$ rpki-client -vvf rpki.apnic.net/member_repository/A913A5BD/54EEF5141CF711EDA00FD343C4F9AE02/mgZOprZttN4gyTzAQbhaFwbIBnI.mft File: mgZOprZttN4gyTzAQbhaFwbIBnI.mft (raw, json) Hash identifier: Rw+dVykCRoVGqeWYx28QZFrT/u3Tgl80SPECYpDfJYM= Subject key identifier: 32:EF:B0:2D:CB:1C:75:6E:8C:1D:66:7F:2A:F5:95:4F:E4:EA:8B:39 Authority key identifier: 9A:06:4E:A6:B6:6D:B4:DE:20:C9:3C:C0:41:B8:5A:17:06:C8:06:72 Certificate issuer: /CN=A913A5BD/serialNumber=9A064EA6B66DB4DE20C93CC041B85A1706C80672 Certificate serial: 01F3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mgZOprZttN4gyTzAQbhaFwbIBnI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913A5BD/54EEF5141CF711EDA00FD343C4F9AE02/mgZOprZttN4gyTzAQbhaFwbIBnI.mft Manifest number: 01EF Signing time: Thu 21 Nov 2024 01:39:59 +0000 Manifest this update: Thu 21 Nov 2024 01:39:58 +0000 Manifest next update: Thu 28 Nov 2024 01:39:58 +0000 Files and hashes: 1: mgZOprZttN4gyTzAQbhaFwbIBnI.crl (hash: Kan5V8ZSFrn/kbtvS7WmoteUXLPC6VlwTaqr5733aCg=) 2: C6B3DBFE1CF911EDBAE62F45C4F9AE02.roa (hash: KNUSUG9icP8Pvhz1F1p7tJVMNn5LFGkVNJkPaQqPTVA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913A5BD/54EEF5141CF711EDA00FD343C4F9AE02/mgZOprZttN4gyTzAQbhaFwbIBnI.crl rsync://rpki.apnic.net/member_repository/A913A5BD/54EEF5141CF711EDA00FD343C4F9AE02/mgZOprZttN4gyTzAQbhaFwbIBnI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mgZOprZttN4gyTzAQbhaFwbIBnI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:33:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 499 (0x1f3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913A5BD/serialNumber=9A064EA6B66DB4DE20C93CC041B85A1706C80672 Validity Not Before: Nov 21 01:39:58 2024 GMT Not After : Nov 28 01:39:58 2024 GMT Subject: CN=673e8f6f-c450 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:86:bb:d5:9b:be:a4:fe:68:b6:fe:11:b9:d7: 0d:b0:59:5e:50:af:4c:45:26:4d:e2:4d:8e:95:0d: 4e:d6:ef:c7:08:ae:4d:63:45:95:8a:ad:62:44:1d: 99:dd:4c:10:51:03:4b:30:8d:5f:a5:da:fa:9d:11: ee:5d:c6:22:f2:1d:5c:be:a1:ce:9a:f2:b3:09:6e: c5:eb:9b:38:c9:ac:d5:17:b7:0b:a7:20:fa:d0:03: d9:a2:34:61:10:16:de:88:33:8e:51:ac:60:43:35: cc:d0:b6:f7:95:97:5e:3d:6b:84:e4:5c:d0:55:e3: ba:91:ba:0f:88:3a:cd:b9:27:07:5a:c3:7e:ef:f6: 01:d6:1d:e7:02:53:47:9f:1f:b4:c4:61:77:33:8c: e8:5c:30:6a:5c:40:35:15:2d:d0:e8:92:b1:4d:1f: b8:ad:b8:37:9f:af:c8:9f:6d:c1:77:0c:1d:66:5f: 9a:94:ab:e0:e2:02:d7:83:44:3d:3d:c2:b5:8d:54: 30:7d:ab:46:15:45:89:43:40:01:26:1e:6f:fe:bd: 43:bc:78:9b:32:61:65:2b:76:55:3c:0a:4b:9f:09: e4:06:10:a8:e3:e4:34:67:b6:7a:37:cf:02:0c:15: d6:1c:f7:2a:98:5d:a0:21:69:b5:cc:3b:16:51:fc: fe:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:EF:B0:2D:CB:1C:75:6E:8C:1D:66:7F:2A:F5:95:4F:E4:EA:8B:39 X509v3 Authority Key Identifier: keyid:9A:06:4E:A6:B6:6D:B4:DE:20:C9:3C:C0:41:B8:5A:17:06:C8:06:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913A5BD/54EEF5141CF711EDA00FD343C4F9AE02/mgZOprZttN4gyTzAQbhaFwbIBnI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mgZOprZttN4gyTzAQbhaFwbIBnI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913A5BD/54EEF5141CF711EDA00FD343C4F9AE02/mgZOprZttN4gyTzAQbhaFwbIBnI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4a:bc:96:bb:9a:f3:b2:c0:c0:40:3f:c7:11:4f:e4:9a:df:38: 0c:89:1f:40:63:22:f3:db:82:61:09:ff:2c:91:e3:35:ea:ca: 86:89:da:2f:83:c9:4d:07:92:4b:8f:b4:31:4d:7e:6d:a4:07: 5d:7d:82:39:44:80:d2:52:2b:8e:21:e9:f9:50:a0:31:6e:5f: d6:9c:5c:6e:b7:6e:ad:e2:d5:39:8a:d3:c0:6f:d1:80:21:98: 37:fd:3b:01:6a:da:95:70:ed:c6:61:d1:1e:42:f2:e5:8e:84: 28:5e:c1:bc:e5:ba:d0:88:1a:c4:5e:22:c8:7b:51:c8:df:57: 8c:a7:6c:f9:c3:3d:73:a7:50:93:6b:c4:5f:9a:da:d6:94:8c: e4:58:3a:ea:62:c2:4e:b9:57:ec:b8:a0:82:8e:7c:15:cb:13: 39:74:f9:18:9f:db:03:a5:6c:5a:3a:e7:50:3c:94:ac:f2:4d: d9:b1:32:70:98:59:78:dd:b7:91:b4:2e:02:15:ba:5f:e3:58: 16:04:1e:15:15:01:ae:4d:f5:5d:81:1a:0b:68:82:de:e0:f2: 17:3d:b0:05:1e:a0:bd:61:11:66:7a:55:29:51:80:59:83:a5: b1:db:6d:7f:1e:a5:30:43:b7:bb:1c:f7:50:e4:81:b3:f5:d3: 92:ba:d5:fb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAfMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0E1QkQxMTAvBgNVBAUTKDlBMDY0RUE2QjY2REI0REUyMEM5M0NDMDQxQjg1QTE3 MDZDODA2NzIwHhcNMjQxMTIxMDEzOTU4WhcNMjQxMTI4MDEzOTU4WjAYMRYwFAYD VQQDEw02NzNlOGY2Zi1jNDUwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1oa71Zu+pP5otv4RudcNsFleUK9MRSZN4k2OlQ1O1u/HCK5NY0WViq1iRB2Z 3UwQUQNLMI1fpdr6nRHuXcYi8h1cvqHOmvKzCW7F65s4yazVF7cLpyD60APZojRh EBbeiDOOUaxgQzXM0Lb3lZdePWuE5FzQVeO6kboPiDrNuScHWsN+7/YB1h3nAlNH nx+0xGF3M4zoXDBqXEA1FS3Q6JKxTR+4rbg3n6/In23BdwwdZl+alKvg4gLXg0Q9 PcK1jVQwfatGFUWJQ0ABJh5v/r1DvHibMmFlK3ZVPApLnwnkBhCo4+Q0Z7Z6N88C DBXWHPcqmF2gIWm1zDsWUfz+0QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDLvsC3L HHVujB1mfyr1lU/k6os5MB8GA1UdIwQYMBaAFJoGTqa2bbTeIMk8wEG4WhcGyAZy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQTVCRC81NEVFRjUxNDFD RjcxMUVEQTAwRkQzNDNDNEY5QUUwMi9tZ1pPcHJadHRONGd5VHpBUWJoYUZ3YklC bkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL21nWk9wclp0dE40Z3lUekFRYmhhRndiSUJuSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz QTVCRC81NEVFRjUxNDFDRjcxMUVEQTAwRkQzNDNDNEY5QUUwMi9tZ1pPcHJadHRO NGd5VHpBUWJoYUZ3YklCbkkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBKvJa7mvOywMBAP8cRT+Sa3zgMiR9AYyLz24JhCf8skeM16sqGidov g8lNB5JLj7QxTX5tpAddfYI5RIDSUiuOIen5UKAxbl/WnFxut26t4tU5itPAb9GA IZg3/TsBatqVcO3GYdEeQvLljoQoXsG85brQiBrEXiLIe1HI31eMp2z5wz1zp1CT a8RfmtrWlIzkWDrqYsJOuVfsuKCCjnwVyxM5dPkYn9sDpWxaOudQPJSs8k3ZsTJw mFl43beRtC4CFbpf41gWBB4VFQGuTfVdgRoLaILe4PIXPbAFHqC9YRFmelUpUYBZ g6Wx221/HqUwQ7e7HPdQ5IGz9dOSutX7 -----END CERTIFICATE-----Generated at Thu Nov 21 03:11:53 2024 by rpki-client on console-fra.rpki-client.org