$ rpki-client -vvf rpki.apnic.net/member_repository/A919A5B5/583CC4D403BE11EBA649220BC4F9AE02/IW4UMOXDDg0jp10HDbeJi5CEl5k.mft File: IW4UMOXDDg0jp10HDbeJi5CEl5k.mft (raw, json) Hash identifier: 5XhzRmCDUhdq0DslrkcLDTQCutMwXgoJ/lwVflIfdqI= Subject key identifier: 28:35:D8:59:38:E9:D1:42:7C:E5:C2:1F:99:B1:75:E7:5E:F9:CE:1C Authority key identifier: 21:6E:14:30:E5:C3:0E:0D:23:A7:5D:07:0D:B7:89:8B:90:84:97:99 Certificate issuer: /CN=A919A5B5/serialNumber=216E1430E5C30E0D23A75D070DB7898B90849799 Certificate serial: 0748 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IW4UMOXDDg0jp10HDbeJi5CEl5k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919A5B5/583CC4D403BE11EBA649220BC4F9AE02/IW4UMOXDDg0jp10HDbeJi5CEl5k.mft Manifest number: 0743 Signing time: Fri 22 Nov 2024 21:08:46 +0000 Manifest this update: Fri 22 Nov 2024 21:08:45 +0000 Manifest next update: Fri 29 Nov 2024 21:08:45 +0000 Files and hashes: 1: IW4UMOXDDg0jp10HDbeJi5CEl5k.crl (hash: 5kmDeN5tntTFmJS2jLLEcFFK2NICGJVrVfTqfvC1qJ0=) 2: ACD444282EC911EB99EC263DC4F9AE02.roa (hash: wbhiBTffYsutIFvVL6vDZuOV2ZB4edfZWKxQBEku9Tc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919A5B5/583CC4D403BE11EBA649220BC4F9AE02/IW4UMOXDDg0jp10HDbeJi5CEl5k.crl rsync://rpki.apnic.net/member_repository/A919A5B5/583CC4D403BE11EBA649220BC4F9AE02/IW4UMOXDDg0jp10HDbeJi5CEl5k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IW4UMOXDDg0jp10HDbeJi5CEl5k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1864 (0x748) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919A5B5/serialNumber=216E1430E5C30E0D23A75D070DB7898B90849799 Validity Not Before: Nov 22 21:08:45 2024 GMT Not After : Nov 29 21:08:45 2024 GMT Subject: CN=6740f2dd-9a99 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:bf:1c:11:aa:76:b1:13:ef:43:47:ed:8c:59: 82:51:dc:db:01:11:6c:a2:b0:b0:b5:9a:ea:00:67: 42:b1:b9:b8:6e:64:f6:b8:5e:5a:d0:a1:64:84:21: 4c:e5:0c:76:5d:3b:74:08:e0:56:46:c8:57:8d:3f: 2d:30:e3:ac:a8:7c:63:ce:87:74:6d:3f:d4:5b:16: 05:a9:21:66:3a:6a:ff:45:01:a8:b3:05:8e:53:1a: 1b:10:2c:a5:b8:4f:a8:ef:6b:dc:41:63:19:00:a6: 1c:c8:bd:a2:3a:ce:d3:63:2d:5a:43:65:8a:cb:b7: 35:0f:f4:05:61:c1:38:31:25:37:1d:89:b1:74:4d: 25:25:a5:4a:4e:94:03:e7:5f:df:42:93:d0:7a:16: 71:d6:1d:6f:ce:28:48:6d:b6:79:18:18:89:58:8e: 93:c7:7e:70:1e:0a:6e:a6:32:78:57:24:4b:19:48: a5:a2:67:e9:59:31:72:c9:62:62:ec:1c:a7:ef:33: b1:b1:49:3c:b1:9d:ef:15:99:e8:4b:71:49:a7:fa: c6:97:72:a2:77:1f:3b:06:83:d6:9f:18:a0:74:40: 59:85:95:17:e9:73:ba:02:eb:ac:a2:27:cf:26:f8: 4d:38:86:aa:8a:9d:1d:be:4f:86:54:04:41:9e:3a: 0a:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:35:D8:59:38:E9:D1:42:7C:E5:C2:1F:99:B1:75:E7:5E:F9:CE:1C X509v3 Authority Key Identifier: keyid:21:6E:14:30:E5:C3:0E:0D:23:A7:5D:07:0D:B7:89:8B:90:84:97:99 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919A5B5/583CC4D403BE11EBA649220BC4F9AE02/IW4UMOXDDg0jp10HDbeJi5CEl5k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IW4UMOXDDg0jp10HDbeJi5CEl5k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919A5B5/583CC4D403BE11EBA649220BC4F9AE02/IW4UMOXDDg0jp10HDbeJi5CEl5k.