$ rpki-client -vvf rpki.apnic.net/member_repository/A9180DA4/473C64501D8F11E28E913DEE08B02CD2/40IvTt5eaM7JqqfjxuMnjHMOHnw.mft File: 40IvTt5eaM7JqqfjxuMnjHMOHnw.mft (raw, json) Hash identifier: nvr+1tT781MDDjhFu8TlwWKjYuwTkJGbGLHM7Hwuj2I= Subject key identifier: E4:96:CA:59:27:45:D5:7B:3B:43:A8:B3:1D:55:4B:BA:B1:AC:F8:B9 Authority key identifier: E3:42:2F:4E:DE:5E:68:CE:C9:AA:A7:E3:C6:E3:27:8C:73:0E:1E:7C Certificate issuer: /CN=A9180DA4/serialNumber=E3422F4EDE5E68CEC9AAA7E3C6E3278C730E1E7C Certificate serial: 3422 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/40IvTt5eaM7JqqfjxuMnjHMOHnw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9180DA4/473C64501D8F11E28E913DEE08B02CD2/40IvTt5eaM7JqqfjxuMnjHMOHnw.mft Manifest number: 3422 Signing time: Fri 22 Nov 2024 14:40:36 +0000 Manifest this update: Fri 22 Nov 2024 14:40:36 +0000 Manifest next update: Fri 29 Nov 2024 14:40:36 +0000 Files and hashes: 1: 40IvTt5eaM7JqqfjxuMnjHMOHnw.crl (hash: djeFp8jaQBW+SLAxmtwFRB8jyqCi2d8fmyDzyo2mT2c=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9180DA4/473C64501D8F11E28E913DEE08B02CD2/40IvTt5eaM7JqqfjxuMnjHMOHnw.crl rsync://rpki.apnic.net/member_repository/A9180DA4/473C64501D8F11E28E913DEE08B02CD2/40IvTt5eaM7JqqfjxuMnjHMOHnw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/40IvTt5eaM7JqqfjxuMnjHMOHnw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 14:40:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13346 (0x3422) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9180DA4/serialNumber=E3422F4EDE5E68CEC9AAA7E3C6E3278C730E1E7C Validity Not Before: Nov 22 14:40:36 2024 GMT Not After : Nov 29 14:40:36 2024 GMT Subject: CN=674097e4-16fb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:96:d8:07:a1:f8:da:5b:b8:d9:a8:ee:b0:e5: 7d:d2:8e:13:b3:19:2a:2b:c3:a5:a1:55:d2:85:8b: 77:36:a5:f8:15:b1:c3:ec:7a:2a:c8:a7:40:15:ca: ba:53:42:9e:ee:1d:5f:91:bc:6f:44:f9:6f:04:78: c1:75:69:ba:4f:e7:a6:f4:2e:51:cd:b5:58:33:ab: e8:52:66:29:f7:d8:c6:aa:68:32:5c:09:1d:0a:91: de:54:3c:b0:88:41:1e:33:60:e3:ef:3e:57:b4:fb: 69:e1:bf:02:70:f4:4f:f2:39:a6:d8:10:90:51:6c: b5:72:d3:92:49:a0:8c:64:a9:e5:9c:ae:87:3f:d9: 5a:61:ed:05:e4:ec:32:7e:d6:7c:9f:74:b1:1b:d9: 08:a5:bb:2a:7c:08:c8:22:62:4b:1a:52:b8:d2:a9: 4c:23:f2:7d:c0:dd:dd:7b:21:ae:0c:8f:f1:8b:aa: db:47:6d:00:62:83:4f:76:a5:32:69:f9:f7:9d:53: 36:eb:1c:f4:56:ae:60:7a:b1:af:6e:7e:54:e0:ee: 2e:71:fa:be:90:b7:f3:f8:0f:ab:0e:df:cd:37:d9: 9e:a5:5a:84:2d:de:73:5d:fb:21:a7:6b:b9:c1:49: f6:f5:82:92:fe:64:ad:aa:84:aa:b4:67:e6:53:36: bf:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:96:CA:59:27:45:D5:7B:3B:43:A8:B3:1D:55:4B:BA:B1:AC:F8:B9 X509v3 Authority Key Identifier: