$ rpki-client -vvf rpki.apnic.net/member_repository/A91B45C0/BDEE729AE6D911E88B8BF77CC4F9AE02/lRKAntQ1o2QK-bdfCvspKNQWPDE.mft File: lRKAntQ1o2QK-bdfCvspKNQWPDE.mft (raw, json) Hash identifier: Otl0XD2hw4Z8GkKMW28vrkUh5Qtcfl+seaf3ql/HAe0= Subject key identifier: DC:2F:08:48:81:FD:31:17:31:14:77:44:ED:6A:E5:2F:8F:8F:D8:6F Authority key identifier: 95:12:80:9E:D4:35:A3:64:0A:F9:B7:5F:0A:FB:29:28:D4:16:3C:31 Certificate issuer: /CN=A91B45C0/serialNumber=9512809ED435A3640AF9B75F0AFB2928D4163C31 Certificate serial: 1189 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lRKAntQ1o2QK-bdfCvspKNQWPDE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B45C0/BDEE729AE6D911E88B8BF77CC4F9AE02/lRKAntQ1o2QK-bdfCvspKNQWPDE.mft Manifest number: 1188 Signing time: Fri 22 Nov 2024 17:12:27 +0000 Manifest this update: Fri 22 Nov 2024 17:12:27 +0000 Manifest next update: Fri 29 Nov 2024 17:12:27 +0000 Files and hashes: 1: lRKAntQ1o2QK-bdfCvspKNQWPDE.crl (hash: DvL+znYmUZxC4zcQdLTDGv9a/XHYwWTTyvGCzBnLras=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B45C0/BDEE729AE6D911E88B8BF77CC4F9AE02/lRKAntQ1o2QK-bdfCvspKNQWPDE.crl rsync://rpki.apnic.net/member_repository/A91B45C0/BDEE729AE6D911E88B8BF77CC4F9AE02/lRKAntQ1o2QK-bdfCvspKNQWPDE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lRKAntQ1o2QK-bdfCvspKNQWPDE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 16:30:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4489 (0x1189) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B45C0/serialNumber=9512809ED435A3640AF9B75F0AFB2928D4163C31 Validity Not Before: Nov 22 17:12:27 2024 GMT Not After : Nov 29 17:12:27 2024 GMT Subject: CN=6740bb7b-3652 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f5:e7:49:8c:19:f8:61:12:d2:86:30:83:7e:1d: 02:f1:0b:dd:c6:c0:dd:43:7d:18:5b:2c:90:01:bf: 19:8e:dd:da:c6:b3:c0:05:f7:bc:aa:78:19:9e:bf: 5f:ca:f9:7d:56:b3:59:94:3c:f9:f0:67:af:1a:9d: cf:cf:8c:5c:87:58:90:f9:2a:13:b8:60:6d:ef:7f: 60:c1:96:0e:d8:fe:4e:5e:a9:75:91:31:4b:9c:e9: e6:fe:f2:86:86:f3:4a:41:b1:3a:9e:72:c9:59:eb: 85:38:31:19:eb:cf:63:94:57:47:b9:d7:b5:d9:b7: 78:3b:bb:9a:2c:62:fc:b2:df:d8:5d:bd:f6:8b:d3: 29:66:61:f0:57:96:5f:6d:dc:d2:ab:71:11:35:3e: 14:c7:c8:cf:f3:84:ac:d1:d3:a5:5e:66:60:c1:fe: 09:30:d4:78:a4:cc:fe:d5:3f:96:4c:5f:95:59:a4: 81:6c:8a:cc:89:df:ae:ad:e8:a5:f0:c5:69:48:cb: e0:ca:3d:bb:16:9b:9a:cc:60:f7:5e:59:4f:09:bd: 2b:a7:0f:a2:ec:65:2b:c6:c1:3c:44:c6:dc:a2:34: 38:cc:b4:0a:4e:00:eb:7d:e4:68:f4:70:b2:cb:2e: 85:35:ec:86:40:38:5e:69:b2:95:83:81:bc:03:b0: ca:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:2F:08:48:81:FD:31:17:31:14:77:44:ED:6A:E5:2F:8F:8F:D8:6F X509v3 Authority Key Identifier: keyid:95:12:80:9E:D4:35:A3:64:0A:F9:B7:5F:0A:FB:29:28:D4:16:3C:31 