$ rpki-client -vvf rpki.apnic.net/member_repository/A9186D9F/B290A3462E0411EF86F29D79C4F9AE02/2DPFFS4_LSebiQT4PQDdkKymK9U.mft File: 2DPFFS4_LSebiQT4PQDdkKymK9U.mft (raw, json) Hash identifier: 6RP2XsbwX69yyZ5kN8gelNdggInivOyJJuDF8VOhQyQ= Subject key identifier: 7B:C3:6C:E6:01:19:AD:71:B9:DA:AF:BE:48:3E:C1:39:B5:EA:58:E4 Authority key identifier: D8:33:C5:15:2E:3F:2D:27:9B:89:04:F8:3D:00:DD:90:AC:A6:2B:D5 Certificate issuer: /CN=A9186D9F/serialNumber=D833C5152E3F2D279B8904F83D00DD90ACA62BD5 Certificate serial: 51 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2DPFFS4_LSebiQT4PQDdkKymK9U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9186D9F/B290A3462E0411EF86F29D79C4F9AE02/2DPFFS4_LSebiQT4PQDdkKymK9U.mft Manifest number: 51 Signing time: Sat 23 Nov 2024 05:09:38 +0000 Manifest this update: Sat 23 Nov 2024 05:09:38 +0000 Manifest next update: Sat 30 Nov 2024 05:09:38 +0000 Files and hashes: 1: 2DPFFS4_LSebiQT4PQDdkKymK9U.crl (hash: +Iq9chetIXSyBH/VIoaYrdutWlqMUrlfvGQZyELD+3E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9186D9F/B290A3462E0411EF86F29D79C4F9AE02/2DPFFS4_LSebiQT4PQDdkKymK9U.crl rsync://rpki.apnic.net/member_repository/A9186D9F/B290A3462E0411EF86F29D79C4F9AE02/2DPFFS4_LSebiQT4PQDdkKymK9U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2DPFFS4_LSebiQT4PQDdkKymK9U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 81 (0x51) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9186D9F/serialNumber=D833C5152E3F2D279B8904F83D00DD90ACA62BD5 Validity Not Before: Nov 23 05:09:38 2024 GMT Not After : Nov 30 05:09:38 2024 GMT Subject: CN=67416392-fe5c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:08:ba:f4:1b:c4:2c:c9:db:ce:76:e8:6f:50: a2:ca:da:54:1e:f9:5f:df:4d:3c:07:a7:74:20:f7: 3d:49:3e:9a:a7:7f:9d:8e:44:1c:a0:45:86:33:bc: cc:33:d9:8a:d5:c5:8f:04:eb:f6:30:0a:00:c8:37: f6:eb:c1:f2:4e:5f:6f:13:e4:dc:60:f8:c1:77:41: 05:03:64:3f:5e:4e:56:7e:b3:2d:d7:fb:82:05:e8: 2b:25:38:1f:6d:6e:db:e3:60:25:c8:02:3c:e5:8a: fe:bd:42:a4:fb:2d:71:b1:4f:47:50:95:81:c2:a4: 51:74:13:f1:f9:14:13:35:a0:8c:55:ea:45:93:26: 90:20:2b:ad:b6:85:4f:72:37:04:26:28:f9:0a:54: 11:79:47:1d:19:48:08:37:f6:08:a6:f2:e1:d2:56: 61:14:c9:f4:df:f6:7a:5e:bd:d8:3d:ca:e7:e9:cb: 61:b3:50:76:3f:24:58:4f:0f:62:2d:9f:91:40:f1: 8d:3e:07:fe:f5:c6:b2:dd:d4:c8:8c:8d:2c:85:8c: f1:33:35:74:6a:c5:32:3d:ee:31:dd:11:22:10:b5: fd:e4:fb:ab:5d:25:07:28:f6:cb:d9:4b:ce:5e:87: e6:5b:cd:da:18:ea:6a:72:c3:4c:8c:89:75:03:6b: 2a:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:C3:6C:E6:01:19:AD:71:B9:DA:AF:BE:48:3E:C1:39:B5:EA:58:E4 X509v3 Authority Key Identifier: keyid:D8:33:C5:15:2E:3F:2D:27:9B:89:04:F8:3D:00:DD:90:AC:A6:2B:D5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9186D9F/B290A3462E0411EF86F29D79C4F9AE02/2DPFFS4_LSebiQT4PQDdkKymK9U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2DPFFS4_LSebiQT4PQDdkKymK9U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9186D9F/B290A3462E0411EF86F29D79C4F9AE02/2DPFFS4_LSebiQT4PQDdkKymK9U.