$ rpki-client -vvf rpki.apnic.net/member_repository/A917414E/4C5E2FB8E3FF11ECAC210572C4F9AE02/r2cTLYN9V2__d3Ino3JdYB7ZEF0.mft File: r2cTLYN9V2__d3Ino3JdYB7ZEF0.mft (raw, json) Hash identifier: lP0cX8xzy+5kt6t5IZB7E11eIC/G3Pwkn68EYqRv1lI= Subject key identifier: 11:32:B3:93:7A:9A:1D:52:4C:E4:37:00:B2:9C:17:14:BC:88:D1:3B Authority key identifier: AF:67:13:2D:83:7D:57:6F:FF:77:72:27:A3:72:5D:60:1E:D9:10:5D Certificate issuer: /CN=A917414E/serialNumber=AF67132D837D576FFF777227A3725D601ED9105D Certificate serial: 0296 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r2cTLYN9V2__d3Ino3JdYB7ZEF0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917414E/4C5E2FB8E3FF11ECAC210572C4F9AE02/r2cTLYN9V2__d3Ino3JdYB7ZEF0.mft Manifest number: 0289 Signing time: Thu 21 Nov 2024 01:10:30 +0000 Manifest this update: Thu 21 Nov 2024 01:10:29 +0000 Manifest next update: Thu 28 Nov 2024 01:10:29 +0000 Files and hashes: 1: r2cTLYN9V2__d3Ino3JdYB7ZEF0.crl (hash: uvvICx4Tq64F5mqb5b+X2W7QWJrXvrtGFzyLYMK7SDg=) 2: 41C460BE1BE911ED81DB667EC4F9AE02.roa (hash: F2rD9DTyJO/8KZY6J1+Hne/amu0UrQKM61Lrb0l7cz8=) 3: 67E15AC4E40611EC8410A53CC4F9AE02.roa (hash: VQEy4E57oyCsilPS/N4eVIUrZJ0xe1SQnIjV1RgzS+k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917414E/4C5E2FB8E3FF11ECAC210572C4F9AE02/r2cTLYN9V2__d3Ino3JdYB7ZEF0.crl rsync://rpki.apnic.net/member_repository/A917414E/4C5E2FB8E3FF11ECAC210572C4F9AE02/r2cTLYN9V2__d3Ino3JdYB7ZEF0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r2cTLYN9V2__d3Ino3JdYB7ZEF0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:33:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 662 (0x296) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917414E/serialNumber=AF67132D837D576FFF777227A3725D601ED9105D Validity Not Before: Nov 21 01:10:29 2024 GMT Not After : Nov 28 01:10:29 2024 GMT Subject: CN=673e8886-4080 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:ab:c9:58:15:b2:ab:df:8f:b9:a7:cf:20:f0: 4b:ce:a8:61:6a:da:38:bd:59:61:8a:06:06:89:0d: 6f:ad:40:54:1d:49:09:e3:fc:7e:7c:78:f7:ea:7c: e9:4c:c3:94:6d:c9:4b:19:3d:b0:12:03:0c:dc:aa: 9b:b6:87:6c:0a:30:ae:57:74:9f:60:d6:2c:93:38: c1:23:08:89:c7:22:da:a0:9b:39:2a:79:45:29:a2: 88:5a:6b:83:db:27:23:60:91:ef:e7:47:e2:9a:04: 66:15:5b:3d:ff:6c:a1:02:21:85:46:be:3a:d5:d6: e7:61:f2:df:e2:e0:43:56:77:c5:2c:0d:52:c1:c6: 3b:d0:b0:5a:25:f8:86:90:68:5a:fb:ef:c0:62:f1: 49:2f:96:09:60:0a:d4:61:43:68:99:5e:8b:41:70: 31:6d:ee:b8:de:cf:21:ee:7c:b1:23:b1:46:7e:85: 4b:bb:e6:c6:2b:bc:8e:0e:1d:55:83:0b:ef:1a:8e: b5:bf:83:ec:7e:ec:ce:8d:da:93:24:8a:96:dc:0e: 6d:bc:ce:10:15:20:31:cc:fd:ec:38:cc:dd:77:74: cc:b7:74:28:ff:a9:36:7b:65:4b:5e:54:8d:b2:c4: 2e:88:26:e7:a9:f6:de:54:5b:ef:80:fe:2e:e2:ba: 7c:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:32:B3:93:7A:9A:1D:52:4C:E4:37:00:B2:9C:17:14:BC:88:D1:3B X509v3 Authority Key Identifier: keyid:AF:67:13:2D:83:7D:57:6F:FF:77:72:27:A3:72:5D:60:1E:D9:10:5D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917414E/4C5E2FB8E3FF11ECAC210572C4F9AE02/r2cTLYN9V2__d3Ino3JdYB7ZEF0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r2cTLYN9V2__d3Ino3JdYB7ZEF0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917414E/4C5E2FB8E3FF11ECAC210572C4F9AE02/r2cTLYN9V2__d3Ino3JdYB7ZEF0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6d:c0:d6:01:c4:25:fd:19:52:56:59:ab:d9:06:36:86:78:e5: fe:34:99:1d:c9:4c:a3:1d:4d:17:5d:67:f4:ac:b3:4a:81:ad: bb:1a:09:3f:6f:03:6c:4f:f6:16:59:75:57:3a:f1:89:48:d2: 27:1a:2d:de:a9:f5:9d:3b:1b:2b:46:30:9a:54:fc:0c:ab:95: 88:9c:76:67:d4:e5:09:a9:a2:85:87:0f:eb:43:dc:b4:38:9e: 83:dc:7c:94:81:af:08:59:5f:df:0f:7a:77:a6:89:bb:7a:6d: e2:ac:6f:10:eb:66:c0:95:cf:7e:da:98:5d:5b:3f:c9:22:32: be:08:d8:d9:0d:c0:fa:4c:9d:0f:4a:cd:a7:e4:da:59:ff:b8: 90:c1:09:61:08:f3:57:b6:1c:0f:e1:61:b9:d7:71:3a:13:02: d9:27:73:d5:59:1a:b4:56:94:45:18:e4:03:40:28:ae:0b:7f: 5b:c7:6e:6b:77:da:81:5d:1c:d4:2d:e3:d8:3c:63:59:34:96: e4:90:51:c6:7a:ea:3a:a2:fb:d2:35:20:5e:cf:b8:b5:7f:a7: 7a:c9:6d:c9:8c:fe:6c:5c:cd:cb:d1:5c:9a:cc:f6:99:96:6f: ff:42:6f:3e:0a:b3:fe:cd:dd:1b:7b:3d:a3:67:49:94:0b:eb: 6c:07:44:90 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICApYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzQxNEUxMTAvBgNVBAUTKEFGNjcxMzJEODM3RDU3NkZGRjc3NzIyN0EzNzI1RDYw MUVEOTEwNUQwHhcNMjQxMTIxMDExMDI5WhcNMjQxMTI4MDExMDI5WjAYMRYwFAYD VQQDEw02NzNlODg4Ni00MDgwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqKvJWBWyq9+PuafPIPBLzqhhato4vVlhigYGiQ1vrUBUHUkJ4/x+fHj36nzp TMOUbclLGT2wEgMM3KqbtodsCjCuV3SfYNYskzjBIwiJxyLaoJs5KnlFKaKIWmuD 2ycjYJHv50fimgRmFVs9/2yhAiGFRr461dbnYfLf4uBDVnfFLA1SwcY70LBaJfiG kGha++/AYvFJL5YJYArUYUNomV6LQXAxbe643s8h7nyxI7FGfoVLu+bGK7yODh1V gwvvGo61v4PsfuzOjdqTJIqW3A5tvM4QFSAxzP3sOMzdd3TMt3Qo/6k2e2VLXlSN ssQuiCbnqfbeVFvvgP4u4rp82wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBEys5N6 mh1STOQ3ALKcFxS8iNE7MB8GA1UdIwQYMBaAFK9nEy2DfVdv/3dyJ6NyXWAe2RBd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NDE0RS80QzVFMkZCOEUz RkYxMUVDQUMyMTA1NzJDNEY5QUUwMi9yMmNUTFlOOVYyX19kM0lubzNKZFlCN1pF RjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3IyY1RMWU45VjJfX2QzSW5vM0pkWUI3WkVGMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NDE0RS80QzVFMkZCOEUzRkYxMUVDQUMyMTA1NzJDNEY5QUUwMi9yMmNUTFlOOVYy X19kM0lubzNKZFlCN1pFRjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBtwNYBxCX9GVJWWavZBjaGeOX+NJkdyUyjHU0XXWf0rLNKga27Ggk/ bwNsT/YWWXVXOvGJSNInGi3eqfWdOxsrRjCaVPwMq5WInHZn1OUJqaKFhw/rQ9y0 OJ6D3HyUga8IWV/fD3p3pom7em3irG8Q62bAlc9+2phdWz/JIjK+CNjZDcD6TJ0P Ss2n5NpZ/7iQwQlhCPNXthwP4WG513E6EwLZJ3PVWRq0VpRFGOQDQCiuC39bx25r d9qBXRzULePYPGNZNJbkkFHGeuo6ovvSNSBez7i1f6d6yW3JjP5sXM3L0VyazPaZ lm//Qm8+CrP+zd0bez2jZ0mUC+tsB0SQ -----END CERTIFICATE-----Generated at Thu Nov 21 03:11:58 2024 by rpki-client on console-fra.rpki-client.org