$ rpki-client -vvf rpki.apnic.net/member_repository/A91E554A/795E73D091F711EFADE11266C4F9AE02/EhrxRNkD4_iJffD-0gcaFkd17U8.mft File: EhrxRNkD4_iJffD-0gcaFkd17U8.mft (raw, json) Hash identifier: XaSkXBEEvBqm2+ZJfJIWqz1ooaqjjLd71nQxxCS7eFo= Subject key identifier: A0:0E:73:49:AC:06:42:C7:21:91:E8:F8:21:29:49:59:92:98:4B:D3 Authority key identifier: 12:1A:F1:44:D9:03:E3:F8:89:7D:F0:FE:D2:07:1A:16:47:75:ED:4F Certificate issuer: /CN=A91E554A/serialNumber=121AF144D903E3F8897DF0FED2071A164775ED4F Certificate serial: 18 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/EhrxRNkD4_iJffD-0gcaFkd17U8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E554A/795E73D091F711EFADE11266C4F9AE02/EhrxRNkD4_iJffD-0gcaFkd17U8.mft Manifest number: 15 Signing time: Sat 23 Nov 2024 05:59:22 +0000 Manifest this update: Sat 23 Nov 2024 05:59:21 +0000 Manifest next update: Sat 30 Nov 2024 05:59:21 +0000 Files and hashes: 1: EhrxRNkD4_iJffD-0gcaFkd17U8.crl (hash: mf9v6vKpmcbCb0gqhP0nDcLZFe40WgZXIgnYiULZtSs=) 2: 389BD49096AD11EF8DD3B535C4F9AE02.roa (hash: pCk1BM3eEEd/MLFCsHJHYrsXbZ44cQqHYccS6t2WXO8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E554A/795E73D091F711EFADE11266C4F9AE02/EhrxRNkD4_iJffD-0gcaFkd17U8.crl rsync://rpki.apnic.net/member_repository/A91E554A/795E73D091F711EFADE11266C4F9AE02/EhrxRNkD4_iJffD-0gcaFkd17U8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/EhrxRNkD4_iJffD-0gcaFkd17U8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24 (0x18) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E554A/serialNumber=121AF144D903E3F8897DF0FED2071A164775ED4F Validity Not Before: Nov 23 05:59:21 2024 GMT Not After : Nov 30 05:59:21 2024 GMT Subject: CN=67416f39-037e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:b8:9e:61:e5:ed:8c:fe:f4:cc:4e:37:3c:a3: b6:a5:de:e1:6c:dc:d7:79:69:25:9c:6e:38:8e:61: a9:12:98:3b:cf:6f:65:6b:7c:64:e2:b0:b5:e9:b0: 03:59:68:5a:b6:65:0b:ee:73:d9:db:8e:d8:45:2b: e0:f5:19:45:9f:b9:d0:63:92:d3:e6:6a:36:e3:d8: 82:a8:3a:34:3c:98:6a:7a:01:3d:7d:b1:1a:6a:94: 72:1b:d1:23:52:b9:db:49:71:2b:0d:bd:0a:3c:a2: c8:5b:db:22:35:33:36:a3:fb:7c:d0:cb:6a:df:3c: f5:25:7f:f5:58:5c:ab:a8:c1:3c:f7:32:31:ec:76: 5a:70:c5:c6:e6:fb:b2:01:64:5d:13:52:ea:3c:41: 94:91:16:7b:37:52:df:43:7b:15:44:c7:86:16:27: 24:12:2d:57:dd:76:74:2b:ea:90:3a:a1:d9:92:35: d6:d9:38:83:3f:83:2c:c3:fe:fd:b7:cd:97:7a:96: d9:b1:c7:af:4a:61:04:91:9f:f4:c8:95:33:98:53: 32:d0:77:1a:fe:4c:e7:9c:29:68:94:0c:fd:43:1e: 87:6f:62:c0:99:e3:72:6a:65:ab:47:f6:68:da:e4: 94:e5:6a:90:dc:aa:ac:7f:86:26:f7:13:7a:58:c4: 54:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:0E:73:49:AC:06:42:C7:21:91:E8:F8:21:29:49:59:92:98:4B:D3 X509v3 Authority Key Identifier: