$ rpki-client -vvf rpki.apnic.net/member_repository/A912E5CB/5288DCE0704911EDB6E1FB78C4F9AE02/4XM7lw_d92f_GVQoQ34SQqN2knc.mft File: 4XM7lw_d92f_GVQoQ34SQqN2knc.mft (raw, json) Hash identifier: Sy3lNu1dtW36P753WDr1oLuqTfjtPgv8MPDjebMItEY= Subject key identifier: F3:45:B6:BF:B7:E7:CC:84:3A:C2:07:A3:C0:7F:FE:94:DB:33:28:A5 Authority key identifier: E1:73:3B:97:0F:DD:F7:67:FF:19:54:28:43:7E:12:42:A3:76:92:77 Certificate issuer: /CN=A912E5CB/serialNumber=E1733B970FDDF767FF195428437E1242A3769277 Certificate serial: 0173 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4XM7lw_d92f_GVQoQ34SQqN2knc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912E5CB/5288DCE0704911EDB6E1FB78C4F9AE02/4XM7lw_d92f_GVQoQ34SQqN2knc.mft Manifest number: 0171 Signing time: Sat 23 Nov 2024 02:10:00 +0000 Manifest this update: Sat 23 Nov 2024 02:10:00 +0000 Manifest next update: Sat 30 Nov 2024 02:10:00 +0000 Files and hashes: 1: 4XM7lw_d92f_GVQoQ34SQqN2knc.crl (hash: SM5Gw5Ugbk+ntvKL1g28tN2SQmtLC3vxPtPCKbiFNWM=) 2: 5FF4FD52704C11ED97935E7DC4F9AE02.roa (hash: YUVp3qWVkxU1C4l/jL7nJncbv6O1MZagBu3nKdafcnE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912E5CB/5288DCE0704911EDB6E1FB78C4F9AE02/4XM7lw_d92f_GVQoQ34SQqN2knc.crl rsync://rpki.apnic.net/member_repository/A912E5CB/5288DCE0704911EDB6E1FB78C4F9AE02/4XM7lw_d92f_GVQoQ34SQqN2knc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4XM7lw_d92f_GVQoQ34SQqN2knc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:10:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 371 (0x173) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912E5CB/serialNumber=E1733B970FDDF767FF195428437E1242A3769277 Validity Not Before: Nov 23 02:10:00 2024 GMT Not After : Nov 30 02:10:00 2024 GMT Subject: CN=67413978-6c2b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:eb:d8:f8:6c:6d:6e:9e:cb:25:88:9b:fa:d0: be:be:68:eb:d2:23:24:f4:7c:44:8b:6f:04:34:87: 5e:86:62:78:c2:33:81:ad:12:28:64:a8:26:b8:3a: 97:09:32:d3:25:11:4c:9d:3b:bd:9e:ae:13:b2:9f: 68:01:31:16:5a:3a:0f:10:b2:6e:51:8a:24:1f:aa: 71:bd:08:83:4c:e9:2f:78:70:7e:49:1c:27:71:2c: c0:d2:44:4e:e2:74:80:8f:13:1b:c5:69:66:5b:df: 19:12:5c:75:ae:aa:f7:20:24:3d:fe:d8:d5:b1:08: 21:e4:22:31:fc:cb:e7:5a:d3:e2:1d:22:5d:4b:8e: d8:83:85:3c:b1:92:74:7f:a8:54:a7:ee:0a:e8:6c: 4f:91:28:26:42:c2:b9:5a:51:c4:d0:80:0d:4e:87: 14:7b:a9:6a:b1:90:28:c0:67:d4:72:3f:5a:1e:83: 0b:9e:db:41:03:14:b8:65:bc:97:d4:ce:aa:8f:75: 6d:5d:40:7f:31:f3:1b:52:74:1c:69:60:bd:32:51: 5c:76:99:a3:32:f1:a5:62:80:04:c5:1b:1f:62:3f: 77:5b:ba:c0:b7:e1:96:59:d3:e8:d4:44:74:62:e6: 75:71:80:2a:ef:e2:7f:02:26:17:ef:73:c1:b6:60: 6c:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:45:B6:BF:B7:E7:CC:84:3A:C2:07:A3:C0:7F:FE:94:DB:33:28:A5 X509v3 Authority Key Identifier: keyid:E1:73:3B:97:0F:DD:F7:67:FF:19:54:28:43:7E:12:42:A3:76:92:77 