$ rpki-client -vvf rpki.apnic.net/member_repository/A914F3BA/FF20EBDC013D11EBA000126BC4F9AE02/5GI8_UQ-YjLybCPoH9-XWLJvOyw.mft File: 5GI8_UQ-YjLybCPoH9-XWLJvOyw.mft (raw, json) Hash identifier: EpeIqEu+V2p8JepLAuTGkXa1sTbBQvm3l8mLcdt4j4w= Subject key identifier: D6:D0:49:50:EE:54:55:42:61:72:F9:3A:28:81:8F:E7:08:0C:90:3B Authority key identifier: E4:62:3C:FD:44:3E:62:32:F2:6C:23:E8:1F:DF:97:58:B2:6F:3B:2C Certificate issuer: /CN=A914F3BA/serialNumber=E4623CFD443E6232F26C23E81FDF9758B26F3B2C Certificate serial: 074B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5GI8_UQ-YjLybCPoH9-XWLJvOyw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914F3BA/FF20EBDC013D11EBA000126BC4F9AE02/5GI8_UQ-YjLybCPoH9-XWLJvOyw.mft Manifest number: 0749 Signing time: Fri 22 Nov 2024 21:05:40 +0000 Manifest this update: Fri 22 Nov 2024 21:05:39 +0000 Manifest next update: Fri 29 Nov 2024 21:05:39 +0000 Files and hashes: 1: 5GI8_UQ-YjLybCPoH9-XWLJvOyw.crl (hash: Fl8q5Lf2yg9gcH16ZzJgEgmTv6e/cFE25xA+/2pTPLU=) 2: D0D7EE48343211EFBF2C280DC4F9AE02.roa (hash: 5hdkZ5DddWFl8kbLYaaqhPZLjdFJcDk309blXMyKcbQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914F3BA/FF20EBDC013D11EBA000126BC4F9AE02/5GI8_UQ-YjLybCPoH9-XWLJvOyw.crl rsync://rpki.apnic.net/member_repository/A914F3BA/FF20EBDC013D11EBA000126BC4F9AE02/5GI8_UQ-YjLybCPoH9-XWLJvOyw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5GI8_UQ-YjLybCPoH9-XWLJvOyw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1867 (0x74b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914F3BA/serialNumber=E4623CFD443E6232F26C23E81FDF9758B26F3B2C Validity Not Before: Nov 22 21:05:39 2024 GMT Not After : Nov 29 21:05:39 2024 GMT Subject: CN=6740f223-22a5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:1b:f1:3e:b2:26:bc:7d:8a:22:e1:bd:df:66: 87:32:8b:4c:aa:3c:91:3a:6f:58:e7:c9:cb:e5:1c: 5a:3c:5d:55:c7:12:60:36:88:37:cb:f7:a0:f5:ae: 15:42:e4:0e:a7:9f:56:d9:3d:9e:2c:0b:ee:7d:ab: db:43:e8:7b:04:60:55:4f:c1:49:1d:c7:27:36:25: 67:99:6e:7f:79:64:73:b7:40:a5:37:45:03:6c:ad: 3d:ed:a8:ee:e8:52:71:48:55:c3:5a:bb:e4:8c:7a: 66:66:b1:d8:7f:3d:16:f1:08:18:26:02:26:e2:14: 2a:be:e8:63:b3:72:83:6e:41:31:08:45:59:3c:92: 43:29:f8:ac:fd:db:52:17:05:d4:fe:8b:84:0f:9a: 59:ee:11:02:ad:23:ff:9e:7e:92:0b:53:83:77:d8: 70:db:56:3b:39:be:41:29:e3:19:0c:8a:1d:b2:f3: 6f:be:ae:e5:d0:29:25:16:f6:55:d2:f9:dd:10:02: 31:48:8a:b2:bd:df:b9:e1:0b:d8:fc:cd:9b:b8:60: 26:f8:00:db:ba:dd:6a:6d:38:aa:7d:27:6e:ce:12: 7e:ac:32:d7:4b:79:86:2a:d9:12:b8:a2:e0:ae:df: 59:f8:2e:07:b2:e8:b7:fa:9d:a4:1d:22:e7:d4:d9: 66:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:D0:49:50:EE:54:55:42:61:72:F9:3A:28:81:8F:E7:08:0C:90:3B X509v3 Authority Key Identifier: keyid:E4:62:3C:FD:44:3E:62:32:F2:6C:23:E8:1F:DF:97:58:B2:6F:3B:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914F3BA/FF20EBDC013D11EBA000126BC4F9AE02/5GI8_UQ-YjLybCPoH9-XWLJvOyw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5GI8_UQ-YjLybCPoH9-XWLJvOyw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914F3BA/FF20EBDC013D11EBA000126BC4F9AE02/5GI8_UQ-YjLybCPoH9-XWLJvOyw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 06:34:eb:39:cd:de:e0:ca:73:2e:fb:4f:3b:b8:75:6c:83:f1: 32:50:34:b5:56:54:8b:9f:7e:8f:b4:8d:0f:9a:ed:5c:03:f6: f4:df:77:08:98:d9:0b:2f:ef:8b:e2:3f:ae:29:c0:28:a7:7e: f2:b6:e3:38:1e:6e:33:f7:41:3b:57:5d:c5:53:0a:59:50:59: 18:70:6f:d2:d2:ce:50:c0:45:39:8a:4c:3d:fa:5d:ff:40:7c: 30:7c:f5:5c:1d:18:b3:2a:67:6c:6a:d9:6c:2b:6e:83:b4:ce: d4:8d:a7:97:fb:6c:38:47:ae:57:b6:a7:18:67:8f:50:9a:57: 31:5c:b4:bb:18:8e:f6:9d:51:c7:c7:d0:f8:f7:46:90:aa:67: 0f:d2:f2:60:1d:30:4e:63:8d:b7:66:94:78:57:70:08:19:e1: bb:c4:15:10:b3:0e:47:33:8b:6d:2f:88:fb:40:c3:60:ec:3f: d7:d6:f7:b2:0e:19:88:05:2f:c4:37:a5:ad:24:81:9d:f1:79: ed:c9:67:89:70:88:ca:1c:22:04:4f:92:24:0c:4d:35:32:e0: 54:75:b2:54:83:b6:2b:9b:db:93:d0:0f:18:d2:11:9d:a1:2d: b0:77:70:e3:85:fe:e0:64:d9:0b:78:6a:71:31:c3:49:fb:84: a6:dc:ab:0b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB0swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEYzQkExMTAvBgNVBAUTKEU0NjIzQ0ZENDQzRTYyMzJGMjZDMjNFODFGREY5NzU4 QjI2RjNCMkMwHhcNMjQxMTIyMjEwNTM5WhcNMjQxMTI5MjEwNTM5WjAYMRYwFAYD VQQDEw02NzQwZjIyMy0yMmE1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0xvxPrImvH2KIuG932aHMotMqjyROm9Y58nL5RxaPF1VxxJgNog3y/eg9a4V QuQOp59W2T2eLAvufavbQ+h7BGBVT8FJHccnNiVnmW5/eWRzt0ClN0UDbK097aju 6FJxSFXDWrvkjHpmZrHYfz0W8QgYJgIm4hQqvuhjs3KDbkExCEVZPJJDKfis/dtS FwXU/ouED5pZ7hECrSP/nn6SC1ODd9hw21Y7Ob5BKeMZDIodsvNvvq7l0CklFvZV 0vndEAIxSIqyvd+54QvY/M2buGAm+ADbut1qbTiqfSduzhJ+rDLXS3mGKtkSuKLg rt9Z+C4Hsui3+p2kHSLn1NlmKwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNbQSVDu VFVCYXL5OiiBj+cIDJA7MB8GA1UdIwQYMBaAFORiPP1EPmIy8mwj6B/fl1iybzss MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RjNCQS9GRjIwRUJEQzAx M0QxMUVCQTAwMDEyNkJDNEY5QUUwMi81R0k4X1VRLVlqTHliQ1BvSDktWFdMSnZP eXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVHSThfVVEtWWpMeWJDUG9IOS1YV0xKdk95dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RjNCQS9GRjIwRUJEQzAxM0QxMUVCQTAwMDEyNkJDNEY5QUUwMi81R0k4X1VRLVlq THliQ1BvSDktWFdMSnZPeXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAGNOs5zd7gynMu+087uHVsg/EyUDS1VlSLn36PtI0Pmu1cA/b033cI mNkLL++L4j+uKcAop37ytuM4Hm4z90E7V13FUwpZUFkYcG/S0s5QwEU5ikw9+l3/ QHwwfPVcHRizKmdsatlsK26DtM7UjaeX+2w4R65XtqcYZ49QmlcxXLS7GI72nVHH x9D490aQqmcP0vJgHTBOY423ZpR4V3AIGeG7xBUQsw5HM4ttL4j7QMNg7D/X1vey DhmIBS/EN6WtJIGd8XntyWeJcIjKHCIET5IkDE01MuBUdbJUg7Yrm9uT0A8Y0hGd oS2wd3Djhf7gZNkLeGpxMcNJ+4Sm3KsL -----END CERTIFICATE-----Generated at Fri Nov 22 22:24:08 2024 by rpki-client on console-fra.rpki-client.org