$ rpki-client -vvf rpki.apnic.net/member_repository/A91E46B1/F00DF366679711E8A7891C48C4F9AE02/MAeESqoZm6nIjWQEw9_oduHjn8Y.mft File: MAeESqoZm6nIjWQEw9_oduHjn8Y.mft (raw, json) Hash identifier: 8/P+7kBOtnYQ8J6xqjfBMXgk1HI2uHuHGHO3vwzbpyA= Subject key identifier: 0A:6C:42:0A:4E:2D:03:9A:BD:8A:F7:05:69:A0:A8:D7:1C:41:67:CE Authority key identifier: 30:07:84:4A:AA:19:9B:A9:C8:8D:64:04:C3:DF:E8:76:E1:E3:9F:C6 Certificate issuer: /CN=A91E46B1/serialNumber=3007844AAA199BA9C88D6404C3DFE876E1E39FC6 Certificate serial: 142E Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MAeESqoZm6nIjWQEw9_oduHjn8Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E46B1/F00DF366679711E8A7891C48C4F9AE02/MAeESqoZm6nIjWQEw9_oduHjn8Y.mft Manifest number: 141C Signing time: Wed 20 Nov 2024 16:53:24 +0000 Manifest this update: Wed 20 Nov 2024 16:53:23 +0000 Manifest next update: Wed 27 Nov 2024 16:53:23 +0000 Files and hashes: 1: MAeESqoZm6nIjWQEw9_oduHjn8Y.crl (hash: FqLOw33TPTk0paU5Hon9nvspLHDzHJik2a0K4D7/pXY=) 2: D0D94718CB8111E89EDE697DC4F9AE02.roa (hash: 9jViCMxta64fmIo5dm4osOtVC5SSmRZm2YRKWH3IWTM=) 3: 391E6EDE679B11E886728650C4F9AE02.roa (hash: FfJi+Cna0JYZDzk+rBUfl7UT75ngYXqfbGnsFnMhnRc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E46B1/F00DF366679711E8A7891C48C4F9AE02/MAeESqoZm6nIjWQEw9_oduHjn8Y.crl rsync://rpki.apnic.net/member_repository/A91E46B1/F00DF366679711E8A7891C48C4F9AE02/MAeESqoZm6nIjWQEw9_oduHjn8Y.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MAeESqoZm6nIjWQEw9_oduHjn8Y.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 15:22:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5166 (0x142e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E46B1/serialNumber=3007844AAA199BA9C88D6404C3DFE876E1E39FC6 Validity Not Before: Nov 20 16:53:23 2024 GMT Not After : Nov 27 16:53:23 2024 GMT Subject: CN=673e1403-cda5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:3b:70:87:de:22:a9:9c:fc:02:99:90:c2:c5: 0c:c5:c6:f3:7b:e2:a2:c1:72:37:36:d3:5f:97:db: f4:95:e6:ba:41:ad:93:80:0b:af:58:ec:cf:99:90: 88:cf:dc:37:d0:05:56:23:9c:8c:2d:92:0f:d7:d8: c4:27:46:fc:e4:3a:f6:79:5c:4e:1f:60:33:1a:3b: 90:5a:ec:d8:78:0d:5d:54:9c:38:07:17:44:21:81: 50:59:a3:6e:31:13:32:c4:3e:bf:fc:2b:68:a1:42: 17:c0:f5:f7:29:8f:4c:1d:5d:ff:02:b5:e6:e7:cf: 33:4d:08:05:e9:e5:3d:5b:22:17:73:8f:ec:01:9b: d1:58:3e:f7:d9:da:ee:a0:e4:c8:a0:f3:73:e8:7d: 55:ee:f4:b9:0b:51:68:61:cb:db:3a:b4:19:43:5b: bb:71:f7:58:eb:de:ed:cf:bf:05:f0:65:0e:4f:20: d0:a4:6f:f0:3a:88:07:f7:e7:d9:9a:22:0c:8d:85: a6:fd:c6:50:e2:06:81:08:1e:86:00:d4:41:7b:8e: d8:28:89:71:cd:a5:21:e5:0c:80:43:a5:ce:37:c4: 00:f4:90:cf:13:c0:71:8b:f0:eb:23:ec:c1:bb:67: e6:df:79:b4:20:2e:7d:2b:7e:5b:96:f6:e8:f9:5e: 29:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:6C:42:0A:4E:2D:03:9A:BD:8A:F7:05:69:A0:A8:D7:1C:41:67:CE X509v3 Authority Key Identifier: keyid:30:07:84:4A:AA:19:9B:A9:C8:8D:64:04:C3:DF:E8:76:E1:E3:9F:C6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E46B1/F00DF366679711E8A7891C48C4F9AE02/MAeESqoZm6nIjWQEw9_oduHjn8Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MAeESqoZm6nIjWQEw9_oduHjn8Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E46B1/F00DF366679711E8A7891C48C4F9AE02/MAeESqoZm6nIjWQEw9_oduHjn8Y.