$ rpki-client -vvf rpki.apnic.net/member_repository/A9150B47/DA1755781DA311E2BED7789908B02CD2/PkPgI8CFNZTq13soKJo_HxDDCR0.mft File: PkPgI8CFNZTq13soKJo_HxDDCR0.mft (raw, json) Hash identifier: iOzK5B5oJVhSpqK2or1bw/AQ7l+ok583SMiTLP7y/HQ= Subject key identifier: 45:A5:76:B6:EB:E1:B6:80:72:42:4E:4C:7C:0E:02:BF:6D:AD:C7:7B Authority key identifier: 3E:43:E0:23:C0:85:35:94:EA:D7:7B:28:28:9A:3F:1F:10:C3:09:1D Certificate issuer: /CN=A9150B47/serialNumber=3E43E023C0853594EAD77B28289A3F1F10C3091D Certificate serial: 3421 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PkPgI8CFNZTq13soKJo_HxDDCR0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9150B47/DA1755781DA311E2BED7789908B02CD2/PkPgI8CFNZTq13soKJo_HxDDCR0.mft Manifest number: 341E Signing time: Fri 22 Nov 2024 15:10:10 +0000 Manifest this update: Fri 22 Nov 2024 15:10:10 +0000 Manifest next update: Fri 29 Nov 2024 15:10:10 +0000 Files and hashes: 1: PkPgI8CFNZTq13soKJo_HxDDCR0.crl (hash: utWlyJzzcP4COjZYOx6vIU2tqVW8wBD0wJiSep0H+yY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9150B47/DA1755781DA311E2BED7789908B02CD2/PkPgI8CFNZTq13soKJo_HxDDCR0.crl rsync://rpki.apnic.net/member_repository/A9150B47/DA1755781DA311E2BED7789908B02CD2/PkPgI8CFNZTq13soKJo_HxDDCR0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PkPgI8CFNZTq13soKJo_HxDDCR0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 15:10:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13345 (0x3421) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9150B47/serialNumber=3E43E023C0853594EAD77B28289A3F1F10C3091D Validity Not Before: Nov 22 15:10:10 2024 GMT Not After : Nov 29 15:10:10 2024 GMT Subject: CN=67409ed2-a0e1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:d4:ac:a8:99:7a:5b:09:93:fa:8c:97:07:1b: ec:7b:28:64:4e:4a:f2:8a:24:8d:41:a0:99:72:03: 3a:4e:15:d2:d0:da:34:ec:00:28:03:e4:f6:c8:fa: 07:d0:1c:b7:b4:29:a9:c8:9b:ac:b6:d7:06:55:f5: 45:a9:fd:61:05:b0:c3:2d:69:67:8c:cb:14:21:f9: dd:8f:68:60:fe:cf:b6:fe:f2:a9:df:ef:e1:26:48: bd:0a:cc:19:17:e3:f3:a3:45:76:b2:0f:11:ed:90: 36:22:aa:0a:e7:01:53:7c:21:57:38:19:c6:b2:51: fc:35:61:b5:46:09:63:6b:10:a9:0e:17:70:ab:c6: 7f:e1:f3:64:73:10:4f:04:56:ed:47:2b:00:35:86: 05:00:c9:7b:06:2e:69:88:0b:b7:f2:f9:40:38:b9: 9e:f8:84:db:f6:e1:a8:75:92:07:90:ce:cf:95:b2: 57:07:35:96:b8:fb:11:aa:e7:5a:5c:10:7a:f6:81: 80:b6:c3:08:89:21:15:97:ee:27:8b:4c:08:ab:6e: c7:62:7f:17:32:8d:87:35:44:02:6a:50:72:4e:fc: 00:ee:e9:c1:02:8f:a9:80:53:21:8f:27:6d:2e:35: 19:6f:8c:46:85:28:ae:69:6e:79:aa:e6:7a:b5:bd: ef:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:A5:76:B6:EB:E1:B6:80:72:42:4E:4C:7C:0E:02:BF:6D:AD:C7:7B X509v3 Authority Key Identifier: