$ rpki-client -vvf rpki.apnic.net/member_repository/A91536B7/F1CD27B473AD11E7ACBD025EC4F9AE02/mB-iJ6KkNcK3bgbJxFLT7HUZhNM.mft File: mB-iJ6KkNcK3bgbJxFLT7HUZhNM.mft (raw, json) Hash identifier: 8Ma1mBLZHuO3JU9t0d+uGCs08oM69Aleefhz6ftiUAI= Subject key identifier: 85:8A:74:07:02:F0:7B:02:17:1E:E3:C2:BF:C3:D0:5E:17:34:D8:2C Authority key identifier: 98:1F:A2:27:A2:A4:35:C2:B7:6E:06:C9:C4:52:D3:EC:75:19:84:D3 Certificate issuer: /CN=A91536B7/serialNumber=981FA227A2A435C2B76E06C9C452D3EC751984D3 Certificate serial: 06C8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mB-iJ6KkNcK3bgbJxFLT7HUZhNM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91536B7/F1CD27B473AD11E7ACBD025EC4F9AE02/mB-iJ6KkNcK3bgbJxFLT7HUZhNM.mft Manifest number: 4F77 Signing time: Fri 22 Nov 2024 16:26:28 +0000 Manifest this update: Fri 22 Nov 2024 16:26:27 +0000 Manifest next update: Fri 29 Nov 2024 16:26:27 +0000 Files and hashes: 1: mB-iJ6KkNcK3bgbJxFLT7HUZhNM.crl (hash: zPV1aAz50yM2ofSZC6ifwK4f/s9pV3RKtd2z7YleEmo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91536B7/F1CD27B473AD11E7ACBD025EC4F9AE02/mB-iJ6KkNcK3bgbJxFLT7HUZhNM.crl rsync://rpki.apnic.net/member_repository/A91536B7/F1CD27B473AD11E7ACBD025EC4F9AE02/mB-iJ6KkNcK3bgbJxFLT7HUZhNM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mB-iJ6KkNcK3bgbJxFLT7HUZhNM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 16:26:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1736 (0x6c8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91536B7/serialNumber=981FA227A2A435C2B76E06C9C452D3EC751984D3 Validity Not Before: Nov 22 16:26:27 2024 GMT Not After : Nov 29 16:26:27 2024 GMT Subject: CN=6740b0b4-ba32 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:e3:13:63:3d:a6:d9:e6:64:33:c0:1b:a6:7f: 51:da:3c:d6:92:d4:d9:3d:3d:66:13:80:d9:17:d2: 8a:3d:e7:fd:a7:cb:75:b4:92:7a:fc:d2:79:cb:ff: ee:fd:fe:46:d2:98:aa:bc:bb:95:eb:56:1b:18:95: 70:d6:52:a1:14:6f:13:6d:71:c9:a8:50:4a:3c:bf: 71:ae:ce:b1:98:cf:5d:b3:73:08:f6:fb:03:d4:6c: 70:76:11:11:a3:c4:09:0d:2b:c9:4d:01:2f:5e:2d: 6e:8e:88:a8:14:f1:cd:3c:82:3b:dd:2d:78:be:93: 62:37:d3:f1:3d:5d:d5:27:45:fc:a7:aa:76:65:06: 13:9d:2d:2e:31:2a:f4:76:d8:f5:1f:08:e6:07:a2: ff:da:18:38:ab:f7:0b:33:72:4f:47:6d:00:ea:69: d9:29:0a:20:cd:1b:86:fa:96:f4:d2:1c:c7:3d:1b: 25:6c:f5:d2:c1:6a:b6:5d:02:e1:ea:4e:59:59:ec: a7:8c:f2:93:2d:16:c1:4f:31:bb:62:cb:c3:b2:83: da:04:3d:a4:46:ec:da:e6:69:02:2f:1d:5e:f0:b9: 56:b9:96:86:47:0e:4e:0a:d9:8f:93:82:51:4d:b1: c6:dc:88:37:6c:07:e5:0c:a7:ed:f6:81:19:f3:5b: 85:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:8A:74:07:02:F0:7B:02:17:1E:E3:C2:BF:C3:D0:5E:17:34:D8:2C X509v3 Authority Key Identifier: