$ rpki-client -vvf rpki.apnic.net/member_repository/A91FC1DE/732D69B6277911ED9D48F423C4F9AE02/j5ZyrK2aUfA9SLxDtjOpVzSY494.mft File: j5ZyrK2aUfA9SLxDtjOpVzSY494.mft (raw, json) Hash identifier: LdbTsU3IZ9WavvGBUe43iiA00iAiz+ExxHDy4steHd0= Subject key identifier: 15:37:52:4B:61:51:3D:DF:26:E8:58:B3:00:D7:31:9D:6D:F3:73:DB Authority key identifier: 8F:96:72:AC:AD:9A:51:F0:3D:48:BC:43:B6:33:A9:57:34:98:E3:DE Certificate issuer: /CN=A91FC1DE/serialNumber=8F9672ACAD9A51F03D48BC43B633A9573498E3DE Certificate serial: 01D5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/j5ZyrK2aUfA9SLxDtjOpVzSY494.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FC1DE/732D69B6277911ED9D48F423C4F9AE02/j5ZyrK2aUfA9SLxDtjOpVzSY494.mft Manifest number: 01D4 Signing time: Sat 23 Nov 2024 01:43:13 +0000 Manifest this update: Sat 23 Nov 2024 01:43:12 +0000 Manifest next update: Sat 30 Nov 2024 01:43:12 +0000 Files and hashes: 1: j5ZyrK2aUfA9SLxDtjOpVzSY494.crl (hash: y9iDFYFYHCAbQ/CcvpK39wDuXxkrixnfIJlWzPsRQLA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FC1DE/732D69B6277911ED9D48F423C4F9AE02/j5ZyrK2aUfA9SLxDtjOpVzSY494.crl rsync://rpki.apnic.net/member_repository/A91FC1DE/732D69B6277911ED9D48F423C4F9AE02/j5ZyrK2aUfA9SLxDtjOpVzSY494.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/j5ZyrK2aUfA9SLxDtjOpVzSY494.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 01:43:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 469 (0x1d5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FC1DE/serialNumber=8F9672ACAD9A51F03D48BC43B633A9573498E3DE Validity Not Before: Nov 23 01:43:12 2024 GMT Not After : Nov 30 01:43:12 2024 GMT Subject: CN=67413330-452a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:61:39:d2:5d:5f:71:25:c1:bf:4b:37:cf:b4: 60:10:45:19:27:72:01:07:ae:3e:90:d4:0a:a2:e5: f3:c0:28:6d:e3:cb:5c:66:d2:4b:39:5a:0c:6c:24: 5a:2a:c0:82:7c:b7:a5:d4:2b:49:4e:26:fc:b3:87: 69:45:f6:27:45:0d:96:de:83:55:bc:96:f5:5a:20: 0d:f5:e6:e1:cf:10:9b:ed:93:7f:32:4e:be:55:b7: 90:c8:16:7b:0f:8a:ee:0a:3c:70:64:5a:97:6b:f6: 9a:5f:d9:24:b9:9e:f5:8d:2f:02:50:03:40:22:c2: 6e:0c:e8:09:82:f2:db:62:91:c8:23:83:7f:95:3d: 44:d9:6e:e0:93:97:f1:61:8a:04:3f:f9:ef:c6:c8: 1b:5f:fe:8d:13:d3:4e:79:f8:e5:7a:5d:ac:3a:b1: 40:bb:fd:a2:be:2e:12:2b:05:bc:00:7b:34:69:36: dc:48:8f:8c:51:1c:ee:c2:b8:29:63:fb:2c:69:9c: 87:b6:93:02:1e:9a:d7:5b:9c:33:92:d3:f6:2c:26: 2e:a7:35:89:fd:75:fa:66:20:85:97:f7:f5:c4:6c: 1b:65:58:60:16:d7:2b:68:5f:df:28:91:d1:76:8e: ef:f5:65:2a:bb:ef:bd:97:1f:67:c3:28:78:55:0e: 7a:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:37:52:4B:61:51:3D:DF:26:E8:58:B3:00:D7:31:9D:6D:F3:73:DB X509v3 Authority Key Identifier: keyid:8F:96:72:AC:AD:9A:51:F0:3D:48:BC:43:B6:33:A9:57:34:98:E3:DE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FC1DE/732D69B6277911ED9D48F423C4F9AE02/j5ZyrK2aUfA9SLxDtjOpVzSY494.