$ rpki-client -vvf rpki.apnic.net/member_repository/A911945B/3ACF70C017FD11EF8C083063C4F9AE02/6zLfknQ0rG06hoR937o9LoEAETE.mft File: 6zLfknQ0rG06hoR937o9LoEAETE.mft (raw, json) Hash identifier: PzhDGrEGD4u7Mpg7qrAZ5VsISKJ3ADU1/6p5RfClBB0= Subject key identifier: 50:DA:88:98:14:B4:58:3F:80:4E:BE:55:F8:28:25:20:E0:F2:0D:1F Authority key identifier: EB:32:DF:92:74:34:AC:6D:3A:86:84:7D:DF:BA:3D:2E:81:00:11:31 Certificate issuer: /CN=A911945B/serialNumber=EB32DF927434AC6D3A86847DDFBA3D2E81001131 Certificate serial: 63 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6zLfknQ0rG06hoR937o9LoEAETE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911945B/3ACF70C017FD11EF8C083063C4F9AE02/6zLfknQ0rG06hoR937o9LoEAETE.mft Manifest number: 61 Signing time: Thu 21 Nov 2024 05:07:19 +0000 Manifest this update: Thu 21 Nov 2024 05:07:19 +0000 Manifest next update: Thu 28 Nov 2024 05:07:19 +0000 Files and hashes: 1: 6zLfknQ0rG06hoR937o9LoEAETE.crl (hash: ZzwgA0W9F2IDYbn3ZZi7Rb2uIWncz+ZKeqdn6NhBEe8=) 2: C562775017FD11EF9A320864C4F9AE02.roa (hash: KzKcuINIseqCKm2mKPVX0jaoPaRQgEtGnab7YqNF1/k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911945B/3ACF70C017FD11EF8C083063C4F9AE02/6zLfknQ0rG06hoR937o9LoEAETE.crl rsync://rpki.apnic.net/member_repository/A911945B/3ACF70C017FD11EF8C083063C4F9AE02/6zLfknQ0rG06hoR937o9LoEAETE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6zLfknQ0rG06hoR937o9LoEAETE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 05:07:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 99 (0x63) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911945B/serialNumber=EB32DF927434AC6D3A86847DDFBA3D2E81001131 Validity Not Before: Nov 21 05:07:19 2024 GMT Not After : Nov 28 05:07:19 2024 GMT Subject: CN=673ec007-d075 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:28:43:f5:19:19:b6:aa:5b:70:f5:4b:45:d9: 3a:5e:c0:e3:fc:95:d3:30:25:a2:43:54:06:bd:9c: 12:bc:17:bc:01:53:48:1d:51:c1:b8:d8:77:e0:06: a2:90:99:16:9d:77:be:82:9b:7d:0b:6c:23:c0:39: e9:93:c3:5e:c5:08:d4:df:69:db:3d:63:2d:b0:8d: 3d:fd:e9:a9:44:d8:a3:dc:15:fa:7d:08:ef:8a:52: 54:91:49:35:06:f0:a6:11:9c:a9:3a:44:3a:5d:1e: b5:65:04:30:df:30:ce:39:48:ec:34:6b:35:73:db: 98:81:68:e9:b4:52:e9:69:a4:8e:10:24:f9:a2:c9: c0:43:3b:ae:bf:e3:1b:a6:44:5a:3d:b7:4e:f7:75: 53:c1:7c:75:7a:73:bf:19:39:63:cd:17:26:60:0b: 17:88:74:04:9d:55:4b:48:30:99:ba:2d:62:e2:c7: 37:0e:4f:5d:bd:cc:d0:27:53:60:87:9e:fe:c3:03: 40:50:ee:36:0b:0e:a0:ae:eb:55:36:38:7f:41:11: 60:64:2a:91:e7:49:68:f6:ef:30:64:07:06:2e:87: 2f:b4:0f:a2:42:0f:fb:03:45:91:ea:fa:48:02:93: ff:41:e9:05:66:45:a2:83:90:32:9a:6d:5b:70:bc: 60:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:DA:88:98:14:B4:58:3F:80:4E:BE:55:F8:28:25:20:E0:F2:0D:1F X509v3 Authority Key Identifier: keyid:EB:32:DF:92:74:34:AC:6D:3A:86:84:7D:DF:BA:3D:2E:81:00:11:31 