$ rpki-client -vvf rpki.apnic.net/member_repository/A913C91D/D90CD874358411E99A990228C4F9AE02/ctZbs8rUoJjzb0E3WUzH_sL6KKM.mft File: ctZbs8rUoJjzb0E3WUzH_sL6KKM.mft (raw, json) Hash identifier: 9gQYjZ0G+wjSCgQg8fNb11jiTX+J0d7WCyBnOSYdlyQ= Subject key identifier: F5:58:65:A3:D8:29:5E:E9:1E:9D:D5:E2:37:D7:C1:D3:81:1D:14:D9 Authority key identifier: 72:D6:5B:B3:CA:D4:A0:98:F3:6F:41:37:59:4C:C7:FE:C2:FA:28:A3 Certificate issuer: /CN=A913C91D/serialNumber=72D65BB3CAD4A098F36F4137594CC7FEC2FA28A3 Certificate serial: 1011 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ctZbs8rUoJjzb0E3WUzH_sL6KKM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913C91D/D90CD874358411E99A990228C4F9AE02/ctZbs8rUoJjzb0E3WUzH_sL6KKM.mft Manifest number: 1008 Signing time: Fri 22 Nov 2024 17:25:06 +0000 Manifest this update: Fri 22 Nov 2024 17:25:05 +0000 Manifest next update: Fri 29 Nov 2024 17:25:05 +0000 Files and hashes: 1: ctZbs8rUoJjzb0E3WUzH_sL6KKM.crl (hash: 1c3sm/4c4I0cpuC9UC0FFYp1rxCavSGEUW3r9NGDQDQ=) 2: 39C6EF3688BF11EABC04973FC4F9AE02.roa (hash: E3ZTe2bEAycjBIVFstyPiPS8lw3hN6h/g285ab56Ew4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913C91D/D90CD874358411E99A990228C4F9AE02/ctZbs8rUoJjzb0E3WUzH_sL6KKM.crl rsync://rpki.apnic.net/member_repository/A913C91D/D90CD874358411E99A990228C4F9AE02/ctZbs8rUoJjzb0E3WUzH_sL6KKM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ctZbs8rUoJjzb0E3WUzH_sL6KKM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 17:25:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4113 (0x1011) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913C91D/serialNumber=72D65BB3CAD4A098F36F4137594CC7FEC2FA28A3 Validity Not Before: Nov 22 17:25:05 2024 GMT Not After : Nov 29 17:25:05 2024 GMT Subject: CN=6740be71-d66f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:71:f8:31:2e:6c:2b:96:38:b6:d8:7e:ee:79: 61:a0:fa:91:15:a9:de:d2:94:62:4a:6f:3f:7e:01: 1c:b4:b4:be:6e:6d:48:f8:1b:9b:3e:01:45:32:4a: 8f:b6:a9:61:b4:2f:28:50:94:8e:b1:4a:dd:ab:f6: 2a:7f:72:86:cb:c0:1a:4f:1a:ca:bf:b7:34:bd:b0: 4e:35:ac:79:10:14:4d:32:78:3d:9f:f7:11:26:69: f4:a4:72:ad:a2:e1:72:e4:87:a0:6e:b7:90:11:8c: d3:e9:83:f5:b1:d6:bf:fb:28:45:3b:53:d6:b1:23: e7:94:e2:33:3d:0c:3a:77:22:6a:52:a5:6e:36:f9: 09:99:fb:a7:75:2f:77:52:c1:54:09:fd:8f:e9:ed: 73:c9:9f:d8:69:90:01:ba:eb:80:73:e2:ed:8f:22: 19:27:9d:39:ea:00:e6:b4:44:de:0e:1c:8d:7a:84: a5:1a:14:7a:95:55:45:56:45:8e:e9:f9:11:ca:fe: cf:a6:10:c6:43:61:1f:06:6e:04:99:3d:a4:32:b5: e2:d9:66:04:79:cc:f8:b9:dd:4e:b2:23:5c:13:56: ae:b9:79:90:a1:da:3c:d5:96:8e:2d:8c:cb:24:b8: 17:da:eb:a9:55:ee:8c:a5:8e:ce:17:16:56:b1:df: e6:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:58:65:A3:D8:29:5E:E9:1E:9D:D5:E2:37:D7:C1:D3:81:1D:14:D9 X509v3 Authority Key Identifier: keyid:72:D6:5B:B3:CA:D4:A0:98:F3:6F:41:37:59:4C:C7:FE:C2:FA:28:A3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913C91D/D90CD874358411E99A990228C4F9AE02/ctZbs8rUoJjzb0E3WUzH_sL6KKM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ctZbs8rUoJjzb0E3WUzH_sL6KKM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913C91D/D90CD874358411E99A990228C4F9AE02/ctZbs8rUoJjzb0E3WUzH_sL6KKM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 10:d8:d4:d1:ce:8c:61:7e:c8:e6:b8:b2:98:4f:a7:5f:db:3b: 2e:60:72:b7:66:27:7c:06:b6:17:d2:9b:c0:a2:d2:23:29:28: 6b:fe:21:2d:ab:9b:0d:be:67:8c:05:b4:98:bf:d3:fd:82:e2: ed:54:8d:62:b6:d4:0b:dd:86:60:5e:e8:b5:6a:5e:86:c7:d7: 7e:60:1e:7f:8e:09:cc:0b:17:21:56:ce:ac:aa:30:54:9c:72: 4d:45:8a:e4:cb:6a:03:46:ca:1f:d8:88:e0:62:5b:69:5c:a3: 15:4e:75:52:f0:8d:9e:12:8a:c3:e4:ea:8f:ad:aa:9d:a9:74: c8:eb:f3:e8:9c:9c:3b:a0:35:e5:71:dd:fa:6d:6e:31:a9:0e: 83:00:34:15:0b:19:76:23:be:87:cf:a3:d7:de:c6:b7:a6:b1: 72:63:36:aa:d9:af:d0:e1:ab:df:3e:2d:bc:63:47:cd:51:35: 23:28:86:89:33:64:34:12:41:ad:83:c8:05:ee:ca:92:89:a3: d5:41:bc:7b:ba:b8:5c:a4:df:29:70:3d:d2:70:a7:1a:b7:43: f7:ec:3c:c3:91:05:aa:a6:e1:51:c7:aa:0d:01:86:49:cc:06: e3:37:b1:f4:b5:a1:df:6f:93:90:1b:94:2e:1a:71:46:56:c3: b6:bc:17:8a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEBEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0M5MUQxMTAvBgNVBAUTKDcyRDY1QkIzQ0FENEEwOThGMzZGNDEzNzU5NENDN0ZF QzJGQTI4QTMwHhcNMjQxMTIyMTcyNTA1WhcNMjQxMTI5MTcyNTA1WjAYMRYwFAYD VQQDEw02NzQwYmU3MS1kNjZmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxXH4MS5sK5Y4tth+7nlhoPqRFane0pRiSm8/fgEctLS+bm1I+BubPgFFMkqP tqlhtC8oUJSOsUrdq/Yqf3KGy8AaTxrKv7c0vbBONax5EBRNMng9n/cRJmn0pHKt ouFy5IegbreQEYzT6YP1sda/+yhFO1PWsSPnlOIzPQw6dyJqUqVuNvkJmfundS93 UsFUCf2P6e1zyZ/YaZABuuuAc+LtjyIZJ5056gDmtETeDhyNeoSlGhR6lVVFVkWO 6fkRyv7PphDGQ2EfBm4EmT2kMrXi2WYEecz4ud1OsiNcE1auuXmQodo81ZaOLYzL JLgX2uupVe6MpY7OFxZWsd/mmQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPVYZaPY KV7pHp3V4jfXwdOBHRTZMB8GA1UdIwQYMBaAFHLWW7PK1KCY829BN1lMx/7C+iij MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQzkxRC9EOTBDRDg3NDM1 ODQxMUU5OUE5OTAyMjhDNEY5QUUwMi9jdFpiczhyVW9KanpiMEUzV1V6SF9zTDZL S00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2N0WmJzOHJVb0pqemIwRTNXVXpIX3NMNktLTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz QzkxRC9EOTBDRDg3NDM1ODQxMUU5OUE5OTAyMjhDNEY5QUUwMi9jdFpiczhyVW9K anpiMEUzV1V6SF9zTDZLS00ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAQ2NTRzoxhfsjmuLKYT6df2zsuYHK3Zid8BrYX0pvAotIjKShr/iEt q5sNvmeMBbSYv9P9guLtVI1ittQL3YZgXui1al6Gx9d+YB5/jgnMCxchVs6sqjBU nHJNRYrky2oDRsof2IjgYltpXKMVTnVS8I2eEorD5OqPraqdqXTI6/PonJw7oDXl cd36bW4xqQ6DADQVCxl2I76Hz6PX3sa3prFyYzaq2a/Q4avfPi28Y0fNUTUjKIaJ M2Q0EkGtg8gF7sqSiaPVQbx7urhcpN8pcD3ScKcat0P37DzDkQWqpuFRx6oNAYZJ zAbjN7H0taHfb5OQG5QuGnFGVsO2vBeK -----END CERTIFICATE-----Generated at Fri Nov 22 19:44:57 2024 by rpki-client on console-fra.rpki-client.org