$ rpki-client -vvf rpki.apnic.net/member_repository/A91139AB/158D4906255B11EBA9F5601AC4F9AE02/9US5wrG96hw7N0NIuNFeNn5qD0I.mft File: 9US5wrG96hw7N0NIuNFeNn5qD0I.mft (raw, json) Hash identifier: kVzl0l7NigWM5yKeNofUolyXGmb5ttAHFoT2bVawESk= Subject key identifier: 66:98:6B:23:C2:55:2F:B4:33:4F:67:4C:4A:00:C8:18:40:9D:9C:E8 Authority key identifier: F5:44:B9:C2:B1:BD:EA:1C:3B:37:43:48:B8:D1:5E:36:7E:6A:0F:42 Certificate issuer: /CN=A91139AB/serialNumber=F544B9C2B1BDEA1C3B374348B8D15E367E6A0F42 Certificate serial: 06F1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9US5wrG96hw7N0NIuNFeNn5qD0I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91139AB/158D4906255B11EBA9F5601AC4F9AE02/9US5wrG96hw7N0NIuNFeNn5qD0I.mft Manifest number: 07B7 Signing time: Fri 22 Nov 2024 21:31:20 +0000 Manifest this update: Fri 22 Nov 2024 21:31:20 +0000 Manifest next update: Fri 29 Nov 2024 21:31:20 +0000 Files and hashes: 1: 9US5wrG96hw7N0NIuNFeNn5qD0I.crl (hash: 1CMtWExIFysFGfLlWg5iOzXg6DacHXHUYFmdd0hW9og=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91139AB/158D4906255B11EBA9F5601AC4F9AE02/9US5wrG96hw7N0NIuNFeNn5qD0I.crl rsync://rpki.apnic.net/member_repository/A91139AB/158D4906255B11EBA9F5601AC4F9AE02/9US5wrG96hw7N0NIuNFeNn5qD0I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9US5wrG96hw7N0NIuNFeNn5qD0I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1777 (0x6f1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91139AB/serialNumber=F544B9C2B1BDEA1C3B374348B8D15E367E6A0F42 Validity Not Before: Nov 22 21:31:20 2024 GMT Not After : Nov 29 21:31:20 2024 GMT Subject: CN=6740f828-f3e9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:1d:f6:e2:32:2e:42:79:5e:95:a3:ee:e9:69: 4d:4f:e1:f6:eb:a7:3b:22:9e:82:22:6c:32:ec:9a: 9e:11:41:c4:29:54:62:21:43:a5:7a:46:df:74:be: de:7a:ee:59:35:cb:05:80:37:09:b1:7f:0f:e6:ff: 50:ca:44:03:72:0e:b3:a6:90:25:eb:e0:f3:7f:21: 75:c3:70:75:7a:b0:86:0e:61:82:da:e2:c8:0c:e5: cc:ea:58:a2:cc:bc:af:a2:e4:8f:f9:ae:b4:c9:10: 85:d3:a1:d7:7c:77:b0:9a:38:17:e9:63:37:d4:a3: 96:35:81:2e:19:9a:55:58:b2:3b:41:eb:fb:5b:05: 1a:0a:1b:6d:67:22:9c:09:ca:a5:53:2b:6d:7b:00: 3c:d5:3a:fb:7f:fe:10:03:7b:f2:b5:4d:2c:c1:e7: 1f:35:16:ba:67:51:10:94:6c:7c:9e:d0:d7:23:03: 0f:e2:67:f2:51:e9:ed:17:bc:17:94:54:3c:c1:b5: a4:d4:0c:0e:35:65:63:a8:f1:95:2e:fe:5b:fa:c8: 6c:b1:00:a9:44:c9:ad:07:19:8b:9b:0b:ac:6a:9d: 64:c0:a2:90:13:d6:b8:36:89:54:13:dc:11:5f:63: 9c:12:68:43:9b:31:f5:ab:f6:ef:57:e1:e1:ae:c7: 01:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:98:6B:23:C2:55:2F:B4:33:4F:67:4C:4A:00:C8:18:40:9D:9C:E8 X509v3 Authority Key Identifier: keyid:F5:44:B9:C2:B1:BD:EA:1C:3B:37:43:48:B8:D1:5E:36:7E:6A:0F:42 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91139AB/158D4906255B11EBA9F5601AC4F9AE02/9US5wrG96hw7N0NIuNFeNn5qD0I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9US5wrG96hw7N0NIuNFeNn5qD0I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91139AB/158D4906255B11EBA9F5601AC4F9AE02/9US5wrG96hw7N0NIuNFeNn5qD0I.