$ rpki-client -vvf rpki.apnic.net/member_repository/A9141FD6/6EEC64301D9111E2B687A5F308B02CD2/a51l6unGl9ohy0vuv030zgpBkyE.mft File: a51l6unGl9ohy0vuv030zgpBkyE.mft (raw, json) Hash identifier: x4VcEE1Jm5+2gmmO7XCYIFur14YS21rjMl3Fq7Y4Rhc= Subject key identifier: 6B:F8:5C:EB:66:EB:D4:27:8E:3F:93:0E:58:C4:8F:08:A3:47:51:DA Authority key identifier: 6B:9D:65:EA:E9:C6:97:DA:21:CB:4B:EE:BF:4D:F4:CE:0A:41:93:21 Certificate issuer: /CN=A9141FD6/serialNumber=6B9D65EAE9C697DA21CB4BEEBF4DF4CE0A419321 Certificate serial: 345E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a51l6unGl9ohy0vuv030zgpBkyE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9141FD6/6EEC64301D9111E2B687A5F308B02CD2/a51l6unGl9ohy0vuv030zgpBkyE.mft Manifest number: 3444 Signing time: Sun 24 Nov 2024 14:41:42 +0000 Manifest this update: Sun 24 Nov 2024 14:41:41 +0000 Manifest next update: Sun 01 Dec 2024 14:41:41 +0000 Files and hashes: 1: a51l6unGl9ohy0vuv030zgpBkyE.crl (hash: cJNBISUOnqxOngvDujP9GJvl8fJyaM3Lz1XCB832oug=) 2: 6215E9C089CF11ECA1DA1810C4F9AE02.roa (hash: zqO+6+1m7aZm2JcpbyGs7JD55ITmH3KS8z593DQAnJc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9141FD6/6EEC64301D9111E2B687A5F308B02CD2/a51l6unGl9ohy0vuv030zgpBkyE.crl rsync://rpki.apnic.net/member_repository/A9141FD6/6EEC64301D9111E2B687A5F308B02CD2/a51l6unGl9ohy0vuv030zgpBkyE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a51l6unGl9ohy0vuv030zgpBkyE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Dec 2024 14:41:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13406 (0x345e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9141FD6/serialNumber=6B9D65EAE9C697DA21CB4BEEBF4DF4CE0A419321 Validity Not Before: Nov 24 14:41:41 2024 GMT Not After : Dec 1 14:41:41 2024 GMT Subject: CN=67433b25-2402 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:33:66:f9:46:78:e3:f1:84:51:6f:0e:e0:79: c3:43:3a:ef:84:ea:66:7e:44:a6:5c:86:a3:f0:c7: 24:96:36:fe:17:9c:a0:cb:87:c3:59:7f:71:fc:dc: 89:28:e0:ce:5d:39:56:ab:26:af:22:b1:52:a9:ca: 42:fe:5b:fe:f8:4b:5c:c5:ad:04:d1:8a:56:70:30: 4e:b8:8b:6a:ea:6f:09:3b:6b:2e:c1:32:d4:9b:f3: 10:93:92:94:b5:b8:d5:8b:81:c8:7c:5f:2c:23:56: c7:60:fc:d9:70:11:ce:3d:f4:41:57:79:6e:5f:f1: ad:e9:83:65:78:44:aa:3c:36:91:84:4a:5f:25:2d: 95:97:73:b7:f8:50:0a:7a:97:dc:78:2a:5b:51:ed: 26:76:d3:cd:99:96:1a:0b:7b:a7:4a:46:d4:71:22: b7:d7:11:36:ab:e1:fc:f9:c3:2a:ea:85:e6:b1:a6: c2:51:1d:29:17:3f:7b:d3:86:76:0f:76:a6:e6:70: 66:92:60:5e:81:14:6c:4b:ca:ff:85:21:e5:e7:38: a4:02:b4:af:6a:67:c1:a3:aa:16:52:b3:9a:8f:b9: 0d:f0:11:e0:81:57:d5:c4:34:d4:df:87:3c:cd:4b: 54:11:5c:e8:dd:5f:b6:cc:6e:18:a8:38:ef:19:df: 7d:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:F8:5C:EB:66:EB:D4:27:8E:3F:93:0E:58:C4:8F:08:A3:47:51:DA X509v3 Authority Key Identifier: keyid:6B:9D:65:EA:E9:C6:97:DA:21:CB:4B:EE:BF:4D:F4:CE:0A:41:93:21 