$ rpki-client -vvf rpki.apnic.net/member_repository/A91E4468/827524E88EE511EEA2EEDD12C4F9AE02/r_zmN5iBZebFG_v-vRKD1REkAZA.mft File: r_zmN5iBZebFG_v-vRKD1REkAZA.mft (raw, json) Hash identifier: khwncQYRoN2GJzQUpFbxn7Q2qI8SUe6QFKoEzYJ5Eug= Subject key identifier: EB:4E:69:30:B1:29:67:6F:A9:19:37:30:15:D3:99:EB:1D:90:40:60 Authority key identifier: AF:FC:E6:37:98:81:65:E6:C5:1B:FB:FE:BD:12:83:D5:11:24:01:90 Certificate issuer: /CN=A91E4468/serialNumber=AFFCE637988165E6C51BFBFEBD1283D511240190 Certificate serial: C6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r_zmN5iBZebFG_v-vRKD1REkAZA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E4468/827524E88EE511EEA2EEDD12C4F9AE02/r_zmN5iBZebFG_v-vRKD1REkAZA.mft Manifest number: C0 Signing time: Sat 23 Nov 2024 04:02:01 +0000 Manifest this update: Sat 23 Nov 2024 04:02:00 +0000 Manifest next update: Sat 30 Nov 2024 04:02:00 +0000 Files and hashes: 1: r_zmN5iBZebFG_v-vRKD1REkAZA.crl (hash: dr7Ls1teykIDjW4V5U3AyzyxNQ9qs6hj1RExqYdSFus=) 2: C531DD12226F11EF8D24AD63C4F9AE02.roa (hash: aoOWPB7WsoWT303vIwcMB0jlzBktYXPjNnh2H80eL4Q=) 3: C608133C226F11EF8D24AD63C4F9AE02.roa (hash: m9fLR89Tw4kZAzxnaD1Dqo4ULgUxV98XCLwCFu7/XIU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E4468/827524E88EE511EEA2EEDD12C4F9AE02/r_zmN5iBZebFG_v-vRKD1REkAZA.crl rsync://rpki.apnic.net/member_repository/A91E4468/827524E88EE511EEA2EEDD12C4F9AE02/r_zmN5iBZebFG_v-vRKD1REkAZA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r_zmN5iBZebFG_v-vRKD1REkAZA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 198 (0xc6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E4468/serialNumber=AFFCE637988165E6C51BFBFEBD1283D511240190 Validity Not Before: Nov 23 04:02:00 2024 GMT Not After : Nov 30 04:02:00 2024 GMT Subject: CN=674153b9-f9c1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:19:d3:de:41:eb:30:e5:14:f4:20:35:b5:18: 51:e7:61:6b:cb:31:98:d4:57:25:01:79:98:d7:dc: 7f:33:3e:65:f6:c6:0f:bb:fc:37:30:fd:46:3a:35: 2c:cb:2e:a0:5e:7f:44:bd:03:5f:21:1b:16:6e:31: a9:8e:b5:79:b3:44:1e:97:e1:63:ed:9c:d4:54:89: b9:dc:11:ab:aa:0e:b2:9a:09:21:15:53:13:ff:5e: 25:e1:ae:e2:0e:f4:3f:a9:65:10:d3:99:43:f8:50: 0a:9a:23:0a:74:fd:41:5e:76:f0:02:11:9b:92:1a: 1d:ea:b0:00:13:2a:ae:3d:9e:0f:b6:f3:47:f5:f7: a8:eb:53:8a:a7:ce:1e:48:33:1d:5b:80:a0:0f:95: 88:74:c1:b2:e2:47:ba:25:0a:20:6f:05:f4:6b:a4: 3c:e5:d9:af:cd:12:00:a2:20:42:73:60:69:23:35: cc:4f:b7:a5:84:f2:b6:3e:18:3e:e0:86:70:99:e7: b2:fe:04:be:73:39:6e:e8:28:b3:fc:b2:a9:95:bc: 91:37:fb:96:a7:cf:e0:d8:1c:0f:70:86:4a:a7:de: 11:2c:8c:7c:ff:16:cb:ee:37:c4:ce:bd:79:62:32: da:8d:ba:d0:59:ca:d3:b2:f1:ee:f5:bf:63:14:2d: f1:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:4E:69:30:B1:29:67:6F:A9:19:37:30:15:D3:99:EB:1D:90:40:60 X509v3 Authority Key Identifier: keyid:AF:FC:E6:37:98:81:65:E6:C5:1B:FB:FE:BD:12:83:D5:11:24:01:90 