$ rpki-client -vvf rpki.apnic.net/member_repository/A9118EDB/309BE6BE1DDD11EC883B4423C4F9AE02/5tdlUVTja2lxFXTiB5a2gCxDtxU.mft File: 5tdlUVTja2lxFXTiB5a2gCxDtxU.mft (raw, json) Hash identifier: I+F2JhC/cp4KMsNwphUHL5VP5RDhmUacm3fVWqd1RQs= Subject key identifier: AC:FF:5B:89:87:27:9B:5C:32:29:5A:B5:21:35:AE:0C:58:1D:79:D3 Authority key identifier: E6:D7:65:51:54:E3:6B:69:71:15:74:E2:07:96:B6:80:2C:43:B7:15 Certificate issuer: /CN=A9118EDB/serialNumber=E6D7655154E36B69711574E20796B6802C43B715 Certificate serial: 047B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5tdlUVTja2lxFXTiB5a2gCxDtxU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9118EDB/309BE6BE1DDD11EC883B4423C4F9AE02/5tdlUVTja2lxFXTiB5a2gCxDtxU.mft Manifest number: 0477 Signing time: Fri 22 Nov 2024 23:37:29 +0000 Manifest this update: Fri 22 Nov 2024 23:37:29 +0000 Manifest next update: Fri 29 Nov 2024 23:37:29 +0000 Files and hashes: 1: 5tdlUVTja2lxFXTiB5a2gCxDtxU.crl (hash: Q/ETDk/Ojk2ysStB/dkvaS3NgnMdKEgtKMf8KUPQLGo=) 2: BA4D01561DE011ECB872BC27C4F9AE02.roa (hash: tDWTANfjrPDs2GQbILwkdwvre/uzXy+fisfpOKEdfcI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9118EDB/309BE6BE1DDD11EC883B4423C4F9AE02/5tdlUVTja2lxFXTiB5a2gCxDtxU.crl rsync://rpki.apnic.net/member_repository/A9118EDB/309BE6BE1DDD11EC883B4423C4F9AE02/5tdlUVTja2lxFXTiB5a2gCxDtxU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5tdlUVTja2lxFXTiB5a2gCxDtxU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1147 (0x47b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9118EDB/serialNumber=E6D7655154E36B69711574E20796B6802C43B715 Validity Not Before: Nov 22 23:37:29 2024 GMT Not After : Nov 29 23:37:29 2024 GMT Subject: CN=674115b9-3cc2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:ef:14:98:af:fa:e3:58:7a:b4:7f:ab:82:86: 9d:b4:33:d9:db:f5:61:1f:c3:11:89:78:5c:6e:39: 67:9c:c7:d1:33:dd:d1:91:ce:25:86:43:34:2c:54: f1:55:92:75:c1:5f:55:a7:8c:50:43:70:d1:65:6c: 61:03:12:49:64:c0:91:80:a4:ca:37:db:2f:a7:0c: aa:34:ca:21:c5:a4:ab:1b:8a:4f:e8:d4:e6:2a:b4: 9c:0a:1b:60:5d:ee:61:9e:c4:88:0f:73:ce:ae:34: ab:a2:7a:78:78:aa:33:17:2a:de:3b:fa:f3:85:e2: 65:47:29:c9:ce:32:b2:1d:ac:34:12:4d:cc:f6:ca: 85:74:f5:a4:d4:d8:f2:35:3b:d9:3f:b6:d5:8f:ab: 33:ee:6f:c5:a1:68:38:37:84:1a:05:60:a0:99:a0: 72:a9:c6:69:03:35:c0:33:98:46:db:a2:9a:d3:49: c3:f3:19:0c:d8:89:23:ab:0f:80:90:8b:dd:6b:98: 38:de:a6:7e:0e:c8:51:47:fd:1d:d9:66:2f:ed:8e: 3c:0d:cb:bc:3e:e5:93:a0:18:8f:2e:24:21:bd:e9: a1:ed:9a:f4:70:26:24:4c:d7:99:28:1e:8f:2e:6b: 93:c4:5c:e0:29:c6:a0:2f:55:d7:50:24:85:a7:b1: 86:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:FF:5B:89:87:27:9B:5C:32:29:5A:B5:21:35:AE:0C:58:1D:79:D3 X509v3 Authority Key Identifier: keyid:E6:D7:65:51:54:E3:6B:69:71:15:74:E2:07:96:B6:80:2C:43:B7:15 