$ rpki-client -vvf rpki.apnic.net/member_repository/A9131711/A950DFDAC99111EE891BA419C4F9AE02/8a29DnE5HfIQ3jRh52V4tHoBYko.mft File: 8a29DnE5HfIQ3jRh52V4tHoBYko.mft (raw, json) Hash identifier: xx85/NNti61nZa4c0s+URVw1xLlZOq1A5B/ch4JIf3g= Subject key identifier: 46:4C:54:45:CE:F4:99:C0:0D:FD:6D:07:27:A6:51:B6:FE:F6:6C:4F Authority key identifier: F1:AD:BD:0E:71:39:1D:F2:10:DE:34:61:E7:65:78:B4:7A:01:62:4A Certificate issuer: /CN=A9131711/serialNumber=F1ADBD0E71391DF210DE3461E76578B47A01624A Certificate serial: 92 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8a29DnE5HfIQ3jRh52V4tHoBYko.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9131711/A950DFDAC99111EE891BA419C4F9AE02/8a29DnE5HfIQ3jRh52V4tHoBYko.mft Manifest number: 92 Signing time: Mon 25 Nov 2024 04:25:34 +0000 Manifest this update: Mon 25 Nov 2024 04:25:33 +0000 Manifest next update: Mon 02 Dec 2024 04:25:33 +0000 Files and hashes: 1: 8a29DnE5HfIQ3jRh52V4tHoBYko.crl (hash: b5GhL2AGeLyIE6CXn967L9I9HEb8oc+4h9qp1B1KSXk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9131711/A950DFDAC99111EE891BA419C4F9AE02/8a29DnE5HfIQ3jRh52V4tHoBYko.crl rsync://rpki.apnic.net/member_repository/A9131711/A950DFDAC99111EE891BA419C4F9AE02/8a29DnE5HfIQ3jRh52V4tHoBYko.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8a29DnE5HfIQ3jRh52V4tHoBYko.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 02 Dec 2024 04:25:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 146 (0x92) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9131711/serialNumber=F1ADBD0E71391DF210DE3461E76578B47A01624A Validity Not Before: Nov 25 04:25:33 2024 GMT Not After : Dec 2 04:25:33 2024 GMT Subject: CN=6743fc3d-c0f5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:16:6a:16:13:85:f1:ba:76:1e:c8:00:57:0d: 79:85:21:81:ff:63:97:55:8d:39:7f:67:e1:9c:5f: 1f:fc:0c:95:27:f4:ee:b3:2b:6c:fc:41:b3:46:fc: 85:61:6c:51:29:2f:98:5e:d4:40:87:c9:12:8c:6d: 00:f5:61:14:2e:9b:14:ea:f7:a0:4b:62:88:54:ca: f4:7f:36:14:94:da:6e:86:72:5b:c5:72:08:9c:19: fa:27:0c:a7:53:a6:e7:e8:a3:52:64:0d:f2:f5:bd: be:0b:ea:3f:18:fe:64:e8:a4:54:40:cf:d0:75:8c: 21:51:d8:65:f5:5e:81:ef:7a:5c:74:43:00:f8:69: b4:b1:cf:f1:25:08:c4:45:da:3e:10:33:2d:28:34: b1:0b:1d:1a:12:4d:71:82:f4:b6:0f:d7:ac:f8:0f: d3:56:c2:e1:0d:72:22:7e:8d:cc:58:c2:9f:cf:56: fa:d9:93:55:5e:c5:2c:03:de:9f:ce:d1:58:56:de: ff:bc:eb:d7:40:c1:2c:cf:10:30:5f:d8:60:a4:2f: b0:5f:8c:fd:9c:5c:a9:f4:1e:0b:ea:6b:58:a6:76: 0a:e3:63:49:5c:8f:90:df:bd:46:5d:7d:dc:ec:8f: 25:df:4d:37:73:b6:f2:30:d1:9e:e8:57:64:51:be: 47:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:4C:54:45:CE:F4:99:C0:0D:FD:6D:07:27:A6:51:B6:FE:F6:6C:4F X509v3 Authority Key Identifier: keyid:F1:AD:BD:0E:71:39:1D:F2:10:DE:34:61:E7:65:78:B4:7A:01:62:4A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9131711/A950DFDAC99111EE891BA419C4F9AE02/8a29DnE5HfIQ3jRh52V4tHoBYko.