keyid:3E:43:E0:23:C0:85:35:94:EA:D7:7B:28:28:9A:3F:1F:10:C3:09:1D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9150B47/DA1755781DA311E2BED7789908B02CD2/PkPgI8CFNZTq13soKJo_HxDDCR0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PkPgI8CFNZTq13soKJo_HxDDCR0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9150B47/DA1755781DA311E2BED7789908B02CD2/PkPgI8CFNZTq13soKJo_HxDDCR0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b5:82:49:78:7e:b8:e7:42:6c:fc:b6:2c:27:42:02:7e:28:7b: 4f:1d:04:98:25:62:aa:e0:96:7c:3e:5a:a7:e3:ae:6f:52:bd: 64:f6:b9:87:7c:f8:7d:ec:ea:da:eb:db:ea:10:8b:6a:a0:e2: 60:12:b9:ea:68:11:db:b0:d0:d3:60:1e:e8:47:53:6b:4c:41: 61:39:04:54:3f:81:cc:b8:f5:80:df:2d:6d:e8:21:54:91:b0: 43:fa:af:28:fb:23:1b:46:df:0d:79:6c:ef:6a:37:c8:df:b0: b3:e9:fc:32:14:91:5e:83:f0:7b:d0:70:9f:00:e3:28:56:bc: b5:aa:b3:f2:83:c8:a4:db:b0:5b:a2:bc:e7:db:86:7b:a9:b7: 38:d3:ea:7a:1f:d4:81:74:92:a2:fd:52:ca:ea:71:51:ca:6a: 2d:f3:08:25:e7:30:db:1b:8d:b1:fd:a9:d5:ef:f6:35:31:5f: d0:83:8f:6c:c7:12:0c:06:4b:d2:66:28:90:3c:a0:72:66:74: bd:f0:2a:37:3d:d7:07:8d:f9:e8:e6:82:07:e1:e1:0c:81:5e: 4d:87:ca:cb:04:43:fa:3b:90:c4:0f:45:77:f0:95:69:10:78: 91:70:c7:ac:62:c6:a1:33:88:a1:d2:76:78:95:10:60:01:11: f5:f9:c7:93 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNCEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTBCNDcxMTAvBgNVBAUTKDNFNDNFMDIzQzA4NTM1OTRFQUQ3N0IyODI4OUEzRjFG MTBDMzA5MUQwHhcNMjQxMTIyMTUxMDEwWhcNMjQxMTI5MTUxMDEwWjAYMRYwFAYD VQQDEw02NzQwOWVkMi1hMGUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4NSsqJl6WwmT+oyXBxvseyhkTkryiiSNQaCZcgM6ThXS0No07AAoA+T2yPoH 0By3tCmpyJusttcGVfVFqf1hBbDDLWlnjMsUIfndj2hg/s+2/vKp3+/hJki9CswZ F+Pzo0V2sg8R7ZA2IqoK5wFTfCFXOBnGslH8NWG1RgljaxCpDhdwq8Z/4fNkcxBP BFbtRysANYYFAMl7Bi5piAu38vlAOLme+ITb9uGodZIHkM7PlbJXBzWWuPsRquda XBB69oGAtsMIiSEVl+4ni0wIq27HYn8XMo2HNUQCalByTvwA7unBAo+pgFMhjydt LjUZb4xGhSiuaW55quZ6tb3vhQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEWldrbr 4baAckJOTHwOAr9trcd7MB8GA1UdIwQYMBaAFD5D4CPAhTWU6td7KCiaPx8Qwwkd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MEI0Ny9EQTE3NTU3ODFE QTMxMUUyQkVENzc4OTkwOEIwMkNEMi9Qa1BnSThDRk5aVHExM3NvS0pvX0h4RERD UjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BrUGdJOENGTlpUcTEzc29LSm9fSHhERENSMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MEI0Ny9EQTE3NTU3ODFEQTMxMUUyQkVENzc4OTkwOEIwMkNEMi9Qa1BnSThDRk5a VHExM3NvS0pvX0h4RERDUjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC1gkl4frjnQmz8tiwnQgJ+KHtPHQSYJWKq4JZ8Plqn465vUr1k9rmH fPh97Ora69vqEItqoOJgErnqaBHbsNDTYB7oR1NrTEFhOQRUP4HMuPWA3y1t6CFU kbBD+q8o+yMbRt8NeWzvajfI37Cz6fwyFJFeg/B70HCfAOMoVry1qrPyg8ik27Bb orzn24Z7qbc40+p6H9SBdJKi/VLK6nFRymot8wgl5zDbG42x/anV7/Y1MV/Qg49s xxIMBkvSZiiQPKByZnS98Co3PdcHjfno5oIH4eEMgV5Nh8rLBEP6O5DED0V38JVp EHiRcMesYsahM4ih0nZ4lRBgARH1+ceT -----END CERTIFICATE-----Generated at Fri Nov 22 17:55:45 2024 by rpki-client on console-fra.rpki-client.org