$ rpki-client -vvf rpki.apnic.net/member_repository/A912B75A/1B22E1FE5B9A11EF82027640C4F9AE02/Kz0hH8mZjfIDXiDZGqVe3sYo8KM.mft File: Kz0hH8mZjfIDXiDZGqVe3sYo8KM.mft (raw, json) Hash identifier: I4nEUBgZTJFiZsM7m2MoOWEY/QWyccaWe5/iA554IdE= Subject key identifier: 01:96:6C:D1:C9:CA:D8:D1:11:E1:3D:C8:0B:2B:C7:75:A0:7A:3E:F9 Authority key identifier: 2B:3D:21:1F:C9:99:8D:F2:03:5E:20:D9:1A:A5:5E:DE:C6:28:F0:A3 Certificate issuer: /CN=A912B75A/serialNumber=2B3D211FC9998DF2035E20D91AA55EDEC628F0A3 Certificate serial: 35 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Kz0hH8mZjfIDXiDZGqVe3sYo8KM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912B75A/1B22E1FE5B9A11EF82027640C4F9AE02/Kz0hH8mZjfIDXiDZGqVe3sYo8KM.mft Manifest number: 35 Signing time: Thu 21 Nov 2024 05:38:23 +0000 Manifest this update: Thu 21 Nov 2024 05:38:23 +0000 Manifest next update: Thu 28 Nov 2024 05:38:23 +0000 Files and hashes: 1: Kz0hH8mZjfIDXiDZGqVe3sYo8KM.crl (hash: xfuly0oOfnmwtuTcC8/WlvgktGt3IpioP5fNY5OG6yI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912B75A/1B22E1FE5B9A11EF82027640C4F9AE02/Kz0hH8mZjfIDXiDZGqVe3sYo8KM.crl rsync://rpki.apnic.net/member_repository/A912B75A/1B22E1FE5B9A11EF82027640C4F9AE02/Kz0hH8mZjfIDXiDZGqVe3sYo8KM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Kz0hH8mZjfIDXiDZGqVe3sYo8KM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 05:18:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 53 (0x35) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912B75A/serialNumber=2B3D211FC9998DF2035E20D91AA55EDEC628F0A3 Validity Not Before: Nov 21 05:38:23 2024 GMT Not After : Nov 28 05:38:23 2024 GMT Subject: CN=673ec74f-cb38 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:86:e4:e2:5b:dc:18:af:14:6c:94:62:85:4d: a5:cb:15:31:5d:b3:e9:ec:86:4d:7a:87:85:57:f9: 47:4c:9a:55:aa:88:d7:8e:78:58:73:24:87:11:ad: 2d:df:16:0f:70:65:fc:9d:04:c1:24:00:05:9e:f1: 71:d8:ef:5c:df:43:3c:e3:da:a1:8c:75:b4:f2:d7: 7b:5c:3a:b8:28:10:5c:d7:94:01:8c:df:9f:e6:b1: 0f:48:db:81:ff:0e:ce:77:e0:09:5c:85:42:d8:dd: 42:0a:1f:69:41:3f:5f:53:8e:f8:64:6f:dc:26:bb: 52:49:f8:1d:51:b2:73:33:c5:9c:3e:86:09:3d:2a: c9:37:d3:42:27:10:a7:b7:02:63:74:04:57:f5:56: a3:c0:b4:99:b6:d8:b6:9f:8c:89:92:d9:15:3e:8e: 1f:58:9a:fd:a9:f0:c5:04:96:d0:ed:99:02:8f:09: 26:4d:32:46:5d:ea:25:32:1d:df:f3:9e:98:71:68: 25:b5:80:97:ca:78:69:04:85:4c:5a:1f:e2:9b:73: 9f:56:ec:b3:96:08:a8:b9:67:26:15:ab:e3:b1:ed: d1:84:9f:ff:e1:fa:a2:f9:97:64:24:21:44:5c:7e: 63:3d:ef:49:93:a3:69:ad:e6:bf:fa:a5:0b:6c:f4: d6:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:96:6C:D1:C9:CA:D8:D1:11:E1:3D:C8:0B:2B:C7:75:A0:7A:3E:F9 X509v3 Authority Key Identifier: keyid:2B:3D:21:1F:C9:99:8D:F2:03:5E:20:D9:1A:A5:5E:DE:C6:28:F0:A3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912B75A/1B22E1FE5B9A11EF82027640C4F9AE02/Kz0hH8mZjfIDXiDZGqVe3sYo8KM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Kz0hH8mZjfIDXiDZGqVe3sYo8KM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912B75A/1B22E1FE5B9A11EF82027640C4F9AE02/Kz0hH8mZjfIDXiDZGqVe3sYo8KM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 25:4a:0c:bf:ba:44:60:73:78:7c:e4:f0:d0:ea:bb:4b:35:16: 01:5c:e7:72:a0:7e:fa:ba:c1:f8:41:ba:00:a8:7d:8f:2b:4d: e1:5a:46:03:87:d3:6f:53:08:70:b4:04:89:8a:28:1a:4b:4c: d0:4c:9a:61:d7:e0:fb:e1:e2:96:ff:98:be:26:29:11:22:da: 43:3e:c2:67:70:ad:5e:00:53:d5:5c:61:c3:3b:58:90:86:c2: f4:63:fd:73:ad:47:2d:62:2f:b6:7d:4e:39:2d:37:59:5a:96: 8f:6c:47:21:df:06:08:ab:01:b2:5e:2f:fd:6f:63:ff:b2:e9: 8e:a5:e3:de:45:b5:27:46:45:23:e0:9d:e4:b6:ab:f9:99:51: 7f:3e:54:97:c3:3d:3e:3e:a8:a5:90:f5:b8:27:7a:7a:ab:36: 3a:f9:da:46:26:39:b8:93:81:76:06:ca:ed:97:00:d9:e4:e1: 2d:ce:3d:be:7e:d4:f0:25:c5:cf:cd:64:4b:60:b7:46:05:7f: eb:a0:50:a0:65:38:bf:6a:b9:dd:35:92:1b:80:01:a3:74:06: a3:87:51:a5:73:9d:e4:01:df:86:8b:ad:99:a2:54:d4:f7:d7: 66:bd:f9:ea:66:27:46:db:33:e1:be:67:b1:75:d2:a9:ca:70: cc:73:f1:0e -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBNTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEy Qjc1QTExMC8GA1UEBRMoMkIzRDIxMUZDOTk5OERGMjAzNUUyMEQ5MUFBNTVFREVD NjI4RjBBMzAeFw0yNDExMjEwNTM4MjNaFw0yNDExMjgwNTM4MjNaMBgxFjAUBgNV BAMTDTY3M2VjNzRmLWNiMzgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDHhuTiW9wYrxRslGKFTaXLFTFds+nshk16h4VX+UdMmlWqiNeOeFhzJIcRrS3f Fg9wZfydBMEkAAWe8XHY71zfQzzj2qGMdbTy13tcOrgoEFzXlAGM35/msQ9I24H/ Ds534AlchULY3UIKH2lBP19Tjvhkb9wmu1JJ+B1RsnMzxZw+hgk9Ksk300InEKe3 AmN0BFf1VqPAtJm22LafjImS2RU+jh9Ymv2p8MUEltDtmQKPCSZNMkZd6iUyHd/z nphxaCW1gJfKeGkEhUxaH+Kbc59W7LOWCKi5ZyYVq+Ox7dGEn//h+qL5l2QkIURc fmM970mTo2mt5r/6pQts9NaHAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUAZZs0cnK 2NER4T3ICyvHdaB6PvkwHwYDVR0jBBgwFoAUKz0hH8mZjfIDXiDZGqVe3sYo8KMw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTJCNzVBLzFCMjJFMUZFNUI5 QTExRUY4MjAyNzY0MEM0RjlBRTAyL0t6MGhIOG1aamZJRFhpRFpHcVZlM3NZbzhL TS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvS3owaEg4bVpqZklEWGlEWkdxVmUzc1lvOEtNLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTJC NzVBLzFCMjJFMUZFNUI5QTExRUY4MjAyNzY0MEM0RjlBRTAyL0t6MGhIOG1aamZJ RFhpRFpHcVZlM3NZbzhLTS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBACVKDL+6RGBzeHzk8NDqu0s1FgFc53Kgfvq6wfhBugCofY8rTeFaRgOH 029TCHC0BImKKBpLTNBMmmHX4Pvh4pb/mL4mKREi2kM+wmdwrV4AU9VcYcM7WJCG wvRj/XOtRy1iL7Z9TjktN1lalo9sRyHfBgirAbJeL/1vY/+y6Y6l495FtSdGRSPg neS2q/mZUX8+VJfDPT4+qKWQ9bgnenqrNjr52kYmObiTgXYGyu2XANnk4S3OPb5+ 1PAlxc/NZEtgt0YFf+ugUKBlOL9qud01khuAAaN0BqOHUaVzneQB34aLrZmiVNT3 12a9+epmJ0bbM+G+Z7F10qnKcMxz8Q4= -----END CERTIFICATE-----Generated at Thu Nov 21 06:50:13 2024 by rpki-client on console-fra.rpki-client.org