$ rpki-client -vvf rpki.apnic.net/member_repository/A9131AC1/FE68D3C4B99011EB9ABE7E4EC4F9AE02/nJp0feAK9FuI94QRKOidsT0jFyk.mft File: nJp0feAK9FuI94QRKOidsT0jFyk.mft (raw, json) Hash identifier: L/h/C4yuHV8raM/hHK6ztvJ+eRsKv1p7OYDKfGqVKaQ= Subject key identifier: 57:0D:D9:C8:8B:4D:9F:BA:16:6B:08:F3:CA:99:14:EA:C7:5B:E6:42 Authority key identifier: 9C:9A:74:7D:E0:0A:F4:5B:88:F7:84:11:28:E8:9D:B1:3D:23:17:29 Certificate issuer: /CN=A9131AC1/serialNumber=9C9A747DE00AF45B88F7841128E89DB13D231729 Certificate serial: 0575 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nJp0feAK9FuI94QRKOidsT0jFyk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9131AC1/FE68D3C4B99011EB9ABE7E4EC4F9AE02/nJp0feAK9FuI94QRKOidsT0jFyk.mft Manifest number: 0573 Signing time: Fri 22 Nov 2024 22:51:07 +0000 Manifest this update: Fri 22 Nov 2024 22:51:07 +0000 Manifest next update: Fri 29 Nov 2024 22:51:07 +0000 Files and hashes: 1: nJp0feAK9FuI94QRKOidsT0jFyk.crl (hash: RHJQAi8jpRldptXAbB1eVIU9J1VupsaKKC6VltA9I0E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9131AC1/FE68D3C4B99011EB9ABE7E4EC4F9AE02/nJp0feAK9FuI94QRKOidsT0jFyk.crl rsync://rpki.apnic.net/member_repository/A9131AC1/FE68D3C4B99011EB9ABE7E4EC4F9AE02/nJp0feAK9FuI94QRKOidsT0jFyk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nJp0feAK9FuI94QRKOidsT0jFyk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1397 (0x575) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9131AC1/serialNumber=9C9A747DE00AF45B88F7841128E89DB13D231729 Validity Not Before: Nov 22 22:51:07 2024 GMT Not After : Nov 29 22:51:07 2024 GMT Subject: CN=67410adb-6620 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:41:b6:2c:81:ee:b9:10:a5:54:c3:ba:12:bc: 72:78:9d:90:b0:ee:05:b3:d7:a9:0a:cf:b3:ed:a8: 53:14:3f:f8:d6:d8:22:80:de:0e:72:32:c0:d2:17: d4:7a:09:5a:00:63:55:09:99:51:7f:65:22:7a:6e: 15:17:37:1a:e7:cf:90:f1:1c:de:f7:ec:b1:39:05: db:51:7f:02:2c:66:a0:40:d7:be:4d:da:ce:12:f5: 1a:ce:7c:3f:16:2e:7d:74:32:03:b9:ac:e8:f9:74: df:86:f9:91:7c:0a:b4:16:c0:59:3b:f3:60:d8:72: 15:3d:e6:8e:19:2d:7d:2b:76:1c:28:d8:69:fe:0c: 0d:4d:04:ea:f9:24:84:02:4e:60:57:ff:51:11:09: 63:a1:f4:2e:01:42:97:80:72:0e:e8:e4:b7:dd:0a: 8c:84:02:e5:ec:7f:33:07:cd:1b:03:c6:ed:c8:3b: e6:5d:d9:07:53:54:8a:e2:ec:16:28:fa:37:76:e6: 28:42:ed:ff:f0:8b:b3:21:af:57:d3:bc:ec:d2:5e: 8d:9e:8a:dd:42:81:c5:c0:6a:11:24:e5:72:01:13: 13:1d:63:3e:84:4f:ca:26:cc:30:56:0c:27:d7:2d: e3:66:f7:ae:a5:07:37:bd:f1:68:41:1f:34:c5:b5: d2:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:0D:D9:C8:8B:4D:9F:BA:16:6B:08:F3:CA:99:14:EA:C7:5B:E6:42 X509v3 Authority Key Identifier: keyid:9C:9A:74:7D:E0:0A:F4:5B:88:F7:84:11:28:E8:9D:B1:3D:23:17:29 