$ rpki-client -vvf rpki.apnic.net/member_repository/A9114D23/046909781DA111E2A56DF69208B02CD2/d_7bUqwSiVBJ40An4RJqb9FRHu8.mft File: d_7bUqwSiVBJ40An4RJqb9FRHu8.mft (raw, json) Hash identifier: JR6fKJ7cCLMk+BBxkGfTcZX9QxLVw76tTgLVSn79EOw= Subject key identifier: C4:C2:3C:AD:A6:39:05:14:62:B3:44:AF:4C:A8:EA:E3:C2:EA:41:B7 Authority key identifier: 77:FE:DB:52:AC:12:89:50:49:E3:40:27:E1:12:6A:6F:D1:51:1E:EF Certificate issuer: /CN=A9114D23/serialNumber=77FEDB52AC12895049E34027E1126A6FD1511EEF Certificate serial: 3422 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d_7bUqwSiVBJ40An4RJqb9FRHu8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9114D23/046909781DA111E2A56DF69208B02CD2/d_7bUqwSiVBJ40An4RJqb9FRHu8.mft Manifest number: 3422 Signing time: Sun 24 Nov 2024 15:03:22 +0000 Manifest this update: Sun 24 Nov 2024 15:03:21 +0000 Manifest next update: Sun 01 Dec 2024 15:03:21 +0000 Files and hashes: 1: d_7bUqwSiVBJ40An4RJqb9FRHu8.crl (hash: GrP2JvUt/ltTvX8yHOPHYaKB6rECB4dYH4SHecBrhbo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9114D23/046909781DA111E2A56DF69208B02CD2/d_7bUqwSiVBJ40An4RJqb9FRHu8.crl rsync://rpki.apnic.net/member_repository/A9114D23/046909781DA111E2A56DF69208B02CD2/d_7bUqwSiVBJ40An4RJqb9FRHu8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d_7bUqwSiVBJ40An4RJqb9FRHu8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Dec 2024 15:03:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13346 (0x3422) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9114D23/serialNumber=77FEDB52AC12895049E34027E1126A6FD1511EEF Validity Not Before: Nov 24 15:03:21 2024 GMT Not After : Dec 1 15:03:21 2024 GMT Subject: CN=67434039-8ab2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:67:76:d8:94:95:4e:5c:78:4d:db:72:e2:d7: fb:16:8e:b6:08:1c:51:10:e8:d5:41:90:4f:0f:c0: ea:2d:03:c6:54:64:c2:b3:fd:74:44:3d:39:62:c3: e8:3e:8e:83:41:8c:c2:60:65:52:93:76:af:8b:e0: d3:ea:6d:9e:19:59:07:29:c2:bd:00:91:0e:ac:6a: 15:98:b7:3f:62:ac:fe:eb:43:47:07:26:9a:51:0a: 81:0b:5e:59:6f:04:92:d3:7b:0a:16:c3:2a:ec:89: cf:bc:36:59:27:77:66:82:da:ef:99:40:e9:2b:e0: e9:b2:41:16:3d:88:4b:19:70:03:e2:6e:d1:d0:16: b2:2d:74:fc:7c:9a:ec:f1:92:ef:fd:0c:22:69:fe: 99:25:7d:19:1d:13:8b:fe:eb:81:91:54:5a:60:b4: e3:59:b0:65:71:bb:4d:12:7d:51:ff:2a:ee:c0:3f: f4:8b:cf:41:b9:b1:7d:63:ac:ee:4c:05:24:af:7e: d4:d3:f8:a8:12:79:b0:56:c4:76:63:c7:f0:39:46: 17:a6:e5:c8:9b:ed:55:23:0e:83:cb:d1:30:f8:c4: ca:54:f1:19:6d:3c:c6:5f:c8:53:eb:13:7b:dd:d9: 3f:fa:fa:d0:5f:33:aa:9e:76:9c:9e:d1:70:e1:0d: 22:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:C2:3C:AD:A6:39:05:14:62:B3:44:AF:4C:A8:EA:E3:C2:EA:41:B7 X509v3 Authority Key Identifier: