$ rpki-client -vvf rpki.apnic.net/member_repository/A9135F03/1BFC00EE3FE011EB8743180DC4F9AE02/IhKO6LQdoZG8pEiIxhUzENZmp78.mft File: IhKO6LQdoZG8pEiIxhUzENZmp78.mft (raw, json) Hash identifier: ct8Pj4W7HcqvwcOGWe4rJFDo3N7ip4nRDBjBNX8TZ+E= Subject key identifier: 05:1F:76:77:BE:30:39:5A:14:BC:BD:CC:DE:B6:9A:07:11:E8:14:43 Authority key identifier: 22:12:8E:E8:B4:1D:A1:91:BC:A4:48:88:C6:15:33:10:D6:66:A7:BF Certificate issuer: /CN=A9135F03/serialNumber=22128EE8B41DA191BCA44888C6153310D666A7BF Certificate serial: 06A4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IhKO6LQdoZG8pEiIxhUzENZmp78.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9135F03/1BFC00EE3FE011EB8743180DC4F9AE02/IhKO6LQdoZG8pEiIxhUzENZmp78.mft Manifest number: 06A4 Signing time: Fri 22 Nov 2024 21:45:41 +0000 Manifest this update: Fri 22 Nov 2024 21:45:41 +0000 Manifest next update: Fri 29 Nov 2024 21:45:41 +0000 Files and hashes: 1: IhKO6LQdoZG8pEiIxhUzENZmp78.crl (hash: QShwq1BZSTK+SxWLI4VIWJJGHlztkrzGpSpMHxR5eBs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9135F03/1BFC00EE3FE011EB8743180DC4F9AE02/IhKO6LQdoZG8pEiIxhUzENZmp78.crl rsync://rpki.apnic.net/member_repository/A9135F03/1BFC00EE3FE011EB8743180DC4F9AE02/IhKO6LQdoZG8pEiIxhUzENZmp78.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IhKO6LQdoZG8pEiIxhUzENZmp78.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1700 (0x6a4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9135F03/serialNumber=22128EE8B41DA191BCA44888C6153310D666A7BF Validity Not Before: Nov 22 21:45:41 2024 GMT Not After : Nov 29 21:45:41 2024 GMT Subject: CN=6740fb85-51b7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:a3:ab:55:be:ad:21:61:97:cc:be:c4:c6:4c: 21:ff:67:f7:50:3a:00:f7:2a:9d:2f:38:39:b0:9f: e6:a7:97:42:9d:dc:14:ae:d8:78:1d:85:16:31:ea: 44:91:a2:7b:f1:52:c9:23:1d:6a:1a:85:43:73:4b: e0:48:39:bd:60:a5:79:3f:db:6c:93:e8:7e:6b:1a: c4:40:22:f3:66:77:31:b9:b7:cd:e7:eb:4e:d9:f9: 7f:19:5b:f5:29:3e:08:2f:a1:01:6b:b9:45:45:1f: b8:ab:64:36:74:5a:af:23:e5:b0:1a:21:1b:b5:ac: cd:a1:b3:d5:23:4f:06:dd:ae:f5:92:77:80:34:8f: 82:e7:de:46:ba:2a:0f:86:17:a0:95:05:bf:db:a7: 84:1f:a9:f7:8d:95:68:60:3a:bd:b6:93:e2:38:e3: a7:2d:0f:b2:24:d4:9b:df:29:c4:d2:d6:57:79:fc: e7:20:81:ab:3a:92:90:c9:c1:97:22:52:ec:20:1c: 15:80:4e:df:38:d7:9a:89:fd:ff:f8:da:93:7d:47: 2b:a6:53:f4:e0:1c:83:15:1b:f5:e2:43:1e:cf:64: 54:1c:7d:b7:cd:ab:2b:a3:42:18:a5:8f:71:dd:81: 5a:42:6b:b3:29:a6:01:49:b8:66:08:77:ed:ac:ce: 92:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:1F:76:77:BE:30:39:5A:14:BC:BD:CC:DE:B6:9A:07:11:E8:14:43 X509v3 Authority Key Identifier: keyid:22:12:8E:E8:B4:1D:A1:91:BC:A4:48:88:C6:15:33:10:D6:66:A7:BF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9135F03/1BFC00EE3FE011EB8743180DC4F9AE02/IhKO6LQdoZG8pEiIxhUzENZmp78.