$ rpki-client -vvf rpki.apnic.net/member_repository/A91E9641/7D0287EA177011EE945CD859C4F9AE02/dxt4h8SJvZsXs87YMWTvRNxWTvU.mft File: dxt4h8SJvZsXs87YMWTvRNxWTvU.mft (raw, json) Hash identifier: zvF6mrlr3UleuUstVuZ+EW7gaHL4K+IQgP1fODUmWtY= Subject key identifier: 8E:C7:5F:BA:F7:7A:69:3C:F9:E1:CF:E7:C0:76:DD:E1:38:C0:CC:46 Authority key identifier: 77:1B:78:87:C4:89:BD:9B:17:B3:CE:D8:31:64:EF:44:DC:56:4E:F5 Certificate issuer: /CN=A91E9641/serialNumber=771B7887C489BD9B17B3CED83164EF44DC564EF5 Certificate serial: 0109 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dxt4h8SJvZsXs87YMWTvRNxWTvU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E9641/7D0287EA177011EE945CD859C4F9AE02/dxt4h8SJvZsXs87YMWTvRNxWTvU.mft Manifest number: 0105 Signing time: Thu 21 Nov 2024 03:14:07 +0000 Manifest this update: Thu 21 Nov 2024 03:14:07 +0000 Manifest next update: Thu 28 Nov 2024 03:14:07 +0000 Files and hashes: 1: dxt4h8SJvZsXs87YMWTvRNxWTvU.crl (hash: J+Ijfn21xbNXEFgPSGinV8eZ6ac1sVnS/b2VHlbHgOY=) 2: 5D432F98177711EEAB396D1CC4F9AE02.roa (hash: CB6qYtIMERSezwGUEUv4T/r/K/tC4CWAUjSVJHYQH28=) 3: 5CB1666C177711EEAB396D1CC4F9AE02.roa (hash: wqZWqZ8fa4R6eMrcXZq1r/urB8kEflCs9S9caDMISYM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E9641/7D0287EA177011EE945CD859C4F9AE02/dxt4h8SJvZsXs87YMWTvRNxWTvU.crl rsync://rpki.apnic.net/member_repository/A91E9641/7D0287EA177011EE945CD859C4F9AE02/dxt4h8SJvZsXs87YMWTvRNxWTvU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dxt4h8SJvZsXs87YMWTvRNxWTvU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 03:14:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 265 (0x109) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E9641/serialNumber=771B7887C489BD9B17B3CED83164EF44DC564EF5 Validity Not Before: Nov 21 03:14:07 2024 GMT Not After : Nov 28 03:14:07 2024 GMT Subject: CN=673ea57f-98c9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:97:9e:47:ce:ec:24:d9:53:0e:cf:4a:1f:f9: 44:94:e6:16:c7:db:ed:02:58:3b:c3:64:c6:b9:ec: 8d:08:5b:e8:39:e4:d0:cf:36:a0:82:4a:19:97:5a: 1b:ca:99:67:c4:9d:ee:4a:66:a6:6c:b2:c6:e3:79: 1f:f9:c3:d8:eb:26:1c:63:d0:f0:b2:06:34:15:57: 83:af:fa:35:4d:d9:f6:7f:dc:58:1a:d1:9e:47:8a: 61:66:90:22:30:36:74:42:11:be:29:26:fb:cf:05: 07:e8:ee:bc:e2:07:ad:ea:2e:8a:88:58:01:b3:74: 11:5d:5d:d7:a5:21:c6:1e:84:77:a6:cc:56:2f:96: 11:a9:ec:07:a0:a9:a1:d1:81:71:07:3f:d8:8d:5a: ac:b6:2f:6b:1b:fd:8b:37:ee:35:73:37:0a:07:61: 83:67:34:dd:68:52:1d:fc:0e:9c:1e:07:56:c1:b1: 84:94:1c:94:9f:ae:84:1f:e0:c1:04:f7:d3:4f:d7: e3:41:ef:cd:93:f1:f5:f1:19:6d:2b:4c:fe:a3:ed: 0c:59:0b:d0:99:e1:5a:6d:24:c0:5d:0e:24:c0:c0: e0:92:cc:92:6d:ce:3c:cc:47:65:18:8e:8e:c3:f2: e0:30:dc:16:d7:b5:5c:fd:6b:00:88:d4:ea:16:bf: 7a:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:C7:5F:BA:F7:7A:69:3C:F9:E1:CF:E7:C0:76:DD:E1:38:C0:CC:46 X509v3 Authority Key Identifier: