$ rpki-client -vvf rpki.apnic.net/member_repository/A91FE7DB/B951E28C3DCA11EA81B9D352C4F9AE02/rroZtvzB0hrnExdw57HaPhR17JA.mft File: rroZtvzB0hrnExdw57HaPhR17JA.mft (raw, json) Hash identifier: aKDPXQZCCDSWoBvDSqKz0Jk8wNRoUh66Gnb1896kQh4= Subject key identifier: E7:E3:45:22:D1:04:93:7E:15:BD:07:96:50:13:21:36:6B:90:31:48 Authority key identifier: AE:BA:19:B6:FC:C1:D2:1A:E7:13:17:70:E7:B1:DA:3E:14:75:EC:90 Certificate issuer: /CN=A91FE7DB/serialNumber=AEBA19B6FCC1D21AE7131770E7B1DA3E1475EC90 Certificate serial: 0AC5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rroZtvzB0hrnExdw57HaPhR17JA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FE7DB/B951E28C3DCA11EA81B9D352C4F9AE02/rroZtvzB0hrnExdw57HaPhR17JA.mft Manifest number: 0ABE Signing time: Fri 22 Nov 2024 19:11:41 +0000 Manifest this update: Fri 22 Nov 2024 19:11:40 +0000 Manifest next update: Fri 29 Nov 2024 19:11:40 +0000 Files and hashes: 1: rroZtvzB0hrnExdw57HaPhR17JA.crl (hash: Fqb1vSQMMIG40FPGD34ZXd7UdrOpW8oX6EQJI1x/jeQ=) 2: 078AE946642A11EAA019224CC4F9AE02.roa (hash: mTWsYywMPiMfrhBIpNOsBljvGA4XjVbx+hSty7byGCw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FE7DB/B951E28C3DCA11EA81B9D352C4F9AE02/rroZtvzB0hrnExdw57HaPhR17JA.crl rsync://rpki.apnic.net/member_repository/A91FE7DB/B951E28C3DCA11EA81B9D352C4F9AE02/rroZtvzB0hrnExdw57HaPhR17JA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rroZtvzB0hrnExdw57HaPhR17JA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 19:11:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2757 (0xac5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FE7DB/serialNumber=AEBA19B6FCC1D21AE7131770E7B1DA3E1475EC90 Validity Not Before: Nov 22 19:11:40 2024 GMT Not After : Nov 29 19:11:40 2024 GMT Subject: CN=6740d76c-0aae Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:cc:3d:de:68:46:05:20:16:e9:c6:ac:a5:70: c6:07:c5:a1:9b:be:da:0e:13:84:1e:71:ff:cb:a0: 6a:92:d4:e4:03:75:fc:ab:73:c0:c0:b1:e6:30:8d: ec:25:d0:2b:9d:cf:ad:bb:88:1c:05:9c:8c:3c:25: ea:e2:2c:26:cd:39:41:80:dc:70:96:dd:1a:2b:2c: e9:da:2a:65:e0:a3:b8:47:00:1c:ba:7d:35:98:f4: 74:80:e7:0e:bc:e8:dc:75:a7:bb:d9:f9:2c:66:4d: e0:be:be:13:39:f6:b1:26:1e:e7:3d:9f:0b:77:f0: 3e:e4:f7:ab:3c:92:37:c8:ca:98:4f:4e:5c:2b:b4: c0:ae:4d:48:41:81:23:e0:f3:09:0a:1e:cc:c5:43: 6f:da:82:25:a9:40:61:a1:a3:36:e0:d6:f5:84:19: 6f:f9:ce:63:12:97:54:67:17:8b:2d:dc:4a:3a:3e: bf:da:8f:07:af:de:2f:27:77:25:d5:e9:82:44:5e: 35:67:74:0a:cc:1b:a5:26:ef:c0:3c:d3:ba:c5:0b: dc:bd:ff:95:83:f7:57:67:d1:44:69:dd:2b:82:71: 77:f5:3d:8e:cd:08:f4:85:e3:38:0e:08:73:ad:52: 2b:b7:f2:26:ed:ff:31:06:fe:ca:18:9b:0c:de:0a: 9a:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:E3:45:22:D1:04:93:7E:15:BD:07:96:50:13:21:36:6B:90:31:48 X509v3 Authority Key Identifier: keyid:AE:BA:19:B6:FC:C1:D2:1A:E7:13:17:70:E7:B1:DA:3E:14:75:EC:90 