$ rpki-client -vvf rpki.apnic.net/member_repository/A915F67F/91B983C81D8A11E2B0E494E408B02CD2/5k3PxJR4oTweMa6HKi-sEL-4lTE.mft File: 5k3PxJR4oTweMa6HKi-sEL-4lTE.mft (raw, json) Hash identifier: c1EdTWSVqa+UmdgCjURhjzQnJaFtjpvkrHXZCl2E/4c= Subject key identifier: 93:E6:2B:DF:C6:F2:88:CD:F0:50:75:5E:87:B3:AA:B0:88:36:98:83 Authority key identifier: E6:4D:CF:C4:94:78:A1:3C:1E:31:AE:87:2A:2F:AC:10:BF:B8:95:31 Certificate issuer: /CN=A915F67F/serialNumber=E64DCFC49478A13C1E31AE872A2FAC10BFB89531 Certificate serial: 3427 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5k3PxJR4oTweMa6HKi-sEL-4lTE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915F67F/91B983C81D8A11E2B0E494E408B02CD2/5k3PxJR4oTweMa6HKi-sEL-4lTE.mft Manifest number: 3427 Signing time: Sun 24 Nov 2024 14:32:25 +0000 Manifest this update: Sun 24 Nov 2024 14:32:24 +0000 Manifest next update: Sun 01 Dec 2024 14:32:24 +0000 Files and hashes: 1: 5k3PxJR4oTweMa6HKi-sEL-4lTE.crl (hash: wehMEDOqwsSzj7VHUlx9XsxYwwgCwItS01khs5eHu1Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915F67F/91B983C81D8A11E2B0E494E408B02CD2/5k3PxJR4oTweMa6HKi-sEL-4lTE.crl rsync://rpki.apnic.net/member_repository/A915F67F/91B983C81D8A11E2B0E494E408B02CD2/5k3PxJR4oTweMa6HKi-sEL-4lTE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5k3PxJR4oTweMa6HKi-sEL-4lTE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Dec 2024 02:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13351 (0x3427) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915F67F/serialNumber=E64DCFC49478A13C1E31AE872A2FAC10BFB89531 Validity Not Before: Nov 24 14:32:24 2024 GMT Not After : Dec 1 14:32:24 2024 GMT Subject: CN=674338f8-e40d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:9c:fc:57:6e:a4:19:46:22:fa:5d:da:9e:97: 8d:b8:bd:a0:17:d1:f9:28:15:9b:29:51:4e:53:e2: de:11:05:47:6f:c1:ed:d2:33:77:c5:15:9e:22:6c: 1f:aa:ec:9a:8e:cd:3f:49:e6:d7:86:dd:d1:96:43: fb:36:a8:a3:f9:bc:9f:cf:26:66:88:46:bd:6f:39: dd:9f:94:f2:79:99:e5:32:f0:24:d8:c9:57:09:a9: 0f:1d:89:96:3b:95:75:a3:bd:62:4d:98:50:58:2e: 2c:76:75:45:df:4b:b4:68:e5:20:1a:f7:0f:96:ea: 17:48:d0:45:8b:4f:d8:32:b2:08:af:19:6d:f6:e5: a0:19:ba:1d:14:42:89:c0:e1:c2:4c:b1:e3:e6:b6: ac:44:67:4c:c5:60:96:d3:8d:a6:59:b9:1b:ee:83: aa:43:24:0c:96:39:5f:eb:3c:5a:ea:de:28:9c:92: 40:77:67:a0:02:f8:82:ad:af:a0:0d:44:dc:a6:33: 0e:2b:1e:f5:19:ef:a5:ef:ff:44:6b:d2:85:4b:b8: 27:1f:e3:4a:46:f0:63:71:3c:78:de:48:87:bb:ca: 77:ea:68:7c:e3:41:ac:ca:a2:e2:dc:cb:d8:83:fc: 24:ef:2c:96:75:67:4b:12:e0:9e:9c:bf:cc:4e:84: 64:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:E6:2B:DF:C6:F2:88:CD:F0:50:75:5E:87:B3:AA:B0:88:36:98:83 X509v3 Authority Key Identifier: keyid:E6:4D:CF:C4:94:78:A1:3C:1E:31:AE:87:2A:2F:AC:10:BF:B8:95:31 