$ rpki-client -vvf rpki.apnic.net/member_repository/A912F3B6/59C4AD4A48BA11EFBD45163DC4F9AE02/c0XTOFGViQaITYcWQKS-0shG0U4.mft File: c0XTOFGViQaITYcWQKS-0shG0U4.mft (raw, json) Hash identifier: g55ZxCZY7Sijz1TVQUE5mYrg/0BawGC325EkkPez0VI= Subject key identifier: AE:20:C5:33:A5:87:92:7F:83:B1:CD:9A:5F:09:1C:75:17:72:98:D8 Authority key identifier: 73:45:D3:38:51:95:89:06:88:4D:87:16:40:A4:BE:D2:C8:46:D1:4E Certificate issuer: /CN=A912F3B6/serialNumber=7345D33851958906884D871640A4BED2C846D14E Certificate serial: 42 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/c0XTOFGViQaITYcWQKS-0shG0U4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912F3B6/59C4AD4A48BA11EFBD45163DC4F9AE02/c0XTOFGViQaITYcWQKS-0shG0U4.mft Manifest number: 42 Signing time: Mon 25 Nov 2024 05:22:14 +0000 Manifest this update: Mon 25 Nov 2024 05:22:13 +0000 Manifest next update: Mon 02 Dec 2024 05:22:13 +0000 Files and hashes: 1: c0XTOFGViQaITYcWQKS-0shG0U4.crl (hash: IoesW5/vMWy89Ob7X/5YO1Lp8y9WamJooBmCsI0lNqo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912F3B6/59C4AD4A48BA11EFBD45163DC4F9AE02/c0XTOFGViQaITYcWQKS-0shG0U4.crl rsync://rpki.apnic.net/member_repository/A912F3B6/59C4AD4A48BA11EFBD45163DC4F9AE02/c0XTOFGViQaITYcWQKS-0shG0U4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/c0XTOFGViQaITYcWQKS-0shG0U4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 02 Dec 2024 04:55:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 66 (0x42) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912F3B6/serialNumber=7345D33851958906884D871640A4BED2C846D14E Validity Not Before: Nov 25 05:22:13 2024 GMT Not After : Dec 2 05:22:13 2024 GMT Subject: CN=67440985-0c42 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:ea:21:80:82:f4:e9:b9:2a:dd:97:c6:e9:28: dc:1f:2d:7c:e5:6a:e5:7d:07:36:73:b4:fe:0c:c6: 19:d6:2f:59:6f:33:51:24:be:ec:7c:b0:0e:31:f2: d5:a9:fe:49:ca:78:83:47:4c:b6:dd:6d:10:ca:5e: 79:4b:24:be:f4:bf:9b:b8:b5:2f:16:83:ba:af:30: e4:db:4e:6b:f9:45:4f:39:bb:f9:59:d6:17:b7:a4: aa:dd:0a:5a:3e:4e:1b:36:9e:fe:ba:83:30:b6:15: 97:a9:ea:ce:5b:46:45:0b:f3:ef:25:fc:a1:d9:2f: 72:b1:32:85:f9:5b:2f:4d:32:6d:7e:85:ff:69:9e: e3:36:b6:b9:90:b8:7c:5a:bc:7f:bd:43:8f:a3:03: 2a:35:74:0b:ce:42:ac:af:51:02:46:ea:af:f0:ad: 42:06:ee:40:96:c1:62:4d:90:e9:39:ba:0e:fe:59: 8e:e6:3a:3f:83:dd:72:6d:1d:ed:81:8a:c9:4c:0f: 24:b8:2c:2a:99:2a:0e:d5:95:c5:c2:32:66:92:ec: a1:69:78:9b:87:f1:de:90:ea:a9:68:79:d1:5a:10: d7:e0:e5:c0:4e:7a:90:7f:f5:3a:1a:65:09:05:57: db:84:cd:1b:e9:1b:bd:4d:1a:69:d6:9c:28:30:64: 97:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:20:C5:33:A5:87:92:7F:83:B1:CD:9A:5F:09:1C:75:17:72:98:D8 X509v3 Authority Key Identifier: keyid:73:45:D3:38:51:95:89:06:88:4D:87:16:40:A4:BE:D2:C8:46:D1:4E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912F3B6/59C4AD4A48BA11EFBD45163DC4F9AE02/c0XTOFGViQaITYcWQKS-0shG0U4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/c0XTOFGViQaITYcWQKS-0shG0U4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912F3B6/59C4AD4A48BA11EFBD45163DC4F9AE02/c0XTOFGViQaITYcWQKS-0shG0U4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 91:4f:9b:69:6d:b8:3f:ee:c2:33:dd:3e:34:b4:3a:1f:d3:6d: 3e:6a:cb:88:2d:d7:7c:15:89:b0:fa:33:c8:0e:cd:ca:15:f0: 24:3d:cd:24:f2:43:72:81:47:57:0b:fa:55:94:2c:54:c2:58: 2e:fb:f2:56:f4:4c:a7:e7:13:51:cc:ed:78:26:89:4b:8d:25: c6:cd:d8:11:16:61:6f:e3:18:4b:20:d0:4a:40:93:82:0a:c2: ae:b6:ac:90:cc:65:07:b8:10:61:cf:96:f8:2b:28:bb:67:5d: 51:3b:50:69:f5:cc:cf:b3:35:8e:85:d8:a8:f9:c8:d6:d3:da: 48:de:f8:8e:63:ae:f0:29:c2:5f:48:cc:1e:d1:d2:ac:4e:c7: 73:53:25:7d:c5:70:3d:6c:32:fc:93:bc:91:6b:42:c1:de:ac: 46:23:5d:0f:54:26:98:8f:8d:9f:98:ce:e3:a7:33:5f:08:52: 7b:53:f1:d0:00:37:cc:c8:24:18:56:84:76:2b:35:70:9b:16: ae:ce:1d:46:22:89:8c:8c:da:72:ed:69:b2:f9:b6:3d:1e:60: b3:dd:15:bd:2e:ee:ca:62:0f:50:08:d9:be:49:8c:d8:8d:8d: 97:34:a2:72:74:da:b6:d3:8e:27:5b:7d:6f:cb:96:4c:8a:d3: 41:2d:3c:e3 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBQjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEy RjNCNjExMC8GA1UEBRMoNzM0NUQzMzg1MTk1ODkwNjg4NEQ4NzE2NDBBNEJFRDJD ODQ2RDE0RTAeFw0yNDExMjUwNTIyMTNaFw0yNDEyMDIwNTIyMTNaMBgxFjAUBgNV BAMTDTY3NDQwOTg1LTBjNDIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDB6iGAgvTpuSrdl8bpKNwfLXzlauV9BzZztP4MxhnWL1lvM1Ekvux8sA4x8tWp /knKeINHTLbdbRDKXnlLJL70v5u4tS8Wg7qvMOTbTmv5RU85u/lZ1he3pKrdClo+ Ths2nv66gzC2FZep6s5bRkUL8+8l/KHZL3KxMoX5Wy9NMm1+hf9pnuM2trmQuHxa vH+9Q4+jAyo1dAvOQqyvUQJG6q/wrUIG7kCWwWJNkOk5ug7+WY7mOj+D3XJtHe2B islMDyS4LCqZKg7VlcXCMmaS7KFpeJuH8d6Q6qloedFaENfg5cBOepB/9ToaZQkF V9uEzRvpG71NGmnWnCgwZJeDAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUriDFM6WH kn+Dsc2aXwkcdRdymNgwHwYDVR0jBBgwFoAUc0XTOFGViQaITYcWQKS+0shG0U4w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTJGM0I2LzU5QzRBRDRBNDhC QTExRUZCRDQ1MTYzREM0RjlBRTAyL2MwWFRPRkdWaVFhSVRZY1dRS1MtMHNoRzBV NC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvYzBYVE9GR1ZpUWFJVFljV1FLUy0wc2hHMFU0LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTJG M0I2LzU5QzRBRDRBNDhCQTExRUZCRDQ1MTYzREM0RjlBRTAyL2MwWFRPRkdWaVFh SVRZY1dRS1MtMHNoRzBVNC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAJFPm2ltuD/uwjPdPjS0Oh/TbT5qy4gt13wVibD6M8gOzcoV8CQ9zSTy Q3KBR1cL+lWULFTCWC778lb0TKfnE1HM7XgmiUuNJcbN2BEWYW/jGEsg0EpAk4IK wq62rJDMZQe4EGHPlvgrKLtnXVE7UGn1zM+zNY6F2Kj5yNbT2kje+I5jrvApwl9I zB7R0qxOx3NTJX3FcD1sMvyTvJFrQsHerEYjXQ9UJpiPjZ+YzuOnM18IUntT8dAA N8zIJBhWhHYrNXCbFq7OHUYiiYyM2nLtabL5tj0eYLPdFb0u7spiD1AI2b5JjNiN jZc0onJ02rbTjidbfW/LlkyK00EtPOM= -----END CERTIFICATE-----Generated at Mon Nov 25 06:05:04 2024 by rpki-client on console-fra.rpki-client.org