$ rpki-client -vvf rpki.apnic.net/member_repository/A91F8E9B/69EB42C0960E11ED9A4CEA65C4F9AE02/RGeSQ5JYGCp6Hk2kssBvrSqu5Lk.mft File: RGeSQ5JYGCp6Hk2kssBvrSqu5Lk.mft (raw, json) Hash identifier: GcabV/uRW+CLLqiNa+h44YU5dvorLszcxPVq5jw4+OE= Subject key identifier: 76:DE:9C:9C:2D:5D:2D:69:35:48:93:F3:07:3D:A5:9A:9E:6A:75:8F Authority key identifier: 44:67:92:43:92:58:18:2A:7A:1E:4D:A4:B2:C0:6F:AD:2A:AE:E4:B9 Certificate issuer: /CN=A91F8E9B/serialNumber=446792439258182A7A1E4DA4B2C06FAD2AAEE4B9 Certificate serial: 016C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RGeSQ5JYGCp6Hk2kssBvrSqu5Lk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F8E9B/69EB42C0960E11ED9A4CEA65C4F9AE02/RGeSQ5JYGCp6Hk2kssBvrSqu5Lk.mft Manifest number: 015F Signing time: Thu 21 Nov 2024 02:26:49 +0000 Manifest this update: Thu 21 Nov 2024 02:26:49 +0000 Manifest next update: Thu 28 Nov 2024 02:26:49 +0000 Files and hashes: 1: RGeSQ5JYGCp6Hk2kssBvrSqu5Lk.crl (hash: TCm4qYbFzdrExnc7S0W3MU+OJqDF2vYwbnVmreATtwM=) 2: 6549AD3EAC1011ED8592693FC4F9AE02.roa (hash: ksp6qBpZ5kB0EysEaPobcR9QCXbiquNMVXrarPKPN4A=) 3: 64B2DE72AC1011ED8592693FC4F9AE02.roa (hash: xgTk5QLU2Vm82iRKTqkbO5V1pNHv+/+0qFa5a4D2Fm4=) 4: 665497A2AC1011ED8592693FC4F9AE02.roa (hash: 5cknTz/azpX9sHHI7VxRFMrA+eqmREBfLXzZWKlWnBA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F8E9B/69EB42C0960E11ED9A4CEA65C4F9AE02/RGeSQ5JYGCp6Hk2kssBvrSqu5Lk.crl rsync://rpki.apnic.net/member_repository/A91F8E9B/69EB42C0960E11ED9A4CEA65C4F9AE02/RGeSQ5JYGCp6Hk2kssBvrSqu5Lk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RGeSQ5JYGCp6Hk2kssBvrSqu5Lk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:33:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 364 (0x16c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F8E9B/serialNumber=446792439258182A7A1E4DA4B2C06FAD2AAEE4B9 Validity Not Before: Nov 21 02:26:49 2024 GMT Not After : Nov 28 02:26:49 2024 GMT Subject: CN=673e9a69-b150 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:c4:5a:e7:35:eb:bd:ee:c6:7c:f1:aa:eb:b4: 9a:04:0e:44:9b:55:24:95:67:91:02:ed:1a:60:16: 17:ad:36:42:53:da:eb:01:2c:b0:ab:96:fa:ec:57: 47:37:87:87:d2:bd:f4:62:e5:24:af:df:5d:48:c0: 4e:64:0c:a4:63:a9:8a:e3:dd:24:11:e3:54:14:29: f6:33:76:08:5f:cb:d3:35:bf:b4:59:48:0f:6e:2c: ac:9d:e1:26:67:cd:f6:23:4f:d3:71:74:16:67:1b: 11:68:4a:6d:ae:68:32:47:bb:83:4e:6b:ea:8e:2d: 28:3b:22:f0:da:d2:f8:5d:6a:8e:9a:25:99:4f:b3: a8:a7:52:bf:40:f1:71:16:2e:d3:7f:85:4e:09:54: 0d:b9:9b:db:ad:cb:88:fd:da:c0:d9:e2:80:fc:a8: 6f:0d:9c:ae:b3:a3:30:66:50:33:60:4a:f9:fc:b4: a3:1b:fe:fa:75:f8:c6:89:af:48:8d:d2:75:18:82: b9:9c:66:ab:ee:a3:ba:7e:44:0d:01:81:73:1e:65: d8:57:bb:26:fc:20:93:af:3d:b9:b3:09:6b:84:b3: 7f:58:2e:13:5c:18:4e:b9:23:9d:9d:c5:c2:e0:33: ff:1c:bc:cc:fb:4b:86:87:c8:50:09:80:ee:58:03: f1:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:DE:9C:9C:2D:5D:2D:69:35:48:93:F3:07:3D:A5:9A:9E:6A:75:8F X509v3 Authority Key