$ rpki-client -vvf rpki.apnic.net/member_repository/A9120E21/A5E950D4427311E9BAC00065C4F9AE02/lMnUO1O12FDZjg2i1e88ThwxIEU.mft File: lMnUO1O12FDZjg2i1e88ThwxIEU.mft (raw, json) Hash identifier: SNKrFRJRcPHYwkxgAeo/Fw2bDoHhWGwDxwLG7MCN5Zg= Subject key identifier: 03:DC:64:86:AF:3D:94:07:0F:02:92:0C:9F:60:A9:CB:D6:43:EA:55 Authority key identifier: 94:C9:D4:3B:53:B5:D8:50:D9:8E:0D:A2:D5:EF:3C:4E:1C:31:20:45 Certificate issuer: /CN=A9120E21/serialNumber=94C9D43B53B5D850D98E0DA2D5EF3C4E1C312045 Certificate serial: 0FBD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lMnUO1O12FDZjg2i1e88ThwxIEU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9120E21/A5E950D4427311E9BAC00065C4F9AE02/lMnUO1O12FDZjg2i1e88ThwxIEU.mft Manifest number: 0FBD Signing time: Fri 22 Nov 2024 17:28:21 +0000 Manifest this update: Fri 22 Nov 2024 17:28:20 +0000 Manifest next update: Fri 29 Nov 2024 17:28:20 +0000 Files and hashes: 1: lMnUO1O12FDZjg2i1e88ThwxIEU.crl (hash: jwCWZ20zIEA4hinbaJWc1tGvf2BiWO9E5A6JTEpYc68=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9120E21/A5E950D4427311E9BAC00065C4F9AE02/lMnUO1O12FDZjg2i1e88ThwxIEU.crl rsync://rpki.apnic.net/member_repository/A9120E21/A5E950D4427311E9BAC00065C4F9AE02/lMnUO1O12FDZjg2i1e88ThwxIEU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lMnUO1O12FDZjg2i1e88ThwxIEU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 17:28:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4029 (0xfbd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9120E21/serialNumber=94C9D43B53B5D850D98E0DA2D5EF3C4E1C312045 Validity Not Before: Nov 22 17:28:20 2024 GMT Not After : Nov 29 17:28:20 2024 GMT Subject: CN=6740bf35-7c35 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:3e:b3:51:7e:7b:c0:be:cb:24:ad:ea:95:a0: d2:8d:d0:9b:e1:6f:c3:e9:5c:b8:10:32:6d:76:eb: 6e:1b:de:d0:23:9b:20:9c:eb:f7:e5:5c:91:88:07: 70:ff:8f:e3:66:e6:01:1c:dd:b5:be:10:81:c2:ba: 15:d7:21:fd:46:14:f4:64:97:9f:17:c3:50:bb:36: 48:b4:43:8c:43:e8:d0:0a:bc:cd:fe:21:39:55:86: 20:c7:88:9d:38:83:06:df:00:5a:5e:e9:91:30:29: 75:2b:0c:47:9d:4c:89:32:32:98:cb:29:dd:73:5c: 93:f6:7e:34:f9:9a:54:08:29:bd:68:68:f0:44:e8: 1e:73:db:f5:57:71:7c:29:a2:84:ff:9f:6e:67:cd: 03:7f:e4:24:8d:31:60:c9:63:20:4a:1d:70:03:2c: ee:2a:71:63:f8:54:a4:b8:37:9d:ad:00:7e:9b:3b: 58:b8:28:f2:41:d6:2b:71:c7:2d:7e:24:87:7e:7c: 1d:f1:aa:79:83:cc:89:d8:bf:71:0f:a8:bc:24:70: 15:73:1b:6a:48:cd:bc:68:92:e2:dd:41:b0:19:91: 40:e9:b3:1e:87:f7:7d:ef:ab:ab:c7:3a:95:e4:c8: 51:a7:1d:8c:69:f4:7b:1a:f8:59:31:88:ca:4a:d2: 5e:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:DC:64:86:AF:3D:94:07:0F:02:92:0C:9F:60:A9:CB:D6:43:EA:55 X509v3 Authority Key Identifier: keyid:94:C9:D4:3B:53:B5:D8:50:D9:8E:0D:A2:D5:EF:3C:4E:1C:31:20:45 