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9118EDB/309BE6BE1DDD11EC883B4423C4F9AE02/5tdlUVTja2lxFXTiB5a2gCxDtxU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5tdlUVTja2lxFXTiB5a2gCxDtxU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9118EDB/309BE6BE1DDD11EC883B4423C4F9AE02/5tdlUVTja2lxFXTiB5a2gCxDtxU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 32:82:a0:f9:36:8e:79:5a:a5:ef:32:a7:51:48:8f:c5:a1:c4: 25:b8:2f:c3:0e:dc:5b:02:2a:2e:13:e1:d3:03:3e:0c:1a:10: 91:30:bd:be:bf:69:29:ce:93:20:68:88:38:fa:0e:9f:a3:39: 5e:64:43:00:98:fc:4c:fb:2a:04:03:93:0e:12:2e:47:9f:3b: 25:1d:3b:9d:ff:24:37:cb:a9:34:0a:0d:f6:eb:48:22:3e:8f: ef:ca:da:a1:f1:42:da:85:9d:01:cf:d1:42:03:f3:05:e0:36: 72:87:a9:e9:55:04:5f:14:96:19:06:9b:72:5a:b2:b5:be:6c: b1:a0:9a:1a:7b:03:7f:52:b8:a4:a8:75:e3:39:c8:b1:95:80: 40:61:ce:c4:16:72:2d:7c:d4:b5:5a:ad:04:87:be:2f:eb:e2: 17:58:ae:db:ec:84:bf:8b:90:56:13:34:3a:93:2e:68:6d:78: 9f:91:8f:4d:fb:4f:e0:a6:fe:f4:d9:d9:5c:bb:6f:27:7c:46: 2f:75:3a:c8:d8:1b:15:f3:04:50:10:1c:ee:54:2e:f9:32:43: 9c:18:3f:ff:24:07:c7:b0:8b:66:b8:ca:3e:c7:a3:db:d3:98: ec:09:cf:3d:ed:84:38:21:76:af:b2:ac:91:ed:56:6e:88:ed: e8:9e:0b:3e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBHswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MThFREIxMTAvBgNVBAUTKEU2RDc2NTUxNTRFMzZCNjk3MTE1NzRFMjA3OTZCNjgw MkM0M0I3MTUwHhcNMjQxMTIyMjMzNzI5WhcNMjQxMTI5MjMzNzI5WjAYMRYwFAYD VQQDEw02NzQxMTViOS0zY2MyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5O8UmK/641h6tH+rgoadtDPZ2/VhH8MRiXhcbjlnnMfRM93Rkc4lhkM0LFTx VZJ1wV9Vp4xQQ3DRZWxhAxJJZMCRgKTKN9svpwyqNMohxaSrG4pP6NTmKrScChtg Xe5hnsSID3POrjSronp4eKozFyreO/rzheJlRynJzjKyHaw0Ek3M9sqFdPWk1Njy NTvZP7bVj6sz7m/FoWg4N4QaBWCgmaByqcZpAzXAM5hG26Ka00nD8xkM2Ikjqw+A kIvda5g43qZ+DshRR/0d2WYv7Y48Dcu8PuWToBiPLiQhvemh7Zr0cCYkTNeZKB6P LmuTxFzgKcagL1XXUCSFp7GGewIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKz/W4mH J5tcMilatSE1rgxYHXnTMB8GA1UdIwQYMBaAFObXZVFU42tpcRV04geWtoAsQ7cV MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExOEVEQi8zMDlCRTZCRTFE REQxMUVDODgzQjQ0MjNDNEY5QUUwMi81dGRsVVZUamEybHhGWFRpQjVhMmdDeER0 eFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzV0ZGxVVlRqYTJseEZYVGlCNWEyZ0N4RHR4VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx OEVEQi8zMDlCRTZCRTFEREQxMUVDODgzQjQ0MjNDNEY5QUUwMi81dGRsVVZUamEy bHhGWFRpQjVhMmdDeER0eFUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAygqD5No55WqXvMqdRSI/FocQluC/DDtxbAiouE+HTAz4MGhCRML2+ v2kpzpMgaIg4+g6fozleZEMAmPxM+yoEA5MOEi5HnzslHTud/yQ3y6k0Cg3260gi Po/vytqh8ULahZ0Bz9FCA/MF4DZyh6npVQRfFJYZBptyWrK1vmyxoJoaewN/Urik qHXjOcixlYBAYc7EFnItfNS1Wq0Eh74v6+IXWK7b7IS/i5BWEzQ6ky5obXifkY9N +0/gpv702dlcu28nfEYvdTrI2BsV8wRQEBzuVC75MkOcGD//JAfHsItmuMo+x6Pb 05jsCc897YQ4IXavsqyR7VZuiO3ongs+ -----END CERTIFICATE-----Generated at Sat Nov 23 00:49:32 2024 by rpki-client on console-fra.rpki-client.org