Nov 2024 15:34:42 +0000 Manifest next update: Fri 29 Nov 2024 15:34:42 +0000 Files and hashes: 1: tDpaYNRoBqaf_vfGdiGexLqLo20.crl (hash: a/8RaoYVrV8uTh853wGxmCAOUR3EYyNNJwasA1w9nd4=) 2: 2815E7D4BF4211E9A93A3957C4F9AE02.roa (hash: OdpfZenxM6XSka5Gj/kpjdkOhVqxwUphxAFWn6XrooE=) 3: 43487B18BF1811E9A2C00E63C4F9AE02.roa (hash: w1zHJ3/CKcxrcxw2e3ecO8bwie3YT8qZOnMoWgWWNQI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E2AE5/8D3E54EAED5911E3B09011925911EA32/tDpaYNRoBqaf_vfGdiGexLqLo20.crl rsync://rpki.apnic.net/member_repository/A91E2AE5/8D3E54EAED5911E3B09011925911EA32/tDpaYNRoBqaf_vfGdiGexLqLo20.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tDpaYNRoBqaf_vfGdiGexLqLo20.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 15:34:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11052 (0x2b2c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E2AE5/serialNumber=B43A5A60D46806A69FFEF7C676219EC4BA8BA36D Validity Not Before: Nov 22 15:34:42 2024 GMT Not After : Nov 29 15:34:42 2024 GMT Subject: CN=6740a492-4a10 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:ac:ab:6b:01:dd:3f:18:ee:d6:ba:e8:72:ac: 48:e3:0e:4a:17:df:86:e4:d6:5b:38:f7:11:0c:eb: 5e:8d:c4:a5:cb:db:a9:95:11:de:25:b6:94:a3:3c: 7a:59:dc:b7:8f:ab:1b:24:bb:98:49:fb:38:5a:12: c7:ed:b9:99:30:71:00:b8:b7:c3:7c:aa:9e:4b:6a: a5:a2:a7:ae:3a:33:b4:9e:6c:0f:fd:97:30:1a:cb: 37:3e:66:da:07:1d:36:4b:8f:9a:59:03:97:2f:ac: 9d:21:d6:ec:d0:9a:8b:2b:db:75:a8:f3:92:ef:84: 88:a7:2f:6d:82:fe:96:55:8b:26:37:45:ea:e3:60: 0a:71:fe:d5:27:00:7d:a6:e8:64:5e:c0:ce:e1:9e: 6b:82:dd:9e:ba:a2:7f:90:64:f2:05:f2:62:79:20: f5:d2:92:9d:43:06:05:ba:0d:fa:2d:ca:9d:4f:b2: f1:7d:a4:bc:d9:75:02:44:1f:10:6c:bc:b1:7c:41: 76:30:a1:d7:27:ee:a5:97:cb:b6:13:f9:27:e4:ad: e8:b0:45:c4:e5:f9:b8:c6:45:63:b8:d1:4f:d0:b0: 2b:a9:99:be:57:50:0c:9b:e6:9b:78:42:22:a3:a4: a7:4f:a9:2d:ef:f6:67:ea:86:de:39:66:0b:66:50: a4:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:03:28:25:A0:B4:C7:EE:A2:82:E2:DC:63:BB:48:14:5B:29:50:EF X509v3 Authority Key Identifier: keyid:B4:3A:5A:60:D4:68:06:A6:9F:FE:F7:C6:76:21:9E:C4:BA:8B:A3:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E2AE5/8D3E54EAED5911E3B09011925911EA32/tDpaYNRoBqaf_vfGdiGexLqLo20.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tDpaYNRoBqaf_vfGdiGexLqLo20.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E2AE5/8D3E54EAED5911E3B09011925911EA32/tDpaYNRoBqaf_vfGdiGexLqLo20.