$ rpki-client -vvf rpki.apnic.net/member_repository/A91FC43D/EDB28E7EA48011E583378886C4F9AE02/rI34tAewexNnm3HFASus3eJQHnE.mft File: rI34tAewexNnm3HFASus3eJQHnE.mft (raw, json) Hash identifier: NWnrMPUdS3fpeHTx7pEtrM7BI2l6VtWctbyf8j7ZYkA= Subject key identifier: 33:98:BB:00:A1:27:AA:52:8F:06:23:F8:2A:D4:73:3C:BE:1B:0C:B3 Authority key identifier: AC:8D:F8:B4:07:B0:7B:13:67:9B:71:C5:01:2B:AC:DD:E2:50:1E:71 Certificate issuer: /CN=A91FC43D/serialNumber=AC8DF8B407B07B13679B71C5012BACDDE2501E71 Certificate serial: 2247 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rI34tAewexNnm3HFASus3eJQHnE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FC43D/EDB28E7EA48011E583378886C4F9AE02/rI34tAewexNnm3HFASus3eJQHnE.mft Manifest number: 2239 Signing time: Fri 22 Nov 2024 15:52:29 +0000 Manifest this update: Fri 22 Nov 2024 15:52:29 +0000 Manifest next update: Fri 29 Nov 2024 15:52:29 +0000 Files and hashes: 1: rI34tAewexNnm3HFASus3eJQHnE.crl (hash: 1FHW+PyiWiC4D/6HOvgteyR7vwUAykIxRyd/LuoGEls=) 2: 2D55F42CB0F611E5B464E359C4F9AE02.roa (hash: 8mIOCO6QpDE7EtPouAHKOU6jLmPWkYnpnE1kJgri2NI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FC43D/EDB28E7EA48011E583378886C4F9AE02/rI34tAewexNnm3HFASus3eJQHnE.crl rsync://rpki.apnic.net/member_repository/A91FC43D/EDB28E7EA48011E583378886C4F9AE02/rI34tAewexNnm3HFASus3eJQHnE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rI34tAewexNnm3HFASus3eJQHnE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 15:52:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8775 (0x2247) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FC43D/serialNumber=AC8DF8B407B07B13679B71C5012BACDDE2501E71 Validity Not Before: Nov 22 15:52:29 2024 GMT Not After : Nov 29 15:52:29 2024 GMT Subject: CN=6740a8bd-6a45 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f2:04:87:d8:11:e8:cb:42:8f:db:84:6f:aa:39: 25:55:bb:8e:35:3b:cf:fc:79:c6:13:d2:a3:22:9b: 4f:ad:0c:94:94:fb:94:be:e7:d7:a0:8f:7c:e1:7e: 42:3f:c2:65:51:a4:24:0d:83:b4:77:eb:3f:e4:f5: ce:b6:13:9d:29:d4:25:82:49:d0:f3:d5:f6:0c:76: 6c:06:64:18:3e:23:c0:5f:63:e0:f7:4f:ad:33:bc: 03:94:3c:bb:06:97:2a:a7:84:3c:b3:d6:2b:fd:59: 7b:7b:86:73:97:06:a5:ec:b8:d6:df:bc:04:63:ce: 17:64:79:69:29:cc:4d:98:83:3e:39:b9:74:e7:f4: 58:ca:69:37:80:0f:ab:fe:bb:f1:f9:24:4f:55:9f: 7d:50:2d:13:29:81:7a:f9:b1:2d:d6:95:71:c5:97: ab:7b:43:ff:8c:39:db:02:10:d0:91:dc:69:d9:6f: 54:a1:eb:90:c2:32:71:3d:e0:85:c6:ec:ff:5c:12: 9f:2b:4b:6e:b7:68:58:54:db:da:c6:c2:62:0f:fd: 40:9c:78:06:4a:ae:80:37:2d:6d:ab:2e:98:46:f6: 36:df:04:5d:8e:d2:47:41:14:5e:04:e4:ef:22:d1: 19:a8:2b:b5:31:a5:1e:21:39:47:0b:af:be:71:fa: ed:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:98:BB:00:A1:27:AA:52:8F:06:23:F8:2A:D4:73:3C:BE:1B:0C:B3 X509v3 Authority Key Identifier: keyid:AC:8D:F8:B4:07:B0:7B:13:67:9B:71:C5:01:2B:AC:DD:E2:50:1E:71 