$ rpki-client -vvf rpki.apnic.net/member_repository/A916D1DA/008CE52A1D9E11E2964B958D08B02CD2/VRTBgTfeq40U8RHJD39rfjDQH2Q.mft File: VRTBgTfeq40U8RHJD39rfjDQH2Q.mft (raw, json) Hash identifier: trdaGaNwX4RLc+dHN725g5SuKN99rQkSSzdliuxmQIQ= Subject key identifier: CA:04:AD:9E:EC:2F:C9:ED:1C:D7:F3:3E:DD:C8:C7:2C:A3:81:70:4A Authority key identifier: 55:14:C1:81:37:DE:AB:8D:14:F1:11:C9:0F:7F:6B:7E:30:D0:1F:64 Certificate issuer: /CN=A916D1DA/serialNumber=5514C18137DEAB8D14F111C90F7F6B7E30D01F64 Certificate serial: 3425 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VRTBgTfeq40U8RHJD39rfjDQH2Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916D1DA/008CE52A1D9E11E2964B958D08B02CD2/VRTBgTfeq40U8RHJD39rfjDQH2Q.mft Manifest number: 3425 Signing time: Sun 24 Nov 2024 14:59:12 +0000 Manifest this update: Sun 24 Nov 2024 14:59:12 +0000 Manifest next update: Sun 01 Dec 2024 14:59:12 +0000 Files and hashes: 1: VRTBgTfeq40U8RHJD39rfjDQH2Q.crl (hash: zAabC+iLzn6/nV2r3zx617/f3kAU8In2UrMKZRYyogA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916D1DA/008CE52A1D9E11E2964B958D08B02CD2/VRTBgTfeq40U8RHJD39rfjDQH2Q.crl rsync://rpki.apnic.net/member_repository/A916D1DA/008CE52A1D9E11E2964B958D08B02CD2/VRTBgTfeq40U8RHJD39rfjDQH2Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VRTBgTfeq40U8RHJD39rfjDQH2Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Dec 2024 14:59:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13349 (0x3425) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916D1DA/serialNumber=5514C18137DEAB8D14F111C90F7F6B7E30D01F64 Validity Not Before: Nov 24 14:59:12 2024 GMT Not After : Dec 1 14:59:12 2024 GMT Subject: CN=67433f40-21f2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:45:be:3d:0d:38:92:6f:8b:a2:9a:97:e1:2c: e8:63:9b:eb:71:32:da:c0:07:35:d1:2d:da:d3:37: b7:d4:a1:c3:ba:ae:da:55:44:5b:29:2b:c8:1c:88: 71:dd:eb:00:37:8b:5f:fe:73:8a:7a:cc:49:c6:ab: 72:c1:d1:37:86:1b:f3:de:46:94:06:20:c6:e7:cd: d8:d0:34:30:e1:7b:22:0b:d1:60:84:fe:ef:7d:f3: 63:bd:96:c4:f4:c8:d3:28:2e:99:88:4a:47:d2:52: e2:4e:dd:27:fb:c5:db:9c:0d:c8:e3:03:a5:f9:ef: 96:f9:fc:fc:51:ad:2f:0d:81:ba:bd:7a:1f:e9:10: ac:2d:59:8d:62:d8:af:9d:ac:dc:2d:e6:3c:6b:87: 03:df:4f:70:7a:c7:56:90:d9:c0:d0:31:33:df:ec: 62:ea:52:cf:43:cc:c8:af:a1:41:c4:45:0e:9e:43: 61:03:0e:ca:c9:88:f3:56:66:78:5b:39:f1:df:b9: 6b:ab:1a:f5:a9:65:46:10:b7:f1:77:2d:26:0f:f2: 7c:19:d9:3d:34:62:20:02:a9:05:f1:73:6d:e7:87: cc:fe:5a:90:95:d9:01:84:de:61:19:eb:f9:95:95: 14:d3:af:7c:0a:55:04:e4:2a:9e:26:e6:48:0d:87: 2e:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:04:AD:9E:EC:2F:C9:ED:1C:D7:F3:3E:DD:C8:C7:2C:A3:81:70:4A X509v3 Authority Key Identifier: keyid:55:14:C1:81:37:DE:AB:8D:14:F1:11:C9:0F:7F:6B:7E:30:D0:1F:64 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916D1DA/008CE52A1D9E11E2964B958D08B02CD2/VRTBgTfeq40U8RHJD39rfjDQH2Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VRTBgTfeq40U8RHJD39rfjDQH2Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916D1DA/008CE52A1D9E11E2964B958D08B02CD2/VRTBgTfeq40U8RHJD39rfjDQH2Q.