$ rpki-client -vvf rpki.apnic.net/member_repository/A91E4845/400153B6D2EB11E5B4D15A4EC4F9AE02/AaQS70FsiE9vY38b2oAOtu9nttY.mft File: AaQS70FsiE9vY38b2oAOtu9nttY.mft (raw, json) Hash identifier: 5BfHcQjn+28lTLVG9VjilxAZYScyio22NuLWo9dLn5Y= Subject key identifier: BB:67:42:86:63:87:D6:AD:0D:1B:A4:BB:A5:41:ED:B7:D0:AD:DB:B8 Authority key identifier: 01:A4:12:EF:41:6C:88:4F:6F:63:7F:1B:DA:80:0E:B6:EF:67:B6:D6 Certificate issuer: /CN=A91E4845/serialNumber=01A412EF416C884F6F637F1BDA800EB6EF67B6D6 Certificate serial: 2196 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AaQS70FsiE9vY38b2oAOtu9nttY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E4845/400153B6D2EB11E5B4D15A4EC4F9AE02/AaQS70FsiE9vY38b2oAOtu9nttY.mft Manifest number: 2171 Signing time: Sun 24 Nov 2024 15:49:08 +0000 Manifest this update: Sun 24 Nov 2024 15:49:07 +0000 Manifest next update: Sun 01 Dec 2024 15:49:07 +0000 Files and hashes: 1: AaQS70FsiE9vY38b2oAOtu9nttY.crl (hash: N69W5sIy3tOdqPLEPnSXV/jMPS2bmUgrRmIj89U22WQ=) 2: EA7EF77860BB11EF98A27D59C4F9AE02.roa (hash: IbXlCyRGRqfkHxZ+zY5UHBQbh7Uez3K4rRQxc+WKNAc=) 3: 1DE1EBA25F0E11EF88D4A280C4F9AE02.roa (hash: Su/rsLLdLVbaK3eIvyq9gTx+TtwXy5ZYrCz4EGxfjNQ=) 4: 6875130A75D011EFAEA8B95DC4F9AE02.roa (hash: j9MU+6XiaMgg2sRP/18nlR8evD4Nijbjxv7J3XKYmto=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E4845/400153B6D2EB11E5B4D15A4EC4F9AE02/AaQS70FsiE9vY38b2oAOtu9nttY.crl rsync://rpki.apnic.net/member_repository/A91E4845/400153B6D2EB11E5B4D15A4EC4F9AE02/AaQS70FsiE9vY38b2oAOtu9nttY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AaQS70FsiE9vY38b2oAOtu9nttY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Dec 2024 15:49:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8598 (0x2196) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E4845/serialNumber=01A412EF416C884F6F637F1BDA800EB6EF67B6D6 Validity Not Before: Nov 24 15:49:07 2024 GMT Not After : Dec 1 15:49:07 2024 GMT Subject: CN=67434af3-5152 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:75:1d:2f:4e:51:3b:e2:65:91:12:cd:a9:2a: 28:38:9d:5e:db:e7:4d:81:03:60:29:60:76:e4:89: ae:4b:7c:fe:c2:b9:88:cf:dd:b7:9b:e1:87:fa:8c: 66:93:a8:01:8a:33:01:32:98:0d:13:28:c0:23:55: 93:30:ec:90:ec:c8:d0:96:a5:98:f2:de:6e:17:b4: 60:36:d9:30:95:60:b4:df:71:59:ef:8a:ec:87:1d: ee:58:6e:6f:91:5f:f9:75:00:1d:ca:62:73:01:f3: c9:31:4e:20:30:cc:d5:47:b5:05:82:54:df:26:b6: d6:87:b2:d8:b1:11:c6:01:e8:51:54:3c:20:c8:d2: 5e:7f:f3:60:c7:9d:8e:28:8d:33:d9:a1:86:41:49: 2b:9e:98:4c:89:96:de:4b:86:1e:92:6d:d7:8f:12: 94:f4:76:94:79:2b:a4:dc:6b:33:ea:e1:6f:7a:4c: ec:74:91:60:91:39:b1:ba:d1:36:6c:da:c4:f2:a2: 8a:ee:0f:ed:5e:13:40:b3:c8:84:2c:9c:75:74:0a: 91:69:30:d6:31:92:8b:80:85:3e:0e:a9:64:bf:70: 77:41:07:0d:34:5b:68:f3:8d:f4:37:50:ca:98:6c: 9b:10:3a:ba:9c:a8:fd:e8:21:34:80:02:de:9b:56: 8a:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:67:42:86:63:87:D6:AD:0D:1B:A4:BB:A5:41:ED:B7:D0:AD:DB:B8 X509v3 Authority