$ rpki-client -vvf rpki.apnic.net/member_repository/A91222CD/7E3115C8165A11E7B27F9B46C4F9AE02/MbPZBFfR_fg8NXTL0X_CiyzdVu8.mft File: MbPZBFfR_fg8NXTL0X_CiyzdVu8.mft (raw, json) Hash identifier: N3YGEA3ljTqWSpj9O48+Q6I9PByYcqAt1v/Advw+SYw= Subject key identifier: 77:17:F5:86:A7:90:0A:00:81:E0:85:E1:E0:23:02:96:07:69:52:70 Authority key identifier: 31:B3:D9:04:57:D1:FD:F8:3C:35:74:CB:D1:7F:C2:8B:2C:DD:56:EF Certificate issuer: /CN=A91222CD/serialNumber=31B3D90457D1FDF83C3574CBD17FC28B2CDD56EF Certificate serial: 1AC8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MbPZBFfR_fg8NXTL0X_CiyzdVu8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91222CD/7E3115C8165A11E7B27F9B46C4F9AE02/MbPZBFfR_fg8NXTL0X_CiyzdVu8.mft Manifest number: 1AC7 Signing time: Fri 22 Nov 2024 16:19:00 +0000 Manifest this update: Fri 22 Nov 2024 16:18:59 +0000 Manifest next update: Fri 29 Nov 2024 16:18:59 +0000 Files and hashes: 1: MbPZBFfR_fg8NXTL0X_CiyzdVu8.crl (hash: IulmhgE7H0GhzaH+UT0agqqdJfRgnoCodxOmG2gagc4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91222CD/7E3115C8165A11E7B27F9B46C4F9AE02/MbPZBFfR_fg8NXTL0X_CiyzdVu8.crl rsync://rpki.apnic.net/member_repository/A91222CD/7E3115C8165A11E7B27F9B46C4F9AE02/MbPZBFfR_fg8NXTL0X_CiyzdVu8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MbPZBFfR_fg8NXTL0X_CiyzdVu8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 16:18:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6856 (0x1ac8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91222CD/serialNumber=31B3D90457D1FDF83C3574CBD17FC28B2CDD56EF Validity Not Before: Nov 22 16:18:59 2024 GMT Not After : Nov 29 16:18:59 2024 GMT Subject: CN=6740aef4-f4c5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:d2:c8:ee:47:9f:fe:16:d2:0e:64:4c:7c:c5: 3a:f0:c6:78:73:37:82:2d:b4:86:26:99:43:1e:88: cb:15:57:91:0b:e8:35:3d:2c:f2:f9:e6:91:06:37: c8:22:d6:a8:8c:90:a8:b6:e2:f1:34:89:12:5d:1f: a0:ec:2f:cc:89:c6:b2:aa:0c:2b:2a:1e:1e:64:8e: 12:36:5b:df:0c:d0:21:f9:22:11:62:62:41:d9:c5: 37:ea:81:d1:f4:e1:b4:82:84:46:17:0c:5a:97:50: 45:26:22:d2:86:dd:a1:41:2c:7a:18:ab:19:ec:47: 7d:c3:8c:55:24:f2:a0:77:b2:81:cf:6d:2b:2e:38: 24:36:85:2d:66:ad:e0:72:a7:92:78:48:a4:1c:c7: 67:41:e9:86:3d:d3:cd:8c:20:49:de:32:58:a7:df: 0c:97:f3:c5:09:9b:2f:36:9d:31:4b:cc:65:a1:09: bf:e9:f4:fb:cc:13:22:58:93:f9:c6:af:0c:a5:c9: 46:b0:68:ad:22:fa:eb:00:7c:da:58:a3:62:64:b6: c0:57:2c:5c:7a:e9:3a:79:b1:65:db:f0:36:fe:b8: 07:97:0d:87:95:69:6f:a0:8c:dc:95:3e:70:3e:93: 91:93:7b:7f:6a:29:f1:a8:a3:f3:80:16:06:32:d7: 27:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:17:F5:86:A7:90:0A:00:81:E0:85:E1:E0:23:02:96:07:69:52:70 X509v3 Authority Key Identifier: