$ rpki-client -vvf rpki.apnic.net/member_repository/A91F2B54/727375B4D4F511EC8E13FE4EC4F9AE02/IrN0ThSJpKURK82Mvxepj_HbZnU.mft File: IrN0ThSJpKURK82Mvxepj_HbZnU.mft (raw, json) Hash identifier: J2zXBlgRbQzzm50M5YxpgawM5PAhXjMXyMq0C//dc1M= Subject key identifier: 4B:AD:58:98:CF:E0:A1:89:24:3B:75:2F:65:5D:69:F1:DB:57:11:F2 Authority key identifier: 22:B3:74:4E:14:89:A4:A5:11:2B:CD:8C:BF:17:A9:8F:F1:DB:66:75 Certificate issuer: /CN=A91F2B54/serialNumber=22B3744E1489A4A5112BCD8CBF17A98FF1DB6675 Certificate serial: 02AB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IrN0ThSJpKURK82Mvxepj_HbZnU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F2B54/727375B4D4F511EC8E13FE4EC4F9AE02/IrN0ThSJpKURK82Mvxepj_HbZnU.mft Manifest number: 02A6 Signing time: Thu 21 Nov 2024 01:04:21 +0000 Manifest this update: Thu 21 Nov 2024 01:04:21 +0000 Manifest next update: Thu 28 Nov 2024 01:04:21 +0000 Files and hashes: 1: IrN0ThSJpKURK82Mvxepj_HbZnU.crl (hash: 2AFU5eaVocE2kLyy9yYV6nG0WKe79StdtQ/DO36zhwg=) 2: 212B8B4078BF11EFADED2A6EC4F9AE02.roa (hash: 9Jt4B2TozQUmN1NJk3XTlC6l1td+NTCiCQof+C1FfmQ=) 3: F2C91F5678BE11EFBB3FC76DC4F9AE02.roa (hash: Rkwjwwz10qgJT86xyhauvrRZPrkV1Yaz2EgapqKprnA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F2B54/727375B4D4F511EC8E13FE4EC4F9AE02/IrN0ThSJpKURK82Mvxepj_HbZnU.crl rsync://rpki.apnic.net/member_repository/A91F2B54/727375B4D4F511EC8E13FE4EC4F9AE02/IrN0ThSJpKURK82Mvxepj_HbZnU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IrN0ThSJpKURK82Mvxepj_HbZnU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:33:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 683 (0x2ab) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F2B54/serialNumber=22B3744E1489A4A5112BCD8CBF17A98FF1DB6675 Validity Not Before: Nov 21 01:04:21 2024 GMT Not After : Nov 28 01:04:21 2024 GMT Subject: CN=673e8715-e22f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:60:9e:ec:a2:3c:49:38:78:42:a6:cd:5d:c4: e2:b3:9a:6b:14:7f:aa:68:0d:a9:64:26:8c:1a:aa: 02:5f:3d:9e:51:c2:36:4e:aa:40:68:10:cf:b8:a9: a2:e2:3e:21:0f:8c:bc:32:f9:bf:3f:fa:3e:76:99: e9:77:4a:36:b4:8d:bc:50:4c:6c:23:ff:81:ad:3f: 63:83:05:68:75:6f:cb:8d:b9:d8:05:df:16:a0:72: cc:59:39:69:bf:c5:e7:28:72:03:29:25:61:c5:8c: a1:36:77:79:3e:ca:72:3c:7f:90:1a:c1:b1:1f:e9: f9:b4:a5:da:da:e3:37:75:fa:75:f8:77:b2:dc:2a: 41:3d:c1:5d:e3:a8:62:24:7d:e3:f6:99:a7:bd:85: 7e:0b:1e:ac:82:40:26:78:49:77:9e:90:e9:74:a1: d5:2a:9a:db:2c:4b:7a:b9:41:49:e7:59:19:36:28: b0:85:ba:69:59:ac:c2:de:c7:df:aa:ab:81:91:b0: 19:17:87:c2:8a:74:c5:43:7d:e2:60:b0:c4:0e:d8: ea:7e:e3:9c:e3:cb:5d:bf:7b:bb:d3:42:8d:c1:b1: 25:5e:85:71:28:95:16:df:02:37:53:05:40:3c:9c: 2c:4f:cb:f3:e2:de:be:c8:a4:01:d9:33:2a:d8:52: aa:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:AD:58:98:CF:E0:A1:89:24:3B:75:2F:65:5D:69:F1:DB:57:11:F2 X509v3 Authority Key Identifier: keyid:22:B3:74:4E:14:89:A4:A5:11:2B:CD:8C:BF:17:A9:8F:F1:DB:66:75 