$ rpki-client -vvf rpki.apnic.net/member_repository/A917AE24/8EC4009430A411EC8BEDB82DC4F9AE02/13OnYxe8qx7vA29fbkx7NMSra3s.mft File: 13OnYxe8qx7vA29fbkx7NMSra3s.mft (raw, json) Hash identifier: XO/zn8WhClKPLJFG4aRbkXLy5GaoNoEZNDicbul9Fps= Subject key identifier: B7:1F:C4:59:86:BA:D4:C8:60:91:79:C7:90:41:8F:F6:02:75:6B:FC Authority key identifier: D7:73:A7:63:17:BC:AB:1E:EF:03:6F:5F:6E:4C:7B:34:C4:AB:6B:7B Certificate issuer: /CN=A917AE24/serialNumber=D773A76317BCAB1EEF036F5F6E4C7B34C4AB6B7B Certificate serial: 044A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/13OnYxe8qx7vA29fbkx7NMSra3s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917AE24/8EC4009430A411EC8BEDB82DC4F9AE02/13OnYxe8qx7vA29fbkx7NMSra3s.mft Manifest number: 044A Signing time: Fri 22 Nov 2024 23:46:20 +0000 Manifest this update: Fri 22 Nov 2024 23:46:19 +0000 Manifest next update: Fri 29 Nov 2024 23:46:19 +0000 Files and hashes: 1: 13OnYxe8qx7vA29fbkx7NMSra3s.crl (hash: 626WQ8rvZXuZ2Q247xkM4zKbUuyuJFmRKZL+zc9/L3E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917AE24/8EC4009430A411EC8BEDB82DC4F9AE02/13OnYxe8qx7vA29fbkx7NMSra3s.crl rsync://rpki.apnic.net/member_repository/A917AE24/8EC4009430A411EC8BEDB82DC4F9AE02/13OnYxe8qx7vA29fbkx7NMSra3s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/13OnYxe8qx7vA29fbkx7NMSra3s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1098 (0x44a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917AE24/serialNumber=D773A76317BCAB1EEF036F5F6E4C7B34C4AB6B7B Validity Not Before: Nov 22 23:46:19 2024 GMT Not After : Nov 29 23:46:19 2024 GMT Subject: CN=674117cb-7cf5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:fa:8e:aa:f4:b5:38:b3:58:6b:14:e9:e1:24: 41:93:63:a9:ac:6f:36:f1:37:68:78:26:ae:7e:0e: 1f:3f:d9:5b:92:7c:ea:50:29:07:55:25:fc:13:9d: ae:9c:72:6e:22:b1:13:c4:79:2b:af:70:53:1c:28: 53:17:ae:7a:ee:47:01:98:77:f2:86:90:21:cf:4e: fb:4f:98:41:a6:ac:20:b3:11:a5:e1:4c:f7:70:a0: 27:46:e5:f7:5b:36:1b:ca:47:cc:b4:de:a7:ef:72: 2d:88:e2:59:8c:ff:c3:fc:bb:c3:fe:ec:6c:4d:75: 05:73:d2:dc:f3:f8:67:c1:8f:5a:11:67:16:2e:d1: 47:60:e9:76:b2:30:c2:63:69:20:31:4e:64:60:b2: f9:3b:e2:20:29:f3:9d:ad:bd:41:e8:39:46:59:df: d8:21:7d:3d:c2:a9:8d:39:29:b3:31:c7:13:a2:b0: 2e:c7:b1:39:11:3e:72:4d:4c:11:03:a5:fc:d5:94: 93:1d:95:eb:6c:f0:a7:3c:75:8b:46:2a:3b:52:84: 01:79:e9:9d:d3:4b:2c:07:cd:63:37:c5:61:b0:63: 7f:13:2d:f9:a5:38:fd:32:86:76:44:0a:1b:0d:3d: 6e:6e:60:02:f5:64:1a:2b:c2:43:53:34:0a:3a:5f: 76:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:1F:C4:59:86:BA:D4:C8:60:91:79:C7:90:41:8F:F6:02:75:6B:FC X509v3 Authority Key Identifier: keyid:D7:73:A7:63:17:BC:AB:1E:EF:03:6F:5F:6E:4C:7B:34:C4:AB:6B:7B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917AE24/8EC4009430A411EC8BEDB82DC4F9AE02/13OnYxe8qx7vA29fbkx7NMSra3s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/13OnYxe8qx7vA29fbkx7NMSra3s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917AE24/8EC4009430A411EC8BEDB82DC4F9AE02/13OnYxe8qx7vA29fbkx7NMSra3s.