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9120E21/A5E950D4427311E9BAC00065C4F9AE02/lMnUO1O12FDZjg2i1e88ThwxIEU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lMnUO1O12FDZjg2i1e88ThwxIEU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9120E21/A5E950D4427311E9BAC00065C4F9AE02/lMnUO1O12FDZjg2i1e88ThwxIEU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9e:fd:de:34:23:3c:1c:fc:8c:d9:90:40:39:53:c9:4f:6a:b6: cd:af:09:36:fe:c1:18:40:ac:88:8c:de:79:07:3a:9a:cb:c8: ed:02:33:42:c3:e9:7f:93:b7:b2:c9:6f:46:ca:b5:56:b9:a5: f7:24:0a:06:2b:07:43:e9:45:08:89:73:38:94:54:0c:e1:09: 66:bf:70:df:4a:df:d2:7c:c6:89:ed:5b:b8:b9:6b:d3:6a:db: cd:0f:7e:2c:b8:ab:30:d8:58:38:1a:f3:f1:6e:08:6c:97:26: 4e:55:2e:f6:75:a0:8d:29:6e:a7:dc:78:d1:0e:17:50:be:df: 0f:2e:e3:21:e3:86:19:b8:b7:6c:fa:25:83:83:29:ad:02:a8: e4:66:7e:db:23:88:3b:39:86:b1:fa:3c:79:00:ec:16:6c:5e: 6c:ce:1b:cc:24:52:6e:85:d1:a7:5b:97:4c:b8:29:bb:64:00: 2f:1c:bf:df:85:3b:29:75:ef:3d:98:a3:cc:4b:01:bf:68:f3: 62:15:24:da:a3:ed:cd:34:ee:da:d4:48:49:56:0f:0f:00:12: 4a:8e:7a:b9:13:75:40:bf:42:3b:02:39:16:3e:b4:81:15:f7: 92:e8:79:2a:f7:8f:75:8e:54:b2:34:91:51:bd:58:b3:84:85: c1:72:44:a5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICD70wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjBFMjExMTAvBgNVBAUTKDk0QzlENDNCNTNCNUQ4NTBEOThFMERBMkQ1RUYzQzRF MUMzMTIwNDUwHhcNMjQxMTIyMTcyODIwWhcNMjQxMTI5MTcyODIwWjAYMRYwFAYD VQQDEw02NzQwYmYzNS03YzM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2z6zUX57wL7LJK3qlaDSjdCb4W/D6Vy4EDJtdutuG97QI5sgnOv35VyRiAdw /4/jZuYBHN21vhCBwroV1yH9RhT0ZJefF8NQuzZItEOMQ+jQCrzN/iE5VYYgx4id OIMG3wBaXumRMCl1KwxHnUyJMjKYyyndc1yT9n40+ZpUCCm9aGjwROgec9v1V3F8 KaKE/59uZ80Df+QkjTFgyWMgSh1wAyzuKnFj+FSkuDedrQB+mztYuCjyQdYrccct fiSHfnwd8ap5g8yJ2L9xD6i8JHAVcxtqSM28aJLi3UGwGZFA6bMeh/d976urxzqV 5MhRpx2MafR7GvhZMYjKStJe6wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAPcZIav PZQHDwKSDJ9gqcvWQ+pVMB8GA1UdIwQYMBaAFJTJ1DtTtdhQ2Y4NotXvPE4cMSBF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMEUyMS9BNUU5NTBENDQy NzMxMUU5QkFDMDAwNjVDNEY5QUUwMi9sTW5VTzFPMTJGRFpqZzJpMWU4OFRod3hJ RVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xNblVPMU8xMkZEWmpnMmkxZTg4VGh3eElFVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MEUyMS9BNUU5NTBENDQyNzMxMUU5QkFDMDAwNjVDNEY5QUUwMi9sTW5VTzFPMTJG RFpqZzJpMWU4OFRod3hJRVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCe/d40Izwc/IzZkEA5U8lParbNrwk2/sEYQKyIjN55Bzqay8jtAjNC w+l/k7eyyW9GyrVWuaX3JAoGKwdD6UUIiXM4lFQM4Qlmv3DfSt/SfMaJ7Vu4uWvT atvND34suKsw2Fg4GvPxbghslyZOVS72daCNKW6n3HjRDhdQvt8PLuMh44YZuLds +iWDgymtAqjkZn7bI4g7OYax+jx5AOwWbF5szhvMJFJuhdGnW5dMuCm7ZAAvHL/f hTspde89mKPMSwG/aPNiFSTao+3NNO7a1EhJVg8PABJKjnq5E3VAv0I7AjkWPrSB FfeS6Hkq9491jlSyNJFRvVizhIXBckSl -----END CERTIFICATE-----Generated at Fri Nov 22 19:44:56 2024 by rpki-client on console-fra.rpki-client.org