$ rpki-client -vvf rpki.apnic.net/member_repository/A91EAE3D/8EF42A4675DE11E8B704A246C4F9AE02/a1Z8hD5CUj4OW2T2Sg8q4FUXu3A.mft File: a1Z8hD5CUj4OW2T2Sg8q4FUXu3A.mft (raw, json) Hash identifier: 4DmCO+N45xvhHjmRXhfd35QvAGP2aZzPb+zZfd7JRcQ= Subject key identifier: 69:76:58:6B:C5:C2:9F:AA:96:08:A8:77:89:89:C9:8A:78:51:99:FE Authority key identifier: 6B:56:7C:84:3E:42:52:3E:0E:5B:64:F6:4A:0F:2A:E0:55:17:BB:70 Certificate issuer: /CN=A91EAE3D/serialNumber=6B567C843E42523E0E5B64F64A0F2AE05517BB70 Certificate serial: 1413 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/a1Z8hD5CUj4OW2T2Sg8q4FUXu3A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EAE3D/8EF42A4675DE11E8B704A246C4F9AE02/a1Z8hD5CUj4OW2T2Sg8q4FUXu3A.mft Manifest number: 1400 Signing time: Wed 20 Nov 2024 16:55:25 +0000 Manifest this update: Wed 20 Nov 2024 16:55:25 +0000 Manifest next update: Wed 27 Nov 2024 16:55:25 +0000 Files and hashes: 1: a1Z8hD5CUj4OW2T2Sg8q4FUXu3A.crl (hash: 3Z5V3NawpxxXHZBWowM/yVEceS+vtcymG9iMcDhf1jo=) 2: F693F2689CB811EB97F77E14C4F9AE02.roa (hash: /f5dzKwWa8mvOs/cB+px+vSnnT+vivJkjy65k2sS3ug=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EAE3D/8EF42A4675DE11E8B704A246C4F9AE02/a1Z8hD5CUj4OW2T2Sg8q4FUXu3A.crl rsync://rpki.apnic.net/member_repository/A91EAE3D/8EF42A4675DE11E8B704A246C4F9AE02/a1Z8hD5CUj4OW2T2Sg8q4FUXu3A.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/a1Z8hD5CUj4OW2T2Sg8q4FUXu3A.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 15:22:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5139 (0x1413) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EAE3D/serialNumber=6B567C843E42523E0E5B64F64A0F2AE05517BB70 Validity Not Before: Nov 20 16:55:25 2024 GMT Not After : Nov 27 16:55:25 2024 GMT Subject: CN=673e147d-fc18 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:3d:7e:f9:66:92:db:a2:94:45:73:82:99:9a: f0:c1:54:02:c4:0d:30:31:bc:fb:6c:c1:7c:b2:66: ae:71:38:6f:b2:43:2d:ec:98:b5:9f:53:11:67:f7: d8:9d:26:01:d2:64:77:bb:13:ba:63:d1:99:9d:db: db:4f:fd:d1:86:89:a9:67:5f:10:ae:8f:99:be:60: 69:c1:29:8d:8d:68:a2:4f:1b:3e:25:4e:bb:3b:3c: 94:77:7d:d3:aa:aa:75:45:d7:05:b9:55:96:0b:53: 44:44:3d:c1:29:56:a6:78:c6:84:01:50:c8:8f:14: d0:d3:e2:1b:eb:e3:0e:af:bf:11:ff:9e:9c:95:ca: 50:fd:a7:b5:aa:21:8c:71:4d:fa:0d:66:51:ba:f6: 1e:9f:5d:45:55:f0:ad:32:52:43:22:77:db:68:0e: dd:cf:86:56:7b:2e:e9:d1:4b:99:60:00:61:bf:35: e4:1e:72:48:00:d1:78:3a:50:09:ab:8f:80:b6:fa: 0e:cb:78:60:59:25:d5:6c:40:59:75:29:a5:67:15: 87:16:f6:b3:ff:4c:3b:2a:5f:44:53:73:56:fb:af: c4:d7:d6:18:9c:51:e4:2f:6b:80:32:40:44:ea:9a: ca:e4:cc:9d:f4:20:c6:3f:b0:1b:2e:69:db:21:6e: 62:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:76:58:6B:C5:C2:9F:AA:96:08:A8:77:89:89:C9:8A:78:51:99:FE X509v3 Authority Key Identifier: keyid:6B:56:7C:84:3E:42:52:3E:0E:5B:64:F6:4A:0F:2A:E0:55:17:BB:70 