$ rpki-client -vvf rpki.apnic.net/member_repository/A919D3C2/72D7CFD623F811E79589D752C4F9AE02/5wYdsiKDjeaKk84h7ykbBVQthyY.mft File: 5wYdsiKDjeaKk84h7ykbBVQthyY.mft (raw, json) Hash identifier: l3m0KQ+04ZKKD0hJJPNcIdWAvyxr1nBQlvpyh4KIiiM= Subject key identifier: 21:BA:67:5B:D6:DB:5F:40:69:61:38:0F:EB:EF:E3:F9:D1:6E:F7:BF Authority key identifier: E7:06:1D:B2:22:83:8D:E6:8A:93:CE:21:EF:29:1B:05:54:2D:87:26 Certificate issuer: /CN=A919D3C2/serialNumber=E7061DB222838DE68A93CE21EF291B05542D8726 Certificate serial: 1A93 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5wYdsiKDjeaKk84h7ykbBVQthyY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919D3C2/72D7CFD623F811E79589D752C4F9AE02/5wYdsiKDjeaKk84h7ykbBVQthyY.mft Manifest number: 1A8B Signing time: Sun 24 Nov 2024 16:13:26 +0000 Manifest this update: Sun 24 Nov 2024 16:13:26 +0000 Manifest next update: Sun 01 Dec 2024 16:13:26 +0000 Files and hashes: 1: 5wYdsiKDjeaKk84h7ykbBVQthyY.crl (hash: QVwC2OqcwuiS3LgKSyX73wDF0wR2akkn5q30lFMhA94=) 2: A6B5F55C23F911E79BE44454C4F9AE02.roa (hash: Qv5AAU60Mi7+dJ3KtkU01WrlemqwaBBxsC0pxuHLu6k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919D3C2/72D7CFD623F811E79589D752C4F9AE02/5wYdsiKDjeaKk84h7ykbBVQthyY.crl rsync://rpki.apnic.net/member_repository/A919D3C2/72D7CFD623F811E79589D752C4F9AE02/5wYdsiKDjeaKk84h7ykbBVQthyY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5wYdsiKDjeaKk84h7ykbBVQthyY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Dec 2024 15:54:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6803 (0x1a93) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919D3C2/serialNumber=E7061DB222838DE68A93CE21EF291B05542D8726 Validity Not Before: Nov 24 16:13:26 2024 GMT Not After : Dec 1 16:13:26 2024 GMT Subject: CN=674350a6-0757 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:34:06:1d:95:b7:ba:18:41:df:17:d4:38:26: 4a:87:e2:f6:f7:6d:07:d8:0d:12:5d:79:c0:74:db: 74:52:b1:db:e4:b0:e6:73:2e:f5:94:27:1f:3b:17: a4:ae:33:5d:59:ed:f4:e1:c2:03:ef:ed:b3:b2:c9: 6b:22:6c:e2:62:0c:08:53:75:c5:7b:f0:0c:16:30: 12:4d:63:d8:eb:2d:56:8b:d1:b8:9c:8e:c7:db:49: 51:7a:78:df:4b:48:53:68:2a:82:2a:e8:d8:0c:23: c9:17:bf:c7:ba:a5:5c:8c:c2:5c:ed:ac:67:67:85: 09:0e:3a:51:fd:26:c9:4f:d1:52:1c:c1:8c:f9:3e: 1d:d2:11:41:93:af:db:00:e0:a3:10:00:da:4c:33: ed:a3:78:9a:f0:ab:11:52:e5:00:45:c0:9e:6a:42: 7e:84:be:74:bb:92:a5:13:32:4b:9a:ea:49:e9:84: 1e:32:92:a2:26:06:9c:22:e8:dc:c5:44:03:3e:00: 24:5c:3d:82:1b:24:bb:db:5e:09:b9:6b:35:1e:e7: f4:15:a8:82:d5:61:de:3c:0e:d5:5e:c6:b7:e2:f3: 1a:d8:07:c0:38:00:d3:67:6e:0e:d1:31:0a:0d:2a: 16:ff:74:16:e5:81:6d:a6:3c:8b:65:fb:9c:b7:ae: 59:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:BA:67:5B:D6:DB:5F:40:69:61:38:0F:EB:EF:E3:F9:D1:6E:F7:BF X509v3 Authority Key Identifier: keyid:E7:06:1D:B2:22:83:8D:E6:8A:93:CE:21:EF:29:1B:05:54:2D:87:26 