$ rpki-client -vvf rpki.apnic.net/member_repository/A913F2E2/C5B6B936440411EFB9A62C0DC4F9AE02/ISYbiXSYk8OzGEG5b-P7YyMDLxg.mft File: ISYbiXSYk8OzGEG5b-P7YyMDLxg.mft (raw, json) Hash identifier: fMrYxxsY4ckgTp5LH1AOO+zhV/a/YxgB5/aImZnADfQ= Subject key identifier: 0F:5D:7C:31:8B:7C:61:21:9F:52:B3:9B:00:0C:70:68:FD:A2:C9:B3 Authority key identifier: 21:26:1B:89:74:98:93:C3:B3:18:41:B9:6F:E3:FB:63:23:03:2F:18 Certificate issuer: /CN=A913F2E2/serialNumber=21261B89749893C3B31841B96FE3FB6323032F18 Certificate serial: 47 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ISYbiXSYk8OzGEG5b-P7YyMDLxg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913F2E2/C5B6B936440411EFB9A62C0DC4F9AE02/ISYbiXSYk8OzGEG5b-P7YyMDLxg.mft Manifest number: 46 Signing time: Sat 23 Nov 2024 05:20:22 +0000 Manifest this update: Sat 23 Nov 2024 05:20:22 +0000 Manifest next update: Sat 30 Nov 2024 05:20:22 +0000 Files and hashes: 1: ISYbiXSYk8OzGEG5b-P7YyMDLxg.crl (hash: Dv2aGGmkrDRslD3RIT7g9+iGAQZy9N6qMm9OkYKJrXE=) 2: A8051CC4508011EF81053074C4F9AE02.roa (hash: KDME76LGlQ6SZ/HJc0igxu2MnypBi5lr/MXedI9Hydk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913F2E2/C5B6B936440411EFB9A62C0DC4F9AE02/ISYbiXSYk8OzGEG5b-P7YyMDLxg.crl rsync://rpki.apnic.net/member_repository/A913F2E2/C5B6B936440411EFB9A62C0DC4F9AE02/ISYbiXSYk8OzGEG5b-P7YyMDLxg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ISYbiXSYk8OzGEG5b-P7YyMDLxg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 71 (0x47) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913F2E2/serialNumber=21261B89749893C3B31841B96FE3FB6323032F18 Validity Not Before: Nov 23 05:20:22 2024 GMT Not After : Nov 30 05:20:22 2024 GMT Subject: CN=67416616-1a52 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:cf:60:a4:5f:30:b1:e3:15:ae:44:bb:2b:7b: 82:d2:04:15:ff:06:9a:12:6e:f4:bb:72:04:30:c6: 67:24:54:27:ce:b4:ac:2f:12:5c:7a:69:ef:f9:2d: 01:07:ca:d0:e8:8c:35:7d:82:b3:4e:3d:bb:2b:7b: 2e:0a:a4:85:0d:9d:9d:73:54:c8:fa:a9:4d:4f:8b: 56:7a:36:f0:69:bc:cd:78:89:8e:e8:37:8b:e7:db: 8c:32:e0:83:45:a0:1a:0e:ff:18:be:cc:66:14:48: 67:2c:d7:fb:b0:9d:7f:e1:f0:df:16:c2:23:78:ca: a5:a9:18:92:d6:1a:d7:f2:4a:07:81:77:01:ab:0f: 79:82:9f:70:1a:a7:9b:dc:c0:70:ae:3d:15:a0:63: 16:b0:f7:13:68:a9:87:14:11:50:54:c1:f3:bb:b7: 65:00:79:db:5a:49:e3:20:bc:58:15:03:a6:3b:4f: 9a:d0:96:50:7e:87:0a:af:c1:0b:82:a8:a0:f0:ca: 1f:c5:41:ee:e3:30:3a:bf:2a:30:d1:d4:b3:46:df: 09:96:e4:bb:4a:8f:04:85:5c:14:6d:b6:85:c0:1e: 38:cd:eb:69:df:65:7d:b8:8c:85:7d:f3:f9:b4:4b: ba:58:6c:78:8b:ed:1e:d6:2b:9c:98:e2:4c:fd:c7: 6b:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:5D:7C:31:8B:7C:61:21:9F:52:B3:9B:00:0C:70:68:FD:A2:C9:B3 X509v3 Authority Key Identifier: keyid:21:26:1B:89:74:98:93:C3:B3:18:41:B9:6F:E3:FB:63:23:03:2F:18 