$ rpki-client -vvf rpki.apnic.net/member_repository/A91706E4/3ABA80AAA68411EF8F5ED37FC4F9AE02/b35Y0Iljiffn_k6HlapVXVxVUYg.mft File: b35Y0Iljiffn_k6HlapVXVxVUYg.mft (raw, json) Hash identifier: YH8tPbekf2ORT6X8Ts/eKAfqGxSmUkXCXk7zhJqJyCY= Subject key identifier: 67:18:3D:2A:D9:EE:AA:B5:4E:94:C9:7F:89:D3:CE:BF:64:5A:46:45 Authority key identifier: 6F:7E:58:D0:89:63:89:F7:E7:FE:4E:87:95:AA:55:5D:5C:55:51:88 Certificate issuer: /CN=A91706E4/serialNumber=6F7E58D0896389F7E7FE4E8795AA555D5C555188 Certificate serial: 05 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b35Y0Iljiffn_k6HlapVXVxVUYg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91706E4/3ABA80AAA68411EF8F5ED37FC4F9AE02/b35Y0Iljiffn_k6HlapVXVxVUYg.mft Manifest number: 05 Signing time: Mon 25 Nov 2024 06:08:53 +0000 Manifest this update: Mon 25 Nov 2024 06:08:53 +0000 Manifest next update: Mon 02 Dec 2024 06:08:53 +0000 Files and hashes: 1: b35Y0Iljiffn_k6HlapVXVxVUYg.crl (hash: 7CTWdbQ3/2BgyuEE2lVDkzOhSt+e8uAhBd4wH8O5mZE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91706E4/3ABA80AAA68411EF8F5ED37FC4F9AE02/b35Y0Iljiffn_k6HlapVXVxVUYg.crl rsync://rpki.apnic.net/member_repository/A91706E4/3ABA80AAA68411EF8F5ED37FC4F9AE02/b35Y0Iljiffn_k6HlapVXVxVUYg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b35Y0Iljiffn_k6HlapVXVxVUYg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 02 Dec 2024 05:31:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5 (0x5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91706E4/serialNumber=6F7E58D0896389F7E7FE4E8795AA555D5C555188 Validity Not Before: Nov 25 06:08:53 2024 GMT Not After : Dec 2 06:08:53 2024 GMT Subject: CN=67441475-fe3d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:33:b7:dd:ff:95:ec:65:58:e0:8c:9f:9b:ac: cd:79:be:4e:5d:f8:db:cc:db:d8:d4:87:0d:b6:f9: d9:b3:aa:92:b3:10:c3:a8:77:84:32:bb:e3:5c:8e: 54:5d:d7:d3:b9:96:91:4c:4b:d9:a8:fb:a2:be:25: e0:3f:f9:bc:13:27:60:1f:59:ad:65:be:46:0f:19: 30:aa:2b:58:91:9b:ac:bb:d5:44:94:64:44:1a:14: 48:f4:99:81:0b:f5:06:e1:2b:c1:52:bf:0a:bd:cf: fa:8a:fc:ae:5f:59:08:7e:16:ac:ef:85:99:f2:ec: be:c3:67:0b:9e:33:88:d9:46:7e:2d:63:2e:5b:f9: 2a:c2:07:1d:13:fc:94:22:a5:c9:a5:0f:f4:c7:79: af:56:bc:b5:58:d4:7f:fb:9e:2e:cb:9f:67:8f:ce: c3:4c:7a:4c:17:d1:05:de:db:cf:af:07:3f:64:58: bc:f1:69:a3:d6:de:48:19:9a:5e:7f:2e:d9:e5:fe: e1:1d:ec:ce:85:86:d0:b2:9e:89:1f:c4:59:f2:d2: 0a:ce:3d:e5:3a:dc:1f:cb:cb:6e:7c:18:0d:a6:15: 92:b1:00:ec:85:f0:ff:42:27:f6:e4:28:66:59:ed: 26:53:de:37:67:c8:02:ff:cb:52:8f:ee:24:46:60: 68:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:18:3D:2A:D9:EE:AA:B5:4E:94:C9:7F:89:D3:CE:BF:64:5A:46:45 X509v3 Authority Key Identifier: keyid:6F:7E:58:D0:89:63:89:F7:E7:FE:4E:87:95:AA:55:5D:5C:55:51:88 