$ rpki-client -vvf rpki.apnic.net/member_repository/A91658EF/D24337964AEC11E88417F34AC4F9AE02/tADiGrPTJXQtuHeDDrxEB233CUg.mft File: tADiGrPTJXQtuHeDDrxEB233CUg.mft (raw, json) Hash identifier: 5cqybKj5ru7RaIYGJqp6Dl8FsSy5uY13PKDiwwtENMc= Subject key identifier: 5F:EC:A3:EB:4B:36:FB:16:E6:7C:51:D2:21:46:0A:2A:2C:E7:92:65 Authority key identifier: B4:00:E2:1A:B3:D3:25:74:2D:B8:77:83:0E:BC:44:07:6D:F7:09:48 Certificate issuer: /CN=A91658EF/serialNumber=B400E21AB3D325742DB877830EBC44076DF70948 Certificate serial: 0EA2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tADiGrPTJXQtuHeDDrxEB233CUg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91658EF/D24337964AEC11E88417F34AC4F9AE02/tADiGrPTJXQtuHeDDrxEB233CUg.mft Manifest number: 2A5E Signing time: Fri 22 Nov 2024 16:51:45 +0000 Manifest this update: Fri 22 Nov 2024 16:51:44 +0000 Manifest next update: Fri 29 Nov 2024 16:51:44 +0000 Files and hashes: 1: tADiGrPTJXQtuHeDDrxEB233CUg.crl (hash: s78ygyn8/cBAyFegDwLzzKIgFpDL0kwlsaPtx3AiUnc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91658EF/D24337964AEC11E88417F34AC4F9AE02/tADiGrPTJXQtuHeDDrxEB233CUg.crl rsync://rpki.apnic.net/member_repository/A91658EF/D24337964AEC11E88417F34AC4F9AE02/tADiGrPTJXQtuHeDDrxEB233CUg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tADiGrPTJXQtuHeDDrxEB233CUg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 16:30:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3746 (0xea2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91658EF/serialNumber=B400E21AB3D325742DB877830EBC44076DF70948 Validity Not Before: Nov 22 16:51:44 2024 GMT Not After : Nov 29 16:51:44 2024 GMT Subject: CN=6740b6a0-e216 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:04:7d:76:83:00:ed:f6:04:87:47:af:66:f2: b5:85:56:ee:f8:c7:9b:29:50:1e:76:e0:36:fd:5f: 63:84:f3:67:b9:c9:a4:50:a5:aa:ca:d4:96:09:aa: 37:bc:67:d1:81:59:5b:96:ad:88:c9:cf:c7:9a:f7: b2:62:eb:66:95:9d:67:91:64:48:20:8a:ed:e4:e6: ad:4b:18:97:51:e9:cc:05:0f:2b:3d:ab:94:af:72: 9f:5e:41:1f:79:65:1a:b1:3b:a0:d2:39:07:50:9f: fe:e6:03:19:a0:6c:21:40:69:14:aa:31:83:29:c4: cf:ea:04:c8:83:2b:31:59:25:3f:1b:4f:8c:19:7a: 94:5e:dd:78:18:de:5f:46:37:e7:a4:3c:5c:0f:73: 4b:5f:fe:71:09:93:43:b2:34:27:23:66:87:3c:32: 40:bf:3b:5e:a6:99:29:b4:12:58:e8:83:9b:ed:b5: a3:3c:18:f5:ec:26:65:87:c3:a0:db:18:a8:67:06: ad:9e:27:bb:be:1f:2c:f2:fc:b1:90:4c:09:1e:a2: cf:ab:ab:55:53:0d:44:94:5b:26:94:b9:df:2d:3d: 3e:b8:42:8c:f9:68:04:30:f2:7f:f2:de:71:fe:2e: ed:9e:35:52:24:ac:a1:d6:ab:13:03:8a:f7:4d:50: d8:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:EC:A3:EB:4B:36:FB:16:E6:7C:51:D2:21:46:0A:2A:2C:E7:92:65 X509v3 Authority Key Identifier: keyid:B4:00:E2:1A:B3:D3:25:74:2D:B8:77:83:0E:BC:44:07:6D:F7:09:48 