$ rpki-client -vvf rpki.apnic.net/member_repository/A91EE92F/1B290B5E740B11EF9E9C0336C4F9AE02/4deDfrzHqaTRdRZXhgR2OivQQnI.mft File: 4deDfrzHqaTRdRZXhgR2OivQQnI.mft (raw, json) Hash identifier: qm9w6q3CILgv9zj/72lvmZmeAEWMAAQvcE2abSQknBg= Subject key identifier: D4:8E:77:9F:91:51:94:77:53:83:1E:25:9F:65:91:7B:7A:D1:8F:ED Authority key identifier: E1:D7:83:7E:BC:C7:A9:A4:D1:75:16:57:86:04:76:3A:2B:D0:42:72 Certificate issuer: /CN=A91EE92F/serialNumber=E1D7837EBCC7A9A4D17516578604763A2BD04272 Certificate serial: 25 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4deDfrzHqaTRdRZXhgR2OivQQnI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EE92F/1B290B5E740B11EF9E9C0336C4F9AE02/4deDfrzHqaTRdRZXhgR2OivQQnI.mft Manifest number: 24 Signing time: Thu 21 Nov 2024 05:51:34 +0000 Manifest this update: Thu 21 Nov 2024 05:51:34 +0000 Manifest next update: Thu 28 Nov 2024 05:51:34 +0000 Files and hashes: 1: 4deDfrzHqaTRdRZXhgR2OivQQnI.crl (hash: s01iBBH/9mt/sdfhtvLaq/iFs8Jq7bSVCGikAi6VTb4=) 2: 2EC0897A740C11EFB881CE37C4F9AE02.roa (hash: C+VHhvYJIxJRl2QjSKnvrnjeERAfLrb94Vm3sllfwRo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EE92F/1B290B5E740B11EF9E9C0336C4F9AE02/4deDfrzHqaTRdRZXhgR2OivQQnI.crl rsync://rpki.apnic.net/member_repository/A91EE92F/1B290B5E740B11EF9E9C0336C4F9AE02/4deDfrzHqaTRdRZXhgR2OivQQnI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4deDfrzHqaTRdRZXhgR2OivQQnI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 05:18:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 37 (0x25) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EE92F/serialNumber=E1D7837EBCC7A9A4D17516578604763A2BD04272 Validity Not Before: Nov 21 05:51:34 2024 GMT Not After : Nov 28 05:51:34 2024 GMT Subject: CN=673eca66-fdf7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:06:e6:05:6b:88:e1:75:f5:41:f1:48:b1:14: 86:6e:e9:3c:24:c3:8a:2e:f9:47:be:da:ed:fd:f8: 07:24:a5:c7:45:01:c6:c1:40:25:cc:72:f9:e7:94: 57:c9:35:5a:35:78:c2:b6:5e:c6:3d:35:64:93:d9: 80:89:95:e9:53:25:93:81:15:83:4c:9a:70:50:34: 21:79:0d:bc:34:cc:55:40:cc:a3:0d:71:1c:2d:ef: f1:0b:57:18:37:91:e1:15:a1:b0:d7:5d:28:90:8a: 6a:2e:33:7a:e6:bb:11:d8:f0:cf:84:4a:96:23:39: 4f:6d:09:f1:6d:ac:85:8b:76:09:ef:00:6c:95:67: a8:4c:6a:4c:23:48:2a:8a:99:0a:d7:5e:25:e1:ed: 16:b6:3f:d9:4d:92:98:e6:c4:00:c6:53:f3:d5:2d: bf:ee:47:41:00:02:70:bb:61:c3:a9:43:5e:33:14: fc:35:5b:9c:42:48:b7:7a:b9:ea:be:94:78:ff:04: 22:f8:08:64:d4:50:ab:b9:04:ad:b4:c9:f9:20:62: 2b:e2:f8:8c:b1:ce:b6:4b:05:a5:91:f3:67:c9:2e: d7:72:e0:0d:f8:3b:8b:97:66:4b:a5:bb:a0:6e:73: 50:c2:f7:48:6f:b4:9a:d5:e0:c8:92:1f:43:2c:55: 74:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:8E:77:9F:91:51:94:77:53:83:1E:25:9F:65:91:7B:7A:D1:8F:ED X509v3 Authority Key Identifier: keyid:E1:D7:83:7E:BC:C7:A9:A4:D1:75:16:57:86:04:76:3A:2B:D0:42:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EE92F/1B290B5E740B11EF9E9C0336C4F9AE02/4deDfrzHqaTRdRZXhgR2OivQQnI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4deDfrzHqaTRdRZXhgR2OivQQnI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EE92F/1B290B5E740B11EF9E9C0336C4F9AE02/4deDfrzHqaTRdRZXhgR2OivQQnI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9b:55:1d:ad:6f:5c:aa:dc:eb:34:1d:f8:da:4d:1e:28:fb:3b: a4:f3:cf:a4:cc:70:fb:9e:36:d3:73:21:b4:c0:0a:81:c2:a1: 32:67:54:94:a1:9d:cd:50:0f:18:d9:42:ca:6a:54:22:25:73: 5f:4b:c4:a5:13:33:d1:77:82:86:f7:98:94:f9:bc:76:46:82: 79:c1:ff:29:f6:98:70:c9:a7:2b:33:56:fc:3a:cc:c9:24:8d: ba:3b:ad:0a:d2:b1:5c:3a:94:41:17:b6:b0:6d:7f:ab:99:f2: fd:1c:71:6d:93:60:0f:46:48:f2:5d:c4:b6:96:f6:4d:68:51: 8e:3e:2b:d7:7d:1e:98:99:b1:cf:b2:d4:12:3c:46:8d:33:71: 2a:64:7f:40:f5:13:c4:99:ff:3d:b1:c2:67:cf:b0:5e:04:df: 56:f4:c2:20:de:95:dc:37:a6:70:b4:e0:65:e0:5f:b4:98:88: cf:64:b9:73:87:91:af:37:8d:22:e9:02:7f:e2:c8:ef:35:2e: 93:67:78:ee:ba:44:ae:84:1e:75:6a:ae:44:fb:42:6d:dc:22: 17:a2:e8:6b:69:49:3e:bb:78:7c:a3:6e:68:83:02:31:13:e0: 5e:07:65:64:8a:d2:ae:b1:83:a6:45:ad:62:79:fc:24:7b:55: 80:61:75:2a -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBJTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF RTkyRjExMC8GA1UEBRMoRTFENzgzN0VCQ0M3QTlBNEQxNzUxNjU3ODYwNDc2M0Ey QkQwNDI3MjAeFw0yNDExMjEwNTUxMzRaFw0yNDExMjgwNTUxMzRaMBgxFjAUBgNV BAMTDTY3M2VjYTY2LWZkZjcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDEBuYFa4jhdfVB8UixFIZu6Twkw4ou+Ue+2u39+AckpcdFAcbBQCXMcvnnlFfJ NVo1eMK2XsY9NWST2YCJlelTJZOBFYNMmnBQNCF5Dbw0zFVAzKMNcRwt7/ELVxg3 keEVobDXXSiQimouM3rmuxHY8M+ESpYjOU9tCfFtrIWLdgnvAGyVZ6hMakwjSCqK mQrXXiXh7Ra2P9lNkpjmxADGU/PVLb/uR0EAAnC7YcOpQ14zFPw1W5xCSLd6ueq+ lHj/BCL4CGTUUKu5BK20yfkgYivi+IyxzrZLBaWR82fJLtdy4A34O4uXZkulu6Bu c1DC90hvtJrV4MiSH0MsVXRnAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU1I53n5FR lHdTgx4ln2WRe3rRj+0wHwYDVR0jBBgwFoAU4deDfrzHqaTRdRZXhgR2OivQQnIw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUVFOTJGLzFCMjkwQjVFNzQw QjExRUY5RTlDMDMzNkM0RjlBRTAyLzRkZURmcnpIcWFUUmRSWlhoZ1IyT2l2UVFu SS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvNGRlRGZyekhxYVRSZFJaWGhnUjJPaXZRUW5JLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUVF OTJGLzFCMjkwQjVFNzQwQjExRUY5RTlDMDMzNkM0RjlBRTAyLzRkZURmcnpIcWFU UmRSWlhoZ1IyT2l2UVFuSS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAJtVHa1vXKrc6zQd+NpNHij7O6Tzz6TMcPueNtNzIbTACoHCoTJnVJSh nc1QDxjZQspqVCIlc19LxKUTM9F3gob3mJT5vHZGgnnB/yn2mHDJpyszVvw6zMkk jbo7rQrSsVw6lEEXtrBtf6uZ8v0ccW2TYA9GSPJdxLaW9k1oUY4+K9d9HpiZsc+y 1BI8Ro0zcSpkf0D1E8SZ/z2xwmfPsF4E31b0wiDeldw3pnC04GXgX7SYiM9kuXOH ka83jSLpAn/iyO81LpNneO66RK6EHnVqrkT7Qm3cIhei6GtpST67eHyjbmiDAjET 4F4HZWSK0q6xg6ZFrWJ5/CR7VYBhdSo= -----END CERTIFICATE-----Generated at Thu Nov 21 07:40:39 2024 by rpki-client on console-ams.rpki-client.org