$ rpki-client -vvf rpki.apnic.net/member_repository/A91FAED9/6A765AAA45DC11ECA8A3146DC4F9AE02/CHspwfvXREICrgAqSXEn_WbyStk.mft File: CHspwfvXREICrgAqSXEn_WbyStk.mft (raw, json) Hash identifier: qfHRBt5GScIbwYeS3AagWsVbhgd3PBi0VooFGYbaIcc= Subject key identifier: 7E:FA:2E:C1:10:BC:BC:0E:6A:16:E4:E8:59:8B:4F:2D:F8:AD:B1:5B Authority key identifier: 08:7B:29:C1:FB:D7:44:42:02:AE:00:2A:49:71:27:FD:66:F2:4A:D9 Certificate issuer: /CN=A91FAED9/serialNumber=087B29C1FBD7444202AE002A497127FD66F24AD9 Certificate serial: 0418 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CHspwfvXREICrgAqSXEn_WbyStk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FAED9/6A765AAA45DC11ECA8A3146DC4F9AE02/CHspwfvXREICrgAqSXEn_WbyStk.mft Manifest number: 0414 Signing time: Fri 22 Nov 2024 23:56:48 +0000 Manifest this update: Fri 22 Nov 2024 23:56:47 +0000 Manifest next update: Fri 29 Nov 2024 23:56:47 +0000 Files and hashes: 1: CHspwfvXREICrgAqSXEn_WbyStk.crl (hash: kq8j7SpJvGkhXK5EHLbHxsv0oyKwHnRW3MP/kPgJxUc=) 2: D3C965FA45F611EC9FB3BB49C4F9AE02.roa (hash: JQcDPvGf5Ge/ehbUfKvSdEVu20oeVzlrwDyvsIfGmBg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FAED9/6A765AAA45DC11ECA8A3146DC4F9AE02/CHspwfvXREICrgAqSXEn_WbyStk.crl rsync://rpki.apnic.net/member_repository/A91FAED9/6A765AAA45DC11ECA8A3146DC4F9AE02/CHspwfvXREICrgAqSXEn_WbyStk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CHspwfvXREICrgAqSXEn_WbyStk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1048 (0x418) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FAED9/serialNumber=087B29C1FBD7444202AE002A497127FD66F24AD9 Validity Not Before: Nov 22 23:56:47 2024 GMT Not After : Nov 29 23:56:47 2024 GMT Subject: CN=67411a40-3154 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:07:60:47:5f:de:ed:30:f5:e4:10:f0:a1:41: a7:04:e6:7c:30:83:ab:25:ef:f2:5b:96:6e:d6:24: 33:87:6e:7c:87:8b:15:52:d2:2f:76:54:62:8f:16: bf:bd:e7:d7:ff:75:c5:08:98:9b:d2:f9:bf:cd:bf: fd:6b:5d:e3:dd:f1:14:4c:8a:a9:e8:26:8e:4a:32: 74:c0:3e:f3:46:f1:a3:67:55:1c:da:8e:8c:f5:0e: 36:3b:da:5d:92:c7:94:f9:53:3b:79:64:54:19:12: 50:c8:2a:50:0a:f4:ca:26:9c:17:ea:6c:74:48:ed: 0c:2c:5d:49:42:d3:d5:7b:2a:04:a0:6a:d6:af:a1: 17:0a:ab:e7:5b:1e:6e:b7:bb:79:ab:ab:62:48:e3: 08:7c:74:65:c9:4d:29:8b:e3:da:d4:2f:b8:15:64: 19:80:f0:1f:1e:85:f6:22:ce:fd:d2:97:88:12:8e: 76:fd:47:b0:5f:cf:fb:3c:db:1e:47:26:7a:68:73: 82:90:02:56:1e:17:1a:ac:b8:3d:cb:67:9f:f3:77: 5d:97:e9:29:bf:e6:a6:f8:3a:ca:dc:3b:a1:54:e4: 81:15:29:dd:82:db:96:89:01:bd:f5:28:90:0c:26: 0a:1b:c0:32:7e:f0:c3:6f:3f:e8:ab:5f:ed:56:f2: bf:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:FA:2E:C1:10:BC:BC:0E:6A:16:E4:E8:59:8B:4F:2D:F8:AD:B1:5B X509v3 Authority Key Identifier: keyid:08:7B:29:C1:FB:D7:44:42:02:AE:00:2A:49:71:27:FD:66:F2:4A:D9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FAED9/6A765AAA45DC11ECA8A3146DC4F9AE02/CHspwfvXREICrgAqSXEn_WbyStk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CHspwfvXREICrgAqSXEn_WbyStk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FAED9/6A765AAA45DC11ECA8A3146DC4F9AE02/CHspwfvXREICrgAqSXEn_WbyStk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 50:20:b4:4e:bf:77:a1:95:a3:d7:8b:8a:8b:25:5b:f6:85:30: 14:55:a6:75:16:c8:93:50:3a:96:8f:2f:96:c6:4d:c9:77:2a: 19:50:c9:6c:73:e3:4a:99:e0:f0:cc:df:8a:a3:89:4a:3b:66: eb:d3:b1:3a:5a:87:1a:09:d4:9d:2d:af:39:9e:b1:71:7f:ad: 3b:5f:9c:8b:aa:2e:00:f9:33:05:44:f1:a7:7d:47:50:8f:69: c7:16:a4:37:f7:9f:0b:84:a8:de:45:1c:01:d1:bd:4f:a6:2e: f8:6d:d2:97:db:d0:27:79:05:73:4e:c7:05:63:1e:90:c2:0a: f7:7c:84:e0:97:7b:ea:0b:27:de:a6:64:be:a2:4e:ef:7e:e0: 9f:79:0d:96:93:49:e0:20:44:29:d4:d9:88:f3:ea:bc:d7:91: 80:ac:f0:fc:a6:c9:9f:c4:f9:1d:a2:66:2f:b9:2d:57:b2:ba: 45:5a:40:b5:21:d5:ef:7e:a4:21:7e:b2:60:b8:2b:31:41:09: c6:d2:38:1e:2f:30:94:fe:24:f0:b5:13:64:6d:84:2c:f6:41: 6c:45:71:1f:57:4d:f2:c3:15:0f:37:ca:b8:32:be:f7:4f:bd: 83:a7:ea:f5:c7:7e:3c:aa:8b:53:4a:e5:d3:72:1c:72:ab:c5: d6:e3:b0:0f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBBgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkFFRDkxMTAvBgNVBAUTKDA4N0IyOUMxRkJENzQ0NDIwMkFFMDAyQTQ5NzEyN0ZE NjZGMjRBRDkwHhcNMjQxMTIyMjM1NjQ3WhcNMjQxMTI5MjM1NjQ3WjAYMRYwFAYD VQQDEw02NzQxMWE0MC0zMTU0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxwdgR1/e7TD15BDwoUGnBOZ8MIOrJe/yW5Zu1iQzh258h4sVUtIvdlRijxa/ vefX/3XFCJib0vm/zb/9a13j3fEUTIqp6CaOSjJ0wD7zRvGjZ1Uc2o6M9Q42O9pd kseU+VM7eWRUGRJQyCpQCvTKJpwX6mx0SO0MLF1JQtPVeyoEoGrWr6EXCqvnWx5u t7t5q6tiSOMIfHRlyU0pi+Pa1C+4FWQZgPAfHoX2Is790peIEo52/UewX8/7PNse RyZ6aHOCkAJWHhcarLg9y2ef83ddl+kpv+am+DrK3DuhVOSBFSndgtuWiQG99SiQ DCYKG8AyfvDDbz/oq1/tVvK/+wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFH76LsEQ vLwOahbk6FmLTy34rbFbMB8GA1UdIwQYMBaAFAh7KcH710RCAq4AKklxJ/1m8krZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQUVEOS82QTc2NUFBQTQ1 REMxMUVDQThBMzE0NkRDNEY5QUUwMi9DSHNwd2Z2WFJFSUNyZ0FxU1hFbl9XYnlT dGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NIc3B3ZnZYUkVJQ3JnQXFTWEVuX1dieVN0ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QUVEOS82QTc2NUFBQTQ1REMxMUVDQThBMzE0NkRDNEY5QUUwMi9DSHNwd2Z2WFJF SUNyZ0FxU1hFbl9XYnlTdGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBQILROv3ehlaPXi4qLJVv2hTAUVaZ1FsiTUDqWjy+Wxk3JdyoZUMls c+NKmeDwzN+Ko4lKO2br07E6WocaCdSdLa85nrFxf607X5yLqi4A+TMFRPGnfUdQ j2nHFqQ3958LhKjeRRwB0b1Ppi74bdKX29AneQVzTscFYx6Qwgr3fITgl3vqCyfe pmS+ok7vfuCfeQ2Wk0ngIEQp1NmI8+q815GArPD8psmfxPkdomYvuS1XsrpFWkC1 IdXvfqQhfrJguCsxQQnG0jgeLzCU/iTwtRNkbYQs9kFsRXEfV03ywxUPN8q4Mr73 T72Dp+r1x348qotTSuXTchxyq8XW47AP -----END CERTIFICATE-----Generated at Sat Nov 23 00:49:39 2024 by rpki-client on console-fra.rpki-client.org