$ rpki-client -vvf rpki.apnic.net/member_repository/A91FA69F/BD859F9633A311EFA5B49B23C4F9AE02/suiO3TYbzGGUyX9oxHJRgP8C9yQ.mft File: suiO3TYbzGGUyX9oxHJRgP8C9yQ.mft (raw, json) Hash identifier: pq7cvY9TOKmDCTFdr6Tj60gNZw83kOYgzA54QdYu7WI= Subject key identifier: 9A:EC:95:E0:7A:E9:E3:06:5F:EE:FD:7F:EC:E2:6F:18:94:90:F5:92 Authority key identifier: B2:E8:8E:DD:36:1B:CC:61:94:C9:7F:68:C4:72:51:80:FF:02:F7:24 Certificate issuer: /CN=A91FA69F/serialNumber=B2E88EDD361BCC6194C97F68C4725180FF02F724 Certificate serial: 4E Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/suiO3TYbzGGUyX9oxHJRgP8C9yQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FA69F/BD859F9633A311EFA5B49B23C4F9AE02/suiO3TYbzGGUyX9oxHJRgP8C9yQ.mft Manifest number: 4D Signing time: Thu 21 Nov 2024 05:20:06 +0000 Manifest this update: Thu 21 Nov 2024 05:20:06 +0000 Manifest next update: Thu 28 Nov 2024 05:20:06 +0000 Files and hashes: 1: suiO3TYbzGGUyX9oxHJRgP8C9yQ.crl (hash: KKozFK8qfG36TCWrYCzms9edimU5fhdh66sd32hKLgs=) 2: 0D38E31833A411EF82E92524C4F9AE02.roa (hash: lY5HgP2b+DiZvOALHw+tr2ZxBjEGaK357GqXMmb0Brk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FA69F/BD859F9633A311EFA5B49B23C4F9AE02/suiO3TYbzGGUyX9oxHJRgP8C9yQ.crl rsync://rpki.apnic.net/member_repository/A91FA69F/BD859F9633A311EFA5B49B23C4F9AE02/suiO3TYbzGGUyX9oxHJRgP8C9yQ.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/suiO3TYbzGGUyX9oxHJRgP8C9yQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 02:50:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 78 (0x4e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FA69F/serialNumber=B2E88EDD361BCC6194C97F68C4725180FF02F724 Validity Not Before: Nov 21 05:20:06 2024 GMT Not After : Nov 28 05:20:06 2024 GMT Subject: CN=673ec306-bdbe Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:35:26:d7:cd:f1:48:f3:89:16:40:20:4e:82: 40:d0:0e:2f:a4:d8:b9:0a:cf:d9:94:60:8f:27:a4: 6a:e9:76:9d:7d:12:1e:ec:f4:98:00:b6:cc:ae:d0: 20:39:97:8c:2b:70:8a:bc:11:f4:a3:4a:68:8f:9e: 89:d5:8f:c7:1f:54:58:6a:51:a5:87:e3:81:16:7c: c6:76:c8:6a:42:65:d0:b3:2a:6e:4e:07:10:91:58: 3e:c8:12:10:aa:2a:77:a3:9f:e9:b2:8f:c7:22:03: 1b:2f:15:4e:84:4b:84:c8:87:2e:51:ff:ca:39:eb: 2f:c2:43:be:16:2b:bb:f1:b9:ee:0c:03:9c:e1:6d: b2:22:a5:7f:20:14:59:9d:c4:9e:df:f2:71:48:08: c8:ae:36:c3:0b:ed:16:0e:5c:10:71:5f:87:fc:62: f2:d5:90:67:f5:3f:45:d7:42:57:cc:52:d3:67:76: cc:e8:ac:02:dc:7f:e1:88:bd:8b:45:b1:90:8d:5a: d4:80:af:48:f8:f7:b7:2a:c2:68:f2:14:58:d2:4e: 1e:94:84:b0:d4:37:23:28:9c:bc:da:f4:d6:f8:57: 15:47:03:b5:e6:d3:34:92:ea:67:7f:0e:8f:57:37: f8:c7:67:fa:4c:36:ac:43:e5:fc:6d:df:4a:27:97: 27:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:EC:95:E0:7A:E9:E3:06:5F:EE:FD:7F:EC:E2:6F:18:94:90:F5:92 X509v3 Authority Key Identifier: keyid:B2:E8:8E:DD:36:1B:CC:61:94:C9:7F:68:C4:72:51:80:FF:02:F7:24 