$ rpki-client -vvf rpki.apnic.net/member_repository/A91F5AAA/8B2824529FF711E2AD9CEDEE2F5A7754/8YaDAEWuVIbpCXNDfanSB6VmhpE.mft File: 8YaDAEWuVIbpCXNDfanSB6VmhpE.mft (raw, json) Hash identifier: YhfErongEYKrvc8yrv38Qlfndr4OKopXnq6Sq+8EuGY= Subject key identifier: 9F:89:D8:DA:1B:FF:C7:39:B7:CB:50:3F:55:05:65:F6:17:A0:F2:79 Authority key identifier: F1:86:83:00:45:AE:54:86:E9:09:73:43:7D:A9:D2:07:A5:66:86:91 Certificate issuer: /CN=A91F5AAA/serialNumber=F186830045AE5486E90973437DA9D207A5668691 Certificate serial: 318A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8YaDAEWuVIbpCXNDfanSB6VmhpE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F5AAA/8B2824529FF711E2AD9CEDEE2F5A7754/8YaDAEWuVIbpCXNDfanSB6VmhpE.mft Manifest number: 318A Signing time: Fri 22 Nov 2024 15:27:36 +0000 Manifest this update: Fri 22 Nov 2024 15:27:36 +0000 Manifest next update: Fri 29 Nov 2024 15:27:36 +0000 Files and hashes: 1: 8YaDAEWuVIbpCXNDfanSB6VmhpE.crl (hash: z8w9JxTyCt5g7JaaAJbQl0C5i/8kf8zKMLWcz82K2V4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F5AAA/8B2824529FF711E2AD9CEDEE2F5A7754/8YaDAEWuVIbpCXNDfanSB6VmhpE.crl rsync://rpki.apnic.net/member_repository/A91F5AAA/8B2824529FF711E2AD9CEDEE2F5A7754/8YaDAEWuVIbpCXNDfanSB6VmhpE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8YaDAEWuVIbpCXNDfanSB6VmhpE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 15:27:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12682 (0x318a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F5AAA/serialNumber=F186830045AE5486E90973437DA9D207A5668691 Validity Not Before: Nov 22 15:27:36 2024 GMT Not After : Nov 29 15:27:36 2024 GMT Subject: CN=6740a2e8-409a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:e6:4e:f6:a6:a2:42:25:a1:fe:ff:67:18:d7: 14:5f:bb:94:87:4b:f3:a7:01:2c:35:3c:e1:32:1a: 68:5a:e0:7c:82:19:e5:1e:09:35:2b:4d:09:00:0d: 94:12:22:c3:15:02:19:ff:ae:5b:73:67:a1:ae:a3: 50:b7:34:51:c7:1e:cf:f2:a2:8c:69:41:ef:d9:9d: 69:03:1d:99:bd:ad:b2:0f:5f:80:75:47:11:9b:1d: 74:94:a4:b9:54:3d:ae:0e:dd:1c:e9:9e:14:dd:a7: f0:44:09:48:dc:1a:16:ef:ac:f2:54:6b:63:71:2c: 2f:19:34:38:c0:98:73:0e:95:8b:fa:62:b5:1e:7e: 31:38:bc:aa:4c:5a:c9:cb:16:08:2a:f4:51:44:86: 76:a5:d1:97:e9:53:0e:ab:e1:0c:92:20:51:8c:b3: 51:c4:ce:c1:03:4a:6b:e2:18:82:6b:c9:a1:b7:3c: 64:2b:b9:1b:d0:d0:43:52:b4:a4:d8:f5:f6:0f:90: a1:40:51:a8:86:b8:88:d4:fd:9b:20:91:e0:26:f9: fb:75:bb:05:df:24:fe:d7:b6:fa:e7:80:2a:bc:28: 39:a8:51:64:b9:93:32:62:59:7b:e9:9f:ce:88:49: 97:2a:49:dc:49:4e:0d:26:28:ab:32:80:d2:d5:48: b6:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9F:89:D8:DA:1B:FF:C7:39:B7:CB:50:3F:55:05:65:F6:17:A0:F2:79 X509v3 Authority Key Identifier: keyid:F1:86:83:00:45:AE:54:86:E9:09:73:43:7D:A9:D2:07:A5:66:86:91 