$ rpki-client -vvf rpki.apnic.net/member_repository/A91FC765/E5C74BAA7F8111E6898E5F45C4F9AE02/TihN8oxlIKdxEwQV85PINH1ubek.mft File: TihN8oxlIKdxEwQV85PINH1ubek.mft (raw, json) Hash identifier: 1niMzeLZj7sUzcR741wnT+lUEm7bDeZO1uxz5k3FjnY= Subject key identifier: CE:81:E6:59:2D:C6:EA:6F:58:5A:3F:07:EF:1E:E4:B2:90:9D:C0:A3 Authority key identifier: 4E:28:4D:F2:8C:65:20:A7:71:13:04:15:F3:93:C8:34:7D:6E:6D:E9 Certificate issuer: /CN=A91FC765/serialNumber=4E284DF28C6520A771130415F393C8347D6E6DE9 Certificate serial: 1DE1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TihN8oxlIKdxEwQV85PINH1ubek.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FC765/E5C74BAA7F8111E6898E5F45C4F9AE02/TihN8oxlIKdxEwQV85PINH1ubek.mft Manifest number: 1DD8 Signing time: Sun 24 Nov 2024 15:59:28 +0000 Manifest this update: Sun 24 Nov 2024 15:59:27 +0000 Manifest next update: Sun 01 Dec 2024 15:59:27 +0000 Files and hashes: 1: TihN8oxlIKdxEwQV85PINH1ubek.crl (hash: 0+HpFxTUSyaTtyAWw+tfRD0xc3F7Zgy6WYJyMrV72uo=) 2: 9071A5E690CB11E6A804EF84C4F9AE02.roa (hash: KE/U/8wUAW1falY4CgDPXTNiOOjIqQ1zJL90tHiSQS8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FC765/E5C74BAA7F8111E6898E5F45C4F9AE02/TihN8oxlIKdxEwQV85PINH1ubek.crl rsync://rpki.apnic.net/member_repository/A91FC765/E5C74BAA7F8111E6898E5F45C4F9AE02/TihN8oxlIKdxEwQV85PINH1ubek.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TihN8oxlIKdxEwQV85PINH1ubek.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Dec 2024 15:54:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7649 (0x1de1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FC765/serialNumber=4E284DF28C6520A771130415F393C8347D6E6DE9 Validity Not Before: Nov 24 15:59:27 2024 GMT Not After : Dec 1 15:59:27 2024 GMT Subject: CN=67434d5f-1112 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:95:ff:7c:ef:a3:af:8f:65:a9:2d:5a:52:18: e0:df:52:51:a1:97:84:92:69:2f:29:a4:9c:08:5d: a2:58:95:1f:95:a0:6d:35:a6:b9:ac:24:66:62:04: fa:b4:67:f0:63:8d:0a:d5:0c:d9:f8:ec:b4:10:9d: db:b7:f4:fe:27:c4:45:f8:b0:7f:3a:2b:b9:2e:00: 6b:0d:5d:6e:6e:b9:d3:66:f1:f7:24:41:a2:e2:7a: a1:12:dc:bb:34:07:d0:bf:61:7a:59:2f:11:2f:c1: 6c:d9:f0:45:f7:15:25:e4:92:e8:f9:b3:56:da:57: fe:c0:07:b9:8c:3c:e1:5e:a5:08:92:88:d8:95:0f: 20:83:f8:6a:3a:90:db:8f:b7:6c:67:fa:e5:28:b9: 5d:7c:25:d1:c9:05:f9:11:bf:a9:56:3b:d3:49:c7: 29:e4:60:27:1d:30:69:a9:7e:8b:69:fd:5f:5c:7a: 24:70:4f:f8:9e:d6:9b:f0:a2:d6:12:73:9f:d0:b9: a6:01:bf:f5:35:77:5d:fa:91:9e:a4:d7:7d:bc:8b: 3b:f0:0e:ed:19:36:49:85:72:8e:4a:7b:aa:02:e9: 19:c9:50:76:67:0b:c4:63:5f:a7:3c:15:dd:d1:bd: 59:05:ed:c4:20:35:d4:37:5f:17:04:af:dc:1e:77: f0:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:81:E6:59:2D:C6:EA:6F:58:5A:3F:07:EF:1E:E4:B2:90:9D:C0:A3 X509v3 Authority Key Identifier: keyid:4E:28:4D:F2:8C:65:20:A7:71:13:04:15:F3:93:C8:34:7D:6E:6D:E9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FC765/E5C74BAA7F8111E6898E5F45C4F9AE02/TihN8oxlIKdxEwQV85PINH1ubek.