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9141FD6/6EEC64301D9111E2B687A5F308B02CD2/a51l6unGl9ohy0vuv030zgpBkyE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a51l6unGl9ohy0vuv030zgpBkyE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9141FD6/6EEC64301D9111E2B687A5F308B02CD2/a51l6unGl9ohy0vuv030zgpBkyE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6c:ba:68:4e:d2:39:db:f9:31:96:28:31:d8:4f:2a:bc:71:02: 91:71:cf:c1:14:74:6d:2f:de:32:58:3e:ea:d1:7f:db:87:ca: 7b:7f:ec:8c:18:b3:a9:2a:e4:93:1b:c2:be:be:94:95:f4:b1: 07:cc:18:08:91:46:8b:ef:24:c7:55:30:56:87:5c:3a:64:79: c4:1a:c3:60:cd:68:00:14:3c:a1:5a:43:4d:e8:e5:93:a2:fa: 18:29:1d:30:5c:9f:7d:f5:b4:92:73:f5:be:08:ab:6d:2b:83: 2d:27:bb:64:b6:00:69:c9:eb:8b:69:ad:c5:81:07:59:14:99: 8e:60:c9:6b:e5:8f:a7:81:5e:76:28:f1:a5:9b:26:51:b9:01: 25:30:f3:a3:0b:4b:ec:16:b6:c9:e2:62:99:62:63:10:e7:96: fc:af:bf:26:bc:6f:20:32:bc:bd:76:78:ba:aa:f4:a6:7d:e1: ac:d4:6b:c0:94:4f:e6:99:13:c3:52:6d:39:4d:58:80:a5:12: 67:e8:ef:8a:16:c3:eb:2e:8b:74:04:f2:91:20:28:70:1e:20: 16:a4:fd:ca:d1:f5:f2:23:c1:4a:26:fc:92:d9:fe:93:0e:30: ec:79:4b:b0:16:14:85:f3:a1:4a:1a:19:1e:0e:e3:24:13:7b: cb:2a:11:d1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNF4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDFGRDYxMTAvBgNVBAUTKDZCOUQ2NUVBRTlDNjk3REEyMUNCNEJFRUJGNERGNENF MEE0MTkzMjEwHhcNMjQxMTI0MTQ0MTQxWhcNMjQxMjAxMTQ0MTQxWjAYMRYwFAYD VQQDEw02NzQzM2IyNS0yNDAyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsjNm+UZ44/GEUW8O4HnDQzrvhOpmfkSmXIaj8Mckljb+F5ygy4fDWX9x/NyJ KODOXTlWqyavIrFSqcpC/lv++Etcxa0E0YpWcDBOuItq6m8JO2suwTLUm/MQk5KU tbjVi4HIfF8sI1bHYPzZcBHOPfRBV3luX/Gt6YNleESqPDaRhEpfJS2Vl3O3+FAK epfceCpbUe0mdtPNmZYaC3unSkbUcSK31xE2q+H8+cMq6oXmsabCUR0pFz9704Z2 D3am5nBmkmBegRRsS8r/hSHl5zikArSvamfBo6oWUrOaj7kN8BHggVfVxDTU34c8 zUtUEVzo3V+2zG4YqDjvGd991QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGv4XOtm 69Qnjj+TDljEjwijR1HaMB8GA1UdIwQYMBaAFGudZerpxpfaIctL7r9N9M4KQZMh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MUZENi82RUVDNjQzMDFE OTExMUUyQjY4N0E1RjMwOEIwMkNEMi9hNTFsNnVuR2w5b2h5MHZ1djAzMHpncEJr eUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2E1MWw2dW5HbDlvaHkwdnV2MDMwemdwQmt5RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 MUZENi82RUVDNjQzMDFEOTExMUUyQjY4N0E1RjMwOEIwMkNEMi9hNTFsNnVuR2w5 b2h5MHZ1djAzMHpncEJreUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBsumhO0jnb+TGWKDHYTyq8cQKRcc/BFHRtL94yWD7q0X/bh8p7f+yM GLOpKuSTG8K+vpSV9LEHzBgIkUaL7yTHVTBWh1w6ZHnEGsNgzWgAFDyhWkNN6OWT ovoYKR0wXJ999bSSc/W+CKttK4MtJ7tktgBpyeuLaa3FgQdZFJmOYMlr5Y+ngV52 KPGlmyZRuQElMPOjC0vsFrbJ4mKZYmMQ55b8r78mvG8gMry9dni6qvSmfeGs1GvA lE/mmRPDUm05TViApRJn6O+KFsPrLot0BPKRIChwHiAWpP3K0fXyI8FKJvyS2f6T DjDseUuwFhSF86FKGhkeDuMkE3vLKhHR -----END CERTIFICATE-----Generated at Sun Nov 24 17:20:00 2024 by rpki-client on console-fra.rpki-client.org