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F2B54/727375B4D4F511EC8E13FE4EC4F9AE02/IrN0ThSJpKURK82Mvxepj_HbZnU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IrN0ThSJpKURK82Mvxepj_HbZnU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F2B54/727375B4D4F511EC8E13FE4EC4F9AE02/IrN0ThSJpKURK82Mvxepj_HbZnU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 34:1a:35:93:50:f6:37:50:db:6c:13:97:04:80:53:c1:b2:c8: dd:dd:ca:4a:37:a9:c7:d1:ee:39:b6:83:76:5d:48:cf:15:b0: 0b:9b:4e:46:76:48:5b:3b:cf:82:af:f8:42:4e:c5:5c:31:7e: 1f:f2:cd:d5:f0:46:7e:5a:ce:6b:95:f4:35:5d:d3:a8:21:98: 48:68:d7:9d:32:d8:13:c6:17:ef:bc:a5:55:3f:83:48:d7:2d: 2e:6a:bd:71:ce:20:f4:15:d7:c9:51:eb:d3:2d:c9:91:ae:f2: 58:1a:98:c6:6e:55:f8:5e:a5:c1:2b:93:04:29:d4:a0:fb:12: fa:27:ba:32:c3:22:a5:c5:c6:02:f2:5d:b6:b3:36:fe:b2:46: 13:5f:89:1f:33:4e:57:47:f4:d0:65:5c:0b:96:26:d5:5b:9a: 11:01:ff:11:20:52:64:df:2e:9f:33:ff:5a:d5:d5:86:a2:2a: 99:59:be:b4:b4:20:a5:3c:4a:8a:ff:70:82:a8:13:ae:99:56: b5:5f:9d:b3:c0:fe:5f:12:fb:ee:45:bf:8d:29:c5:f0:86:c0: 15:de:e3:c8:88:67:d8:78:d3:02:2a:82:63:64:98:a1:b6:fd: 5b:07:b3:07:1e:a6:fa:e1:fa:1e:e9:26:f1:b3:fa:74:49:c0: 99:0a:12:d3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAqswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjJCNTQxMTAvBgNVBAUTKDIyQjM3NDRFMTQ4OUE0QTUxMTJCQ0Q4Q0JGMTdBOThG RjFEQjY2NzUwHhcNMjQxMTIxMDEwNDIxWhcNMjQxMTI4MDEwNDIxWjAYMRYwFAYD VQQDEw02NzNlODcxNS1lMjJmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4mCe7KI8STh4QqbNXcTis5prFH+qaA2pZCaMGqoCXz2eUcI2TqpAaBDPuKmi 4j4hD4y8Mvm/P/o+dpnpd0o2tI28UExsI/+BrT9jgwVodW/LjbnYBd8WoHLMWTlp v8XnKHIDKSVhxYyhNnd5PspyPH+QGsGxH+n5tKXa2uM3dfp1+Hey3CpBPcFd46hi JH3j9pmnvYV+Cx6sgkAmeEl3npDpdKHVKprbLEt6uUFJ51kZNiiwhbppWazC3sff qquBkbAZF4fCinTFQ33iYLDEDtjqfuOc48tdv3u700KNwbElXoVxKJUW3wI3UwVA PJwsT8vz4t6+yKQB2TMq2FKqXwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEutWJjP 4KGJJDt1L2VdafHbVxHyMB8GA1UdIwQYMBaAFCKzdE4UiaSlESvNjL8XqY/x22Z1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMkI1NC83MjczNzVCNEQ0 RjUxMUVDOEUxM0ZFNEVDNEY5QUUwMi9Jck4wVGhTSnBLVVJLODJNdnhlcGpfSGJa blUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lyTjBUaFNKcEtVUks4Mk12eGVwal9IYlpuVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MkI1NC83MjczNzVCNEQ0RjUxMUVDOEUxM0ZFNEVDNEY5QUUwMi9Jck4wVGhTSnBL VVJLODJNdnhlcGpfSGJablUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA0GjWTUPY3UNtsE5cEgFPBssjd3cpKN6nH0e45toN2XUjPFbALm05G dkhbO8+Cr/hCTsVcMX4f8s3V8EZ+Ws5rlfQ1XdOoIZhIaNedMtgTxhfvvKVVP4NI 1y0uar1xziD0FdfJUevTLcmRrvJYGpjGblX4XqXBK5MEKdSg+xL6J7oywyKlxcYC 8l22szb+skYTX4kfM05XR/TQZVwLlibVW5oRAf8RIFJk3y6fM/9a1dWGoiqZWb60 tCClPEqK/3CCqBOumVa1X52zwP5fEvvuRb+NKcXwhsAV3uPIiGfYeNMCKoJjZJih tv1bB7MHHqb64foe6Sbxs/p0ScCZChLT -----END CERTIFICATE-----Generated at Thu Nov 21 03:12:08 2024 by rpki-client on console-fra.rpki-client.org