keyid:98:1F:A2:27:A2:A4:35:C2:B7:6E:06:C9:C4:52:D3:EC:75:19:84:D3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91536B7/F1CD27B473AD11E7ACBD025EC4F9AE02/mB-iJ6KkNcK3bgbJxFLT7HUZhNM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mB-iJ6KkNcK3bgbJxFLT7HUZhNM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91536B7/F1CD27B473AD11E7ACBD025EC4F9AE02/mB-iJ6KkNcK3bgbJxFLT7HUZhNM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ab:29:41:41:c8:6a:ff:cb:9f:70:28:b9:48:fe:c4:fc:be:01: 0d:7d:69:66:41:4c:fc:2c:4c:de:b4:fc:3b:b2:5f:5e:9b:d0: 46:c4:11:0b:ca:8c:d5:43:8f:16:ce:6a:b4:2a:34:2f:a1:3d: 22:93:7a:97:ea:d8:60:c6:e0:e9:2c:35:d5:d5:f0:02:99:ee: 93:eb:72:ff:c7:56:24:72:43:00:e2:d6:31:09:3d:6b:50:a5: fa:58:5d:cf:ab:a5:df:d6:d7:22:58:70:2a:cc:6c:57:91:61: a9:c3:42:96:99:b9:c7:bd:ff:2a:f6:74:f7:ef:04:e2:2c:9a: f3:32:49:8e:0d:e2:5b:43:61:d9:be:60:14:93:4f:2a:00:a7: 74:3b:50:4c:05:47:7b:9f:1d:c9:ad:2e:d9:ea:a3:60:e8:f9: a6:23:8e:50:af:30:ba:d5:b1:8d:62:a3:06:13:a6:bc:d8:88: fa:4a:ce:ab:b4:a0:ae:21:00:e4:12:72:18:25:7d:10:fb:70: f6:6e:d0:ad:47:f6:82:ab:86:ac:80:16:2a:35:b1:6f:91:2a: 52:8c:c5:8c:35:53:16:17:eb:48:73:54:1b:9b:86:ae:30:76: 9a:80:38:fa:92:77:9e:e3:43:ae:a4:9e:3b:99:f6:f5:e6:f2: fb:fa:7f:05 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBsgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTM2QjcxMTAvBgNVBAUTKDk4MUZBMjI3QTJBNDM1QzJCNzZFMDZDOUM0NTJEM0VD NzUxOTg0RDMwHhcNMjQxMTIyMTYyNjI3WhcNMjQxMTI5MTYyNjI3WjAYMRYwFAYD VQQDEw02NzQwYjBiNC1iYTMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwuMTYz2m2eZkM8Abpn9R2jzWktTZPT1mE4DZF9KKPef9p8t1tJJ6/NJ5y//u /f5G0piqvLuV61YbGJVw1lKhFG8TbXHJqFBKPL9xrs6xmM9ds3MI9vsD1GxwdhER o8QJDSvJTQEvXi1ujoioFPHNPII73S14vpNiN9PxPV3VJ0X8p6p2ZQYTnS0uMSr0 dtj1HwjmB6L/2hg4q/cLM3JPR20A6mnZKQogzRuG+pb00hzHPRslbPXSwWq2XQLh 6k5ZWeynjPKTLRbBTzG7YsvDsoPaBD2kRuza5mkCLx1e8LlWuZaGRw5OCtmPk4JR TbHG3Ig3bAflDKft9oEZ81uFoQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIWKdAcC 8HsCFx7jwr/D0F4XNNgsMB8GA1UdIwQYMBaAFJgfoieipDXCt24GycRS0+x1GYTT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MzZCNy9GMUNEMjdCNDcz QUQxMUU3QUNCRDAyNUVDNEY5QUUwMi9tQi1pSjZLa05jSzNiZ2JKeEZMVDdIVVpo Tk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL21CLWlKNktrTmNLM2JnYkp4RkxUN0hVWmhOTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MzZCNy9GMUNEMjdCNDczQUQxMUU3QUNCRDAyNUVDNEY5QUUwMi9tQi1pSjZLa05j SzNiZ2JKeEZMVDdIVVpoTk0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCrKUFByGr/y59wKLlI/sT8vgENfWlmQUz8LEzetPw7sl9em9BGxBEL yozVQ48Wzmq0KjQvoT0ik3qX6thgxuDpLDXV1fACme6T63L/x1YkckMA4tYxCT1r UKX6WF3Pq6Xf1tciWHAqzGxXkWGpw0KWmbnHvf8q9nT37wTiLJrzMkmODeJbQ2HZ vmAUk08qAKd0O1BMBUd7nx3JrS7Z6qNg6PmmI45QrzC61bGNYqMGE6a82Ij6Ss6r tKCuIQDkEnIYJX0Q+3D2btCtR/aCq4asgBYqNbFvkSpSjMWMNVMWF+tIc1Qbm4au MHaagDj6knee40OupJ47mfb15vL7+n8F -----END CERTIFICATE-----Generated at Fri Nov 22 19:50:02 2024 by rpki-client on console-ams.rpki-client.org