$ rpki-client -vvf rpki.apnic.net/member_repository/A91658EF/D24337964AEC11E88417F34AC4F9AE02/IohtF2pzwL483ViJwqizI-O5QSw.mft File: IohtF2pzwL483ViJwqizI-O5QSw.mft (raw, json) Hash identifier: /7iPOCQjbolj18amf7iVMXhNUZpMUkaREOEgorvWj0Y= Subject key identifier: F9:19:14:62:B2:7C:33:2D:D4:9D:93:A8:F3:42:27:A3:FF:15:C8:86 Authority key identifier: 22:88:6D:17:6A:73:C0:BE:3C:DD:58:89:C2:A8:B3:23:E3:B9:41:2C Certificate issuer: /CN=A91658EF/serialNumber=22886D176A73C0BE3CDD5889C2A8B323E3B9412C Certificate serial: 14AA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IohtF2pzwL483ViJwqizI-O5QSw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91658EF/D24337964AEC11E88417F34AC4F9AE02/IohtF2pzwL483ViJwqizI-O5QSw.mft Manifest number: 2A5D Signing time: Fri 22 Nov 2024 16:51:42 +0000 Manifest this update: Fri 22 Nov 2024 16:51:42 +0000 Manifest next update: Fri 29 Nov 2024 16:51:42 +0000 Files and hashes: 1: IohtF2pzwL483ViJwqizI-O5QSw.crl (hash: 2BF7U9F7pA5OQ1R65B3YsxXAKjsc2HALS2OiJUXPC/I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91658EF/D24337964AEC11E88417F34AC4F9AE02/IohtF2pzwL483ViJwqizI-O5QSw.crl rsync://rpki.apnic.net/member_repository/A91658EF/D24337964AEC11E88417F34AC4F9AE02/IohtF2pzwL483ViJwqizI-O5QSw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IohtF2pzwL483ViJwqizI-O5QSw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 16:30:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5290 (0x14aa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91658EF/serialNumber=22886D176A73C0BE3CDD5889C2A8B323E3B9412C Validity Not Before: Nov 22 16:51:42 2024 GMT Not After : Nov 29 16:51:42 2024 GMT Subject: CN=6740b69e-e648 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:34:95:58:da:ed:a3:94:2b:59:a8:21:b6:dc: 63:57:77:21:b9:e9:97:72:4e:aa:1c:e3:c8:46:82: 65:d0:21:c1:90:cd:80:f5:f3:3b:81:48:48:a5:f1: a6:9f:c1:8a:73:5e:f5:7b:26:94:02:5b:f6:27:3b: 0d:c0:90:b0:9d:ec:c0:28:ae:69:9a:dd:f6:84:cf: 20:e7:10:8e:87:8e:85:7e:a9:da:9d:d5:1a:4e:38: 76:16:a3:4e:db:e7:81:7a:72:36:1f:53:2a:0a:fb: e7:81:81:8b:76:ae:7e:30:4f:81:d0:c4:6f:65:f6: b1:d5:1c:af:0c:e6:8b:e9:05:6e:66:66:a6:c0:b7: 57:43:3d:38:3c:9e:74:4a:a1:dd:02:18:5c:c9:b4: c2:b5:c2:12:3e:60:73:55:67:df:9a:d8:57:32:85: f0:a1:a4:6d:6d:d4:cc:c3:b0:e8:a5:62:da:fa:0c: 29:f7:ed:dc:fd:f6:f8:bf:44:53:ec:29:e7:d0:07: d8:83:74:43:ef:f8:92:b3:cf:f4:e1:f7:8e:9a:16: 95:0a:fb:e8:2a:d6:6a:68:67:30:42:39:61:f4:79: 3f:52:a7:87:97:49:dc:fb:f5:a5:87:f4:30:3d:b0: a6:9b:8a:bf:05:e0:98:0d:5b:4d:3c:23:43:55:fc: 1c:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:19:14:62:B2:7C:33:2D:D4:9D:93:A8:F3:42:27:A3:FF:15:C8:86 X509v3 Authority Key Identifier: keyid:22:88:6D:17:6A:73:C0:BE:3C:DD:58:89:C2:A8:B3:23:E3:B9:41:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91658EF/D24337964AEC11E88417F34AC4F9AE02/IohtF2pzwL483ViJwqizI-O5QSw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IohtF2pzwL483ViJwqizI-O5QSw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91658EF/D24337964AEC11E88417F34AC4F9AE02/IohtF2pzwL483ViJwqizI-O5QSw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0a:51:c2:52:fc:4c:05:b1:3c:98:96:83:cb:20:ca:66:71:e3: 73:a1:1a:d5:11:7a:40:2b:5a:c5:56:5e:52:f0:6e:47:3f:bf: 0b:7e:86:d2:31:5e:61:6c:e7:d6:97:92:d9:db:35:65:38:69: 24:b4:1a:a5:7a:0c:b4:05:c7:62:3f:c6:44:1f:7b:a6:c9:cf: 15:6a:77:03:70:8f:ed:25:ab:50:e3:4a:d9:0c:2d:85:60:4c: 5c:83:5f:9e:9d:f8:fb:14:38:b2:39:1d:d9:dd:11:ee:aa:36: d4:11:0e:2d:bc:00:80:3e:a1:64:f1:71:e2:12:e1:dd:c3:18: 2b:84:d8:0c:79:b1:e3:59:25:ef:2b:06:57:a8:39:d9:af:04: 46:28:ca:bd:0e:66:f9:91:2a:4d:b8:31:9b:cd:89:ec:7f:f0: 8d:17:b4:90:79:34:cc:6b:d6:e4:99:cc:2b:de:af:d2:60:c0: 5e:c6:f4:9c:e2:ef:7a:58:1e:7d:14:83:20:35:1c:cb:ce:c2: f6:eb:a1:93:c0:a8:7e:10:15:ea:78:53:82:40:19:92:40:fd: dc:64:72:e3:ad:c9:b5:90:2c:99:3d:99:ad:d6:b5:ac:fd:24: 77:3f:47:8e:21:16:17:a2:ca:c0:a0:f0:f2:94:ff:49:78:42: f6:bb:7e:d1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFKowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjU4RUYxMTAvBgNVBAUTKDIyODg2RDE3NkE3M0MwQkUzQ0RENTg4OUMyQThCMzIz RTNCOTQxMkMwHhcNMjQxMTIyMTY1MTQyWhcNMjQxMTI5MTY1MTQyWjAYMRYwFAYD VQQDEw02NzQwYjY5ZS1lNjQ4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxzSVWNrto5QrWaghttxjV3chuemXck6qHOPIRoJl0CHBkM2A9fM7gUhIpfGm n8GKc171eyaUAlv2JzsNwJCwnezAKK5pmt32hM8g5xCOh46FfqnandUaTjh2FqNO 2+eBenI2H1MqCvvngYGLdq5+ME+B0MRvZfax1RyvDOaL6QVuZmamwLdXQz04PJ50 SqHdAhhcybTCtcISPmBzVWffmthXMoXwoaRtbdTMw7DopWLa+gwp9+3c/fb4v0RT 7Cnn0AfYg3RD7/iSs8/04feOmhaVCvvoKtZqaGcwQjlh9Hk/UqeHl0nc+/Wlh/Qw PbCmm4q/BeCYDVtNPCNDVfwcuQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPkZFGKy fDMt1J2TqPNCJ6P/FciGMB8GA1UdIwQYMBaAFCKIbRdqc8C+PN1YicKosyPjuUEs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NThFRi9EMjQzMzc5NjRB RUMxMUU4ODQxN0YzNEFDNEY5QUUwMi9Jb2h0RjJwendMNDgzVmlKd3FpekktTzVR U3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lvaHRGMnB6d0w0ODNWaUp3cWl6SS1PNVFTdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NThFRi9EMjQzMzc5NjRBRUMxMUU4ODQxN0YzNEFDNEY5QUUwMi9Jb2h0RjJwendM NDgzVmlKd3FpekktTzVRU3cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAKUcJS/EwFsTyYloPLIMpmceNzoRrVEXpAK1rFVl5S8G5HP78LfobS MV5hbOfWl5LZ2zVlOGkktBqlegy0BcdiP8ZEH3umyc8VancDcI/tJatQ40rZDC2F YExcg1+enfj7FDiyOR3Z3RHuqjbUEQ4tvACAPqFk8XHiEuHdwxgrhNgMebHjWSXv KwZXqDnZrwRGKMq9Dmb5kSpNuDGbzYnsf/CNF7SQeTTMa9bkmcwr3q/SYMBexvSc 4u96WB59FIMgNRzLzsL266GTwKh+EBXqeFOCQBmSQP3cZHLjrcm1kCyZPZmt1rWs /SR3P0eOIRYXosrAoPDylP9JeEL2u37R -----END CERTIFICATE-----Generated at Fri Nov 22 17:55:48 2024 by rpki-client on console-fra.rpki-client.org