$ rpki-client -vvf rpki.apnic.net/member_repository/A915E777/66A403625CE811E9A2EDF32BC4F9AE02/mm0VemfN-P9qHM6gPkPkwtlb-G0.mft File: mm0VemfN-P9qHM6gPkPkwtlb-G0.mft (raw, json) Hash identifier: cX0C2rdD/WFdXH9xsF23mhEcJz919kywFi+9zSLYDmU= Subject key identifier: B3:4F:6D:30:C6:E3:0D:19:74:0F:80:26:72:B2:C6:2B:6E:6D:8D:5F Authority key identifier: 9A:6D:15:7A:67:CD:F8:FF:6A:1C:CE:A0:3E:43:E4:C2:D9:5B:F8:6D Certificate issuer: /CN=A915E777/serialNumber=9A6D157A67CDF8FF6A1CCEA03E43E4C2D95BF86D Certificate serial: 0F32 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mm0VemfN-P9qHM6gPkPkwtlb-G0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915E777/66A403625CE811E9A2EDF32BC4F9AE02/mm0VemfN-P9qHM6gPkPkwtlb-G0.mft Manifest number: 0F32 Signing time: Fri 22 Nov 2024 17:34:47 +0000 Manifest this update: Fri 22 Nov 2024 17:34:46 +0000 Manifest next update: Fri 29 Nov 2024 17:34:46 +0000 Files and hashes: 1: mm0VemfN-P9qHM6gPkPkwtlb-G0.crl (hash: fRG4tMuhvxc6pZWGXzIP3faeO/wo8Z5F1t86ofD2Dlc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915E777/66A403625CE811E9A2EDF32BC4F9AE02/mm0VemfN-P9qHM6gPkPkwtlb-G0.crl rsync://rpki.apnic.net/member_repository/A915E777/66A403625CE811E9A2EDF32BC4F9AE02/mm0VemfN-P9qHM6gPkPkwtlb-G0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mm0VemfN-P9qHM6gPkPkwtlb-G0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 17:34:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3890 (0xf32) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915E777/serialNumber=9A6D157A67CDF8FF6A1CCEA03E43E4C2D95BF86D Validity Not Before: Nov 22 17:34:46 2024 GMT Not After : Nov 29 17:34:46 2024 GMT Subject: CN=6740c0b6-7b38 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:ec:b3:8a:3d:fc:f6:19:50:46:44:92:1b:a6: 95:dd:aa:2b:12:c2:56:75:f1:cb:ef:26:09:94:ec: 5e:0d:61:b7:71:2e:58:0d:60:d6:b2:ac:af:70:7d: 76:02:5d:bb:21:8c:1f:8e:e9:82:82:44:91:c7:f6: c8:b6:2b:11:b8:db:b3:b7:d2:27:79:ab:d2:39:df: 8e:e0:a1:6e:07:26:1c:b6:97:0f:c9:78:08:69:63: 63:87:cb:d7:52:e1:ac:e9:85:fb:57:05:30:ed:4e: 20:cf:db:3f:cd:4d:2b:bb:0b:da:14:49:fc:35:5c: 8c:9a:96:70:c6:e6:de:84:0f:dd:99:ff:dd:04:06: 05:e6:86:d7:bd:f4:8d:91:7f:00:20:68:f0:8e:dd: d6:47:4b:6d:45:f2:79:78:b2:f0:81:1e:b3:97:3a: a9:84:2e:fe:b5:b3:af:5e:8b:93:33:29:25:8f:50: 34:14:91:a2:31:3a:4d:98:db:53:3c:9e:f9:41:d8: 9e:66:fb:67:1c:87:09:d6:01:7f:57:78:43:a8:dd: c4:6c:9b:c7:b6:15:78:e8:e7:09:e8:17:96:1d:90: 41:02:68:7c:62:2e:ef:bf:56:a8:b8:3e:8d:85:24: e6:e8:5a:72:54:68:87:11:f4:f9:ee:d2:da:5b:c5: 84:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:4F:6D:30:C6:E3:0D:19:74:0F:80:26:72:B2:C6:2B:6E:6D:8D:5F X509v3 Authority Key Identifier: keyid:9A:6D:15:7A:67:CD:F8:FF:6A:1C:CE:A0:3E:43:E4:C2:D9:5B:F8:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915E777/66A403625CE811E9A2EDF32BC4F9AE02/mm0VemfN-P9qHM6gPkPkwtlb-G0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mm0VemfN-P9qHM6gPkPkwtlb-G0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915E777/66A403625CE811E9A2EDF32BC4F9AE02/mm0VemfN-P9qHM6gPkPkwtlb-G0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4e:d5:bb:ee:7f:46:0c:02:f0:ec:1c:8e:e9:c4:d3:0f:d4:0b: b1:9a:d8:1c:41:d4:f2:5a:03:61:2a:0c:29:27:46:5f:1b:70: 9b:2f:fb:b3:77:3e:32:74:ea:08:a8:92:ff:53:3d:05:2f:11: 84:24:c2:46:9a:64:bc:71:e4:03:72:5e:10:6e:0b:58:bb:14: f5:3c:e1:25:01:83:72:e8:e6:13:9f:7b:1f:b3:3f:e1:56:16: bd:a0:53:d6:cb:e1:29:ed:3f:08:46:a3:2e:de:d6:2c:c2:1e: 10:1c:f1:13:be:74:c0:9e:2b:fa:d7:11:e1:5b:46:d0:2c:94: 89:b7:5e:ab:d9:50:74:0f:db:a3:2d:76:25:3d:2a:49:77:f4: 05:4a:77:7f:9a:fc:8d:d3:66:26:1b:85:d9:a5:72:dd:d4:91: c1:b8:9b:53:56:d4:23:e1:a7:67:02:38:48:31:e7:81:29:0a: 96:56:45:e1:03:30:53:13:19:81:15:54:e5:f4:50:8b:9c:4e: d7:1a:a2:9c:7d:79:74:6e:e9:19:09:48:c4:cc:81:f5:8b:b8: a3:5b:e2:58:a1:95:44:3a:d0:cb:01:12:9b:1b:81:b9:de:96: 17:90:eb:10:70:44:25:4a:8f:f6:29:93:20:d2:83:76:b1:8f: 2d:39:50:4b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDzIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUU3NzcxMTAvBgNVBAUTKDlBNkQxNTdBNjdDREY4RkY2QTFDQ0VBMDNFNDNFNEMy RDk1QkY4NkQwHhcNMjQxMTIyMTczNDQ2WhcNMjQxMTI5MTczNDQ2WjAYMRYwFAYD VQQDEw02NzQwYzBiNi03YjM4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAseyzij389hlQRkSSG6aV3aorEsJWdfHL7yYJlOxeDWG3cS5YDWDWsqyvcH12 Al27IYwfjumCgkSRx/bItisRuNuzt9IneavSOd+O4KFuByYctpcPyXgIaWNjh8vX UuGs6YX7VwUw7U4gz9s/zU0ruwvaFEn8NVyMmpZwxubehA/dmf/dBAYF5obXvfSN kX8AIGjwjt3WR0ttRfJ5eLLwgR6zlzqphC7+tbOvXouTMyklj1A0FJGiMTpNmNtT PJ75QdieZvtnHIcJ1gF/V3hDqN3EbJvHthV46OcJ6BeWHZBBAmh8Yi7vv1aouD6N hSTm6FpyVGiHEfT57tLaW8WEpwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLNPbTDG 4w0ZdA+AJnKyxitubY1fMB8GA1UdIwQYMBaAFJptFXpnzfj/ahzOoD5D5MLZW/ht MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RTc3Ny82NkE0MDM2MjVD RTgxMUU5QTJFREYzMkJDNEY5QUUwMi9tbTBWZW1mTi1QOXFITTZnUGtQa3d0bGIt RzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL21tMFZlbWZOLVA5cUhNNmdQa1Brd3RsYi1HMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 RTc3Ny82NkE0MDM2MjVDRTgxMUU5QTJFREYzMkJDNEY5QUUwMi9tbTBWZW1mTi1Q OXFITTZnUGtQa3d0bGItRzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBO1bvuf0YMAvDsHI7pxNMP1AuxmtgcQdTyWgNhKgwpJ0ZfG3CbL/uz dz4ydOoIqJL/Uz0FLxGEJMJGmmS8ceQDcl4QbgtYuxT1POElAYNy6OYTn3sfsz/h Vha9oFPWy+Ep7T8IRqMu3tYswh4QHPETvnTAniv61xHhW0bQLJSJt16r2VB0D9uj LXYlPSpJd/QFSnd/mvyN02YmG4XZpXLd1JHBuJtTVtQj4adnAjhIMeeBKQqWVkXh AzBTExmBFVTl9FCLnE7XGqKcfXl0bukZCUjEzIH1i7ijW+JYoZVEOtDLARKbG4G5 3pYXkOsQcEQlSo/2KZMg0oN2sY8tOVBL -----END CERTIFICATE-----Generated at Fri Nov 22 19:50:03 2024 by rpki-client on console-ams.rpki-client.org