$ rpki-client -vvf rpki.apnic.net/member_repository/A911FAC3/7B868C089DF511E8957AB416C4F9AE02/d2KqgncCDQu1x1mX3l99ilFC3xQ.mft File: d2KqgncCDQu1x1mX3l99ilFC3xQ.mft (raw, json) Hash identifier: DahijAjZSkEIx876mAlkR0TBz+7HkmIVeoyOyfCNm2I= Subject key identifier: D5:06:1A:6B:0A:80:59:7F:EA:DB:B2:4F:96:65:23:E1:15:56:75:7D Authority key identifier: 77:62:AA:82:77:02:0D:0B:B5:C7:59:97:DE:5F:7D:8A:51:42:DF:14 Certificate issuer: /CN=A911FAC3/serialNumber=7762AA8277020D0BB5C75997DE5F7D8A5142DF14 Certificate serial: 1334 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d2KqgncCDQu1x1mX3l99ilFC3xQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911FAC3/7B868C089DF511E8957AB416C4F9AE02/d2KqgncCDQu1x1mX3l99ilFC3xQ.mft Manifest number: 131E Signing time: Fri 22 Nov 2024 17:01:52 +0000 Manifest this update: Fri 22 Nov 2024 17:01:52 +0000 Manifest next update: Fri 29 Nov 2024 17:01:52 +0000 Files and hashes: 1: d2KqgncCDQu1x1mX3l99ilFC3xQ.crl (hash: Du1wSiCYrkXyc5b73JfjYH6KSiFtqLwiGL1xjnJT5ck=) 2: 4338FC5CFB5611EBB7032080C4F9AE02.roa (hash: jXq2yfYI+6Vq13ZwndDj/+d34MA8vN7mKixhRF47lwg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911FAC3/7B868C089DF511E8957AB416C4F9AE02/d2KqgncCDQu1x1mX3l99ilFC3xQ.crl rsync://rpki.apnic.net/member_repository/A911FAC3/7B868C089DF511E8957AB416C4F9AE02/d2KqgncCDQu1x1mX3l99ilFC3xQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d2KqgncCDQu1x1mX3l99ilFC3xQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 16:30:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4916 (0x1334) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911FAC3/serialNumber=7762AA8277020D0BB5C75997DE5F7D8A5142DF14 Validity Not Before: Nov 22 17:01:52 2024 GMT Not After : Nov 29 17:01:52 2024 GMT Subject: CN=6740b900-b5ca Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:c3:44:2f:84:b0:49:8a:8a:0c:49:95:81:0b: 8a:5c:de:31:4d:47:bc:56:d0:05:ce:36:69:52:42: 0f:cb:7d:bd:cf:37:0e:d5:8f:41:f4:4b:50:0d:dd: 55:6e:92:c5:8e:7a:e5:8e:cc:2e:6a:88:a4:6a:9b: cc:3d:61:94:38:51:b1:e8:66:00:bc:2f:13:a0:b0: 7b:24:62:23:b9:75:b4:bd:3f:b4:4f:a9:38:d1:ef: 0e:17:d9:1e:36:6e:f1:3a:92:46:69:68:81:2d:40: e9:f2:21:20:d8:5c:eb:d7:95:3c:3c:82:b4:f5:3a: 48:e4:e4:34:b8:a3:e0:c4:40:47:1a:9a:e8:b2:50: 3b:96:21:60:f5:4e:24:7e:12:41:55:fe:1b:19:88: 50:a2:a4:58:fb:58:c2:c0:f5:e3:af:42:8b:62:2b: 4a:c4:f5:46:f6:aa:57:69:7b:83:ce:f3:8c:f5:5c: c6:43:14:75:a6:7a:5d:95:4f:5c:6b:11:29:a7:c3: 49:c3:43:ca:55:02:52:6b:7c:6d:e0:37:bb:b9:ad: 3b:02:86:5d:ec:0e:7f:e2:04:78:d5:77:a7:31:cd: 91:a2:68:79:4c:60:89:da:d4:e8:4f:80:34:7c:ec: 34:f0:4f:d9:b3:9d:61:73:1e:9a:ce:7f:e6:98:dd: d5:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:06:1A:6B:0A:80:59:7F:EA:DB:B2:4F:96:65:23:E1:15:56:75:7D X509v3 Authority Key Identifier: keyid:77:62:AA:82:77:02:0D:0B:B5:C7:59:97:DE:5F:7D:8A:51:42:DF:14 