$ rpki-client -vvf rpki.apnic.net/member_repository/A911D415/64B7762E67BA11EEA912DE37C4F9AE02/baLnsgc31v3aKTEYAyM4Tcf4AXI.mft File: baLnsgc31v3aKTEYAyM4Tcf4AXI.mft (raw, json) Hash identifier: Eyz+5HATGeeqQxtcfT2w8XdzyAWKtFb+4i/4yRVYXfA= Subject key identifier: 11:EF:EB:82:45:36:50:73:C1:66:5A:D2:56:72:8E:7E:15:2F:73:51 Authority key identifier: 6D:A2:E7:B2:07:37:D6:FD:DA:29:31:18:03:23:38:4D:C7:F8:01:72 Certificate issuer: /CN=A911D415/serialNumber=6DA2E7B20737D6FDDA2931180323384DC7F80172 Certificate serial: D7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/baLnsgc31v3aKTEYAyM4Tcf4AXI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911D415/64B7762E67BA11EEA912DE37C4F9AE02/baLnsgc31v3aKTEYAyM4Tcf4AXI.mft Manifest number: D4 Signing time: Thu 21 Nov 2024 03:48:44 +0000 Manifest this update: Thu 21 Nov 2024 03:48:43 +0000 Manifest next update: Thu 28 Nov 2024 03:48:43 +0000 Files and hashes: 1: baLnsgc31v3aKTEYAyM4Tcf4AXI.crl (hash: XtPMvFjqrZqSd+8f6YxembV0th+pfhuZrDVoIazHn7Q=) 2: B2B7B96067BA11EE99370352C4F9AE02.roa (hash: P/WWt5eI8v2C+zoec4Zd9OnVnDcSJ3bbXF6r7+A0KgE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911D415/64B7762E67BA11EEA912DE37C4F9AE02/baLnsgc31v3aKTEYAyM4Tcf4AXI.crl rsync://rpki.apnic.net/member_repository/A911D415/64B7762E67BA11EEA912DE37C4F9AE02/baLnsgc31v3aKTEYAyM4Tcf4AXI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/baLnsgc31v3aKTEYAyM4Tcf4AXI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 03:48:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 215 (0xd7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911D415/serialNumber=6DA2E7B20737D6FDDA2931180323384DC7F80172 Validity Not Before: Nov 21 03:48:43 2024 GMT Not After : Nov 28 03:48:43 2024 GMT Subject: CN=673ead9c-b193 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:af:5d:7a:20:01:01:4c:1e:e4:30:2e:08:95: 88:b3:1e:9b:53:cb:1c:e0:11:e5:c9:86:11:ff:e1: 73:43:f4:c0:19:95:b4:6c:5b:a8:d0:d0:56:2e:94: a0:d0:29:1e:f7:6c:56:60:96:74:5b:f1:8a:75:8b: 4e:5d:74:07:b6:13:98:64:98:c8:85:eb:6c:b2:fa: a7:d8:68:a5:62:d2:ed:2e:75:5b:d6:74:52:08:76: 49:95:30:00:47:38:26:95:6f:b8:48:fd:7b:42:17: 27:28:50:3e:14:77:b3:2e:c8:51:49:50:28:14:99: 8d:af:e0:85:07:d7:9d:4b:b2:66:ea:33:ca:cf:49: 40:19:56:b9:7b:3b:9f:53:0b:13:88:00:ad:f7:fe: 3d:4e:dc:0b:c0:aa:f8:8a:81:9e:ed:30:f6:24:56: 97:df:62:63:73:db:0c:5b:ca:18:63:be:68:e4:f8: 51:7b:e1:df:70:09:4c:57:b7:bc:4f:48:1a:b1:90: 1b:97:01:56:86:21:69:66:e5:f4:f0:ff:3c:5b:34: 53:3b:97:6b:ec:8a:9e:ff:c1:b3:04:ef:b8:b6:9d: de:cb:73:65:dc:5b:9f:80:0c:9c:2a:03:c6:bc:75: 47:4b:14:44:cd:70:a8:76:88:e2:0f:65:d8:73:12: 0f:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:EF:EB:82:45:36:50:73:C1:66:5A:D2:56:72:8E:7E:15:2F:73:51 X509v3 Authority Key Identifier: