$ rpki-client -vvf rpki.apnic.net/member_repository/A91E8161/670612B0FA6411E7A4C2693EC4F9AE02/DwvO4VrbbVfQLNBLRSI6uAZqVF0.mft File: DwvO4VrbbVfQLNBLRSI6uAZqVF0.mft (raw, json) Hash identifier: lJhh7ICSNCpyYC3T7uWvBLCKRmmigHhji64r3tFnUnI= Subject key identifier: DC:33:7F:12:66:96:48:9C:01:23:86:58:63:EE:89:11:66:FA:55:68 Authority key identifier: 0F:0B:CE:E1:5A:DB:6D:57:D0:2C:D0:4B:45:22:3A:B8:06:6A:54:5D Certificate issuer: /CN=A91E8161/serialNumber=0F0BCEE15ADB6D57D02CD04B45223AB8066A545D Certificate serial: 1656 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DwvO4VrbbVfQLNBLRSI6uAZqVF0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E8161/670612B0FA6411E7A4C2693EC4F9AE02/DwvO4VrbbVfQLNBLRSI6uAZqVF0.mft Manifest number: 164C Signing time: Fri 22 Nov 2024 16:42:53 +0000 Manifest this update: Fri 22 Nov 2024 16:42:52 +0000 Manifest next update: Fri 29 Nov 2024 16:42:52 +0000 Files and hashes: 1: DwvO4VrbbVfQLNBLRSI6uAZqVF0.crl (hash: CcHrgy4pNd9zfHtJLIyh/FvEfW+myG4LIv4MYrfCU+c=) 2: C109FFF4FC0511E7BAFB3E48C4F9AE02.roa (hash: Zj+iHPxvMADUxX/J3R3nQF997c2L/tq6sljYaBjJeZc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E8161/670612B0FA6411E7A4C2693EC4F9AE02/DwvO4VrbbVfQLNBLRSI6uAZqVF0.crl rsync://rpki.apnic.net/member_repository/A91E8161/670612B0FA6411E7A4C2693EC4F9AE02/DwvO4VrbbVfQLNBLRSI6uAZqVF0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DwvO4VrbbVfQLNBLRSI6uAZqVF0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 16:30:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5718 (0x1656) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E8161/serialNumber=0F0BCEE15ADB6D57D02CD04B45223AB8066A545D Validity Not Before: Nov 22 16:42:52 2024 GMT Not After : Nov 29 16:42:52 2024 GMT Subject: CN=6740b48c-a3e8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:fc:0f:19:c5:26:c6:2a:8b:06:4e:21:89:07: e4:d2:3f:44:23:6a:22:7f:fe:fb:6e:56:3a:ac:12: 09:f6:bb:a6:a9:d3:dd:1c:f6:f5:6d:f4:5c:a7:03: c5:fd:ca:74:6c:dc:d2:cf:9f:fa:a6:b7:e9:b6:90: a2:40:e4:b0:e6:d9:6c:12:1d:5d:ac:38:ab:84:3d: e2:b5:4b:0e:60:e4:03:42:e6:41:5a:86:a0:92:eb: 74:96:bc:83:d1:52:f9:bc:3b:b2:15:86:2e:41:08: 69:b9:e9:c4:bb:72:c7:89:a8:56:54:4f:cc:1d:3f: 89:f3:b6:4c:76:05:4b:69:7f:dc:0f:17:a0:7b:8e: 76:54:e0:1a:8b:47:58:e6:65:37:eb:70:53:3c:ba: bf:5c:4b:c4:65:bd:25:02:77:9e:28:e4:50:e1:49: 9b:3c:3d:97:d2:de:f6:00:38:ca:be:bc:bc:42:3d: c7:72:94:9f:48:cd:23:b5:45:58:83:78:72:61:e7: 28:62:e0:ee:a4:ae:f7:88:55:66:d6:8c:3f:c2:fe: 3a:b2:da:7a:5a:01:b4:9a:64:e3:f5:62:8b:7a:74: fc:75:d9:a0:63:65:6b:27:32:3a:e0:d2:95:9a:d3: 92:51:7e:5a:e9:99:91:21:78:c5:6c:35:fb:b6:a8: d3:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:33:7F:12:66:96:48:9C:01:23:86:58:63:EE:89:11:66:FA:55:68 X509v3 Authority Key Identifier: keyid:0F:0B:CE:E1:5A:DB:6D:57:D0:2C:D0:4B:45:22:3A:B8:06:6A:54:5D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E8161/670612B0FA6411E7A4C2693EC4F9AE02/DwvO4VrbbVfQLNBLRSI6uAZqVF0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DwvO4VrbbVfQLNBLRSI6uAZqVF0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E8161/670612B0FA6411E7A4C2693EC4F9AE02/DwvO4VrbbVfQLNBLRSI6uAZqVF0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ad:48:28:ee:5f:38:ee:61:04:d0:dd:45:dc:83:1a:f4:ae:37: ea:56:ee:43:41:f4:5b:f1:e9:10:5f:3a:d2:d8:c7:4b:6d:bf: 8c:bf:3e:20:22:ed:06:49:33:92:68:30:44:66:4c:63:3c:09: a0:16:2c:13:ea:d0:34:0d:32:11:48:fd:63:20:4e:ae:2a:4b: 51:49:fb:6c:c3:9a:06:ef:2b:a3:27:28:de:7c:4e:13:a2:a6: 12:32:48:ea:0a:d0:a1:23:5e:bc:71:2c:9b:8d:d4:6c:c3:52: 81:11:56:76:c8:51:02:ac:81:4f:1a:5d:cb:06:41:6f:c6:d1: 13:96:d0:ce:16:79:29:40:fe:d9:1c:42:59:99:00:ff:a7:5c: 00:3f:67:fe:80:1b:75:f5:ca:9d:83:4e:17:83:9e:c7:23:f1: a8:48:f1:01:a7:01:a4:2a:a7:0c:e7:e8:3a:86:39:80:f8:55: 2a:4e:82:93:90:19:b6:07:82:d4:40:44:ab:04:d7:2e:e3:18: a3:30:e6:04:8c:e7:6b:d5:dd:44:e7:a0:fd:ff:9c:8e:cd:e7: 92:63:22:d4:be:12:5d:7d:cf:63:56:d6:b6:29:d7:de:cb:d3: de:a3:9a:7d:45:c2:10:2d:a7:45:ba:e0:9b:1d:3a:0d:8f:6e: d4:01:77:e6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFlYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTgxNjExMTAvBgNVBAUTKDBGMEJDRUUxNUFEQjZENTdEMDJDRDA0QjQ1MjIzQUI4 MDY2QTU0NUQwHhcNMjQxMTIyMTY0MjUyWhcNMjQxMTI5MTY0MjUyWjAYMRYwFAYD VQQDEw02NzQwYjQ4Yy1hM2U4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0vwPGcUmxiqLBk4hiQfk0j9EI2oif/77blY6rBIJ9rumqdPdHPb1bfRcpwPF /cp0bNzSz5/6prfptpCiQOSw5tlsEh1drDirhD3itUsOYOQDQuZBWoagkut0lryD 0VL5vDuyFYYuQQhpuenEu3LHiahWVE/MHT+J87ZMdgVLaX/cDxege452VOAai0dY 5mU363BTPLq/XEvEZb0lAneeKORQ4UmbPD2X0t72ADjKvry8Qj3HcpSfSM0jtUVY g3hyYecoYuDupK73iFVm1ow/wv46stp6WgG0mmTj9WKLenT8ddmgY2VrJzI64NKV mtOSUX5a6ZmRIXjFbDX7tqjT3wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNwzfxJm lkicASOGWGPuiRFm+lVoMB8GA1UdIwQYMBaAFA8LzuFa221X0CzQS0UiOrgGalRd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFODE2MS82NzA2MTJCMEZB NjQxMUU3QTRDMjY5M0VDNEY5QUUwMi9Ed3ZPNFZyYmJWZlFMTkJMUlNJNnVBWnFW RjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0R3dk80VnJiYlZmUUxOQkxSU0k2dUFacVZGMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF ODE2MS82NzA2MTJCMEZBNjQxMUU3QTRDMjY5M0VDNEY5QUUwMi9Ed3ZPNFZyYmJW ZlFMTkJMUlNJNnVBWnFWRjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCtSCjuXzjuYQTQ3UXcgxr0rjfqVu5DQfRb8ekQXzrS2MdLbb+Mvz4g Iu0GSTOSaDBEZkxjPAmgFiwT6tA0DTIRSP1jIE6uKktRSftsw5oG7yujJyjefE4T oqYSMkjqCtChI168cSybjdRsw1KBEVZ2yFECrIFPGl3LBkFvxtETltDOFnkpQP7Z HEJZmQD/p1wAP2f+gBt19cqdg04Xg57HI/GoSPEBpwGkKqcM5+g6hjmA+FUqToKT kBm2B4LUQESrBNcu4xijMOYEjOdr1d1E56D9/5yOzeeSYyLUvhJdfc9jVta2Kdfe y9Peo5p9RcIQLadFuuCbHToNj27UAXfm -----END CERTIFICATE-----Generated at Fri Nov 22 17:56:22 2024 by rpki-client on console-fra.rpki-client.org