$ rpki-client -vvf rpki.apnic.net/member_repository/A91EA9BD/07495890918211E891C4EC10C4F9AE02/2ktcISO6nQ-AI3ja3dSAG1Zwo-0.mft File: 2ktcISO6nQ-AI3ja3dSAG1Zwo-0.mft (raw, json) Hash identifier: zKA2Nx4fegft0IdmgzU3Lp0bRJC2Z9efqb2FD2xP/ns= Subject key identifier: E7:54:3E:96:30:CB:A0:39:27:59:19:70:2B:6A:F4:1C:A1:E1:BA:2A Authority key identifier: DA:4B:5C:21:23:BA:9D:0F:80:23:78:DA:DD:D4:80:1B:56:70:A3:ED Certificate issuer: /CN=A91EA9BD/serialNumber=DA4B5C2123BA9D0F802378DADDD4801B5670A3ED Certificate serial: 1377 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2ktcISO6nQ-AI3ja3dSAG1Zwo-0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EA9BD/07495890918211E891C4EC10C4F9AE02/2ktcISO6nQ-AI3ja3dSAG1Zwo-0.mft Manifest number: 135A Signing time: Wed 20 Nov 2024 15:27:08 +0000 Manifest this update: Wed 20 Nov 2024 15:27:07 +0000 Manifest next update: Wed 27 Nov 2024 15:27:07 +0000 Files and hashes: 1: 2ktcISO6nQ-AI3ja3dSAG1Zwo-0.crl (hash: eMpkoeQSf8PyNxIsdCoQt7FIovWt8462u6sB2MZx50w=) 2: 76C6BCF6B72811ECAEFC180DC4F9AE02.roa (hash: V/gOKs9LECUvwP7f76II+OxQFAc41Q7rou6YKiKk5l8=) 3: B969D2D0BA4A11EC90B53115C4F9AE02.roa (hash: kCVXgcVyC3mGVdPkmV42EUSht4RHcewllIn6s7mcD00=) 4: 49678FBCB72B11EC8C8E3017C4F9AE02.roa (hash: 6y2+7m6fZBqF1vnJPBAlEhf0LTJdURa/vtEhojNLyMc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EA9BD/07495890918211E891C4EC10C4F9AE02/2ktcISO6nQ-AI3ja3dSAG1Zwo-0.crl rsync://rpki.apnic.net/member_repository/A91EA9BD/07495890918211E891C4EC10C4F9AE02/2ktcISO6nQ-AI3ja3dSAG1Zwo-0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2ktcISO6nQ-AI3ja3dSAG1Zwo-0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 15:22:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4983 (0x1377) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EA9BD/serialNumber=DA4B5C2123BA9D0F802378DADDD4801B5670A3ED Validity Not Before: Nov 20 15:27:07 2024 GMT Not After : Nov 27 15:27:07 2024 GMT Subject: CN=673dffcb-ccb6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:79:89:14:15:70:3f:30:d1:1e:1a:62:ae:5e: ea:27:be:86:de:31:7a:13:cf:9a:6c:b1:83:99:e3: 70:4a:4f:09:70:60:70:d1:94:33:3f:5f:e9:c8:07: 95:06:e9:29:e1:ec:3e:db:60:f8:b6:42:cd:2b:f1: f6:34:3f:5b:ed:d2:c0:9b:aa:55:fc:eb:6d:cd:f6: 00:a1:77:56:d2:b1:a7:a8:6f:70:9e:c7:34:78:7d: 19:5a:ad:d4:09:15:dd:77:41:eb:1d:ce:5d:97:2e: 38:29:d3:13:28:96:4f:a6:89:fa:4e:eb:cb:22:04: 81:1a:86:84:3d:7d:30:8b:83:74:ba:c4:4d:f1:5e: df:9d:9d:da:ac:b3:83:62:d7:93:7a:40:b3:f4:62: 83:d2:1d:ad:c6:57:26:d5:aa:9d:f6:9e:df:92:44: ae:3b:60:ae:77:40:c6:07:dd:62:4c:d4:df:c0:e6: 8e:aa:a0:52:61:4a:3c:71:3a:99:74:f9:e5:80:e0: cf:96:9d:05:94:81:aa:5c:04:7c:48:32:b9:1f:b3: 08:19:90:ef:e0:e5:04:78:bf:4b:4a:c5:b4:bb:c8: 1c:65:18:fb:f2:3c:74:f6:df:dd:aa:f0:05:4a:b5: 4a:2d:0e:30:08:52:78:57:84:2a:ea:5a:92:0e:f1: da:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:54:3E:96:30:CB:A0:39:27:59:19:70:2B:6A:F4:1C:A1:E1:BA:2A X509v3 Authority