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FA69F/BD859F9633A311EFA5B49B23C4F9AE02/suiO3TYbzGGUyX9oxHJRgP8C9yQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/suiO3TYbzGGUyX9oxHJRgP8C9yQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FA69F/BD859F9633A311EFA5B49B23C4F9AE02/suiO3TYbzGGUyX9oxHJRgP8C9yQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 39:68:3d:76:fc:85:96:d0:af:81:f9:96:d2:dc:78:1d:47:b4: ea:53:3d:33:0e:06:e9:8f:f7:ab:61:20:a4:99:8b:97:7d:00: 80:a4:b5:61:fd:a1:e1:fa:e5:35:7b:5e:f8:72:00:7d:81:ab: 3f:aa:37:e9:35:cd:e0:a8:ca:fc:2b:94:d1:44:a7:9f:5e:cf: 22:33:07:26:34:d2:29:13:32:0f:df:ac:c0:dc:19:cd:fe:0e: 45:c7:c2:1a:7e:99:c9:24:96:84:0e:d9:64:58:a3:56:08:1e: 1e:60:1a:0d:57:f1:70:af:ea:b3:de:ec:db:c1:ae:23:4a:71: ee:f3:0d:f8:b2:24:65:b2:88:c5:cc:09:b7:25:aa:4f:f7:3f: a7:b7:ec:09:90:76:9d:64:ad:96:41:ae:e7:c3:4c:86:23:89: bc:c8:ef:3a:e6:fc:0f:ae:df:e3:9f:c2:14:d2:82:47:1c:85: fa:58:da:9f:75:8b:d9:bd:57:94:2d:c9:fd:5b:46:c2:4a:0c: 27:e4:b1:d1:c2:cf:34:3c:2a:41:bf:74:14:ef:d9:a5:5a:00: 9f:e3:47:d6:b7:55:3b:9f:7b:9b:38:d3:4a:8c:b2:fc:d7:10: 70:54:6d:90:51:e1:61:5f:48:d2:99:36:86:b0:91:46:70:0d: 95:ba:11:cf -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBTjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG QTY5RjExMC8GA1UEBRMoQjJFODhFREQzNjFCQ0M2MTk0Qzk3RjY4QzQ3MjUxODBG RjAyRjcyNDAeFw0yNDExMjEwNTIwMDZaFw0yNDExMjgwNTIwMDZaMBgxFjAUBgNV BAMTDTY3M2VjMzA2LWJkYmUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCvNSbXzfFI84kWQCBOgkDQDi+k2LkKz9mUYI8npGrpdp19Eh7s9JgAtsyu0CA5 l4wrcIq8EfSjSmiPnonVj8cfVFhqUaWH44EWfMZ2yGpCZdCzKm5OBxCRWD7IEhCq Knejn+myj8ciAxsvFU6ES4TIhy5R/8o56y/CQ74WK7vxue4MA5zhbbIipX8gFFmd xJ7f8nFICMiuNsML7RYOXBBxX4f8YvLVkGf1P0XXQlfMUtNndszorALcf+GIvYtF sZCNWtSAr0j497cqwmjyFFjSTh6UhLDUNyMonLza9Nb4VxVHA7Xm0zSS6md/Do9X N/jHZ/pMNqxD5fxt30onlyeNAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUmuyV4Hrp 4wZf7v1/7OJvGJSQ9ZIwHwYDVR0jBBgwFoAUsuiO3TYbzGGUyX9oxHJRgP8C9yQw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUZBNjlGL0JEODU5Rjk2MzNB MzExRUZBNUI0OUIyM0M0RjlBRTAyL3N1aU8zVFliekdHVXlYOW94SEpSZ1A4Qzl5 US5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvc3VpTzNUWWJ6R0dVeVg5b3hISlJnUDhDOXlRLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUZB NjlGL0JEODU5Rjk2MzNBMzExRUZBNUI0OUIyM0M0RjlBRTAyL3N1aU8zVFliekdH VXlYOW94SEpSZ1A4Qzl5US5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBADloPXb8hZbQr4H5ltLceB1HtOpTPTMOBumP96thIKSZi5d9AICktWH9 oeH65TV7XvhyAH2Bqz+qN+k1zeCoyvwrlNFEp59ezyIzByY00ikTMg/frMDcGc3+ DkXHwhp+mckkloQO2WRYo1YIHh5gGg1X8XCv6rPe7NvBriNKce7zDfiyJGWyiMXM Cbclqk/3P6e37AmQdp1krZZBrufDTIYjibzI7zrm/A+u3+OfwhTSgkcchfpY2p91 i9m9V5Qtyf1bRsJKDCfksdHCzzQ8KkG/dBTv2aVaAJ/jR9a3VTufe5s400qMsvzX EHBUbZBR4WFfSNKZNoawkUZwDZW6Ec8= -----END CERTIFICATE-----Generated at Thu Nov 21 06:50:53 2024 by rpki-client on console-fra.rpki-client.org