$ rpki-client -vvf rpki.apnic.net/member_repository/A919F53A/36B52DFA2FC011EBA25FE982C4F9AE02/r4V4i4xS0SjVNAp1CVuPDxF3nEg.mft File: r4V4i4xS0SjVNAp1CVuPDxF3nEg.mft (raw, json) Hash identifier: P8fXJuCyixnV9FFze6VTYBuc+c/iBuCo1P0QBsOyIqU= Subject key identifier: 71:45:A0:C6:65:9D:5E:53:62:6E:37:E1:AB:85:B4:8A:3E:49:BF:C4 Authority key identifier: AF:85:78:8B:8C:52:D1:28:D5:34:0A:75:09:5B:8F:0F:11:77:9C:48 Certificate issuer: /CN=A919F53A/serialNumber=AF85788B8C52D128D5340A75095B8F0F11779C48 Certificate serial: 06D5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r4V4i4xS0SjVNAp1CVuPDxF3nEg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919F53A/36B52DFA2FC011EBA25FE982C4F9AE02/r4V4i4xS0SjVNAp1CVuPDxF3nEg.mft Manifest number: 06D1 Signing time: Fri 22 Nov 2024 21:38:15 +0000 Manifest this update: Fri 22 Nov 2024 21:38:14 +0000 Manifest next update: Fri 29 Nov 2024 21:38:14 +0000 Files and hashes: 1: r4V4i4xS0SjVNAp1CVuPDxF3nEg.crl (hash: mwo7vXZMjor0dFkXonQHAsQ9UZbkmowhe7e97/p38Ps=) 2: 72BCBB042FC211EBB8550B0AC4F9AE02.roa (hash: W74p/U+ZKm+i2aa6ytxthZ3GiXWBjWMUpOEQvBU+HkI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919F53A/36B52DFA2FC011EBA25FE982C4F9AE02/r4V4i4xS0SjVNAp1CVuPDxF3nEg.crl rsync://rpki.apnic.net/member_repository/A919F53A/36B52DFA2FC011EBA25FE982C4F9AE02/r4V4i4xS0SjVNAp1CVuPDxF3nEg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r4V4i4xS0SjVNAp1CVuPDxF3nEg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1749 (0x6d5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919F53A/serialNumber=AF85788B8C52D128D5340A75095B8F0F11779C48 Validity Not Before: Nov 22 21:38:14 2024 GMT Not After : Nov 29 21:38:14 2024 GMT Subject: CN=6740f9c7-fce7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:65:0f:7b:93:ee:bc:18:dc:0c:b1:dc:09:0d: e8:4c:28:85:59:4e:48:ef:72:8b:3d:ef:28:86:4d: c1:c6:3a:69:2b:00:65:91:64:56:9e:db:d0:1b:05: 7e:bf:a8:66:d8:db:b6:10:22:4c:7a:1e:6a:aa:e5: 58:95:8d:3c:3a:27:8f:8b:da:95:a5:36:16:02:9d: 3f:f8:0a:fe:18:33:c4:59:ff:fe:36:bd:ef:c3:f3: ad:7b:f2:b9:fc:e8:40:1e:9f:d3:71:e0:d8:7f:a2: 0b:13:c5:c9:4c:de:b5:2d:92:d9:0e:c1:87:a8:f9: 24:29:36:f4:85:7a:9e:83:a5:fc:f8:d9:89:19:cf: 09:23:41:dc:d8:63:6d:c6:e2:30:97:4d:6a:d6:b5: 55:a2:42:38:82:97:64:5c:e6:7c:e0:4b:33:95:76: 14:ac:4c:31:7d:cf:69:9a:16:eb:ce:ec:41:c6:96: 2c:e0:73:fd:fd:ad:c1:15:03:48:3c:06:31:c9:88: b3:47:ef:f0:cf:98:ef:89:37:25:f5:85:90:e2:68: 0a:be:ba:0a:89:5b:bb:1b:1d:e2:8b:e9:11:fd:ac: 24:0c:89:f1:30:84:4c:7e:fe:e6:ed:e9:df:96:b7: 3f:13:66:12:9a:a8:96:5b:4e:57:d7:0c:95:2c:08: c8:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:45:A0:C6:65:9D:5E:53:62:6E:37:E1:AB:85:B4:8A:3E:49:BF:C4 X509v3 Authority Key Identifier: keyid:AF:85:78:8B:8C:52:D1:28:D5:34:0A:75:09:5B:8F:0F:11:77:9C:48 