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B45C0/BDEE729AE6D911E88B8BF77CC4F9AE02/lRKAntQ1o2QK-bdfCvspKNQWPDE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lRKAntQ1o2QK-bdfCvspKNQWPDE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B45C0/BDEE729AE6D911E88B8BF77CC4F9AE02/lRKAntQ1o2QK-bdfCvspKNQWPDE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5e:57:98:35:9e:8e:27:86:71:f8:a1:e7:6d:ea:d2:29:19:df: 21:ab:74:30:7d:b1:98:ee:fc:90:50:8c:71:c4:97:48:42:63: fc:ce:2b:66:cd:b2:5e:f5:41:52:2a:a3:d5:2e:88:1d:e8:e0: 06:e2:69:42:fe:50:38:a0:c6:d2:39:6b:ea:76:dc:e5:57:47: de:72:b6:74:5c:9a:15:f4:45:39:c8:a7:74:83:f3:e7:47:d8: 17:38:95:9f:f1:b3:d4:14:a0:f6:39:67:3f:8d:78:9e:04:57: c8:80:6d:eb:84:0b:09:3e:b4:5e:41:40:a0:33:60:3c:a1:1c: 35:ea:9f:ce:dc:56:b2:5d:35:27:80:9c:3f:cd:9d:12:1f:8d: c0:05:6f:18:b2:72:ac:fc:e2:73:82:ec:d6:ee:07:c9:cb:79: 74:f4:bd:d3:0a:63:8d:3e:2f:67:5b:9f:b9:ef:d4:14:88:41: cb:2d:7a:de:03:df:9b:93:f9:1a:21:7e:6a:46:35:ee:c1:14: 62:6c:bd:89:ae:fb:b9:b9:a8:79:df:b2:7a:ad:76:44:82:96: fe:b6:c6:f1:95:48:fd:ab:e6:e5:ff:e4:e2:ce:14:a3:c6:0b: 8c:7b:5b:97:34:e0:62:2b:37:78:8e:6e:04:ae:65:be:16:47: 40:6d:65:d4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEYkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjQ1QzAxMTAvBgNVBAUTKDk1MTI4MDlFRDQzNUEzNjQwQUY5Qjc1RjBBRkIyOTI4 RDQxNjNDMzEwHhcNMjQxMTIyMTcxMjI3WhcNMjQxMTI5MTcxMjI3WjAYMRYwFAYD VQQDEw02NzQwYmI3Yi0zNjUyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9edJjBn4YRLShjCDfh0C8QvdxsDdQ30YWyyQAb8Zjt3axrPABfe8qngZnr9f yvl9VrNZlDz58GevGp3Pz4xch1iQ+SoTuGBt739gwZYO2P5OXql1kTFLnOnm/vKG hvNKQbE6nnLJWeuFODEZ689jlFdHude12bd4O7uaLGL8st/YXb32i9MpZmHwV5Zf bdzSq3ERNT4Ux8jP84Ss0dOlXmZgwf4JMNR4pMz+1T+WTF+VWaSBbIrMid+ureil 8MVpSMvgyj27FpuazGD3XllPCb0rpw+i7GUrxsE8RMbcojQ4zLQKTgDrfeRo9HCy yy6FNeyGQDheabKVg4G8A7DKgwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNwvCEiB /TEXMRR3RO1q5S+Pj9hvMB8GA1UdIwQYMBaAFJUSgJ7UNaNkCvm3Xwr7KSjUFjwx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNDVDMC9CREVFNzI5QUU2 RDkxMUU4OEI4QkY3N0NDNEY5QUUwMi9sUktBbnRRMW8yUUstYmRmQ3ZzcEtOUVdQ REUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xSS0FudFExbzJRSy1iZGZDdnNwS05RV1BERS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NDVDMC9CREVFNzI5QUU2RDkxMUU4OEI4QkY3N0NDNEY5QUUwMi9sUktBbnRRMW8y UUstYmRmQ3ZzcEtOUVdQREUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBeV5g1no4nhnH4oedt6tIpGd8hq3QwfbGY7vyQUIxxxJdIQmP8zitm zbJe9UFSKqPVLogd6OAG4mlC/lA4oMbSOWvqdtzlV0fecrZ0XJoV9EU5yKd0g/Pn R9gXOJWf8bPUFKD2OWc/jXieBFfIgG3rhAsJPrReQUCgM2A8oRw16p/O3FayXTUn gJw/zZ0SH43ABW8YsnKs/OJzguzW7gfJy3l09L3TCmONPi9nW5+579QUiEHLLXre A9+bk/kaIX5qRjXuwRRibL2Jrvu5uah537J6rXZEgpb+tsbxlUj9q+bl/+TizhSj xguMe1uXNOBiKzd4jm4ErmW+FkdAbWXU -----END CERTIFICATE-----Generated at Fri Nov 22 17:56:19 2024 by rpki-client on console-fra.rpki-client.org