$ rpki-client -vvf rpki.apnic.net/member_repository/A91EC93F/60A8F88CDEAD11ED8A6DF14DC4F9AE02/CUoNzYAqBb91c_96buCnqXIFUNE.mft File: CUoNzYAqBb91c_96buCnqXIFUNE.mft (raw, json) Hash identifier: dtjUPwT+RTKoUCPf0gfAz4GNYMB2vq+VHCSk67by0pM= Subject key identifier: A2:92:89:3B:8E:10:C6:2F:08:35:0F:BF:4D:D6:86:4D:1D:0E:F6:84 Authority key identifier: 09:4A:0D:CD:80:2A:05:BF:75:73:FF:7A:6E:E0:A7:A9:72:05:50:D1 Certificate issuer: /CN=A91EC93F/serialNumber=094A0DCD802A05BF7573FF7A6EE0A7A9720550D1 Certificate serial: 012D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CUoNzYAqBb91c_96buCnqXIFUNE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EC93F/60A8F88CDEAD11ED8A6DF14DC4F9AE02/CUoNzYAqBb91c_96buCnqXIFUNE.mft Manifest number: 012B Signing time: Sat 23 Nov 2024 02:50:41 +0000 Manifest this update: Sat 23 Nov 2024 02:50:41 +0000 Manifest next update: Sat 30 Nov 2024 02:50:41 +0000 Files and hashes: 1: CUoNzYAqBb91c_96buCnqXIFUNE.crl (hash: GHIobR7rnlqAVcNI+y2tI5f8GfIAcZIi5bUJttvd1ZU=) 2: 5BA557A6DEB011EDB7B0C04EC4F9AE02.roa (hash: rqsGCczlTsAssnjE3lU2t0y5qqxlPSKotk0BlBeeudM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EC93F/60A8F88CDEAD11ED8A6DF14DC4F9AE02/CUoNzYAqBb91c_96buCnqXIFUNE.crl rsync://rpki.apnic.net/member_repository/A91EC93F/60A8F88CDEAD11ED8A6DF14DC4F9AE02/CUoNzYAqBb91c_96buCnqXIFUNE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CUoNzYAqBb91c_96buCnqXIFUNE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 301 (0x12d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EC93F/serialNumber=094A0DCD802A05BF7573FF7A6EE0A7A9720550D1 Validity Not Before: Nov 23 02:50:41 2024 GMT Not After : Nov 30 02:50:41 2024 GMT Subject: CN=67414301-40e7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:84:73:61:aa:b6:ac:0b:61:55:34:99:79:dd: c9:95:64:04:db:a5:71:2b:2a:06:ab:5c:cb:36:05: 88:81:cf:44:07:4b:ad:c7:f1:b4:0c:40:d6:7b:92: 0e:a7:ce:c6:47:16:55:fc:ba:ac:c1:bb:d0:d5:d4: cd:e8:67:d7:35:51:19:e1:f6:25:3b:8e:b7:c8:25: 38:ae:9d:89:64:e5:be:b6:28:e2:ea:3b:1e:b4:c0: 44:ec:20:c4:a1:a4:ef:84:b7:46:d3:23:c4:f1:b6: 7f:30:cd:19:b6:87:b5:92:2d:8d:e7:a4:4d:b3:95: f9:e2:96:b2:3a:25:4f:98:99:6c:af:76:ab:49:49: c4:9a:7e:6e:03:ea:5d:6a:a4:e2:b7:76:2a:a7:1c: a3:73:e9:5d:2a:4f:5e:4c:07:34:7b:80:83:a5:28: 84:bf:1f:ca:a5:b0:bd:1c:75:94:f2:33:27:1b:94: 5c:c5:16:49:b4:a4:af:63:d8:70:36:9c:86:70:a5: 04:41:22:e3:5f:4b:52:fb:86:c6:e2:03:0c:16:c4: cd:9b:fb:ff:0b:c0:56:79:8b:7e:b9:fa:da:49:4b: 7b:7b:df:ba:1d:2a:84:1b:23:74:69:25:23:f8:f3: 86:3b:ed:dd:90:d6:da:27:fc:e5:54:3a:d7:96:fc: 30:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:92:89:3B:8E:10:C6:2F:08:35:0F:BF:4D:D6:86:4D:1D:0E:F6:84 X509v3 Authority Key Identifier: keyid:09:4A:0D:CD:80:2A:05:BF:75:73:FF:7A:6E:E0:A7:A9:72:05:50:D1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EC93F/60A8F88CDEAD11ED8A6DF14DC4F9AE02/CUoNzYAqBb91c_96buCnqXIFUNE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CUoNzYAqBb91c_96buCnqXIFUNE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EC93F/60A8F88CDEAD11ED8A6DF14DC4F9AE02/CUoNzYAqBb91c_96buCnqXIFUNE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 43:fb:c6:4e:23:78:54:f5:72:33:ac:c9:c6:72:c2:76:8a:00: a7:0b:29:49:86:a9:f7:e0:7c:4f:05:9d:df:d8:fa:f3:b5:be: 65:16:38:91:96:05:cc:28:df:26:e4:4a:c8:44:fb:d2:fe:43: 16:17:53:ab:86:fe:ec:6f:55:a9:02:22:f8:e2:04:61:85:c4: 3e:72:2b:c9:5c:f6:20:45:7d:61:8a:e6:ad:fb:e8:b2:b8:4d: b8:49:9a:67:b3:9c:0a:f7:ab:63:2a:72:35:81:1c:2a:99:e5: 15:88:55:45:c6:b8:d4:0d:de:69:67:d2:f4:8a:ee:f5:17:2d: 35:84:f5:48:c9:b6:00:d1:1c:67:af:68:21:cc:c8:0a:2b:fd: ec:6c:ca:3f:5f:33:b5:1d:59:eb:c1:0c:c9:9f:e7:64:03:55: 7a:9a:f9:28:52:c9:b5:21:c9:ee:9a:6a:92:85:fa:1d:9b:98: eb:8c:25:2d:06:fd:85:a6:8a:01:4d:4d:9a:75:6a:7e:70:23: 84:03:fc:7e:0b:2a:10:e0:b0:ff:44:97:97:92:ce:aa:e6:d6: c7:f2:3b:1b:08:4f:49:9c:b9:02:cd:b1:e1:98:6e:88:12:f0: 6d:8f:5d:56:16:ed:51:f8:82:d8:0b:30:df:b9:c9:1c:28:5d: 1a:10:83:d4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAS0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUM5M0YxMTAvBgNVBAUTKDA5NEEwRENEODAyQTA1QkY3NTczRkY3QTZFRTBBN0E5 NzIwNTUwRDEwHhcNMjQxMTIzMDI1MDQxWhcNMjQxMTMwMDI1MDQxWjAYMRYwFAYD VQQDEw02NzQxNDMwMS00MGU3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAn4RzYaq2rAthVTSZed3JlWQE26VxKyoGq1zLNgWIgc9EB0utx/G0DEDWe5IO p87GRxZV/LqswbvQ1dTN6GfXNVEZ4fYlO463yCU4rp2JZOW+tiji6jsetMBE7CDE oaTvhLdG0yPE8bZ/MM0Ztoe1ki2N56RNs5X54payOiVPmJlsr3arSUnEmn5uA+pd aqTit3Yqpxyjc+ldKk9eTAc0e4CDpSiEvx/KpbC9HHWU8jMnG5RcxRZJtKSvY9hw NpyGcKUEQSLjX0tS+4bG4gMMFsTNm/v/C8BWeYt+ufraSUt7e9+6HSqEGyN0aSUj +POGO+3dkNbaJ/zlVDrXlvwwLQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKKSiTuO EMYvCDUPv03Whk0dDvaEMB8GA1UdIwQYMBaAFAlKDc2AKgW/dXP/em7gp6lyBVDR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQzkzRi82MEE4Rjg4Q0RF QUQxMUVEOEE2REYxNERDNEY5QUUwMi9DVW9OellBcUJiOTFjXzk2YnVDbnFYSUZV TkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NVb056WUFxQmI5MWNfOTZidUNucVhJRlVORS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QzkzRi82MEE4Rjg4Q0RFQUQxMUVEOEE2REYxNERDNEY5QUUwMi9DVW9OellBcUJi OTFjXzk2YnVDbnFYSUZVTkUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBD+8ZOI3hU9XIzrMnGcsJ2igCnCylJhqn34HxPBZ3f2Prztb5lFjiR lgXMKN8m5ErIRPvS/kMWF1Orhv7sb1WpAiL44gRhhcQ+civJXPYgRX1hiuat++iy uE24SZpns5wK96tjKnI1gRwqmeUViFVFxrjUDd5pZ9L0iu71Fy01hPVIybYA0Rxn r2ghzMgKK/3sbMo/XzO1HVnrwQzJn+dkA1V6mvkoUsm1IcnummqShfodm5jrjCUt Bv2FpooBTU2adWp+cCOEA/x+CyoQ4LD/RJeXks6q5tbH8jsbCE9JnLkCzbHhmG6I EvBtj11WFu1R+ILYCzDfuckcKF0aEIPU -----END CERTIFICATE-----Generated at Sat Nov 23 05:03:00 2024 by rpki-client on console-fra.rpki-client.org