$ rpki-client -vvf rpki.apnic.net/member_repository/A913384E/B35813648EDD11EBBE67642EC4F9AE02/A43gleg_bKbmOl8jbnsi8v-ZG74.mft File: A43gleg_bKbmOl8jbnsi8v-ZG74.mft (raw, json) Hash identifier: KpSoRU2XcKIa9D3A/Y6C2YYof36bddgNzWZzy/5zGf4= Subject key identifier: 0D:F1:17:E4:75:48:A3:9D:BD:01:DD:45:E8:62:12:77:2F:57:26:5D Authority key identifier: 03:8D:E0:95:E8:3F:6C:A6:E6:3A:5F:23:6E:7B:22:F2:FF:99:1B:BE Certificate issuer: /CN=A913384E/serialNumber=038DE095E83F6CA6E63A5F236E7B22F2FF991BBE Certificate serial: 05F2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A43gleg_bKbmOl8jbnsi8v-ZG74.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913384E/B35813648EDD11EBBE67642EC4F9AE02/A43gleg_bKbmOl8jbnsi8v-ZG74.mft Manifest number: 05E9 Signing time: Fri 22 Nov 2024 22:27:28 +0000 Manifest this update: Fri 22 Nov 2024 22:27:28 +0000 Manifest next update: Fri 29 Nov 2024 22:27:28 +0000 Files and hashes: 1: A43gleg_bKbmOl8jbnsi8v-ZG74.crl (hash: dr/XZsKAKS4sXWPfvggvuOkrER4ZvYBvykn1x3B70Dg=) 2: FCB378AC8EF411EBAE4DC623C4F9AE02.roa (hash: Ef/n9FoPzBDkjpMc9XUOPJVBpNPzwyhkP30323HeIr8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913384E/B35813648EDD11EBBE67642EC4F9AE02/A43gleg_bKbmOl8jbnsi8v-ZG74.crl rsync://rpki.apnic.net/member_repository/A913384E/B35813648EDD11EBBE67642EC4F9AE02/A43gleg_bKbmOl8jbnsi8v-ZG74.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A43gleg_bKbmOl8jbnsi8v-ZG74.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1522 (0x5f2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913384E/serialNumber=038DE095E83F6CA6E63A5F236E7B22F2FF991BBE Validity Not Before: Nov 22 22:27:28 2024 GMT Not After : Nov 29 22:27:28 2024 GMT Subject: CN=67410550-cc8f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:6f:91:9a:6e:bf:25:5d:7f:89:c3:88:6f:ed: 01:30:7d:21:72:d2:74:d2:7d:af:07:32:e2:9f:0e: da:02:1c:a0:15:b9:fe:7b:90:b5:ba:a7:1c:4e:fa: d1:aa:e8:8a:fa:04:0d:c1:f9:92:dd:22:65:d0:a8: 44:16:59:cf:60:84:41:b2:0f:5d:c1:1d:ec:14:5e: 2b:bb:88:eb:d3:e4:74:51:7f:83:03:79:69:7b:4f: 74:70:fd:5b:22:70:1f:b6:de:cd:9e:fc:74:a2:9b: 75:7a:02:6e:11:57:09:f6:95:89:be:f2:13:81:44: 04:4e:8d:eb:04:a0:4c:73:14:bd:b0:a1:91:de:c9: 32:0e:83:ef:aa:b9:ea:c7:4b:11:4a:28:f7:8a:5c: 42:ca:7e:02:47:21:e4:e0:32:18:8f:42:86:71:25: 14:94:0d:e9:36:f1:d8:05:0e:83:1c:11:15:d6:91: 51:b7:59:94:c2:cb:e7:8f:b0:f5:19:ab:81:1e:90: a2:de:4e:4a:f9:27:6d:ba:e7:a6:61:c6:89:30:77: d9:91:04:b8:fd:f2:4d:46:47:bd:21:4b:e2:4d:5d: 8f:e9:d6:5c:10:44:ca:f4:17:a3:71:25:bb:c6:fc: ea:d9:59:14:9b:3d:f6:36:70:ba:93:db:f6:f9:2c: a9:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:F1:17:E4:75:48:A3:9D:BD:01:DD:45:E8:62:12:77:2F:57:26:5D X509v3 Authority Key Identifier: keyid:03:8D:E0:95:E8:3F:6C:A6:E6:3A:5F:23:6E:7B:22:F2:FF:99:1B:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913384E/B35813648EDD11EBBE67642EC4F9AE02/A43gleg_bKbmOl8jbnsi8v-ZG74.