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 29:b9:3b:7d:9c:65:1d:6a:72:f5:f0:c7:4b:ef:ad:22:4d:ff: 24:e9:6d:c8:ab:92:36:51:27:bf:d8:f0:ee:18:96:31:c5:b4: 10:76:8e:59:1a:28:67:f4:4b:2f:49:51:ba:32:2f:60:55:b5: 4a:ad:77:ad:3d:4b:87:95:92:3b:76:94:66:a4:5a:b9:fd:b4: 38:b3:50:89:ab:89:20:28:86:88:a0:7b:3c:be:6d:5b:1c:ce: e7:1b:f6:81:20:db:9c:97:08:6a:dd:3f:75:02:ae:14:e8:62: ed:54:eb:1a:56:03:1b:f4:fd:03:8a:d3:20:ce:e0:c2:69:14: e2:e1:a2:8c:8d:4b:58:e1:e8:d2:c4:8a:aa:45:c9:5f:ef:50: d6:d0:ed:80:00:b7:2f:a0:3f:24:92:6e:ac:3a:e4:af:f3:aa: 10:3c:c0:8a:e0:89:74:0f:0d:b7:8f:bd:6c:2b:17:aa:6b:b0: 82:01:f1:e6:25:6c:4d:46:25:37:38:0d:ef:f2:d5:14:ee:0e: aa:43:05:83:43:40:28:48:b9:53:0d:6e:b9:cb:f8:98:b2:b5: eb:6e:f2:a8:8f:4d:2d:07:5c:46:04:bb:c2:7d:c9:1d:52:1e: db:69:40:6a:a1:d4:fa:23:61:15:ae:a8:3e:41:c1:b7:74:51: e0:84:9e:5c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBvEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTM5QUIxMTAvBgNVBAUTKEY1NDRCOUMyQjFCREVBMUMzQjM3NDM0OEI4RDE1RTM2 N0U2QTBGNDIwHhcNMjQxMTIyMjEzMTIwWhcNMjQxMTI5MjEzMTIwWjAYMRYwFAYD VQQDEw02NzQwZjgyOC1mM2U5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2B324jIuQnlelaPu6WlNT+H266c7Ip6CImwy7JqeEUHEKVRiIUOlekbfdL7e eu5ZNcsFgDcJsX8P5v9QykQDcg6zppAl6+DzfyF1w3B1erCGDmGC2uLIDOXM6lii zLyvouSP+a60yRCF06HXfHewmjgX6WM31KOWNYEuGZpVWLI7Qev7WwUaChttZyKc CcqlUyttewA81Tr7f/4QA3vytU0swecfNRa6Z1EQlGx8ntDXIwMP4mfyUentF7wX lFQ8wbWk1AwONWVjqPGVLv5b+shssQCpRMmtBxmLmwusap1kwKKQE9a4NolUE9wR X2OcEmhDmzH1q/bvV+HhrscB+QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGaYayPC VS+0M09nTEoAyBhAnZzoMB8GA1UdIwQYMBaAFPVEucKxveocOzdDSLjRXjZ+ag9C MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMzlBQi8xNThENDkwNjI1 NUIxMUVCQTlGNTYwMUFDNEY5QUUwMi85VVM1d3JHOTZodzdOME5JdU5GZU5uNXFE MEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzlVUzV3ckc5Nmh3N04wTkl1TkZlTm41cUQwSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MzlBQi8xNThENDkwNjI1NUIxMUVCQTlGNTYwMUFDNEY5QUUwMi85VVM1d3JHOTZo dzdOME5JdU5GZU5uNXFEMEkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQApuTt9nGUdanL18MdL760iTf8k6W3Iq5I2USe/2PDuGJYxxbQQdo5Z Gihn9EsvSVG6Mi9gVbVKrXetPUuHlZI7dpRmpFq5/bQ4s1CJq4kgKIaIoHs8vm1b HM7nG/aBINuclwhq3T91Aq4U6GLtVOsaVgMb9P0DitMgzuDCaRTi4aKMjUtY4ejS xIqqRclf71DW0O2AALcvoD8kkm6sOuSv86oQPMCK4Il0Dw23j71sKxeqa7CCAfHm JWxNRiU3OA3v8tUU7g6qQwWDQ0AoSLlTDW65y/iYsrXrbvKoj00tB1xGBLvCfckd Uh7baUBqodT6I2EVrqg+QcG3dFHghJ5c -----END CERTIFICATE-----Generated at Fri Nov 22 22:24:05 2024 by rpki-client on console-fra.rpki-client.org