$ rpki-client -vvf rpki.apnic.net/member_repository/A913E03C/B6E0F4AA1D9A11E28921298808B02CD2/0Iw24m8k-51RTztAqON6mgS1gCU.mft File: 0Iw24m8k-51RTztAqON6mgS1gCU.mft (raw, json) Hash identifier: RLNz9V6ELLyCZ7yDRzzJgfFbAhyWTEi0UmIAbGas+bQ= Subject key identifier: 2D:B1:5E:2A:CE:9B:A9:5F:74:74:DC:AD:78:B3:4F:AF:75:50:B5:95 Authority key identifier: D0:8C:36:E2:6F:24:FB:9D:51:4F:3B:40:A8:E3:7A:9A:04:B5:80:25 Certificate issuer: /CN=A913E03C/serialNumber=D08C36E26F24FB9D514F3B40A8E37A9A04B58025 Certificate serial: 3421 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0Iw24m8k-51RTztAqON6mgS1gCU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913E03C/B6E0F4AA1D9A11E28921298808B02CD2/0Iw24m8k-51RTztAqON6mgS1gCU.mft Manifest number: 3421 Signing time: Fri 22 Nov 2024 14:57:22 +0000 Manifest this update: Fri 22 Nov 2024 14:57:21 +0000 Manifest next update: Fri 29 Nov 2024 14:57:21 +0000 Files and hashes: 1: 0Iw24m8k-51RTztAqON6mgS1gCU.crl (hash: dpQUupU9+DWbbBTkdzya4phg478HjVcBrA6uqU73YUU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913E03C/B6E0F4AA1D9A11E28921298808B02CD2/0Iw24m8k-51RTztAqON6mgS1gCU.crl rsync://rpki.apnic.net/member_repository/A913E03C/B6E0F4AA1D9A11E28921298808B02CD2/0Iw24m8k-51RTztAqON6mgS1gCU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0Iw24m8k-51RTztAqON6mgS1gCU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 14:57:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13345 (0x3421) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913E03C/serialNumber=D08C36E26F24FB9D514F3B40A8E37A9A04B58025 Validity Not Before: Nov 22 14:57:21 2024 GMT Not After : Nov 29 14:57:21 2024 GMT Subject: CN=67409bd1-b44d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:d0:b7:68:7c:7a:da:32:70:58:73:46:fd:ff: 39:96:da:5a:f1:6d:6a:05:03:de:00:1b:11:ea:8d: d8:65:d5:ff:6e:7f:e7:c8:fc:33:7f:62:62:c2:7f: 03:67:5a:69:c9:b9:bb:ad:44:af:53:a6:96:54:20: 1b:6a:10:a0:33:dd:ac:2b:e5:8c:5e:88:43:19:9d: c5:99:12:8b:30:b1:1b:3a:43:67:f9:7c:2f:8a:8d: d8:00:e3:14:de:48:90:7c:2f:44:cd:60:43:99:18: 20:4c:e7:2f:a3:35:e0:a9:8a:65:1e:69:46:75:0c: bd:d8:23:03:79:68:48:63:cd:fa:f6:03:44:1e:3a: d4:3f:5f:1a:0f:13:13:60:bc:3e:48:1f:e1:99:01: 99:a3:29:57:99:8f:17:09:69:88:4a:4b:ae:6b:8d: 34:a0:f5:ba:c3:e0:b5:41:ed:88:ae:f7:f4:ae:f0: 13:30:fb:ca:eb:2f:9b:06:d5:38:92:21:0d:46:a1: ff:f4:c7:61:ca:8f:4b:b0:13:59:7a:95:9e:d1:34: c1:30:76:37:46:ae:cf:d1:79:38:66:41:5c:7e:12: dd:48:d4:d1:fa:e3:aa:0a:e5:b6:02:01:e1:15:a6: 59:32:68:39:07:ff:3f:7c:29:6c:31:b6:bd:4a:49: bb:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:B1:5E:2A:CE:9B:A9:5F:74:74:DC:AD:78:B3:4F:AF:75:50:B5:95 X509v3 Authority Key Identifier: keyid:D0:8C:36:E2:6F:24:FB:9D:51:4F:3B:40:A8:E3:7A:9A:04:B5:80:25 