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911FAC3/7B868C089DF511E8957AB416C4F9AE02/d2KqgncCDQu1x1mX3l99ilFC3xQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d2KqgncCDQu1x1mX3l99ilFC3xQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911FAC3/7B868C089DF511E8957AB416C4F9AE02/d2KqgncCDQu1x1mX3l99ilFC3xQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c7:64:ef:07:3a:10:95:8b:99:f3:10:2b:99:2d:d4:a5:eb:76: 1b:9f:e3:f4:35:e2:88:51:e2:ae:9a:81:e5:69:e4:fe:70:b3: 6a:94:4f:80:a9:c8:85:9d:7a:49:f9:2c:ae:0c:89:59:a9:b2: 46:fc:24:08:b6:77:0e:bf:ed:30:bd:8b:dd:05:67:86:3e:09: 93:78:18:31:ab:94:43:5b:d2:da:a2:2f:2c:c2:7b:5c:dd:23: 18:29:64:72:cc:58:98:c6:b6:71:9e:33:74:d0:b4:ca:fd:df: 50:cc:8b:bf:15:bf:6c:05:5b:a6:2c:69:c2:d8:35:94:2a:49: 90:4a:fb:b4:c6:11:23:c3:b2:3b:0b:96:c5:6e:60:e3:65:27: fe:10:88:a3:ec:d1:51:a3:9e:cf:3d:ba:f8:15:47:13:bd:e6: 95:f1:35:c2:8b:f8:9e:ae:e0:bc:fc:43:9a:ed:01:be:f8:14: 5a:5d:fe:cf:91:e0:09:75:df:7e:ef:5d:c8:ce:03:dc:52:fb: f4:dc:98:16:dc:fa:ca:26:78:73:48:54:1a:4f:98:47:68:ce: b3:04:27:4b:cb:47:2d:d1:b8:d1:3c:af:13:6f:86:cb:1a:6c: 89:61:8c:0b:76:7a:a3:87:06:83:47:b6:16:7f:f6:45:3a:52: b9:ee:b6:c9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEzQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUZBQzMxMTAvBgNVBAUTKDc3NjJBQTgyNzcwMjBEMEJCNUM3NTk5N0RFNUY3RDhB NTE0MkRGMTQwHhcNMjQxMTIyMTcwMTUyWhcNMjQxMTI5MTcwMTUyWjAYMRYwFAYD VQQDEw02NzQwYjkwMC1iNWNhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArcNEL4SwSYqKDEmVgQuKXN4xTUe8VtAFzjZpUkIPy329zzcO1Y9B9EtQDd1V bpLFjnrljswuaoikapvMPWGUOFGx6GYAvC8ToLB7JGIjuXW0vT+0T6k40e8OF9ke Nm7xOpJGaWiBLUDp8iEg2Fzr15U8PIK09TpI5OQ0uKPgxEBHGproslA7liFg9U4k fhJBVf4bGYhQoqRY+1jCwPXjr0KLYitKxPVG9qpXaXuDzvOM9VzGQxR1pnpdlU9c axEpp8NJw0PKVQJSa3xt4De7ua07AoZd7A5/4gR41XenMc2Romh5TGCJ2tToT4A0 fOw08E/Zs51hcx6azn/mmN3VgQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNUGGmsK gFl/6tuyT5ZlI+EVVnV9MB8GA1UdIwQYMBaAFHdiqoJ3Ag0LtcdZl95ffYpRQt8U MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRkFDMy83Qjg2OEMwODlE RjUxMUU4OTU3QUI0MTZDNEY5QUUwMi9kMktxZ25jQ0RRdTF4MW1YM2w5OWlsRkMz eFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2QyS3FnbmNDRFF1MXgxbVgzbDk5aWxGQzN4US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx RkFDMy83Qjg2OEMwODlERjUxMUU4OTU3QUI0MTZDNEY5QUUwMi9kMktxZ25jQ0RR dTF4MW1YM2w5OWlsRkMzeFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDHZO8HOhCVi5nzECuZLdSl63Ybn+P0NeKIUeKumoHlaeT+cLNqlE+A qciFnXpJ+SyuDIlZqbJG/CQItncOv+0wvYvdBWeGPgmTeBgxq5RDW9Laoi8swntc 3SMYKWRyzFiYxrZxnjN00LTK/d9QzIu/Fb9sBVumLGnC2DWUKkmQSvu0xhEjw7I7 C5bFbmDjZSf+EIij7NFRo57PPbr4FUcTveaV8TXCi/ieruC8/EOa7QG++BRaXf7P keAJdd9+713IzgPcUvv03JgW3PrKJnhzSFQaT5hHaM6zBCdLy0ct0bjRPK8Tb4bL GmyJYYwLdnqjhwaDR7YWf/ZFOlK57rbJ -----END CERTIFICATE-----Generated at Fri Nov 22 17:55:38 2024 by rpki-client on console-fra.rpki-client.org