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F5AAA/8B2824529FF711E2AD9CEDEE2F5A7754/8YaDAEWuVIbpCXNDfanSB6VmhpE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8YaDAEWuVIbpCXNDfanSB6VmhpE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F5AAA/8B2824529FF711E2AD9CEDEE2F5A7754/8YaDAEWuVIbpCXNDfanSB6VmhpE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 27:90:91:5f:f4:2e:42:88:07:09:d0:c4:b4:99:6b:e7:55:70: af:60:b6:00:e9:25:da:fe:40:0f:1d:78:49:22:90:44:c1:81: 1f:99:90:6c:af:6c:e3:6c:4b:6e:a9:52:1a:a1:85:1e:71:20: e5:16:fc:f6:20:d7:19:b7:08:fc:88:6e:1f:ba:02:48:ed:50: e4:ec:b5:59:1a:c9:96:03:a6:69:83:a8:e0:bc:4d:0c:09:c3: a8:c9:26:92:de:19:68:4a:c2:4f:49:ab:77:cd:c9:ef:72:30: 24:e1:26:75:bc:16:fd:ca:a4:51:e3:6d:f6:f9:c2:a1:db:9c: ee:27:9d:6c:8b:81:77:94:58:cd:2d:92:08:ac:43:25:6b:57: 8e:8a:c9:62:8e:eb:df:ff:a3:ec:af:be:c5:89:ba:a7:5f:8d: 6b:95:d0:59:aa:eb:47:7b:74:44:7f:36:80:26:b7:ff:d3:fb: 96:c4:5e:6e:bc:31:28:34:3c:d3:3a:5b:d9:09:26:7c:80:a1: bf:04:0c:87:c2:46:a4:e5:2a:fd:2e:12:c9:b1:4b:38:9d:fa: 8e:b0:e1:65:c5:04:21:b8:0c:4e:ff:97:f6:a1:76:00:0b:f4: 4a:3e:6e:50:8c:1d:6c:5a:d8:20:56:bc:02:d7:5e:90:5c:42: cd:dc:06:68 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICMYowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjVBQUExMTAvBgNVBAUTKEYxODY4MzAwNDVBRTU0ODZFOTA5NzM0MzdEQTlEMjA3 QTU2Njg2OTEwHhcNMjQxMTIyMTUyNzM2WhcNMjQxMTI5MTUyNzM2WjAYMRYwFAYD VQQDEw02NzQwYTJlOC00MDlhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3uZO9qaiQiWh/v9nGNcUX7uUh0vzpwEsNTzhMhpoWuB8ghnlHgk1K00JAA2U EiLDFQIZ/65bc2ehrqNQtzRRxx7P8qKMaUHv2Z1pAx2Zva2yD1+AdUcRmx10lKS5 VD2uDt0c6Z4U3afwRAlI3BoW76zyVGtjcSwvGTQ4wJhzDpWL+mK1Hn4xOLyqTFrJ yxYIKvRRRIZ2pdGX6VMOq+EMkiBRjLNRxM7BA0pr4hiCa8mhtzxkK7kb0NBDUrSk 2PX2D5ChQFGohriI1P2bIJHgJvn7dbsF3yT+17b654AqvCg5qFFkuZMyYll76Z/O iEmXKkncSU4NJiirMoDS1Ui20wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJ+J2Nob /8c5t8tQP1UFZfYXoPJ5MB8GA1UdIwQYMBaAFPGGgwBFrlSG6QlzQ32p0gelZoaR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNUFBQS84QjI4MjQ1MjlG RjcxMUUyQUQ5Q0VERUUyRjVBNzc1NC84WWFEQUVXdVZJYnBDWE5EZmFuU0I2Vm1o cEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzhZYURBRVd1VklicENYTkRmYW5TQjZWbWhwRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NUFBQS84QjI4MjQ1MjlGRjcxMUUyQUQ5Q0VERUUyRjVBNzc1NC84WWFEQUVXdVZJ YnBDWE5EZmFuU0I2Vm1ocEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAnkJFf9C5CiAcJ0MS0mWvnVXCvYLYA6SXa/kAPHXhJIpBEwYEfmZBs r2zjbEtuqVIaoYUecSDlFvz2INcZtwj8iG4fugJI7VDk7LVZGsmWA6Zpg6jgvE0M CcOoySaS3hloSsJPSat3zcnvcjAk4SZ1vBb9yqRR4232+cKh25zuJ51si4F3lFjN LZIIrEMla1eOislijuvf/6Psr77FibqnX41rldBZqutHe3REfzaAJrf/0/uWxF5u vDEoNDzTOlvZCSZ8gKG/BAyHwkak5Sr9LhLJsUs4nfqOsOFlxQQhuAxO/5f2oXYA C/RKPm5QjB1sWtggVrwC116QXELN3AZo -----END CERTIFICATE-----Generated at Fri Nov 22 17:56:22 2024 by rpki-client on console-fra.rpki-client.org