$ rpki-client -vvf rpki.apnic.net/member_repository/A91EE1DD/F15003C8F11211EC91965444C4F9AE02/MoI4D1fWFw9Fz1IOeywaPNovyq0.mft File: MoI4D1fWFw9Fz1IOeywaPNovyq0.mft (raw, json) Hash identifier: 4nM451ZSMiX+X13udPh81UA0m73++yQ54mnKZuYEdPc= Subject key identifier: E6:F5:25:BA:CD:78:35:6B:09:DB:B1:CE:4A:ED:D7:89:E0:EA:7E:88 Authority key identifier: 32:82:38:0F:57:D6:17:0F:45:CF:52:0E:7B:2C:1A:3C:DA:2F:CA:AD Certificate issuer: /CN=A91EE1DD/serialNumber=3282380F57D6170F45CF520E7B2C1A3CDA2FCAAD Certificate serial: 0262 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MoI4D1fWFw9Fz1IOeywaPNovyq0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EE1DD/F15003C8F11211EC91965444C4F9AE02/MoI4D1fWFw9Fz1IOeywaPNovyq0.mft Manifest number: 025E Signing time: Sat 23 Nov 2024 01:15:14 +0000 Manifest this update: Sat 23 Nov 2024 01:15:14 +0000 Manifest next update: Sat 30 Nov 2024 01:15:14 +0000 Files and hashes: 1: MoI4D1fWFw9Fz1IOeywaPNovyq0.crl (hash: PaaBDb+SrywmHz8s/5bhETZBlCTmp7O5Vj7kf5OBOXs=) 2: 7D857A30F11811EC86D3AD4BC4F9AE02.roa (hash: DTeUoGILmpR1cuWk4EONESxHDKOdUfVBGiNOOrF79fw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EE1DD/F15003C8F11211EC91965444C4F9AE02/MoI4D1fWFw9Fz1IOeywaPNovyq0.crl rsync://rpki.apnic.net/member_repository/A91EE1DD/F15003C8F11211EC91965444C4F9AE02/MoI4D1fWFw9Fz1IOeywaPNovyq0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MoI4D1fWFw9Fz1IOeywaPNovyq0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 610 (0x262) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EE1DD/serialNumber=3282380F57D6170F45CF520E7B2C1A3CDA2FCAAD Validity Not Before: Nov 23 01:15:14 2024 GMT Not After : Nov 30 01:15:14 2024 GMT Subject: CN=67412ca2-7c41 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:ba:a1:fa:fb:a6:63:dc:7b:74:9a:70:98:f0: da:0b:05:66:22:03:27:ab:27:c1:ba:1c:e1:5d:5f: e5:72:87:48:15:1c:d5:09:ee:40:a5:04:2f:c3:b2: 70:b5:24:4d:9c:33:02:d6:54:b7:b8:ba:2d:67:ca: 18:13:30:28:85:6c:ca:40:eb:36:1f:f7:04:c5:73: dc:07:2d:4a:5e:58:c0:06:70:da:10:7f:5f:9d:ed: 04:d0:1c:a6:dd:19:f2:ff:b5:ad:e2:f0:7c:ce:88: 31:ae:7f:51:d8:a4:7e:26:12:80:d2:4b:a9:9b:30: 84:eb:89:b3:17:61:43:6a:6c:ae:7d:3f:f1:2e:86: 25:cd:5d:ca:5f:98:44:22:ef:86:16:3b:d7:24:c5: f9:84:a0:3c:c9:c6:22:95:2d:a1:a3:a7:0b:1b:b5: 1b:01:30:3c:66:a3:9f:85:16:52:0c:fb:77:22:dd: 41:69:2c:c8:2a:af:a2:ff:da:15:80:9d:ec:8d:87: dc:ee:75:56:29:e0:e1:6f:87:13:86:89:34:cf:99: 3c:15:3d:0e:70:7b:9c:4b:e9:75:60:ff:ca:be:77: a1:ec:71:76:31:d2:7e:72:18:22:49:1c:bc:42:0a: cd:42:03:aa:37:41:b7:44:82:44:95:4d:15:78:0f: be:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:F5:25:BA:CD:78:35:6B:09:DB:B1:CE:4A:ED:D7:89:E0:EA:7E:88 X509v3 Authority Key Identifier: