$ rpki-client -vvf rpki.apnic.net/member_repository/A91FC705/6E277BB2F5BD11EBB9F8DB11C4F9AE02/dfdy5AbF9G0-i_J6wfJfz2TpeZc.mft File: dfdy5AbF9G0-i_J6wfJfz2TpeZc.mft (raw, json) Hash identifier: aPivobIAwtlDHHAflWQcclmw4Hbyvl7QLAbUHbbV3xE= Subject key identifier: 91:C1:FB:5D:DE:B5:A1:E5:5B:88:74:4C:33:72:CE:9B:A3:FD:48:3E Authority key identifier: 75:F7:72:E4:06:C5:F4:6D:3E:8B:F2:7A:C1:F2:5F:CF:64:E9:79:97 Certificate issuer: /CN=A91FC705/serialNumber=75F772E406C5F46D3E8BF27AC1F25FCF64E97997 Certificate serial: 04D5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dfdy5AbF9G0-i_J6wfJfz2TpeZc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FC705/6E277BB2F5BD11EBB9F8DB11C4F9AE02/dfdy5AbF9G0-i_J6wfJfz2TpeZc.mft Manifest number: 04D5 Signing time: Fri 22 Nov 2024 23:18:46 +0000 Manifest this update: Fri 22 Nov 2024 23:18:45 +0000 Manifest next update: Fri 29 Nov 2024 23:18:45 +0000 Files and hashes: 1: dfdy5AbF9G0-i_J6wfJfz2TpeZc.crl (hash: +spmNz5wnDZ2O66sSVvyRnQbTVuEPjekZlXRiWFV1SA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FC705/6E277BB2F5BD11EBB9F8DB11C4F9AE02/dfdy5AbF9G0-i_J6wfJfz2TpeZc.crl rsync://rpki.apnic.net/member_repository/A91FC705/6E277BB2F5BD11EBB9F8DB11C4F9AE02/dfdy5AbF9G0-i_J6wfJfz2TpeZc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dfdy5AbF9G0-i_J6wfJfz2TpeZc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1237 (0x4d5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FC705/serialNumber=75F772E406C5F46D3E8BF27AC1F25FCF64E97997 Validity Not Before: Nov 22 23:18:45 2024 GMT Not After : Nov 29 23:18:45 2024 GMT Subject: CN=67411156-c9de Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:25:b6:5e:ec:ef:38:7b:02:84:67:e7:a4:ee: 65:fc:5d:6a:55:c9:18:28:b0:04:11:ca:6d:da:1d: 18:28:ae:db:a5:e5:31:de:3e:a3:18:0e:18:30:e3: 38:75:71:15:f5:73:ed:c5:77:07:f5:8d:1b:78:b6: c3:aa:32:29:6a:57:71:ba:98:31:9f:6d:b4:ce:33: 6f:38:3c:26:a7:17:77:a8:6a:16:23:5f:7a:a4:21: a2:70:cb:a9:b5:4f:6a:ba:93:5c:53:ba:f7:81:9d: 12:41:08:3d:5f:63:d7:ea:69:1d:17:7e:cc:82:c4: 4d:60:b2:e6:98:41:d9:63:36:6f:12:b4:11:e7:4b: 0b:2f:9d:dd:e9:a1:d2:94:85:46:36:7b:dc:9d:5b: ea:63:92:5f:87:ef:b9:a2:f7:0b:dc:2a:ed:df:d3: 5b:80:92:71:9b:07:5c:ac:1e:2e:65:99:2a:89:59: c6:89:f0:66:6d:6a:13:2c:49:81:0f:d1:97:b9:1a: c7:4c:1d:e6:27:4b:56:6e:d8:8e:9c:1c:ac:d6:db: 09:0b:80:e7:38:54:7f:f4:65:fb:31:05:1b:5e:46: 37:d8:c9:b4:33:71:55:15:84:06:f4:18:b6:d9:d9: d2:b7:2f:b1:87:3b:3c:7b:a3:33:1b:4f:b6:42:0b: 32:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:C1:FB:5D:DE:B5:A1:E5:5B:88:74:4C:33:72:CE:9B:A3:FD:48:3E X509v3 Authority Key Identifier: keyid:75:F7:72:E4:06:C5:F4:6D:3E:8B:F2:7A:C1:F2:5F:CF:64:E9:79:97 