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9131AC1/FE68D3C4B99011EB9ABE7E4EC4F9AE02/nJp0feAK9FuI94QRKOidsT0jFyk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nJp0feAK9FuI94QRKOidsT0jFyk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9131AC1/FE68D3C4B99011EB9ABE7E4EC4F9AE02/nJp0feAK9FuI94QRKOidsT0jFyk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b4:0a:4b:4f:33:ee:58:1a:b1:ff:11:40:50:b9:e0:da:f1:83: 5a:93:8c:54:23:14:af:32:e4:b3:7b:46:4f:be:ee:50:ad:28: 5c:14:b2:d2:ac:84:36:83:ce:67:af:1e:7b:10:12:05:0f:76: ba:fe:33:ab:a8:01:e6:a1:73:e8:7b:5d:43:4e:47:dd:c4:34: 2a:d0:69:6a:e5:8c:ff:1a:49:8d:03:11:89:04:5a:02:2c:3a: 02:18:a5:72:da:ed:50:76:d6:4f:3a:30:5c:f4:27:3f:43:36: 48:40:e8:b8:aa:65:67:96:15:f1:0c:1b:c9:d9:88:40:05:4d: f4:58:1e:8d:eb:dd:cc:ff:fa:3a:ac:38:d9:02:36:74:ce:ea: 78:f5:61:03:ac:d3:9f:01:c6:5b:1b:be:fd:ad:c0:1a:e9:4b: 45:47:ab:1b:42:e4:a2:b3:a8:0e:64:74:da:15:83:25:9e:1d: d0:85:a6:cc:43:b3:3c:7a:08:2a:b3:3d:75:0c:bc:b6:5f:7b: 69:74:cd:6d:bb:5d:02:39:97:ca:7b:11:8f:a0:6e:22:4e:19: 31:ea:3d:f8:83:9e:7a:6d:fc:c8:2e:f4:fb:66:46:e4:2d:ab: c0:ef:ed:5f:52:6a:1a:9e:97:1c:88:2f:f2:ce:28:2d:67:eb: e8:74:3b:88 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBXUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzFBQzExMTAvBgNVBAUTKDlDOUE3NDdERTAwQUY0NUI4OEY3ODQxMTI4RTg5REIx M0QyMzE3MjkwHhcNMjQxMTIyMjI1MTA3WhcNMjQxMTI5MjI1MTA3WjAYMRYwFAYD VQQDEw02NzQxMGFkYi02NjIwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4EG2LIHuuRClVMO6ErxyeJ2QsO4Fs9epCs+z7ahTFD/41tgigN4OcjLA0hfU eglaAGNVCZlRf2Uiem4VFzca58+Q8Rze9+yxOQXbUX8CLGagQNe+TdrOEvUaznw/ Fi59dDIDuazo+XTfhvmRfAq0FsBZO/Ng2HIVPeaOGS19K3YcKNhp/gwNTQTq+SSE Ak5gV/9REQljofQuAUKXgHIO6OS33QqMhALl7H8zB80bA8btyDvmXdkHU1SK4uwW KPo3duYoQu3/8IuzIa9X07zs0l6NnordQoHFwGoRJOVyARMTHWM+hE/KJswwVgwn 1y3jZveupQc3vfFoQR80xbXSXwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFcN2ciL TZ+6FmsI88qZFOrHW+ZCMB8GA1UdIwQYMBaAFJyadH3gCvRbiPeEESjonbE9Ixcp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMUFDMS9GRTY4RDNDNEI5 OTAxMUVCOUFCRTdFNEVDNEY5QUUwMi9uSnAwZmVBSzlGdUk5NFFSS09pZHNUMGpG eWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25KcDBmZUFLOUZ1STk0UVJLT2lkc1QwakZ5ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MUFDMS9GRTY4RDNDNEI5OTAxMUVCOUFCRTdFNEVDNEY5QUUwMi9uSnAwZmVBSzlG dUk5NFFSS09pZHNUMGpGeWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC0CktPM+5YGrH/EUBQueDa8YNak4xUIxSvMuSze0ZPvu5QrShcFLLS rIQ2g85nrx57EBIFD3a6/jOrqAHmoXPoe11DTkfdxDQq0Glq5Yz/GkmNAxGJBFoC LDoCGKVy2u1QdtZPOjBc9Cc/QzZIQOi4qmVnlhXxDBvJ2YhABU30WB6N693M//o6 rDjZAjZ0zup49WEDrNOfAcZbG779rcAa6UtFR6sbQuSis6gOZHTaFYMlnh3QhabM Q7M8eggqsz11DLy2X3tpdM1tu10COZfKexGPoG4iThkx6j34g556bfzILvT7Zkbk LavA7+1fUmoanpcciC/yzigtZ+vodDuI -----END CERTIFICATE-----Generated at Fri Nov 22 23:39:23 2024 by rpki-client on console-fra.rpki-client.org