$ rpki-client -vvf rpki.apnic.net/member_repository/A91D5DB6/13F96B82186211E8B1E31729C4F9AE02/-BaXnSqJmynqWV8rVO6jmQokNvk.mft File: -BaXnSqJmynqWV8rVO6jmQokNvk.mft (raw, json) Hash identifier: UH+J7Qbm92N5M6OaM/uD/M7FgD76F3q9xdu+ckg+sS0= Subject key identifier: 41:C7:A8:80:E2:D7:5B:16:7D:90:9B:EC:66:43:AA:38:97:E9:06:7A Authority key identifier: F8:16:97:9D:2A:89:9B:29:EA:59:5F:2B:54:EE:A3:99:0A:24:36:F9 Certificate issuer: /CN=A91D5DB6/serialNumber=F816979D2A899B29EA595F2B54EEA3990A2436F9 Certificate serial: 1593 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-BaXnSqJmynqWV8rVO6jmQokNvk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D5DB6/13F96B82186211E8B1E31729C4F9AE02/-BaXnSqJmynqWV8rVO6jmQokNvk.mft Manifest number: 1593 Signing time: Fri 22 Nov 2024 16:47:43 +0000 Manifest this update: Fri 22 Nov 2024 16:47:43 +0000 Manifest next update: Fri 29 Nov 2024 16:47:42 +0000 Files and hashes: 1: -BaXnSqJmynqWV8rVO6jmQokNvk.crl (hash: pOuj8EMw9veQR9nvoM5o0+Sc/P73heeax3GpJsqqs1c=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D5DB6/13F96B82186211E8B1E31729C4F9AE02/-BaXnSqJmynqWV8rVO6jmQokNvk.crl rsync://rpki.apnic.net/member_repository/A91D5DB6/13F96B82186211E8B1E31729C4F9AE02/-BaXnSqJmynqWV8rVO6jmQokNvk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-BaXnSqJmynqWV8rVO6jmQokNvk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 16:30:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5523 (0x1593) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D5DB6/serialNumber=F816979D2A899B29EA595F2B54EEA3990A2436F9 Validity Not Before: Nov 22 16:47:43 2024 GMT Not After : Nov 29 16:47:42 2024 GMT Subject: CN=6740b5af-5cae Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:8b:ed:d2:b0:a3:80:13:1f:ec:f3:af:57:46: 35:48:b2:f4:0f:74:3f:06:9e:d6:8e:4e:bc:31:f5: 64:6c:68:a4:9a:0d:39:ec:d0:3d:74:c2:a3:fa:4d: ba:ae:3e:a7:0f:e6:c5:84:54:02:59:21:25:01:7b: d8:2d:51:e0:a4:05:ba:57:73:e9:03:a3:fe:32:c7: 44:16:f5:d1:6c:0d:28:04:4e:89:b1:6d:3c:01:7e: 4c:2d:05:b5:50:4c:1d:84:6d:87:9c:ac:2f:98:4e: 8f:f2:3d:e0:45:72:fa:7b:75:24:0a:63:15:6a:03: 79:23:d3:b5:84:d2:7b:47:af:53:3b:55:ad:27:40: f3:9b:06:96:d5:58:48:40:a6:8f:6b:af:61:07:7e: 70:65:3c:93:ef:0f:22:72:09:b2:ad:d7:ba:fb:f8: 41:a6:2c:ff:37:14:0e:aa:c2:61:69:74:78:1f:18: 0b:65:2f:e3:f9:94:45:f9:e8:c5:04:24:ef:ad:4b: 50:30:84:d2:36:88:50:d9:f3:31:6a:ce:cc:4e:f4: d4:3f:7f:5d:ed:f2:cc:54:8f:6b:55:fa:f1:4c:e6: 02:0b:0f:9d:25:fe:51:0a:a5:06:76:ff:97:34:71: ce:16:2c:19:e4:6b:28:00:60:68:74:16:c6:11:21: 4d:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:C7:A8:80:E2:D7:5B:16:7D:90:9B:EC:66:43:AA:38:97:E9:06:7A X509v3 Authority Key Identifier: keyid:F8:16:97:9D:2A:89:9B:29:EA:59:5F:2B:54:EE:A3:99:0A:24:36:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D5DB6/13F96B82186211E8B1E31729C4F9AE02/-BaXnSqJmynqWV8rVO6jmQokNvk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-BaXnSqJmynqWV8rVO6jmQokNvk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D5DB6/13F96B82186211E8B1E31729C4F9AE02/-BaXnSqJmynqWV8rVO6jmQokNvk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 29:88:a3:5c:3f:23:ba:5e:02:16:dc:67:7f:38:3c:48:43:d7: 73:e9:ab:88:1f:68:f0:6d:07:69:35:b2:54:2e:4b:d0:94:c6: 38:76:e4:ab:6a:e5:55:a1:93:87:a9:4c:e9:4d:73:b9:ea:1b: 77:25:1a:c5:87:ed:bf:38:df:6a:44:c8:a9:b2:80:c6:e7:84: 74:a5:db:89:ba:bf:ca:5d:b6:a0:e7:d9:44:aa:b9:3e:46:b6: ae:36:c7:6f:40:eb:27:e9:14:60:26:d8:53:e9:61:2c:ce:da: 4a:8d:54:83:46:2d:d0:40:74:3f:06:79:43:53:26:cc:ac:cc: f9:6f:7f:ff:37:43:dc:b3:bf:6f:75:72:39:4c:43:ef:3a:96: 1b:a4:44:84:91:a8:30:bc:29:38:0f:bd:6a:5b:ca:15:fb:ec: cb:73:6d:84:16:4e:c1:c9:54:a6:13:f2:e7:7a:d9:a0:77:56: 1f:50:3d:70:11:12:ea:c6:e7:f7:ca:05:54:de:04:c2:02:e2: 1e:fe:3b:9a:bd:2a:9a:4a:f1:92:2e:54:6b:ce:3d:a6:e9:14: 64:85:c3:9c:1c:f8:71:c0:01:80:ca:fe:08:9f:b8:c6:13:2a: a6:75:8f:0a:4a:e7:e8:6d:a0:8e:0a:5d:55:4d:e9:da:0f:3d: b1:11:79:5a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFZMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDVEQjYxMTAvBgNVBAUTKEY4MTY5NzlEMkE4OTlCMjlFQTU5NUYyQjU0RUVBMzk5 MEEyNDM2RjkwHhcNMjQxMTIyMTY0NzQzWhcNMjQxMTI5MTY0NzQyWjAYMRYwFAYD VQQDEw02NzQwYjVhZi01Y2FlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1Yvt0rCjgBMf7POvV0Y1SLL0D3Q/Bp7Wjk68MfVkbGikmg057NA9dMKj+k26 rj6nD+bFhFQCWSElAXvYLVHgpAW6V3PpA6P+MsdEFvXRbA0oBE6JsW08AX5MLQW1 UEwdhG2HnKwvmE6P8j3gRXL6e3UkCmMVagN5I9O1hNJ7R69TO1WtJ0DzmwaW1VhI QKaPa69hB35wZTyT7w8icgmyrde6+/hBpiz/NxQOqsJhaXR4HxgLZS/j+ZRF+ejF BCTvrUtQMITSNohQ2fMxas7MTvTUP39d7fLMVI9rVfrxTOYCCw+dJf5RCqUGdv+X NHHOFiwZ5GsoAGBodBbGESFNUQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEHHqIDi 11sWfZCb7GZDqjiX6QZ6MB8GA1UdIwQYMBaAFPgWl50qiZsp6llfK1Tuo5kKJDb5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENURCNi8xM0Y5NkI4MjE4 NjIxMUU4QjFFMzE3MjlDNEY5QUUwMi8tQmFYblNxSm15bnFXVjhyVk82am1Rb2tO dmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1CYVhuU3FKbXlucVdWOHJWTzZqbVFva052ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NURCNi8xM0Y5NkI4MjE4NjIxMUU4QjFFMzE3MjlDNEY5QUUwMi8tQmFYblNxSm15 bnFXVjhyVk82am1Rb2tOdmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQApiKNcPyO6XgIW3Gd/ODxIQ9dz6auIH2jwbQdpNbJULkvQlMY4duSr auVVoZOHqUzpTXO56ht3JRrFh+2/ON9qRMipsoDG54R0pduJur/KXbag59lEqrk+ RrauNsdvQOsn6RRgJthT6WEsztpKjVSDRi3QQHQ/BnlDUybMrMz5b3//N0Pcs79v dXI5TEPvOpYbpESEkagwvCk4D71qW8oV++zLc22EFk7ByVSmE/Lnetmgd1YfUD1w ERLqxuf3ygVU3gTCAuIe/juavSqaSvGSLlRrzj2m6RRkhcOcHPhxwAGAyv4In7jG EyqmdY8KSufobaCOCl1VTenaDz2xEXla -----END CERTIFICATE-----Generated at Fri Nov 22 17:56:21 2024 by rpki-client on console-fra.rpki-client.org