$ rpki-client -vvf rpki.apnic.net/member_repository/A91554E6/9F067748ED4B11ECAB8FAA77C4F9AE02/vNgnSl8YLOQAgCwIPo0VQi-bthE.mft File: vNgnSl8YLOQAgCwIPo0VQi-bthE.mft (raw, json) Hash identifier: qE3rGrRuuF+N7+iwqxAi24ieK3EtZQrETAY19rCGcPg= Subject key identifier: AA:3A:90:1E:72:F0:23:36:82:85:A6:55:C1:9B:33:AB:95:A6:DD:76 Authority key identifier: BC:D8:27:4A:5F:18:2C:E4:00:80:2C:08:3E:8D:15:42:2F:9B:B6:11 Certificate issuer: /CN=A91554E6/serialNumber=BCD8274A5F182CE400802C083E8D15422F9BB611 Certificate serial: 0271 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vNgnSl8YLOQAgCwIPo0VQi-bthE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91554E6/9F067748ED4B11ECAB8FAA77C4F9AE02/vNgnSl8YLOQAgCwIPo0VQi-bthE.mft Manifest number: 033D Signing time: Sat 23 Nov 2024 01:13:40 +0000 Manifest this update: Sat 23 Nov 2024 01:13:40 +0000 Manifest next update: Sat 30 Nov 2024 01:13:40 +0000 Files and hashes: 1: vNgnSl8YLOQAgCwIPo0VQi-bthE.crl (hash: qTu4FlnOG6iE2lh03dBqFBZfGs6YXTDC+M32WEBmbnM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91554E6/9F067748ED4B11ECAB8FAA77C4F9AE02/vNgnSl8YLOQAgCwIPo0VQi-bthE.crl rsync://rpki.apnic.net/member_repository/A91554E6/9F067748ED4B11ECAB8FAA77C4F9AE02/vNgnSl8YLOQAgCwIPo0VQi-bthE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vNgnSl8YLOQAgCwIPo0VQi-bthE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 625 (0x271) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91554E6/serialNumber=BCD8274A5F182CE400802C083E8D15422F9BB611 Validity Not Before: Nov 23 01:13:40 2024 GMT Not After : Nov 30 01:13:40 2024 GMT Subject: CN=67412c44-8fd1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:21:ec:00:1a:95:2f:73:d4:2f:60:1d:11:d9: 20:17:ff:a5:a2:aa:62:c1:a1:8f:47:68:b9:89:c7: d0:82:d3:9b:8a:a3:40:94:fb:56:1c:ed:af:7a:8d: 85:c9:04:82:0c:4e:21:b1:01:4f:e2:6a:08:2c:e0: f1:67:8b:0e:6a:67:36:e6:78:09:d1:49:f0:9f:b1: 5d:db:9c:7c:a5:bd:4b:d7:42:fa:79:18:c7:d0:f3: e4:63:8e:c5:27:72:d7:1e:24:af:72:16:5b:68:02: d8:15:a5:13:c9:3d:70:85:33:6c:03:24:f5:12:e8: 7d:52:8d:38:72:66:1d:a4:bf:f6:59:b3:91:02:dd: fd:cf:f0:cc:ed:1f:b0:b4:0b:05:34:ae:4f:f9:b7: 21:07:5c:c1:53:6c:84:59:52:d2:d5:0a:a8:00:45: f5:3b:b5:56:35:2b:1d:3a:df:0a:81:10:36:1c:c4: e9:d7:98:29:0b:81:d7:4f:89:0f:a8:07:91:7b:8e: 54:c9:09:58:27:d7:73:67:16:99:2f:82:e8:c1:8c: b6:58:89:a6:6d:c5:37:1a:92:66:09:5d:a5:3c:3a: 56:4a:22:2a:33:d0:9d:20:c0:1f:9c:ec:36:c0:f9: 86:d6:d8:6f:12:35:18:c0:b1:08:3e:c2:a9:e2:4d: 3a:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:3A:90:1E:72:F0:23:36:82:85:A6:55:C1:9B:33:AB:95:A6:DD:76 X509v3 Authority Key Identifier: keyid:BC:D8:27:4A:5F:18:2C:E4:00:80:2C:08:3E:8D:15:42:2F:9B:B6:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91554E6/9F067748ED4B11ECAB8FAA77C4F9AE02/vNgnSl8YLOQAgCwIPo0VQi-bthE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vNgnSl8YLOQAgCwIPo0VQi-bthE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91554E6/9F067748ED4B11ECAB8FAA77C4F9AE02/vNgnSl8YLOQAgCwIPo0VQi-bthE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5b:88:5e:16:44:44:04:ef:10:32:6a:6c:7c:7e:64:cf:0f:4d: b5:2c:f3:d5:ac:5d:76:cd:bc:73:d1:39:e6:37:bf:4a:c2:67: ab:a4:98:dd:17:06:3f:03:25:48:69:9f:83:bd:97:da:a4:a0: f0:a7:92:f2:8a:6f:4c:d1:0b:e8:9a:3f:ac:f3:2d:aa:9e:95: a7:0b:59:c9:be:07:51:7f:b4:b6:1e:31:f1:6e:8c:26:50:69: 81:a2:b8:0b:07:36:03:08:96:58:2f:c5:79:82:a6:12:b4:6d: 32:e2:76:58:92:72:cb:9a:36:51:71:46:91:48:9a:d3:34:19: a0:c2:64:b1:bb:6c:be:e7:97:23:b1:34:d4:71:4a:93:7e:ba: d7:92:7f:8b:74:f9:cb:24:70:c5:cc:1d:4a:10:2b:a8:29:c6: d9:9d:fd:c3:14:fa:31:91:17:9d:0a:2d:ee:5f:de:d6:ff:27: b0:fc:f5:7e:ea:e0:d0:ec:75:46:d0:83:73:9a:84:67:4f:71: bb:30:fa:0d:1f:f2:94:43:fe:92:dc:e0:e9:47:81:b9:88:4e: d8:b1:de:25:8c:5e:c8:09:47:36:6b:06:f0:e0:20:a5:f3:56: 88:20:33:c3:de:15:c2:9d:2a:ae:13:15:08:f9:b3:ad:5d:14: 0b:bd:0d:56 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAnEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTU0RTYxMTAvBgNVBAUTKEJDRDgyNzRBNUYxODJDRTQwMDgwMkMwODNFOEQxNTQy MkY5QkI2MTEwHhcNMjQxMTIzMDExMzQwWhcNMjQxMTMwMDExMzQwWjAYMRYwFAYD VQQDEw02NzQxMmM0NC04ZmQxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2yHsABqVL3PUL2AdEdkgF/+loqpiwaGPR2i5icfQgtObiqNAlPtWHO2veo2F yQSCDE4hsQFP4moILODxZ4sOamc25ngJ0Unwn7Fd25x8pb1L10L6eRjH0PPkY47F J3LXHiSvchZbaALYFaUTyT1whTNsAyT1Euh9Uo04cmYdpL/2WbORAt39z/DM7R+w tAsFNK5P+bchB1zBU2yEWVLS1QqoAEX1O7VWNSsdOt8KgRA2HMTp15gpC4HXT4kP qAeRe45UyQlYJ9dzZxaZL4LowYy2WImmbcU3GpJmCV2lPDpWSiIqM9CdIMAfnOw2 wPmG1thvEjUYwLEIPsKp4k06iQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKo6kB5y 8CM2goWmVcGbM6uVpt12MB8GA1UdIwQYMBaAFLzYJ0pfGCzkAIAsCD6NFUIvm7YR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NTRFNi85RjA2Nzc0OEVE NEIxMUVDQUI4RkFBNzdDNEY5QUUwMi92TmduU2w4WUxPUUFnQ3dJUG8wVlFpLWJ0 aEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ZOZ25TbDhZTE9RQWdDd0lQbzBWUWktYnRoRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NTRFNi85RjA2Nzc0OEVENEIxMUVDQUI4RkFBNzdDNEY5QUUwMi92TmduU2w4WUxP UUFnQ3dJUG8wVlFpLWJ0aEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBbiF4WREQE7xAyamx8fmTPD021LPPVrF12zbxz0TnmN79KwmerpJjd FwY/AyVIaZ+DvZfapKDwp5Lyim9M0Qvomj+s8y2qnpWnC1nJvgdRf7S2HjHxbowm UGmBorgLBzYDCJZYL8V5gqYStG0y4nZYknLLmjZRcUaRSJrTNBmgwmSxu2y+55cj sTTUcUqTfrrXkn+LdPnLJHDFzB1KECuoKcbZnf3DFPoxkRedCi3uX97W/yew/PV+ 6uDQ7HVG0INzmoRnT3G7MPoNH/KUQ/6S3ODpR4G5iE7Ysd4ljF7ICUc2awbw4CCl 81aIIDPD3hXCnSquExUI+bOtXRQLvQ1W -----END CERTIFICATE-----Generated at Sat Nov 23 02:33:36 2024 by rpki-client on console-fra.rpki-client.org