keyid:12:1A:F1:44:D9:03:E3:F8:89:7D:F0:FE:D2:07:1A:16:47:75:ED:4F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E554A/795E73D091F711EFADE11266C4F9AE02/EhrxRNkD4_iJffD-0gcaFkd17U8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/EhrxRNkD4_iJffD-0gcaFkd17U8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E554A/795E73D091F711EFADE11266C4F9AE02/EhrxRNkD4_iJffD-0gcaFkd17U8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 56:98:3e:0b:ca:cc:42:65:1a:3d:71:43:08:04:00:2b:71:69: ba:88:86:bb:ce:e0:e6:d5:c5:e0:36:99:d4:65:a4:bb:d2:ab: 48:67:6e:42:90:a6:4a:27:0d:32:53:72:7d:8c:9f:e2:86:03: ee:ee:53:74:3d:0e:07:b9:f6:f5:0b:8d:d0:4f:2f:f7:a2:c4: 0d:0f:57:a3:e4:4f:85:a2:13:69:32:c9:e4:1b:e4:91:fa:76: ad:50:7d:87:6a:5f:4b:82:14:55:fb:f4:0c:c6:d5:37:5f:9a: 13:8e:32:c4:93:cc:19:08:4c:c9:ea:99:fb:15:5a:97:51:d8: 16:fc:1a:ae:19:4f:df:d9:31:81:ff:08:9f:e0:fd:d5:fb:d9: a4:43:d6:c5:c6:7f:a9:12:93:0f:ce:be:4f:37:38:65:85:8b: 05:c7:a8:39:76:b6:3a:68:5a:fd:5e:09:50:65:95:30:c4:6d: 47:16:be:48:90:2c:50:6a:2d:36:4e:c4:3f:b7:e5:4f:27:aa: 52:0f:28:fb:0f:25:35:5b:e8:83:65:ff:f7:08:f9:71:5e:09: 37:6b:bc:f8:85:6c:4b:01:51:5a:5c:13:52:d8:ed:ce:b7:53: e6:24:43:5d:91:59:5c:b2:0d:64:8f:ee:d0:d9:cf:02:25:a7: ca:97:01:fd -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBGDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF NTU0QTExMC8GA1UEBRMoMTIxQUYxNDREOTAzRTNGODg5N0RGMEZFRDIwNzFBMTY0 Nzc1RUQ0RjAeFw0yNDExMjMwNTU5MjFaFw0yNDExMzAwNTU5MjFaMBgxFjAUBgNV BAMTDTY3NDE2ZjM5LTAzN2UwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDkuJ5h5e2M/vTMTjc8o7al3uFs3Nd5aSWcbjiOYakSmDvPb2VrfGTisLXpsANZ aFq2ZQvuc9nbjthFK+D1GUWfudBjktPmajbj2IKoOjQ8mGp6AT19sRpqlHIb0SNS udtJcSsNvQo8oshb2yI1Mzaj+3zQy2rfPPUlf/VYXKuowTz3MjHsdlpwxcbm+7IB ZF0TUuo8QZSRFns3Ut9DexVEx4YWJyQSLVfddnQr6pA6odmSNdbZOIM/gyzD/v23 zZd6ltmxx69KYQSRn/TIlTOYUzLQdxr+TOecKWiUDP1DHodvYsCZ43JqZatH9mja 5JTlapDcqqx/hib3E3pYxFRFAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUoA5zSawG Qschkej4ISlJWZKYS9MwHwYDVR0jBBgwFoAUEhrxRNkD4/iJffD+0gcaFkd17U8w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUU1NTRBLzc5NUU3M0QwOTFG NzExRUZBREUxMTI2NkM0RjlBRTAyL0VocnhSTmtENF9pSmZmRC0wZ2NhRmtkMTdV OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvRWhyeFJOa0Q0X2lKZmZELTBnY2FGa2QxN1U4LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUU1 NTRBLzc5NUU3M0QwOTFGNzExRUZBREUxMTI2NkM0RjlBRTAyL0VocnhSTmtENF9p SmZmRC0wZ2NhRmtkMTdVOC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAFaYPgvKzEJlGj1xQwgEACtxabqIhrvO4ObVxeA2mdRlpLvSq0hnbkKQ pkonDTJTcn2Mn+KGA+7uU3Q9Dge59vULjdBPL/eixA0PV6PkT4WiE2kyyeQb5JH6 dq1QfYdqX0uCFFX79AzG1TdfmhOOMsSTzBkITMnqmfsVWpdR2Bb8Gq4ZT9/ZMYH/ CJ/g/dX72aRD1sXGf6kSkw/Ovk83OGWFiwXHqDl2tjpoWv1eCVBllTDEbUcWvkiQ LFBqLTZOxD+35U8nqlIPKPsPJTVb6INl//cI+XFeCTdrvPiFbEsBUVpcE1LY7c63 U+YkQ12RWVyyDWSP7tDZzwIlp8qXAf0= -----END CERTIFICATE-----Generated at Sat Nov 23 07:31:32 2024 by rpki-client on console-fra.rpki-client.org