$ rpki-client -vvf rpki.apnic.net/member_repository/A91F823E/7D69A83CD5B111EC9351E620C4F9AE02/PurfFFrim0gkCj-6OvvZSajxU10.mft File: PurfFFrim0gkCj-6OvvZSajxU10.mft (raw, json) Hash identifier: u6dX4WSSSyqsl5K2UvENTx4TGCaDLptfPI3S498MvJ8= Subject key identifier: 2F:F7:CF:BA:1B:F3:2F:BD:40:DC:13:77:D6:ED:D3:EA:04:1D:C5:FE Authority key identifier: 3E:EA:DF:14:5A:E2:9B:48:24:0A:3F:BA:3A:FB:D9:49:A8:F1:53:5D Certificate issuer: /CN=A91F823E/serialNumber=3EEADF145AE29B48240A3FBA3AFBD949A8F1535D Certificate serial: 02A7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PurfFFrim0gkCj-6OvvZSajxU10.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F823E/7D69A83CD5B111EC9351E620C4F9AE02/PurfFFrim0gkCj-6OvvZSajxU10.mft Manifest number: 02A4 Signing time: Sat 23 Nov 2024 01:04:40 +0000 Manifest this update: Sat 23 Nov 2024 01:04:39 +0000 Manifest next update: Sat 30 Nov 2024 01:04:39 +0000 Files and hashes: 1: PurfFFrim0gkCj-6OvvZSajxU10.crl (hash: FYUoVMrwrFYvcn0IUmpBF6I1ty/Rw+R/HX1+P13Zcrs=) 2: B3481ED4D5B611ECA61EEC28C4F9AE02.roa (hash: o8+kpkkcUlfY/bs7XStrTS+t+OkNW4hpa6KuuucmgCo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F823E/7D69A83CD5B111EC9351E620C4F9AE02/PurfFFrim0gkCj-6OvvZSajxU10.crl rsync://rpki.apnic.net/member_repository/A91F823E/7D69A83CD5B111EC9351E620C4F9AE02/PurfFFrim0gkCj-6OvvZSajxU10.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PurfFFrim0gkCj-6OvvZSajxU10.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 679 (0x2a7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F823E/serialNumber=3EEADF145AE29B48240A3FBA3AFBD949A8F1535D Validity Not Before: Nov 23 01:04:39 2024 GMT Not After : Nov 30 01:04:39 2024 GMT Subject: CN=67412a27-66a1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:7a:55:03:43:f8:a4:12:ab:28:21:97:d5:1b: df:a4:5d:c1:23:f4:fd:df:d3:0f:cf:ca:18:87:f3: bf:5e:9f:18:2a:28:0b:8d:d8:8d:c4:0f:0b:48:04: 94:bd:28:e4:d2:63:56:17:2d:64:1e:be:69:8d:9d: b3:4e:4e:7b:47:95:3d:03:54:66:14:24:2f:73:65: 0c:bd:cf:90:5d:2d:e2:8e:25:20:76:29:65:8d:f2: d1:6b:dc:dd:c5:26:61:5c:2b:3b:39:5b:18:47:3a: 43:3d:63:c7:f7:be:5e:c0:eb:49:2b:8c:f6:04:00: c7:f8:9f:8a:5e:ae:15:f8:24:9d:83:90:64:17:44: 98:39:a8:87:89:9a:c0:8d:04:96:39:ce:8b:19:65: 30:64:61:ca:c2:64:00:73:8e:53:1c:c0:6f:13:e3: 88:7d:75:c7:bd:40:82:52:d4:8e:6a:37:13:75:6c: cc:6b:37:77:b6:ab:75:8b:74:d6:05:ff:2b:23:16: 9a:ca:11:51:a3:0a:1f:5a:bb:b1:19:3d:21:1b:d3: 47:d7:a1:4b:b4:ba:71:b5:eb:d0:e6:25:6b:7d:bd: 45:65:1b:c7:03:19:ac:e5:b7:c4:c5:db:bc:10:ff: 04:ea:f9:09:bb:47:25:9c:aa:e0:5d:5c:8e:1d:fb: d5:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:F7:CF:BA:1B:F3:2F:BD:40:DC:13:77:D6:ED:D3:EA:04:1D:C5:FE X509v3 Authority Key Identifier: keyid:3E:EA:DF:14:5A:E2:9B:48:24:0A:3F:BA:3A:FB:D9:49:A8:F1:53:5D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F823E/7D69A83CD5B111EC9351E620C4F9AE02/PurfFFrim0gkCj-6OvvZSajxU10.