keyid:32:82:38:0F:57:D6:17:0F:45:CF:52:0E:7B:2C:1A:3C:DA:2F:CA:AD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EE1DD/F15003C8F11211EC91965444C4F9AE02/MoI4D1fWFw9Fz1IOeywaPNovyq0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MoI4D1fWFw9Fz1IOeywaPNovyq0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EE1DD/F15003C8F11211EC91965444C4F9AE02/MoI4D1fWFw9Fz1IOeywaPNovyq0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3e:c1:f4:61:dd:e3:7a:58:7c:7d:f5:4c:a7:fe:e9:3b:ce:4e: 88:08:31:35:9b:6f:39:f0:3c:14:e2:54:09:7d:d5:74:13:fb: 19:14:4b:4c:72:c8:ce:63:d9:f9:93:70:23:0d:68:b8:87:78: 7c:1a:3d:a0:0c:46:86:c5:7c:d7:52:20:f3:36:06:df:f8:8c: 64:2e:30:41:bc:58:c1:05:3b:3e:d0:2f:18:b2:e7:76:a8:c8: 37:fa:63:30:d4:64:dc:98:c4:82:20:e2:4a:18:ac:29:8b:62: 22:37:96:c9:13:27:c2:7a:54:86:4c:76:09:7b:fb:2b:be:34: 0d:e1:8c:ca:d3:03:4d:32:95:13:0a:fe:cd:df:24:4c:58:24: 92:03:f1:9a:d7:6e:1f:c2:f8:68:2a:ae:16:3a:2e:b1:c0:48: 5f:f6:f5:38:30:97:20:0f:4d:44:ce:ce:38:e7:45:81:92:b1: ca:81:23:de:b8:2b:09:10:cf:92:f5:22:83:db:d3:af:a1:2b: 84:72:de:db:ca:69:0e:29:1d:51:1f:17:2a:69:82:7e:17:0b: 09:63:a0:86:b7:6c:36:f7:44:21:df:a6:9b:ca:69:d2:bf:94: 9b:fc:eb:b9:66:6a:c9:de:62:32:05:8a:b6:52:91:8b:dd:3a: 3a:8f:b8:20 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAmIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUUxREQxMTAvBgNVBAUTKDMyODIzODBGNTdENjE3MEY0NUNGNTIwRTdCMkMxQTND REEyRkNBQUQwHhcNMjQxMTIzMDExNTE0WhcNMjQxMTMwMDExNTE0WjAYMRYwFAYD VQQDEw02NzQxMmNhMi03YzQxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuLqh+vumY9x7dJpwmPDaCwVmIgMnqyfBuhzhXV/lcodIFRzVCe5ApQQvw7Jw tSRNnDMC1lS3uLotZ8oYEzAohWzKQOs2H/cExXPcBy1KXljABnDaEH9fne0E0Bym 3Rny/7Wt4vB8zogxrn9R2KR+JhKA0kupmzCE64mzF2FDamyufT/xLoYlzV3KX5hE Iu+GFjvXJMX5hKA8ycYilS2ho6cLG7UbATA8ZqOfhRZSDPt3It1BaSzIKq+i/9oV gJ3sjYfc7nVWKeDhb4cThok0z5k8FT0OcHucS+l1YP/Kvneh7HF2MdJ+chgiSRy8 QgrNQgOqN0G3RIJElU0VeA++mQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOb1JbrN eDVrCduxzkrt14ng6n6IMB8GA1UdIwQYMBaAFDKCOA9X1hcPRc9SDnssGjzaL8qt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRTFERC9GMTUwMDNDOEYx MTIxMUVDOTE5NjU0NDRDNEY5QUUwMi9Nb0k0RDFmV0Z3OUZ6MUlPZXl3YVBOb3Z5 cTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL01vSTREMWZXRnc5RnoxSU9leXdhUE5vdnlxMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF RTFERC9GMTUwMDNDOEYxMTIxMUVDOTE5NjU0NDRDNEY5QUUwMi9Nb0k0RDFmV0Z3 OUZ6MUlPZXl3YVBOb3Z5cTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA+wfRh3eN6WHx99Uyn/uk7zk6ICDE1m2858DwU4lQJfdV0E/sZFEtM csjOY9n5k3AjDWi4h3h8Gj2gDEaGxXzXUiDzNgbf+IxkLjBBvFjBBTs+0C8Ysud2 qMg3+mMw1GTcmMSCIOJKGKwpi2IiN5bJEyfCelSGTHYJe/srvjQN4YzK0wNNMpUT Cv7N3yRMWCSSA/Ga124fwvhoKq4WOi6xwEhf9vU4MJcgD01Ezs4450WBkrHKgSPe uCsJEM+S9SKD29OvoSuEct7bymkOKR1RHxcqaYJ+FwsJY6CGt2w290Qh36abymnS v5Sb/Ou5ZmrJ3mIyBYq2UpGL3To6j7gg -----END CERTIFICATE-----Generated at Sat Nov 23 02:33:50 2024 by rpki-client on console-fra.rpki-client.org