$ rpki-client -vvf rpki.apnic.net/member_repository/A915393C/6D04315E640E11EFB5446458C4F9AE02/S5R0cysQASlff10ywBNpOhk3aBM.mft File: S5R0cysQASlff10ywBNpOhk3aBM.mft (raw, json) Hash identifier: UXaUK0RxVYbxfP1FqxVBBK00WDXbGqXvTX26LjJNkIo= Subject key identifier: EA:07:59:BF:7E:B8:37:29:5C:5F:5E:31:E8:C1:77:07:A1:40:C6:90 Authority key identifier: 4B:94:74:73:2B:10:01:29:5F:7F:5D:32:C0:13:69:3A:19:37:68:13 Certificate issuer: /CN=A915393C/serialNumber=4B9474732B1001295F7F5D32C013693A19376813 Certificate serial: 31 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S5R0cysQASlff10ywBNpOhk3aBM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915393C/6D04315E640E11EFB5446458C4F9AE02/S5R0cysQASlff10ywBNpOhk3aBM.mft Manifest number: 30 Signing time: Mon 25 Nov 2024 05:35:06 +0000 Manifest this update: Mon 25 Nov 2024 05:35:05 +0000 Manifest next update: Mon 02 Dec 2024 05:35:05 +0000 Files and hashes: 1: S5R0cysQASlff10ywBNpOhk3aBM.crl (hash: 8xqGD1rThhLC2v7DEI6cwGzXNQs3rvUAyy9wHao5y40=) 2: D970354A640E11EF93D18659C4F9AE02.roa (hash: k3HZpqynszzvTxkVmhHqGRdf/ZQZ2uvnxZO8lo9Yzko=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915393C/6D04315E640E11EFB5446458C4F9AE02/S5R0cysQASlff10ywBNpOhk3aBM.crl rsync://rpki.apnic.net/member_repository/A915393C/6D04315E640E11EFB5446458C4F9AE02/S5R0cysQASlff10ywBNpOhk3aBM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S5R0cysQASlff10ywBNpOhk3aBM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 02 Dec 2024 05:31:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 49 (0x31) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915393C/serialNumber=4B9474732B1001295F7F5D32C013693A19376813 Validity Not Before: Nov 25 05:35:05 2024 GMT Not After : Dec 2 05:35:05 2024 GMT Subject: CN=67440c89-2a78 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:e8:3a:a8:67:cc:27:5d:c7:bf:41:5c:98:82: 95:77:d3:97:97:44:25:82:1e:31:a3:6c:f4:55:c5: aa:27:93:e9:d4:92:f9:93:26:6e:ca:de:1f:bb:e0: 47:b1:c4:c0:0f:0a:04:6d:b7:c2:67:77:fd:32:e0: 43:b1:23:be:fc:7c:bd:5d:b7:1e:52:0e:7d:1f:94: 04:22:e5:2d:a7:c5:6d:fa:fd:7b:78:5a:a5:4c:27: d4:37:1c:06:75:13:b5:7e:98:3b:fa:5b:45:72:e5: 7a:4f:48:35:1b:a2:72:e7:b1:bb:ee:e5:eb:e2:d6: f5:5b:cb:80:02:7e:1e:33:2d:dd:96:63:49:ee:59: 28:02:d9:05:40:1c:f5:55:dd:f7:5a:21:0f:ff:57: db:8b:67:9c:8c:04:86:d5:7a:b6:06:df:e0:ea:2f: d9:8f:e1:80:75:4c:b1:55:a5:98:c2:43:00:54:db: 5f:25:3d:72:3a:2d:17:f2:41:c1:27:3a:d8:ca:34: d9:2e:7e:3d:83:e2:a9:79:1e:e9:70:ee:42:43:bd: 0c:9d:b3:ca:13:d3:3f:2a:30:7d:51:a1:d0:c6:94: 99:44:be:68:cb:47:52:3c:94:a8:ed:d9:48:c5:94: dc:78:bb:fe:28:92:76:28:c2:ce:cd:1d:14:bb:40: 7b:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:07:59:BF:7E:B8:37:29:5C:5F:5E:31:E8:C1:77:07:A1:40:C6:90 X509v3 Authority Key Identifier: keyid:4B:94:74:73:2B:10:01:29:5F:7F:5D:32:C0:13:69:3A:19:37:68:13 