$ rpki-client -vvf rpki.apnic.net/member_repository/A915EAAF/F3F18B2C1D8E11E2A314A2ED08B02CD2/5MpluNDHsWXZwip6vfgapm-q1NE.mft File: 5MpluNDHsWXZwip6vfgapm-q1NE.mft (raw, json) Hash identifier: U7km1iy4LHa6eovCmeMt42Ucju8X0YtK1k1Q7C8TJtQ= Subject key identifier: F2:DA:4B:1B:7F:E5:6A:A5:E8:02:1C:74:FD:6C:E0:88:95:71:FC:37 Authority key identifier: E4:CA:65:B8:D0:C7:B1:65:D9:C2:2A:7A:BD:F8:1A:A6:6F:AA:D4:D1 Certificate issuer: /CN=A915EAAF/serialNumber=E4CA65B8D0C7B165D9C22A7ABDF81AA66FAAD4D1 Certificate serial: 3424 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5MpluNDHsWXZwip6vfgapm-q1NE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915EAAF/F3F18B2C1D8E11E2A314A2ED08B02CD2/5MpluNDHsWXZwip6vfgapm-q1NE.mft Manifest number: 3424 Signing time: Sun 24 Nov 2024 14:38:31 +0000 Manifest this update: Sun 24 Nov 2024 14:38:30 +0000 Manifest next update: Sun 01 Dec 2024 14:38:30 +0000 Files and hashes: 1: 5MpluNDHsWXZwip6vfgapm-q1NE.crl (hash: 3GtUH1YWpMDsEtru+xJt82kE+jj/ZG6LHnuDJ6bm49Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915EAAF/F3F18B2C1D8E11E2A314A2ED08B02CD2/5MpluNDHsWXZwip6vfgapm-q1NE.crl rsync://rpki.apnic.net/member_repository/A915EAAF/F3F18B2C1D8E11E2A314A2ED08B02CD2/5MpluNDHsWXZwip6vfgapm-q1NE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5MpluNDHsWXZwip6vfgapm-q1NE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Dec 2024 14:38:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13348 (0x3424) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915EAAF/serialNumber=E4CA65B8D0C7B165D9C22A7ABDF81AA66FAAD4D1 Validity Not Before: Nov 24 14:38:30 2024 GMT Not After : Dec 1 14:38:30 2024 GMT Subject: CN=67433a67-6555 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:e4:2a:65:2d:44:b3:b2:60:b6:37:97:3e:08: da:06:ff:97:fd:f7:b3:8e:ea:00:4f:12:e5:f4:6b: f1:76:57:03:ff:15:f2:22:32:cb:4e:a8:68:b7:93: fd:18:09:3e:d5:36:7d:4e:ad:43:50:64:c7:87:4a: 20:cf:8e:b8:a0:2d:c9:2f:df:f4:4a:b9:07:eb:f5: 86:48:75:5e:a6:36:11:f1:b1:7e:77:20:a0:34:a8: f4:7e:84:a1:52:45:4f:96:29:19:7c:91:92:6e:20: 5b:f0:58:3d:d3:1b:d1:26:73:ba:31:ac:a5:b0:ff: 0f:2e:b5:81:be:24:28:11:d9:c0:bf:3f:7e:ad:0a: df:cc:e2:cb:d9:95:c2:4d:e7:cf:3b:08:02:18:63: 26:f0:19:62:ce:d6:e8:c2:b6:43:ca:04:c1:ae:7d: 5a:2a:61:9f:f3:d3:a5:7f:c7:9a:7f:50:2e:41:df: 92:9e:2d:5b:aa:1c:dd:0a:18:9f:36:49:0d:38:1a: fb:05:21:79:9c:8a:3e:7c:31:2f:43:18:7f:81:5d: 61:cf:db:8d:91:d9:ca:3f:7d:dc:ba:b1:ec:55:e6: 5a:cc:c1:0a:e6:59:83:54:a6:cb:be:df:bf:87:d8: 6e:c9:73:7f:e6:85:2a:34:99:99:c2:80:31:fb:14: 95:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:DA:4B:1B:7F:E5:6A:A5:E8:02:1C:74:FD:6C:E0:88:95:71:FC:37 X509v3 Authority Key Identifier: keyid:E4:CA:65:B8:D0:C7:B1:65:D9:C2:2A:7A:BD:F8:1A:A6:6F:AA:D4:D1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915EAAF/F3F18B2C1D8E11E2A314A2ED08B02CD2/5MpluNDHsWXZwip6vfgapm-q1NE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5MpluNDHsWXZwip6vfgapm-q1NE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915EAAF/F3F18B2C1D8E11E2A314A2ED08B02CD2/5MpluNDHsWXZwip6vfgapm-q1NE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 51:2f:a9:6b:7d:6b:f3:19:a2:4a:b7:4c:fe:8d:0e:a4:e7:94: 70:2d:fd:d1:f0:00:5a:81:90:89:c8:2e:76:76:c6:d6:a0:9f: 66:42:cf:a1:4d:77:fb:b6:0f:81:55:cd:a8:c5:38:bc:9b:3b: a3:3d:9f:ee:9a:cd:d5:c1:e7:ea:0e:9f:9e:c0:fc:39:83:03: 74:26:32:69:ae:bc:0a:60:48:0e:a3:29:65:f6:90:a8:10:e7: ec:71:dd:94:be:5a:0c:41:27:9a:7c:df:67:ab:ad:91:d6:e8: 2b:d0:8c:48:de:1c:16:49:c4:c2:fc:5d:a9:bc:78:c8:ef:b1: 27:01:90:2e:ab:cf:90:12:a7:47:89:8b:45:12:5e:69:45:96: 90:64:ce:16:6f:d5:ac:f2:cb:c4:5b:51:4e:fe:46:51:b2:a0: dc:98:84:95:1d:d0:05:92:3d:bf:8e:c9:9c:94:63:38:5f:67: 16:ae:fc:31:e1:3d:17:23:e5:45:9a:2b:a3:b5:ee:13:b0:3b: 45:b0:7c:9d:76:41:47:46:f4:d0:49:5c:0d:f6:74:5c:e8:22: 0e:e2:69:8d:12:91:f1:d4:ab:c2:0f:e8:5b:cf:be:dc:cf:14: 08:63:12:a1:02:02:97:52:41:e7:d0:a4:86:7f:78:f5:a4:ae: 59:f8:03:66 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNCQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUVBQUYxMTAvBgNVBAUTKEU0Q0E2NUI4RDBDN0IxNjVEOUMyMkE3QUJERjgxQUE2 NkZBQUQ0RDEwHhcNMjQxMTI0MTQzODMwWhcNMjQxMjAxMTQzODMwWjAYMRYwFAYD VQQDEw02NzQzM2E2Ny02NTU1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1+QqZS1Es7JgtjeXPgjaBv+X/fezjuoATxLl9GvxdlcD/xXyIjLLTqhot5P9 GAk+1TZ9Tq1DUGTHh0ogz464oC3JL9/0SrkH6/WGSHVepjYR8bF+dyCgNKj0foSh UkVPlikZfJGSbiBb8Fg90xvRJnO6MaylsP8PLrWBviQoEdnAvz9+rQrfzOLL2ZXC TefPOwgCGGMm8BliztbowrZDygTBrn1aKmGf89Olf8eaf1AuQd+Sni1bqhzdChif NkkNOBr7BSF5nIo+fDEvQxh/gV1hz9uNkdnKP33curHsVeZazMEK5lmDVKbLvt+/ h9huyXN/5oUqNJmZwoAx+xSVpQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPLaSxt/ 5Wql6AIcdP1s4IiVcfw3MB8GA1UdIwQYMBaAFOTKZbjQx7Fl2cIqer34GqZvqtTR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RUFBRi9GM0YxOEIyQzFE OEUxMUUyQTMxNEEyRUQwOEIwMkNEMi81TXBsdU5ESHNXWFp3aXA2dmZnYXBtLXEx TkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVNcGx1TkRIc1dYWndpcDZ2ZmdhcG0tcTFORS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 RUFBRi9GM0YxOEIyQzFEOEUxMUUyQTMxNEEyRUQwOEIwMkNEMi81TXBsdU5ESHNX WFp3aXA2dmZnYXBtLXExTkUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBRL6lrfWvzGaJKt0z+jQ6k55RwLf3R8ABagZCJyC52dsbWoJ9mQs+h TXf7tg+BVc2oxTi8mzujPZ/ums3VwefqDp+ewPw5gwN0JjJprrwKYEgOoyll9pCo EOfscd2UvloMQSeafN9nq62R1ugr0IxI3hwWScTC/F2pvHjI77EnAZAuq8+QEqdH iYtFEl5pRZaQZM4Wb9Ws8svEW1FO/kZRsqDcmISVHdAFkj2/jsmclGM4X2cWrvwx 4T0XI+VFmiujte4TsDtFsHyddkFHRvTQSVwN9nRc6CIO4mmNEpHx1KvCD+hbz77c zxQIYxKhAgKXUkHn0KSGf3j1pK5Z+ANm -----END CERTIFICATE-----Generated at Sun Nov 24 17:20:05 2024 by rpki-client on console-fra.rpki-client.org