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b7:22:ab:2b:06:ee:7f:4f:ca:b2:ed:47:1e:2e:96:f5:d4:ec: 64:2d:b8:53:e8:d4:03:fd:04:4d:6b:5b:37:9d:6b:49:87:3e: 48:b1:0c:27:1d:7b:f3:c4:4c:74:3c:0e:66:b1:ab:30:c0:be: b9:92:dc:56:28:c0:32:4a:55:06:f4:6e:d5:f9:48:e7:50:0b: ec:46:de:00:57:de:49:01:db:bd:a5:06:12:50:46:68:20:3b: 03:bf:d2:28:e5:ff:61:f5:b8:fd:6f:08:aa:13:52:20:8f:49: da:7c:bc:e3:fd:f9:3a:aa:77:de:0e:fc:10:5a:10:e4:db:40: 16:d4:8d:e7:db:5e:e8:53:42:44:95:79:7d:4d:5d:c6:ad:8f: 3c:ca:d1:da:0d:f1:7c:a3:13:1a:7b:66:58:01:9a:e9:23:17: b0:c6:0d:7d:cd:30:60:d5:4b:71:f8:d7:6a:ee:36:52:8a:b3: d4:4a:05:c7:0b:13:ae:32:cb:7e:06:79:31:a7:3d:7a:e9:25: 3e:5b:f5:c2:c8:1a:58:b5:8a:99:0e:f2:44:98:94:29:fb:7b: 7b:90:dc:b6:32:c9:d9:5e:bc:63:9c:54:cc:ec:7b:e2:ae:b0: a3:67:1c:a0:c8:3a:10:db:11:bd:29:29:63:f2:4d:6d:be:ea: f8:fb:8b:25 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBEowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0FFMjQxMTAvBgNVBAUTKEQ3NzNBNzYzMTdCQ0FCMUVFRjAzNkY1RjZFNEM3QjM0 QzRBQjZCN0IwHhcNMjQxMTIyMjM0NjE5WhcNMjQxMTI5MjM0NjE5WjAYMRYwFAYD VQQDEw02NzQxMTdjYi03Y2Y1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6vqOqvS1OLNYaxTp4SRBk2OprG828TdoeCaufg4fP9lbknzqUCkHVSX8E52u nHJuIrETxHkrr3BTHChTF6567kcBmHfyhpAhz077T5hBpqwgsxGl4Uz3cKAnRuX3 WzYbykfMtN6n73ItiOJZjP/D/LvD/uxsTXUFc9Lc8/hnwY9aEWcWLtFHYOl2sjDC Y2kgMU5kYLL5O+IgKfOdrb1B6DlGWd/YIX09wqmNOSmzMccTorAux7E5ET5yTUwR A6X81ZSTHZXrbPCnPHWLRio7UoQBeemd00ssB81jN8VhsGN/Ey35pTj9MoZ2RAob DT1ubmAC9WQaK8JDUzQKOl92AQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLcfxFmG utTIYJF5x5BBj/YCdWv8MB8GA1UdIwQYMBaAFNdzp2MXvKse7wNvX25MezTEq2t7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QUUyNC84RUM0MDA5NDMw QTQxMUVDOEJFREI4MkRDNEY5QUUwMi8xM09uWXhlOHF4N3ZBMjlmYmt4N05NU3Jh M3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzEzT25ZeGU4cXg3dkEyOWZia3g3Tk1TcmEzcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QUUyNC84RUM0MDA5NDMwQTQxMUVDOEJFREI4MkRDNEY5QUUwMi8xM09uWXhlOHF4 N3ZBMjlmYmt4N05NU3JhM3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC3IqsrBu5/T8qy7UceLpb11OxkLbhT6NQD/QRNa1s3nWtJhz5IsQwn HXvzxEx0PA5msaswwL65ktxWKMAySlUG9G7V+UjnUAvsRt4AV95JAdu9pQYSUEZo IDsDv9Io5f9h9bj9bwiqE1Igj0nafLzj/fk6qnfeDvwQWhDk20AW1I3n217oU0JE lXl9TV3GrY88ytHaDfF8oxMae2ZYAZrpIxewxg19zTBg1Utx+Ndq7jZSirPUSgXH CxOuMst+Bnkxpz166SU+W/XCyBpYtYqZDvJEmJQp+3t7kNy2MsnZXrxjnFTM7Hvi rrCjZxygyDoQ2xG9KSlj8k1tvur4+4sl -----END CERTIFICATE-----Generated at Sat Nov 23 01:27:23 2024 by rpki-client on console-ams.rpki-client.org