$ rpki-client -vvf rpki.apnic.net/member_repository/A91F3806/B472FE2A0B7C11EA8083E936C4F9AE02/mG5BZ9azgH9J98JgDWD5wmCacJY.mft File: mG5BZ9azgH9J98JgDWD5wmCacJY.mft (raw, json) Hash identifier: 2azknRHEN/P8LZ4aeelnG1eXB1vSjDl15O3me1n9bg8= Subject key identifier: 56:9D:C7:87:3F:81:3F:1C:51:38:D9:81:7E:5E:60:FC:23:0B:B2:CE Authority key identifier: 98:6E:41:67:D6:B3:80:7F:49:F7:C2:60:0D:60:F9:C2:60:9A:70:96 Certificate issuer: /CN=A91F3806/serialNumber=986E4167D6B3807F49F7C2600D60F9C2609A7096 Certificate serial: 0BC4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mG5BZ9azgH9J98JgDWD5wmCacJY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F3806/B472FE2A0B7C11EA8083E936C4F9AE02/mG5BZ9azgH9J98JgDWD5wmCacJY.mft Manifest number: 0BBE Signing time: Fri 22 Nov 2024 18:36:18 +0000 Manifest this update: Fri 22 Nov 2024 18:36:18 +0000 Manifest next update: Fri 29 Nov 2024 18:36:18 +0000 Files and hashes: 1: mG5BZ9azgH9J98JgDWD5wmCacJY.crl (hash: NKTHxTCaQmT0I9APdK+ziEl3Ys2rbsr9Ryll73he07I=) 2: 4E54AA4C0B7E11EA9D8BA43CC4F9AE02.roa (hash: w2KSsvNhZHM7vSx0ch62iXJXMI5bT8m3Td81LTUblUM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F3806/B472FE2A0B7C11EA8083E936C4F9AE02/mG5BZ9azgH9J98JgDWD5wmCacJY.crl rsync://rpki.apnic.net/member_repository/A91F3806/B472FE2A0B7C11EA8083E936C4F9AE02/mG5BZ9azgH9J98JgDWD5wmCacJY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mG5BZ9azgH9J98JgDWD5wmCacJY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 18:36:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3012 (0xbc4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F3806/serialNumber=986E4167D6B3807F49F7C2600D60F9C2609A7096 Validity Not Before: Nov 22 18:36:18 2024 GMT Not After : Nov 29 18:36:18 2024 GMT Subject: CN=6740cf22-03b1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:ff:d7:58:a1:1e:6a:0d:c2:75:aa:f5:4f:50: f6:ba:c7:26:73:90:54:3f:69:ff:e1:0d:1a:e7:0d: 25:b6:72:39:df:4f:b6:5a:83:13:2a:dd:cf:04:a9: e8:e6:f1:6f:38:c0:ea:7c:62:10:ac:96:fa:71:13: 36:6c:ba:52:db:9c:d7:e2:2c:e2:ab:03:45:c9:aa: 87:85:ff:a8:d1:db:7e:0c:6e:02:65:67:b0:73:57: bf:fc:34:a3:1c:08:5c:6e:fd:0d:1b:ee:0e:3c:51: 20:d5:45:22:24:34:a9:dd:c6:2f:9c:01:e3:aa:75: 7a:bf:d1:50:5c:01:14:2c:30:dc:bf:7c:bd:b7:e4: 06:48:fe:e2:fd:de:78:8d:26:bc:94:fa:bf:3a:58: dd:ec:fa:58:75:9b:cc:2f:53:be:e9:61:f3:26:b3: 67:83:36:96:93:5b:b7:cd:eb:8f:d7:f5:0b:d3:06: 45:36:28:a3:47:84:cf:f0:75:34:fa:d8:aa:48:ad: 85:84:c0:50:ef:fc:06:cf:bb:b0:01:5b:ee:e8:70: 7b:85:0f:77:ef:2f:e2:52:e4:ba:6e:9b:20:c8:56: cd:6a:23:b7:67:39:03:00:c0:a8:d5:23:d4:a5:93: 95:b3:5a:d5:b5:99:21:77:c8:c7:a8:9d:15:43:7a: 2d:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:9D:C7:87:3F:81:3F:1C:51:38:D9:81:7E:5E:60:FC:23:0B:B2:CE X509v3 Authority Key Identifier: keyid:98:6E:41:67:D6:B3:80:7F:49:F7:C2:60:0D:60:F9:C2:60:9A:70:96 