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 68:dd:38:f5:9c:05:ae:42:53:4d:1f:5e:4a:b8:05:b4:9d:ca: fb:77:09:bc:f7:9e:a0:44:3e:44:f3:c9:b5:34:9e:2f:42:1b: c8:8a:c0:2e:f9:ad:25:e0:b7:fc:f3:b2:ab:9a:f6:6e:62:5e: 01:6b:8d:30:18:47:7b:0c:b5:73:d7:2c:70:49:89:2d:bc:ae: 98:12:58:9b:4a:6e:d9:da:1d:b0:84:43:e3:39:29:de:8d:07: d7:e3:bb:00:13:1a:f7:05:8b:6b:fe:5a:65:86:73:98:e8:71: 69:7a:9a:5c:ca:ad:d3:cd:d4:63:32:1e:56:88:23:83:16:e2: 2b:1d:79:d4:8c:3c:90:c5:a4:be:fd:8a:af:74:f9:d6:c1:08: 93:7a:f7:47:b5:99:f5:59:7a:4f:57:cc:4e:79:08:0a:03:3d: cd:eb:90:6f:bd:58:b3:e3:f2:fb:c9:2b:e2:25:b5:bf:ec:6c: f8:1b:71:9f:8f:50:75:9c:2a:55:1e:71:ff:37:19:d1:88:f5: 86:e6:f9:4b:09:dc:58:26:34:aa:e9:65:32:b9:05:7c:c8:33: f2:99:b3:37:db:31:e9:e0:1a:5f:9f:a9:3d:53:8d:47:d3:54: 19:da:07:e2:87:83:b7:63:a7:8e:5f:fb:06:74:e5:93:4c:b9: 54:77:32:b8 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBUTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE4 NkQ5RjExMC8GA1UEBRMoRDgzM0M1MTUyRTNGMkQyNzlCODkwNEY4M0QwMEREOTBB Q0E2MkJENTAeFw0yNDExMjMwNTA5MzhaFw0yNDExMzAwNTA5MzhaMBgxFjAUBgNV BAMTDTY3NDE2MzkyLWZlNWMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDECLr0G8QsydvOduhvUKLK2lQe+V/fTTwHp3Qg9z1JPpqnf52ORBygRYYzvMwz 2YrVxY8E6/YwCgDIN/brwfJOX28T5Nxg+MF3QQUDZD9eTlZ+sy3X+4IF6CslOB9t btvjYCXIAjzliv69QqT7LXGxT0dQlYHCpFF0E/H5FBM1oIxV6kWTJpAgK622hU9y NwQmKPkKVBF5Rx0ZSAg39gim8uHSVmEUyfTf9npevdg9yufpy2GzUHY/JFhPD2It n5FA8Y0+B/71xrLd1MiMjSyFjPEzNXRqxTI97jHdESIQtf3k+6tdJQco9svZS85e h+ZbzdoY6mpyw0yMiXUDayqDAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUe8Ns5gEZ rXG52q++SD7BObXqWOQwHwYDVR0jBBgwFoAU2DPFFS4/LSebiQT4PQDdkKymK9Uw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTg2RDlGL0IyOTBBMzQ2MkUw NDExRUY4NkYyOUQ3OUM0RjlBRTAyLzJEUEZGUzRfTFNlYmlRVDRQUURka0t5bUs5 VS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvMkRQRkZTNF9MU2ViaVFUNFBRRGRrS3ltSzlVLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTg2 RDlGL0IyOTBBMzQ2MkUwNDExRUY4NkYyOUQ3OUM0RjlBRTAyLzJEUEZGUzRfTFNl YmlRVDRQUURka0t5bUs5VS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAGjdOPWcBa5CU00fXkq4BbSdyvt3Cbz3nqBEPkTzybU0ni9CG8iKwC75 rSXgt/zzsqua9m5iXgFrjTAYR3sMtXPXLHBJiS28rpgSWJtKbtnaHbCEQ+M5Kd6N B9fjuwATGvcFi2v+WmWGc5jocWl6mlzKrdPN1GMyHlaII4MW4isdedSMPJDFpL79 iq90+dbBCJN690e1mfVZek9XzE55CAoDPc3rkG+9WLPj8vvJK+Iltb/sbPgbcZ+P UHWcKlUecf83GdGI9Ybm+UsJ3FgmNKrpZTK5BXzIM/KZszfbMengGl+fqT1TjUfT VBnaB+KHg7djp45f+wZ05ZNMuVR3Mrg= -----END CERTIFICATE-----Generated at Sat Nov 23 06:21:27 2024 by rpki-client on console-fra.rpki-client.org