$ rpki-client -vvf rpki.apnic.net/member_repository/A91EA176/ADD3AECEB28E11EB94D21847C4F9AE02/dmH1l-po7_TJKXNjm7Z11_A5CXE.mft File: dmH1l-po7_TJKXNjm7Z11_A5CXE.mft (raw, json) Hash identifier: /pyTcy1nV19p6MPLniytIZZfKJ5AmV5FQ9bDtgDSFrM= Subject key identifier: F8:D7:53:0B:D4:D7:12:BD:AE:D1:D1:C5:C5:42:CE:D0:39:DA:C9:6B Authority key identifier: 76:61:F5:97:EA:68:EF:F4:C9:29:73:63:9B:B6:75:D7:F0:39:09:71 Certificate issuer: /CN=A91EA176/serialNumber=7661F597EA68EFF4C92973639BB675D7F0390971 Certificate serial: 05A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dmH1l-po7_TJKXNjm7Z11_A5CXE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EA176/ADD3AECEB28E11EB94D21847C4F9AE02/dmH1l-po7_TJKXNjm7Z11_A5CXE.mft Manifest number: 0596 Signing time: Sun 24 Nov 2024 22:37:43 +0000 Manifest this update: Sun 24 Nov 2024 22:37:43 +0000 Manifest next update: Sun 01 Dec 2024 22:37:43 +0000 Files and hashes: 1: dmH1l-po7_TJKXNjm7Z11_A5CXE.crl (hash: e/uoP0B21A6AGaGoGH3JfXP/9M0vI3wZzOUN9o1CDbk=) 2: 6595CE9CB29011EBBBF4F548C4F9AE02.roa (hash: DLHOhN7MxK0HNTrL76H062J5sW6+LyM3CKGkbsKyA38=) 3: 10123D12E34E11ECB9CB283EC4F9AE02.roa (hash: MNI4tMTnWERKtqUoO+1DtINRz6vPCPMkYFmwGLJDwJM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EA176/ADD3AECEB28E11EB94D21847C4F9AE02/dmH1l-po7_TJKXNjm7Z11_A5CXE.crl rsync://rpki.apnic.net/member_repository/A91EA176/ADD3AECEB28E11EB94D21847C4F9AE02/dmH1l-po7_TJKXNjm7Z11_A5CXE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dmH1l-po7_TJKXNjm7Z11_A5CXE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Dec 2024 17:11:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1445 (0x5a5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EA176/serialNumber=7661F597EA68EFF4C92973639BB675D7F0390971 Validity Not Before: Nov 24 22:37:43 2024 GMT Not After : Dec 1 22:37:43 2024 GMT Subject: CN=6743aab7-84b2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:75:4c:24:88:fb:2f:c9:5e:1d:14:c3:84:d9: 9d:13:17:c8:40:9a:64:5b:f1:06:e3:4a:10:f1:d9: 72:1d:01:86:f1:95:47:0f:4b:f8:59:bd:40:14:c6: cd:2f:09:67:0b:59:b6:78:a3:71:06:38:e3:a2:ae: 3f:c3:bf:d3:b7:86:a6:b5:ca:aa:84:8e:2c:ea:f3: c8:ee:87:35:10:60:0a:45:1e:55:fe:ed:ab:dc:6b: 1a:3a:40:78:01:5e:21:f1:e4:94:60:93:40:6d:48: 84:15:94:06:ca:0e:ac:5e:34:42:5d:d5:0b:93:68: 90:5c:38:24:d6:64:39:56:bd:f6:f7:b5:04:40:c4: cf:45:be:6a:ae:20:b9:03:c7:fb:50:2e:79:59:e8: b3:6d:1d:0f:92:93:e0:3e:e2:de:11:58:ec:5e:f4: f9:23:ff:7a:e9:80:b9:4a:d1:cd:f7:8a:09:d6:99: 47:c1:d2:e9:cf:f5:16:aa:1f:aa:22:24:71:a8:5f: c7:fb:70:51:ed:eb:cb:76:8d:77:cf:ea:a4:fa:c7: 31:c7:f0:d0:5e:60:7e:36:30:ae:f7:71:40:ce:8d: 51:ee:ce:ad:cf:e8:87:19:7e:92:7e:bc:0c:b5:85: 0f:4b:e3:33:de:aa:dd:9f:50:8e:96:41:e4:bc:97: f9:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:D7:53:0B:D4:D7:12:BD:AE:D1:D1:C5:C5:42:CE:D0:39:DA:C9:6B X509v3 Authority Key Identifier: keyid:76:61:F5:97:EA:68:EF:F4:C9:29:73:63:9B:B6:75:D7:F0:39:09:71 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EA176/ADD3AECEB28E11EB94D21847C4F9AE02/dmH1l-po7_TJKXNjm7Z11_A5CXE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dmH1l-po7_TJKXNjm7Z11_A5CXE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EA176/ADD3AECEB28E11EB94D21847C4F9AE02/dmH1l-po7_TJKXNjm7Z11_A5CXE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 26:5a:7f:06:4a:78:19:3a:26:6f:82:9e:4c:79:16:9a:bc:9d: ff:4d:f7:be:8b:d1:2d:af:37:e3:8c:7e:a4:69:71:22:87:a3: 61:b6:39:2c:9e:d0:0e:ef:16:c9:34:de:de:b3:2b:98:69:75: 0e:2a:70:7b:5b:bb:23:83:fb:ea:0e:7d:0e:ef:8c:39:59:18: 8c:1d:20:4a:3d:9d:c7:c8:44:10:20:91:91:b5:f9:1f:f5:ea: d1:5e:16:4a:1c:4e:c7:92:bf:5f:60:fd:fc:55:6d:57:4f:77: 6b:3c:cd:15:8f:9b:51:75:a0:14:d5:ae:a8:9e:46:1d:8c:f6: d4:8b:19:61:fe:c6:7d:99:34:f9:56:42:be:e2:4b:f8:7e:e1: 03:c7:9f:71:d8:e4:f3:6b:39:64:d6:93:c7:c1:1f:20:d1:68: c4:81:40:0b:18:05:02:ef:e4:cb:2b:e1:e6:b1:40:da:f0:aa: e3:c2:33:ec:7b:e4:5e:d5:0b:ce:58:dd:45:07:09:6a:2c:e2: fb:55:15:8c:5f:2a:46:59:28:d0:5f:19:f7:7e:d2:31:c9:08: 01:eb:bd:0b:5b:82:b4:94:eb:c2:c9:e8:45:9f:42:16:41:72: 74:5c:b1:c7:ee:74:fa:d6:c6:ee:2a:2d:31:b2:18:fe:54:61: e4:9b:6a:05 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBaUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUExNzYxMTAvBgNVBAUTKDc2NjFGNTk3RUE2OEVGRjRDOTI5NzM2MzlCQjY3NUQ3 RjAzOTA5NzEwHhcNMjQxMTI0MjIzNzQzWhcNMjQxMjAxMjIzNzQzWjAYMRYwFAYD VQQDEw02NzQzYWFiNy04NGIyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv3VMJIj7L8leHRTDhNmdExfIQJpkW/EG40oQ8dlyHQGG8ZVHD0v4Wb1AFMbN LwlnC1m2eKNxBjjjoq4/w7/Tt4amtcqqhI4s6vPI7oc1EGAKRR5V/u2r3GsaOkB4 AV4h8eSUYJNAbUiEFZQGyg6sXjRCXdULk2iQXDgk1mQ5Vr3297UEQMTPRb5qriC5 A8f7UC55WeizbR0PkpPgPuLeEVjsXvT5I/966YC5StHN94oJ1plHwdLpz/UWqh+q IiRxqF/H+3BR7evLdo13z+qk+scxx/DQXmB+NjCu93FAzo1R7s6tz+iHGX6SfrwM tYUPS+Mz3qrdn1COlkHkvJf5IQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPjXUwvU 1xK9rtHRxcVCztA52slrMB8GA1UdIwQYMBaAFHZh9ZfqaO/0ySlzY5u2ddfwOQlx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQTE3Ni9BREQzQUVDRUIy OEUxMUVCOTREMjE4NDdDNEY5QUUwMi9kbUgxbC1wbzdfVEpLWE5qbTdaMTFfQTVD WEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2RtSDFsLXBvN19USktYTmptN1oxMV9BNUNYRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QTE3Ni9BREQzQUVDRUIyOEUxMUVCOTREMjE4NDdDNEY5QUUwMi9kbUgxbC1wbzdf VEpLWE5qbTdaMTFfQTVDWEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAmWn8GSngZOiZvgp5MeRaavJ3/Tfe+i9EtrzfjjH6kaXEih6Nhtjks ntAO7xbJNN7esyuYaXUOKnB7W7sjg/vqDn0O74w5WRiMHSBKPZ3HyEQQIJGRtfkf 9erRXhZKHE7Hkr9fYP38VW1XT3drPM0Vj5tRdaAU1a6onkYdjPbUixlh/sZ9mTT5 VkK+4kv4fuEDx59x2OTzazlk1pPHwR8g0WjEgUALGAUC7+TLK+HmsUDa8KrjwjPs e+Re1QvOWN1FBwlqLOL7VRWMXypGWSjQXxn3ftIxyQgB670LW4K0lOvCyehFn0IW QXJ0XLHH7nT61sbuKi0xshj+VGHkm2oF -----END CERTIFICATE-----Generated at Sun Nov 24 23:58:54 2024 by rpki-client on console-fra.rpki-client.org