$ rpki-client -vvf rpki.apnic.net/member_repository/A918C774/579887B61D9911E29E2F098408B02CD2/2xinykRiG1ZTwgBDlHaz8qOAhT4.mft File: 2xinykRiG1ZTwgBDlHaz8qOAhT4.mft (raw, json) Hash identifier: g+l33cD/+XpTJd+OIlpfcSGypvshova6Kew7BPZG/YA= Subject key identifier: 1F:49:05:5B:37:78:53:26:9B:89:50:83:37:AA:6E:A4:B3:F9:A7:15 Authority key identifier: DB:18:A7:CA:44:62:1B:56:53:C2:00:43:94:76:B3:F2:A3:80:85:3E Certificate issuer: /CN=A918C774/serialNumber=DB18A7CA44621B5653C200439476B3F2A380853E Certificate serial: 3430 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2xinykRiG1ZTwgBDlHaz8qOAhT4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918C774/579887B61D9911E29E2F098408B02CD2/2xinykRiG1ZTwgBDlHaz8qOAhT4.mft Manifest number: 342A Signing time: Fri 22 Nov 2024 14:55:40 +0000 Manifest this update: Fri 22 Nov 2024 14:55:39 +0000 Manifest next update: Fri 29 Nov 2024 14:55:39 +0000 Files and hashes: 1: 2xinykRiG1ZTwgBDlHaz8qOAhT4.crl (hash: pNF1Xbhy1FVwXzqIhrVse2OiO5YCiRXlzXpnz+29I00=) 2: 0458A9A409FB11EA8742F60AC4F9AE02.roa (hash: 3MU65ygEf1r2eIYg+fVLMHTs4lWxF35EpdxMw38lBRc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918C774/579887B61D9911E29E2F098408B02CD2/2xinykRiG1ZTwgBDlHaz8qOAhT4.crl rsync://rpki.apnic.net/member_repository/A918C774/579887B61D9911E29E2F098408B02CD2/2xinykRiG1ZTwgBDlHaz8qOAhT4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2xinykRiG1ZTwgBDlHaz8qOAhT4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 14:55:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13360 (0x3430) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918C774/serialNumber=DB18A7CA44621B5653C200439476B3F2A380853E Validity Not Before: Nov 22 14:55:39 2024 GMT Not After : Nov 29 14:55:39 2024 GMT Subject: CN=67409b6b-e9c1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:5f:d4:34:e6:1c:d6:a9:fb:68:64:3d:df:45: 12:46:e2:cf:06:57:37:97:f2:bd:9f:7f:69:95:62: d6:d5:22:18:c6:b3:bc:e5:91:7c:3c:37:8b:3c:9b: 5f:92:0b:f1:e7:cf:86:0c:6e:d0:b3:0b:c8:32:0c: 17:cb:25:71:40:aa:39:c6:8d:db:35:5a:0f:d2:10: ae:7b:e5:c2:e3:ac:be:3b:80:86:b3:5b:da:2a:0b: e6:49:f7:9c:ca:e5:d9:29:28:13:10:72:57:79:77: d5:5b:e4:0c:dc:25:87:db:e2:1b:d3:96:b5:aa:74: 72:4c:42:03:07:41:94:73:24:d7:1f:87:14:c6:1c: 36:b5:a5:e9:a8:a3:9d:76:96:02:dc:9d:d6:f4:0a: 16:0a:d8:ab:42:07:fb:4b:28:c8:91:7d:c5:7d:58: 76:79:a3:87:50:24:c4:e0:ac:2f:c1:16:bb:fa:f4: 95:11:d9:41:15:04:ce:54:5a:a5:ce:aa:84:2f:2d: e8:82:e3:66:1e:c4:ad:81:09:f4:aa:af:5c:e6:fd: cb:19:9c:67:f5:e0:59:97:7f:ce:36:9e:4d:a1:f2: 51:ab:42:48:2b:12:db:e9:d2:a0:c5:a3:70:41:51: b5:9f:d4:fc:fa:67:29:cc:b6:dc:85:ac:a6:91:b2: e9:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:49:05:5B:37:78:53:26:9B:89:50:83:37:AA:6E:A4:B3:F9:A7:15 X509v3 Authority Key Identifier: keyid:DB:18:A7:CA:44:62:1B:56:53:C2:00:43:94:76:B3:F2:A3:80:85:3E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918C774/579887B61D9911E29E2F098408B02CD2/2xinykRiG1ZTwgBDlHaz8qOAhT4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2xinykRiG1ZTwgBDlHaz8qOAhT4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918C774/579887B61D9911E29E2F098408B02CD2/2xinykRiG1ZTwgBDlHaz8qOAhT4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4a:66:83:96:e6:a2:40:af:b7:8d:50:37:f7:2b:ae:e7:d9:e4: 44:f4:8b:9c:b6:ce:50:c7:4c:e7:45:31:76:c6:c0:5b:f9:d4: 71:9e:2e:89:04:b9:bf:db:5d:d3:08:bb:a6:37:1c:74:1a:20: ce:70:ee:a2:ee:b3:0e:ef:21:d1:14:91:04:05:83:5b:d7:1e: e4:b9:42:fb:3e:fe:f9:02:50:41:82:a7:b4:a0:5c:98:8c:88: 4d:f0:55:56:62:d7:49:28:d3:08:4e:79:40:70:b5:a2:81:34: 09:b3:0f:f2:8d:89:5f:eb:5b:db:e5:8c:7c:d9:f8:2a:62:45: 19:cc:92:5c:0d:ec:3d:52:0b:1e:22:08:bd:6f:aa:14:29:74: 1a:d8:6b:26:6a:68:b5:50:ea:45:de:1b:26:6b:70:a3:9b:b0: 9b:79:48:59:81:58:79:d8:5b:4b:8f:71:90:85:e3:13:dc:31: ec:f9:f8:e5:42:fe:93:43:10:5d:3a:60:8e:1d:b4:e3:81:e2: a5:51:7f:b1:00:91:c9:5a:ba:5a:4a:7f:56:87:3f:af:a4:24: 1d:4c:2f:37:d5:f3:86:3c:d3:e2:1f:65:cf:37:8b:0a:d8:4d: 96:94:57:7a:da:7f:ba:d3:f7:fb:c3:70:26:fb:38:5c:3c:d7: fd:9d:da:7e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNDAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEM3NzQxMTAvBgNVBAUTKERCMThBN0NBNDQ2MjFCNTY1M0MyMDA0Mzk0NzZCM0Yy QTM4MDg1M0UwHhcNMjQxMTIyMTQ1NTM5WhcNMjQxMTI5MTQ1NTM5WjAYMRYwFAYD VQQDEw02NzQwOWI2Yi1lOWMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxl/UNOYc1qn7aGQ930USRuLPBlc3l/K9n39plWLW1SIYxrO85ZF8PDeLPJtf kgvx58+GDG7QswvIMgwXyyVxQKo5xo3bNVoP0hCue+XC46y+O4CGs1vaKgvmSfec yuXZKSgTEHJXeXfVW+QM3CWH2+Ib05a1qnRyTEIDB0GUcyTXH4cUxhw2taXpqKOd dpYC3J3W9AoWCtirQgf7SyjIkX3FfVh2eaOHUCTE4KwvwRa7+vSVEdlBFQTOVFql zqqELy3oguNmHsStgQn0qq9c5v3LGZxn9eBZl3/ONp5NofJRq0JIKxLb6dKgxaNw QVG1n9T8+mcpzLbchaymkbLpFwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB9JBVs3 eFMmm4lQgzeqbqSz+acVMB8GA1UdIwQYMBaAFNsYp8pEYhtWU8IAQ5R2s/KjgIU+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4Qzc3NC81Nzk4ODdCNjFE OTkxMUUyOUUyRjA5ODQwOEIwMkNEMi8yeGlueWtSaUcxWlR3Z0JEbEhhejhxT0Fo VDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJ4aW55a1JpRzFaVHdnQkRsSGF6OHFPQWhUNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 Qzc3NC81Nzk4ODdCNjFEOTkxMUUyOUUyRjA5ODQwOEIwMkNEMi8yeGlueWtSaUcx WlR3Z0JEbEhhejhxT0FoVDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBKZoOW5qJAr7eNUDf3K67n2eRE9Iucts5Qx0znRTF2xsBb+dRxni6J BLm/213TCLumNxx0GiDOcO6i7rMO7yHRFJEEBYNb1x7kuUL7Pv75AlBBgqe0oFyY jIhN8FVWYtdJKNMITnlAcLWigTQJsw/yjYlf61vb5Yx82fgqYkUZzJJcDew9Ugse Igi9b6oUKXQa2Gsmami1UOpF3hsma3Cjm7CbeUhZgVh52FtLj3GQheMT3DHs+fjl Qv6TQxBdOmCOHbTjgeKlUX+xAJHJWrpaSn9Whz+vpCQdTC831fOGPNPiH2XPN4sK 2E2WlFd62n+60/f7w3Am+zhcPNf9ndp+ -----END CERTIFICATE-----Generated at Fri Nov 22 17:55:51 2024 by rpki-client on console-fra.rpki-client.org