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915393C/6D04315E640E11EFB5446458C4F9AE02/S5R0cysQASlff10ywBNpOhk3aBM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S5R0cysQASlff10ywBNpOhk3aBM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915393C/6D04315E640E11EFB5446458C4F9AE02/S5R0cysQASlff10ywBNpOhk3aBM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9c:e2:52:ca:fb:86:c0:67:86:6a:07:fd:10:fc:fa:a5:ed:b9: 17:ab:92:80:30:4f:9c:1f:d6:cd:f6:89:51:ea:4a:e5:bd:02: 2e:a9:c7:b9:29:2a:4c:19:a5:ad:82:c2:7a:8b:59:f4:f3:01: 90:31:77:a1:d9:f6:4c:6c:03:18:3b:2f:b1:4e:28:f4:d9:8b: 56:d6:b0:8f:c5:07:5b:43:3a:3c:2a:d2:28:ee:7f:20:58:44: 87:72:df:4f:50:c5:af:d3:8a:2b:88:56:bb:6f:95:c6:54:15: a0:11:97:6b:33:d8:fd:59:41:93:d6:ff:c0:c5:e3:cb:c6:52: b8:43:be:3c:4c:04:0b:9a:f1:e5:a1:b8:51:98:23:b1:67:40: 5f:6b:a4:ed:01:11:bc:7e:54:e8:2f:97:1d:65:dd:bd:08:11: b9:e0:4e:c0:3a:4a:7f:de:8b:45:64:9e:9a:40:c9:64:48:ff: c5:64:d5:30:b3:ae:cd:8e:7b:08:00:c1:3b:02:df:eb:fb:66: a2:db:65:bf:b9:04:cf:99:e3:f3:ff:36:5b:09:4e:a2:ef:3d: 29:e3:74:09:70:a5:0e:a8:48:b7:d1:0f:c7:67:ca:0e:5c:b8: 0d:c9:c2:66:13:33:ff:1c:cd:ff:4d:7c:62:36:a6:33:18:9f: 91:15:fb:82 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBMTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1 MzkzQzExMC8GA1UEBRMoNEI5NDc0NzMyQjEwMDEyOTVGN0Y1RDMyQzAxMzY5M0Ex OTM3NjgxMzAeFw0yNDExMjUwNTM1MDVaFw0yNDEyMDIwNTM1MDVaMBgxFjAUBgNV BAMTDTY3NDQwYzg5LTJhNzgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCq6DqoZ8wnXce/QVyYgpV305eXRCWCHjGjbPRVxaonk+nUkvmTJm7K3h+74Eex xMAPCgRtt8Jnd/0y4EOxI778fL1dtx5SDn0flAQi5S2nxW36/Xt4WqVMJ9Q3HAZ1 E7V+mDv6W0Vy5XpPSDUbonLnsbvu5evi1vVby4ACfh4zLd2WY0nuWSgC2QVAHPVV 3fdaIQ//V9uLZ5yMBIbVerYG3+DqL9mP4YB1TLFVpZjCQwBU218lPXI6LRfyQcEn OtjKNNkufj2D4ql5Hulw7kJDvQyds8oT0z8qMH1RodDGlJlEvmjLR1I8lKjt2UjF lNx4u/4oknYows7NHRS7QHs5AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU6gdZv364 NylcX14x6MF3B6FAxpAwHwYDVR0jBBgwFoAUS5R0cysQASlff10ywBNpOhk3aBMw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTUzOTNDLzZEMDQzMTVFNjQw RTExRUZCNTQ0NjQ1OEM0RjlBRTAyL1M1UjBjeXNRQVNsZmYxMHl3Qk5wT2hrM2FC TS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvUzVSMGN5c1FBU2xmZjEweXdCTnBPaGszYUJNLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTUz OTNDLzZEMDQzMTVFNjQwRTExRUZCNTQ0NjQ1OEM0RjlBRTAyL1M1UjBjeXNRQVNs ZmYxMHl3Qk5wT2hrM2FCTS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAJziUsr7hsBnhmoH/RD8+qXtuRerkoAwT5wf1s32iVHqSuW9Ai6px7kp KkwZpa2CwnqLWfTzAZAxd6HZ9kxsAxg7L7FOKPTZi1bWsI/FB1tDOjwq0ijufyBY RIdy309Qxa/TiiuIVrtvlcZUFaARl2sz2P1ZQZPW/8DF48vGUrhDvjxMBAua8eWh uFGYI7FnQF9rpO0BEbx+VOgvlx1l3b0IEbngTsA6Sn/ei0VknppAyWRI/8Vk1TCz rs2OewgAwTsC3+v7ZqLbZb+5BM+Z4/P/NlsJTqLvPSnjdAlwpQ6oSLfRD8dnyg5c uA3JwmYTM/8czf9NfGI2pjMYn5EV+4I= -----END CERTIFICATE-----Generated at Mon Nov 25 07:14:54 2024 by rpki-client on console-fra.rpki-client.org