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911945B/3ACF70C017FD11EF8C083063C4F9AE02/6zLfknQ0rG06hoR937o9LoEAETE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6zLfknQ0rG06hoR937o9LoEAETE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911945B/3ACF70C017FD11EF8C083063C4F9AE02/6zLfknQ0rG06hoR937o9LoEAETE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9b:cd:1e:5e:40:e6:5e:1a:f1:76:e0:2b:37:b8:ec:e0:57:ea: c0:54:1d:c3:1a:ad:45:19:c8:c4:2d:d7:ad:f3:04:87:7c:48: 5c:b7:fd:c2:28:cc:76:68:ad:75:06:6c:80:48:09:1b:d3:74: 1f:c8:8c:59:b6:2b:ad:9f:c1:18:4c:38:8a:94:4a:2c:39:66: c3:7e:cf:d6:b7:2e:ed:ea:25:ec:71:39:32:cf:63:2a:62:af: e2:d4:80:fb:30:34:6d:58:f6:ea:b4:51:1a:eb:37:ab:2a:61: 5f:47:4d:a3:58:10:44:71:88:e0:f2:c5:c3:4b:47:09:e8:a1: fb:d6:9c:ed:75:aa:d6:97:18:54:c3:62:bf:6b:9c:e4:69:6e: 90:0c:56:89:19:54:5a:80:a3:61:b3:19:0a:04:cf:47:d3:fb: 4f:81:53:13:52:67:73:5e:5c:71:4b:7e:8f:f7:e0:bb:5f:6f: 51:c0:e0:ec:b4:bd:f0:d1:c8:a4:8d:08:c5:2a:dc:53:09:db: 7a:0a:40:9f:3a:17:7a:65:92:2d:41:15:e5:03:a9:73:df:4f: 79:da:7d:28:cc:45:0b:2b:93:d0:3a:0d:6f:38:c1:fb:7c:2b: 35:cc:e5:cd:b9:f6:4d:9e:74:e0:89:e2:d8:69:28:5f:d1:32: 42:8f:2a:58 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBYzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx OTQ1QjExMC8GA1UEBRMoRUIzMkRGOTI3NDM0QUM2RDNBODY4NDdEREZCQTNEMkU4 MTAwMTEzMTAeFw0yNDExMjEwNTA3MTlaFw0yNDExMjgwNTA3MTlaMBgxFjAUBgNV BAMTDTY3M2VjMDA3LWQwNzUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDUKEP1GRm2qltw9UtF2TpewOP8ldMwJaJDVAa9nBK8F7wBU0gdUcG42HfgBqKQ mRadd76Cm30LbCPAOemTw17FCNTfads9Yy2wjT396alE2KPcFfp9CO+KUlSRSTUG 8KYRnKk6RDpdHrVlBDDfMM45SOw0azVz25iBaOm0UulppI4QJPmiycBDO66/4xum RFo9t073dVPBfHV6c78ZOWPNFyZgCxeIdASdVUtIMJm6LWLixzcOT129zNAnU2CH nv7DA0BQ7jYLDqCu61U2OH9BEWBkKpHnSWj27zBkBwYuhy+0D6JCD/sDRZHq+kgC k/9B6QVmRaKDkDKabVtwvGDBAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUUNqImBS0 WD+ATr5V+CglIODyDR8wHwYDVR0jBBgwFoAU6zLfknQ0rG06hoR937o9LoEAETEw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTE5NDVCLzNBQ0Y3MEMwMTdG RDExRUY4QzA4MzA2M0M0RjlBRTAyLzZ6TGZrblEwckcwNmhvUjkzN285TG9FQUVU RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvNnpMZmtuUTByRzA2aG9SOTM3bzlMb0VBRVRFLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTE5 NDVCLzNBQ0Y3MEMwMTdGRDExRUY4QzA4MzA2M0M0RjlBRTAyLzZ6TGZrblEwckcw NmhvUjkzN285TG9FQUVURS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAJvNHl5A5l4a8XbgKze47OBX6sBUHcMarUUZyMQt163zBId8SFy3/cIo zHZorXUGbIBICRvTdB/IjFm2K62fwRhMOIqUSiw5ZsN+z9a3Lu3qJexxOTLPYypi r+LUgPswNG1Y9uq0URrrN6sqYV9HTaNYEERxiODyxcNLRwnoofvWnO11qtaXGFTD Yr9rnORpbpAMVokZVFqAo2GzGQoEz0fT+0+BUxNSZ3NeXHFLfo/34Ltfb1HA4Oy0 vfDRyKSNCMUq3FMJ23oKQJ86F3plki1BFeUDqXPfT3nafSjMRQsrk9A6DW84wft8 KzXM5c259k2edOCJ4thpKF/RMkKPKlg= -----END CERTIFICATE-----Generated at Thu Nov 21 06:50:13 2024 by rpki-client on console-fra.rpki-client.org