$ rpki-client -vvf rpki.apnic.net/member_repository/A91F8ADF/CDF405C2F06811EDBB978E2DC4F9AE02/53BQiRv4knQyZQtwbyv-3ZKhEck.mft File: 53BQiRv4knQyZQtwbyv-3ZKhEck.mft (raw, json) Hash identifier: VwX988TAuzpHUcC/Y4nn30oP4ol4oSr1Jvh2J1uSQAQ= Subject key identifier: 3F:02:94:AD:C3:86:90:4D:F8:E7:6C:3E:62:CA:48:A5:70:AD:ED:FB Authority key identifier: E7:70:50:89:1B:F8:92:74:32:65:0B:70:6F:2B:FE:DD:92:A1:11:C9 Certificate issuer: /CN=A91F8ADF/serialNumber=E77050891BF8927432650B706F2BFEDD92A111C9 Certificate serial: 0123 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/53BQiRv4knQyZQtwbyv-3ZKhEck.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F8ADF/CDF405C2F06811EDBB978E2DC4F9AE02/53BQiRv4knQyZQtwbyv-3ZKhEck.mft Manifest number: 011F Signing time: Thu 21 Nov 2024 02:58:36 +0000 Manifest this update: Thu 21 Nov 2024 02:58:36 +0000 Manifest next update: Thu 28 Nov 2024 02:58:36 +0000 Files and hashes: 1: 53BQiRv4knQyZQtwbyv-3ZKhEck.crl (hash: pZVWeaQhDUd2izJP+JAZdnEPJ1BbjtahR0drhYQS3xU=) 2: F3210638F06D11ED9055A212C4F9AE02.roa (hash: 2X5jx6X75tKEOxFsKjMVap1yMnHeZJOzPkaHa0il1ag=) 3: F2948C58F06D11ED9055A212C4F9AE02.roa (hash: LjeOvWFRejV1Xk0x//k7198FJTyV/phTAb3tYSdVkIc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F8ADF/CDF405C2F06811EDBB978E2DC4F9AE02/53BQiRv4knQyZQtwbyv-3ZKhEck.crl rsync://rpki.apnic.net/member_repository/A91F8ADF/CDF405C2F06811EDBB978E2DC4F9AE02/53BQiRv4knQyZQtwbyv-3ZKhEck.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/53BQiRv4knQyZQtwbyv-3ZKhEck.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 02:58:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 291 (0x123) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F8ADF/serialNumber=E77050891BF8927432650B706F2BFEDD92A111C9 Validity Not Before: Nov 21 02:58:36 2024 GMT Not After : Nov 28 02:58:36 2024 GMT Subject: CN=673ea1dc-c95f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:b4:87:05:89:93:05:b5:71:53:2d:9b:dc:94: 0c:f8:57:d3:81:40:3a:62:e7:c4:2f:3a:f7:78:b9: d5:9c:95:a9:5b:a3:c2:75:e8:a5:0a:1a:b6:2a:95: 3a:2e:24:e6:1a:85:29:eb:7d:e6:a0:3d:b1:2c:41: 3a:b0:a0:08:57:02:65:d8:36:a1:db:65:e0:dd:54: b6:2b:41:8f:53:48:9f:76:ec:09:10:d9:46:d2:cf: 53:c4:35:a8:01:59:ce:f8:12:96:7f:1a:ed:95:30: 81:07:62:8a:e8:cb:32:ff:6d:ea:f6:3e:91:d4:a3: 95:ff:73:e1:8f:27:4f:a9:68:5b:e0:d8:de:c6:d6: 92:4a:bf:41:69:34:09:da:6b:f4:83:03:99:a6:85: 5d:af:dc:db:3d:7d:fa:07:08:b8:b8:57:74:48:2a: 3a:fe:30:33:6d:e7:ea:05:ef:c2:7b:5b:90:fb:46: 0b:e7:62:e0:29:80:63:12:bd:34:98:d3:a2:9e:68: 62:ad:65:d0:16:bd:78:d1:ab:b7:43:a9:14:cb:ec: 6a:25:ed:8f:26:41:fb:ed:02:37:b7:f6:b5:8e:34: 54:84:43:4f:bf:4a:32:91:ce:2d:a9:c0:e9:40:e6: d6:d8:90:e6:06:ab:ff:3d:38:e0:1f:13:e2:25:32: b7:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:02:94:AD:C3:86:90:4D:F8:E7:6C:3E:62:CA:48:A5:70:AD:ED:FB X509v3 Authority Key Identifier: keyid:E7:70:50:89:1B:F8:92:74:32:65:0B:70:6F:2B:FE:DD:92:A1:11:C9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F8ADF/CDF405C2F06811EDBB978E2DC4F9AE02/53BQiRv4knQyZQtwbyv-3ZKhEck.