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915F67F/91B983C81D8A11E2B0E494E408B02CD2/5k3PxJR4oTweMa6HKi-sEL-4lTE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5k3PxJR4oTweMa6HKi-sEL-4lTE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915F67F/91B983C81D8A11E2B0E494E408B02CD2/5k3PxJR4oTweMa6HKi-sEL-4lTE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 15:db:96:8f:61:f6:b4:2b:01:2c:e1:01:6e:b3:21:27:8b:fc: f8:e5:69:59:80:a7:bb:2b:96:0e:86:cf:62:48:19:7e:c3:cf: c3:5d:af:14:8f:f2:a9:dc:da:e4:74:19:91:45:d8:5c:ce:56: b4:68:4b:ec:74:27:97:bc:ac:ed:c0:09:b5:50:d0:92:c2:b3: 69:14:dc:09:85:36:24:8f:cc:78:c5:0c:ee:30:1b:8c:63:e8: c4:21:07:4b:79:d9:53:fe:26:2b:f6:c1:3c:30:87:73:db:c1: 58:b2:04:0f:63:f4:5d:3a:80:29:3c:d7:cc:20:f3:c5:9a:85: ae:dd:b9:2d:69:ee:7b:43:1d:5a:b7:01:2c:6e:38:78:fc:a7: 3c:c5:9a:3c:f0:ad:8e:03:24:35:80:d4:3a:19:a7:04:d0:17: ba:ee:dc:9c:67:09:e3:8b:6b:3b:d8:b7:80:bf:ae:88:31:e6: 10:81:83:62:39:0b:d3:43:02:12:87:f8:01:bc:16:6c:76:86: aa:76:d6:5e:3a:94:6b:05:41:34:71:05:ef:ac:47:f2:07:4e: c0:2d:79:77:3f:4d:ed:ab:3c:37:8d:ac:b5:22:bf:86:79:ae: 24:97:0a:54:08:5b:93:83:e9:26:ca:2d:5c:5b:35:fa:82:cc: 7a:1a:ef:16 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNCcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUY2N0YxMTAvBgNVBAUTKEU2NERDRkM0OTQ3OEExM0MxRTMxQUU4NzJBMkZBQzEw QkZCODk1MzEwHhcNMjQxMTI0MTQzMjI0WhcNMjQxMjAxMTQzMjI0WjAYMRYwFAYD VQQDEw02NzQzMzhmOC1lNDBkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7Zz8V26kGUYi+l3anpeNuL2gF9H5KBWbKVFOU+LeEQVHb8Ht0jN3xRWeImwf quyajs0/SebXht3RlkP7Nqij+byfzyZmiEa9bzndn5TyeZnlMvAk2MlXCakPHYmW O5V1o71iTZhQWC4sdnVF30u0aOUgGvcPluoXSNBFi0/YMrIIrxlt9uWgGbodFEKJ wOHCTLHj5rasRGdMxWCW042mWbkb7oOqQyQMljlf6zxa6t4onJJAd2egAviCra+g DUTcpjMOKx71Ge+l7/9Ea9KFS7gnH+NKRvBjcTx43kiHu8p36mh840GsyqLi3MvY g/wk7yyWdWdLEuCenL/MToRk1QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJPmK9/G 8ojN8FB1XoezqrCINpiDMB8GA1UdIwQYMBaAFOZNz8SUeKE8HjGuhyovrBC/uJUx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RjY3Ri85MUI5ODNDODFE OEExMUUyQjBFNDk0RTQwOEIwMkNEMi81azNQeEpSNG9Ud2VNYTZIS2ktc0VMLTRs VEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVrM1B4SlI0b1R3ZU1hNkhLaS1zRUwtNGxURS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 RjY3Ri85MUI5ODNDODFEOEExMUUyQjBFNDk0RTQwOEIwMkNEMi81azNQeEpSNG9U d2VNYTZIS2ktc0VMLTRsVEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAV25aPYfa0KwEs4QFusyEni/z45WlZgKe7K5YOhs9iSBl+w8/DXa8U j/Kp3NrkdBmRRdhczla0aEvsdCeXvKztwAm1UNCSwrNpFNwJhTYkj8x4xQzuMBuM Y+jEIQdLedlT/iYr9sE8MIdz28FYsgQPY/RdOoApPNfMIPPFmoWu3bktae57Qx1a twEsbjh4/Kc8xZo88K2OAyQ1gNQ6GacE0Be67tycZwnji2s72LeAv66IMeYQgYNi OQvTQwISh/gBvBZsdoaqdtZeOpRrBUE0cQXvrEfyB07ALXl3P03tqzw3jay1Ir+G ea4klwpUCFuTg+kmyi1cWzX6gsx6Gu8W -----END CERTIFICATE-----Generated at Sun Nov 24 15:31:14 2024 by rpki-client on console-ams.rpki-client.org