$ rpki-client -vvf rpki.apnic.net/member_repository/A91E9406/9868A9F0170911EDB6F80868C4F9AE02/40OEBUdkAqOqj5h8OvoGkNlu1HQ.mft File: 40OEBUdkAqOqj5h8OvoGkNlu1HQ.mft (raw, json) Hash identifier: Cekioltk1WwAdCI5W/9NL7ElRuHZBv6j33CITFM/buQ= Subject key identifier: D4:8C:53:B1:B7:10:7A:3F:A9:4E:E7:E8:90:BD:15:8C:E8:B5:9E:71 Authority key identifier: E3:43:84:05:47:64:02:A3:AA:8F:98:7C:3A:FA:06:90:D9:6E:D4:74 Certificate issuer: /CN=A91E9406/serialNumber=E3438405476402A3AA8F987C3AFA0690D96ED474 Certificate serial: 0204 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/40OEBUdkAqOqj5h8OvoGkNlu1HQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E9406/9868A9F0170911EDB6F80868C4F9AE02/40OEBUdkAqOqj5h8OvoGkNlu1HQ.mft Manifest number: 01FF Signing time: Sat 23 Nov 2024 01:37:12 +0000 Manifest this update: Sat 23 Nov 2024 01:37:12 +0000 Manifest next update: Sat 30 Nov 2024 01:37:12 +0000 Files and hashes: 1: 40OEBUdkAqOqj5h8OvoGkNlu1HQ.crl (hash: rd8FvhyUwAL+ARyKzwjQDfClYNIr2JM6G6AsbSOTeQk=) 2: F76D8A5C170D11EDA7EC2F87C4F9AE02.roa (hash: bEQWXluQGkjHtzXhhM0LUOXQhLNvUEvMyEXkpICCpAQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E9406/9868A9F0170911EDB6F80868C4F9AE02/40OEBUdkAqOqj5h8OvoGkNlu1HQ.crl rsync://rpki.apnic.net/member_repository/A91E9406/9868A9F0170911EDB6F80868C4F9AE02/40OEBUdkAqOqj5h8OvoGkNlu1HQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/40OEBUdkAqOqj5h8OvoGkNlu1HQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 516 (0x204) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E9406/serialNumber=E3438405476402A3AA8F987C3AFA0690D96ED474 Validity Not Before: Nov 23 01:37:12 2024 GMT Not After : Nov 30 01:37:12 2024 GMT Subject: CN=674131c8-6335 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:f8:f9:40:f8:7b:0b:45:31:38:38:4d:de:29: 10:51:dd:e9:fa:35:95:37:d1:00:28:cc:8c:55:1b: 51:5c:4d:ee:fc:13:2f:f7:6e:9c:69:93:10:2f:c3: 26:50:75:d7:99:a6:b6:49:23:25:e9:d6:1c:02:2f: 21:8b:29:b4:da:ef:c5:32:9c:48:c9:3a:a6:f6:1f: da:67:fc:85:05:a2:f4:51:74:65:a6:65:15:07:e7: cd:ef:da:17:06:fe:53:e5:10:0d:51:0b:7b:a5:57: 7d:ce:fb:01:76:7d:09:db:42:4a:d2:a5:ac:e5:ce: ff:11:66:ad:26:bd:fc:11:7d:15:73:57:ea:2e:b0: 68:36:e9:2f:6a:71:fa:0f:64:df:86:53:50:0e:cb: 26:72:8e:30:14:81:39:50:83:82:3e:ca:cb:47:77: 8f:ef:4c:c2:4b:8a:23:5d:47:dd:1c:b1:a6:80:a0: 96:ff:fb:8b:2d:d9:40:90:1f:ff:32:70:de:6b:5d: 1b:1a:c0:9d:cd:ba:06:93:4e:6e:91:37:8b:43:93: 30:2b:01:e1:f4:54:23:8a:67:80:a4:d9:3e:d1:d1: 15:09:ce:2f:c4:b7:0c:83:46:bc:84:28:7d:56:66: 30:21:d0:20:b5:93:82:53:ad:1d:f4:9f:1b:48:9c: 31:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:8C:53:B1:B7:10:7A:3F:A9:4E:E7:E8:90:BD:15:8C:E8:B5:9E:71 X509v3 Authority Key Identifier: keyid:E3:43:84:05:47:64:02:A3:AA:8F:98:7C:3A:FA:06:90:D9:6E:D4:74 