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91658EF/D24337964AEC11E88417F34AC4F9AE02/tADiGrPTJXQtuHeDDrxEB233CUg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tADiGrPTJXQtuHeDDrxEB233CUg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91658EF/D24337964AEC11E88417F34AC4F9AE02/tADiGrPTJXQtuHeDDrxEB233CUg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a5:db:11:ab:4e:a9:a9:07:19:21:ef:a0:8f:51:c8:db:a1:dc: 11:68:ac:0c:10:b1:db:9b:9f:fa:ba:b5:26:0d:cf:86:62:8b: 99:c4:a3:08:5a:58:82:60:41:0c:d9:d2:94:f6:40:97:45:f4: 0a:bc:c7:34:fc:42:c4:c6:4c:57:6d:74:57:6c:92:83:59:9a: c7:e3:cb:58:67:26:ca:28:ed:c4:58:d2:80:52:eb:e1:f2:fd: 75:7d:c2:e9:1a:26:e8:b4:f1:20:7d:e5:93:31:86:43:c4:47: df:8e:71:ff:23:f4:03:5d:80:42:e3:70:75:43:90:e6:52:cf: 3e:db:d9:e5:54:7e:19:71:c0:45:e3:7b:c6:df:9a:19:66:c7: 76:68:e9:e8:df:4d:fe:94:52:6b:e3:7c:27:27:17:27:79:2e: 77:1b:23:d5:ac:bc:b4:12:1f:00:c9:0b:8f:22:7a:db:c1:a6: 78:3b:47:79:19:ad:4c:c8:62:5d:c5:29:dc:72:d4:f2:6e:e5: 3f:48:3d:d1:aa:b2:f3:40:00:a8:46:44:5b:35:df:ed:60:17: e6:8c:77:52:de:fa:93:f9:34:8c:a0:25:d8:ce:35:0d:1e:f3: b8:4e:25:c5:eb:40:52:fb:b6:87:b7:e0:ed:f7:c3:94:63:08: f3:d5:87:5c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDqIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjU4RUYxMTAvBgNVBAUTKEI0MDBFMjFBQjNEMzI1NzQyREI4Nzc4MzBFQkM0NDA3 NkRGNzA5NDgwHhcNMjQxMTIyMTY1MTQ0WhcNMjQxMTI5MTY1MTQ0WjAYMRYwFAYD VQQDEw02NzQwYjZhMC1lMjE2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2wR9doMA7fYEh0evZvK1hVbu+MebKVAeduA2/V9jhPNnucmkUKWqytSWCao3 vGfRgVlblq2Iyc/HmveyYutmlZ1nkWRIIIrt5OatSxiXUenMBQ8rPauUr3KfXkEf eWUasTug0jkHUJ/+5gMZoGwhQGkUqjGDKcTP6gTIgysxWSU/G0+MGXqUXt14GN5f RjfnpDxcD3NLX/5xCZNDsjQnI2aHPDJAvzteppkptBJY6IOb7bWjPBj17CZlh8Og 2xioZwatnie7vh8s8vyxkEwJHqLPq6tVUw1ElFsmlLnfLT0+uEKM+WgEMPJ/8t5x /i7tnjVSJKyh1qsTA4r3TVDY7QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFF/so+tL NvsW5nxR0iFGCios55JlMB8GA1UdIwQYMBaAFLQA4hqz0yV0Lbh3gw68RAdt9wlI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NThFRi9EMjQzMzc5NjRB RUMxMUU4ODQxN0YzNEFDNEY5QUUwMi90QURpR3JQVEpYUXR1SGVERHJ4RUIyMzND VWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RBRGlHclBUSlhRdHVIZUREcnhFQjIzM0NVZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NThFRi9EMjQzMzc5NjRBRUMxMUU4ODQxN0YzNEFDNEY5QUUwMi90QURpR3JQVEpY UXR1SGVERHJ4RUIyMzNDVWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCl2xGrTqmpBxkh76CPUcjbodwRaKwMELHbm5/6urUmDc+GYouZxKMI WliCYEEM2dKU9kCXRfQKvMc0/ELExkxXbXRXbJKDWZrH48tYZybKKO3EWNKAUuvh 8v11fcLpGibotPEgfeWTMYZDxEffjnH/I/QDXYBC43B1Q5DmUs8+29nlVH4ZccBF 43vG35oZZsd2aOno303+lFJr43wnJxcneS53GyPVrLy0Eh8AyQuPInrbwaZ4O0d5 Ga1MyGJdxSncctTybuU/SD3RqrLzQACoRkRbNd/tYBfmjHdS3vqT+TSMoCXYzjUN HvO4TiXF60BS+7aHt+Dt98OUYwjz1Ydc -----END CERTIFICATE-----Generated at Fri Nov 22 17:55:48 2024 by rpki-client on console-fra.rpki-client.org