$ rpki-client -vvf rpki.apnic.net/member_repository/A918DB7E/9C3FECDC64DC11EFB31EA839C4F9AE02/AtoTJ_UsQCOjghrIeFDJF9joNSc.mft File: AtoTJ_UsQCOjghrIeFDJF9joNSc.mft (raw, json) Hash identifier: lrxpV5mLA/EKG58hHXGeZhtWcLveQOaoFR5Ic8Bj3o8= Subject key identifier: E6:7E:9B:23:5F:B5:26:BC:A1:E3:96:DB:15:53:02:29:30:93:2C:BA Authority key identifier: 02:DA:13:27:F5:2C:40:23:A3:82:1A:C8:78:50:C9:17:D8:E8:35:27 Certificate issuer: /CN=A918DB7E/serialNumber=02DA1327F52C4023A3821AC87850C917D8E83527 Certificate serial: 2F Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/AtoTJ_UsQCOjghrIeFDJF9joNSc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918DB7E/9C3FECDC64DC11EFB31EA839C4F9AE02/AtoTJ_UsQCOjghrIeFDJF9joNSc.mft Manifest number: 2E Signing time: Thu 21 Nov 2024 05:44:47 +0000 Manifest this update: Thu 21 Nov 2024 05:44:46 +0000 Manifest next update: Thu 28 Nov 2024 05:44:46 +0000 Files and hashes: 1: AtoTJ_UsQCOjghrIeFDJF9joNSc.crl (hash: GgI/xcYjvTt928lPe9fBlGLjqOZzmzTh6QMsNylekoY=) 2: CE1E14AE64DC11EFBE5A023AC4F9AE02.roa (hash: TL1SnZ/gVu4gXR6fktiVjS67hjGfn2PQM4oWEdnN0mQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918DB7E/9C3FECDC64DC11EFB31EA839C4F9AE02/AtoTJ_UsQCOjghrIeFDJF9joNSc.crl rsync://rpki.apnic.net/member_repository/A918DB7E/9C3FECDC64DC11EFB31EA839C4F9AE02/AtoTJ_UsQCOjghrIeFDJF9joNSc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/AtoTJ_UsQCOjghrIeFDJF9joNSc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 02:50:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 47 (0x2f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918DB7E/serialNumber=02DA1327F52C4023A3821AC87850C917D8E83527 Validity Not Before: Nov 21 05:44:46 2024 GMT Not After : Nov 28 05:44:46 2024 GMT Subject: CN=673ec8cf-5cf9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:75:e4:f9:48:5a:68:bc:f2:56:7c:9a:8c:4e: f4:c0:83:af:b0:d5:26:35:cd:d2:a0:2d:f4:69:1a: 1b:10:e9:3e:bd:89:e8:fc:76:52:16:34:d0:1e:9e: 4f:0b:9e:e4:a7:81:cc:2f:41:fc:35:b0:5e:69:70: 4d:20:99:bb:d0:58:cd:41:87:bc:4a:58:fb:08:90: a5:0d:15:25:03:a8:fa:2a:be:e6:18:ca:35:fc:3e: e4:84:0a:8d:e6:0d:93:42:64:e6:2a:6c:a1:36:19: 2e:14:ec:a6:88:9a:6f:f2:7a:76:22:06:e8:c4:28: 16:35:7e:63:02:6a:77:94:2c:05:db:bc:dc:6f:7a: 7f:6b:a2:69:fd:8e:fb:ea:f8:46:11:9e:8c:9d:f0: ce:fe:77:89:a1:e8:62:17:59:32:d9:e1:d9:a2:be: fa:6d:bc:bb:b7:7a:c4:76:27:f6:a2:f7:46:02:c7: 36:2b:99:64:9f:4e:c4:33:7c:53:00:2b:53:84:fd: 63:70:9b:c3:9b:19:f8:11:56:4b:79:b2:09:51:12: 1d:0c:d3:67:04:8d:41:c9:19:5e:85:b9:99:5f:21: c8:58:33:5b:e2:e5:f7:8b:67:8c:b6:5c:19:20:a9: 15:a2:77:fb:a6:c9:aa:a4:51:50:24:e8:85:31:ad: f4:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:7E:9B:23:5F:B5:26:BC:A1:E3:96:DB:15:53:02:29:30:93:2C:BA X509v3 Authority Key Identifier: keyid:02:DA:13:27:F5:2C:40:23:A3:82:1A:C8:78:50:C9:17:D8:E8:35:27 