$ rpki-client -vvf rpki.apnic.net/member_repository/A919821D/B2A074EE89B111EE986CA65CC4F9AE02/iMFUTX5nvNkdSN9dEfzRAh-FOZM.mft File: iMFUTX5nvNkdSN9dEfzRAh-FOZM.mft (raw, json) Hash identifier: U1eM3BGuvWeyC54O74s2+bChVSezpivGVR01tt7MeGg= Subject key identifier: 18:67:A7:CF:B5:0B:47:A4:98:84:D2:54:CE:AD:F1:95:10:BD:07:68 Authority key identifier: 88:C1:54:4D:7E:67:BC:D9:1D:48:DF:5D:11:FC:D1:02:1F:85:39:93 Certificate issuer: /CN=A919821D/serialNumber=88C1544D7E67BCD91D48DF5D11FCD1021F853993 Certificate serial: C1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iMFUTX5nvNkdSN9dEfzRAh-FOZM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919821D/B2A074EE89B111EE986CA65CC4F9AE02/iMFUTX5nvNkdSN9dEfzRAh-FOZM.mft Manifest number: BE Signing time: Sat 23 Nov 2024 03:59:56 +0000 Manifest this update: Sat 23 Nov 2024 03:59:55 +0000 Manifest next update: Sat 30 Nov 2024 03:59:55 +0000 Files and hashes: 1: iMFUTX5nvNkdSN9dEfzRAh-FOZM.crl (hash: k+SryD7RjlvAbXtU5UH7kpJdUwVoYqf0s7Sz6G+pd3I=) 2: 51D4585A89B211EE9ADA615EC4F9AE02.roa (hash: 2pLBfFEzGVtLv2cMeVGOzUnHFe1Jg/DT2E9SEr2vDd0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919821D/B2A074EE89B111EE986CA65CC4F9AE02/iMFUTX5nvNkdSN9dEfzRAh-FOZM.crl rsync://rpki.apnic.net/member_repository/A919821D/B2A074EE89B111EE986CA65CC4F9AE02/iMFUTX5nvNkdSN9dEfzRAh-FOZM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iMFUTX5nvNkdSN9dEfzRAh-FOZM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 193 (0xc1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919821D/serialNumber=88C1544D7E67BCD91D48DF5D11FCD1021F853993 Validity Not Before: Nov 23 03:59:55 2024 GMT Not After : Nov 30 03:59:55 2024 GMT Subject: CN=6741533b-8228 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:a3:cb:1f:6f:5d:33:2d:da:da:70:92:35:3b: 21:81:81:a4:b8:d6:18:bb:ff:9a:ab:3a:65:69:b6: b8:6b:71:0f:16:dc:14:94:6b:c3:3c:73:f0:3a:ba: 8a:ca:ba:0f:e3:cf:f9:af:41:e6:91:3f:ca:b5:25: 7f:65:f0:fa:fb:5a:72:20:74:78:0a:4c:b9:3d:a4: 91:ba:ea:d9:1f:a5:a8:83:b5:0e:a5:8a:23:8b:91: 7a:9f:4c:a3:e2:dc:53:9b:ff:be:2d:75:6a:4e:5e: 66:83:f5:71:15:54:2c:68:76:99:f0:40:5f:9d:6a: 05:55:30:4d:d1:ec:30:91:57:fc:76:40:60:f7:7f: 6f:8b:7f:30:0c:5b:76:45:5c:c3:73:97:08:6c:89: 0b:b6:28:65:b6:f4:b8:b0:cc:bc:a4:66:29:8f:d1: ed:6c:d4:37:d1:9d:26:91:96:ee:6a:15:78:e2:ac: 75:67:d1:e3:a7:fa:76:03:ec:05:fb:4a:fb:21:79: 2d:08:70:fe:e9:8c:8f:57:20:7e:2d:74:b6:e9:54: 51:3a:d5:ea:74:84:b8:4d:63:3c:0a:8b:f3:d8:2e: 59:f4:6c:9f:a4:03:33:ad:e9:06:bc:a6:f0:31:d1: ab:b3:5f:14:4c:d9:fa:62:43:33:7f:d9:08:26:dd: cd:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:67:A7:CF:B5:0B:47:A4:98:84:D2:54:CE:AD:F1:95:10:BD:07:68 X509v3 Authority Key Identifier: keyid:88:C1:54:4D:7E:67:BC:D9:1D:48:DF:5D:11:FC:D1:02:1F:85:39:93 