Key Identifier: keyid:DA:4B:5C:21:23:BA:9D:0F:80:23:78:DA:DD:D4:80:1B:56:70:A3:ED X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EA9BD/07495890918211E891C4EC10C4F9AE02/2ktcISO6nQ-AI3ja3dSAG1Zwo-0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2ktcISO6nQ-AI3ja3dSAG1Zwo-0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EA9BD/07495890918211E891C4EC10C4F9AE02/2ktcISO6nQ-AI3ja3dSAG1Zwo-0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 74:aa:02:0d:1c:b1:2c:dc:40:56:7e:8e:e8:c2:73:46:16:4b: e2:b7:90:54:a3:84:d8:2e:ad:5b:85:32:0b:8a:ac:ff:d0:3e: bc:e9:77:f7:9f:b3:12:56:40:39:c3:f8:c3:eb:5a:49:6c:50: 0e:90:8e:cd:cc:3d:56:f4:87:74:ee:21:99:e3:29:5d:25:9f: 59:48:ae:3c:42:0a:ea:48:8e:a5:29:83:0d:c7:53:6e:24:e5: 23:b0:85:b5:07:c1:90:25:6a:7c:56:c8:24:cc:4e:7f:0f:01: 43:f5:3d:b6:b0:59:78:10:ff:31:dc:fa:f9:77:14:94:60:97: 2f:81:f1:2d:ff:c2:bc:13:57:1d:84:d8:3b:ea:3a:3e:fb:00: 8e:1d:8a:30:1a:6f:88:de:1c:00:6b:2b:3d:c0:e0:c2:98:7e: c8:1b:26:c3:32:75:3e:4f:ed:8d:45:9c:95:56:b7:4d:e0:4b: 6d:b9:a5:ad:36:d6:dc:6e:72:92:b0:83:31:f3:4b:a1:f8:56: 80:cd:27:03:85:38:3d:73:73:05:b7:27:e7:85:78:00:22:25: 85:3c:59:c5:09:21:f4:fa:68:88:7e:7f:d9:c9:d4:1a:8f:76: a9:a7:b1:48:19:8d:84:89:de:53:9c:0c:61:49:f7:10:08:f3: 72:0e:c5:fd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICE3cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUE5QkQxMTAvBgNVBAUTKERBNEI1QzIxMjNCQTlEMEY4MDIzNzhEQURERDQ4MDFC NTY3MEEzRUQwHhcNMjQxMTIwMTUyNzA3WhcNMjQxMTI3MTUyNzA3WjAYMRYwFAYD VQQDEw02NzNkZmZjYi1jY2I2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3nmJFBVwPzDRHhpirl7qJ76G3jF6E8+abLGDmeNwSk8JcGBw0ZQzP1/pyAeV Bukp4ew+22D4tkLNK/H2ND9b7dLAm6pV/OttzfYAoXdW0rGnqG9wnsc0eH0ZWq3U CRXdd0HrHc5dly44KdMTKJZPpon6TuvLIgSBGoaEPX0wi4N0usRN8V7fnZ3arLOD YteTekCz9GKD0h2txlcm1aqd9p7fkkSuO2Cud0DGB91iTNTfwOaOqqBSYUo8cTqZ dPnlgODPlp0FlIGqXAR8SDK5H7MIGZDv4OUEeL9LSsW0u8gcZRj78jx09t/dqvAF SrVKLQ4wCFJ4V4Qq6lqSDvHaCQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOdUPpYw y6A5J1kZcCtq9Byh4boqMB8GA1UdIwQYMBaAFNpLXCEjup0PgCN42t3UgBtWcKPt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQTlCRC8wNzQ5NTg5MDkx ODIxMUU4OTFDNEVDMTBDNEY5QUUwMi8ya3RjSVNPNm5RLUFJM2phM2RTQUcxWndv LTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzJrdGNJU082blEtQUkzamEzZFNBRzFad28tMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QTlCRC8wNzQ5NTg5MDkxODIxMUU4OTFDNEVDMTBDNEY5QUUwMi8ya3RjSVNPNm5R LUFJM2phM2RTQUcxWndvLTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB0qgINHLEs3EBWfo7ownNGFkvit5BUo4TYLq1bhTILiqz/0D686Xf3 n7MSVkA5w/jD61pJbFAOkI7NzD1W9Id07iGZ4yldJZ9ZSK48QgrqSI6lKYMNx1Nu JOUjsIW1B8GQJWp8VsgkzE5/DwFD9T22sFl4EP8x3Pr5dxSUYJcvgfEt/8K8E1cd hNg76jo++wCOHYowGm+I3hwAays9wODCmH7IGybDMnU+T+2NRZyVVrdN4EttuaWt NtbcbnKSsIMx80uh+FaAzScDhTg9c3MFtyfnhXgAIiWFPFnFCSH0+miIfn/ZydQa j3app7FIGY2Eid5TnAxhSfcQCPNyDsX9 -----END CERTIFICATE-----Generated at Wed Nov 20 16:12:04 2024 by rpki-client on console-fra.rpki-client.org