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IhKO6LQdoZG8pEiIxhUzENZmp78.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9135F03/1BFC00EE3FE011EB8743180DC4F9AE02/IhKO6LQdoZG8pEiIxhUzENZmp78.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 52:f6:7b:f1:d9:2b:98:b7:6e:25:12:98:41:ad:b0:88:84:15: d8:61:81:1b:e2:f6:0b:82:be:96:81:78:60:ff:6d:50:49:7e: c9:87:c3:45:46:02:e3:8f:a7:40:26:58:94:ae:0e:83:e8:48: aa:9d:32:60:63:b1:09:a9:d1:c6:7e:b3:fb:5c:88:8d:8c:d3: 0d:28:22:91:3c:c2:dd:64:be:20:bd:7c:06:45:b9:46:81:12: f9:0a:49:12:0e:64:1b:58:eb:90:1a:c5:2a:4d:8c:1c:a6:d6: 2e:1b:8f:81:e9:32:31:5f:ea:14:f4:5f:3b:02:14:24:2d:30: ef:06:91:06:3f:08:e6:e2:6f:8d:9d:4d:ff:14:75:3d:ef:69: 08:43:f5:a2:06:13:00:64:53:5c:6a:b6:78:b4:84:11:c5:5b: ba:58:32:a3:55:db:38:d1:1a:e0:39:04:ea:20:87:2f:b6:79: 79:ad:14:1a:15:53:23:d7:65:94:a8:50:03:c5:8f:03:9a:e6: 70:3e:36:e3:ab:e0:95:06:09:72:1e:3f:41:ae:8c:3b:74:76: fc:ba:9e:d5:0b:39:80:b9:51:07:e1:1e:06:70:71:ed:c3:8f: 6f:bb:7a:18:c5:94:07:1f:d8:c6:1f:4c:00:7f:51:04:81:7e: b8:35:5e:80 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBqQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzVGMDMxMTAvBgNVBAUTKDIyMTI4RUU4QjQxREExOTFCQ0E0NDg4OEM2MTUzMzEw RDY2NkE3QkYwHhcNMjQxMTIyMjE0NTQxWhcNMjQxMTI5MjE0NTQxWjAYMRYwFAYD VQQDEw02NzQwZmI4NS01MWI3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0KOrVb6tIWGXzL7Exkwh/2f3UDoA9yqdLzg5sJ/mp5dCndwUrth4HYUWMepE kaJ78VLJIx1qGoVDc0vgSDm9YKV5P9tsk+h+axrEQCLzZncxubfN5+tO2fl/GVv1 KT4IL6EBa7lFRR+4q2Q2dFqvI+WwGiEbtazNobPVI08G3a71kneANI+C595GuioP hheglQW/26eEH6n3jZVoYDq9tpPiOOOnLQ+yJNSb3ynE0tZXefznIIGrOpKQycGX IlLsIBwVgE7fONeaif3/+NqTfUcrplP04ByDFRv14kMez2RUHH23zasro0IYpY9x 3YFaQmuzKaYBSbhmCHftrM6StwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAUfdne+ MDlaFLy9zN62mgcR6BRDMB8GA1UdIwQYMBaAFCISjui0HaGRvKRIiMYVMxDWZqe/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNUYwMy8xQkZDMDBFRTNG RTAxMUVCODc0MzE4MERDNEY5QUUwMi9JaEtPNkxRZG9aRzhwRWlJeGhVekVOWm1w NzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0loS082TFFkb1pHOHBFaUl4aFV6RU5abXA3OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NUYwMy8xQkZDMDBFRTNGRTAxMUVCODc0MzE4MERDNEY5QUUwMi9JaEtPNkxRZG9a RzhwRWlJeGhVekVOWm1wNzgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBS9nvx2SuYt24lEphBrbCIhBXYYYEb4vYLgr6WgXhg/21QSX7Jh8NF RgLjj6dAJliUrg6D6EiqnTJgY7EJqdHGfrP7XIiNjNMNKCKRPMLdZL4gvXwGRblG gRL5CkkSDmQbWOuQGsUqTYwcptYuG4+B6TIxX+oU9F87AhQkLTDvBpEGPwjm4m+N nU3/FHU972kIQ/WiBhMAZFNcarZ4tIQRxVu6WDKjVds40RrgOQTqIIcvtnl5rRQa FVMj12WUqFADxY8DmuZwPjbjq+CVBglyHj9Brow7dHb8up7VCzmAuVEH4R4GcHHt w49vu3oYxZQHH9jGH0wAf1EEgX64NV6A -----END CERTIFICATE-----Generated at Fri Nov 22 22:24:06 2024 by rpki-client on console-fra.rpki-client.org