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91706E4/3ABA80AAA68411EF8F5ED37FC4F9AE02/b35Y0Iljiffn_k6HlapVXVxVUYg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b35Y0Iljiffn_k6HlapVXVxVUYg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91706E4/3ABA80AAA68411EF8F5ED37FC4F9AE02/b35Y0Iljiffn_k6HlapVXVxVUYg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 57:70:ad:2a:e8:89:3f:4f:27:05:62:e7:b6:b4:cc:b2:8c:d6: e1:5b:7d:78:5a:57:cc:e5:22:c1:f0:ff:d9:40:69:14:e1:7d: a9:d0:9a:64:47:c8:18:69:ef:48:27:ad:e0:05:c0:12:4b:24: 93:28:ca:57:5b:4d:b1:5c:af:39:0c:04:8c:72:2c:6d:94:08: 33:5e:8d:39:d1:69:c1:94:a6:e4:1b:d8:d4:94:09:46:b9:90: 4a:40:6d:91:8e:62:b9:08:fb:01:45:dd:84:ae:fc:f2:13:59: 8f:1a:30:66:3e:03:38:3d:c3:37:65:89:9f:b7:e5:ab:17:b4: 0a:1d:f1:95:71:25:c6:f8:54:2d:58:3a:83:dc:6b:c7:a6:63: c6:c4:16:7f:60:42:5f:e3:b4:82:3d:71:d0:67:3c:b9:4c:03: 00:9f:c3:a1:e8:b0:68:94:0d:c9:1d:21:9e:30:6a:b9:cf:d6: 86:ea:4b:a6:88:72:8a:77:20:a9:55:21:f0:27:fe:25:5b:44: 86:16:e7:9c:99:08:99:a2:11:a2:1a:7e:aa:93:90:20:1f:34: a9:71:72:9f:d2:d4:53:c7:87:b5:0a:3d:0a:d4:29:3c:13:c8: a0:01:73:ac:9a:d5:a1:71:8f:71:7c:0e:7a:32:01:9f:3b:6f: 64:55:97:af -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBBTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 MDZFNDExMC8GA1UEBRMoNkY3RTU4RDA4OTYzODlGN0U3RkU0RTg3OTVBQTU1NUQ1 QzU1NTE4ODAeFw0yNDExMjUwNjA4NTNaFw0yNDEyMDIwNjA4NTNaMBgxFjAUBgNV BAMTDTY3NDQxNDc1LWZlM2QwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDhM7fd/5XsZVjgjJ+brM15vk5d+NvM29jUhw22+dmzqpKzEMOod4Qyu+NcjlRd 19O5lpFMS9mo+6K+JeA/+bwTJ2AfWa1lvkYPGTCqK1iRm6y71USUZEQaFEj0mYEL 9QbhK8FSvwq9z/qK/K5fWQh+FqzvhZny7L7DZwueM4jZRn4tYy5b+SrCBx0T/JQi pcmlD/THea9WvLVY1H/7ni7Ln2ePzsNMekwX0QXe28+vBz9kWLzxaaPW3kgZml5/ Ltnl/uEd7M6FhtCynokfxFny0grOPeU63B/Ly258GA2mFZKxAOyF8P9CJ/bkKGZZ 7SZT3jdnyAL/y1KP7iRGYGhXAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUZxg9Ktnu qrVOlMl/idPOv2RaRkUwHwYDVR0jBBgwFoAUb35Y0Iljiffn/k6HlapVXVxVUYgw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTcwNkU0LzNBQkE4MEFBQTY4 NDExRUY4RjVFRDM3RkM0RjlBRTAyL2IzNVkwSWxqaWZmbl9rNkhsYXBWWFZ4VlVZ Zy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvYjM1WTBJbGppZmZuX2s2SGxhcFZYVnhWVVlnLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTcw NkU0LzNBQkE4MEFBQTY4NDExRUY4RjVFRDM3RkM0RjlBRTAyL2IzNVkwSWxqaWZm bl9rNkhsYXBWWFZ4VlVZZy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAFdwrSroiT9PJwVi57a0zLKM1uFbfXhaV8zlIsHw/9lAaRThfanQmmRH yBhp70gnreAFwBJLJJMoyldbTbFcrzkMBIxyLG2UCDNejTnRacGUpuQb2NSUCUa5 kEpAbZGOYrkI+wFF3YSu/PITWY8aMGY+Azg9wzdliZ+35asXtAod8ZVxJcb4VC1Y OoPca8emY8bEFn9gQl/jtII9cdBnPLlMAwCfw6HosGiUDckdIZ4warnP1obqS6aI cop3IKlVIfAn/iVbRIYW55yZCJmiEaIafqqTkCAfNKlxcp/S1FPHh7UKPQrUKTwT yKABc6ya1aFxj3F8DnoyAZ87b2RVl68= -----END CERTIFICATE-----Generated at Mon Nov 25 07:14:54 2024 by rpki-client on console-fra.rpki-client.org