$ rpki-client -vvf rpki.apnic.net/member_repository/A91F2E76/8F3C9E6A0D7711EBBBAE3440C4F9AE02/1BN478zNyo5lN-lfJ6o7NTdYCvM.mft File: 1BN478zNyo5lN-lfJ6o7NTdYCvM.mft (raw, json) Hash identifier: wQbCcaBuCTSI+LFV/Hlcj80kr4IuFgrp3550mzm4/XA= Subject key identifier: DB:62:2F:21:20:E5:60:3F:09:77:24:B3:36:6F:4C:49:DD:1D:A0:E4 Authority key identifier: D4:13:78:EF:CC:CD:CA:8E:65:37:E9:5F:27:AA:3B:35:37:58:0A:F3 Certificate issuer: /CN=A91F2E76/serialNumber=D41378EFCCCDCA8E6537E95F27AA3B3537580AF3 Certificate serial: 072F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1BN478zNyo5lN-lfJ6o7NTdYCvM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F2E76/8F3C9E6A0D7711EBBBAE3440C4F9AE02/1BN478zNyo5lN-lfJ6o7NTdYCvM.mft Manifest number: 072A Signing time: Fri 22 Nov 2024 21:15:28 +0000 Manifest this update: Fri 22 Nov 2024 21:15:27 +0000 Manifest next update: Fri 29 Nov 2024 21:15:27 +0000 Files and hashes: 1: 1BN478zNyo5lN-lfJ6o7NTdYCvM.crl (hash: KgryXBJe1xNwIEHF8Du2vr13TyCg0K2m2Jt4EJUiZfE=) 2: 86AE60140D7A11EB9D346C48C4F9AE02.roa (hash: EnKj89o4/2sutrwYpg7UxwXHFBOFSGJviP9dKcMIsAc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F2E76/8F3C9E6A0D7711EBBBAE3440C4F9AE02/1BN478zNyo5lN-lfJ6o7NTdYCvM.crl rsync://rpki.apnic.net/member_repository/A91F2E76/8F3C9E6A0D7711EBBBAE3440C4F9AE02/1BN478zNyo5lN-lfJ6o7NTdYCvM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1BN478zNyo5lN-lfJ6o7NTdYCvM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1839 (0x72f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F2E76/serialNumber=D41378EFCCCDCA8E6537E95F27AA3B3537580AF3 Validity Not Before: Nov 22 21:15:27 2024 GMT Not After : Nov 29 21:15:27 2024 GMT Subject: CN=6740f470-2b39 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:5a:bf:49:6e:c2:b4:58:d2:22:16:20:e1:d6: d8:72:27:a1:07:b5:8c:c0:c9:73:ef:51:06:54:99: ec:77:99:f8:99:c9:11:a0:10:88:23:63:ec:73:25: 6e:07:18:5b:29:1f:91:16:c8:7a:93:f8:30:a6:fc: 76:7f:3f:d9:88:59:6a:67:69:8e:9f:f1:b8:62:b8: fd:db:64:79:3f:2c:e1:23:01:25:b8:d8:1e:6a:6f: 6d:24:46:f7:6b:c6:ed:9a:19:25:81:23:9a:83:fd: ab:45:b7:5b:d6:4b:4a:f8:99:ee:ee:bd:0d:37:bc: 37:09:39:52:75:47:3b:97:a9:18:c2:da:67:70:05: d2:c0:6b:37:b1:41:fc:5a:83:59:3c:77:2d:11:f1: 73:37:08:a1:11:79:22:fe:a8:bd:39:94:70:73:e6: 64:a0:99:41:ef:3c:8e:7e:2c:0f:cc:a7:e1:0c:72: 6a:4a:16:5a:a5:a6:2f:81:07:d4:bc:51:64:d0:f3: 1f:10:b6:da:27:8f:96:54:9b:9f:8c:53:e5:3a:b4: d2:bc:11:e8:a3:58:a2:40:e6:30:d8:60:93:7c:b3: 27:7b:dd:81:49:68:61:d1:dc:b6:7c:a1:81:51:10: d3:e7:fe:00:4f:b9:a1:dd:16:04:cb:aa:22:52:72: a9:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:62:2F:21:20:E5:60:3F:09:77:24:B3:36:6F:4C:49:DD:1D:A0:E4 X509v3 Authority Key Identifier: keyid:D4:13:78:EF:CC:CD:CA:8E:65:37:E9:5F:27:AA:3B:35:37:58:0A:F3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F2E76/8F3C9E6A0D7711EBBBAE3440C4F9AE02/1BN478zNyo5lN-lfJ6o7NTdYCvM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1BN478zNyo5lN-lfJ6o7NTdYCvM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F2E76/8F3C9E6A0D7711EBBBAE3440C4F9AE02/1BN478zNyo5lN-lfJ6o7NTdYCvM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 39:76:4d:6d:24:07:37:c3:5e:1f:3d:96:54:3c:cd:4d:fd:35: 90:45:a4:b0:22:14:0d:6f:72:3b:a3:d2:f5:a9:3a:b4:a4:98: d6:27:6c:ee:2c:94:2c:50:15:ba:33:7e:fa:19:75:db:63:33: 75:51:77:f7:6c:7e:9e:34:2d:e5:74:ef:a8:e3:73:71:d5:74: 3b:e9:76:36:b9:8b:e2:ee:12:7d:0e:45:2d:6e:ef:32:62:5c: a3:d1:cc:bc:2d:1a:bc:14:3a:d7:82:33:cc:c1:7a:ca:53:3f: de:14:96:f7:75:51:02:9b:b9:c9:40:1c:a7:a9:92:b4:05:ff: 4f:5d:9e:0e:46:79:64:1e:05:d8:b2:f4:47:f8:d2:44:c2:bc: 11:5c:03:07:8d:4b:bc:a0:01:a2:b2:ee:01:b6:13:7c:f2:4f: d4:74:b6:fb:ba:46:c2:22:78:37:37:1f:7e:47:ef:6e:91:13: 48:9e:2f:7c:ff:eb:0d:94:45:2e:6e:85:b5:18:48:74:cd:03: fa:c6:0e:f7:9e:f1:b8:97:11:54:cd:a4:18:fc:b0:d6:9f:f7: 45:4c:50:6e:53:07:ca:4a:16:e7:a2:95:97:eb:8a:f3:73:43: 4d:f2:f6:fa:0d:81:15:75:e4:9f:90:6d:57:69:04:60:09:d2: 09:5a:51:58 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBy8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjJFNzYxMTAvBgNVBAUTKEQ0MTM3OEVGQ0NDRENBOEU2NTM3RTk1RjI3QUEzQjM1 Mzc1ODBBRjMwHhcNMjQxMTIyMjExNTI3WhcNMjQxMTI5MjExNTI3WjAYMRYwFAYD VQQDEw02NzQwZjQ3MC0yYjM5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtFq/SW7CtFjSIhYg4dbYciehB7WMwMlz71EGVJnsd5n4mckRoBCII2PscyVu BxhbKR+RFsh6k/gwpvx2fz/ZiFlqZ2mOn/G4Yrj922R5PyzhIwEluNgeam9tJEb3 a8btmhklgSOag/2rRbdb1ktK+Jnu7r0NN7w3CTlSdUc7l6kYwtpncAXSwGs3sUH8 WoNZPHctEfFzNwihEXki/qi9OZRwc+ZkoJlB7zyOfiwPzKfhDHJqShZapaYvgQfU vFFk0PMfELbaJ4+WVJufjFPlOrTSvBHoo1iiQOYw2GCTfLMne92BSWhh0dy2fKGB URDT5/4AT7mh3RYEy6oiUnKpjQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNtiLyEg 5WA/CXckszZvTEndHaDkMB8GA1UdIwQYMBaAFNQTeO/MzcqOZTfpXyeqOzU3WArz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMkU3Ni84RjNDOUU2QTBE NzcxMUVCQkJBRTM0NDBDNEY5QUUwMi8xQk40Nzh6TnlvNWxOLWxmSjZvN05UZFlD dk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFCTjQ3OHpOeW81bE4tbGZKNm83TlRkWUN2TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MkU3Ni84RjNDOUU2QTBENzcxMUVCQkJBRTM0NDBDNEY5QUUwMi8xQk40Nzh6Tnlv NWxOLWxmSjZvN05UZFlDdk0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA5dk1tJAc3w14fPZZUPM1N/TWQRaSwIhQNb3I7o9L1qTq0pJjWJ2zu LJQsUBW6M376GXXbYzN1UXf3bH6eNC3ldO+o43Nx1XQ76XY2uYvi7hJ9DkUtbu8y Ylyj0cy8LRq8FDrXgjPMwXrKUz/eFJb3dVECm7nJQBynqZK0Bf9PXZ4ORnlkHgXY svRH+NJEwrwRXAMHjUu8oAGisu4BthN88k/UdLb7ukbCIng3Nx9+R+9ukRNIni98 /+sNlEUuboW1GEh0zQP6xg73nvG4lxFUzaQY/LDWn/dFTFBuUwfKShbnopWX64rz c0NN8vb6DYEVdeSfkG1XaQRgCdIJWlFY -----END CERTIFICATE-----Generated at Fri Nov 22 22:24:15 2024 by rpki-client on console-fra.rpki-client.org