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912E5CB/5288DCE0704911EDB6E1FB78C4F9AE02/4XM7lw_d92f_GVQoQ34SQqN2knc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4XM7lw_d92f_GVQoQ34SQqN2knc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912E5CB/5288DCE0704911EDB6E1FB78C4F9AE02/4XM7lw_d92f_GVQoQ34SQqN2knc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b6:9d:ed:59:31:a9:af:10:94:5f:67:4a:4c:32:83:35:b4:57: 4f:8c:35:50:b7:4a:7b:a9:e5:7d:85:6c:fe:68:22:f1:dd:c4: 93:79:b4:6a:50:de:5f:f7:8f:23:c3:a8:35:f0:94:05:be:3f: 91:cf:8c:aa:d1:98:b1:8c:7c:fb:4e:dc:63:b6:72:41:52:de: 65:32:9a:5a:bd:67:08:b9:43:5d:fc:51:98:5b:93:97:a5:d0: 61:28:c8:43:85:e0:ee:ea:aa:1f:bb:50:60:4f:95:66:c7:e1: 6a:46:3c:87:33:31:36:64:f9:66:12:40:ae:15:ab:b7:98:6b: cf:12:46:87:f2:53:4a:03:70:13:e0:72:1b:f2:71:f4:df:a4: f0:ac:73:d2:20:3b:28:8a:f0:61:81:37:fc:69:c0:bd:eb:ff: 8b:22:bc:5f:96:7d:4a:42:bd:90:da:e9:66:ba:81:24:31:6e: 8f:61:b3:fb:0b:62:2a:b5:e0:c0:19:c9:2a:8a:01:c0:2a:aa: 5c:ce:7e:83:85:91:95:38:8d:ab:54:88:3a:64:09:6f:8d:4f: 40:1c:b7:af:fe:8e:ed:b9:2c:4e:ed:dc:31:52:9f:90:78:14: ed:d3:e7:58:df:56:e4:21:81:ed:56:eb:c2:01:85:d5:6a:75: 6c:b2:7b:9b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAXMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkU1Q0IxMTAvBgNVBAUTKEUxNzMzQjk3MEZEREY3NjdGRjE5NTQyODQzN0UxMjQy QTM3NjkyNzcwHhcNMjQxMTIzMDIxMDAwWhcNMjQxMTMwMDIxMDAwWjAYMRYwFAYD VQQDEw02NzQxMzk3OC02YzJiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzuvY+Gxtbp7LJYib+tC+vmjr0iMk9HxEi28ENIdehmJ4wjOBrRIoZKgmuDqX CTLTJRFMnTu9nq4Tsp9oATEWWjoPELJuUYokH6pxvQiDTOkveHB+SRwncSzA0kRO 4nSAjxMbxWlmW98ZElx1rqr3ICQ9/tjVsQgh5CIx/MvnWtPiHSJdS47Yg4U8sZJ0 f6hUp+4K6GxPkSgmQsK5WlHE0IANTocUe6lqsZAowGfUcj9aHoMLnttBAxS4ZbyX 1M6qj3VtXUB/MfMbUnQcaWC9MlFcdpmjMvGlYoAExRsfYj93W7rAt+GWWdPo1ER0 YuZ1cYAq7+J/AiYX73PBtmBs4QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPNFtr+3 58yEOsIHo8B//pTbMyilMB8GA1UdIwQYMBaAFOFzO5cP3fdn/xlUKEN+EkKjdpJ3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRTVDQi81Mjg4RENFMDcw NDkxMUVEQjZFMUZCNzhDNEY5QUUwMi80WE03bHdfZDkyZl9HVlFvUTM0U1FxTjJr bmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRYTTdsd19kOTJmX0dWUW9RMzRTUXFOMmtuYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy RTVDQi81Mjg4RENFMDcwNDkxMUVEQjZFMUZCNzhDNEY5QUUwMi80WE03bHdfZDky Zl9HVlFvUTM0U1FxTjJrbmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC2ne1ZMamvEJRfZ0pMMoM1tFdPjDVQt0p7qeV9hWz+aCLx3cSTebRq UN5f948jw6g18JQFvj+Rz4yq0ZixjHz7TtxjtnJBUt5lMppavWcIuUNd/FGYW5OX pdBhKMhDheDu6qofu1BgT5Vmx+FqRjyHMzE2ZPlmEkCuFau3mGvPEkaH8lNKA3AT 4HIb8nH036TwrHPSIDsoivBhgTf8acC96/+LIrxfln1KQr2Q2ulmuoEkMW6PYbP7 C2IqteDAGckqigHAKqpczn6DhZGVOI2rVIg6ZAlvjU9AHLev/o7tuSxO7dwxUp+Q eBTt0+dY31bkIYHtVuvCAYXVanVssnub -----END CERTIFICATE-----Generated at Sat Nov 23 05:02:45 2024 by rpki-client on console-fra.rpki-client.org