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FE7DB/B951E28C3DCA11EA81B9D352C4F9AE02/rroZtvzB0hrnExdw57HaPhR17JA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rroZtvzB0hrnExdw57HaPhR17JA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FE7DB/B951E28C3DCA11EA81B9D352C4F9AE02/rroZtvzB0hrnExdw57HaPhR17JA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7b:4d:cb:1c:14:28:df:cf:c8:8f:74:ea:17:54:6c:7e:0c:51: 78:97:7f:c9:95:46:17:67:a8:c0:95:08:72:54:21:22:25:3a: 76:a7:f3:d6:71:63:39:83:ca:e6:8d:0b:6a:29:40:8d:7a:36: f3:6a:09:fa:e7:31:6a:40:d9:2a:36:6b:7a:02:a6:12:57:8c: 62:fb:b5:a1:45:87:de:45:05:2a:3e:a2:1c:9f:f2:40:72:e3: e2:36:fa:32:93:81:0e:4a:db:7f:3c:c9:9e:63:98:af:2f:75: 41:1c:ba:bc:13:c8:6f:3b:b1:60:3f:1a:82:f0:17:b4:ba:99: 09:37:0f:ef:a6:eb:81:c0:74:98:b1:a2:fb:14:a2:1b:ab:98: 43:dd:dd:e4:eb:53:58:4c:0e:64:a3:47:1e:62:4c:72:02:38: 35:71:61:24:fb:62:ff:fb:cb:b1:33:f7:85:d8:0b:84:6a:42: f6:d4:a1:3b:fa:ca:72:30:cd:63:29:5e:30:6e:23:cb:38:12: e9:66:3f:ac:ad:c2:11:27:b9:6f:a3:ff:5c:ee:02:91:8b:f3: 36:b9:2a:af:40:c6:13:0b:67:ea:c6:a5:2c:bb:36:0d:c5:3e: a1:7f:2c:f0:61:05:4f:97:99:81:1e:35:e0:3c:1e:c1:6f:4e: a0:24:ae:57 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCsUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkU3REIxMTAvBgNVBAUTKEFFQkExOUI2RkNDMUQyMUFFNzEzMTc3MEU3QjFEQTNF MTQ3NUVDOTAwHhcNMjQxMTIyMTkxMTQwWhcNMjQxMTI5MTkxMTQwWjAYMRYwFAYD VQQDEw02NzQwZDc2Yy0wYWFlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsMw93mhGBSAW6caspXDGB8Whm77aDhOEHnH/y6BqktTkA3X8q3PAwLHmMI3s JdArnc+tu4gcBZyMPCXq4iwmzTlBgNxwlt0aKyzp2ipl4KO4RwAcun01mPR0gOcO vOjcdae72fksZk3gvr4TOfaxJh7nPZ8Ld/A+5PerPJI3yMqYT05cK7TArk1IQYEj 4PMJCh7MxUNv2oIlqUBhoaM24Nb1hBlv+c5jEpdUZxeLLdxKOj6/2o8Hr94vJ3cl 1emCRF41Z3QKzBulJu/APNO6xQvcvf+Vg/dXZ9FEad0rgnF39T2OzQj0heM4Dghz rVIrt/Im7f8xBv7KGJsM3gqa1wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOfjRSLR BJN+Fb0HllATITZrkDFIMB8GA1UdIwQYMBaAFK66Gbb8wdIa5xMXcOex2j4UdeyQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRTdEQi9COTUxRTI4QzNE Q0ExMUVBODFCOUQzNTJDNEY5QUUwMi9ycm9adHZ6QjBocm5FeGR3NTdIYVBoUjE3 SkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3Jyb1p0dnpCMGhybkV4ZHc1N0hhUGhSMTdKQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG RTdEQi9COTUxRTI4QzNEQ0ExMUVBODFCOUQzNTJDNEY5QUUwMi9ycm9adHZ6QjBo cm5FeGR3NTdIYVBoUjE3SkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB7TcscFCjfz8iPdOoXVGx+DFF4l3/JlUYXZ6jAlQhyVCEiJTp2p/PW cWM5g8rmjQtqKUCNejbzagn65zFqQNkqNmt6AqYSV4xi+7WhRYfeRQUqPqIcn/JA cuPiNvoyk4EOStt/PMmeY5ivL3VBHLq8E8hvO7FgPxqC8Be0upkJNw/vpuuBwHSY saL7FKIbq5hD3d3k61NYTA5ko0ceYkxyAjg1cWEk+2L/+8uxM/eF2AuEakL21KE7 +spyMM1jKV4wbiPLOBLpZj+srcIRJ7lvo/9c7gKRi/M2uSqvQMYTC2fqxqUsuzYN xT6hfyzwYQVPl5mBHjXgPB7Bb06gJK5X -----END CERTIFICATE-----Generated at Fri Nov 22 21:05:35 2024 by rpki-client on console-fra.rpki-client.org