Key Identifier: keyid:01:A4:12:EF:41:6C:88:4F:6F:63:7F:1B:DA:80:0E:B6:EF:67:B6:D6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E4845/400153B6D2EB11E5B4D15A4EC4F9AE02/AaQS70FsiE9vY38b2oAOtu9nttY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AaQS70FsiE9vY38b2oAOtu9nttY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E4845/400153B6D2EB11E5B4D15A4EC4F9AE02/AaQS70FsiE9vY38b2oAOtu9nttY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 32:80:1a:ad:fe:9c:91:40:a5:2c:68:1f:c3:60:70:39:ea:3d: 0e:e5:61:e2:4a:91:cd:f1:98:03:9d:cf:4d:92:74:8f:d9:05: 97:3d:a2:cd:92:c0:94:b2:88:ae:11:56:4a:0e:48:05:50:66: ed:23:64:09:cb:86:74:1c:7b:0b:30:46:41:fd:8a:58:64:65: 29:a9:f5:3e:74:19:bc:f2:a5:75:3a:f6:eb:44:7d:5a:18:e2: 0b:29:2a:26:1a:f4:29:ba:86:2e:97:23:e4:6c:66:27:09:d2: 7e:1c:f5:dc:1b:c8:b3:f0:0d:9e:1e:18:3e:c3:1a:e7:fb:2b: c2:e2:7f:3b:c8:6b:e3:cf:7e:30:45:67:20:85:43:56:1f:5b: a3:40:40:5c:30:20:a9:e7:89:21:3e:bf:03:9c:01:f5:fc:b8: 2f:d5:0b:15:7f:01:b0:17:34:9c:f9:53:25:59:a7:2a:97:df: 22:33:68:06:78:0d:aa:9b:6e:6a:99:aa:a3:73:f1:66:36:12: 7e:05:d7:41:3a:56:90:40:17:22:a6:7c:82:13:0e:3a:47:04: ae:c0:ba:ea:d7:f4:72:63:ba:24:3a:eb:87:7e:12:a4:e2:5e: 37:a7:e7:77:bf:94:f6:ea:5d:ba:40:93:b5:49:bc:11:55:48: 06:e7:91:be -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICIZYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTQ4NDUxMTAvBgNVBAUTKDAxQTQxMkVGNDE2Qzg4NEY2RjYzN0YxQkRBODAwRUI2 RUY2N0I2RDYwHhcNMjQxMTI0MTU0OTA3WhcNMjQxMjAxMTU0OTA3WjAYMRYwFAYD VQQDEw02NzQzNGFmMy01MTUyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2XUdL05RO+JlkRLNqSooOJ1e2+dNgQNgKWB25ImuS3z+wrmIz923m+GH+oxm k6gBijMBMpgNEyjAI1WTMOyQ7MjQlqWY8t5uF7RgNtkwlWC033FZ74rshx3uWG5v kV/5dQAdymJzAfPJMU4gMMzVR7UFglTfJrbWh7LYsRHGAehRVDwgyNJef/Ngx52O KI0z2aGGQUkrnphMiZbeS4Yekm3XjxKU9HaUeSuk3Gsz6uFvekzsdJFgkTmxutE2 bNrE8qKK7g/tXhNAs8iELJx1dAqRaTDWMZKLgIU+Dqlkv3B3QQcNNFto8430N1DK mGybEDq6nKj96CE0gALem1aK9wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLtnQoZj h9atDRuku6VB7bfQrdu4MB8GA1UdIwQYMBaAFAGkEu9BbIhPb2N/G9qADrbvZ7bW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNDg0NS80MDAxNTNCNkQy RUIxMUU1QjREMTVBNEVDNEY5QUUwMi9BYVFTNzBGc2lFOXZZMzhiMm9BT3R1OW50 dFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FhUVM3MEZzaUU5dlkzOGIyb0FPdHU5bnR0WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NDg0NS80MDAxNTNCNkQyRUIxMUU1QjREMTVBNEVDNEY5QUUwMi9BYVFTNzBGc2lF OXZZMzhiMm9BT3R1OW50dFkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAygBqt/pyRQKUsaB/DYHA56j0O5WHiSpHN8ZgDnc9NknSP2QWXPaLN ksCUsoiuEVZKDkgFUGbtI2QJy4Z0HHsLMEZB/YpYZGUpqfU+dBm88qV1OvbrRH1a GOILKSomGvQpuoYulyPkbGYnCdJ+HPXcG8iz8A2eHhg+wxrn+yvC4n87yGvjz34w RWcghUNWH1ujQEBcMCCp54khPr8DnAH1/Lgv1QsVfwGwFzSc+VMlWacql98iM2gG eA2qm25qmaqjc/FmNhJ+BddBOlaQQBcipnyCEw46RwSuwLrq1/RyY7okOuuHfhKk 4l43p+d3v5T26l26QJO1SbwRVUgG55G+ -----END CERTIFICATE-----Generated at Sun Nov 24 17:20:53 2024 by rpki-client on console-fra.rpki-client.org