$ rpki-client -vvf rpki.apnic.net/member_repository/A91FA64C/E1A54626F79811ED96777124C4F9AE02/VmpvNEQKySle2KAC1QSfV0zxbIg.mft File: VmpvNEQKySle2KAC1QSfV0zxbIg.mft (raw, json) Hash identifier: gQgxoyaDkrH6xth1TJfzW25FxDuW67jpDjZEUzgcUo0= Subject key identifier: 2A:31:42:36:4D:95:8C:DB:31:88:4E:7B:F0:96:5B:51:62:4F:FE:9E Authority key identifier: 56:6A:6F:34:44:0A:C9:29:5E:D8:A0:02:D5:04:9F:57:4C:F1:6C:88 Certificate issuer: /CN=A91FA64C/serialNumber=566A6F34440AC9295ED8A002D5049F574CF16C88 Certificate serial: 012A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VmpvNEQKySle2KAC1QSfV0zxbIg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FA64C/E1A54626F79811ED96777124C4F9AE02/VmpvNEQKySle2KAC1QSfV0zxbIg.mft Manifest number: 0125 Signing time: Sat 23 Nov 2024 02:58:34 +0000 Manifest this update: Sat 23 Nov 2024 02:58:34 +0000 Manifest next update: Sat 30 Nov 2024 02:58:34 +0000 Files and hashes: 1: VmpvNEQKySle2KAC1QSfV0zxbIg.crl (hash: 0+Md8U7NRkQw/lsxTY8a9ie41dPktcbKJTtXaYDKny8=) 2: FFCE072E2B8111EE9BDEC079C4F9AE02.roa (hash: rtZPUDV9v5M5UjLf6mnKGmlSZjqBzQjmkl2wyx5PPSc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FA64C/E1A54626F79811ED96777124C4F9AE02/VmpvNEQKySle2KAC1QSfV0zxbIg.crl rsync://rpki.apnic.net/member_repository/A91FA64C/E1A54626F79811ED96777124C4F9AE02/VmpvNEQKySle2KAC1QSfV0zxbIg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VmpvNEQKySle2KAC1QSfV0zxbIg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 298 (0x12a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FA64C/serialNumber=566A6F34440AC9295ED8A002D5049F574CF16C88 Validity Not Before: Nov 23 02:58:34 2024 GMT Not After : Nov 30 02:58:34 2024 GMT Subject: CN=674144da-f38e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:02:49:93:88:00:38:f6:9c:61:2f:10:a5:af: 0f:27:11:42:c1:74:b3:8c:db:c6:a6:51:b3:72:19: 67:49:b5:be:65:70:47:1b:1d:56:64:9d:1e:ba:59: b9:52:cd:a4:d0:02:5c:ca:e9:d8:b5:46:04:86:04: 5e:5c:f5:06:4f:71:1e:14:32:08:b7:ce:20:58:02: 71:38:d2:c6:70:48:7f:3e:af:3e:0a:c7:17:ef:af: b3:d6:90:1b:ae:4f:2d:ba:5c:e3:93:63:df:d5:5a: 83:f9:c4:23:27:b2:46:8d:32:7d:f2:42:1b:48:80: c4:aa:79:06:a1:af:d3:75:69:20:10:ed:cc:dc:3e: 93:d1:00:dd:cd:e6:24:40:d5:1d:7a:d8:de:58:45: 81:ea:1d:73:fc:ca:76:e4:fe:55:56:9c:c3:d3:bd: 48:50:39:d2:24:3b:c3:20:53:9b:3e:37:59:5c:3b: 4a:e4:b9:20:a3:a9:32:84:21:5d:66:76:72:16:be: 56:88:2c:92:87:30:a9:df:80:e1:11:77:49:19:ea: 20:4c:e0:69:ae:f8:2a:78:be:53:cb:85:9f:fa:1e: 6c:3f:39:7b:e7:ea:aa:6c:33:66:85:a9:d2:32:27: 93:c1:a7:7d:01:da:ac:82:b2:ee:7d:d2:35:b9:53: fa:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:31:42:36:4D:95:8C:DB:31:88:4E:7B:F0:96:5B:51:62:4F:FE:9E X509v3 Authority Key Identifier: keyid:56:6A:6F:34:44:0A:C9:29:5E:D8:A0:02:D5:04:9F:57:4C:F1:6C:88 