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E4468/827524E88EE511EEA2EEDD12C4F9AE02/r_zmN5iBZebFG_v-vRKD1REkAZA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r_zmN5iBZebFG_v-vRKD1REkAZA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E4468/827524E88EE511EEA2EEDD12C4F9AE02/r_zmN5iBZebFG_v-vRKD1REkAZA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9f:9a:e3:a7:40:4e:35:32:7e:3e:7b:36:96:fa:e2:79:d7:5c: 81:6e:5b:ef:ad:d3:30:a8:26:77:51:22:ea:e7:b4:57:02:7a: 29:fc:0f:d8:a1:cf:30:09:fc:1d:b9:43:98:a3:0f:d3:24:2c: df:53:7a:b1:62:32:c8:8b:82:cd:e1:ef:b6:f8:20:81:92:7f: 12:3d:c3:27:a4:e6:f6:f3:18:56:21:5d:8f:68:ac:65:66:0b: 8a:cd:c1:cd:70:8d:10:60:b2:24:49:a9:40:1d:56:c3:ca:0f: 83:64:d0:13:fb:45:94:f6:c9:d0:40:0e:e1:52:5e:41:a1:0d: 9b:91:47:b8:0b:75:e1:be:89:e0:c5:e0:43:e9:c3:34:c8:37: 90:e2:bf:c6:31:e5:0a:9d:70:9d:1d:f2:98:c8:0f:fb:ed:03: b6:97:1c:47:47:7f:d2:ec:6f:92:7b:54:97:9e:6e:b7:14:fa: 78:28:4f:c0:99:27:1f:33:a0:18:b7:68:ae:b2:4b:d8:21:d2: 83:79:b1:81:62:e2:bf:d0:f4:9b:15:ce:3e:44:3e:ba:23:33: 0d:0d:49:54:d1:98:44:ff:8f:87:68:86:a8:44:1c:cb:ff:65: 04:91:6c:1d:fe:b1:11:9c:bc:bc:ec:d5:d5:b5:79:7b:08:10: 18:1f:59:f8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAMYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTQ0NjgxMTAvBgNVBAUTKEFGRkNFNjM3OTg4MTY1RTZDNTFCRkJGRUJEMTI4M0Q1 MTEyNDAxOTAwHhcNMjQxMTIzMDQwMjAwWhcNMjQxMTMwMDQwMjAwWjAYMRYwFAYD VQQDEw02NzQxNTNiOS1mOWMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvRnT3kHrMOUU9CA1tRhR52FryzGY1FclAXmY19x/Mz5l9sYPu/w3MP1GOjUs yy6gXn9EvQNfIRsWbjGpjrV5s0Qel+Fj7ZzUVIm53BGrqg6ymgkhFVMT/14l4a7i DvQ/qWUQ05lD+FAKmiMKdP1BXnbwAhGbkhod6rAAEyquPZ4PtvNH9feo61OKp84e SDMdW4CgD5WIdMGy4ke6JQogbwX0a6Q85dmvzRIAoiBCc2BpIzXMT7elhPK2Phg+ 4IZwmeey/gS+czlu6Ciz/LKplbyRN/uWp8/g2BwPcIZKp94RLIx8/xbL7jfEzr15 YjLajbrQWcrTsvHu9b9jFC3x0wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOtOaTCx KWdvqRk3MBXTmesdkEBgMB8GA1UdIwQYMBaAFK/85jeYgWXmxRv7/r0Sg9URJAGQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNDQ2OC84Mjc1MjRFODhF RTUxMUVFQTJFRUREMTJDNEY5QUUwMi9yX3ptTjVpQlplYkZHX3YtdlJLRDFSRWtB WkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3Jfem1ONWlCWmViRkdfdi12UktEMVJFa0FaQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NDQ2OC84Mjc1MjRFODhFRTUxMUVFQTJFRUREMTJDNEY5QUUwMi9yX3ptTjVpQlpl YkZHX3YtdlJLRDFSRWtBWkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCfmuOnQE41Mn4+ezaW+uJ511yBblvvrdMwqCZ3USLq57RXAnop/A/Y oc8wCfwduUOYow/TJCzfU3qxYjLIi4LN4e+2+CCBkn8SPcMnpOb28xhWIV2PaKxl ZguKzcHNcI0QYLIkSalAHVbDyg+DZNAT+0WU9snQQA7hUl5BoQ2bkUe4C3Xhvong xeBD6cM0yDeQ4r/GMeUKnXCdHfKYyA/77QO2lxxHR3/S7G+Se1SXnm63FPp4KE/A mScfM6AYt2iuskvYIdKDebGBYuK/0PSbFc4+RD66IzMNDUlU0ZhE/4+HaIaoRBzL /2UEkWwd/rERnLy87NXVtXl7CBAYH1n4 -----END CERTIFICATE-----Generated at Sat Nov 23 05:02:59 2024 by rpki-client on console-fra.rpki-client.org