$ rpki-client -vvf rpki.apnic.net/member_repository/A918D7D0/982B2D5A008211EAB71F4A2BC4F9AE02/7DuQw0iG_Qko4xJUYfu0FSvpkTc.mft File: 7DuQw0iG_Qko4xJUYfu0FSvpkTc.mft (raw, json) Hash identifier: 7QmlrcPIOGp739NHbwGHEBjyBPEREY6e6tYeyiFxLuk= Subject key identifier: 86:D6:04:1D:00:51:5F:76:BF:0D:41:6A:2C:67:E7:F8:87:19:3A:E4 Authority key identifier: EC:3B:90:C3:48:86:FD:09:28:E3:12:54:61:FB:B4:15:2B:E9:91:37 Certificate issuer: /CN=A918D7D0/serialNumber=EC3B90C34886FD0928E3125461FBB4152BE99137 Certificate serial: 0BF3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7DuQw0iG_Qko4xJUYfu0FSvpkTc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918D7D0/982B2D5A008211EAB71F4A2BC4F9AE02/7DuQw0iG_Qko4xJUYfu0FSvpkTc.mft Manifest number: 1387 Signing time: Fri 22 Nov 2024 18:20:30 +0000 Manifest this update: Fri 22 Nov 2024 18:20:29 +0000 Manifest next update: Fri 29 Nov 2024 18:20:29 +0000 Files and hashes: 1: 7DuQw0iG_Qko4xJUYfu0FSvpkTc.crl (hash: uXcxCZ4Ae3+kfB83Nl3XGHyr7KlpskLNzaU5Q8W/EYA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918D7D0/982B2D5A008211EAB71F4A2BC4F9AE02/7DuQw0iG_Qko4xJUYfu0FSvpkTc.crl rsync://rpki.apnic.net/member_repository/A918D7D0/982B2D5A008211EAB71F4A2BC4F9AE02/7DuQw0iG_Qko4xJUYfu0FSvpkTc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7DuQw0iG_Qko4xJUYfu0FSvpkTc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 18:20:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3059 (0xbf3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918D7D0/serialNumber=EC3B90C34886FD0928E3125461FBB4152BE99137 Validity Not Before: Nov 22 18:20:29 2024 GMT Not After : Nov 29 18:20:29 2024 GMT Subject: CN=6740cb6d-0d03 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:28:bf:4f:59:4a:98:a8:16:12:d5:38:33:cc: cd:a5:ae:85:2c:79:a4:05:1f:ee:f6:8c:b5:d2:e9: 71:47:4c:15:b0:50:91:74:94:ea:f2:ca:09:ef:c1: 52:8c:d0:1b:c3:ca:84:a8:64:31:ae:5c:64:4f:54: 26:6e:6d:f4:ec:52:3e:62:56:55:50:42:87:81:be: f3:22:16:89:f0:b0:50:dc:68:07:7c:d4:a4:97:23: ad:58:4f:ca:f7:e2:c9:8c:0a:3b:a5:3a:ba:34:6f: ca:3f:96:62:97:59:ae:98:04:dc:65:63:f1:91:48: 02:92:3e:69:27:76:1f:ea:50:69:31:13:da:8f:c6: d3:1b:47:ce:51:1b:76:4d:94:d8:b8:5e:ae:46:85: 68:4d:75:d2:48:a1:71:b9:61:7c:fd:40:45:69:42: 4f:05:65:1f:5d:8e:b8:0b:8c:65:37:5f:c4:34:29: 00:77:9c:a6:2c:51:6f:45:b5:86:07:40:cf:30:1c: c0:bf:b5:2c:5b:6e:6e:3f:62:a8:94:89:13:53:15: b4:34:81:29:e1:27:3e:33:a9:8b:59:a4:f4:35:0d: ba:de:72:85:68:90:80:63:13:f5:3b:22:28:78:c2: 2a:f6:49:6c:e9:2b:e9:1b:c0:2e:90:9b:91:69:19: 87:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:D6:04:1D:00:51:5F:76:BF:0D:41:6A:2C:67:E7:F8:87:19:3A:E4 X509v3 Authority Key Identifier: keyid:EC:3B:90:C3:48:86:FD:09:28:E3:12:54:61:FB:B4:15:2B:E9:91:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918D7D0/982B2D5A008211EAB71F4A2BC4F9AE02/7DuQw0iG_Qko4xJUYfu0FSvpkTc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7DuQw0iG_Qko4xJUYfu0FSvpkTc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918D7D0/982B2D5A008211EAB71F4A2BC4F9AE02/7DuQw0iG_Qko4xJUYfu0FSvpkTc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 10:aa:aa:80:7c:fa:ce:b5:27:14:90:56:f5:91:11:ae:13:d5: 26:40:70:c5:27:d2:46:42:91:4f:02:3d:f4:6b:b8:17:61:eb: 68:0a:5c:34:80:73:12:e6:d6:ff:ab:a9:db:94:2f:46:7f:d4: 95:bd:00:17:ba:e3:b8:50:40:17:1d:37:eb:83:ad:87:64:cc: 1f:6c:52:1c:dc:7e:04:ae:ce:03:4e:d8:ab:d3:a2:83:95:80: 23:b8:89:a1:ac:4f:29:a1:6c:cb:28:08:b9:9e:61:c2:87:64: cc:f4:93:fa:72:d1:f0:df:8c:f3:31:f5:13:4e:f3:e1:f6:b7: 7a:2c:65:ac:84:06:7c:18:c1:b9:05:c0:9a:82:52:b1:11:2b: 71:45:92:8f:d7:84:b4:ed:04:1e:e9:90:9a:33:fe:b6:67:7b: ee:3a:ca:ce:5c:77:31:43:27:98:dd:cf:70:54:6c:de:b4:5d: fb:84:d4:7b:5d:71:a1:6b:9e:8b:00:0d:33:8f:81:a0:f3:a4: da:3a:73:b8:59:2f:fa:47:fc:a2:31:83:34:a9:54:ef:b3:6e: a8:72:0e:8c:2b:45:55:f4:14:69:c5:a7:90:c8:ce:1c:0a:28: 67:ee:fa:b0:33:c6:8e:83:4f:30:77:16:c1:f5:f1:c0:ba:5d: 0d:1b:6d:8e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC/MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEQ3RDAxMTAvBgNVBAUTKEVDM0I5MEMzNDg4NkZEMDkyOEUzMTI1NDYxRkJCNDE1 MkJFOTkxMzcwHhcNMjQxMTIyMTgyMDI5WhcNMjQxMTI5MTgyMDI5WjAYMRYwFAYD VQQDEw02NzQwY2I2ZC0wZDAzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2Ci/T1lKmKgWEtU4M8zNpa6FLHmkBR/u9oy10ulxR0wVsFCRdJTq8soJ78FS jNAbw8qEqGQxrlxkT1Qmbm307FI+YlZVUEKHgb7zIhaJ8LBQ3GgHfNSklyOtWE/K 9+LJjAo7pTq6NG/KP5Zil1mumATcZWPxkUgCkj5pJ3Yf6lBpMRPaj8bTG0fOURt2 TZTYuF6uRoVoTXXSSKFxuWF8/UBFaUJPBWUfXY64C4xlN1/ENCkAd5ymLFFvRbWG B0DPMBzAv7UsW25uP2KolIkTUxW0NIEp4Sc+M6mLWaT0NQ263nKFaJCAYxP1OyIo eMIq9kls6SvpG8AukJuRaRmHMwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIbWBB0A UV92vw1Baixn5/iHGTrkMB8GA1UdIwQYMBaAFOw7kMNIhv0JKOMSVGH7tBUr6ZE3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RDdEMC85ODJCMkQ1QTAw ODIxMUVBQjcxRjRBMkJDNEY5QUUwMi83RHVRdzBpR19Ra280eEpVWWZ1MEZTdnBr VGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzdEdVF3MGlHX1FrbzR4SlVZZnUwRlN2cGtUYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RDdEMC85ODJCMkQ1QTAwODIxMUVBQjcxRjRBMkJDNEY5QUUwMi83RHVRdzBpR19R a280eEpVWWZ1MEZTdnBrVGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAQqqqAfPrOtScUkFb1kRGuE9UmQHDFJ9JGQpFPAj30a7gXYetoClw0 gHMS5tb/q6nblC9Gf9SVvQAXuuO4UEAXHTfrg62HZMwfbFIc3H4Ers4DTtir06KD lYAjuImhrE8poWzLKAi5nmHCh2TM9JP6ctHw34zzMfUTTvPh9rd6LGWshAZ8GMG5 BcCaglKxEStxRZKP14S07QQe6ZCaM/62Z3vuOsrOXHcxQyeY3c9wVGzetF37hNR7 XXGha56LAA0zj4Gg86TaOnO4WS/6R/yiMYM0qVTvs26ocg6MK0VV9BRpxaeQyM4c Cihn7vqwM8aOg08wdxbB9fHAul0NG22O -----END CERTIFICATE-----Generated at Fri Nov 22 19:50:07 2024 by rpki-client on console-ams.rpki-client.org