$ rpki-client -vvf rpki.apnic.net/member_repository/A912A70D/1114C9BA595011ECAE093282C4F9AE02/eHZtYCpA71cBQmhKcj6KNAxv84I.mft File: eHZtYCpA71cBQmhKcj6KNAxv84I.mft (raw, json) Hash identifier: TcyaAz6Vzq/s49jt2AFNqTtZhCCJSODgKGmQe2r/7dI= Subject key identifier: 81:B8:05:96:73:BE:EF:32:B1:04:15:62:7E:D4:08:2D:75:A3:C4:87 Authority key identifier: 78:76:6D:60:2A:40:EF:57:01:42:68:4A:72:3E:8A:34:0C:6F:F3:82 Certificate issuer: /CN=A912A70D/serialNumber=78766D602A40EF570142684A723E8A340C6FF382 Certificate serial: 03E4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eHZtYCpA71cBQmhKcj6KNAxv84I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912A70D/1114C9BA595011ECAE093282C4F9AE02/eHZtYCpA71cBQmhKcj6KNAxv84I.mft Manifest number: 03E1 Signing time: Thu 21 Nov 2024 00:07:26 +0000 Manifest this update: Thu 21 Nov 2024 00:07:26 +0000 Manifest next update: Thu 28 Nov 2024 00:07:26 +0000 Files and hashes: 1: eHZtYCpA71cBQmhKcj6KNAxv84I.crl (hash: +u4TmMbizqFCPweYhTc/Qv764ZGJpefA3DbK0AqBh9k=) 2: 90AE61AC595711EC8761C361C4F9AE02.roa (hash: MHLkIrG8OE5UOit08v3EdsiD1KiljA4jon27VqLiskc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912A70D/1114C9BA595011ECAE093282C4F9AE02/eHZtYCpA71cBQmhKcj6KNAxv84I.crl rsync://rpki.apnic.net/member_repository/A912A70D/1114C9BA595011ECAE093282C4F9AE02/eHZtYCpA71cBQmhKcj6KNAxv84I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eHZtYCpA71cBQmhKcj6KNAxv84I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:33:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 996 (0x3e4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912A70D/serialNumber=78766D602A40EF570142684A723E8A340C6FF382 Validity Not Before: Nov 21 00:07:26 2024 GMT Not After : Nov 28 00:07:26 2024 GMT Subject: CN=673e79be-9d64 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:6d:59:99:32:27:69:f4:e3:2b:18:f0:84:c9: e5:d8:1a:3f:97:f5:e4:0b:da:5b:09:97:10:37:d6: 5c:51:5f:0e:3f:dc:4e:39:9d:a1:37:b6:5e:cd:f1: d7:e4:d3:2b:19:1a:ed:5e:37:ff:24:37:30:03:1a: eb:b6:f4:4d:3b:e2:1f:8e:1a:53:d2:e3:4c:18:79: 71:10:47:39:28:0d:95:fa:cc:17:24:97:12:9f:e7: ca:36:b6:ca:45:1b:e9:ef:b9:cb:24:38:42:15:25: 87:f8:8d:c4:62:8a:18:18:29:9e:66:b9:28:6e:1e: 93:79:a5:84:e2:41:00:a2:42:23:dc:34:0a:a0:d2: ad:63:24:85:b9:12:32:e8:c7:64:98:63:53:58:87: ac:09:11:69:53:11:60:5f:a2:cc:a5:84:f0:c1:3a: c3:c3:b3:ae:ae:d7:cf:67:1d:93:9e:11:cd:b4:04: ae:0a:a0:76:80:bb:1e:1b:f9:26:d2:ca:d9:eb:0f: c2:ee:65:e9:a5:c7:44:57:25:4e:59:9f:79:b4:82: f2:bd:58:6d:b4:cb:f2:6f:56:e0:25:58:f7:75:d0: 30:1d:1b:39:ed:c5:89:02:66:d9:b1:35:7e:65:e8: 0a:a1:71:e5:29:5c:e3:c5:54:8a:8c:28:b4:bb:54: 55:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:B8:05:96:73:BE:EF:32:B1:04:15:62:7E:D4:08:2D:75:A3:C4:87 X509v3 Authority Key Identifier: keyid:78:76:6D:60:2A:40:EF:57:01:42:68:4A:72:3E:8A:34:0C:6F:F3:82 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912A70D/1114C9BA595011ECAE093282C4F9AE02/eHZtYCpA71cBQmhKcj6KNAxv84I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eHZtYCpA71cBQmhKcj6KNAxv84I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912A70D/1114C9BA595011ECAE093282C4F9AE02/eHZtYCpA71cBQmhKcj6KNAxv84I.