$ rpki-client -vvf rpki.apnic.net/member_repository/A914A47A/4AF221DA1D9811E2AD2B398208B02CD2/5S1_f7qsH3Wv-nYu2z8oFgvPvSU.mft File: 5S1_f7qsH3Wv-nYu2z8oFgvPvSU.mft (raw, json) Hash identifier: jYj0/7DB7Q1ilVJurgra9xAKcCQcUGUkW3XrY4GOgRs= Subject key identifier: D1:A5:1B:4D:2D:E5:E5:9F:4A:69:B3:D8:04:B7:08:46:CD:5B:2B:09 Authority key identifier: E5:2D:7F:7F:BA:AC:1F:75:AF:FA:76:2E:DB:3F:28:16:0B:CF:BD:25 Certificate issuer: /CN=A914A47A/serialNumber=E52D7F7FBAAC1F75AFFA762EDB3F28160BCFBD25 Certificate serial: 342C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5S1_f7qsH3Wv-nYu2z8oFgvPvSU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914A47A/4AF221DA1D9811E2AD2B398208B02CD2/5S1_f7qsH3Wv-nYu2z8oFgvPvSU.mft Manifest number: 3427 Signing time: Sun 24 Nov 2024 14:51:47 +0000 Manifest this update: Sun 24 Nov 2024 14:51:46 +0000 Manifest next update: Sun 01 Dec 2024 14:51:46 +0000 Files and hashes: 1: 5S1_f7qsH3Wv-nYu2z8oFgvPvSU.crl (hash: qu0dVYxde7MaTWcUppk1KMuAGo8BnmgylDDGoLTakww=) 2: A5C01D6ED15511EA904EF30BC4F9AE02.roa (hash: g9pqUh5erEZO/WLay3//J8dkPYx1y9WBTENSIPISBog=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914A47A/4AF221DA1D9811E2AD2B398208B02CD2/5S1_f7qsH3Wv-nYu2z8oFgvPvSU.crl rsync://rpki.apnic.net/member_repository/A914A47A/4AF221DA1D9811E2AD2B398208B02CD2/5S1_f7qsH3Wv-nYu2z8oFgvPvSU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5S1_f7qsH3Wv-nYu2z8oFgvPvSU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Dec 2024 14:51:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13356 (0x342c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914A47A/serialNumber=E52D7F7FBAAC1F75AFFA762EDB3F28160BCFBD25 Validity Not Before: Nov 24 14:51:46 2024 GMT Not After : Dec 1 14:51:46 2024 GMT Subject: CN=67433d82-5060 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:2f:8e:ec:47:d8:d2:16:5d:d5:d7:79:e5:71: 17:7e:eb:c0:b0:1e:15:83:24:97:41:d0:56:29:a2: 84:a9:5a:08:a3:06:a3:eb:b0:df:bb:bc:f3:7b:80: 30:20:39:dc:20:83:c2:1e:19:28:4f:11:44:b0:ee: d8:27:b5:64:22:6e:a4:23:98:74:db:75:23:f3:80: 2c:94:e4:24:83:67:49:db:f2:d1:ec:ca:a0:b6:02: 94:82:7f:2a:84:4f:c3:a0:d3:6b:28:dc:d9:3e:45: c1:c1:58:24:3c:ea:9a:96:74:21:fa:11:7e:d4:6d: 7e:71:62:3b:e2:44:7d:74:92:3b:fa:de:7c:97:72: f4:4d:6e:c6:c1:60:8d:cf:20:33:ba:ec:e8:95:43: 5b:7b:20:e5:37:bb:07:f9:39:87:e1:84:1e:c8:f0: b4:00:28:8c:36:b8:7d:c7:e9:b5:1f:25:d9:f2:ab: 61:94:af:f8:81:92:09:45:9e:6b:86:f2:a3:17:6c: 6a:2a:52:8c:e4:5e:c6:46:ac:a3:7b:28:4a:2d:72: c6:a7:f1:3e:b0:a6:1f:43:da:cc:c0:2a:fc:8c:8d: de:b8:75:39:c9:5a:19:ea:1a:fe:07:cd:b3:25:f4: 0e:a9:4d:25:bd:89:b1:d3:0d:2a:40:f5:d9:3f:be: 2d:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:A5:1B:4D:2D:E5:E5:9F:4A:69:B3:D8:04:B7:08:46:CD:5B:2B:09 X509v3 Authority Key Identifier: keyid:E5:2D:7F:7F:BA:AC:1F:75:AF:FA:76:2E:DB:3F:28:16:0B:CF:BD:25 