keyid:E3:42:2F:4E:DE:5E:68:CE:C9:AA:A7:E3:C6:E3:27:8C:73:0E:1E:7C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9180DA4/473C64501D8F11E28E913DEE08B02CD2/40IvTt5eaM7JqqfjxuMnjHMOHnw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/40IvTt5eaM7JqqfjxuMnjHMOHnw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9180DA4/473C64501D8F11E28E913DEE08B02CD2/40IvTt5eaM7JqqfjxuMnjHMOHnw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a6:0e:d0:35:d8:7c:c9:91:0d:64:14:c2:06:92:78:73:db:a8: 63:f1:b8:bb:4f:ed:1f:25:0f:88:df:9e:10:f7:d6:86:d0:c5: a1:7b:00:7f:70:ae:e0:d4:ac:a9:bb:b5:1f:fc:53:05:b3:a3: 6a:f9:ec:d3:03:3c:bb:b1:81:1f:49:08:06:6b:0a:22:3a:23: 81:67:42:05:5b:a3:6e:ef:69:12:b0:72:92:2e:d8:3f:84:3d: 91:23:df:d8:ab:ad:80:57:d9:60:ec:99:08:86:15:6e:3b:44: 7b:f2:c3:1c:2a:ec:ff:92:20:1b:d0:c4:28:b9:65:e6:d4:13: a7:64:3c:4d:61:1f:33:c7:f6:b2:e1:ff:aa:d2:bd:b2:bf:99: 14:53:3f:2d:c4:b6:21:a4:4d:8d:3a:6b:17:a0:da:fa:f2:5a: c6:1b:df:c7:5a:db:8b:6c:2b:bb:f6:60:7b:93:d6:8c:34:3c: 5e:2f:75:3d:b8:09:46:5d:9a:7d:47:5b:63:46:ab:6c:93:63: 71:81:1a:fa:1b:11:4e:32:52:89:ad:60:b2:64:54:6b:52:cd: e8:f0:f4:89:b6:6a:58:b9:3e:79:c3:be:af:36:32:ea:fa:9e: bf:18:94:f1:a4:67:14:f3:85:2f:4c:e3:9f:74:3c:dd:81:30: 8a:fc:5e:ba -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNCIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODBEQTQxMTAvBgNVBAUTKEUzNDIyRjRFREU1RTY4Q0VDOUFBQTdFM0M2RTMyNzhD NzMwRTFFN0MwHhcNMjQxMTIyMTQ0MDM2WhcNMjQxMTI5MTQ0MDM2WjAYMRYwFAYD VQQDEw02NzQwOTdlNC0xNmZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvZbYB6H42lu42ajusOV90o4TsxkqK8OloVXShYt3NqX4FbHD7HoqyKdAFcq6 U0Ke7h1fkbxvRPlvBHjBdWm6T+em9C5RzbVYM6voUmYp99jGqmgyXAkdCpHeVDyw iEEeM2Dj7z5XtPtp4b8CcPRP8jmm2BCQUWy1ctOSSaCMZKnlnK6HP9laYe0F5Owy ftZ8n3SxG9kIpbsqfAjIImJLGlK40qlMI/J9wN3deyGuDI/xi6rbR20AYoNPdqUy afn3nVM26xz0Vq5gerGvbn5U4O4ucfq+kLfz+A+rDt/NN9mepVqELd5zXfshp2u5 wUn29YKS/mStqoSqtGfmUza/owIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOSWylkn RdV7O0Oosx1VS7qxrPi5MB8GA1UdIwQYMBaAFONCL07eXmjOyaqn48bjJ4xzDh58 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MERBNC80NzNDNjQ1MDFE OEYxMUUyOEU5MTNERUUwOEIwMkNEMi80MEl2VHQ1ZWFNN0pxcWZqeHVNbmpITU9I bncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzQwSXZUdDVlYU03SnFxZmp4dU1uakhNT0hudy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 MERBNC80NzNDNjQ1MDFEOEYxMUUyOEU5MTNERUUwOEIwMkNEMi80MEl2VHQ1ZWFN N0pxcWZqeHVNbmpITU9IbncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCmDtA12HzJkQ1kFMIGknhz26hj8bi7T+0fJQ+I354Q99aG0MWhewB/ cK7g1Kypu7Uf/FMFs6Nq+ezTAzy7sYEfSQgGawoiOiOBZ0IFW6Nu72kSsHKSLtg/ hD2RI9/Yq62AV9lg7JkIhhVuO0R78sMcKuz/kiAb0MQouWXm1BOnZDxNYR8zx/ay 4f+q0r2yv5kUUz8txLYhpE2NOmsXoNr68lrGG9/HWtuLbCu79mB7k9aMNDxeL3U9 uAlGXZp9R1tjRqtsk2NxgRr6GxFOMlKJrWCyZFRrUs3o8PSJtmpYuT55w76vNjLq +p6/GJTxpGcU84UvTOOfdDzdgTCK/F66 -----END CERTIFICATE-----Generated at Fri Nov 22 15:25:38 2024 by rpki-client on console-fra.rpki-client.org