$ rpki-client -vvf rpki.apnic.net/member_repository/A9140E40/E3611BD6D38B11E58392F54DC4F9AE02/K5TrpHjp0RKx5QoN4zDSrYWOHNA.mft File: K5TrpHjp0RKx5QoN4zDSrYWOHNA.mft (raw, json) Hash identifier: 079o+j+BY9E3srzROE1X8Edu2OkRP0DMhY3Q19Hs5Dg= Subject key identifier: B7:DD:BD:60:95:EB:3A:8B:42:BC:C4:3A:85:8E:9C:0A:CF:BF:01:CF Authority key identifier: 2B:94:EB:A4:78:E9:D1:12:B1:E5:0A:0D:E3:30:D2:AD:85:8E:1C:D0 Certificate issuer: /CN=A9140E40/serialNumber=2B94EBA478E9D112B1E50A0DE330D2AD858E1CD0 Certificate serial: 2138 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K5TrpHjp0RKx5QoN4zDSrYWOHNA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9140E40/E3611BD6D38B11E58392F54DC4F9AE02/K5TrpHjp0RKx5QoN4zDSrYWOHNA.mft Manifest number: 2138 Signing time: Fri 22 Nov 2024 15:54:28 +0000 Manifest this update: Fri 22 Nov 2024 15:54:27 +0000 Manifest next update: Fri 29 Nov 2024 15:54:27 +0000 Files and hashes: 1: K5TrpHjp0RKx5QoN4zDSrYWOHNA.crl (hash: lvS5QhFLisDdTfgimSUPYSK7yxitewNg3v5fL1kvKuA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9140E40/E3611BD6D38B11E58392F54DC4F9AE02/K5TrpHjp0RKx5QoN4zDSrYWOHNA.crl rsync://rpki.apnic.net/member_repository/A9140E40/E3611BD6D38B11E58392F54DC4F9AE02/K5TrpHjp0RKx5QoN4zDSrYWOHNA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K5TrpHjp0RKx5QoN4zDSrYWOHNA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 15:54:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8504 (0x2138) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9140E40/serialNumber=2B94EBA478E9D112B1E50A0DE330D2AD858E1CD0 Validity Not Before: Nov 22 15:54:27 2024 GMT Not After : Nov 29 15:54:27 2024 GMT Subject: CN=6740a933-49de Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:3c:fc:e4:c9:8e:89:47:b8:7a:c8:4b:01:b9: 5e:3c:9e:07:d5:31:c1:13:9d:56:51:b0:62:5a:e8: 02:af:67:70:39:fe:4e:d6:a4:5b:89:a8:dd:0c:e4: f7:2a:b6:7b:db:42:07:7c:f3:3d:5c:90:0a:95:70: 74:a1:6c:08:75:fe:fb:07:b6:57:e8:37:b2:45:9a: 9f:e7:65:07:27:52:ea:2b:ae:cb:6e:e9:18:b5:8f: b6:f5:1f:e9:76:9a:cd:0a:a2:ab:b9:df:95:dc:70: 3a:07:48:45:b2:9c:87:30:46:33:4d:53:2f:39:22: f7:d9:a5:c2:f6:10:7b:21:28:5e:78:b9:66:6e:a9: cd:ad:a3:77:04:4e:43:02:46:cd:6f:3e:3a:85:23: 19:80:1e:32:63:3a:27:26:16:62:ab:8a:71:62:b4: 97:6d:73:a6:6d:55:89:30:11:0e:8a:37:df:f2:af: e1:e1:a1:b8:57:bc:19:20:17:b8:7c:81:df:4b:fb: f9:27:b1:1e:38:09:67:15:c4:02:a8:a6:6f:fd:a1: 38:0d:4f:99:c0:d2:80:d7:ff:40:1c:db:19:ff:7a: 07:16:92:21:00:05:82:31:b7:00:f6:54:29:fb:ac: 4f:1e:ab:f2:23:d8:df:a3:03:c4:2b:43:da:89:59: bf:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:DD:BD:60:95:EB:3A:8B:42:BC:C4:3A:85:8E:9C:0A:CF:BF:01:CF X509v3 Authority Key Identifier: keyid:2B:94:EB:A4:78:E9:D1:12:B1:E5:0A:0D:E3:30:D2:AD:85:8E:1C:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9140E40/E3611BD6D38B11E58392F54DC4F9AE02/K5TrpHjp0RKx5QoN4zDSrYWOHNA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K5TrpHjp0RKx5QoN4zDSrYWOHNA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9140E40/E3611BD6D38B11E58392F54DC4F9AE02/K5TrpHjp0RKx5QoN4zDSrYWOHNA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption e2:a4:39:41:b8:3c:99:e2:6b:77:f2:31:69:24:88:57:58:af: a9:31:a7:e3:03:dc:ed:5a:31:7c:77:97:01:5f:eb:cc:8a:2d: 07:ab:59:e7:26:49:b4:ab:51:ef:3a:d5:a1:e9:cf:86:43:64: ad:07:41:58:ba:ec:f4:1e:fa:c2:f4:75:48:ea:7d:88:71:ac: c6:d9:c9:8a:c7:2b:a5:f1:ae:a0:6e:4c:05:42:2d:fb:c6:8f: e6:65:2e:bc:88:2f:20:0b:7a:50:83:bc:4c:67:1d:4e:1b:04: a3:c8:0c:ba:7d:6a:53:a9:b5:9d:2f:9b:31:f9:f3:c0:99:5a: 76:1a:61:ac:15:39:c8:01:08:b5:fc:6b:ac:c9:45:75:e1:35: 1c:a4:b6:29:ec:4b:71:a7:76:02:f6:fa:54:08:2c:d5:64:a9: 23:1e:ce:27:5f:d0:e5:68:67:af:e8:a7:e1:4e:db:54:84:e6: dd:c6:7a:c6:22:6f:c8:38:00:22:33:9c:9d:09:98:04:52:6a: 3a:b0:76:3e:ce:37:00:5f:ba:64:6e:e3:ea:b8:03:ec:cb:b3: 6a:ef:19:6e:38:bd:0f:f5:44:a1:d0:d9:b0:fc:2c:47:d7:e9: 48:c8:b2:51:fc:9e:dc:68:db:c5:6d:a6:74:87:01:82:22:91: 82:15:3f:d7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICITgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDBFNDAxMTAvBgNVBAUTKDJCOTRFQkE0NzhFOUQxMTJCMUU1MEEwREUzMzBEMkFE ODU4RTFDRDAwHhcNMjQxMTIyMTU1NDI3WhcNMjQxMTI5MTU1NDI3WjAYMRYwFAYD VQQDEw02NzQwYTkzMy00OWRlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1Tz85MmOiUe4eshLAblePJ4H1THBE51WUbBiWugCr2dwOf5O1qRbiajdDOT3 KrZ720IHfPM9XJAKlXB0oWwIdf77B7ZX6DeyRZqf52UHJ1LqK67LbukYtY+29R/p dprNCqKrud+V3HA6B0hFspyHMEYzTVMvOSL32aXC9hB7ISheeLlmbqnNraN3BE5D AkbNbz46hSMZgB4yYzonJhZiq4pxYrSXbXOmbVWJMBEOijff8q/h4aG4V7wZIBe4 fIHfS/v5J7EeOAlnFcQCqKZv/aE4DU+ZwNKA1/9AHNsZ/3oHFpIhAAWCMbcA9lQp +6xPHqvyI9jfowPEK0PaiVm/3wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLfdvWCV 6zqLQrzEOoWOnArPvwHPMB8GA1UdIwQYMBaAFCuU66R46dESseUKDeMw0q2FjhzQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MEU0MC9FMzYxMUJENkQz OEIxMUU1ODM5MkY1NERDNEY5QUUwMi9LNVRycEhqcDBSS3g1UW9ONHpEU3JZV09I TkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0s1VHJwSGpwMFJLeDVRb040ekRTcllXT0hOQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 MEU0MC9FMzYxMUJENkQzOEIxMUU1ODM5MkY1NERDNEY5QUUwMi9LNVRycEhqcDBS S3g1UW9ONHpEU3JZV09ITkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDipDlBuDyZ4mt38jFpJIhXWK+pMafjA9ztWjF8d5cBX+vMii0Hq1nn Jkm0q1HvOtWh6c+GQ2StB0FYuuz0HvrC9HVI6n2IcazG2cmKxyul8a6gbkwFQi37 xo/mZS68iC8gC3pQg7xMZx1OGwSjyAy6fWpTqbWdL5sx+fPAmVp2GmGsFTnIAQi1 /GusyUV14TUcpLYp7Etxp3YC9vpUCCzVZKkjHs4nX9DlaGev6KfhTttUhObdxnrG Im/IOAAiM5ydCZgEUmo6sHY+zjcAX7pkbuPquAPsy7Nq7xluOL0P9USh0Nmw/CxH 1+lIyLJR/J7caNvFbaZ0hwGCIpGCFT/X -----END CERTIFICATE-----Generated at Fri Nov 22 19:50:00 2024 by rpki-client on console-ams.rpki-client.org