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/j5ZyrK2aUfA9SLxDtjOpVzSY494.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FC1DE/732D69B6277911ED9D48F423C4F9AE02/j5ZyrK2aUfA9SLxDtjOpVzSY494.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 49:0c:99:6a:c2:a6:1b:c5:a4:0b:e7:65:ed:0f:62:96:2e:fd: 8d:47:4c:71:4b:33:8f:2a:2d:ad:da:b1:71:9b:a1:03:00:16: e6:46:90:5d:d5:06:a5:9e:8a:a8:b3:1b:c5:0d:78:b8:0d:75: 5c:a6:1e:7f:5e:89:76:c3:7d:ce:25:fb:13:d4:19:2c:c9:a7: f2:65:0b:00:c8:f4:ea:35:8a:2a:62:05:13:52:e2:47:64:ef: 17:ef:bb:b5:ff:24:a2:02:ee:20:95:f0:47:34:f3:7a:94:14: 28:5c:ca:48:a1:91:c3:93:64:57:af:40:65:16:b2:f0:17:b0: b7:2c:fc:68:c0:d5:22:54:ec:9d:b5:2b:c4:77:1f:0e:9a:5f: e0:cf:f4:25:99:20:5d:6e:43:f7:c5:6a:2c:f8:e9:ed:cd:19: 27:fb:49:5a:54:fb:f9:f8:33:87:c1:8e:a0:79:c5:19:10:e4: 54:f8:c7:e3:ac:80:4f:ea:7c:60:8f:b2:5e:8d:38:06:df:dc: 71:da:f7:8c:38:bf:24:03:d9:07:f9:04:8b:0c:88:a8:76:52: a8:44:7b:35:d7:85:c4:92:da:6f:b9:9b:49:79:fe:b2:64:e2: 2c:b3:8c:56:22:74:90:80:51:0a:5f:8e:b8:8f:d9:3a:11:a7: c6:37:4a:08 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAdUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkMxREUxMTAvBgNVBAUTKDhGOTY3MkFDQUQ5QTUxRjAzRDQ4QkM0M0I2MzNBOTU3 MzQ5OEUzREUwHhcNMjQxMTIzMDE0MzEyWhcNMjQxMTMwMDE0MzEyWjAYMRYwFAYD VQQDEw02NzQxMzMzMC00NTJhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxGE50l1fcSXBv0s3z7RgEEUZJ3IBB64+kNQKouXzwCht48tcZtJLOVoMbCRa KsCCfLel1CtJTib8s4dpRfYnRQ2W3oNVvJb1WiAN9ebhzxCb7ZN/Mk6+VbeQyBZ7 D4ruCjxwZFqXa/aaX9kkuZ71jS8CUANAIsJuDOgJgvLbYpHII4N/lT1E2W7gk5fx YYoEP/nvxsgbX/6NE9NOefjlel2sOrFAu/2ivi4SKwW8AHs0aTbcSI+MURzuwrgp Y/ssaZyHtpMCHprXW5wzktP2LCYupzWJ/XX6ZiCFl/f1xGwbZVhgFtcraF/fKJHR do7v9WUqu++9lx9nwyh4VQ56RQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBU3Ukth UT3fJuhYswDXMZ1t83PbMB8GA1UdIwQYMBaAFI+WcqytmlHwPUi8Q7YzqVc0mOPe MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQzFERS83MzJENjlCNjI3 NzkxMUVEOUQ0OEY0MjNDNEY5QUUwMi9qNVp5cksyYVVmQTlTTHhEdGpPcFZ6U1k0 OTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2o1WnlySzJhVWZBOVNMeER0ak9wVnpTWTQ5NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QzFERS83MzJENjlCNjI3NzkxMUVEOUQ0OEY0MjNDNEY5QUUwMi9qNVp5cksyYVVm QTlTTHhEdGpPcFZ6U1k0OTQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBJDJlqwqYbxaQL52XtD2KWLv2NR0xxSzOPKi2t2rFxm6EDABbmRpBd 1QalnoqosxvFDXi4DXVcph5/Xol2w33OJfsT1BksyafyZQsAyPTqNYoqYgUTUuJH ZO8X77u1/ySiAu4glfBHNPN6lBQoXMpIoZHDk2RXr0BlFrLwF7C3LPxowNUiVOyd tSvEdx8Oml/gz/QlmSBdbkP3xWos+OntzRkn+0laVPv5+DOHwY6gecUZEORU+Mfj rIBP6nxgj7JejTgG39xx2veMOL8kA9kH+QSLDIiodlKoRHs114XEktpvuZtJef6y ZOIss4xWInSQgFEKX464j9k6EafGN0oI -----END CERTIFICATE-----Generated at Sat Nov 23 03:58:59 2024 by rpki-client on console-ams.rpki-client.org