$ rpki-client -vvf rpki.apnic.net/member_repository/A913A748/AACD13A842B111EF92E56578C4F9AE02/sgBZBkA-medoWaqrsdy92uRCBvY.mft File: sgBZBkA-medoWaqrsdy92uRCBvY.mft (raw, json) Hash identifier: RH7PNBS9g3AKjK0XNsEH0p2XSPkxwHUDcZajeJqye1U= Subject key identifier: B1:AD:DD:4A:4F:DC:8E:72:63:6D:B5:E8:BE:44:6B:2D:26:FA:63:B6 Authority key identifier: B2:00:59:06:40:3E:99:E7:68:59:AA:AB:B1:DC:BD:DA:E4:42:06:F6 Certificate issuer: /CN=A913A748/serialNumber=B2005906403E99E76859AAABB1DCBDDAE44206F6 Certificate serial: 44 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sgBZBkA-medoWaqrsdy92uRCBvY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913A748/AACD13A842B111EF92E56578C4F9AE02/sgBZBkA-medoWaqrsdy92uRCBvY.mft Manifest number: 43 Signing time: Thu 21 Nov 2024 05:26:49 +0000 Manifest this update: Thu 21 Nov 2024 05:26:49 +0000 Manifest next update: Thu 28 Nov 2024 05:26:49 +0000 Files and hashes: 1: sgBZBkA-medoWaqrsdy92uRCBvY.crl (hash: yXu/Rv+S9jq5h/WYUcPDATrBOqPQWlMWThWBpcgkoyU=) 2: 0B7CF64642B211EF82734679C4F9AE02.roa (hash: SLWE2DPVkEquMfz8hHroSU4zXY18AR0tkk1tXcWxdMg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913A748/AACD13A842B111EF92E56578C4F9AE02/sgBZBkA-medoWaqrsdy92uRCBvY.crl rsync://rpki.apnic.net/member_repository/A913A748/AACD13A842B111EF92E56578C4F9AE02/sgBZBkA-medoWaqrsdy92uRCBvY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sgBZBkA-medoWaqrsdy92uRCBvY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 05:18:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 68 (0x44) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913A748/serialNumber=B2005906403E99E76859AAABB1DCBDDAE44206F6 Validity Not Before: Nov 21 05:26:49 2024 GMT Not After : Nov 28 05:26:49 2024 GMT Subject: CN=673ec499-3271 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:f3:64:42:39:45:47:c9:d2:91:eb:f8:14:ed: b5:dc:14:ec:c1:e8:43:4d:35:2c:fd:02:22:d0:51: 65:f3:81:8a:6f:3b:6e:b2:de:10:89:c7:86:2d:5b: e7:9f:6c:c8:f8:1e:6b:7a:b9:5a:ee:45:f1:00:79: ce:d0:2c:26:fa:9b:97:16:e5:14:fe:d2:6c:ef:71: d1:8c:fb:31:42:f3:6e:ee:27:60:b2:48:ed:b4:83: 54:0a:a7:c0:ad:d7:d6:38:8f:98:3c:ad:4f:8e:23: 54:52:fa:61:b8:28:4f:82:70:27:7f:e2:bf:7f:bc: c4:ce:48:3a:37:14:60:f4:1b:94:13:56:51:fe:88: cd:be:89:ff:68:c4:27:70:72:22:fa:02:ce:90:f1: e2:9c:a8:aa:c2:23:a1:7a:f9:fe:68:83:89:1c:b9: fd:e2:5a:e4:92:ab:a7:81:bb:46:02:c2:a4:ef:6a: 89:59:06:a2:47:d2:81:3e:54:08:c0:5d:a3:e6:65: 35:db:32:72:27:97:8c:d5:47:5a:33:c0:45:c0:20: c7:7b:34:2d:4c:9d:0b:15:be:df:c1:1b:06:c3:e2: 67:aa:5d:6c:01:f0:ae:29:9c:6b:8f:2b:21:e6:fe: 58:42:78:2a:40:9d:dd:f0:08:ce:ea:71:2d:38:d1: ea:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:AD:DD:4A:4F:DC:8E:72:63:6D:B5:E8:BE:44:6B:2D:26:FA:63:B6 X509v3 Authority Key Identifier: keyid:B2:00:59:06:40:3E:99:E7:68:59:AA:AB:B1:DC:BD:DA:E4:42:06:F6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913A748/AACD13A842B111EF92E56578C4F9AE02/sgBZBkA-medoWaqrsdy92uRCBvY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sgBZBkA-medoWaqrsdy92uRCBvY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913A748/AACD13A842B111EF92E56578C4F9AE02/sgBZBkA-medoWaqrsdy92uRCBvY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7d:01:40:32:64:31:57:85:2c:f6:1a:0f:89:d9:92:82:d5:ae: 06:01:8a:3f:4d:17:dd:50:71:f3:4d:e4:c5:df:cf:d7:53:f8: 25:c6:b9:5b:2f:da:5f:b8:9f:89:1b:0d:40:65:8c:c0:8c:82: dc:2f:e8:31:90:cd:51:e4:56:8f:74:20:13:03:58:23:89:5a: 13:cd:2e:a4:80:fc:4f:e4:9d:1d:19:fc:2e:9d:16:99:bf:f0: d9:df:fe:85:44:61:0e:f7:dd:6c:7e:c3:b9:92:24:ce:b4:71: 9d:16:a6:63:b2:8f:1b:82:06:46:3f:1e:b4:b8:fc:82:00:ef: ed:2d:b6:7b:da:f3:b6:fa:eb:2f:c1:98:66:dd:b9:41:a3:46: 99:c3:73:f9:12:8c:9a:cb:5f:eb:db:1f:3f:8c:b7:55:df:36: d6:4c:5f:83:79:ba:e9:08:ac:03:68:35:05:29:6e:50:7c:4f: 94:14:ed:68:08:52:2d:d1:d1:b5:13:b7:a4:15:2d:14:0e:ea: a9:2c:ac:53:b8:25:f8:49:ab:a4:0d:4e:4e:84:1a:88:52:2a: d8:de:70:fc:7d:f8:78:d5:e5:b4:2a:65:31:a5:56:a0:70:96: 7e:ec:ac:d4:2f:1f:6a:77:95:c9:84:c4:cd:3d:ce:a8:8d:4d: 9b:41:41:b5 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBRDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEz QTc0ODExMC8GA1UEBRMoQjIwMDU5MDY0MDNFOTlFNzY4NTlBQUFCQjFEQ0JEREFF NDQyMDZGNjAeFw0yNDExMjEwNTI2NDlaFw0yNDExMjgwNTI2NDlaMBgxFjAUBgNV BAMTDTY3M2VjNDk5LTMyNzEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCy82RCOUVHydKR6/gU7bXcFOzB6ENNNSz9AiLQUWXzgYpvO26y3hCJx4YtW+ef bMj4Hmt6uVruRfEAec7QLCb6m5cW5RT+0mzvcdGM+zFC827uJ2CySO20g1QKp8Ct 19Y4j5g8rU+OI1RS+mG4KE+CcCd/4r9/vMTOSDo3FGD0G5QTVlH+iM2+if9oxCdw ciL6As6Q8eKcqKrCI6F6+f5og4kcuf3iWuSSq6eBu0YCwqTvaolZBqJH0oE+VAjA XaPmZTXbMnInl4zVR1ozwEXAIMd7NC1MnQsVvt/BGwbD4meqXWwB8K4pnGuPKyHm /lhCeCpAnd3wCM7qcS040epJAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUsa3dSk/c jnJjbbXovkRrLSb6Y7YwHwYDVR0jBBgwFoAUsgBZBkA+medoWaqrsdy92uRCBvYw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTNBNzQ4L0FBQ0QxM0E4NDJC MTExRUY5MkU1NjU3OEM0RjlBRTAyL3NnQlpCa0EtbWVkb1dhcXJzZHk5MnVSQ0J2 WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvc2dCWkJrQS1tZWRvV2FxcnNkeTkydVJDQnZZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTNB NzQ4L0FBQ0QxM0E4NDJCMTExRUY5MkU1NjU3OEM0RjlBRTAyL3NnQlpCa0EtbWVk b1dhcXJzZHk5MnVSQ0J2WS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAH0BQDJkMVeFLPYaD4nZkoLVrgYBij9NF91QcfNN5MXfz9dT+CXGuVsv 2l+4n4kbDUBljMCMgtwv6DGQzVHkVo90IBMDWCOJWhPNLqSA/E/knR0Z/C6dFpm/ 8Nnf/oVEYQ733Wx+w7mSJM60cZ0WpmOyjxuCBkY/HrS4/IIA7+0ttnva87b66y/B mGbduUGjRpnDc/kSjJrLX+vbHz+Mt1XfNtZMX4N5uukIrANoNQUpblB8T5QU7WgI Ui3R0bUTt6QVLRQO6qksrFO4JfhJq6QNTk6EGohSKtjecPx9+HjV5bQqZTGlVqBw ln7srNQvH2p3lcmExM09zqiNTZtBQbU= -----END CERTIFICATE-----Generated at Thu Nov 21 06:50:14 2024 by rpki-client on console-fra.rpki-client.org