keyid:6D:A2:E7:B2:07:37:D6:FD:DA:29:31:18:03:23:38:4D:C7:F8:01:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911D415/64B7762E67BA11EEA912DE37C4F9AE02/baLnsgc31v3aKTEYAyM4Tcf4AXI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/baLnsgc31v3aKTEYAyM4Tcf4AXI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911D415/64B7762E67BA11EEA912DE37C4F9AE02/baLnsgc31v3aKTEYAyM4Tcf4AXI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a3:c8:de:00:e2:76:87:72:01:09:d2:ed:09:5f:a0:c9:2b:db: 75:20:8d:2c:7d:5b:ad:e3:41:2c:30:10:d3:a1:0d:c4:89:5a: 81:8a:14:a4:a2:92:32:59:9d:2a:f0:52:69:25:b6:dc:48:0d: cf:88:ba:55:80:be:01:e4:16:8f:e2:12:ef:9d:5f:42:2f:48: 2c:1f:8a:ba:9a:56:92:12:a8:2c:eb:20:df:cb:2a:2d:9c:ee: 43:de:eb:48:2b:2d:d2:77:b0:de:a9:0e:85:29:d6:e7:67:f5: 55:26:37:f7:fa:1e:e0:0a:c9:b3:71:b9:aa:84:2c:c2:8e:b3: 82:f1:a8:2a:67:66:c1:b7:81:7e:8d:26:7c:52:c8:db:be:49: 28:29:4e:26:6b:3d:97:25:f2:b5:44:46:8a:10:c2:ae:7e:38: e1:26:20:c9:d0:4d:ea:04:04:f3:60:6c:a5:b4:22:76:b4:2c: 14:56:5f:a0:a5:35:ae:2d:a5:b6:b3:b1:15:33:67:ce:e1:1a: 96:29:01:fa:da:74:1e:96:ca:fc:40:4e:4c:6a:99:ce:fb:cc: a8:e3:50:52:8c:3b:36:7f:20:5b:b0:1f:77:70:01:6e:58:a9: b4:91:a3:69:d6:75:c3:91:3b:4c:1c:80:92:28:fc:4f:58:63: 82:78:7d:9c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICANcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUQ0MTUxMTAvBgNVBAUTKDZEQTJFN0IyMDczN0Q2RkREQTI5MzExODAzMjMzODRE QzdGODAxNzIwHhcNMjQxMTIxMDM0ODQzWhcNMjQxMTI4MDM0ODQzWjAYMRYwFAYD VQQDEw02NzNlYWQ5Yy1iMTkzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3a9deiABAUwe5DAuCJWIsx6bU8sc4BHlyYYR/+FzQ/TAGZW0bFuo0NBWLpSg 0Cke92xWYJZ0W/GKdYtOXXQHthOYZJjIhetssvqn2GilYtLtLnVb1nRSCHZJlTAA RzgmlW+4SP17QhcnKFA+FHezLshRSVAoFJmNr+CFB9edS7Jm6jPKz0lAGVa5ezuf UwsTiACt9/49TtwLwKr4ioGe7TD2JFaX32Jjc9sMW8oYY75o5PhRe+HfcAlMV7e8 T0gasZAblwFWhiFpZuX08P88WzRTO5dr7Iqe/8GzBO+4tp3ey3Nl3FufgAycKgPG vHVHSxREzXCodojiD2XYcxIP2wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBHv64JF NlBzwWZa0lZyjn4VL3NRMB8GA1UdIwQYMBaAFG2i57IHN9b92ikxGAMjOE3H+AFy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRDQxNS82NEI3NzYyRTY3 QkExMUVFQTkxMkRFMzdDNEY5QUUwMi9iYUxuc2djMzF2M2FLVEVZQXlNNFRjZjRB WEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JhTG5zZ2MzMXYzYUtURVlBeU00VGNmNEFYSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx RDQxNS82NEI3NzYyRTY3QkExMUVFQTkxMkRFMzdDNEY5QUUwMi9iYUxuc2djMzF2 M2FLVEVZQXlNNFRjZjRBWEkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCjyN4A4naHcgEJ0u0JX6DJK9t1II0sfVut40EsMBDToQ3EiVqBihSk opIyWZ0q8FJpJbbcSA3PiLpVgL4B5BaP4hLvnV9CL0gsH4q6mlaSEqgs6yDfyyot nO5D3utIKy3Sd7DeqQ6FKdbnZ/VVJjf3+h7gCsmzcbmqhCzCjrOC8agqZ2bBt4F+ jSZ8UsjbvkkoKU4maz2XJfK1REaKEMKufjjhJiDJ0E3qBATzYGyltCJ2tCwUVl+g pTWuLaW2s7EVM2fO4RqWKQH62nQelsr8QE5MapnO+8yo41BSjDs2fyBbsB93cAFu WKm0kaNp1nXDkTtMHICSKPxPWGOCeH2c -----END CERTIFICATE-----Generated at Thu Nov 21 05:05:53 2024 by rpki-client on console-fra.rpki-client.org