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919821D/B2A074EE89B111EE986CA65CC4F9AE02/iMFUTX5nvNkdSN9dEfzRAh-FOZM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iMFUTX5nvNkdSN9dEfzRAh-FOZM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919821D/B2A074EE89B111EE986CA65CC4F9AE02/iMFUTX5nvNkdSN9dEfzRAh-FOZM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 38:0e:43:fa:7b:e2:aa:6c:8d:cc:59:8e:51:b5:a0:df:b0:47: 36:b5:0f:ba:67:5f:b3:0e:b8:42:54:f3:34:5e:8e:16:c2:60: 12:c7:e8:8a:97:3e:d5:59:64:07:ca:db:92:68:d8:ec:1d:f6: 66:39:ec:d2:ac:af:c0:e7:e6:58:d6:a0:ea:d1:e6:b3:ed:df: ce:7f:32:8d:2b:bf:bb:93:9a:1d:c3:44:df:29:58:fc:8d:e6: a8:f0:26:ac:fa:57:84:08:25:87:4d:f2:28:44:a4:5b:c6:e6: 1b:cc:bf:20:e6:0c:3c:e9:57:6b:7d:03:8a:1b:dd:8b:bc:96: de:74:dd:4a:53:cb:3b:df:72:97:4d:42:e4:a2:ba:da:20:b6: 8c:06:03:e3:41:e1:1e:e5:7d:6f:c3:30:8c:3a:e7:48:29:e9: 6d:eb:9a:9e:f3:12:2a:88:62:13:5a:c9:52:1e:15:58:f0:aa: c2:11:68:33:6a:14:89:93:e6:09:f6:45:45:15:6f:fd:cd:57: 02:1f:35:ac:b4:9a:2a:05:a0:ab:14:1e:9c:52:24:8f:34:26: 49:05:ec:94:28:33:a6:ba:fa:11:1b:e0:36:07:79:d3:90:51: 25:56:3f:92:1b:33:1a:8c:e2:7c:7e:61:42:72:d7:7d:c4:76: a5:d8:c0:c9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAMEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTgyMUQxMTAvBgNVBAUTKDg4QzE1NDREN0U2N0JDRDkxRDQ4REY1RDExRkNEMTAy MUY4NTM5OTMwHhcNMjQxMTIzMDM1OTU1WhcNMjQxMTMwMDM1OTU1WjAYMRYwFAYD VQQDEw02NzQxNTMzYi04MjI4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyqPLH29dMy3a2nCSNTshgYGkuNYYu/+aqzplaba4a3EPFtwUlGvDPHPwOrqK yroP48/5r0HmkT/KtSV/ZfD6+1pyIHR4Cky5PaSRuurZH6Wog7UOpYoji5F6n0yj 4txTm/++LXVqTl5mg/VxFVQsaHaZ8EBfnWoFVTBN0ewwkVf8dkBg939vi38wDFt2 RVzDc5cIbIkLtihltvS4sMy8pGYpj9HtbNQ30Z0mkZbuahV44qx1Z9Hjp/p2A+wF +0r7IXktCHD+6YyPVyB+LXS26VRROtXqdIS4TWM8Covz2C5Z9GyfpAMzrekGvKbw MdGrs18UTNn6YkMzf9kIJt3N7wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBhnp8+1 C0ekmITSVM6t8ZUQvQdoMB8GA1UdIwQYMBaAFIjBVE1+Z7zZHUjfXRH80QIfhTmT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5ODIxRC9CMkEwNzRFRTg5 QjExMUVFOTg2Q0E2NUNDNEY5QUUwMi9pTUZVVFg1bnZOa2RTTjlkRWZ6UkFoLUZP Wk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lNRlVUWDVudk5rZFNOOWRFZnpSQWgtRk9aTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 ODIxRC9CMkEwNzRFRTg5QjExMUVFOTg2Q0E2NUNDNEY5QUUwMi9pTUZVVFg1bnZO a2RTTjlkRWZ6UkFoLUZPWk0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA4DkP6e+KqbI3MWY5RtaDfsEc2tQ+6Z1+zDrhCVPM0Xo4WwmASx+iK lz7VWWQHytuSaNjsHfZmOezSrK/A5+ZY1qDq0eaz7d/OfzKNK7+7k5odw0TfKVj8 jeao8Cas+leECCWHTfIoRKRbxuYbzL8g5gw86VdrfQOKG92LvJbedN1KU8s733KX TULkorraILaMBgPjQeEe5X1vwzCMOudIKelt65qe8xIqiGITWslSHhVY8KrCEWgz ahSJk+YJ9kVFFW/9zVcCHzWstJoqBaCrFB6cUiSPNCZJBeyUKDOmuvoRG+A2B3nT kFElVj+SGzMajOJ8fmFCctd9xHal2MDJ -----END CERTIFICATE-----Generated at Sat Nov 23 05:02:53 2024 by rpki-client on console-fra.rpki-client.org