keyid:77:1B:78:87:C4:89:BD:9B:17:B3:CE:D8:31:64:EF:44:DC:56:4E:F5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E9641/7D0287EA177011EE945CD859C4F9AE02/dxt4h8SJvZsXs87YMWTvRNxWTvU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dxt4h8SJvZsXs87YMWTvRNxWTvU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E9641/7D0287EA177011EE945CD859C4F9AE02/dxt4h8SJvZsXs87YMWTvRNxWTvU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5b:f1:c1:77:15:5e:a1:89:0a:95:1b:42:19:d0:25:0d:89:31: 18:5d:2f:99:41:ea:c4:6b:eb:f3:dc:4a:a5:4e:66:a2:e5:c3: bc:66:b3:46:c5:ab:13:94:63:03:bb:bf:0b:ce:34:f5:da:38: 00:75:5e:2e:37:eb:60:b8:bd:9c:6a:62:c6:4e:2d:38:4e:db: 88:d6:c3:d1:95:d6:39:09:6a:a5:46:e8:55:65:76:84:7f:67: 99:52:79:6b:a9:c5:8c:85:bd:48:41:bd:12:7d:37:6d:8d:a0: ad:a2:6e:14:39:a6:af:2d:32:35:52:25:fb:c0:9e:6a:0a:6d: 46:1d:fa:b8:d0:bb:3c:a5:2a:71:34:1d:3a:ec:52:e2:2e:b0: 5b:39:2f:a4:0a:4b:9f:40:9f:fb:72:07:f1:4f:96:87:7c:fc: 0e:f3:a3:81:22:1b:9c:0c:e1:c5:0c:3f:a7:21:0f:50:19:b9: 37:47:b6:f9:82:35:db:95:9b:8c:dd:32:af:ef:5a:3e:e1:d2: 98:29:4f:da:82:a1:94:ba:40:29:dd:5e:64:8c:a3:4c:b2:1e: 00:b5:41:cd:b0:57:43:87:0f:e1:36:45:da:d9:d2:fa:4a:1d: 16:e6:e8:d7:9e:a7:ef:f3:5e:e1:19:1b:f3:97:9a:c4:4b:dd: 34:99:70:ac -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTk2NDExMTAvBgNVBAUTKDc3MUI3ODg3QzQ4OUJEOUIxN0IzQ0VEODMxNjRFRjQ0 REM1NjRFRjUwHhcNMjQxMTIxMDMxNDA3WhcNMjQxMTI4MDMxNDA3WjAYMRYwFAYD VQQDEw02NzNlYTU3Zi05OGM5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4peeR87sJNlTDs9KH/lElOYWx9vtAlg7w2TGueyNCFvoOeTQzzaggkoZl1ob yplnxJ3uSmambLLG43kf+cPY6yYcY9DwsgY0FVeDr/o1Tdn2f9xYGtGeR4phZpAi MDZ0QhG+KSb7zwUH6O684get6i6KiFgBs3QRXV3XpSHGHoR3psxWL5YRqewHoKmh 0YFxBz/YjVqsti9rG/2LN+41czcKB2GDZzTdaFId/A6cHgdWwbGElByUn66EH+DB BPfTT9fjQe/Nk/H18RltK0z+o+0MWQvQmeFabSTAXQ4kwMDgksySbc48zEdlGI6O w/LgMNwW17Vc/WsAiNTqFr96VQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFI7HX7r3 emk8+eHP58B23eE4wMxGMB8GA1UdIwQYMBaAFHcbeIfEib2bF7PO2DFk70TcVk71 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOTY0MS83RDAyODdFQTE3 NzAxMUVFOTQ1Q0Q4NTlDNEY5QUUwMi9keHQ0aDhTSnZac1hzODdZTVdUdlJOeFdU dlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2R4dDRoOFNKdlpzWHM4N1lNV1R2Uk54V1R2VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF OTY0MS83RDAyODdFQTE3NzAxMUVFOTQ1Q0Q4NTlDNEY5QUUwMi9keHQ0aDhTSnZa c1hzODdZTVdUdlJOeFdUdlUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBb8cF3FV6hiQqVG0IZ0CUNiTEYXS+ZQerEa+vz3EqlTmai5cO8ZrNG xasTlGMDu78LzjT12jgAdV4uN+tguL2camLGTi04TtuI1sPRldY5CWqlRuhVZXaE f2eZUnlrqcWMhb1IQb0SfTdtjaCtom4UOaavLTI1UiX7wJ5qCm1GHfq40Ls8pSpx NB067FLiLrBbOS+kCkufQJ/7cgfxT5aHfPwO86OBIhucDOHFDD+nIQ9QGbk3R7b5 gjXblZuM3TKv71o+4dKYKU/agqGUukAp3V5kjKNMsh4AtUHNsFdDhw/hNkXa2dL6 Sh0W5ujXnqfv817hGRvzl5rES900mXCs -----END CERTIFICATE-----Generated at Thu Nov 21 05:06:06 2024 by rpki-client on console-fra.rpki-client.org