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 57:ae:9d:3a:8d:98:fc:10:e7:90:11:d3:73:6f:7e:13:5f:91: 0b:41:97:d5:49:b3:69:b0:90:cb:6f:de:e8:d7:8c:40:f3:12: bd:b0:7e:54:31:ff:71:68:93:64:0d:77:4a:6f:cc:65:78:01: 7e:74:20:79:fd:e3:f3:47:4b:aa:9c:da:b5:f0:72:b1:25:6d: 5e:68:f1:1c:da:eb:09:f2:0c:35:0f:96:87:67:85:2e:75:a7: 72:e9:eb:b4:ee:a5:b4:68:4b:8b:f5:27:b0:77:1c:07:2f:eb: be:93:18:5e:86:51:df:83:bc:95:7d:ce:77:7b:5e:2f:65:85: ea:e8:44:d6:7e:72:f5:1a:92:2e:5e:16:11:e9:ff:e5:48:75: ad:35:b7:26:43:a5:43:5c:a0:3f:c4:89:05:bb:b8:62:79:66: 80:a6:72:e4:91:0b:f7:56:9f:41:fe:e8:90:ee:bd:be:ab:db: 46:f5:e3:08:6e:ca:e5:cf:3c:ab:b5:68:78:77:fa:ce:fd:d7: 12:f4:77:d3:21:b0:d1:10:d3:1f:28:29:f2:6c:78:b8:c3:c4: bd:26:09:74:d5:2e:d1:f3:a9:7a:be:c5:cc:06:e2:4a:cd:06: ee:fb:e6:9d:eb:e4:7a:36:bb:de:fa:b2:cb:8f:cf:13:c6:43: 5a:75:07:40 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB0gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUE1QjUxMTAvBgNVBAUTKDIxNkUxNDMwRTVDMzBFMEQyM0E3NUQwNzBEQjc4OThC OTA4NDk3OTkwHhcNMjQxMTIyMjEwODQ1WhcNMjQxMTI5MjEwODQ1WjAYMRYwFAYD VQQDEw02NzQwZjJkZC05YTk5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmb8cEap2sRPvQ0ftjFmCUdzbARFsorCwtZrqAGdCsbm4bmT2uF5a0KFkhCFM 5Qx2XTt0COBWRshXjT8tMOOsqHxjzod0bT/UWxYFqSFmOmr/RQGoswWOUxobECyl uE+o72vcQWMZAKYcyL2iOs7TYy1aQ2WKy7c1D/QFYcE4MSU3HYmxdE0lJaVKTpQD 51/fQpPQehZx1h1vzihIbbZ5GBiJWI6Tx35wHgpupjJ4VyRLGUilomfpWTFyyWJi 7Byn7zOxsUk8sZ3vFZnoS3FJp/rGl3Kidx87BoPWnxigdEBZhZUX6XO6AuusoifP JvhNOIaqip0dvk+GVARBnjoKmQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCg12Fk4 6dFCfOXCH5mxdede+c4cMB8GA1UdIwQYMBaAFCFuFDDlww4NI6ddBw23iYuQhJeZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QTVCNS81ODNDQzRENDAz QkUxMUVCQTY0OTIyMEJDNEY5QUUwMi9JVzRVTU9YRERnMGpwMTBIRGJlSmk1Q0Vs NWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lXNFVNT1hERGcwanAxMEhEYmVKaTVDRWw1ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 QTVCNS81ODNDQzRENDAzQkUxMUVCQTY0OTIyMEJDNEY5QUUwMi9JVzRVTU9YRERn MGpwMTBIRGJlSmk1Q0VsNWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBXrp06jZj8EOeQEdNzb34TX5ELQZfVSbNpsJDLb97o14xA8xK9sH5U Mf9xaJNkDXdKb8xleAF+dCB5/ePzR0uqnNq18HKxJW1eaPEc2usJ8gw1D5aHZ4Uu dady6eu07qW0aEuL9SewdxwHL+u+kxhehlHfg7yVfc53e14vZYXq6ETWfnL1GpIu XhYR6f/lSHWtNbcmQ6VDXKA/xIkFu7hieWaApnLkkQv3Vp9B/uiQ7r2+q9tG9eMI bsrlzzyrtWh4d/rO/dcS9HfTIbDRENMfKCnybHi4w8S9Jgl01S7R86l6vsXMBuJK zQbu++ad6+R6Nrve+rLLj88TxkNadQdA -----END CERTIFICATE-----Generated at Fri Nov 22 22:24:10 2024 by rpki-client on console-fra.rpki-client.org