$ rpki-client -vvf rpki.apnic.net/member_repository/A917E00F/EDE48B9CEE2911EB8084B638C4F9AE02/iTEhgF-UFH033MbXS2N4Rvcjl8U.mft File: iTEhgF-UFH033MbXS2N4Rvcjl8U.mft (raw, json) Hash identifier: 9IYUI/5bMnaArXQbRTDq2Pvw474PY51rxy/eN+avUvs= Subject key identifier: 87:06:6B:31:C9:7A:8E:B6:35:36:84:A5:C1:40:1E:86:06:DD:03:16 Authority key identifier: 89:31:21:80:5F:94:14:7D:37:DC:C6:D7:4B:63:78:46:F7:23:97:C5 Certificate issuer: /CN=A917E00F/serialNumber=893121805F94147D37DCC6D74B637846F72397C5 Certificate serial: 04F3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iTEhgF-UFH033MbXS2N4Rvcjl8U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E00F/EDE48B9CEE2911EB8084B638C4F9AE02/iTEhgF-UFH033MbXS2N4Rvcjl8U.mft Manifest number: 0592 Signing time: Fri 22 Nov 2024 23:15:00 +0000 Manifest this update: Fri 22 Nov 2024 23:14:59 +0000 Manifest next update: Fri 29 Nov 2024 23:14:59 +0000 Files and hashes: 1: iTEhgF-UFH033MbXS2N4Rvcjl8U.crl (hash: XeQcDIPPc7Uv4227tMtxl6ti8RbD8mpiB5XCWm627sc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E00F/EDE48B9CEE2911EB8084B638C4F9AE02/iTEhgF-UFH033MbXS2N4Rvcjl8U.crl rsync://rpki.apnic.net/member_repository/A917E00F/EDE48B9CEE2911EB8084B638C4F9AE02/iTEhgF-UFH033MbXS2N4Rvcjl8U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iTEhgF-UFH033MbXS2N4Rvcjl8U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1267 (0x4f3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E00F/serialNumber=893121805F94147D37DCC6D74B637846F72397C5 Validity Not Before: Nov 22 23:14:59 2024 GMT Not After : Nov 29 23:14:59 2024 GMT Subject: CN=67411074-51b3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:fe:7b:3b:d1:90:ea:d3:20:79:7a:53:8d:64: 88:3d:6d:73:70:01:01:d0:05:75:14:14:5e:d5:86: 1b:2c:78:ce:01:77:62:a9:16:2f:8a:6f:f7:16:a1: 2d:ad:07:ec:32:dd:57:3d:b9:36:37:c8:18:58:cc: 44:bd:fc:ac:54:7a:d9:6a:d0:2e:1d:bc:b5:5b:43: 13:9a:85:59:19:1c:92:f1:08:49:83:43:25:b9:70: d8:f7:be:73:0e:93:c0:2d:6a:70:c0:ce:f1:7a:b0: ef:7e:92:73:73:fb:88:71:40:d0:04:d2:4c:2c:7e: 81:a8:40:db:cf:72:1a:47:07:76:65:95:de:92:27: 14:4e:5f:b2:5b:65:6f:69:04:56:45:59:e7:38:46: 36:14:f7:84:36:a8:91:4c:a0:4d:24:98:ec:d8:1b: e2:88:1e:4f:0c:6e:b3:ac:f3:8e:8e:26:ab:30:3a: 57:42:33:e4:e6:fe:5f:69:49:d7:ff:33:da:5d:ab: 59:ce:06:1f:be:2e:95:02:bd:11:9e:ab:93:33:63: d2:b0:5c:06:cc:00:12:05:ab:45:8e:02:d0:bd:c3: 1a:63:a8:57:a1:30:22:3a:06:1c:78:aa:1f:36:94: 26:bf:04:f6:e0:c6:51:a3:f4:23:a2:39:84:9d:97: 30:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:06:6B:31:C9:7A:8E:B6:35:36:84:A5:C1:40:1E:86:06:DD:03:16 X509v3 Authority Key Identifier: keyid:89:31:21:80:5F:94:14:7D:37:DC:C6:D7:4B:63:78:46:F7:23:97:C5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E00F/EDE48B9CEE2911EB8084B638C4F9AE02/iTEhgF-UFH033MbXS2N4Rvcjl8U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iTEhgF-UFH033MbXS2N4Rvcjl8U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E00F/EDE48B9CEE2911EB8084B638C4F9AE02/iTEhgF-UFH033MbXS2N4Rvcjl8U.