$ rpki-client -vvf rpki.apnic.net/member_repository/A91E734C/A73235EC73C211EA9D40B885C4F9AE02/bGgIQDgcHvMtPI2786zECCz2pbM.mft File: bGgIQDgcHvMtPI2786zECCz2pbM.mft (raw, json) Hash identifier: RriarhhcCGasSY1BD41j4BwohQioEJlfuoJT2US48cE= Subject key identifier: 04:AA:08:BB:FE:9D:B9:C0:1D:F6:98:61:F6:A7:A1:12:CF:DF:FC:80 Authority key identifier: 6C:68:08:40:38:1C:1E:F3:2D:3C:8D:BB:F3:AC:C4:08:2C:F6:A5:B3 Certificate issuer: /CN=A91E734C/serialNumber=6C680840381C1EF32D3C8DBBF3ACC4082CF6A5B3 Certificate serial: 09D5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bGgIQDgcHvMtPI2786zECCz2pbM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E734C/A73235EC73C211EA9D40B885C4F9AE02/bGgIQDgcHvMtPI2786zECCz2pbM.mft Manifest number: 09B7 Signing time: Wed 20 Nov 2024 19:43:31 +0000 Manifest this update: Wed 20 Nov 2024 19:43:31 +0000 Manifest next update: Wed 27 Nov 2024 19:43:31 +0000 Files and hashes: 1: bGgIQDgcHvMtPI2786zECCz2pbM.crl (hash: EpRkCaWdu1/1qcS4f+EIcFO2X/COyantTexgvCtSEDc=) 2: A32546F8A3DB11EA98BC5D48C4F9AE02.roa (hash: G01L1XLnOeHPHEOBsipJ57Qla0AD5wDZb1QdjAc+xSg=) 3: 2131145E9E4C11EABF30421BC4F9AE02.roa (hash: t6ZMY4L5BwCt1IMJhlimNMIeL0Ws6WTTcjT9QCJWlnU=) 4: A3D50B2EA3DB11EA98BC5D48C4F9AE02.roa (hash: ytlftfyFWjiXKIbSy8izVb+CXXbL9qxoIXy1hZ6RR08=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E734C/A73235EC73C211EA9D40B885C4F9AE02/bGgIQDgcHvMtPI2786zECCz2pbM.crl rsync://rpki.apnic.net/member_repository/A91E734C/A73235EC73C211EA9D40B885C4F9AE02/bGgIQDgcHvMtPI2786zECCz2pbM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bGgIQDgcHvMtPI2786zECCz2pbM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 19:43:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2517 (0x9d5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E734C/serialNumber=6C680840381C1EF32D3C8DBBF3ACC4082CF6A5B3 Validity Not Before: Nov 20 19:43:31 2024 GMT Not After : Nov 27 19:43:31 2024 GMT Subject: CN=673e3be3-c531 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:77:2f:02:f4:0f:07:ef:72:af:7f:18:0f:20: 27:3a:a9:b9:24:8b:f3:f7:84:35:14:70:ca:a5:0e: cc:cf:9d:31:03:ea:a8:8b:93:c3:6f:a0:06:c9:9d: ea:cd:eb:18:79:67:63:9d:29:79:69:b4:28:49:ae: 34:0d:33:ce:a8:0f:9e:48:b5:60:5a:14:c4:87:37: 8e:4d:8c:23:5a:cc:3a:db:cd:f2:d1:56:4c:88:04: fc:35:ef:76:2d:9f:e1:89:aa:9b:b3:ec:5a:80:29: 8d:16:5b:51:01:d9:da:ac:0d:76:c9:79:f2:8f:e8: 06:8f:b9:fb:f3:61:b4:23:91:87:23:41:c3:8a:46: f4:92:64:62:d0:72:ee:e4:08:a4:96:00:ed:c0:81: ff:73:17:24:10:f3:7e:cf:af:a8:a4:87:1b:9b:b4: d6:81:5b:1b:9e:3e:8f:fb:24:21:1d:e6:61:44:f6: 16:a4:bc:2a:4d:2a:bc:e7:5d:5f:7e:eb:75:a4:55: 26:80:40:93:92:03:34:8f:90:bb:6a:12:f5:73:b9: ed:55:ce:4d:db:3b:c0:aa:c4:79:a8:5c:65:c3:5c: 03:4f:e8:26:3a:23:93:03:de:26:7c:19:26:4d:cf: 39:e7:22:b5:2c:b4:2d:05:46:44:42:03:83:31:e4: a5:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:AA:08:BB:FE:9D:B9:C0:1D:F6:98:61:F6:A7:A1:12:CF:DF:FC:80 X509v3 Authority