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F3806/B472FE2A0B7C11EA8083E936C4F9AE02/mG5BZ9azgH9J98JgDWD5wmCacJY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mG5BZ9azgH9J98JgDWD5wmCacJY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F3806/B472FE2A0B7C11EA8083E936C4F9AE02/mG5BZ9azgH9J98JgDWD5wmCacJY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7b:b9:b7:bc:a1:6d:d0:19:f0:a9:a5:97:81:76:8b:0b:e4:62: 7a:3e:f4:1f:5b:12:6b:4f:3b:c9:74:26:8c:97:d7:a9:b7:aa: 72:41:d9:78:26:45:05:21:db:33:53:a3:89:84:94:66:b0:4c: 10:da:38:b5:5f:b4:b0:57:b2:65:47:32:d8:90:c0:1e:e4:eb: d5:5b:55:4b:1e:18:57:4a:88:bf:04:9e:e1:99:3c:ad:31:5a: f0:ee:79:d9:d0:ae:1b:88:0b:04:e6:6c:7d:b4:a3:bd:91:32: 13:03:16:6f:84:21:3e:dc:70:ca:60:b6:ba:25:d0:88:37:60: 09:47:0f:66:2e:8e:c6:11:47:b0:29:81:e5:03:8c:7b:70:78: d9:22:e1:47:51:01:e1:4c:09:45:22:6e:85:35:51:80:cf:89: 9c:03:9e:17:af:b4:85:09:55:eb:1e:ae:3f:7d:80:27:a0:f5: 53:7e:2e:e3:c0:fc:0c:27:8e:83:d5:ba:f2:12:55:f4:34:0b: 2f:51:c0:4f:9f:60:0d:75:f6:71:98:d9:9b:ce:9a:57:c8:17: c3:c6:c1:ab:6a:11:cb:9d:c0:65:83:e1:91:a3:68:a2:3d:c7: 7a:47:06:fe:6f:64:ad:50:0a:8f:68:54:27:dd:c0:dc:fb:6e: 71:2c:b4:24 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC8QwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjM4MDYxMTAvBgNVBAUTKDk4NkU0MTY3RDZCMzgwN0Y0OUY3QzI2MDBENjBGOUMy NjA5QTcwOTYwHhcNMjQxMTIyMTgzNjE4WhcNMjQxMTI5MTgzNjE4WjAYMRYwFAYD VQQDEw02NzQwY2YyMi0wM2IxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5v/XWKEeag3Cdar1T1D2uscmc5BUP2n/4Q0a5w0ltnI530+2WoMTKt3PBKno 5vFvOMDqfGIQrJb6cRM2bLpS25zX4iziqwNFyaqHhf+o0dt+DG4CZWewc1e//DSj HAhcbv0NG+4OPFEg1UUiJDSp3cYvnAHjqnV6v9FQXAEULDDcv3y9t+QGSP7i/d54 jSa8lPq/Oljd7PpYdZvML1O+6WHzJrNngzaWk1u3zeuP1/UL0wZFNiijR4TP8HU0 +tiqSK2FhMBQ7/wGz7uwAVvu6HB7hQ937y/iUuS6bpsgyFbNaiO3ZzkDAMCo1SPU pZOVs1rVtZkhd8jHqJ0VQ3otSQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFadx4c/ gT8cUTjZgX5eYPwjC7LOMB8GA1UdIwQYMBaAFJhuQWfWs4B/SffCYA1g+cJgmnCW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMzgwNi9CNDcyRkUyQTBC N0MxMUVBODA4M0U5MzZDNEY5QUUwMi9tRzVCWjlhemdIOUo5OEpnRFdENXdtQ2Fj SlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL21HNUJaOWF6Z0g5Sjk4SmdEV0Q1d21DYWNKWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MzgwNi9CNDcyRkUyQTBCN0MxMUVBODA4M0U5MzZDNEY5QUUwMi9tRzVCWjlhemdI OUo5OEpnRFdENXdtQ2FjSlkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB7ube8oW3QGfCppZeBdosL5GJ6PvQfWxJrTzvJdCaMl9ept6pyQdl4 JkUFIdszU6OJhJRmsEwQ2ji1X7SwV7JlRzLYkMAe5OvVW1VLHhhXSoi/BJ7hmTyt MVrw7nnZ0K4biAsE5mx9tKO9kTITAxZvhCE+3HDKYLa6JdCIN2AJRw9mLo7GEUew KYHlA4x7cHjZIuFHUQHhTAlFIm6FNVGAz4mcA54Xr7SFCVXrHq4/fYAnoPVTfi7j wPwMJ46D1bryElX0NAsvUcBPn2ANdfZxmNmbzppXyBfDxsGrahHLncBlg+GRo2ii Pcd6Rwb+b2StUAqPaFQn3cDc+25xLLQk -----END CERTIFICATE-----Generated at Fri Nov 22 19:45:05 2024 by rpki-client on console-fra.rpki-client.org