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8a29DnE5HfIQ3jRh52V4tHoBYko.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9131711/A950DFDAC99111EE891BA419C4F9AE02/8a29DnE5HfIQ3jRh52V4tHoBYko.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a6:2a:89:61:52:04:40:0e:95:7f:d2:ab:45:ca:bd:9c:15:1b: 60:6a:8f:68:81:6a:07:c4:c4:63:41:5e:3e:1b:2a:fd:29:90: 43:fd:2d:a4:51:40:6a:46:72:4a:91:fb:2e:06:5f:71:6e:83: 28:95:f5:e2:4e:62:e9:9d:80:77:17:b4:77:fa:70:d3:66:a4: b7:1a:06:c2:23:02:21:c0:2d:75:cd:9a:19:f8:3a:94:af:fd: 94:76:93:86:a7:a7:50:c0:ce:6c:d1:99:a6:88:9e:a1:72:b9: 09:d5:d6:a4:ae:c2:53:ba:08:3a:50:8e:b2:40:5c:56:3b:24: 68:61:b4:33:8f:44:39:2c:41:2b:71:50:e7:fd:ca:0b:e7:7e: 62:1b:9d:ec:7f:17:a0:1c:a5:f2:53:4c:81:47:88:39:bf:78: cd:c1:aa:14:3b:cb:dc:11:0a:0a:a5:37:21:9e:07:c5:6c:45: 20:10:3d:40:29:47:f6:99:5e:7f:7f:79:43:27:18:6e:6f:03: ce:c3:86:4d:5b:ba:46:4d:b5:f6:dd:b0:7e:1c:a6:e0:1c:f7: 93:ca:6a:c3:d3:d8:77:cc:93:66:d4:88:30:6c:03:cb:9a:e6: 39:09:90:f6:dc:40:ac:ce:ff:a0:45:2b:ad:da:3c:29:36:fd: b7:3a:f9:87 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzE3MTExMTAvBgNVBAUTKEYxQURCRDBFNzEzOTFERjIxMERFMzQ2MUU3NjU3OEI0 N0EwMTYyNEEwHhcNMjQxMTI1MDQyNTMzWhcNMjQxMjAyMDQyNTMzWjAYMRYwFAYD VQQDEw02NzQzZmMzZC1jMGY1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxBZqFhOF8bp2HsgAVw15hSGB/2OXVY05f2fhnF8f/AyVJ/Tusyts/EGzRvyF YWxRKS+YXtRAh8kSjG0A9WEULpsU6vegS2KIVMr0fzYUlNpuhnJbxXIInBn6Jwyn U6bn6KNSZA3y9b2+C+o/GP5k6KRUQM/QdYwhUdhl9V6B73pcdEMA+Gm0sc/xJQjE Rdo+EDMtKDSxCx0aEk1xgvS2D9es+A/TVsLhDXIifo3MWMKfz1b62ZNVXsUsA96f ztFYVt7/vOvXQMEszxAwX9hgpC+wX4z9nFyp9B4L6mtYpnYK42NJXI+Q371GXX3c 7I8l3003c7byMNGe6FdkUb5HowIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEZMVEXO 9JnADf1tByemUbb+9mxPMB8GA1UdIwQYMBaAFPGtvQ5xOR3yEN40YedleLR6AWJK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMTcxMS9BOTUwREZEQUM5 OTExMUVFODkxQkE0MTlDNEY5QUUwMi84YTI5RG5FNUhmSVEzalJoNTJWNHRIb0JZ a28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzhhMjlEbkU1SGZJUTNqUmg1MlY0dEhvQllrby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MTcxMS9BOTUwREZEQUM5OTExMUVFODkxQkE0MTlDNEY5QUUwMi84YTI5RG5FNUhm SVEzalJoNTJWNHRIb0JZa28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCmKolhUgRADpV/0qtFyr2cFRtgao9ogWoHxMRjQV4+Gyr9KZBD/S2k UUBqRnJKkfsuBl9xboMolfXiTmLpnYB3F7R3+nDTZqS3GgbCIwIhwC11zZoZ+DqU r/2UdpOGp6dQwM5s0ZmmiJ6hcrkJ1dakrsJTugg6UI6yQFxWOyRoYbQzj0Q5LEEr cVDn/coL535iG53sfxegHKXyU0yBR4g5v3jNwaoUO8vcEQoKpTchngfFbEUgED1A KUf2mV5/f3lDJxhubwPOw4ZNW7pGTbX23bB+HKbgHPeTymrD09h3zJNm1IgwbAPL muY5CZD23ECszv+gRSut2jwpNv23OvmH -----END CERTIFICATE-----Generated at Mon Nov 25 06:04:09 2024 by rpki-client on console-ams.rpki-client.org