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FC43D/EDB28E7EA48011E583378886C4F9AE02/rI34tAewexNnm3HFASus3eJQHnE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rI34tAewexNnm3HFASus3eJQHnE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FC43D/EDB28E7EA48011E583378886C4F9AE02/rI34tAewexNnm3HFASus3eJQHnE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 89:ed:5a:95:4d:d7:b7:2d:31:73:3f:84:60:31:87:4a:50:39: ad:e4:43:a8:84:b9:95:44:5e:6f:6f:7c:80:cb:61:84:ae:20: 74:8c:71:b9:6b:55:c3:e2:af:27:4c:97:54:25:e5:62:a6:f4: f3:a0:1d:d6:62:9f:6e:a2:5b:62:49:c3:57:4f:8b:49:d9:de: 71:01:64:84:11:5d:5c:a3:c8:53:c2:7e:96:0f:3d:74:eb:8d: 55:b4:95:27:9f:46:74:2f:28:2e:1e:c3:28:f4:cd:99:e8:cc: 62:6c:40:dd:95:60:cf:bf:ef:a6:06:03:6f:e6:fd:60:61:62: 49:d9:8f:f5:11:dc:7a:57:9a:fd:bb:63:83:02:ab:f5:f5:49: 7b:3b:42:5c:8d:ea:00:8d:3d:eb:a2:8e:17:c3:34:80:c4:e7: e8:ec:55:e9:d4:96:b8:0c:3e:48:0d:86:cb:36:91:ee:77:d7: 68:68:89:12:05:1f:a6:27:32:26:7e:c1:a4:48:85:0e:2e:5e: a5:61:39:69:3a:67:98:f0:2a:a8:4b:5e:db:fe:6a:79:c4:95: 27:1b:3b:94:6d:64:c6:ea:66:18:31:3c:2c:b3:38:bb:12:b6: 1a:8e:5b:92:56:20:10:f7:86:48:d9:ac:eb:6e:5d:55:1a:9a: aa:d4:e8:93 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICIkcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkM0M0QxMTAvBgNVBAUTKEFDOERGOEI0MDdCMDdCMTM2NzlCNzFDNTAxMkJBQ0RE RTI1MDFFNzEwHhcNMjQxMTIyMTU1MjI5WhcNMjQxMTI5MTU1MjI5WjAYMRYwFAYD VQQDEw02NzQwYThiZC02YTQ1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8gSH2BHoy0KP24RvqjklVbuONTvP/HnGE9KjIptPrQyUlPuUvufXoI984X5C P8JlUaQkDYO0d+s/5PXOthOdKdQlgknQ89X2DHZsBmQYPiPAX2Pg90+tM7wDlDy7 Bpcqp4Q8s9Yr/Vl7e4Zzlwal7LjW37wEY84XZHlpKcxNmIM+Obl05/RYymk3gA+r /rvx+SRPVZ99UC0TKYF6+bEt1pVxxZere0P/jDnbAhDQkdxp2W9UoeuQwjJxPeCF xuz/XBKfK0tut2hYVNvaxsJiD/1AnHgGSq6ANy1tqy6YRvY23wRdjtJHQRReBOTv ItEZqCu1MaUeITlHC6++cfrtAwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDOYuwCh J6pSjwYj+CrUczy+GwyzMB8GA1UdIwQYMBaAFKyN+LQHsHsTZ5txxQErrN3iUB5x MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQzQzRC9FREIyOEU3RUE0 ODAxMUU1ODMzNzg4ODZDNEY5QUUwMi9ySTM0dEFld2V4Tm5tM0hGQVN1czNlSlFI bkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JJMzR0QWV3ZXhObm0zSEZBU3VzM2VKUUhuRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QzQzRC9FREIyOEU3RUE0ODAxMUU1ODMzNzg4ODZDNEY5QUUwMi9ySTM0dEFld2V4 Tm5tM0hGQVN1czNlSlFIbkUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCJ7VqVTde3LTFzP4RgMYdKUDmt5EOohLmVRF5vb3yAy2GEriB0jHG5 a1XD4q8nTJdUJeVipvTzoB3WYp9uoltiScNXT4tJ2d5xAWSEEV1co8hTwn6WDz10 641VtJUnn0Z0LyguHsMo9M2Z6MxibEDdlWDPv++mBgNv5v1gYWJJ2Y/1Edx6V5r9 u2ODAqv19Ul7O0JcjeoAjT3roo4XwzSAxOfo7FXp1Ja4DD5IDYbLNpHud9doaIkS BR+mJzImfsGkSIUOLl6lYTlpOmeY8CqoS17b/mp5xJUnGzuUbWTG6mYYMTwsszi7 ErYajluSViAQ94ZI2azrbl1VGpqq1OiT -----END CERTIFICATE-----Generated at Fri Nov 22 17:56:23 2024 by rpki-client on console-fra.rpki-client.org