$ rpki-client -vvf rpki.apnic.net/member_repository/A912B75A/1B22E1FE5B9A11EF82027640C4F9AE02/Kz0hH8mZjfIDXiDZGqVe3sYo8KM.mft File: Kz0hH8mZjfIDXiDZGqVe3sYo8KM.mft (raw, json) Hash identifier: mU+O1VmcGj7uYDHBWKTX0fUqcezNbkf0zu9lZ/MLy6I= Subject key identifier: 90:7C:76:B9:12:29:B3:4A:CA:83:A4:A2:36:CB:E3:AF:61:86:20:AB Authority key identifier: 2B:3D:21:1F:C9:99:8D:F2:03:5E:20:D9:1A:A5:5E:DE:C6:28:F0:A3 Certificate issuer: /CN=A912B75A/serialNumber=2B3D211FC9998DF2035E20D91AA55EDEC628F0A3 Certificate serial: 26 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Kz0hH8mZjfIDXiDZGqVe3sYo8KM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912B75A/1B22E1FE5B9A11EF82027640C4F9AE02/Kz0hH8mZjfIDXiDZGqVe3sYo8KM.mft Manifest number: 26 Signing time: Wed 23 Oct 2024 06:25:40 +0000 Manifest this update: Wed 23 Oct 2024 06:25:40 +0000 Manifest next update: Wed 30 Oct 2024 06:25:40 +0000 Files and hashes: 1: Kz0hH8mZjfIDXiDZGqVe3sYo8KM.crl (hash: GQVRhEvZIUHQ9O3DC0dNDPmtTNXmUl0c+EOFxXfFaNM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912B75A/1B22E1FE5B9A11EF82027640C4F9AE02/Kz0hH8mZjfIDXiDZGqVe3sYo8KM.crl rsync://rpki.apnic.net/member_repository/A912B75A/1B22E1FE5B9A11EF82027640C4F9AE02/Kz0hH8mZjfIDXiDZGqVe3sYo8KM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Kz0hH8mZjfIDXiDZGqVe3sYo8KM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 30 Oct 2024 05:54:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 38 (0x26) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912B75A/serialNumber=2B3D211FC9998DF2035E20D91AA55EDEC628F0A3 Validity Not Before: Oct 23 06:25:40 2024 GMT Not After : Oct 30 06:25:40 2024 GMT Subject: CN=671896e4-b94b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:16:92:4e:14:c6:fc:65:aa:49:9b:54:f1:01: 81:0e:90:0f:ee:cb:bf:01:4d:d2:58:45:29:4d:fa: 0b:14:0b:bc:9d:6a:73:5e:63:d3:10:48:c1:9c:4e: 4f:3e:42:fc:8d:71:c8:95:68:49:32:66:77:da:97: 6f:ce:af:8e:82:23:6b:73:1f:96:ad:c5:8a:7e:6e: 9b:92:66:b0:29:93:b5:6c:c6:c5:57:97:9e:80:cc: 74:6b:bb:02:ad:bf:53:d9:cf:fa:ba:6a:47:e6:bb: 95:de:06:a3:0b:bc:5a:1f:2f:ee:15:7d:14:2b:09: f2:83:91:27:da:97:dc:c0:da:ed:e3:d2:8d:6d:d6: b8:08:88:2d:a4:df:f8:eb:3b:53:64:63:d4:c8:a3: 32:f1:d3:f3:f0:42:bb:e0:a5:32:c3:6c:01:68:5f: 8e:d4:87:6b:e4:e6:e7:85:5c:db:19:bd:4d:15:63: 9a:c5:dc:94:01:c6:0a:06:79:d3:14:25:ac:41:b8: 27:ad:f5:fd:78:3d:a3:5d:d8:89:24:72:f9:53:ea: 25:20:6e:c2:c9:2f:ce:83:8f:71:53:d9:b7:04:59: 12:e2:cf:b1:2e:64:1e:71:a6:5d:08:b1:33:fd:7f: 91:c3:00:4f:41:aa:cd:b5:3a:27:19:d0:86:73:31: ce:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:7C:76:B9:12:29:B3:4A:CA:83:A4:A2:36:CB:E3:AF:61:86:20:AB X509v3 Authority Key Identifier: keyid:2B:3D:21:1F:C9:99:8D:F2:03:5E:20:D9:1A:A5:5E:DE:C6:28:F0:A3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912B75A/1B22E1FE5B9A11EF82027640C4F9AE02/Kz0hH8mZjfIDXiDZGqVe3sYo8KM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Kz0hH8mZjfIDXiDZGqVe3sYo8KM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912B75A/1B22E1FE5B9A11EF82027640C4F9AE02/Kz0hH8mZjfIDXiDZGqVe3sYo8KM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 93:88:88:a3:b6:67:30:ed:36:63:76:54:71:bb:84:e4:3c:26: 1e:dc:80:e9:5e:73:aa:4c:2e:91:b5:2b:3c:e3:bf:51:6b:73: 0e:18:27:58:bc:27:f1:ff:bc:ff:d1:d3:5c:de:be:b2:84:5b: e6:6a:bf:d8:c4:8d:5e:da:bd:38:df:07:a8:7d:07:fa:86:8d: 6d:74:ca:fd:8f:34:23:d7:94:4d:5b:4e:34:3a:63:ff:39:02: c9:83:b6:ca:66:29:4e:4c:d5:1e:31:ef:09:a5:af:eb:f5:06: 6c:a3:11:b8:23:e8:34:3c:a4:ec:84:14:81:cc:05:c9:81:92: cc:f5:04:3e:e8:37:6c:4d:32:29:50:83:24:7f:54:54:90:1a: c2:29:54:1a:f5:d9:2d:54:cc:c1:ad:0f:6c:f1:3c:e0:48:5a: 8f:2a:c6:11:f6:05:12:0d:7e:ac:8b:f6:21:84:72:1a:4c:ac: 2c:8e:89:8e:bc:e2:75:0f:61:96:6d:73:df:42:2a:16:5f:5f: e0:89:cc:9e:72:b1:06:0d:c7:f4:ce:92:04:ed:ed:e1:98:2e: 63:d5:0d:3f:ce:b3:3c:8f:90:32:e5:50:7f:67:68:b1:f7:04: 10:45:2f:75:30:cc:8f:26:c2:c1:5e:8f:e3:61:1a:1b:0c:ca: b2:69:b2:00 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBJjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEy Qjc1QTExMC8GA1UEBRMoMkIzRDIxMUZDOTk5OERGMjAzNUUyMEQ5MUFBNTVFREVD NjI4RjBBMzAeFw0yNDEwMjMwNjI1NDBaFw0yNDEwMzAwNjI1NDBaMBgxFjAUBgNV BAMTDTY3MTg5NmU0LWI5NGIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCmFpJOFMb8ZapJm1TxAYEOkA/uy78BTdJYRSlN+gsUC7ydanNeY9MQSMGcTk8+ QvyNcciVaEkyZnfal2/Or46CI2tzH5atxYp+bpuSZrApk7VsxsVXl56AzHRruwKt v1PZz/q6akfmu5XeBqMLvFofL+4VfRQrCfKDkSfal9zA2u3j0o1t1rgIiC2k3/jr O1NkY9TIozLx0/PwQrvgpTLDbAFoX47Uh2vk5ueFXNsZvU0VY5rF3JQBxgoGedMU JaxBuCet9f14PaNd2IkkcvlT6iUgbsLJL86Dj3FT2bcEWRLiz7EuZB5xpl0IsTP9 f5HDAE9Bqs21OicZ0IZzMc4zAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUkHx2uRIp s0rKg6SiNsvjr2GGIKswHwYDVR0jBBgwFoAUKz0hH8mZjfIDXiDZGqVe3sYo8KMw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTJCNzVBLzFCMjJFMUZFNUI5 QTExRUY4MjAyNzY0MEM0RjlBRTAyL0t6MGhIOG1aamZJRFhpRFpHcVZlM3NZbzhL TS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvS3owaEg4bVpqZklEWGlEWkdxVmUzc1lvOEtNLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTJC NzVBLzFCMjJFMUZFNUI5QTExRUY4MjAyNzY0MEM0RjlBRTAyL0t6MGhIOG1aamZJ RFhpRFpHcVZlM3NZbzhLTS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAJOIiKO2ZzDtNmN2VHG7hOQ8Jh7cgOlec6pMLpG1Kzzjv1Frcw4YJ1i8 J/H/vP/R01zevrKEW+Zqv9jEjV7avTjfB6h9B/qGjW10yv2PNCPXlE1bTjQ6Y/85 AsmDtspmKU5M1R4x7wmlr+v1BmyjEbgj6DQ8pOyEFIHMBcmBksz1BD7oN2xNMilQ gyR/VFSQGsIpVBr12S1UzMGtD2zxPOBIWo8qxhH2BRINfqyL9iGEchpMrCyOiY68 4nUPYZZtc99CKhZfX+CJzJ5ysQYNx/TOkgTt7eGYLmPVDT/OszyPkDLlUH9naLH3 BBBFL3UwzI8mwsFej+NhGhsMyrJpsgA= -----END CERTIFICATE-----Generated at Wed Oct 23 07:33:18 2024 by rpki-client on console-fra.rpki-client.org