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913E03C/B6E0F4AA1D9A11E28921298808B02CD2/0Iw24m8k-51RTztAqON6mgS1gCU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0Iw24m8k-51RTztAqON6mgS1gCU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913E03C/B6E0F4AA1D9A11E28921298808B02CD2/0Iw24m8k-51RTztAqON6mgS1gCU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1e:0e:90:f9:7e:e0:26:f1:f0:c1:8b:0d:fc:11:b9:25:9a:17: c4:37:09:ae:ee:6e:6e:68:ba:36:71:4a:0a:5f:74:1c:f9:f0: bf:e5:b4:fc:09:cb:27:53:2b:f3:a2:c4:27:18:1e:c4:30:e1: 3f:ab:c9:75:3f:23:63:10:18:50:4d:00:64:7e:49:6b:a8:47: 13:a1:f7:82:78:9d:34:d3:de:28:e2:34:60:bb:3a:e0:42:e9: 3e:5e:da:21:ca:7d:be:b2:5e:c3:b5:1c:fa:60:b0:45:5f:d5: 9b:d6:40:86:8f:57:70:a3:39:70:f6:31:77:91:0b:da:95:0d: 1a:e2:f1:fd:b6:de:dc:1e:4b:d0:81:7f:e7:98:7d:c4:20:b8: 97:60:1b:91:aa:4c:1e:03:eb:fa:65:19:06:20:79:2e:3f:ef: 1f:c4:d8:93:3a:90:c8:1d:9f:25:00:aa:2b:32:a0:fa:9c:e0: 76:02:11:82:7b:97:bb:a5:f2:97:42:e5:6f:6f:4f:70:b9:78: 28:c7:ed:d5:f8:fa:a6:75:66:4b:20:1d:e5:dd:3e:4d:bb:2f: 03:b6:95:53:d7:2b:10:0b:7d:2c:9d:34:17:1a:b4:c2:5f:6f: 6e:a0:9a:ec:8e:14:61:a9:cd:72:d9:5c:29:38:1a:8f:c1:65: 17:52:2b:96 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNCEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0UwM0MxMTAvBgNVBAUTKEQwOEMzNkUyNkYyNEZCOUQ1MTRGM0I0MEE4RTM3QTlB MDRCNTgwMjUwHhcNMjQxMTIyMTQ1NzIxWhcNMjQxMTI5MTQ1NzIxWjAYMRYwFAYD VQQDEw02NzQwOWJkMS1iNDRkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqtC3aHx62jJwWHNG/f85ltpa8W1qBQPeABsR6o3YZdX/bn/nyPwzf2Jiwn8D Z1ppybm7rUSvU6aWVCAbahCgM92sK+WMXohDGZ3FmRKLMLEbOkNn+Xwvio3YAOMU 3kiQfC9EzWBDmRggTOcvozXgqYplHmlGdQy92CMDeWhIY8369gNEHjrUP18aDxMT YLw+SB/hmQGZoylXmY8XCWmISkuua400oPW6w+C1Qe2Irvf0rvATMPvK6y+bBtU4 kiENRqH/9Mdhyo9LsBNZepWe0TTBMHY3Rq7P0Xk4ZkFcfhLdSNTR+uOqCuW2AgHh FaZZMmg5B/8/fClsMba9Skm74QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFC2xXirO m6lfdHTcrXizT691ULWVMB8GA1UdIwQYMBaAFNCMNuJvJPudUU87QKjjepoEtYAl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzRTAzQy9CNkUwRjRBQTFE OUExMUUyODkyMTI5ODgwOEIwMkNEMi8wSXcyNG04ay01MVJUenRBcU9ONm1nUzFn Q1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBJdzI0bThrLTUxUlR6dEFxT042bWdTMWdDVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz RTAzQy9CNkUwRjRBQTFEOUExMUUyODkyMTI5ODgwOEIwMkNEMi8wSXcyNG04ay01 MVJUenRBcU9ONm1nUzFnQ1UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAeDpD5fuAm8fDBiw38EbklmhfENwmu7m5uaLo2cUoKX3Qc+fC/5bT8 CcsnUyvzosQnGB7EMOE/q8l1PyNjEBhQTQBkfklrqEcTofeCeJ00094o4jRguzrg Quk+Xtohyn2+sl7DtRz6YLBFX9Wb1kCGj1dwozlw9jF3kQvalQ0a4vH9tt7cHkvQ gX/nmH3EILiXYBuRqkweA+v6ZRkGIHkuP+8fxNiTOpDIHZ8lAKorMqD6nOB2AhGC e5e7pfKXQuVvb09wuXgox+3V+PqmdWZLIB3l3T5Nuy8DtpVT1ysQC30snTQXGrTC X29uoJrsjhRhqc1y2VwpOBqPwWUXUiuW -----END CERTIFICATE-----Generated at Fri Nov 22 17:55:41 2024 by rpki-client on console-fra.rpki-client.org