$ rpki-client -vvf rpki.apnic.net/member_repository/A913F2BD/47844200389611EF9EDE8136C4F9AE02/l9BBWfuzfqZ0YriWl2wRQMlZ5pE.mft File: l9BBWfuzfqZ0YriWl2wRQMlZ5pE.mft (raw, json) Hash identifier: Zzf1SPkDVbf3+d/AszkRzH9G7EchMxhqc+YXzmhlyRw= Subject key identifier: D0:FA:1F:CA:48:1E:9C:0E:C2:95:73:B2:9A:DA:2D:E2:C8:D6:E4:59 Authority key identifier: 97:D0:41:59:FB:B3:7E:A6:74:62:B8:96:97:6C:11:40:C9:59:E6:91 Certificate issuer: /CN=A913F2BD/serialNumber=97D04159FBB37EA67462B896976C1140C959E691 Certificate serial: 4A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l9BBWfuzfqZ0YriWl2wRQMlZ5pE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913F2BD/47844200389611EF9EDE8136C4F9AE02/l9BBWfuzfqZ0YriWl2wRQMlZ5pE.mft Manifest number: 49 Signing time: Thu 21 Nov 2024 05:22:01 +0000 Manifest this update: Thu 21 Nov 2024 05:22:01 +0000 Manifest next update: Thu 28 Nov 2024 05:22:01 +0000 Files and hashes: 1: l9BBWfuzfqZ0YriWl2wRQMlZ5pE.crl (hash: WS6fZvy57/LV871igg9tOYJKqi1VHi/zLc4zvXklEwU=) 2: 470E849A389E11EF83D66176C4F9AE02.roa (hash: I6wYLUXo9wiy4AQAxb2ubHia3GZFxKPK++eH7JKRPwI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913F2BD/47844200389611EF9EDE8136C4F9AE02/l9BBWfuzfqZ0YriWl2wRQMlZ5pE.crl rsync://rpki.apnic.net/member_repository/A913F2BD/47844200389611EF9EDE8136C4F9AE02/l9BBWfuzfqZ0YriWl2wRQMlZ5pE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l9BBWfuzfqZ0YriWl2wRQMlZ5pE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 05:18:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 74 (0x4a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913F2BD/serialNumber=97D04159FBB37EA67462B896976C1140C959E691 Validity Not Before: Nov 21 05:22:01 2024 GMT Not After : Nov 28 05:22:01 2024 GMT Subject: CN=673ec379-e250 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f5:a6:6b:84:40:f0:d3:b6:2b:4b:7e:c8:67:1d: 09:f1:9f:73:91:d5:4e:a0:a1:b8:93:c4:49:1a:da: a0:8b:a1:c6:a4:94:72:b7:6b:6f:f9:70:aa:48:4f: 4d:6b:03:4d:fc:4f:17:52:9e:d5:80:e8:51:a2:af: 55:f9:ac:6a:ba:37:a7:b3:1f:3d:8a:df:e6:27:bf: 17:cc:54:32:93:f9:aa:38:0b:12:ad:32:18:eb:6d: a6:27:4f:8f:a5:1f:43:b6:b8:5c:cf:57:5b:c3:a1: cb:24:dd:55:5a:fc:81:0f:69:41:37:fe:68:89:62: 4e:1b:86:5d:49:ba:4e:e5:c6:e9:ef:0e:e2:e1:16: 42:62:12:24:f0:3d:2a:06:fd:ce:94:71:15:4f:ea: e2:57:e2:66:d0:cc:bb:cf:ef:13:6f:b8:69:6f:91: 87:0e:bd:68:1f:81:ec:8e:ec:24:86:38:db:fa:d5: 5c:a0:5d:5d:c9:7e:e8:dd:47:4a:5f:be:a7:d6:09: f5:83:c5:34:b7:81:21:c5:5b:eb:56:d2:51:df:83: fa:05:a0:88:3f:e9:c8:ce:f4:51:ab:66:8e:e2:5b: 0b:92:e1:c9:11:6f:9f:90:8c:bb:47:2f:df:4f:95: f7:53:c5:f5:65:0d:42:f7:6c:9b:ec:87:d3:82:a1: fe:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:FA:1F:CA:48:1E:9C:0E:C2:95:73:B2:9A:DA:2D:E2:C8:D6:E4:59 X509v3 Authority Key Identifier: keyid:97:D0:41:59:FB:B3:7E:A6:74:62:B8:96:97:6C:11:40:C9:59:E6:91 