$ rpki-client -vvf rpki.apnic.net/member_repository/A914DF56/BD7FA038152311ECB74F2080C4F9AE02/E5bqlAlF_CBf8uPRsr4bkNcsxek.mft File: E5bqlAlF_CBf8uPRsr4bkNcsxek.mft (raw, json) Hash identifier: dghPgXWoI0sOqPVW/VG1BShnfm6w+XvntOYSfFPP4Wg= Subject key identifier: 15:2B:76:32:E3:27:B0:81:41:5F:97:BA:E8:ED:58:54:92:D8:DC:F5 Authority key identifier: 13:96:EA:94:09:45:FC:20:5F:F2:E3:D1:B2:BE:1B:90:D7:2C:C5:E9 Certificate issuer: /CN=A914DF56/serialNumber=1396EA940945FC205FF2E3D1B2BE1B90D72CC5E9 Certificate serial: 04A0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/E5bqlAlF_CBf8uPRsr4bkNcsxek.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914DF56/BD7FA038152311ECB74F2080C4F9AE02/E5bqlAlF_CBf8uPRsr4bkNcsxek.mft Manifest number: 0499 Signing time: Fri 22 Nov 2024 23:34:09 +0000 Manifest this update: Fri 22 Nov 2024 23:34:09 +0000 Manifest next update: Fri 29 Nov 2024 23:34:09 +0000 Files and hashes: 1: E5bqlAlF_CBf8uPRsr4bkNcsxek.crl (hash: yFJW03of08X2plPkqEidOYbP/bIvpgf+CJvJvRZo0aU=) 2: EB17A8C2152511ECAD055780C4F9AE02.roa (hash: yhqcfLmydnSz1e+iNoZqgS7pcnwEqMjkKUaaJlx7sic=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914DF56/BD7FA038152311ECB74F2080C4F9AE02/E5bqlAlF_CBf8uPRsr4bkNcsxek.crl rsync://rpki.apnic.net/member_repository/A914DF56/BD7FA038152311ECB74F2080C4F9AE02/E5bqlAlF_CBf8uPRsr4bkNcsxek.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/E5bqlAlF_CBf8uPRsr4bkNcsxek.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1184 (0x4a0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914DF56/serialNumber=1396EA940945FC205FF2E3D1B2BE1B90D72CC5E9 Validity Not Before: Nov 22 23:34:09 2024 GMT Not After : Nov 29 23:34:09 2024 GMT Subject: CN=674114f1-0bd7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:5d:54:5a:e8:85:6a:df:2e:a5:1e:13:fb:0f: 2e:f6:bf:fd:b8:e7:44:ff:4b:1c:84:f5:9b:24:37: 3e:67:1a:73:56:d3:80:86:cd:52:54:cf:82:c2:bb: f4:01:9a:33:7b:8c:de:a7:99:08:3e:41:38:71:e5: a9:e2:34:20:4d:49:23:18:fe:24:cd:75:d5:d2:68: cc:90:82:3a:63:6a:7d:1c:ad:2a:3f:9c:d7:90:a1: 57:28:d7:5a:91:5d:c6:e3:6f:b0:6c:64:40:fd:e8: 26:1c:1b:d4:ed:3a:4d:07:db:30:8b:af:8c:e7:aa: dc:c3:6c:fa:82:70:ca:bd:ae:87:67:43:9f:be:fa: 1c:20:40:5e:92:10:60:6b:d8:ce:b3:17:e2:42:f7: 1a:71:fe:76:ab:83:8d:e2:37:e2:51:d1:a2:3d:bb: 44:b2:2e:b7:8f:7b:50:26:dd:0c:58:f2:fe:97:d4: ea:dc:1b:c4:cb:cd:0c:3d:da:a4:67:9e:74:c3:22: 0c:72:4e:0f:c0:40:93:10:ec:33:89:78:cc:37:aa: 20:9c:cd:62:9a:50:fa:63:b5:58:d3:47:aa:a3:ac: 94:03:9a:e2:13:99:51:c5:e3:86:4b:48:f1:1c:3c: 33:5e:84:79:09:1b:33:b6:ce:3b:b8:b5:d4:fc:01: 13:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:2B:76:32:E3:27:B0:81:41:5F:97:BA:E8:ED:58:54:92:D8:DC:F5 X509v3 Authority Key Identifier: keyid:13:96:EA:94:09:45:FC:20:5F:F2:E3:D1:B2:BE:1B:90:D7:2C:C5:E9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914DF56/BD7FA038152311ECB74F2080C4F9AE02/E5bqlAlF_CBf8uPRsr4bkNcsxek.