keyid:31:B3:D9:04:57:D1:FD:F8:3C:35:74:CB:D1:7F:C2:8B:2C:DD:56:EF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91222CD/7E3115C8165A11E7B27F9B46C4F9AE02/MbPZBFfR_fg8NXTL0X_CiyzdVu8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MbPZBFfR_fg8NXTL0X_CiyzdVu8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91222CD/7E3115C8165A11E7B27F9B46C4F9AE02/MbPZBFfR_fg8NXTL0X_CiyzdVu8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8a:46:da:7d:61:4b:a0:65:ac:75:56:7d:57:e8:71:a3:b5:38: aa:69:39:a8:0c:da:f7:ca:7b:eb:f6:78:69:f3:3b:3a:71:34: 38:3d:b6:73:ae:88:c7:5d:3c:80:29:4e:8c:fc:e5:07:5f:70: 43:89:6e:4d:77:84:3a:cf:f0:8b:67:dc:77:4c:30:64:86:10: 2c:74:db:d5:dc:7a:62:f3:b3:80:73:6d:e6:e6:b8:f7:d6:58: 38:c3:6a:02:5d:05:11:c2:a6:da:28:ba:dd:b9:f6:fd:67:1c: 5e:a1:c7:6c:8b:7a:74:26:fb:7d:5c:76:e5:fd:72:2f:08:90: 72:96:3a:0e:d2:3b:39:50:3e:fc:56:f4:0c:09:a3:4b:d1:cf: 05:ea:2e:1a:b7:35:ec:e4:4f:f9:6d:0e:59:6d:b4:67:d8:24: ca:df:3c:93:45:88:8d:23:60:76:00:d8:0d:21:06:62:22:30: 4d:68:ae:6e:c9:a6:1d:a5:99:1e:b6:a5:43:4f:aa:90:80:7c: 34:1d:66:83:cf:9b:c6:30:70:3a:7b:d8:90:06:8f:13:b8:a3: 62:e1:d0:22:eb:21:50:78:31:29:2b:8a:6b:d5:0c:28:89:bc: 7a:9b:05:b0:c6:9a:20:81:b9:ad:75:5c:0f:26:6c:19:73:0b: cf:ad:69:3f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICGsgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjIyQ0QxMTAvBgNVBAUTKDMxQjNEOTA0NTdEMUZERjgzQzM1NzRDQkQxN0ZDMjhC MkNERDU2RUYwHhcNMjQxMTIyMTYxODU5WhcNMjQxMTI5MTYxODU5WjAYMRYwFAYD VQQDEw02NzQwYWVmNC1mNGM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtNLI7kef/hbSDmRMfMU68MZ4czeCLbSGJplDHojLFVeRC+g1PSzy+eaRBjfI ItaojJCotuLxNIkSXR+g7C/MicayqgwrKh4eZI4SNlvfDNAh+SIRYmJB2cU36oHR 9OG0goRGFwxal1BFJiLSht2hQSx6GKsZ7Ed9w4xVJPKgd7KBz20rLjgkNoUtZq3g cqeSeEikHMdnQemGPdPNjCBJ3jJYp98Ml/PFCZsvNp0xS8xloQm/6fT7zBMiWJP5 xq8MpclGsGitIvrrAHzaWKNiZLbAVyxceuk6ebFl2/A2/rgHlw2HlWlvoIzclT5w PpORk3t/ainxqKPzgBYGMtcnCwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHcX9Yan kAoAgeCF4eAjApYHaVJwMB8GA1UdIwQYMBaAFDGz2QRX0f34PDV0y9F/woss3Vbv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMjJDRC83RTMxMTVDODE2 NUExMUU3QjI3RjlCNDZDNEY5QUUwMi9NYlBaQkZmUl9mZzhOWFRMMFhfQ2l5emRW dTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL01iUFpCRmZSX2ZnOE5YVEwwWF9DaXl6ZFZ1OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MjJDRC83RTMxMTVDODE2NUExMUU3QjI3RjlCNDZDNEY5QUUwMi9NYlBaQkZmUl9m ZzhOWFRMMFhfQ2l5emRWdTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCKRtp9YUugZax1Vn1X6HGjtTiqaTmoDNr3ynvr9nhp8zs6cTQ4PbZz rojHXTyAKU6M/OUHX3BDiW5Nd4Q6z/CLZ9x3TDBkhhAsdNvV3Hpi87OAc23m5rj3 1lg4w2oCXQURwqbaKLrdufb9Zxxeocdsi3p0Jvt9XHbl/XIvCJByljoO0js5UD78 VvQMCaNL0c8F6i4atzXs5E/5bQ5ZbbRn2CTK3zyTRYiNI2B2ANgNIQZiIjBNaK5u yaYdpZketqVDT6qQgHw0HWaDz5vGMHA6e9iQBo8TuKNi4dAi6yFQeDEpK4pr1Qwo ibx6mwWwxpoggbmtdVwPJmwZcwvPrWk/ -----END CERTIFICATE-----Generated at Fri Nov 22 17:55:39 2024 by rpki-client on console-fra.rpki-client.org