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913F2BD/47844200389611EF9EDE8136C4F9AE02/l9BBWfuzfqZ0YriWl2wRQMlZ5pE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l9BBWfuzfqZ0YriWl2wRQMlZ5pE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913F2BD/47844200389611EF9EDE8136C4F9AE02/l9BBWfuzfqZ0YriWl2wRQMlZ5pE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 94:05:a8:91:70:b0:48:6f:78:ab:53:4e:4e:71:2b:84:63:b9: 2f:ef:d3:2e:89:90:3f:cf:5e:28:53:37:4a:61:23:f7:cf:ba: 7f:63:43:9c:40:e6:1b:0a:1b:d7:98:8f:88:65:96:53:9a:46: 59:6d:a9:d0:96:bd:79:ee:55:5e:1a:60:ff:2b:c5:a2:a2:12: b6:23:84:a2:bc:b8:65:c7:43:04:95:d3:6f:8a:72:21:e7:33: 7d:ca:5e:32:78:22:87:dd:02:0d:bd:6c:82:14:71:62:93:93: a2:8b:64:62:04:c1:fc:48:9d:a8:c5:6b:d0:70:ee:d5:37:ac: 40:c8:af:78:4a:83:90:43:62:28:98:e0:08:fb:ff:4a:27:bd: bc:08:9d:5d:91:7d:63:ff:12:04:22:20:6b:31:6c:c2:ca:79: fb:12:10:5f:c1:b0:34:3f:08:53:cb:b4:91:e8:6c:4d:af:8f: 36:e1:26:2a:c1:11:1c:18:d6:31:04:fc:2c:ed:a0:34:9b:63: 8e:2d:af:f8:36:f4:43:b7:dd:56:86:bd:c9:b2:eb:2d:a8:c7: 73:5d:3c:02:d3:91:ab:fc:02:27:91:5d:b5:38:ea:33:0a:6e: 18:ac:8b:ce:06:f7:7d:e5:7c:44:c7:e1:7a:73:0f:65:7d:a9: 03:ca:2c:2e -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBSjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEz RjJCRDExMC8GA1UEBRMoOTdEMDQxNTlGQkIzN0VBNjc0NjJCODk2OTc2QzExNDBD OTU5RTY5MTAeFw0yNDExMjEwNTIyMDFaFw0yNDExMjgwNTIyMDFaMBgxFjAUBgNV BAMTDTY3M2VjMzc5LWUyNTAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQD1pmuEQPDTtitLfshnHQnxn3OR1U6gobiTxEka2qCLocaklHK3a2/5cKpIT01r A038TxdSntWA6FGir1X5rGq6N6ezHz2K3+YnvxfMVDKT+ao4CxKtMhjrbaYnT4+l H0O2uFzPV1vDocsk3VVa/IEPaUE3/miJYk4bhl1Juk7lxunvDuLhFkJiEiTwPSoG /c6UcRVP6uJX4mbQzLvP7xNvuGlvkYcOvWgfgeyO7CSGONv61VygXV3JfujdR0pf vqfWCfWDxTS3gSHFW+tW0lHfg/oFoIg/6cjO9FGrZo7iWwuS4ckRb5+QjLtHL99P lfdTxfVlDUL3bJvsh9OCof73AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU0Pofykge nA7ClXOymtot4sjW5FkwHwYDVR0jBBgwFoAUl9BBWfuzfqZ0YriWl2wRQMlZ5pEw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTNGMkJELzQ3ODQ0MjAwMzg5 NjExRUY5RURFODEzNkM0RjlBRTAyL2w5QkJXZnV6ZnFaMFlyaVdsMndSUU1sWjVw RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvbDlCQldmdXpmcVowWXJpV2wyd1JRTWxaNXBFLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTNG MkJELzQ3ODQ0MjAwMzg5NjExRUY5RURFODEzNkM0RjlBRTAyL2w5QkJXZnV6ZnFa MFlyaVdsMndSUU1sWjVwRS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAJQFqJFwsEhveKtTTk5xK4RjuS/v0y6JkD/PXihTN0phI/fPun9jQ5xA 5hsKG9eYj4hlllOaRlltqdCWvXnuVV4aYP8rxaKiErYjhKK8uGXHQwSV02+KciHn M33KXjJ4IofdAg29bIIUcWKTk6KLZGIEwfxInajFa9Bw7tU3rEDIr3hKg5BDYiiY 4Aj7/0onvbwInV2RfWP/EgQiIGsxbMLKefsSEF/BsDQ/CFPLtJHobE2vjzbhJirB ERwY1jEE/CztoDSbY44tr/g29EO33VaGvcmy6y2ox3NdPALTkav8AieRXbU46jMK bhisi84G933lfETH4XpzD2V9qQPKLC4= -----END CERTIFICATE-----Generated at Thu Nov 21 06:50:14 2024 by rpki-client on console-fra.rpki-client.org