Key Identifier: keyid:6C:68:08:40:38:1C:1E:F3:2D:3C:8D:BB:F3:AC:C4:08:2C:F6:A5:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E734C/A73235EC73C211EA9D40B885C4F9AE02/bGgIQDgcHvMtPI2786zECCz2pbM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bGgIQDgcHvMtPI2786zECCz2pbM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E734C/A73235EC73C211EA9D40B885C4F9AE02/bGgIQDgcHvMtPI2786zECCz2pbM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b7:13:58:e2:ed:70:73:95:c2:d2:5b:25:b6:4f:00:54:6a:6e: 90:38:bd:3c:a2:40:56:6f:6a:50:2b:6b:b4:1b:56:46:59:04: a9:02:1b:43:6a:5c:5d:d2:a3:24:2b:1b:0b:8b:62:39:48:74: 20:5b:49:73:62:09:61:aa:83:cd:f2:59:1f:64:7c:61:60:bc: 1e:9b:f9:b8:f8:96:5b:e3:da:f9:98:4b:25:6a:71:e3:99:4a: ed:db:16:48:f9:84:21:e7:98:86:6b:f3:cf:db:be:83:f4:68: 50:b1:a8:3e:37:a1:e8:ff:5d:3a:74:81:41:ce:e7:96:f7:33: e2:82:9c:09:42:3b:26:55:31:34:21:8f:0a:41:a0:4e:c5:55: 71:13:6c:ad:c1:e4:c7:a2:39:57:cf:67:68:69:1c:85:f0:26: b2:50:71:30:d3:8b:67:d0:69:84:d4:6b:9e:ff:f0:df:0c:ee: 67:1d:13:10:72:56:1f:aa:0d:39:5b:7a:f6:05:a8:62:a0:57: b3:40:10:f6:f0:f5:5b:15:0d:8d:89:2f:58:ea:ca:05:92:c5: ed:56:ff:76:b4:38:d8:49:b8:9e:eb:89:b5:05:fa:27:77:af: d6:25:f0:5e:5a:1d:e0:93:ab:ca:1a:a1:91:7b:be:10:71:5c: fb:2b:58:da -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCdUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTczNEMxMTAvBgNVBAUTKDZDNjgwODQwMzgxQzFFRjMyRDNDOERCQkYzQUNDNDA4 MkNGNkE1QjMwHhcNMjQxMTIwMTk0MzMxWhcNMjQxMTI3MTk0MzMxWjAYMRYwFAYD VQQDEw02NzNlM2JlMy1jNTMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx3cvAvQPB+9yr38YDyAnOqm5JIvz94Q1FHDKpQ7Mz50xA+qoi5PDb6AGyZ3q zesYeWdjnSl5abQoSa40DTPOqA+eSLVgWhTEhzeOTYwjWsw6283y0VZMiAT8Ne92 LZ/hiaqbs+xagCmNFltRAdnarA12yXnyj+gGj7n782G0I5GHI0HDikb0kmRi0HLu 5AiklgDtwIH/cxckEPN+z6+opIcbm7TWgVsbnj6P+yQhHeZhRPYWpLwqTSq8511f fut1pFUmgECTkgM0j5C7ahL1c7ntVc5N2zvAqsR5qFxlw1wDT+gmOiOTA94mfBkm Tc855yK1LLQtBUZEQgODMeSlWQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFASqCLv+ nbnAHfaYYfanoRLP3/yAMB8GA1UdIwQYMBaAFGxoCEA4HB7zLTyNu/OsxAgs9qWz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNzM0Qy9BNzMyMzVFQzcz QzIxMUVBOUQ0MEI4ODVDNEY5QUUwMi9iR2dJUURnY0h2TXRQSTI3ODZ6RUNDejJw Yk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JHZ0lRRGdjSHZNdFBJMjc4NnpFQ0N6MnBiTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NzM0Qy9BNzMyMzVFQzczQzIxMUVBOUQ0MEI4ODVDNEY5QUUwMi9iR2dJUURnY0h2 TXRQSTI3ODZ6RUNDejJwYk0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC3E1ji7XBzlcLSWyW2TwBUam6QOL08okBWb2pQK2u0G1ZGWQSpAhtD alxd0qMkKxsLi2I5SHQgW0lzYglhqoPN8lkfZHxhYLwem/m4+JZb49r5mEslanHj mUrt2xZI+YQh55iGa/PP276D9GhQsag+N6Ho/106dIFBzueW9zPigpwJQjsmVTE0 IY8KQaBOxVVxE2ytweTHojlXz2doaRyF8CayUHEw04tn0GmE1Gue//DfDO5nHRMQ clYfqg05W3r2BahioFezQBD28PVbFQ2NiS9Y6soFksXtVv92tDjYSbie64m1Bfon d6/WJfBeWh3gk6vKGqGRe74QcVz7K1ja -----END CERTIFICATE-----Generated at Wed Nov 20 21:52:48 2024 by rpki-client on console-fra.rpki-client.org