$ rpki-client -vvf rpki.apnic.net/member_repository/A91A20A3/AF4B8A621D9E11E28E53C08E08B02CD2/0Vpa-a-Nmd_l5E017lUBBf7ZRRE.mft File: 0Vpa-a-Nmd_l5E017lUBBf7ZRRE.mft (raw, json) Hash identifier: sNepsmAyajabNUd9CQvBxJ1rGRNyHpzP9yVBhSK3fKc= Subject key identifier: A1:35:1F:A3:9A:9F:B9:29:6B:8D:9B:DA:86:CE:AF:91:1C:48:39:B4 Authority key identifier: D1:5A:5A:F9:AF:8D:99:DF:E5:E4:4D:35:EE:55:01:05:FE:D9:45:11 Certificate issuer: /CN=A91A20A3/serialNumber=D15A5AF9AF8D99DFE5E44D35EE550105FED94511 Certificate serial: 3440 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0Vpa-a-Nmd_l5E017lUBBf7ZRRE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A20A3/AF4B8A621D9E11E28E53C08E08B02CD2/0Vpa-a-Nmd_l5E017lUBBf7ZRRE.mft Manifest number: 3430 Signing time: Sun 24 Nov 2024 15:00:01 +0000 Manifest this update: Sun 24 Nov 2024 15:00:00 +0000 Manifest next update: Sun 01 Dec 2024 15:00:00 +0000 Files and hashes: 1: 0Vpa-a-Nmd_l5E017lUBBf7ZRRE.crl (hash: q6s+bx5CvW6X7dUbSBg7NX3k1mzEpHD0hCElinave/w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A20A3/AF4B8A621D9E11E28E53C08E08B02CD2/0Vpa-a-Nmd_l5E017lUBBf7ZRRE.crl rsync://rpki.apnic.net/member_repository/A91A20A3/AF4B8A621D9E11E28E53C08E08B02CD2/0Vpa-a-Nmd_l5E017lUBBf7ZRRE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0Vpa-a-Nmd_l5E017lUBBf7ZRRE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Dec 2024 14:59:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13376 (0x3440) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A20A3/serialNumber=D15A5AF9AF8D99DFE5E44D35EE550105FED94511 Validity Not Before: Nov 24 15:00:00 2024 GMT Not After : Dec 1 15:00:00 2024 GMT Subject: CN=67433f70-025b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:b5:89:97:1f:8f:bd:07:94:12:3a:92:af:71: 98:08:8e:6e:fc:91:a9:bc:d8:e8:f1:1a:6a:48:9a: 13:2b:42:22:ba:b5:02:95:48:76:7b:8c:fd:56:cd: 13:cd:78:37:ed:06:f3:7f:dc:92:f6:8b:93:b6:90: a2:c0:4e:11:a3:6e:38:c4:42:86:94:3d:96:58:de: 41:65:e2:54:13:89:6b:75:bf:0d:87:40:f0:2c:c1: 5c:7b:36:25:43:36:2e:8c:96:f5:86:75:04:18:ea: 2d:62:ac:13:57:30:a7:2f:ac:b9:1f:7f:e3:87:8d: bf:7f:10:9d:8b:bc:9b:be:62:ed:48:ba:46:77:45: f0:7a:50:bc:94:4d:5a:5e:b2:72:97:e0:e1:34:aa: 82:dd:79:a6:34:80:50:d9:e0:d2:39:bb:5b:b4:3d: 49:5d:97:a5:38:6c:f1:8d:45:ef:84:43:fc:b9:36: 7b:69:7f:02:b9:a3:4f:b3:f0:2d:46:96:04:d5:84: c1:69:b5:70:29:10:1e:b7:27:39:9c:8b:1f:48:c7: 1f:b8:08:cf:06:21:1c:9b:bb:34:91:ad:b5:c7:3f: 0d:7c:0d:38:18:c9:4f:b7:d7:d7:a4:ef:2e:99:71: d0:28:a1:7b:19:08:c7:34:09:d9:c1:27:76:ee:80: 38:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:35:1F:A3:9A:9F:B9:29:6B:8D:9B:DA:86:CE:AF:91:1C:48:39:B4 X509v3 Authority Key Identifier: keyid:D1:5A:5A:F9:AF:8D:99:DF:E5:E4:4D:35:EE:55:01:05:FE:D9:45:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A20A3/AF4B8A621D9E11E28E53C08E08B02CD2/0Vpa-a-Nmd_l5E017lUBBf7ZRRE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0Vpa-a-Nmd_l5E017lUBBf7ZRRE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A20A3/AF4B8A621D9E11E28E53C08E08B02CD2/0Vpa-a-Nmd_l5E017lUBBf7ZRRE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 34:6a:89:ad:1d:db:9a:45:c3:16:24:9c:3c:d3:3e:95:51:93: 20:37:5c:b4:43:57:62:23:18:5c:41:9c:55:e1:95:60:70:37: 53:0f:32:c4:91:df:64:b0:73:c6:3a:80:3b:bd:0a:60:f6:f6: ca:bb:ee:e9:6c:48:9f:87:cf:ba:b6:53:3f:2f:7f:8c:ce:87: 7d:86:8e:21:af:e1:79:52:63:b7:13:28:2d:ec:cd:43:cb:96: 16:83:08:12:2b:d7:e6:e1:1d:07:89:69:91:a0:46:bc:bd:5f: 7e:c1:b4:8e:e6:64:10:78:f2:fa:c8:14:99:8f:75:22:8f:1c: 13:22:ca:d5:d4:5e:97:39:8e:e8:06:8b:2b:05:47:4f:58:4e: 0e:0f:38:70:f4:64:2b:a0:2c:bd:d2:b7:b8:04:80:9f:12:9b: e7:4c:5d:5d:7e:e0:5c:a3:a0:e2:13:84:09:9a:ec:96:c6:ff: af:09:f7:d9:0f:0f:24:cb:40:86:77:71:5f:3b:1f:3f:45:70: c2:66:00:04:88:9b:cd:6c:5e:ec:95:61:7b:45:f2:d7:58:e9: 1d:be:7f:11:56:76:5c:24:56:be:5e:36:00:21:f1:08:27:40: bc:b8:b3:e0:d1:d9:08:4a:54:11:a4:81:fa:fb:05:f3:b5:e2: 83:73:d7:4d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNEAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTIwQTMxMTAvBgNVBAUTKEQxNUE1QUY5QUY4RDk5REZFNUU0NEQzNUVFNTUwMTA1 RkVEOTQ1MTEwHhcNMjQxMTI0MTUwMDAwWhcNMjQxMjAxMTUwMDAwWjAYMRYwFAYD VQQDEw02NzQzM2Y3MC0wMjViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvrWJlx+PvQeUEjqSr3GYCI5u/JGpvNjo8RpqSJoTK0IiurUClUh2e4z9Vs0T zXg37Qbzf9yS9ouTtpCiwE4Ro244xEKGlD2WWN5BZeJUE4lrdb8Nh0DwLMFcezYl QzYujJb1hnUEGOotYqwTVzCnL6y5H3/jh42/fxCdi7ybvmLtSLpGd0XwelC8lE1a XrJyl+DhNKqC3XmmNIBQ2eDSObtbtD1JXZelOGzxjUXvhEP8uTZ7aX8CuaNPs/At RpYE1YTBabVwKRAetyc5nIsfSMcfuAjPBiEcm7s0ka21xz8NfA04GMlPt9fXpO8u mXHQKKF7GQjHNAnZwSd27oA4RwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKE1H6Oa n7kpa42b2obOr5EcSDm0MB8GA1UdIwQYMBaAFNFaWvmvjZnf5eRNNe5VAQX+2UUR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMjBBMy9BRjRCOEE2MjFE OUUxMUUyOEU1M0MwOEUwOEIwMkNEMi8wVnBhLWEtTm1kX2w1RTAxN2xVQkJmN1pS UkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBWcGEtYS1ObWRfbDVFMDE3bFVCQmY3WlJSRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MjBBMy9BRjRCOEE2MjFEOUUxMUUyOEU1M0MwOEUwOEIwMkNEMi8wVnBhLWEtTm1k X2w1RTAxN2xVQkJmN1pSUkUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA0aomtHduaRcMWJJw80z6VUZMgN1y0Q1diIxhcQZxV4ZVgcDdTDzLE kd9ksHPGOoA7vQpg9vbKu+7pbEifh8+6tlM/L3+Mzod9ho4hr+F5UmO3Eygt7M1D y5YWgwgSK9fm4R0HiWmRoEa8vV9+wbSO5mQQePL6yBSZj3UijxwTIsrV1F6XOY7o BosrBUdPWE4ODzhw9GQroCy90re4BICfEpvnTF1dfuBco6DiE4QJmuyWxv+vCffZ Dw8ky0CGd3FfOx8/RXDCZgAEiJvNbF7slWF7RfLXWOkdvn8RVnZcJFa+XjYAIfEI J0C8uLPg0dkISlQRpIH6+wXzteKDc9dN -----END CERTIFICATE-----Generated at Sun Nov 24 17:20:47 2024 by rpki-client on console-fra.rpki-client.org