$ rpki-client -vvf rpki.apnic.net/member_repository/A914D0E3/B35AB9FA8C7E11EF8E92E71BC4F9AE02/28byJW3eXCxGqA6yQy8lcu3FN9Y.mft File: 28byJW3eXCxGqA6yQy8lcu3FN9Y.mft (raw, json) Hash identifier: aApsFNXtCcrY3m+mKqPGsqvHdFQJTNNy95ow7nNnT5U= Subject key identifier: 18:75:FC:D2:10:3F:B6:98:75:EA:D5:7F:2F:48:6C:83:3A:CD:56:B7 Authority key identifier: DB:C6:F2:25:6D:DE:5C:2C:46:A8:0E:B2:43:2F:25:72:ED:C5:37:D6 Certificate issuer: /CN=A914D0E3/serialNumber=DBC6F2256DDE5C2C46A80EB2432F2572EDC537D6 Certificate serial: 05 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/28byJW3eXCxGqA6yQy8lcu3FN9Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914D0E3/B35AB9FA8C7E11EF8E92E71BC4F9AE02/28byJW3eXCxGqA6yQy8lcu3FN9Y.mft Manifest number: 05 Signing time: Wed 23 Oct 2024 06:53:14 +0000 Manifest this update: Wed 23 Oct 2024 06:53:14 +0000 Manifest next update: Wed 30 Oct 2024 06:53:14 +0000 Files and hashes: 1: 28byJW3eXCxGqA6yQy8lcu3FN9Y.crl (hash: T5VSp4OOPsdJOwHUUv5I3qKbCMLvjoJyV/WEa1pYL3w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914D0E3/B35AB9FA8C7E11EF8E92E71BC4F9AE02/28byJW3eXCxGqA6yQy8lcu3FN9Y.crl rsync://rpki.apnic.net/member_repository/A914D0E3/B35AB9FA8C7E11EF8E92E71BC4F9AE02/28byJW3eXCxGqA6yQy8lcu3FN9Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/28byJW3eXCxGqA6yQy8lcu3FN9Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 30 Oct 2024 05:54:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5 (0x5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914D0E3/serialNumber=DBC6F2256DDE5C2C46A80EB2432F2572EDC537D6 Validity Not Before: Oct 23 06:53:14 2024 GMT Not After : Oct 30 06:53:14 2024 GMT Subject: CN=67189d5a-baf9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:27:cc:0e:16:ff:b4:95:49:d8:13:a2:03:6d: ff:21:7a:66:18:e0:17:21:62:19:d4:7b:39:13:4a: d1:03:ff:53:46:24:80:8f:76:f5:e6:e4:0c:11:7f: 9f:84:16:f3:1d:73:02:6c:92:b2:f4:e9:e3:b9:48: e2:62:2f:86:0b:82:00:08:1f:24:36:13:1b:47:25: 50:2d:46:83:9e:9f:ba:07:63:ad:8c:e1:ee:28:cc: 99:9f:d0:55:f2:a2:b1:93:30:e2:8b:99:dd:60:f7: 4a:26:01:8d:a1:0a:04:a3:cc:8f:76:c3:dc:4b:ff: 62:e7:81:f5:72:92:cb:f7:39:e0:12:71:76:85:48: e6:bc:62:2d:92:45:8c:88:bf:d0:be:48:3e:63:d7: f7:81:64:e6:35:14:36:1f:81:c2:82:68:c5:df:c2: af:9f:b9:53:42:c9:69:68:1e:7b:d8:fb:a8:72:8a: 18:85:4e:1b:d6:32:53:0f:03:62:b2:21:d1:98:36: e3:a0:0e:d2:99:3b:0b:25:79:ff:e0:5a:e2:3e:5e: 14:4f:fb:f1:f1:f6:83:e3:e1:cc:40:f2:70:05:1f: f0:73:ec:96:ea:59:ab:93:1f:86:95:06:9f:27:43: 8a:25:01:ee:24:8d:50:46:47:3b:f7:4d:22:5a:f6: 7a:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:75:FC:D2:10:3F:B6:98:75:EA:D5:7F:2F:48:6C:83:3A:CD:56:B7 X509v3 Authority Key Identifier: keyid:DB:C6:F2:25:6D:DE:5C:2C:46:A8:0E:B2:43:2F:25:72:ED:C5:37:D6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914D0E3/B35AB9FA8C7E11EF8E92E71BC4F9AE02/28byJW3eXCxGqA6yQy8lcu3FN9Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/28byJW3eXCxGqA6yQy8lcu3FN9Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914D0E3/B35AB9FA8C7E11EF8E92E71BC4F9AE02/28byJW3eXCxGqA6yQy8lcu3FN9Y.