$ rpki-client -vvf rpki.apnic.net/member_repository/A9177E33/A80ECE481D8611E2BE930ADE08B02CD2/4klmeNb9TiLorA6f9s1YENb7eU0.mft File: 4klmeNb9TiLorA6f9s1YENb7eU0.mft (raw, json) Hash identifier: LaWIbgJLxNQnjXVRkyJsSWaNT791/bofTKbAebDQivk= Subject key identifier: 37:84:79:55:45:8B:F8:20:A8:DD:BB:4D:A6:25:86:46:B8:35:CC:50 Authority key identifier: E2:49:66:78:D6:FD:4E:22:E8:AC:0E:9F:F6:CD:58:10:D6:FB:79:4D Certificate issuer: /CN=A9177E33/serialNumber=E2496678D6FD4E22E8AC0E9FF6CD5810D6FB794D Certificate serial: 3425 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4klmeNb9TiLorA6f9s1YENb7eU0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9177E33/A80ECE481D8611E2BE930ADE08B02CD2/4klmeNb9TiLorA6f9s1YENb7eU0.mft Manifest number: 3424 Signing time: Sun 24 Nov 2024 14:26:54 +0000 Manifest this update: Sun 24 Nov 2024 14:26:54 +0000 Manifest next update: Sun 01 Dec 2024 14:26:54 +0000 Files and hashes: 1: 4klmeNb9TiLorA6f9s1YENb7eU0.crl (hash: cIEFbEU6RpXLlCyJR0lOjv+8WN2jxrRCmGMd09/T1nE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9177E33/A80ECE481D8611E2BE930ADE08B02CD2/4klmeNb9TiLorA6f9s1YENb7eU0.crl rsync://rpki.apnic.net/member_repository/A9177E33/A80ECE481D8611E2BE930ADE08B02CD2/4klmeNb9TiLorA6f9s1YENb7eU0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4klmeNb9TiLorA6f9s1YENb7eU0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Dec 2024 02:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13349 (0x3425) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9177E33/serialNumber=E2496678D6FD4E22E8AC0E9FF6CD5810D6FB794D Validity Not Before: Nov 24 14:26:54 2024 GMT Not After : Dec 1 14:26:54 2024 GMT Subject: CN=674337ae-ee0e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:98:0c:8c:2f:82:52:19:e6:4e:01:ba:67:bd: 12:10:5b:89:31:8a:77:67:76:b6:a2:15:ba:c8:5a: 5f:19:5f:ef:4e:0d:72:92:3e:20:93:28:b9:5c:79: 9d:b5:b5:3d:cd:82:ce:c3:8f:78:9f:8a:72:6b:39: 42:f1:8b:c6:45:b8:de:8c:87:67:9e:45:fc:75:b5: ed:8e:17:0f:22:e4:33:a2:e4:e5:a7:19:4f:5c:e9: 5f:2d:db:b8:90:51:6c:13:1e:61:62:d3:dc:03:3b: 84:36:41:b1:fc:91:1d:b9:ee:15:8c:61:18:e2:8c: 64:de:ed:b3:39:c7:ce:d4:4d:c6:9f:85:00:f0:8c: 2e:a3:36:b8:32:c0:e6:29:28:54:df:0a:67:97:2d: 32:a5:da:7b:3c:39:f4:cf:b9:bd:95:b1:10:5f:3d: 00:7d:dd:12:66:af:7e:d7:f4:13:68:8e:3c:0e:f5: 96:08:c3:44:94:47:17:81:58:04:90:2d:8d:d3:b3: 00:0e:72:45:01:30:ea:9a:b1:62:15:c2:8b:3f:a3: 1c:df:d3:1e:28:c8:68:b1:94:a0:73:1a:e7:c6:28: 61:e8:ec:76:eb:57:d3:0a:e6:8f:23:fd:e4:23:d8: 19:1f:43:3d:55:a4:85:c7:a8:85:3f:b4:70:62:bf: 90:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:84:79:55:45:8B:F8:20:A8:DD:BB:4D:A6:25:86:46:B8:35:CC:50 X509v3 Authority Key Identifier: keyid:E2:49:66:78:D6:FD:4E:22:E8:AC:0E:9F:F6:CD:58:10:D6:FB:79:4D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9177E33/A80ECE481D8611E2BE930ADE08B02CD2/4klmeNb9TiLorA6f9s1YENb7eU0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4klmeNb9TiLorA6f9s1YENb7eU0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9177E33/A80ECE481D8611E2BE930ADE08B02CD2/4klmeNb9TiLorA6f9s1YENb7eU0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2e:24:98:ca:29:85:65:6f:dd:56:d0:a8:5e:45:50:ab:86:35: 39:04:51:0a:05:10:4e:d1:bc:31:c2:fd:4c:d2:f8:ff:bd:a8: b7:ac:6e:65:22:11:34:4d:de:72:01:f2:8f:24:05:1c:2b:3d: 7e:c4:4c:22:6d:ba:e2:c0:6c:4d:6a:6d:17:83:61:ce:c8:5a: b0:51:47:39:03:8a:8a:2e:85:e7:1f:45:4a:69:99:d3:82:1a: 30:e8:ef:85:56:3e:71:05:03:9e:1b:a5:a6:d7:67:94:4e:54: 9b:1f:6d:43:cd:ba:66:4f:78:55:d9:3f:7c:fd:91:2c:6c:ad: 39:4c:95:99:57:2b:81:20:ed:ee:a0:e2:dc:3e:a2:34:13:07: 2e:c1:65:9e:00:6e:d8:a4:df:de:7b:06:72:d3:cb:cf:0b:36: b9:2f:ee:0b:05:91:67:81:7a:28:d7:03:f5:bf:eb:96:ab:1d: fe:f9:48:6b:7b:52:9a:2a:5a:e0:7d:14:7a:b2:94:2d:f0:7b: c9:c5:93:b6:1b:04:e2:dd:b9:81:d7:af:e5:78:c7:a5:99:ce: 1e:62:d9:53:ca:e7:4c:2d:e1:7b:98:44:ff:72:d0:e5:06:21: 32:fd:34:f0:68:da:f0:14:43:68:f9:51:45:ac:3a:fe:cf:6e: 78:cd:89:f2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNCUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzdFMzMxMTAvBgNVBAUTKEUyNDk2Njc4RDZGRDRFMjJFOEFDMEU5RkY2Q0Q1ODEw RDZGQjc5NEQwHhcNMjQxMTI0MTQyNjU0WhcNMjQxMjAxMTQyNjU0WjAYMRYwFAYD VQQDEw02NzQzMzdhZS1lZTBlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv5gMjC+CUhnmTgG6Z70SEFuJMYp3Z3a2ohW6yFpfGV/vTg1ykj4gkyi5XHmd tbU9zYLOw494n4pyazlC8YvGRbjejIdnnkX8dbXtjhcPIuQzouTlpxlPXOlfLdu4 kFFsEx5hYtPcAzuENkGx/JEdue4VjGEY4oxk3u2zOcfO1E3Gn4UA8Iwuoza4MsDm KShU3wpnly0ypdp7PDn0z7m9lbEQXz0Afd0SZq9+1/QTaI48DvWWCMNElEcXgVgE kC2N07MADnJFATDqmrFiFcKLP6Mc39MeKMhosZSgcxrnxihh6Ox261fTCuaPI/3k I9gZH0M9VaSFx6iFP7RwYr+QQQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDeEeVVF i/ggqN27TaYlhka4NcxQMB8GA1UdIwQYMBaAFOJJZnjW/U4i6KwOn/bNWBDW+3lN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3N0UzMy9BODBFQ0U0ODFE ODYxMUUyQkU5MzBBREUwOEIwMkNEMi80a2xtZU5iOVRpTG9yQTZmOXMxWUVOYjdl VTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRrbG1lTmI5VGlMb3JBNmY5czFZRU5iN2VVMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 N0UzMy9BODBFQ0U0ODFEODYxMUUyQkU5MzBBREUwOEIwMkNEMi80a2xtZU5iOVRp TG9yQTZmOXMxWUVOYjdlVTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAuJJjKKYVlb91W0KheRVCrhjU5BFEKBRBO0bwxwv1M0vj/vai3rG5l IhE0Td5yAfKPJAUcKz1+xEwibbriwGxNam0Xg2HOyFqwUUc5A4qKLoXnH0VKaZnT ghow6O+FVj5xBQOeG6Wm12eUTlSbH21DzbpmT3hV2T98/ZEsbK05TJWZVyuBIO3u oOLcPqI0EwcuwWWeAG7YpN/eewZy08vPCza5L+4LBZFngXoo1wP1v+uWqx3++Uhr e1KaKlrgfRR6spQt8HvJxZO2GwTi3bmB16/leMelmc4eYtlTyudMLeF7mET/ctDl BiEy/TTwaNrwFENo+VFFrDr+z254zYny -----END CERTIFICATE-----Generated at Sun Nov 24 15:31:17 2024 by rpki-client on console-ams.rpki-client.org