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0d:7f:cb:86:36:ee:71:db:1b:97:55:e2:e4:8f:46:ef:b4:17: 98:a9:2a:34:f9:e0:83:86:f4:78:ca:48:64:bb:f5:27:55:34: 53:1c:35:99:55:53:4b:1e:de:bf:c5:a6:97:c4:67:f3:7b:8f: 9a:b9:55:05:a2:e0:9e:09:5a:40:ea:c9:9b:c2:33:37:f0:92: 75:55:04:b4:cb:09:d8:c9:b5:58:fa:0d:ad:84:bd:07:f5:98: 2c:34:0d:0e:a8:63:48:45:bb:ab:81:37:64:11:b0:74:95:25: 9c:71:86:69:22:f5:98:02:3c:99:24:4c:63:5c:5c:98:4c:44: 14:b3:e9:e5:24:ba:54:12:62:86:08:ef:8d:7f:1e:fb:32:26: cb:2f:ab:17:e1:50:85:13:72:b1:cc:ab:7b:a8:47:ec:4d:18: 70:fa:cf:4e:e5:19:7c:f6:4a:3b:b6:40:43:b3:6c:d6:03:47: fc:c1:5f:9a:d8:27:c1:17:82:d1:33:b5:cb:14:f2:67:86:4e: fc:bd:1c:47:55:ef:b0:74:fd:d6:47:99:65:38:17:a6:20:71: 77:4c:6e:22:a2:f9:21:62:04:00:3b:3d:22:75:74:6a:9c:21: 56:a8:52:a1:8a:75:7a:f3:8b:39:e7:5a:9a:24:8b:3c:20:c5: b3:55:64:81 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICKywwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTJBRTUxMTAvBgNVBAUTKEI0M0E1QTYwRDQ2ODA2QTY5RkZFRjdDNjc2MjE5RUM0 QkE4QkEzNkQwHhcNMjQxMTIyMTUzNDQyWhcNMjQxMTI5MTUzNDQyWjAYMRYwFAYD VQQDEw02NzQwYTQ5Mi00YTEwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzKyrawHdPxju1rrocqxI4w5KF9+G5NZbOPcRDOtejcSly9uplRHeJbaUozx6 Wdy3j6sbJLuYSfs4WhLH7bmZMHEAuLfDfKqeS2qloqeuOjO0nmwP/ZcwGss3Pmba Bx02S4+aWQOXL6ydIdbs0JqLK9t1qPOS74SIpy9tgv6WVYsmN0Xq42AKcf7VJwB9 puhkXsDO4Z5rgt2euqJ/kGTyBfJieSD10pKdQwYFug36LcqdT7LxfaS82XUCRB8Q bLyxfEF2MKHXJ+6ll8u2E/kn5K3osEXE5fm4xkVjuNFP0LArqZm+V1AMm+abeEIi o6SnT6kt7/Zn6obeOWYLZlCkBQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCoDKCWg tMfuooLi3GO7SBRbKVDvMB8GA1UdIwQYMBaAFLQ6WmDUaAamn/73xnYhnsS6i6Nt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMkFFNS84RDNFNTRFQUVE NTkxMUUzQjA5MDExOTI1OTExRUEzMi90RHBhWU5Sb0JxYWZfdmZHZGlHZXhMcUxv MjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3REcGFZTlJvQnFhZl92ZkdkaUdleExxTG8yMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MkFFNS84RDNFNTRFQUVENTkxMUUzQjA5MDExOTI1OTExRUEzMi90RHBhWU5Sb0Jx YWZfdmZHZGlHZXhMcUxvMjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQANf8uGNu5x2xuXVeLkj0bvtBeYqSo0+eCDhvR4ykhku/UnVTRTHDWZ VVNLHt6/xaaXxGfze4+auVUFouCeCVpA6smbwjM38JJ1VQS0ywnYybVY+g2thL0H 9ZgsNA0OqGNIRburgTdkEbB0lSWccYZpIvWYAjyZJExjXFyYTEQUs+nlJLpUEmKG CO+Nfx77MibLL6sX4VCFE3KxzKt7qEfsTRhw+s9O5Rl89ko7tkBDs2zWA0f8wV+a 2CfBF4LRM7XLFPJnhk78vRxHVe+wdP3WR5llOBemIHF3TG4iovkhYgQAOz0idXRq nCFWqFKhinV684s551qaJIs8IMWzVWSB -----END CERTIFICATE-----Generated at Fri Nov 22 17:56:22 2024 by rpki-client on console-fra.rpki-client.org