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914A47A/4AF221DA1D9811E2AD2B398208B02CD2/5S1_f7qsH3Wv-nYu2z8oFgvPvSU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5S1_f7qsH3Wv-nYu2z8oFgvPvSU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914A47A/4AF221DA1D9811E2AD2B398208B02CD2/5S1_f7qsH3Wv-nYu2z8oFgvPvSU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9c:92:ba:75:4a:5c:17:d8:8f:6b:3a:b1:f8:48:c5:e4:83:3e: 03:c6:85:fb:3c:96:41:11:cb:71:26:ff:02:f0:76:b8:86:10: 4d:7b:a5:59:7b:05:a2:f8:e0:17:20:42:7f:b9:26:de:8a:f9: 0f:ad:b6:60:8b:3a:fa:6c:42:16:e0:a8:5e:70:b1:03:fa:20: 65:80:14:e7:09:44:39:e3:35:0d:44:3f:d8:cd:7d:3b:4f:c8: 45:08:71:84:07:6e:e1:b7:e0:8c:4b:63:67:c0:e4:35:45:e1: 4d:68:09:8b:d0:76:c2:8e:d1:65:2a:8f:64:70:2f:ed:22:0a: 32:76:6d:9b:2b:a1:d6:51:e2:1b:cd:40:cd:7a:2d:d2:af:7c: c4:5d:e8:83:61:88:71:0e:2c:3d:0d:69:83:eb:0e:ce:c0:37: ff:d9:c5:18:94:ec:11:4b:27:69:f2:c8:32:8c:c8:ec:f6:2b: 19:bb:e8:51:9f:80:78:b3:97:31:fa:aa:88:21:78:6d:cc:fb: 50:7b:fa:e3:aa:20:1e:4f:c1:1f:a8:dd:53:8b:cd:97:9c:4b: c2:03:c6:78:b0:08:ad:e3:ce:05:77:6e:12:b6:d9:46:05:f2: 21:2e:25:0f:46:4c:62:fc:ff:74:ac:c7:ab:67:e7:95:af:bb: 8c:5b:95:19 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNCwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEE0N0ExMTAvBgNVBAUTKEU1MkQ3RjdGQkFBQzFGNzVBRkZBNzYyRURCM0YyODE2 MEJDRkJEMjUwHhcNMjQxMTI0MTQ1MTQ2WhcNMjQxMjAxMTQ1MTQ2WjAYMRYwFAYD VQQDEw02NzQzM2Q4Mi01MDYwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnS+O7EfY0hZd1dd55XEXfuvAsB4VgySXQdBWKaKEqVoIowaj67Dfu7zze4Aw IDncIIPCHhkoTxFEsO7YJ7VkIm6kI5h023Uj84AslOQkg2dJ2/LR7MqgtgKUgn8q hE/DoNNrKNzZPkXBwVgkPOqalnQh+hF+1G1+cWI74kR9dJI7+t58l3L0TW7GwWCN zyAzuuzolUNbeyDlN7sH+TmH4YQeyPC0ACiMNrh9x+m1HyXZ8qthlK/4gZIJRZ5r hvKjF2xqKlKM5F7GRqyjeyhKLXLGp/E+sKYfQ9rMwCr8jI3euHU5yVoZ6hr+B82z JfQOqU0lvYmx0w0qQPXZP74tJQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNGlG00t 5eWfSmmz2AS3CEbNWysJMB8GA1UdIwQYMBaAFOUtf3+6rB91r/p2Lts/KBYLz70l MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QTQ3QS80QUYyMjFEQTFE OTgxMUUyQUQyQjM5ODIwOEIwMkNEMi81UzFfZjdxc0gzV3Ytbll1Mno4b0ZndlB2 U1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVTMV9mN3FzSDNXdi1uWXUyejhvRmd2UHZTVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 QTQ3QS80QUYyMjFEQTFEOTgxMUUyQUQyQjM5ODIwOEIwMkNEMi81UzFfZjdxc0gz V3Ytbll1Mno4b0ZndlB2U1UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCckrp1SlwX2I9rOrH4SMXkgz4DxoX7PJZBEctxJv8C8Ha4hhBNe6VZ ewWi+OAXIEJ/uSbeivkPrbZgizr6bEIW4KhecLED+iBlgBTnCUQ54zUNRD/YzX07 T8hFCHGEB27ht+CMS2NnwOQ1ReFNaAmL0HbCjtFlKo9kcC/tIgoydm2bK6HWUeIb zUDNei3Sr3zEXeiDYYhxDiw9DWmD6w7OwDf/2cUYlOwRSydp8sgyjMjs9isZu+hR n4B4s5cx+qqIIXhtzPtQe/rjqiAeT8EfqN1Ti82XnEvCA8Z4sAit484Fd24SttlG BfIhLiUPRkxi/P90rMerZ+eVr7uMW5UZ -----END CERTIFICATE-----Generated at Sun Nov 24 17:20:03 2024 by rpki-client on console-fra.rpki-client.org