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PurfFFrim0gkCj-6OvvZSajxU10.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F823E/7D69A83CD5B111EC9351E620C4F9AE02/PurfFFrim0gkCj-6OvvZSajxU10.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6c:27:9e:b5:31:40:44:e8:8e:97:94:45:f1:ce:76:f3:e3:93: 5e:0f:48:4d:56:c2:fd:1c:fd:dc:19:9c:46:08:84:da:12:bf: 82:a5:eb:f5:ff:10:ba:8b:bc:25:4d:4e:4f:9f:83:3c:2a:00: c4:d9:ef:69:8a:14:c4:c0:0c:54:65:50:5f:a7:fb:c7:01:80: 92:bb:d3:77:75:f9:d9:44:de:b4:28:48:68:b0:88:fe:17:3b: b2:cf:4b:83:5a:9d:d3:c6:b1:ba:b5:a0:84:c5:a0:b7:9a:27: a1:51:60:7f:be:33:d1:bd:a6:b6:b8:1b:18:4e:12:54:7a:8e: a2:37:6f:e9:cd:9a:f8:c7:ce:c3:9e:87:26:07:83:e4:42:b7: 6a:7c:b6:d8:80:db:52:3b:b0:de:27:3f:12:6e:78:88:91:1c: c6:fc:c1:9f:ad:30:c7:72:78:21:c4:be:12:82:0a:f9:66:6d: ba:c6:c1:31:b9:c0:fe:ad:f5:a0:3e:8c:10:c8:31:9d:d6:1d: d3:01:5b:06:38:9f:70:81:60:b6:71:ad:c8:09:26:d3:c8:65: b7:24:68:5d:49:85:7b:c6:0e:9e:83:2a:c7:99:b1:5f:12:30: 52:50:1d:dc:a9:c6:b4:e2:fb:c2:c6:c8:98:a8:b0:d6:bf:64: 9f:22:97:72 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAqcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjgyM0UxMTAvBgNVBAUTKDNFRUFERjE0NUFFMjlCNDgyNDBBM0ZCQTNBRkJEOTQ5 QThGMTUzNUQwHhcNMjQxMTIzMDEwNDM5WhcNMjQxMTMwMDEwNDM5WjAYMRYwFAYD VQQDEw02NzQxMmEyNy02NmExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArnpVA0P4pBKrKCGX1RvfpF3BI/T939MPz8oYh/O/Xp8YKigLjdiNxA8LSASU vSjk0mNWFy1kHr5pjZ2zTk57R5U9A1RmFCQvc2UMvc+QXS3ijiUgdilljfLRa9zd xSZhXCs7OVsYRzpDPWPH975ewOtJK4z2BADH+J+KXq4V+CSdg5BkF0SYOaiHiZrA jQSWOc6LGWUwZGHKwmQAc45THMBvE+OIfXXHvUCCUtSOajcTdWzMazd3tqt1i3TW Bf8rIxaayhFRowofWruxGT0hG9NH16FLtLpxtevQ5iVrfb1FZRvHAxms5bfExdu8 EP8E6vkJu0clnKrgXVyOHfvVpQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFC/3z7ob 8y+9QNwTd9bt0+oEHcX+MB8GA1UdIwQYMBaAFD7q3xRa4ptIJAo/ujr72Umo8VNd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGODIzRS83RDY5QTgzQ0Q1 QjExMUVDOTM1MUU2MjBDNEY5QUUwMi9QdXJmRkZyaW0wZ2tDai02T3Z2WlNhanhV MTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1B1cmZGRnJpbTBna0NqLTZPdnZaU2FqeFUxMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG ODIzRS83RDY5QTgzQ0Q1QjExMUVDOTM1MUU2MjBDNEY5QUUwMi9QdXJmRkZyaW0w Z2tDai02T3Z2WlNhanhVMTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBsJ561MUBE6I6XlEXxznbz45NeD0hNVsL9HP3cGZxGCITaEr+Cpev1 /xC6i7wlTU5Pn4M8KgDE2e9pihTEwAxUZVBfp/vHAYCSu9N3dfnZRN60KEhosIj+ Fzuyz0uDWp3TxrG6taCExaC3miehUWB/vjPRvaa2uBsYThJUeo6iN2/pzZr4x87D nocmB4PkQrdqfLbYgNtSO7DeJz8SbniIkRzG/MGfrTDHcnghxL4Sggr5Zm26xsEx ucD+rfWgPowQyDGd1h3TAVsGOJ9wgWC2ca3ICSbTyGW3JGhdSYV7xg6egyrHmbFf EjBSUB3cqca04vvCxsiYqLDWv2SfIpdy -----END CERTIFICATE-----Generated at Sat Nov 23 02:33:51 2024 by rpki-client on console-fra.rpki-client.org