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption af:45:ab:88:fa:5d:98:d6:8d:9d:ae:4a:16:60:aa:6f:d1:fa: f6:7b:b5:2e:05:0a:f9:41:a5:00:52:2c:11:40:b6:be:93:02: a2:0b:aa:20:73:dd:b7:61:3e:22:0b:48:ed:af:d3:08:1b:23: 79:14:a8:f5:ef:23:b2:e9:2b:47:03:47:62:af:64:e3:09:9a: dd:b0:92:a2:2d:8e:ae:11:9f:c6:87:65:b1:43:9e:fb:58:77: c2:31:03:02:4e:7c:c2:5e:c9:11:21:d0:a4:d1:b0:b8:47:2f: de:8a:cd:b0:18:0f:6d:4e:65:1b:5c:7d:93:bd:7a:5d:dc:ab: fc:6c:da:ad:91:50:6a:04:8c:ef:30:68:99:80:7a:e5:de:0d: 8c:41:0f:8f:38:28:9a:4a:54:8a:d9:3d:5b:c4:c8:86:6e:d0: 42:13:58:23:6f:69:66:94:3d:92:38:fa:00:4c:0f:56:83:5a: a4:45:78:b4:0a:60:5a:42:b8:fe:0f:d5:d6:37:4a:79:0c:e5: cf:ed:be:11:85:e0:f7:28:ca:d7:77:0a:0f:76:9c:a9:a3:18: 91:92:1c:60:cd:41:e0:a7:a9:3d:62:06:36:02:da:c8:90:83: 06:73:15:73:8d:41:12:42:79:9d:a5:e3:bc:2f:82:d7:09:36: af:76:d2:69 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBBTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0 RDBFMzExMC8GA1UEBRMoREJDNkYyMjU2RERFNUMyQzQ2QTgwRUIyNDMyRjI1NzJF REM1MzdENjAeFw0yNDEwMjMwNjUzMTRaFw0yNDEwMzAwNjUzMTRaMBgxFjAUBgNV BAMTDTY3MTg5ZDVhLWJhZjkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDCJ8wOFv+0lUnYE6IDbf8hemYY4BchYhnUezkTStED/1NGJICPdvXm5AwRf5+E FvMdcwJskrL06eO5SOJiL4YLggAIHyQ2ExtHJVAtRoOen7oHY62M4e4ozJmf0FXy orGTMOKLmd1g90omAY2hCgSjzI92w9xL/2LngfVyksv3OeAScXaFSOa8Yi2SRYyI v9C+SD5j1/eBZOY1FDYfgcKCaMXfwq+fuVNCyWloHnvY+6hyihiFThvWMlMPA2Ky IdGYNuOgDtKZOwslef/gWuI+XhRP+/Hx9oPj4cxA8nAFH/Bz7JbqWauTH4aVBp8n Q4olAe4kjVBGRzv3TSJa9nqDAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUGHX80hA/ tph16tV/L0hsgzrNVrcwHwYDVR0jBBgwFoAU28byJW3eXCxGqA6yQy8lcu3FN9Yw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTREMEUzL0IzNUFCOUZBOEM3 RTExRUY4RTkyRTcxQkM0RjlBRTAyLzI4YnlKVzNlWEN4R3FBNnlReThsY3UzRk45 WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvMjhieUpXM2VYQ3hHcUE2eVF5OGxjdTNGTjlZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTRE MEUzL0IzNUFCOUZBOEM3RTExRUY4RTkyRTcxQkM0RjlBRTAyLzI4YnlKVzNlWEN4 R3FBNnlReThsY3UzRk45WS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAK9Fq4j6XZjWjZ2uShZgqm/R+vZ7tS4FCvlBpQBSLBFAtr6TAqILqiBz 3bdhPiILSO2v0wgbI3kUqPXvI7LpK0cDR2KvZOMJmt2wkqItjq4Rn8aHZbFDnvtY d8IxAwJOfMJeyREh0KTRsLhHL96KzbAYD21OZRtcfZO9el3cq/xs2q2RUGoEjO8w aJmAeuXeDYxBD484KJpKVIrZPVvEyIZu0EITWCNvaWaUPZI4+gBMD1aDWqRFeLQK YFpCuP4P1dY3SnkM5c/tvhGF4Pcoytd3Cg92nKmjGJGSHGDNQeCnqT1iBjYC2siQ gwZzFXONQRJCeZ2l47wvgtcJNq920mk= -----END CERTIFICATE-----Generated at Wed Oct 23 07:45:53 2024 by rpki-client on console-ams.rpki-client.org