$ rpki-client -vvf rpki.apnic.net/member_repository/A918D96C/A42E37FE1D9611E29C5F4A7F08B02CD2/4I1sf-Nf42ZC_m9mzNooZqZiQvE.mft File: 4I1sf-Nf42ZC_m9mzNooZqZiQvE.mft (raw, json) Hash identifier: xNHZovdbBlbhEX9y8y61yOmbHwCVQoeGRIba8OCFJgk= Subject key identifier: 61:97:33:A9:C9:3D:C7:69:ED:43:73:A1:8B:35:4B:96:84:E2:DE:29 Authority key identifier: E0:8D:6C:7F:E3:5F:E3:66:42:FE:6F:66:CC:DA:28:66:A6:62:42:F1 Certificate issuer: /CN=A918D96C/serialNumber=E08D6C7FE35FE36642FE6F66CCDA2866A66242F1 Certificate serial: 3424 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4I1sf-Nf42ZC_m9mzNooZqZiQvE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918D96C/A42E37FE1D9611E29C5F4A7F08B02CD2/4I1sf-Nf42ZC_m9mzNooZqZiQvE.mft Manifest number: 3424 Signing time: Fri 22 Nov 2024 14:51:57 +0000 Manifest this update: Fri 22 Nov 2024 14:51:57 +0000 Manifest next update: Fri 29 Nov 2024 14:51:57 +0000 Files and hashes: 1: 4I1sf-Nf42ZC_m9mzNooZqZiQvE.crl (hash: IBiH/L2anRXwRRwweLF/LhM1iqatuwNxKUlnArL6veM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918D96C/A42E37FE1D9611E29C5F4A7F08B02CD2/4I1sf-Nf42ZC_m9mzNooZqZiQvE.crl rsync://rpki.apnic.net/member_repository/A918D96C/A42E37FE1D9611E29C5F4A7F08B02CD2/4I1sf-Nf42ZC_m9mzNooZqZiQvE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4I1sf-Nf42ZC_m9mzNooZqZiQvE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 14:51:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13348 (0x3424) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918D96C/serialNumber=E08D6C7FE35FE36642FE6F66CCDA2866A66242F1 Validity Not Before: Nov 22 14:51:57 2024 GMT Not After : Nov 29 14:51:57 2024 GMT Subject: CN=67409a8d-3863 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:39:a4:d2:83:bd:0d:68:3c:6a:34:65:ee:cb: f2:27:9e:87:6c:bd:7e:00:12:ce:b4:d4:00:7b:39: ae:8e:83:7e:4f:37:b2:79:25:14:5c:b0:d3:d3:41: 8d:af:1c:1a:56:a9:15:6f:63:2d:75:03:8d:89:d3: 40:32:17:22:8a:e0:25:91:c7:a4:5f:8e:20:88:66: 13:3d:da:db:04:db:17:a2:30:91:14:64:3e:14:3f: 24:25:44:05:87:4f:a2:14:28:79:98:a6:5d:d7:19: 4e:24:93:53:99:69:89:b9:4d:01:0c:e2:15:12:9a: d3:66:33:eb:d5:c7:fd:11:5f:d1:03:48:2c:ef:3c: 21:be:50:b1:b7:47:7a:ea:49:73:70:ab:1f:f9:c7: 60:22:58:5a:0e:73:51:4e:84:8c:26:4e:25:23:ec: 1d:29:94:60:32:ba:69:1a:47:6c:6e:22:ac:39:a2: 67:87:37:27:ec:19:81:2d:a6:44:ff:9c:1f:35:17: c3:19:d8:10:c6:8d:60:49:e8:c7:3e:a7:86:70:ec: a6:71:de:3e:94:69:5e:28:2a:86:0f:d7:8a:52:3f: e9:50:43:c2:61:93:52:97:a7:e3:6c:fa:0d:5c:d0: f3:2c:01:d0:9a:49:f6:1c:58:6f:dd:1d:01:52:3f: fc:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:97:33:A9:C9:3D:C7:69:ED:43:73:A1:8B:35:4B:96:84:E2:DE:29 X509v3 Authority Key Identifier: keyid:E0:8D:6C:7F:E3:5F:E3:66:42:FE:6F:66:CC:DA:28:66:A6:62:42:F1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918D96C/A42E37FE1D9611E29C5F4A7F08B02CD2/4I1sf-Nf42ZC_m9mzNooZqZiQvE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4I1sf-Nf42ZC_m9mzNooZqZiQvE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918D96C/A42E37FE1D9611E29C5F4A7F08B02CD2/4I1sf-Nf42ZC_m9mzNooZqZiQvE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 58:0a:9c:f0:33:35:8b:b8:43:43:77:6c:d8:b7:49:82:1d:de: c1:26:de:66:c5:6e:aa:75:72:94:fc:09:b5:3f:38:5e:c5:03: 51:ba:b9:42:46:26:64:3e:07:8d:81:68:a4:4a:6b:c0:af:b8: 45:bc:d3:4b:7a:93:a6:98:25:71:a8:df:e2:26:5d:5b:0f:62: 68:75:b6:81:80:b9:8c:3d:13:75:7d:10:ca:7a:3c:1e:d3:9a: 0f:fc:54:db:29:6b:0f:14:d4:f0:9b:f4:af:cc:cb:de:07:d5: b1:79:63:15:e0:0d:56:2a:db:4b:8d:db:34:0a:98:4a:64:37: 7b:ab:5a:26:de:84:65:b2:86:65:6b:c0:c2:67:ec:64:ec:af: 21:e0:b9:c2:56:27:8b:bb:54:ce:17:95:27:08:4a:56:2b:fd: ea:78:6b:e6:16:40:77:f2:f0:6e:46:20:a8:c7:8b:07:e9:b7: bf:8d:06:f0:42:9b:41:1c:ce:99:ff:8b:b8:00:51:19:a5:3c: 1f:a2:28:c6:47:f9:c9:0c:d6:71:17:7f:2f:1c:bd:5b:22:2b: 77:be:2b:e9:5d:67:b4:36:f4:ca:6b:06:55:22:af:50:59:db: 0f:84:b3:19:8d:75:a1:aa:76:e4:59:19:5a:4e:03:17:70:ea: 75:fe:34:a8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNCQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEQ5NkMxMTAvBgNVBAUTKEUwOEQ2QzdGRTM1RkUzNjY0MkZFNkY2NkNDREEyODY2 QTY2MjQyRjEwHhcNMjQxMTIyMTQ1MTU3WhcNMjQxMTI5MTQ1MTU3WjAYMRYwFAYD VQQDEw02NzQwOWE4ZC0zODYzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArTmk0oO9DWg8ajRl7svyJ56HbL1+ABLOtNQAezmujoN+TzeyeSUUXLDT00GN rxwaVqkVb2MtdQONidNAMhciiuAlkcekX44giGYTPdrbBNsXojCRFGQ+FD8kJUQF h0+iFCh5mKZd1xlOJJNTmWmJuU0BDOIVEprTZjPr1cf9EV/RA0gs7zwhvlCxt0d6 6klzcKsf+cdgIlhaDnNRToSMJk4lI+wdKZRgMrppGkdsbiKsOaJnhzcn7BmBLaZE /5wfNRfDGdgQxo1gSejHPqeGcOymcd4+lGleKCqGD9eKUj/pUEPCYZNSl6fjbPoN XNDzLAHQmkn2HFhv3R0BUj/8MwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGGXM6nJ Pcdp7UNzoYs1S5aE4t4pMB8GA1UdIwQYMBaAFOCNbH/jX+NmQv5vZszaKGamYkLx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RDk2Qy9BNDJFMzdGRTFE OTYxMUUyOUM1RjRBN0YwOEIwMkNEMi80STFzZi1OZjQyWkNfbTltek5vb1pxWmlR dkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRJMXNmLU5mNDJaQ19tOW16Tm9vWnFaaVF2RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RDk2Qy9BNDJFMzdGRTFEOTYxMUUyOUM1RjRBN0YwOEIwMkNEMi80STFzZi1OZjQy WkNfbTltek5vb1pxWmlRdkUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBYCpzwMzWLuENDd2zYt0mCHd7BJt5mxW6qdXKU/Am1PzhexQNRurlC RiZkPgeNgWikSmvAr7hFvNNLepOmmCVxqN/iJl1bD2JodbaBgLmMPRN1fRDKejwe 05oP/FTbKWsPFNTwm/SvzMveB9WxeWMV4A1WKttLjds0CphKZDd7q1om3oRlsoZl a8DCZ+xk7K8h4LnCVieLu1TOF5UnCEpWK/3qeGvmFkB38vBuRiCox4sH6be/jQbw QptBHM6Z/4u4AFEZpTwfoijGR/nJDNZxF38vHL1bIit3vivpXWe0NvTKawZVIq9Q WdsPhLMZjXWhqnbkWRlaTgMXcOp1/jSo -----END CERTIFICATE-----Generated at Fri Nov 22 17:55:51 2024 by rpki-client on console-fra.rpki-client.org