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919D3C2/72D7CFD623F811E79589D752C4F9AE02/5wYdsiKDjeaKk84h7ykbBVQthyY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5wYdsiKDjeaKk84h7ykbBVQthyY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919D3C2/72D7CFD623F811E79589D752C4F9AE02/5wYdsiKDjeaKk84h7ykbBVQthyY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 35:97:65:54:13:bf:9e:ed:9d:e5:22:64:32:79:5d:a0:24:b2: f4:56:8a:aa:49:dc:10:92:3e:d4:81:c0:1a:87:f7:30:a2:db: 9d:95:f6:b9:16:a5:e6:20:22:dc:76:d8:04:72:e6:53:92:1d: 1d:21:da:02:1f:8c:e3:df:00:99:51:1e:b1:fa:01:a4:ec:f8: 82:a7:24:90:d5:08:fc:e9:f4:a8:ed:e6:61:90:d9:b6:a7:fd: 67:04:0a:b2:3a:1b:88:9e:48:7c:83:40:9f:73:3d:7d:1f:f6: 9b:e5:d8:75:98:7e:66:a0:30:ac:36:ab:fd:8e:af:d1:a6:c1: cd:75:6b:ee:4a:57:71:a4:81:46:27:f0:1b:6f:3e:af:86:84: e9:15:bb:de:59:12:32:9d:c0:39:bb:ff:d2:ac:e0:30:65:4f: d0:cd:3b:65:53:a5:6c:a2:57:7c:c5:74:60:c6:2d:24:01:52: c8:18:ec:66:f6:a6:92:71:8a:67:b7:df:8a:9f:83:d9:cc:fb: 91:6c:54:a9:96:57:5e:1b:94:3c:36:17:44:35:97:67:71:46: 9e:66:59:93:e9:65:d5:13:34:dc:d5:63:96:c6:86:da:fd:aa: fe:d8:03:bc:a1:4f:e0:b3:8b:9c:0e:82:86:13:f3:b8:7d:fb: b1:59:c7:1c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICGpMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUQzQzIxMTAvBgNVBAUTKEU3MDYxREIyMjI4MzhERTY4QTkzQ0UyMUVGMjkxQjA1 NTQyRDg3MjYwHhcNMjQxMTI0MTYxMzI2WhcNMjQxMjAxMTYxMzI2WjAYMRYwFAYD VQQDEw02NzQzNTBhNi0wNzU3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxDQGHZW3uhhB3xfUOCZKh+L2920H2A0SXXnAdNt0UrHb5LDmcy71lCcfOxek rjNdWe304cID7+2zsslrImziYgwIU3XFe/AMFjASTWPY6y1Wi9G4nI7H20lRenjf S0hTaCqCKujYDCPJF7/HuqVcjMJc7axnZ4UJDjpR/SbJT9FSHMGM+T4d0hFBk6/b AOCjEADaTDPto3ia8KsRUuUARcCeakJ+hL50u5KlEzJLmupJ6YQeMpKiJgacIujc xUQDPgAkXD2CGyS7214JuWs1Huf0FaiC1WHePA7VXsa34vMa2AfAOADTZ24O0TEK DSoW/3QW5YFtpjyLZfuct65Z/QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCG6Z1vW 219AaWE4D+vv4/nRbve/MB8GA1UdIwQYMBaAFOcGHbIig43mipPOIe8pGwVULYcm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RDNDMi83MkQ3Q0ZENjIz RjgxMUU3OTU4OUQ3NTJDNEY5QUUwMi81d1lkc2lLRGplYUtrODRoN3lrYkJWUXRo eVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzV3WWRzaUtEamVhS2s4NGg3eWtiQlZRdGh5WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RDNDMi83MkQ3Q0ZENjIzRjgxMUU3OTU4OUQ3NTJDNEY5QUUwMi81d1lkc2lLRGpl YUtrODRoN3lrYkJWUXRoeVkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA1l2VUE7+e7Z3lImQyeV2gJLL0VoqqSdwQkj7UgcAah/cwotudlfa5 FqXmICLcdtgEcuZTkh0dIdoCH4zj3wCZUR6x+gGk7PiCpySQ1Qj86fSo7eZhkNm2 p/1nBAqyOhuInkh8g0Cfcz19H/ab5dh1mH5moDCsNqv9jq/RpsHNdWvuSldxpIFG J/Abbz6vhoTpFbveWRIyncA5u//SrOAwZU/QzTtlU6Vsold8xXRgxi0kAVLIGOxm 9qaScYpnt9+Kn4PZzPuRbFSplldeG5Q8NhdENZdncUaeZlmT6WXVEzTc1WOWxoba /ar+2AO8oU/gs4ucDoKGE/O4ffuxWccc -----END CERTIFICATE-----Generated at Sun Nov 24 17:20:47 2024 by rpki-client on console-fra.rpki-client.org