Identifier: keyid:44:67:92:43:92:58:18:2A:7A:1E:4D:A4:B2:C0:6F:AD:2A:AE:E4:B9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F8E9B/69EB42C0960E11ED9A4CEA65C4F9AE02/RGeSQ5JYGCp6Hk2kssBvrSqu5Lk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RGeSQ5JYGCp6Hk2kssBvrSqu5Lk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F8E9B/69EB42C0960E11ED9A4CEA65C4F9AE02/RGeSQ5JYGCp6Hk2kssBvrSqu5Lk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6f:a5:25:2a:0f:8f:0a:fb:d6:d4:94:98:fa:c1:b1:a1:00:cf: 5e:95:5b:6c:8c:30:4c:71:b0:8a:70:60:73:fb:da:df:3d:41: 45:bd:6e:90:51:1f:a6:10:e8:a9:98:d1:cb:2d:a0:23:06:ae: 60:51:9c:21:3a:28:46:9c:a4:05:ff:bd:ea:37:29:54:dc:da: 98:19:b6:8e:c0:17:a5:18:fb:9e:cb:d8:1f:57:b5:ce:ce:73: c0:f5:4c:76:0d:d5:26:bd:31:cb:15:13:1f:54:6c:bd:44:58: bd:97:e8:da:20:0f:80:4c:5c:6e:e7:f1:f9:0d:69:c3:79:29: 99:c9:7d:78:6e:49:df:0c:4d:8f:70:39:c8:89:f2:fd:02:e5: 8d:0b:85:58:99:45:b3:64:36:40:1c:4f:b8:b0:d1:54:bf:ab: 66:21:f1:46:aa:8f:b5:e6:a9:85:88:1a:68:63:c8:0c:c1:bc: b2:0a:a8:e9:7b:ca:fa:dc:45:97:84:1a:09:14:1d:6a:54:3f: cc:a7:62:78:19:03:e5:6b:11:58:5a:8c:b8:fa:7e:e5:4d:85: 82:95:21:7a:b5:04:ee:9f:dc:1b:45:5b:ef:ef:27:55:b3:25: 13:99:4f:f6:81:9b:1a:3c:db:ee:32:2f:6e:a9:68:81:9d:19: 16:dd:9e:1f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAWwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjhFOUIxMTAvBgNVBAUTKDQ0Njc5MjQzOTI1ODE4MkE3QTFFNERBNEIyQzA2RkFE MkFBRUU0QjkwHhcNMjQxMTIxMDIyNjQ5WhcNMjQxMTI4MDIyNjQ5WjAYMRYwFAYD VQQDEw02NzNlOWE2OS1iMTUwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuMRa5zXrve7GfPGq67SaBA5Em1UklWeRAu0aYBYXrTZCU9rrASywq5b67FdH N4eH0r30YuUkr99dSMBOZAykY6mK490kEeNUFCn2M3YIX8vTNb+0WUgPbiysneEm Z832I0/TcXQWZxsRaEptrmgyR7uDTmvqji0oOyLw2tL4XWqOmiWZT7Oop1K/QPFx Fi7Tf4VOCVQNuZvbrcuI/drA2eKA/KhvDZyus6MwZlAzYEr5/LSjG/76dfjGia9I jdJ1GIK5nGar7qO6fkQNAYFzHmXYV7sm/CCTrz25swlrhLN/WC4TXBhOuSOdncXC 4DP/HLzM+0uGh8hQCYDuWAPxCwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHbenJwt XS1pNUiT8wc9pZqeanWPMB8GA1UdIwQYMBaAFERnkkOSWBgqeh5NpLLAb60qruS5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGOEU5Qi82OUVCNDJDMDk2 MEUxMUVEOUE0Q0VBNjVDNEY5QUUwMi9SR2VTUTVKWUdDcDZIazJrc3NCdnJTcXU1 TGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1JHZVNRNUpZR0NwNkhrMmtzc0J2clNxdTVMay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG OEU5Qi82OUVCNDJDMDk2MEUxMUVEOUE0Q0VBNjVDNEY5QUUwMi9SR2VTUTVKWUdD cDZIazJrc3NCdnJTcXU1TGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBvpSUqD48K+9bUlJj6wbGhAM9elVtsjDBMcbCKcGBz+9rfPUFFvW6Q UR+mEOipmNHLLaAjBq5gUZwhOihGnKQF/73qNylU3NqYGbaOwBelGPuey9gfV7XO znPA9Ux2DdUmvTHLFRMfVGy9RFi9l+jaIA+ATFxu5/H5DWnDeSmZyX14bknfDE2P cDnIifL9AuWNC4VYmUWzZDZAHE+4sNFUv6tmIfFGqo+15qmFiBpoY8gMwbyyCqjp e8r63EWXhBoJFB1qVD/Mp2J4GQPlaxFYWoy4+n7lTYWClSF6tQTun9wbRVvv7ydV syUTmU/2gZsaPNvuMi9uqWiBnRkW3Z4f -----END CERTIFICATE-----Generated at Thu Nov 21 03:12:09 2024 by rpki-client on console-fra.rpki-client.org