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/53BQiRv4knQyZQtwbyv-3ZKhEck.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F8ADF/CDF405C2F06811EDBB978E2DC4F9AE02/53BQiRv4knQyZQtwbyv-3ZKhEck.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 77:c0:3d:22:69:08:40:3f:8f:c1:91:c4:2a:e0:92:b5:69:f0: cf:3b:45:9f:58:45:4f:97:f4:8d:fc:85:c2:06:30:d7:56:f3: d6:88:ee:10:63:b4:36:42:b1:e7:3d:b5:e0:86:f3:59:7e:24: 7a:85:78:6f:56:bf:09:73:f5:dc:64:4a:e2:f9:75:19:98:d7: da:8b:3c:5a:38:fc:42:2b:18:b3:c5:33:98:71:d6:1f:b5:6e: 67:1d:e2:06:2d:13:30:60:af:3c:52:47:09:cf:e7:0d:2f:a2: 17:7a:cb:7c:5b:a0:41:34:41:b5:85:17:0e:10:8b:49:8d:96: 99:5d:f8:57:3f:fe:09:19:0d:f2:10:64:15:b3:4b:92:cf:08: 2a:7c:2c:c7:05:54:a3:54:3e:52:65:25:85:c6:e1:25:f6:c3: b7:8d:a5:c0:87:ed:d3:10:df:06:23:ed:d5:46:63:bf:a1:e2: e0:40:a6:b0:84:4c:c2:79:24:e6:46:23:5f:8b:72:6c:cd:57: f0:f4:9d:a8:0d:0c:e4:9e:f5:6f:bb:6f:93:4f:5e:77:92:a6: b5:01:9f:b5:9a:31:11:47:99:79:90:68:e2:72:7e:18:35:8b: ec:f2:ad:7d:a2:bc:5a:91:b6:8d:5a:53:6e:a1:28:52:67:30: 3f:75:b2:d0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICASMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjhBREYxMTAvBgNVBAUTKEU3NzA1MDg5MUJGODkyNzQzMjY1MEI3MDZGMkJGRURE OTJBMTExQzkwHhcNMjQxMTIxMDI1ODM2WhcNMjQxMTI4MDI1ODM2WjAYMRYwFAYD VQQDEw02NzNlYTFkYy1jOTVmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0LSHBYmTBbVxUy2b3JQM+FfTgUA6YufELzr3eLnVnJWpW6PCdeilChq2KpU6 LiTmGoUp633moD2xLEE6sKAIVwJl2Dah22Xg3VS2K0GPU0ifduwJENlG0s9TxDWo AVnO+BKWfxrtlTCBB2KK6Msy/23q9j6R1KOV/3PhjydPqWhb4NjextaSSr9BaTQJ 2mv0gwOZpoVdr9zbPX36Bwi4uFd0SCo6/jAzbefqBe/Ce1uQ+0YL52LgKYBjEr00 mNOinmhirWXQFr140au3Q6kUy+xqJe2PJkH77QI3t/a1jjRUhENPv0oykc4tqcDp QObW2JDmBqv/PTjgHxPiJTK3CQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFD8ClK3D hpBN+OdsPmLKSKVwre37MB8GA1UdIwQYMBaAFOdwUIkb+JJ0MmULcG8r/t2SoRHJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGOEFERi9DREY0MDVDMkYw NjgxMUVEQkI5NzhFMkRDNEY5QUUwMi81M0JRaVJ2NGtuUXlaUXR3Ynl2LTNaS2hF Y2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzUzQlFpUnY0a25ReVpRdHdieXYtM1pLaEVjay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG OEFERi9DREY0MDVDMkYwNjgxMUVEQkI5NzhFMkRDNEY5QUUwMi81M0JRaVJ2NGtu UXlaUXR3Ynl2LTNaS2hFY2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB3wD0iaQhAP4/BkcQq4JK1afDPO0WfWEVPl/SN/IXCBjDXVvPWiO4Q Y7Q2QrHnPbXghvNZfiR6hXhvVr8Jc/XcZEri+XUZmNfaizxaOPxCKxizxTOYcdYf tW5nHeIGLRMwYK88UkcJz+cNL6IXest8W6BBNEG1hRcOEItJjZaZXfhXP/4JGQ3y EGQVs0uSzwgqfCzHBVSjVD5SZSWFxuEl9sO3jaXAh+3TEN8GI+3VRmO/oeLgQKaw hEzCeSTmRiNfi3JszVfw9J2oDQzknvVvu2+TT153kqa1AZ+1mjERR5l5kGjicn4Y NYvs8q19orxakbaNWlNuoShSZzA/dbLQ -----END CERTIFICATE-----Generated at Thu Nov 21 05:06:09 2024 by rpki-client on console-fra.rpki-client.org