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9d:6c:6c:9e:e5:8d:64:d4:19:dc:67:3f:1a:ff:2a:51:b8:c0: 91:b2:cb:a9:e8:c3:09:b9:e0:32:47:0d:51:f3:a0:75:15:a5: a7:27:43:f3:15:eb:8f:8c:5f:a9:13:5e:45:92:0b:98:54:63: 1a:76:bd:9c:14:8c:96:4b:65:66:57:6c:fb:13:26:cd:53:dd: e1:e5:8f:87:d0:23:54:03:f2:60:3d:c9:08:f6:4c:bf:9e:7b: e7:a8:f5:39:07:fe:bf:7f:8f:7f:05:08:f0:3a:da:59:87:ca: 7f:e7:7f:cb:eb:f7:5c:39:2f:ae:79:5c:17:40:b0:3f:15:94: 04:8c:6c:9c:f8:47:d0:c3:aa:d2:c3:f0:b2:f4:13:1c:00:86: a7:e1:7f:95:ce:a4:22:6f:d5:38:2a:2f:b2:28:a7:a2:c4:07: ac:2c:c3:c7:09:2d:8c:35:1c:7d:cb:35:d6:dd:78:91:f0:c4: fe:02:27:ba:ee:50:c0:d1:c8:52:61:10:1d:b0:35:89:b7:ab: 59:d9:02:4b:43:a5:d6:39:3e:11:c6:ea:56:b4:5f:b4:3d:74: c8:a2:0d:4e:6c:14:d7:56:6e:75:09:af:09:e1:4d:0f:6a:65: 16:e9:3a:44:88:76:2e:cf:21:a6:c1:e5:24:b5:ad:0c:7a:fe: 5a:c8:14:89 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNCUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkQxREExMTAvBgNVBAUTKDU1MTRDMTgxMzdERUFCOEQxNEYxMTFDOTBGN0Y2QjdF MzBEMDFGNjQwHhcNMjQxMTI0MTQ1OTEyWhcNMjQxMjAxMTQ1OTEyWjAYMRYwFAYD VQQDEw02NzQzM2Y0MC0yMWYyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAskW+PQ04km+LopqX4SzoY5vrcTLawAc10S3a0ze31KHDuq7aVURbKSvIHIhx 3esAN4tf/nOKesxJxqtywdE3hhvz3kaUBiDG583Y0DQw4XsiC9FghP7vffNjvZbE 9MjTKC6ZiEpH0lLiTt0n+8XbnA3I4wOl+e+W+fz8Ua0vDYG6vXof6RCsLVmNYtiv nazcLeY8a4cD309wesdWkNnA0DEz3+xi6lLPQ8zIr6FBxEUOnkNhAw7KyYjzVmZ4 Wznx37lrqxr1qWVGELfxdy0mD/J8Gdk9NGIgAqkF8XNt54fM/lqQldkBhN5hGev5 lZUU0698ClUE5CqeJuZIDYcu3wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMoErZ7s L8ntHNfzPt3IxyyjgXBKMB8GA1UdIwQYMBaAFFUUwYE33quNFPERyQ9/a34w0B9k MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2RDFEQS8wMDhDRTUyQTFE OUUxMUUyOTY0Qjk1OEQwOEIwMkNEMi9WUlRCZ1RmZXE0MFU4UkhKRDM5cmZqRFFI MlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1ZSVEJnVGZlcTQwVThSSEpEMzlyZmpEUUgyUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 RDFEQS8wMDhDRTUyQTFEOUUxMUUyOTY0Qjk1OEQwOEIwMkNEMi9WUlRCZ1RmZXE0 MFU4UkhKRDM5cmZqRFFIMlEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCdbGye5Y1k1BncZz8a/ypRuMCRssup6MMJueAyRw1R86B1FaWnJ0Pz FeuPjF+pE15FkguYVGMadr2cFIyWS2VmV2z7EybNU93h5Y+H0CNUA/JgPckI9ky/ nnvnqPU5B/6/f49/BQjwOtpZh8p/53/L6/dcOS+ueVwXQLA/FZQEjGyc+EfQw6rS w/Cy9BMcAIan4X+VzqQib9U4Ki+yKKeixAesLMPHCS2MNRx9yzXW3XiR8MT+Aie6 7lDA0chSYRAdsDWJt6tZ2QJLQ6XWOT4RxupWtF+0PXTIog1ObBTXVm51Ca8J4U0P amUW6TpEiHYuzyGmweUkta0Mev5ayBSJ -----END CERTIFICATE-----Generated at Sun Nov 24 18:24:16 2024 by rpki-client on console-ams.rpki-client.org