$ rpki-client -vvf rpki.apnic.net/member_repository/A91D891D/381A8F2A1CC211EB82B57178C4F9AE02/s8iROAA2kV3l6qhM8TOrOzWz6dM.mft File: s8iROAA2kV3l6qhM8TOrOzWz6dM.mft (raw, json) Hash identifier: SyLGCgxRMHTVTq4IPiulASBTa0glCjZJE2fd1326x5k= Subject key identifier: 52:28:2A:FE:49:66:BD:CE:39:C7:BC:42:15:09:4C:B6:AD:E4:D0:B9 Authority key identifier: B3:C8:91:38:00:36:91:5D:E5:EA:A8:4C:F1:33:AB:3B:35:B3:E9:D3 Certificate issuer: /CN=A91D891D/serialNumber=B3C891380036915DE5EAA84CF133AB3B35B3E9D3 Certificate serial: 070D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s8iROAA2kV3l6qhM8TOrOzWz6dM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D891D/381A8F2A1CC211EB82B57178C4F9AE02/s8iROAA2kV3l6qhM8TOrOzWz6dM.mft Manifest number: 0B95 Signing time: Fri 22 Nov 2024 21:26:33 +0000 Manifest this update: Fri 22 Nov 2024 21:26:32 +0000 Manifest next update: Fri 29 Nov 2024 21:26:32 +0000 Files and hashes: 1: s8iROAA2kV3l6qhM8TOrOzWz6dM.crl (hash: mPYDETRV8y8fe5rzZUFsZTqM6OF6dTkQPF4rSTJ51JM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D891D/381A8F2A1CC211EB82B57178C4F9AE02/s8iROAA2kV3l6qhM8TOrOzWz6dM.crl rsync://rpki.apnic.net/member_repository/A91D891D/381A8F2A1CC211EB82B57178C4F9AE02/s8iROAA2kV3l6qhM8TOrOzWz6dM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s8iROAA2kV3l6qhM8TOrOzWz6dM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1805 (0x70d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D891D/serialNumber=B3C891380036915DE5EAA84CF133AB3B35B3E9D3 Validity Not Before: Nov 22 21:26:32 2024 GMT Not After : Nov 29 21:26:32 2024 GMT Subject: CN=6740f709-3a87 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:de:0a:46:ac:c7:c1:51:51:fe:b8:10:d9:2f: 9c:c9:d1:19:b1:e5:f8:8b:8e:34:fc:3e:34:f0:b7: 5c:c4:1a:4a:eb:15:89:43:d7:1a:75:46:f5:d5:4d: 00:95:5c:a1:2e:a1:15:04:dd:f7:fd:fe:16:59:1a: 6c:b8:4e:f0:52:d8:66:b2:14:b4:82:ef:9b:5f:66: 99:81:45:2f:e5:3b:52:3e:9b:9a:01:dc:3e:89:40: 1f:75:9c:03:6c:6d:81:bb:63:b7:3b:9a:32:60:e8: 1c:21:40:59:cb:a0:0c:a5:83:c0:ad:ba:da:9f:4b: f3:a5:db:97:5f:42:15:34:2d:44:3d:21:12:d9:0c: 74:84:3e:92:db:87:e0:cd:c7:3f:74:d6:f6:31:41: fd:d8:1b:c5:e6:09:f9:66:31:18:d0:ca:15:41:d0: 23:7c:cb:9f:d5:d3:08:a7:35:36:54:e9:7c:eb:e7: ff:04:b7:b4:57:f2:ca:c5:4b:cb:60:71:4f:87:06: 85:4c:c1:4a:39:bd:ca:81:d6:b7:5d:b7:7b:a9:7d: 3d:9a:fb:9f:53:e8:b4:43:78:2f:06:79:e3:58:16: 8c:75:e4:e1:a8:4c:de:e7:ae:3b:1d:3b:53:b1:37: 81:38:28:2a:da:ee:e8:10:58:2b:48:13:0f:9f:52: d3:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:28:2A:FE:49:66:BD:CE:39:C7:BC:42:15:09:4C:B6:AD:E4:D0:B9 X509v3 Authority Key Identifier: keyid:B3:C8:91:38:00:36:91:5D:E5:EA:A8:4C:F1:33:AB:3B:35:B3:E9:D3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D891D/381A8F2A1CC211EB82B57178C4F9AE02/s8iROAA2kV3l6qhM8TOrOzWz6dM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s8iROAA2kV3l6qhM8TOrOzWz6dM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D891D/381A8F2A1CC211EB82B57178C4F9AE02/s8iROAA2kV3l6qhM8TOrOzWz6dM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3a:2a:ae:72:16:53:a7:d8:a4:db:b6:08:08:d3:16:c0:ce:20: 45:b0:32:4c:71:9d:6a:99:7a:63:e6:58:a2:40:c8:83:ec:5e: c7:36:db:a5:9d:f2:9c:e5:9c:f9:5f:4f:f7:a4:d0:40:e8:75: c1:6e:5f:e8:f9:79:18:5e:76:b9:9a:50:99:02:4f:60:63:a2: 95:c5:db:85:5c:13:22:48:e7:5a:cd:09:26:03:38:f0:8b:7b: 2a:9f:00:9a:3e:dc:dd:44:1f:80:51:ad:0d:e7:8c:ed:75:e7: 12:77:e5:04:55:70:0f:9d:6d:04:95:23:00:70:e2:dc:3e:75: c9:3d:37:00:61:ca:65:f6:cb:42:72:ea:de:b3:92:cb:74:bf: 6f:6a:d3:5a:cd:aa:ae:83:1a:d2:43:42:dd:f3:05:48:49:2c: ef:16:85:f0:43:92:ba:4b:2d:c8:e8:4c:0c:57:da:5b:c5:c2: 00:4f:2c:85:91:22:70:bf:35:e6:b8:9b:04:62:0a:b7:24:14: d3:2e:37:1b:5c:2f:7e:91:de:17:6c:23:4a:34:56:8e:8f:4d: 9f:f8:50:19:3a:45:29:50:4b:03:cd:b5:5a:ef:0d:be:07:d3: ec:f7:ef:da:bc:6c:77:ed:69:a0:76:d9:72:ba:cb:31:f8:af: 40:b6:bf:ca -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBw0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDg5MUQxMTAvBgNVBAUTKEIzQzg5MTM4MDAzNjkxNURFNUVBQTg0Q0YxMzNBQjNC MzVCM0U5RDMwHhcNMjQxMTIyMjEyNjMyWhcNMjQxMTI5MjEyNjMyWjAYMRYwFAYD VQQDEw02NzQwZjcwOS0zYTg3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsd4KRqzHwVFR/rgQ2S+cydEZseX4i440/D408LdcxBpK6xWJQ9cadUb11U0A lVyhLqEVBN33/f4WWRpsuE7wUthmshS0gu+bX2aZgUUv5TtSPpuaAdw+iUAfdZwD bG2Bu2O3O5oyYOgcIUBZy6AMpYPArbran0vzpduXX0IVNC1EPSES2Qx0hD6S24fg zcc/dNb2MUH92BvF5gn5ZjEY0MoVQdAjfMuf1dMIpzU2VOl86+f/BLe0V/LKxUvL YHFPhwaFTMFKOb3Kgda3Xbd7qX09mvufU+i0Q3gvBnnjWBaMdeThqEze5647HTtT sTeBOCgq2u7oEFgrSBMPn1LT5wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFIoKv5J Zr3OOce8QhUJTLat5NC5MB8GA1UdIwQYMBaAFLPIkTgANpFd5eqoTPEzqzs1s+nT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEODkxRC8zODFBOEYyQTFD QzIxMUVCODJCNTcxNzhDNEY5QUUwMi9zOGlST0FBMmtWM2w2cWhNOFRPck96V3o2 ZE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3M4aVJPQUEya1YzbDZxaE04VE9yT3pXejZkTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE ODkxRC8zODFBOEYyQTFDQzIxMUVCODJCNTcxNzhDNEY5QUUwMi9zOGlST0FBMmtW M2w2cWhNOFRPck96V3o2ZE0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA6Kq5yFlOn2KTbtggI0xbAziBFsDJMcZ1qmXpj5liiQMiD7F7HNtul nfKc5Zz5X0/3pNBA6HXBbl/o+XkYXna5mlCZAk9gY6KVxduFXBMiSOdazQkmAzjw i3sqnwCaPtzdRB+AUa0N54ztdecSd+UEVXAPnW0ElSMAcOLcPnXJPTcAYcpl9stC cures5LLdL9vatNazaqugxrSQ0Ld8wVISSzvFoXwQ5K6Sy3I6EwMV9pbxcIATyyF kSJwvzXmuJsEYgq3JBTTLjcbXC9+kd4XbCNKNFaOj02f+FAZOkUpUEsDzbVa7w2+ B9Ps9+/avGx37Wmgdtlyussx+K9Atr/K -----END CERTIFICATE-----Generated at Fri Nov 22 22:24:13 2024 by rpki-client on console-fra.rpki-client.org