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FA64C/E1A54626F79811ED96777124C4F9AE02/VmpvNEQKySle2KAC1QSfV0zxbIg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VmpvNEQKySle2KAC1QSfV0zxbIg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FA64C/E1A54626F79811ED96777124C4F9AE02/VmpvNEQKySle2KAC1QSfV0zxbIg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 60:2a:40:e9:47:6e:3a:eb:20:6a:67:de:d8:b5:08:56:28:de: 75:a8:58:3e:9b:ad:89:af:80:23:da:49:39:de:b4:43:f7:63: d9:e7:99:06:95:01:b6:03:27:48:27:0c:88:78:9f:39:b7:bc: a0:74:06:95:46:8c:9f:93:5f:14:10:f4:58:37:8f:a7:f3:90: 28:9a:77:14:f0:29:06:3e:17:70:af:eb:61:77:44:c2:30:ce: 04:e8:4d:dd:bd:a9:eb:56:d9:e7:5a:11:89:9c:2a:c8:c4:80: c6:9f:63:41:72:41:14:45:52:cd:05:16:02:74:56:59:cb:89: 79:05:4c:68:8e:16:fd:d2:89:ab:cb:21:4c:9e:8b:41:16:29: 9f:14:e6:f7:e5:f6:d7:ff:c2:12:bf:cc:84:f4:82:45:c3:a6: ce:0c:b9:f0:ba:12:4a:fb:be:31:e4:95:e5:82:d9:2a:9d:b3: 19:3a:70:31:bb:a4:c2:35:e6:c3:e2:5c:8c:0f:52:1d:f9:0f: a2:97:bd:0a:fc:57:7f:d8:17:97:43:4b:9e:1c:c5:ec:19:2d: 48:bf:8e:41:9e:df:63:16:9d:a1:f5:e8:07:52:e8:2e:e9:83: 09:2f:8d:72:77:40:07:c7:86:e0:c4:aa:f0:fc:fb:3e:7c:2a: 5c:1c:8c:ea -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICASowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkE2NEMxMTAvBgNVBAUTKDU2NkE2RjM0NDQwQUM5Mjk1RUQ4QTAwMkQ1MDQ5RjU3 NENGMTZDODgwHhcNMjQxMTIzMDI1ODM0WhcNMjQxMTMwMDI1ODM0WjAYMRYwFAYD VQQDEw02NzQxNDRkYS1mMzhlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4gJJk4gAOPacYS8Qpa8PJxFCwXSzjNvGplGzchlnSbW+ZXBHGx1WZJ0eulm5 Us2k0AJcyunYtUYEhgReXPUGT3EeFDIIt84gWAJxONLGcEh/Pq8+CscX76+z1pAb rk8tulzjk2Pf1VqD+cQjJ7JGjTJ98kIbSIDEqnkGoa/TdWkgEO3M3D6T0QDdzeYk QNUdetjeWEWB6h1z/Mp25P5VVpzD071IUDnSJDvDIFObPjdZXDtK5Lkgo6kyhCFd ZnZyFr5WiCyShzCp34DhEXdJGeogTOBprvgqeL5Ty4Wf+h5sPzl75+qqbDNmhanS MieTwad9AdqsgrLufdI1uVP6wwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCoxQjZN lYzbMYhOe/CWW1FiT/6eMB8GA1UdIwQYMBaAFFZqbzRECskpXtigAtUEn1dM8WyI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQTY0Qy9FMUE1NDYyNkY3 OTgxMUVEOTY3NzcxMjRDNEY5QUUwMi9WbXB2TkVRS3lTbGUyS0FDMVFTZlYwenhi SWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1ZtcHZORVFLeVNsZTJLQUMxUVNmVjB6eGJJZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QTY0Qy9FMUE1NDYyNkY3OTgxMUVEOTY3NzcxMjRDNEY5QUUwMi9WbXB2TkVRS3lT bGUyS0FDMVFTZlYwenhiSWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBgKkDpR2466yBqZ97YtQhWKN51qFg+m62Jr4Aj2kk53rRD92PZ55kG lQG2AydIJwyIeJ85t7ygdAaVRoyfk18UEPRYN4+n85AomncU8CkGPhdwr+thd0TC MM4E6E3dvanrVtnnWhGJnCrIxIDGn2NBckEURVLNBRYCdFZZy4l5BUxojhb90omr yyFMnotBFimfFOb35fbX/8ISv8yE9IJFw6bODLnwuhJK+74x5JXlgtkqnbMZOnAx u6TCNebD4lyMD1Id+Q+il70K/Fd/2BeXQ0ueHMXsGS1Iv45Bnt9jFp2h9egHUugu 6YMJL41yd0AHx4bgxKrw/Ps+fCpcHIzq -----END CERTIFICATE-----Generated at Sat Nov 23 05:03:01 2024 by rpki-client on console-fra.rpki-client.org