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 53:10:c0:ca:4a:9d:73:78:d8:9c:7b:d8:58:28:5e:0b:cd:3e: 7b:b8:92:fb:80:6f:fa:75:21:07:51:c3:c4:4e:df:a7:93:e7: ce:4b:5f:b2:76:07:00:6f:9f:5f:f2:7a:59:86:df:53:f8:a4: 06:b9:f2:98:c2:67:55:28:f9:49:c6:ef:3e:10:6f:c2:43:4c: 15:9b:c1:6d:98:b6:38:27:a6:9d:03:49:b0:e1:0f:71:cd:e7: be:37:be:2f:ee:46:85:67:bb:3d:67:14:69:d0:17:18:da:b1: fa:b0:b7:14:57:9a:5b:8b:6b:4f:26:fb:25:d4:64:71:7a:5a: bf:88:cc:7d:c4:9d:38:f2:4d:83:4c:c1:73:f6:4c:a3:90:22: 0a:78:68:7e:f9:13:63:83:ab:61:00:ae:b4:8e:f0:13:c9:c3: f5:de:5b:53:4b:e2:20:7e:4f:9c:36:e6:88:22:b2:17:d5:eb: 5c:18:73:83:4e:58:7c:4f:ec:8d:c0:10:c1:6f:e4:4b:57:89: c0:a4:a7:76:7c:97:eb:ef:6c:ce:7f:8f:29:4d:4b:e7:76:e0: 20:01:a2:c2:e0:66:4a:96:5f:51:17:d5:f5:ab:f3:ec:f7:4e: 21:5d:46:4a:b1:ff:b2:17:58:85:81:79:ba:cf:55:dc:52:67: 9c:9c:77:77 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA+QwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkE3MEQxMTAvBgNVBAUTKDc4NzY2RDYwMkE0MEVGNTcwMTQyNjg0QTcyM0U4QTM0 MEM2RkYzODIwHhcNMjQxMTIxMDAwNzI2WhcNMjQxMTI4MDAwNzI2WjAYMRYwFAYD VQQDEw02NzNlNzliZS05ZDY0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsG1ZmTInafTjKxjwhMnl2Bo/l/XkC9pbCZcQN9ZcUV8OP9xOOZ2hN7ZezfHX 5NMrGRrtXjf/JDcwAxrrtvRNO+IfjhpT0uNMGHlxEEc5KA2V+swXJJcSn+fKNrbK RRvp77nLJDhCFSWH+I3EYooYGCmeZrkobh6TeaWE4kEAokIj3DQKoNKtYySFuRIy 6MdkmGNTWIesCRFpUxFgX6LMpYTwwTrDw7OurtfPZx2TnhHNtASuCqB2gLseG/km 0srZ6w/C7mXppcdEVyVOWZ95tILyvVhttMvyb1bgJVj3ddAwHRs57cWJAmbZsTV+ ZegKoXHlKVzjxVSKjCi0u1RVvwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIG4BZZz vu8ysQQVYn7UCC11o8SHMB8GA1UdIwQYMBaAFHh2bWAqQO9XAUJoSnI+ijQMb/OC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQTcwRC8xMTE0QzlCQTU5 NTAxMUVDQUUwOTMyODJDNEY5QUUwMi9lSFp0WUNwQTcxY0JRbWhLY2o2S05BeHY4 NEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2VIWnRZQ3BBNzFjQlFtaEtjajZLTkF4djg0SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy QTcwRC8xMTE0QzlCQTU5NTAxMUVDQUUwOTMyODJDNEY5QUUwMi9lSFp0WUNwQTcx Y0JRbWhLY2o2S05BeHY4NEkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBTEMDKSp1zeNice9hYKF4LzT57uJL7gG/6dSEHUcPETt+nk+fOS1+y dgcAb59f8npZht9T+KQGufKYwmdVKPlJxu8+EG/CQ0wVm8FtmLY4J6adA0mw4Q9x zee+N74v7kaFZ7s9ZxRp0BcY2rH6sLcUV5pbi2tPJvsl1GRxelq/iMx9xJ048k2D TMFz9kyjkCIKeGh++RNjg6thAK60jvATycP13ltTS+Igfk+cNuaIIrIX1etcGHOD Tlh8T+yNwBDBb+RLV4nApKd2fJfr72zOf48pTUvnduAgAaLC4GZKll9RF9X1q/Ps 904hXUZKsf+yF1iFgXm6z1XcUmecnHd3 -----END CERTIFICATE-----Generated at Thu Nov 21 01:31:53 2024 by rpki-client on console-fra.rpki-client.org