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FC705/6E277BB2F5BD11EBB9F8DB11C4F9AE02/dfdy5AbF9G0-i_J6wfJfz2TpeZc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dfdy5AbF9G0-i_J6wfJfz2TpeZc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FC705/6E277BB2F5BD11EBB9F8DB11C4F9AE02/dfdy5AbF9G0-i_J6wfJfz2TpeZc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b6:2d:66:b8:14:a7:0e:0b:34:a3:e4:f4:de:3f:3d:c8:18:7e: 16:f9:99:0e:78:30:32:6c:ad:01:74:23:6b:d9:49:7c:bc:c9: 8d:d4:ef:8c:58:8d:54:a2:f4:28:d8:fd:25:05:76:e2:ca:9f: da:95:20:2b:78:bd:a3:e0:b4:cb:77:21:09:26:31:16:25:25: b3:87:56:bd:6d:a1:35:af:a9:4d:c8:4e:a5:50:ba:82:32:c6: a8:95:7a:45:f4:47:73:77:a7:26:6c:f5:31:4b:e6:d1:46:0c: 40:80:41:89:82:55:9d:a6:82:f7:65:36:81:66:6f:c1:f1:3b: f8:bd:8b:7c:34:8f:e8:d2:0a:25:5f:e8:4e:97:1c:f3:02:d4: 61:0b:04:42:c2:c4:fd:33:67:62:11:97:4a:73:5d:35:b3:f7: cc:73:56:51:72:f5:62:b9:52:06:be:79:7e:b9:55:08:e5:a8: 45:5d:1c:ef:5d:ce:cb:f6:25:1a:6e:4d:8c:14:09:bb:a3:5c: 84:b6:b8:90:40:2f:ff:a6:55:19:6e:f9:34:ef:61:81:5f:4f: 6c:06:0d:f6:8e:83:c0:8c:a1:bf:e8:ca:85:c5:4f:fc:e1:5b: bb:cf:f3:8c:87:0b:32:87:67:54:90:ef:3c:07:03:49:a3:fa: 20:36:ea:bc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBNUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkM3MDUxMTAvBgNVBAUTKDc1Rjc3MkU0MDZDNUY0NkQzRThCRjI3QUMxRjI1RkNG NjRFOTc5OTcwHhcNMjQxMTIyMjMxODQ1WhcNMjQxMTI5MjMxODQ1WjAYMRYwFAYD VQQDEw02NzQxMTE1Ni1jOWRlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7yW2XuzvOHsChGfnpO5l/F1qVckYKLAEEcpt2h0YKK7bpeUx3j6jGA4YMOM4 dXEV9XPtxXcH9Y0beLbDqjIpaldxupgxn220zjNvODwmpxd3qGoWI196pCGicMup tU9qupNcU7r3gZ0SQQg9X2PX6mkdF37MgsRNYLLmmEHZYzZvErQR50sLL53d6aHS lIVGNnvcnVvqY5Jfh++5ovcL3Crt39NbgJJxmwdcrB4uZZkqiVnGifBmbWoTLEmB D9GXuRrHTB3mJ0tWbtiOnBys1tsJC4DnOFR/9GX7MQUbXkY32Mm0M3FVFYQG9Bi2 2dnSty+xhzs8e6MzG0+2Qgsy7QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJHB+13e taHlW4h0TDNyzpuj/Ug+MB8GA1UdIwQYMBaAFHX3cuQGxfRtPovyesHyX89k6XmX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQzcwNS82RTI3N0JCMkY1 QkQxMUVCQjlGOERCMTFDNEY5QUUwMi9kZmR5NUFiRjlHMC1pX0o2d2ZKZnoyVHBl WmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2RmZHk1QWJGOUcwLWlfSjZ3ZkpmejJUcGVaYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QzcwNS82RTI3N0JCMkY1QkQxMUVCQjlGOERCMTFDNEY5QUUwMi9kZmR5NUFiRjlH MC1pX0o2d2ZKZnoyVHBlWmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC2LWa4FKcOCzSj5PTePz3IGH4W+ZkOeDAybK0BdCNr2Ul8vMmN1O+M WI1UovQo2P0lBXbiyp/alSAreL2j4LTLdyEJJjEWJSWzh1a9baE1r6lNyE6lULqC MsaolXpF9Edzd6cmbPUxS+bRRgxAgEGJglWdpoL3ZTaBZm/B8Tv4vYt8NI/o0gol X+hOlxzzAtRhCwRCwsT9M2diEZdKc101s/fMc1ZRcvViuVIGvnl+uVUI5ahFXRzv Xc7L9iUabk2MFAm7o1yEtriQQC//plUZbvk072GBX09sBg32joPAjKG/6MqFxU/8 4Vu7z/OMhwsyh2dUkO88BwNJo/ogNuq8 -----END CERTIFICATE-----Generated at Sat Nov 23 01:27:30 2024 by rpki-client on console-ams.rpki-client.org