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919F53A/36B52DFA2FC011EBA25FE982C4F9AE02/r4V4i4xS0SjVNAp1CVuPDxF3nEg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r4V4i4xS0SjVNAp1CVuPDxF3nEg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919F53A/36B52DFA2FC011EBA25FE982C4F9AE02/r4V4i4xS0SjVNAp1CVuPDxF3nEg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 63:1e:c3:57:57:d8:d8:d7:e3:2f:ae:90:2c:1d:30:04:90:86: b6:87:58:57:af:91:b4:94:92:3a:f5:76:01:95:b9:9f:31:13: 0d:48:f1:f1:17:77:21:5f:0a:60:c6:8c:20:7e:11:c2:c1:ca: 87:a8:1e:81:fa:cf:91:65:58:93:44:11:48:48:ed:36:42:57: 86:8b:e1:4a:6f:f7:65:95:79:f8:6b:84:9c:14:f8:2c:3b:c5: b1:f1:b4:b8:b9:6b:35:e6:20:8f:10:9e:73:bb:98:ad:9a:4d: 7d:fd:ac:b8:f6:dd:53:ec:d4:9e:bc:10:65:56:e9:b1:37:20: 18:17:bf:68:85:61:d4:f4:24:0b:6c:c8:b6:67:5e:26:32:0b: 91:6a:7a:89:f9:45:ea:b0:75:68:8b:ca:f9:58:71:a5:8c:a4: ca:ce:6d:ee:7d:8f:40:ed:8e:bf:80:66:de:85:0b:5f:b5:4f: 1f:c8:44:85:f7:e6:b4:7a:72:9e:ee:9d:5d:b7:58:9c:23:03: 84:1d:dc:5e:dc:99:2e:dc:0a:96:a3:9c:9c:da:5c:2f:21:64: 62:80:f3:15:8a:32:30:f4:3d:38:d4:c6:0e:fe:c1:5a:ab:8f: f6:23:dc:44:27:6a:c9:42:e9:e6:1e:34:2a:90:84:e0:87:70: 88:c1:6a:2d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBtUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUY1M0ExMTAvBgNVBAUTKEFGODU3ODhCOEM1MkQxMjhENTM0MEE3NTA5NUI4RjBG MTE3NzlDNDgwHhcNMjQxMTIyMjEzODE0WhcNMjQxMTI5MjEzODE0WjAYMRYwFAYD VQQDEw02NzQwZjljNy1mY2U3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwmUPe5PuvBjcDLHcCQ3oTCiFWU5I73KLPe8ohk3BxjppKwBlkWRWntvQGwV+ v6hm2Nu2ECJMeh5qquVYlY08OiePi9qVpTYWAp0/+Ar+GDPEWf/+Nr3vw/Ote/K5 /OhAHp/TceDYf6ILE8XJTN61LZLZDsGHqPkkKTb0hXqeg6X8+NmJGc8JI0Hc2GNt xuIwl01q1rVVokI4gpdkXOZ84EszlXYUrEwxfc9pmhbrzuxBxpYs4HP9/a3BFQNI PAYxyYizR+/wz5jviTcl9YWQ4mgKvroKiVu7Gx3ii+kR/awkDInxMIRMfv7m7enf lrc/E2YSmqiWW05X1wyVLAjIRwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHFFoMZl nV5TYm434auFtIo+Sb/EMB8GA1UdIwQYMBaAFK+FeIuMUtEo1TQKdQlbjw8Rd5xI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RjUzQS8zNkI1MkRGQTJG QzAxMUVCQTI1RkU5ODJDNEY5QUUwMi9yNFY0aTR4UzBTalZOQXAxQ1Z1UER4RjNu RWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3I0VjRpNHhTMFNqVk5BcDFDVnVQRHhGM25FZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RjUzQS8zNkI1MkRGQTJGQzAxMUVCQTI1RkU5ODJDNEY5QUUwMi9yNFY0aTR4UzBT alZOQXAxQ1Z1UER4RjNuRWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBjHsNXV9jY1+MvrpAsHTAEkIa2h1hXr5G0lJI69XYBlbmfMRMNSPHx F3chXwpgxowgfhHCwcqHqB6B+s+RZViTRBFISO02QleGi+FKb/dllXn4a4ScFPgs O8Wx8bS4uWs15iCPEJ5zu5itmk19/ay49t1T7NSevBBlVumxNyAYF79ohWHU9CQL bMi2Z14mMguRanqJ+UXqsHVoi8r5WHGljKTKzm3ufY9A7Y6/gGbehQtftU8fyESF 9+a0enKe7p1dt1icIwOEHdxe3Jku3AqWo5yc2lwvIWRigPMVijIw9D041MYO/sFa q4/2I9xEJ2rJQunmHjQqkITgh3CIwWot -----END CERTIFICATE-----Generated at Fri Nov 22 22:24:11 2024 by rpki-client on console-fra.rpki-client.org