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1f:b9:19:36:3e:96:b3:ce:97:e1:5a:bc:0a:9d:6e:a5:e7:70: 4a:ec:76:09:eb:b5:26:16:2e:fb:4a:05:6e:43:db:b5:c0:bc: c4:41:a3:a6:c4:0d:9f:13:bb:fa:17:25:3c:71:43:3e:b3:0f: eb:39:6e:94:b8:cf:a2:1c:8a:26:10:c1:08:30:e9:eb:f9:d8: 4c:76:32:cf:86:ab:4c:b3:a5:73:4e:e4:cb:7f:bc:a3:0c:14: b4:76:aa:35:4a:db:2a:5d:52:27:77:e0:cd:4c:9c:ed:64:55: 86:89:87:77:d5:f6:78:ba:f9:83:a8:e1:f3:61:cb:6c:27:65: 65:4c:29:a8:b4:51:26:66:3f:26:04:ea:0c:95:d1:02:ff:73: 1e:58:71:98:60:75:3c:6f:1b:eb:85:e5:47:68:58:bc:4f:2f: cd:47:44:fb:17:6a:8e:da:a9:e9:08:91:fd:48:db:18:de:38: f7:54:a0:c5:8c:8c:f2:6b:76:57:9b:92:7e:02:52:b7:6b:b7: 16:c2:6a:42:43:c7:10:91:e8:44:ca:af:fc:e9:63:0e:9d:78: 0f:12:55:ed:57:d9:aa:d9:c6:7b:ae:91:4a:39:92:db:e3:18: 7d:72:4c:e3:cb:d3:9d:aa:c8:7e:e0:c2:86:5c:10:87:53:7a: ba:50:86:49 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFC4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTQ2QjExMTAvBgNVBAUTKDMwMDc4NDRBQUExOTlCQTlDODhENjQwNEMzREZFODc2 RTFFMzlGQzYwHhcNMjQxMTIwMTY1MzIzWhcNMjQxMTI3MTY1MzIzWjAYMRYwFAYD VQQDEw02NzNlMTQwMy1jZGE1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzTtwh94iqZz8ApmQwsUMxcbze+KiwXI3NtNfl9v0lea6Qa2TgAuvWOzPmZCI z9w30AVWI5yMLZIP19jEJ0b85Dr2eVxOH2AzGjuQWuzYeA1dVJw4BxdEIYFQWaNu MRMyxD6//CtooUIXwPX3KY9MHV3/ArXm588zTQgF6eU9WyIXc4/sAZvRWD732dru oOTIoPNz6H1V7vS5C1FoYcvbOrQZQ1u7cfdY697tz78F8GUOTyDQpG/wOogH9+fZ miIMjYWm/cZQ4gaBCB6GANRBe47YKIlxzaUh5QyAQ6XON8QA9JDPE8Bxi/DrI+zB u2fm33m0IC59K35blvbo+V4pCQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFApsQgpO LQOavYr3BWmgqNccQWfOMB8GA1UdIwQYMBaAFDAHhEqqGZupyI1kBMPf6Hbh45/G MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNDZCMS9GMDBERjM2NjY3 OTcxMUU4QTc4OTFDNDhDNEY5QUUwMi9NQWVFU3FvWm02bklqV1FFdzlfb2R1SGpu OFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL01BZUVTcW9abTZuSWpXUUV3OV9vZHVIam44WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NDZCMS9GMDBERjM2NjY3OTcxMUU4QTc4OTFDNDhDNEY5QUUwMi9NQWVFU3FvWm02 bklqV1FFdzlfb2R1SGpuOFkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAfuRk2PpazzpfhWrwKnW6l53BK7HYJ67UmFi77SgVuQ9u1wLzEQaOm xA2fE7v6FyU8cUM+sw/rOW6UuM+iHIomEMEIMOnr+dhMdjLPhqtMs6VzTuTLf7yj DBS0dqo1StsqXVInd+DNTJztZFWGiYd31fZ4uvmDqOHzYctsJ2VlTCmotFEmZj8m BOoMldEC/3MeWHGYYHU8bxvrheVHaFi8Ty/NR0T7F2qO2qnpCJH9SNsY3jj3VKDF jIzya3ZXm5J+AlK3a7cWwmpCQ8cQkehEyq/86WMOnXgPElXtV9mq2cZ7rpFKOZLb 4xh9ckzjy9Odqsh+4MKGXBCHU3q6UIZJ -----END CERTIFICATE-----Generated at Wed Nov 20 18:45:07 2024 by rpki-client on console-fra.rpki-client.org