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A43gleg_bKbmOl8jbnsi8v-ZG74.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913384E/B35813648EDD11EBBE67642EC4F9AE02/A43gleg_bKbmOl8jbnsi8v-ZG74.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c6:28:e4:03:d4:04:b7:89:c3:b4:7b:66:9c:31:9b:ee:cb:af: b0:ef:a7:19:ec:64:7f:32:c7:84:ec:12:41:a4:8e:0b:e1:0e: 83:9f:dd:bd:a3:3c:1f:8d:21:8a:85:d0:42:12:22:d1:6d:02: c6:df:97:ab:b3:ac:47:56:c2:9e:61:b3:b6:1b:aa:f0:e7:7a: b6:04:70:b9:f0:ce:56:ca:d9:ca:e6:c3:f7:23:d4:b5:33:6f: a0:58:3a:ce:29:be:0c:d5:20:03:69:cc:75:ac:dc:17:2f:6b: 05:8b:0a:58:45:26:cf:2c:03:af:0f:df:ee:8b:9b:d2:73:88: 13:1e:9a:8b:26:49:3e:89:fe:e9:c0:ad:3b:b6:22:a1:a5:fe: 9c:d2:de:bd:3e:35:e4:13:82:ae:93:e4:7d:ef:d2:db:91:2e: 60:b7:eb:42:7c:a1:c3:07:b3:38:20:b8:b6:4f:3f:10:65:8b: d4:23:11:19:72:14:2e:3b:83:e1:c7:e3:8d:f5:7d:fd:55:fc: 5c:8e:4c:83:b7:cf:c4:b9:ba:af:c2:84:1c:7e:7d:57:30:df: 78:f6:0f:a8:09:0c:a7:6a:3f:4d:59:95:fc:c3:06:dc:85:e4: e7:07:3d:d9:40:10:a5:7d:8a:ca:c7:5a:08:7c:df:32:c5:2a: c5:9d:db:26 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBfIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzM4NEUxMTAvBgNVBAUTKDAzOERFMDk1RTgzRjZDQTZFNjNBNUYyMzZFN0IyMkYy RkY5OTFCQkUwHhcNMjQxMTIyMjIyNzI4WhcNMjQxMTI5MjIyNzI4WjAYMRYwFAYD VQQDEw02NzQxMDU1MC1jYzhmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvG+Rmm6/JV1/icOIb+0BMH0hctJ00n2vBzLinw7aAhygFbn+e5C1uqccTvrR quiK+gQNwfmS3SJl0KhEFlnPYIRBsg9dwR3sFF4ru4jr0+R0UX+DA3lpe090cP1b InAftt7Nnvx0opt1egJuEVcJ9pWJvvITgUQETo3rBKBMcxS9sKGR3skyDoPvqrnq x0sRSij3ilxCyn4CRyHk4DIYj0KGcSUUlA3pNvHYBQ6DHBEV1pFRt1mUwsvnj7D1 GauBHpCi3k5K+SdtuuemYcaJMHfZkQS4/fJNRke9IUviTV2P6dZcEETK9BejcSW7 xvzq2VkUmz32NnC6k9v2+Syp7QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFA3xF+R1 SKOdvQHdRehiEncvVyZdMB8GA1UdIwQYMBaAFAON4JXoP2ym5jpfI257IvL/mRu+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMzg0RS9CMzU4MTM2NDhF REQxMUVCQkU2NzY0MkVDNEY5QUUwMi9BNDNnbGVnX2JLYm1PbDhqYm5zaTh2LVpH NzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0E0M2dsZWdfYktibU9sOGpibnNpOHYtWkc3NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz Mzg0RS9CMzU4MTM2NDhFREQxMUVCQkU2NzY0MkVDNEY5QUUwMi9BNDNnbGVnX2JL Ym1PbDhqYm5zaTh2LVpHNzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDGKOQD1AS3icO0e2acMZvuy6+w76cZ7GR/MseE7BJBpI4L4Q6Dn929 ozwfjSGKhdBCEiLRbQLG35ers6xHVsKeYbO2G6rw53q2BHC58M5WytnK5sP3I9S1 M2+gWDrOKb4M1SADacx1rNwXL2sFiwpYRSbPLAOvD9/ui5vSc4gTHpqLJkk+if7p wK07tiKhpf6c0t69PjXkE4Kuk+R979LbkS5gt+tCfKHDB7M4ILi2Tz8QZYvUIxEZ chQuO4Phx+ON9X39VfxcjkyDt8/EubqvwoQcfn1XMN949g+oCQynaj9NWZX8wwbc heTnBz3ZQBClfYrKx1oIfN8yxSrFndsm -----END CERTIFICATE-----Generated at Fri Nov 22 23:39:24 2024 by rpki-client on console-fra.rpki-client.org