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913F2E2/C5B6B936440411EFB9A62C0DC4F9AE02/ISYbiXSYk8OzGEG5b-P7YyMDLxg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ISYbiXSYk8OzGEG5b-P7YyMDLxg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913F2E2/C5B6B936440411EFB9A62C0DC4F9AE02/ISYbiXSYk8OzGEG5b-P7YyMDLxg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7e:13:07:2b:eb:72:1c:a9:97:df:62:f6:60:22:23:7f:00:38: 11:2e:2c:da:a8:66:3f:03:bc:df:0b:6f:0e:36:3f:57:84:0e: e6:ff:17:e7:56:0f:7c:5e:c1:81:3d:70:8f:f1:6d:0c:e3:33: 96:5c:e8:c7:31:a7:dd:de:a0:74:6c:d0:81:a3:a9:ab:1d:e6: a4:b6:d7:5a:cb:d0:40:e5:d7:40:54:ea:88:7b:64:76:19:0e: 02:f0:9e:e7:1d:60:83:a2:cb:25:b1:da:82:7b:fd:d3:49:a1: 69:23:f7:f0:b4:71:43:45:64:5f:27:13:ad:0e:62:62:1d:fe: 2a:a8:b1:cb:15:7a:c2:38:64:7e:5b:05:e9:c7:b0:ab:03:ac: b8:dc:53:30:81:72:a4:4b:26:35:15:df:95:0b:f4:e5:35:b1: 0d:48:3d:b1:f6:2a:d5:3d:93:9b:dd:d2:0d:30:db:e0:f4:33: 07:b5:0e:fc:c7:ce:24:c3:98:d1:da:51:50:3c:c4:88:e6:15: 6a:a8:82:30:6d:75:c4:f0:ee:dc:12:09:9c:3c:35:e5:14:33: 5a:d0:c9:01:1e:95:88:51:6c:92:1d:4e:20:0f:6d:ff:42:b3: 14:45:21:a3:b9:84:08:18:bb:d2:50:2c:ff:fb:32:6e:c8:e5: 65:3a:39:6e -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBRzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEz RjJFMjExMC8GA1UEBRMoMjEyNjFCODk3NDk4OTNDM0IzMTg0MUI5NkZFM0ZCNjMy MzAzMkYxODAeFw0yNDExMjMwNTIwMjJaFw0yNDExMzAwNTIwMjJaMBgxFjAUBgNV BAMTDTY3NDE2NjE2LTFhNTIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDDz2CkXzCx4xWuRLsre4LSBBX/BpoSbvS7cgQwxmckVCfOtKwvElx6ae/5LQEH ytDojDV9grNOPbsrey4KpIUNnZ1zVMj6qU1Pi1Z6NvBpvM14iY7oN4vn24wy4INF oBoO/xi+zGYUSGcs1/uwnX/h8N8WwiN4yqWpGJLWGtfySgeBdwGrD3mCn3Aap5vc wHCuPRWgYxaw9xNoqYcUEVBUwfO7t2UAedtaSeMgvFgVA6Y7T5rQllB+hwqvwQuC qKDwyh/FQe7jMDq/KjDR1LNG3wmW5LtKjwSFXBRttoXAHjjN62nfZX24jIV98/m0 S7pYbHiL7R7WK5yY4kz9x2tvAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUD118MYt8 YSGfUrObAAxwaP2iybMwHwYDVR0jBBgwFoAUISYbiXSYk8OzGEG5b+P7YyMDLxgw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTNGMkUyL0M1QjZCOTM2NDQw NDExRUZCOUE2MkMwREM0RjlBRTAyL0lTWWJpWFNZazhPekdFRzViLVA3WXlNREx4 Zy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvSVNZYmlYU1lrOE96R0VHNWItUDdZeU1ETHhnLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTNG MkUyL0M1QjZCOTM2NDQwNDExRUZCOUE2MkMwREM0RjlBRTAyL0lTWWJpWFNZazhP ekdFRzViLVA3WXlNREx4Zy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAH4TByvrchypl99i9mAiI38AOBEuLNqoZj8DvN8Lbw42P1eEDub/F+dW D3xewYE9cI/xbQzjM5Zc6Mcxp93eoHRs0IGjqasd5qS211rL0EDl10BU6oh7ZHYZ DgLwnucdYIOiyyWx2oJ7/dNJoWkj9/C0cUNFZF8nE60OYmId/iqoscsVesI4ZH5b BenHsKsDrLjcUzCBcqRLJjUV35UL9OU1sQ1IPbH2KtU9k5vd0g0w2+D0Mwe1DvzH ziTDmNHaUVA8xIjmFWqogjBtdcTw7twSCZw8NeUUM1rQyQEelYhRbJIdTiAPbf9C sxRFIaO5hAgYu9JQLP/7Mm7I5WU6OW4= -----END CERTIFICATE-----Generated at Sat Nov 23 06:21:24 2024 by rpki-client on console-fra.rpki-client.org