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9a:51:63:86:36:da:3a:46:82:da:d7:7a:86:79:2c:cc:dc:97: 55:13:cf:fb:ad:2d:b3:3e:de:eb:64:4d:b8:5a:d8:83:da:9e: c6:c9:24:87:f5:e9:94:1e:f0:2a:59:ea:0a:e6:62:ff:d7:ea: 14:a9:91:ea:d4:91:70:54:61:9b:f6:2f:0b:6a:44:5f:6b:ea: 36:74:6b:15:ae:6e:03:cf:5d:76:f4:64:79:86:32:21:e9:19: 88:7f:25:53:29:d2:38:0a:db:d7:56:78:2e:a9:c8:1c:07:62: 62:a3:9e:0a:d6:61:65:06:c3:e1:ac:d4:c7:58:02:30:33:e3: 63:fa:86:f9:7e:96:b0:14:b6:60:5f:ba:5b:01:14:8d:dd:78: 9c:7e:f6:e9:ea:e9:70:25:69:72:d9:23:2c:ea:1e:61:fb:e0: 54:9c:47:c5:d9:3f:09:64:90:e9:8e:8d:eb:3a:9f:17:85:93: 0e:42:b4:f9:a4:26:74:d0:47:5b:16:07:56:da:9f:9f:49:5b: de:44:1f:64:93:89:10:a2:a8:1f:56:49:b8:87:98:6a:43:8d: 19:18:2d:92:7f:5a:21:11:e8:18:14:61:59:d3:8a:46:2a:39: 53:0c:1e:46:67:96:d6:cf:2c:f3:9f:cf:7a:90:4f:91:61:39: 75:fe:cd:c8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBPMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0UwMEYxMTAvBgNVBAUTKDg5MzEyMTgwNUY5NDE0N0QzN0RDQzZENzRCNjM3ODQ2 RjcyMzk3QzUwHhcNMjQxMTIyMjMxNDU5WhcNMjQxMTI5MjMxNDU5WjAYMRYwFAYD VQQDEw02NzQxMTA3NC01MWIzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArf57O9GQ6tMgeXpTjWSIPW1zcAEB0AV1FBRe1YYbLHjOAXdiqRYvim/3FqEt rQfsMt1XPbk2N8gYWMxEvfysVHrZatAuHby1W0MTmoVZGRyS8QhJg0MluXDY975z DpPALWpwwM7xerDvfpJzc/uIcUDQBNJMLH6BqEDbz3IaRwd2ZZXekicUTl+yW2Vv aQRWRVnnOEY2FPeENqiRTKBNJJjs2BviiB5PDG6zrPOOjiarMDpXQjPk5v5faUnX /zPaXatZzgYfvi6VAr0RnquTM2PSsFwGzAASBatFjgLQvcMaY6hXoTAiOgYceKof NpQmvwT24MZRo/QjojmEnZcwpwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIcGazHJ eo62NTaEpcFAHoYG3QMWMB8GA1UdIwQYMBaAFIkxIYBflBR9N9zG10tjeEb3I5fF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RTAwRi9FREU0OEI5Q0VF MjkxMUVCODA4NEI2MzhDNEY5QUUwMi9pVEVoZ0YtVUZIMDMzTWJYUzJONFJ2Y2ps OFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lURWhnRi1VRkgwMzNNYlhTMk40UnZjamw4VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RTAwRi9FREU0OEI5Q0VFMjkxMUVCODA4NEI2MzhDNEY5QUUwMi9pVEVoZ0YtVUZI MDMzTWJYUzJONFJ2Y2psOFUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCaUWOGNto6RoLa13qGeSzM3JdVE8/7rS2zPt7rZE24WtiD2p7GySSH 9emUHvAqWeoK5mL/1+oUqZHq1JFwVGGb9i8LakRfa+o2dGsVrm4Dz1129GR5hjIh 6RmIfyVTKdI4CtvXVnguqcgcB2Jio54K1mFlBsPhrNTHWAIwM+Nj+ob5fpawFLZg X7pbARSN3Xicfvbp6ulwJWly2SMs6h5h++BUnEfF2T8JZJDpjo3rOp8XhZMOQrT5 pCZ00EdbFgdW2p+fSVveRB9kk4kQoqgfVkm4h5hqQ40ZGC2Sf1ohEegYFGFZ04pG KjlTDB5GZ5bWzyzzn896kE+RYTl1/s3I -----END CERTIFICATE-----Generated at Sat Nov 23 00:49:35 2024 by rpki-client on console-fra.rpki-client.org