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918DB7E/9C3FECDC64DC11EFB31EA839C4F9AE02/AtoTJ_UsQCOjghrIeFDJF9joNSc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/AtoTJ_UsQCOjghrIeFDJF9joNSc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918DB7E/9C3FECDC64DC11EFB31EA839C4F9AE02/AtoTJ_UsQCOjghrIeFDJF9joNSc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7c:ed:76:14:c8:f8:d9:d0:35:58:83:d1:d1:80:86:87:cf:14: 3a:70:90:17:16:ea:ea:38:43:c7:b7:c4:08:0e:b5:35:34:eb: d9:c0:d1:9f:75:7f:eb:e8:2a:e0:67:0f:c2:4c:80:f7:a6:a4: 64:cb:cb:b3:77:d9:0d:99:e2:70:40:7b:01:2b:e9:48:5d:5f: 37:bc:ce:0b:84:88:23:ad:06:34:e7:e5:77:ea:3c:bd:ae:e8: f8:eb:77:1f:55:34:d7:10:16:66:6e:df:9f:ad:81:c6:8f:3f: ff:96:59:11:72:e8:34:99:5a:83:8e:07:02:5b:24:c3:55:5e: c5:c5:62:70:32:67:31:ad:50:56:59:9c:60:f9:ff:b6:61:9b: f8:b1:53:55:db:96:3d:28:40:b0:5d:b6:eb:ed:f9:55:0e:5e: a5:c1:e4:58:fd:a2:00:47:21:10:34:a0:b5:74:f9:4e:87:54: 60:74:5a:24:26:58:f3:de:b7:e1:b3:3c:42:95:28:26:e7:6e: 62:2e:e1:52:d0:72:05:63:39:ce:6e:1c:8b:68:5d:64:98:13: c7:8d:b0:bf:53:ef:d2:7c:8e:5d:da:76:8c:20:ff:a1:e9:fc: f3:e4:85:07:4b:5a:6e:da:2a:2d:16:b9:5f:ab:8f:03:54:9f: d3:8b:68:31 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBLzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE4 REI3RTExMC8GA1UEBRMoMDJEQTEzMjdGNTJDNDAyM0EzODIxQUM4Nzg1MEM5MTdE OEU4MzUyNzAeFw0yNDExMjEwNTQ0NDZaFw0yNDExMjgwNTQ0NDZaMBgxFjAUBgNV BAMTDTY3M2VjOGNmLTVjZjkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCbdeT5SFpovPJWfJqMTvTAg6+w1SY1zdKgLfRpGhsQ6T69iej8dlIWNNAenk8L nuSngcwvQfw1sF5pcE0gmbvQWM1Bh7xKWPsIkKUNFSUDqPoqvuYYyjX8PuSECo3m DZNCZOYqbKE2GS4U7KaImm/yenYiBujEKBY1fmMCaneULAXbvNxven9romn9jvvq +EYRnoyd8M7+d4mh6GIXWTLZ4dmivvptvLu3esR2J/ai90YCxzYrmWSfTsQzfFMA K1OE/WNwm8ObGfgRVkt5sglREh0M02cEjUHJGV6FuZlfIchYM1vi5feLZ4y2XBkg qRWid/umyaqkUVAk6IUxrfSzAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU5n6bI1+1 Jryh45bbFVMCKTCTLLowHwYDVR0jBBgwFoAUAtoTJ/UsQCOjghrIeFDJF9joNScw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MThEQjdFLzlDM0ZFQ0RDNjRE QzExRUZCMzFFQTgzOUM0RjlBRTAyL0F0b1RKX1VzUUNPamdockllRkRKRjlqb05T Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvQXRvVEpfVXNRQ09qZ2hySWVGREpGOWpvTlNjLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MThE QjdFLzlDM0ZFQ0RDNjREQzExRUZCMzFFQTgzOUM0RjlBRTAyL0F0b1RKX1VzUUNP amdockllRkRKRjlqb05TYy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAHztdhTI+NnQNViD0dGAhofPFDpwkBcW6uo4Q8e3xAgOtTU069nA0Z91 f+voKuBnD8JMgPempGTLy7N32Q2Z4nBAewEr6UhdXze8zguEiCOtBjTn5XfqPL2u 6Pjrdx9VNNcQFmZu35+tgcaPP/+WWRFy6DSZWoOOBwJbJMNVXsXFYnAyZzGtUFZZ nGD5/7Zhm/ixU1Xblj0oQLBdtuvt+VUOXqXB5Fj9ogBHIRA0oLV0+U6HVGB0WiQm WPPet+GzPEKVKCbnbmIu4VLQcgVjOc5uHItoXWSYE8eNsL9T79J8jl3adowg/6Hp /PPkhQdLWm7aKi0WuV+rjwNUn9OLaDE= -----END CERTIFICATE-----Generated at Thu Nov 21 06:50:19 2024 by rpki-client on console-fra.rpki-client.org