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TihN8oxlIKdxEwQV85PINH1ubek.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FC765/E5C74BAA7F8111E6898E5F45C4F9AE02/TihN8oxlIKdxEwQV85PINH1ubek.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6a:77:09:95:e7:dd:80:89:ec:3c:f4:c3:a4:32:d2:3e:10:75: 60:9d:39:fb:31:f6:a1:da:c8:c9:22:2a:ac:f3:5a:d5:cf:00: 0b:1d:92:53:0b:8a:67:a1:8f:4c:48:02:55:60:9e:b9:d8:55: 74:dd:43:95:28:90:e8:24:38:0a:d1:61:85:0e:74:30:9b:de: 68:ac:b2:43:02:f9:c0:b1:29:f5:3a:06:3a:d7:83:42:08:90: cc:14:81:04:ff:a1:16:7d:04:f9:a7:2d:4c:91:7e:c7:7d:6f: 00:3d:10:96:d4:de:85:a2:df:09:dd:3c:12:1a:65:2c:b1:c4: 46:e2:6e:58:02:5c:b2:9d:1d:1f:19:73:38:56:7f:9d:7d:09: 70:66:cb:12:ce:c9:77:4a:25:07:62:07:1f:9b:55:be:4c:96: c5:2f:2e:e7:13:db:2c:7c:b4:07:50:f9:28:b9:2a:32:9a:ab: 63:07:58:04:39:fb:89:18:25:e0:e4:b6:3a:c6:48:89:d9:4a: ac:6e:2e:f2:d3:96:06:c3:e6:97:53:89:aa:0b:27:d5:16:05: 7c:0b:8a:94:ec:c3:37:ee:8e:d3:d9:69:e1:1f:c5:6b:4f:9f: a5:f9:e7:d3:38:bd:07:3f:e8:16:7f:37:95:4d:e5:dc:7f:24: 29:f3:88:d7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICHeEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkM3NjUxMTAvBgNVBAUTKDRFMjg0REYyOEM2NTIwQTc3MTEzMDQxNUYzOTNDODM0 N0Q2RTZERTkwHhcNMjQxMTI0MTU1OTI3WhcNMjQxMjAxMTU1OTI3WjAYMRYwFAYD VQQDEw02NzQzNGQ1Zi0xMTEyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA45X/fO+jr49lqS1aUhjg31JRoZeEkmkvKaScCF2iWJUflaBtNaa5rCRmYgT6 tGfwY40K1QzZ+Oy0EJ3bt/T+J8RF+LB/Oiu5LgBrDV1ubrnTZvH3JEGi4nqhEty7 NAfQv2F6WS8RL8Fs2fBF9xUl5JLo+bNW2lf+wAe5jDzhXqUIkojYlQ8gg/hqOpDb j7dsZ/rlKLldfCXRyQX5Eb+pVjvTSccp5GAnHTBpqX6Laf1fXHokcE/4ntab8KLW EnOf0LmmAb/1NXdd+pGepNd9vIs78A7tGTZJhXKOSnuqAukZyVB2ZwvEY1+nPBXd 0b1ZBe3EIDXUN18XBK/cHnfw9QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFM6B5lkt xupvWFo/B+8e5LKQncCjMB8GA1UdIwQYMBaAFE4oTfKMZSCncRMEFfOTyDR9bm3p MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQzc2NS9FNUM3NEJBQTdG ODExMUU2ODk4RTVGNDVDNEY5QUUwMi9UaWhOOG94bElLZHhFd1FWODVQSU5IMXVi ZWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RpaE44b3hsSUtkeEV3UVY4NVBJTkgxdWJlay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG Qzc2NS9FNUM3NEJBQTdGODExMUU2ODk4RTVGNDVDNEY5QUUwMi9UaWhOOG94bElL ZHhFd1FWODVQSU5IMXViZWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBqdwmV592Aiew89MOkMtI+EHVgnTn7Mfah2sjJIiqs81rVzwALHZJT C4pnoY9MSAJVYJ652FV03UOVKJDoJDgK0WGFDnQwm95orLJDAvnAsSn1OgY614NC CJDMFIEE/6EWfQT5py1MkX7HfW8APRCW1N6Fot8J3TwSGmUsscRG4m5YAlyynR0f GXM4Vn+dfQlwZssSzsl3SiUHYgcfm1W+TJbFLy7nE9ssfLQHUPkouSoymqtjB1gE OfuJGCXg5LY6xkiJ2Uqsbi7y05YGw+aXU4mqCyfVFgV8C4qU7MM37o7T2WnhH8Vr T5+l+efTOL0HP+gWfzeVTeXcfyQp84jX -----END CERTIFICATE-----Generated at Sun Nov 24 17:20:54 2024 by rpki-client on console-fra.rpki-client.org