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/E5bqlAlF_CBf8uPRsr4bkNcsxek.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914DF56/BD7FA038152311ECB74F2080C4F9AE02/E5bqlAlF_CBf8uPRsr4bkNcsxek.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 60:d5:0c:1f:fe:5f:36:b6:10:ba:1f:d4:21:eb:2d:58:29:9e: e9:5d:27:16:2c:e2:90:83:31:8e:76:65:56:86:d6:97:ab:9f: d4:38:d4:2b:58:d6:8b:50:44:3b:ce:5c:ae:9e:fa:f1:07:f8: 61:ab:82:29:11:f1:71:ae:23:ab:47:8d:b3:28:9b:72:4d:6d: 21:d8:6b:d8:4b:8b:83:1f:ed:e6:34:52:cb:98:c6:82:95:4c: ca:3a:70:3e:ec:cf:4d:76:7c:7f:fe:46:24:31:bb:1f:f1:16: 81:b4:3c:61:50:87:94:08:37:9f:36:00:c2:96:73:22:1a:7c: 9e:28:f9:94:7e:fb:53:e1:fc:0b:be:71:31:48:98:d8:34:10: a0:ed:5c:ff:db:37:fc:19:e3:3d:64:5d:ef:e3:74:0a:fd:6d: 02:61:11:51:11:04:89:99:b8:52:1c:f9:7b:0b:75:51:1a:80: b2:39:9e:cc:8a:6c:3b:bf:73:9f:e1:b3:37:b8:bb:af:24:9e: e5:ea:fe:5f:b0:33:b4:6a:d0:34:4f:aa:93:9a:5e:f8:68:ea: c6:3a:e7:a6:b0:57:24:2b:fe:a7:0f:e3:29:46:ab:03:d2:7c: 43:bf:bd:23:8e:54:43:0f:14:0d:81:6a:4d:8c:5c:30:c2:b0: ba:5a:36:e0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBKAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NERGNTYxMTAvBgNVBAUTKDEzOTZFQTk0MDk0NUZDMjA1RkYyRTNEMUIyQkUxQjkw RDcyQ0M1RTkwHhcNMjQxMTIyMjMzNDA5WhcNMjQxMTI5MjMzNDA5WjAYMRYwFAYD VQQDEw02NzQxMTRmMS0wYmQ3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuV1UWuiFat8upR4T+w8u9r/9uOdE/0schPWbJDc+ZxpzVtOAhs1SVM+Cwrv0 AZoze4zep5kIPkE4ceWp4jQgTUkjGP4kzXXV0mjMkII6Y2p9HK0qP5zXkKFXKNda kV3G42+wbGRA/egmHBvU7TpNB9swi6+M56rcw2z6gnDKva6HZ0OfvvocIEBekhBg a9jOsxfiQvcacf52q4ON4jfiUdGiPbtEsi63j3tQJt0MWPL+l9Tq3BvEy80MPdqk Z550wyIMck4PwECTEOwziXjMN6ognM1imlD6Y7VY00eqo6yUA5riE5lRxeOGS0jx HDwzXoR5CRszts47uLXU/AETDQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBUrdjLj J7CBQV+XuujtWFSS2Nz1MB8GA1UdIwQYMBaAFBOW6pQJRfwgX/Lj0bK+G5DXLMXp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0REY1Ni9CRDdGQTAzODE1 MjMxMUVDQjc0RjIwODBDNEY5QUUwMi9FNWJxbEFsRl9DQmY4dVBSc3I0YmtOY3N4 ZWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0U1YnFsQWxGX0NCZjh1UFJzcjRia05jc3hlay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 REY1Ni9CRDdGQTAzODE1MjMxMUVDQjc0RjIwODBDNEY5QUUwMi9FNWJxbEFsRl9D QmY4dVBSc3I0YmtOY3N4ZWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBg1Qwf/l82thC6H9Qh6y1YKZ7pXScWLOKQgzGOdmVWhtaXq5/UONQr WNaLUEQ7zlyunvrxB/hhq4IpEfFxriOrR42zKJtyTW0h2GvYS4uDH+3mNFLLmMaC lUzKOnA+7M9Ndnx//kYkMbsf8RaBtDxhUIeUCDefNgDClnMiGnyeKPmUfvtT4fwL vnExSJjYNBCg7Vz/2zf8GeM9ZF3v43QK/W0CYRFREQSJmbhSHPl7C3VRGoCyOZ7M imw7v3Of4bM3uLuvJJ7l6v5fsDO0atA0T6qTml74aOrGOuemsFckK/6nD+MpRqsD 0nxDv70jjlRDDxQNgWpNjFwwwrC6Wjbg -----END CERTIFICATE-----Generated at Sat Nov 23 00:49:33 2024 by rpki-client on console-fra.rpki-client.org