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EAE3D/8EF42A4675DE11E8B704A246C4F9AE02/a1Z8hD5CUj4OW2T2Sg8q4FUXu3A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/a1Z8hD5CUj4OW2T2Sg8q4FUXu3A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EAE3D/8EF42A4675DE11E8B704A246C4F9AE02/a1Z8hD5CUj4OW2T2Sg8q4FUXu3A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ab:32:b8:34:6d:94:dc:44:13:4f:f0:17:ce:51:9d:78:94:74: a4:cf:7f:14:e7:aa:0d:37:48:80:02:c3:89:f6:bc:83:12:ae: 66:bf:5c:09:54:8b:aa:ac:2a:a4:16:a6:1c:b2:6d:db:85:63: 60:6c:3d:53:73:21:3c:a4:1a:28:b2:24:4c:0f:13:47:fa:4e: dc:88:a7:9b:6a:81:bf:e7:11:26:e0:18:14:ed:a9:8a:3f:68: 2b:ff:00:36:92:57:8b:7c:be:0a:82:47:f3:38:5c:82:60:f8: 50:f6:7c:42:b3:9e:12:b2:64:0e:f2:38:39:9b:17:48:54:03: 4d:62:cd:8c:a2:16:6e:f6:b2:c3:ae:74:2b:48:58:68:e4:b1: e1:1b:41:fc:a2:12:cb:52:ee:7c:4f:07:0f:8b:9b:1d:26:fb: 2a:6f:94:b4:05:56:7e:d7:6d:c6:fe:9c:a6:9c:91:bd:c7:3a: 4d:2d:45:11:56:79:01:06:e2:6a:32:f2:fc:8c:e0:f2:39:c8: 72:96:fd:69:71:6a:ed:ac:f6:3a:4d:5c:2d:44:fb:25:c4:84: 3c:35:87:85:46:02:06:b3:f9:dc:52:b3:a1:e7:56:f4:15:36: 95:a9:64:40:84:34:78:a5:74:95:59:58:32:b6:d2:b8:bb:0a: 51:2f:24:0e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFBMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUFFM0QxMTAvBgNVBAUTKDZCNTY3Qzg0M0U0MjUyM0UwRTVCNjRGNjRBMEYyQUUw NTUxN0JCNzAwHhcNMjQxMTIwMTY1NTI1WhcNMjQxMTI3MTY1NTI1WjAYMRYwFAYD VQQDEw02NzNlMTQ3ZC1mYzE4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsT1++WaS26KURXOCmZrwwVQCxA0wMbz7bMF8smaucThvskMt7Ji1n1MRZ/fY nSYB0mR3uxO6Y9GZndvbT/3RhompZ18Qro+ZvmBpwSmNjWiiTxs+JU67OzyUd33T qqp1RdcFuVWWC1NERD3BKVameMaEAVDIjxTQ0+Ib6+MOr78R/56clcpQ/ae1qiGM cU36DWZRuvYen11FVfCtMlJDInfbaA7dz4ZWey7p0UuZYABhvzXkHnJIANF4OlAJ q4+AtvoOy3hgWSXVbEBZdSmlZxWHFvaz/0w7Kl9EU3NW+6/E19YYnFHkL2uAMkBE 6prK5Myd9CDGP7AbLmnbIW5iUQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGl2WGvF wp+qlgiod4mJyYp4UZn+MB8GA1UdIwQYMBaAFGtWfIQ+QlI+Dltk9koPKuBVF7tw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQUUzRC84RUY0MkE0Njc1 REUxMUU4QjcwNEEyNDZDNEY5QUUwMi9hMVo4aEQ1Q1VqNE9XMlQyU2c4cTRGVVh1 M0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2ExWjhoRDVDVWo0T1cyVDJTZzhxNEZVWHUzQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QUUzRC84RUY0MkE0Njc1REUxMUU4QjcwNEEyNDZDNEY5QUUwMi9hMVo4aEQ1Q1Vq NE9XMlQyU2c4cTRGVVh1M0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCrMrg0bZTcRBNP8BfOUZ14lHSkz38U56oNN0iAAsOJ9ryDEq5mv1wJ VIuqrCqkFqYcsm3bhWNgbD1TcyE8pBoosiRMDxNH+k7ciKebaoG/5xEm4BgU7amK P2gr/wA2kleLfL4KgkfzOFyCYPhQ9nxCs54SsmQO8jg5mxdIVANNYs2MohZu9rLD rnQrSFho5LHhG0H8ohLLUu58TwcPi5sdJvsqb5S0BVZ+123G/pymnJG9xzpNLUUR VnkBBuJqMvL8jODyOchylv1pcWrtrPY6TVwtRPslxIQ8NYeFRgIGs/ncUrOh51b0 FTaVqWRAhDR4pXSVWVgyttK4uwpRLyQO -----END CERTIFICATE-----Generated at Wed Nov 20 18:45:07 2024 by rpki-client on console-fra.rpki-client.org