keyid:77:FE:DB:52:AC:12:89:50:49:E3:40:27:E1:12:6A:6F:D1:51:1E:EF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9114D23/046909781DA111E2A56DF69208B02CD2/d_7bUqwSiVBJ40An4RJqb9FRHu8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d_7bUqwSiVBJ40An4RJqb9FRHu8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9114D23/046909781DA111E2A56DF69208B02CD2/d_7bUqwSiVBJ40An4RJqb9FRHu8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 19:08:4a:75:33:11:9d:20:5f:3f:4c:ac:eb:0f:47:88:ac:79: a0:c7:72:d0:a2:a7:7b:43:3e:b6:a8:77:4d:a7:68:f1:74:e0: 1a:b8:7b:2f:ac:88:f1:aa:a9:1f:17:49:28:f3:4b:16:1a:09: 19:03:da:40:c7:0c:c1:8b:b2:42:68:7c:39:82:4f:cc:41:f6: 9c:8a:9d:1b:76:c0:64:66:04:41:27:e5:64:c9:dc:d7:a9:7a: b6:0e:01:67:ff:89:9f:ee:72:7c:bf:e8:fb:a7:31:2b:d2:c2: 76:7b:63:e6:77:5b:e5:77:ea:91:61:d5:c8:a0:de:44:f2:aa: bd:5f:d6:e5:7b:a8:bd:b0:da:78:4d:6a:67:8d:61:40:8e:34: 34:8d:57:41:11:7c:d0:b8:c1:8d:c2:08:54:f7:7c:f9:f0:6a: 16:bb:da:2d:65:4a:b4:63:8f:b5:08:94:13:7a:23:8a:a1:e2: 07:09:fe:ad:60:af:4c:c3:8c:6f:73:62:c0:c3:12:ee:29:42: 73:63:28:01:77:6a:84:ac:2a:87:82:d5:91:b7:9f:b0:e0:18: 12:16:e9:2c:e0:27:b4:03:75:40:db:ae:2c:aa:8b:e0:22:31: fd:d1:78:60:3e:01:2d:3a:2e:bc:de:d8:18:e5:a1:14:91:37: c0:cb:df:7b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNCIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTREMjMxMTAvBgNVBAUTKDc3RkVEQjUyQUMxMjg5NTA0OUUzNDAyN0UxMTI2QTZG RDE1MTFFRUYwHhcNMjQxMTI0MTUwMzIxWhcNMjQxMjAxMTUwMzIxWjAYMRYwFAYD VQQDEw02NzQzNDAzOS04YWIyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx2d22JSVTlx4Tdty4tf7Fo62CBxREOjVQZBPD8DqLQPGVGTCs/10RD05YsPo Po6DQYzCYGVSk3avi+DT6m2eGVkHKcK9AJEOrGoVmLc/Yqz+60NHByaaUQqBC15Z bwSS03sKFsMq7InPvDZZJ3dmgtrvmUDpK+DpskEWPYhLGXAD4m7R0BayLXT8fJrs 8ZLv/Qwiaf6ZJX0ZHROL/uuBkVRaYLTjWbBlcbtNEn1R/yruwD/0i89BubF9Y6zu TAUkr37U0/ioEnmwVsR2Y8fwOUYXpuXIm+1VIw6Dy9Ew+MTKVPEZbTzGX8hT6xN7 3dk/+vrQXzOqnnacntFw4Q0ihwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMTCPK2m OQUUYrNEr0yo6uPC6kG3MB8GA1UdIwQYMBaAFHf+21KsEolQSeNAJ+ESam/RUR7v MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNEQyMy8wNDY5MDk3ODFE QTExMUUyQTU2REY2OTIwOEIwMkNEMi9kXzdiVXF3U2lWQko0MEFuNFJKcWI5RlJI dTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2RfN2JVcXdTaVZCSjQwQW40UkpxYjlGUkh1OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx NEQyMy8wNDY5MDk3ODFEQTExMUUyQTU2REY2OTIwOEIwMkNEMi9kXzdiVXF3U2lW Qko0MEFuNFJKcWI5RlJIdTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAZCEp1MxGdIF8/TKzrD0eIrHmgx3LQoqd7Qz62qHdNp2jxdOAauHsv rIjxqqkfF0ko80sWGgkZA9pAxwzBi7JCaHw5gk/MQfacip0bdsBkZgRBJ+VkydzX qXq2DgFn/4mf7nJ8v+j7pzEr0sJ2e2Pmd1vld+qRYdXIoN5E8qq9X9ble6i9sNp4 TWpnjWFAjjQ0jVdBEXzQuMGNwghU93z58GoWu9otZUq0Y4+1CJQTeiOKoeIHCf6t YK9Mw4xvc2LAwxLuKUJzYygBd2qErCqHgtWRt5+w4BgSFuks4Ce0A3VA264sqovg IjH90XhgPgEtOi683tgY5aEUkTfAy997 -----END CERTIFICATE-----Generated at Sun Nov 24 18:24:02 2024 by rpki-client on console-ams.rpki-client.org