$ rpki-client -vvf rpki.apnic.net/member_repository/A913B0D6/89A0E7A2086A11EB9DF33842C4F9AE02/4tgT1mzlDdk4_DpTLbjt4sW6eVw.mft File: 4tgT1mzlDdk4_DpTLbjt4sW6eVw.mft (raw, json) Hash identifier: CEYFUFGBLNqehGaEPx1oIfDdS65X6V6mAm6iRxMcy0s= Subject key identifier: 16:08:0F:AB:13:9B:78:EE:25:AC:AD:F4:4D:A3:B9:EA:67:74:5D:2F Authority key identifier: E2:D8:13:D6:6C:E5:0D:D9:38:FC:3A:53:2D:B8:ED:E2:C5:BA:79:5C Certificate issuer: /CN=A913B0D6/serialNumber=E2D813D66CE50DD938FC3A532DB8EDE2C5BA795C Certificate serial: 0740 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4tgT1mzlDdk4_DpTLbjt4sW6eVw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913B0D6/89A0E7A2086A11EB9DF33842C4F9AE02/4tgT1mzlDdk4_DpTLbjt4sW6eVw.mft Manifest number: 073A Signing time: Fri 22 Nov 2024 21:12:27 +0000 Manifest this update: Fri 22 Nov 2024 21:12:26 +0000 Manifest next update: Fri 29 Nov 2024 21:12:26 +0000 Files and hashes: 1: 4tgT1mzlDdk4_DpTLbjt4sW6eVw.crl (hash: qVQyuryuwGa7ZG2rCL0wc0RWerGhwNXiSQiCeH3If8s=) 2: A7501D94086B11EBB0FF1A43C4F9AE02.roa (hash: ljCV+6EoHUmfnmRqDVFzjyrXA6ZYTvmag8096W3U24A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913B0D6/89A0E7A2086A11EB9DF33842C4F9AE02/4tgT1mzlDdk4_DpTLbjt4sW6eVw.crl rsync://rpki.apnic.net/member_repository/A913B0D6/89A0E7A2086A11EB9DF33842C4F9AE02/4tgT1mzlDdk4_DpTLbjt4sW6eVw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4tgT1mzlDdk4_DpTLbjt4sW6eVw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1856 (0x740) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913B0D6/serialNumber=E2D813D66CE50DD938FC3A532DB8EDE2C5BA795C Validity Not Before: Nov 22 21:12:26 2024 GMT Not After : Nov 29 21:12:26 2024 GMT Subject: CN=6740f3ba-724d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:b6:a1:b0:54:5e:a9:10:3d:34:ab:8c:3e:60: 66:31:b3:4b:01:12:56:ff:85:00:7b:fb:c8:77:19: 6f:ee:12:e5:7d:ca:25:d6:5c:ef:70:d7:21:b6:6c: 72:95:a3:ec:29:43:15:73:bf:20:53:00:49:64:e5: ee:89:c0:ac:46:b2:89:7a:f3:cb:62:9b:20:b0:01: 67:43:7e:13:44:05:6a:02:ef:ed:b8:65:a3:33:08: 2c:97:ab:ed:da:97:e2:70:b5:9d:84:c1:d1:4e:e9: c8:b0:df:15:28:91:7a:2c:20:12:35:3c:98:34:8c: 24:7a:6a:6e:18:c3:fd:9d:73:f5:ea:85:fd:a5:e2: 69:d9:ab:08:ce:b8:e4:c4:ce:99:8a:40:73:dc:f5: 87:9c:33:44:60:a6:c3:ce:00:f4:48:e1:5a:1b:4c: 0e:08:cf:51:b5:52:b7:62:79:59:be:26:fb:2e:94: 48:43:d5:ac:b2:b9:5f:6c:97:bf:37:02:d3:ee:a7: f4:8f:12:56:62:db:0e:1f:92:b1:02:db:55:0f:65: 9b:28:31:6a:82:f8:a3:3d:2b:09:01:5b:95:d6:3d: e1:72:8c:97:7c:a2:ac:39:e0:63:d2:b0:9e:c4:43: e0:0e:dd:83:41:48:28:55:29:52:c0:4b:76:d1:dc: 54:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:08:0F:AB:13:9B:78:EE:25:AC:AD:F4:4D:A3:B9:EA:67:74:5D:2F X509v3 Authority Key Identifier: keyid:E2:D8:13:D6:6C:E5:0D:D9:38:FC:3A:53:2D:B8:ED:E2:C5:BA:79:5C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913B0D6/89A0E7A2086A11EB9DF33842C4F9AE02/4tgT1mzlDdk4_DpTLbjt4sW6eVw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4tgT1mzlDdk4_DpTLbjt4sW6eVw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913B0D6/89A0E7A2086A11EB9DF33842C4F9AE02/4tgT1mzlDdk4_DpTLbjt4sW6eVw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a3:6c:fd:20:a0:ea:ba:88:3f:90:bc:6a:e7:23:e0:0d:c5:b5: 67:49:cc:cd:ec:b5:02:d9:b2:02:d5:b2:a4:b1:0a:47:03:cd: 5c:3d:5d:77:5a:93:69:f8:3b:6d:c6:a1:03:05:72:da:29:5c: f5:28:f7:7a:90:af:a8:8c:e5:25:b9:62:97:f9:8b:47:b0:c9: eb:64:87:59:4e:a7:4b:19:a2:2c:b0:da:a0:bd:5c:ea:10:a5: 4c:5e:76:49:48:ea:00:d8:f1:00:a2:30:94:95:bd:00:04:a0: 87:30:04:97:fd:97:e0:14:3e:a7:82:9c:00:b1:28:08:2e:f5: ac:be:9b:f1:6d:d8:1b:5f:c7:cb:f6:3e:f8:bf:3b:c5:c3:7f: 64:45:d8:02:47:fd:41:5f:60:e2:73:1b:63:8a:fa:d3:fc:c2: 55:a9:fa:2b:14:a8:09:cc:34:6b:ea:a3:1a:8f:93:a5:05:07: 8c:84:d0:25:63:bb:2a:d4:a8:4a:27:b8:80:9d:8b:00:7e:7e: ec:57:e5:ef:b6:71:57:67:ca:61:7d:04:56:7d:33:dc:8a:76: 61:06:b5:95:07:f1:73:d9:59:81:2a:b4:d3:ae:c6:1e:44:40: 6d:48:ba:ca:99:6e:7c:a8:ae:eb:77:ff:55:f6:65:06:f2:dd: 83:f8:f6:03 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB0AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0IwRDYxMTAvBgNVBAUTKEUyRDgxM0Q2NkNFNTBERDkzOEZDM0E1MzJEQjhFREUy QzVCQTc5NUMwHhcNMjQxMTIyMjExMjI2WhcNMjQxMTI5MjExMjI2WjAYMRYwFAYD VQQDEw02NzQwZjNiYS03MjRkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsrahsFReqRA9NKuMPmBmMbNLARJW/4UAe/vIdxlv7hLlfcol1lzvcNchtmxy laPsKUMVc78gUwBJZOXuicCsRrKJevPLYpsgsAFnQ34TRAVqAu/tuGWjMwgsl6vt 2pficLWdhMHRTunIsN8VKJF6LCASNTyYNIwkempuGMP9nXP16oX9peJp2asIzrjk xM6ZikBz3PWHnDNEYKbDzgD0SOFaG0wOCM9RtVK3YnlZvib7LpRIQ9WssrlfbJe/ NwLT7qf0jxJWYtsOH5KxAttVD2WbKDFqgvijPSsJAVuV1j3hcoyXfKKsOeBj0rCe xEPgDt2DQUgoVSlSwEt20dxUDQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBYID6sT m3juJayt9E2juepndF0vMB8GA1UdIwQYMBaAFOLYE9Zs5Q3ZOPw6Uy247eLFunlc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQjBENi84OUEwRTdBMjA4 NkExMUVCOURGMzM4NDJDNEY5QUUwMi80dGdUMW16bERkazRfRHBUTGJqdDRzVzZl VncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzR0Z1QxbXpsRGRrNF9EcFRMYmp0NHNXNmVWdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz QjBENi84OUEwRTdBMjA4NkExMUVCOURGMzM4NDJDNEY5QUUwMi80dGdUMW16bERk azRfRHBUTGJqdDRzVzZlVncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCjbP0goOq6iD+QvGrnI+ANxbVnSczN7LUC2bIC1bKksQpHA81cPV13 WpNp+DttxqEDBXLaKVz1KPd6kK+ojOUluWKX+YtHsMnrZIdZTqdLGaIssNqgvVzq EKVMXnZJSOoA2PEAojCUlb0ABKCHMASX/ZfgFD6ngpwAsSgILvWsvpvxbdgbX8fL 9j74vzvFw39kRdgCR/1BX2DicxtjivrT/MJVqforFKgJzDRr6qMaj5OlBQeMhNAl Y7sq1KhKJ7iAnYsAfn7sV+XvtnFXZ8phfQRWfTPcinZhBrWVB/Fz2VmBKrTTrsYe REBtSLrKmW58qK7rd/9V9mUG8t2D+PYD -----END CERTIFICATE-----Generated at Fri Nov 22 22:24:07 2024 by rpki-client on console-fra.rpki-client.org