$ rpki-client -vvf rpki.apnic.net/member_repository/A91B4F3C/8A55A6A41DA611E2B91CD29D08B02CD2/MHrUXgG4R5-iKKEj3nr6pdGXwX0.mft File: MHrUXgG4R5-iKKEj3nr6pdGXwX0.mft (raw, json) Hash identifier: fa/uQA/sQePAQTz98iJWY83ou2KUGt570HuUY7NlXJU= Subject key identifier: 09:DD:11:00:22:0A:9C:EB:F7:AA:FF:A5:1D:5F:FE:45:A5:BD:25:B8 Authority key identifier: 30:7A:D4:5E:01:B8:47:9F:A2:28:A1:23:DE:7A:FA:A5:D1:97:C1:7D Certificate issuer: /CN=A91B4F3C/serialNumber=307AD45E01B8479FA228A123DE7AFAA5D197C17D Certificate serial: 3427 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MHrUXgG4R5-iKKEj3nr6pdGXwX0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B4F3C/8A55A6A41DA611E2B91CD29D08B02CD2/MHrUXgG4R5-iKKEj3nr6pdGXwX0.mft Manifest number: 3427 Signing time: Sun 24 Nov 2024 15:10:28 +0000 Manifest this update: Sun 24 Nov 2024 15:10:27 +0000 Manifest next update: Sun 01 Dec 2024 15:10:27 +0000 Files and hashes: 1: MHrUXgG4R5-iKKEj3nr6pdGXwX0.crl (hash: Zj2udXA9cEpTJz/EEd1LOIxYzsjtdBUjU0ZRNFeNqmc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B4F3C/8A55A6A41DA611E2B91CD29D08B02CD2/MHrUXgG4R5-iKKEj3nr6pdGXwX0.crl rsync://rpki.apnic.net/member_repository/A91B4F3C/8A55A6A41DA611E2B91CD29D08B02CD2/MHrUXgG4R5-iKKEj3nr6pdGXwX0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MHrUXgG4R5-iKKEj3nr6pdGXwX0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Dec 2024 15:10:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13351 (0x3427) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B4F3C/serialNumber=307AD45E01B8479FA228A123DE7AFAA5D197C17D Validity Not Before: Nov 24 15:10:27 2024 GMT Not After : Dec 1 15:10:27 2024 GMT Subject: CN=674341e3-0408 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:3b:a3:15:b0:8d:93:c2:52:66:df:19:86:ae: b8:01:66:8e:d2:cc:94:55:17:e5:e5:07:1d:0b:50: 26:45:a0:01:89:5d:d5:e2:f8:58:ec:c5:3f:9c:fe: 0a:bc:01:99:92:94:38:ae:23:79:e7:9e:ee:a1:26: c2:8c:bf:4b:b8:ac:dc:28:dd:11:ea:64:4b:aa:0e: 9e:74:15:04:d0:5e:bd:22:22:36:76:b3:5d:91:41: 11:c4:7b:94:c1:16:f9:36:e0:b0:c2:e3:9b:37:36: ee:98:c3:e0:df:9c:64:ed:7d:b8:2f:ab:a4:c6:4a: 35:a2:c6:ba:59:bd:d2:db:25:37:f0:ff:a8:45:79: 63:49:e2:03:53:fb:6a:df:89:f2:d3:ef:64:55:b3: 7c:55:51:46:81:4e:f1:2d:b9:01:38:80:8d:86:5c: b7:0e:58:0b:26:63:9a:ef:2c:a5:9c:02:b2:c2:30: 4c:d3:c7:79:cd:37:59:bf:57:f5:a6:ea:db:df:07: 1c:42:68:ff:4a:16:a4:62:df:07:a0:bc:32:5d:06: c5:cd:95:e1:cb:19:95:b1:c6:b5:73:e1:34:f0:84: 26:2d:19:44:11:ba:28:55:e2:d8:12:e0:c1:90:91: 7b:f2:2a:eb:d4:4b:c8:22:0a:5d:fe:5c:9a:c0:d8: 06:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:DD:11:00:22:0A:9C:EB:F7:AA:FF:A5:1D:5F:FE:45:A5:BD:25:B8 X509v3 Authority Key Identifier: keyid:30:7A:D4:5E:01:B8:47:9F:A2:28:A1:23:DE:7A:FA:A5:D1:97:C1:7D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B4F3C/8A55A6A41DA611E2B91CD29D08B02CD2/MHrUXgG4R5-iKKEj3nr6pdGXwX0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MHrUXgG4R5-iKKEj3nr6pdGXwX0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B4F3C/8A55A6A41DA611E2B91CD29D08B02CD2/MHrUXgG4R5-iKKEj3nr6pdGXwX0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4e:d7:c9:f7:a9:cc:6c:b5:97:e7:f6:91:83:93:bb:0b:9b:b8: bb:b2:34:cc:d7:a3:a2:c2:aa:16:c9:e7:35:cc:96:7d:6c:79: 84:f4:43:6d:e4:f5:ce:35:94:6e:8f:20:3f:18:32:58:a4:ab: 01:50:07:cd:0d:b5:84:7e:4c:ec:7a:60:9c:ea:1c:3e:a8:cf: 5f:15:6b:eb:1e:68:9c:51:9e:0e:ad:e8:d2:5c:50:66:e3:ac: c4:3b:83:ae:36:ef:78:12:58:e3:1d:1f:d1:b4:95:39:5e:bd: 49:0f:d7:62:52:94:f3:ff:ee:9d:72:61:a5:16:b1:7e:5f:98: 27:60:8d:6d:f3:ee:d4:26:3a:df:9f:b7:5f:eb:ad:84:14:f2: 6d:7d:0b:3f:50:b8:65:ff:5c:96:5e:18:f1:71:14:1d:63:8e: 59:ee:5b:7e:4f:0f:14:6e:f8:80:7e:24:90:85:e2:82:0a:14: e1:83:67:80:7c:f3:29:25:9e:6f:5a:5b:b3:5e:14:c6:f6:15: 24:6c:c9:ec:e9:c7:ec:2e:4d:64:75:0c:d2:e8:78:bd:b4:5d: 64:1c:1a:11:5e:2a:97:09:63:00:4a:86:7a:a3:ca:28:d0:a9: 09:25:43:3d:c9:e9:be:19:9c:b2:14:41:aa:3a:f3:28:36:c8: 7c:fe:9a:5a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNCcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjRGM0MxMTAvBgNVBAUTKDMwN0FENDVFMDFCODQ3OUZBMjI4QTEyM0RFN0FGQUE1 RDE5N0MxN0QwHhcNMjQxMTI0MTUxMDI3WhcNMjQxMjAxMTUxMDI3WjAYMRYwFAYD VQQDEw02NzQzNDFlMy0wNDA4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyjujFbCNk8JSZt8Zhq64AWaO0syUVRfl5QcdC1AmRaABiV3V4vhY7MU/nP4K vAGZkpQ4riN5557uoSbCjL9LuKzcKN0R6mRLqg6edBUE0F69IiI2drNdkUERxHuU wRb5NuCwwuObNzbumMPg35xk7X24L6ukxko1osa6Wb3S2yU38P+oRXljSeIDU/tq 34ny0+9kVbN8VVFGgU7xLbkBOICNhly3DlgLJmOa7yylnAKywjBM08d5zTdZv1f1 purb3wccQmj/ShakYt8HoLwyXQbFzZXhyxmVsca1c+E08IQmLRlEEbooVeLYEuDB kJF78irr1EvIIgpd/lyawNgGwwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAndEQAi Cpzr96r/pR1f/kWlvSW4MB8GA1UdIwQYMBaAFDB61F4BuEefoiihI956+qXRl8F9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNEYzQy84QTU1QTZBNDFE QTYxMUUyQjkxQ0QyOUQwOEIwMkNEMi9NSHJVWGdHNFI1LWlLS0VqM25yNnBkR1h3 WDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL01IclVYZ0c0UjUtaUtLRWozbnI2cGRHWHdYMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NEYzQy84QTU1QTZBNDFEQTYxMUUyQjkxQ0QyOUQwOEIwMkNEMi9NSHJVWGdHNFI1 LWlLS0VqM25yNnBkR1h3WDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBO18n3qcxstZfn9pGDk7sLm7i7sjTM16OiwqoWyec1zJZ9bHmE9ENt 5PXONZRujyA/GDJYpKsBUAfNDbWEfkzsemCc6hw+qM9fFWvrHmicUZ4OrejSXFBm 46zEO4OuNu94EljjHR/RtJU5Xr1JD9diUpTz/+6dcmGlFrF+X5gnYI1t8+7UJjrf n7df662EFPJtfQs/ULhl/1yWXhjxcRQdY45Z7lt+Tw8UbviAfiSQheKCChThg2eA fPMpJZ5vWluzXhTG9hUkbMns6cfsLk1kdQzS6Hi9tF1kHBoRXiqXCWMASoZ6o8oo 0KkJJUM9yem+GZyyFEGqOvMoNsh8/ppa -----END CERTIFICATE-----Generated at Sun Nov 24 17:20:50 2024 by rpki-client on console-fra.rpki-client.org