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E9406/9868A9F0170911EDB6F80868C4F9AE02/40OEBUdkAqOqj5h8OvoGkNlu1HQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/40OEBUdkAqOqj5h8OvoGkNlu1HQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E9406/9868A9F0170911EDB6F80868C4F9AE02/40OEBUdkAqOqj5h8OvoGkNlu1HQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2b:48:39:e4:54:09:18:34:10:0b:e3:f3:34:c0:fc:9c:41:72: 1a:ca:98:d7:c8:31:43:ab:81:6c:24:6e:c6:a3:4f:75:cd:cb: 14:22:ad:1a:88:09:e4:06:a0:8a:a0:c6:6f:f7:32:8f:d1:49: ed:ba:d4:b9:d6:f7:ae:0e:65:a5:af:81:82:92:e2:e6:c3:1c: c2:eb:be:fa:fe:97:a0:3e:8a:ad:38:ca:4a:ad:d3:39:53:8a: 60:08:79:34:1d:dd:0b:07:b5:04:e9:08:70:c2:2a:02:a3:7d: 12:3f:72:12:ef:29:57:46:ef:e7:f1:6b:b5:bf:72:73:24:ad: 75:ad:db:09:d8:92:50:11:1a:54:98:5c:88:c7:7c:71:94:bc: fd:ed:62:44:3d:cb:93:f0:0b:2e:65:f1:e3:a1:5a:27:ac:bf: 21:cb:79:d1:50:09:da:35:e5:60:c0:18:87:5b:85:0e:96:68: c5:b8:7e:1d:fe:38:e3:b3:f2:24:f6:0f:88:73:41:2f:47:86: d9:20:6f:03:0b:4c:41:b6:ff:b8:94:ac:94:3a:f8:47:40:8b: ba:da:89:c3:b9:5e:f8:af:58:43:24:40:99:e6:47:87:92:3d: 32:a1:98:d1:2b:a1:9a:f9:b4:bc:73:fd:6e:30:2e:96:85:3e: 03:ef:0b:ba -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAgQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTk0MDYxMTAvBgNVBAUTKEUzNDM4NDA1NDc2NDAyQTNBQThGOTg3QzNBRkEwNjkw RDk2RUQ0NzQwHhcNMjQxMTIzMDEzNzEyWhcNMjQxMTMwMDEzNzEyWjAYMRYwFAYD VQQDEw02NzQxMzFjOC02MzM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlPj5QPh7C0UxODhN3ikQUd3p+jWVN9EAKMyMVRtRXE3u/BMv926caZMQL8Mm UHXXmaa2SSMl6dYcAi8hiym02u/FMpxIyTqm9h/aZ/yFBaL0UXRlpmUVB+fN79oX Bv5T5RANUQt7pVd9zvsBdn0J20JK0qWs5c7/EWatJr38EX0Vc1fqLrBoNukvanH6 D2TfhlNQDssmco4wFIE5UIOCPsrLR3eP70zCS4ojXUfdHLGmgKCW//uLLdlAkB// MnDea10bGsCdzboGk05ukTeLQ5MwKwHh9FQjimeApNk+0dEVCc4vxLcMg0a8hCh9 VmYwIdAgtZOCU60d9J8bSJwxOwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNSMU7G3 EHo/qU7n6JC9FYzotZ5xMB8GA1UdIwQYMBaAFONDhAVHZAKjqo+YfDr6BpDZbtR0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOTQwNi85ODY4QTlGMDE3 MDkxMUVEQjZGODA4NjhDNEY5QUUwMi80ME9FQlVka0FxT3FqNWg4T3ZvR2tObHUx SFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzQwT0VCVWRrQXFPcWo1aDhPdm9Ha05sdTFIUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF OTQwNi85ODY4QTlGMDE3MDkxMUVEQjZGODA4NjhDNEY5QUUwMi80ME9FQlVka0Fx T3FqNWg4T3ZvR2tObHUxSFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQArSDnkVAkYNBAL4/M0wPycQXIaypjXyDFDq4FsJG7Go091zcsUIq0a iAnkBqCKoMZv9zKP0UntutS51veuDmWlr4GCkuLmwxzC6776/pegPoqtOMpKrdM5 U4pgCHk0Hd0LB7UE6QhwwioCo30SP3IS7ylXRu/n8Wu1v3JzJK11rdsJ2JJQERpU mFyIx3xxlLz97WJEPcuT8AsuZfHjoVonrL8hy3nRUAnaNeVgwBiHW4UOlmjFuH4d /jjjs/Ik9g+Ic0EvR4bZIG8DC0xBtv+4lKyUOvhHQIu62onDuV74r1hDJECZ5keH kj0yoZjRK6Ga+bS8c/1uMC6WhT4D7wu6 -----END CERTIFICATE-----Generated at Sat Nov 23 02:33:49 2024 by rpki-client on console-fra.rpki-client.org