$ rpki-client -vvf rpki.apnic.net/member_repository/A918E4B7/96E6675A784E11EEB19AD34DC4F9AE02/40tPgNnj9wC8rExSxasj61t-37s.mft File: 40tPgNnj9wC8rExSxasj61t-37s.mft (raw, json) Hash identifier: n1sn/mquSAVnNx/dCdijKeB4tW4DqlmsEYUeMqVMLc4= Subject key identifier: C2:2B:5B:AA:3A:41:8E:BB:E1:01:D9:4F:9F:AC:42:32:BB:33:27:B0 Authority key identifier: E3:4B:4F:80:D9:E3:F7:00:BC:AC:4C:52:C5:AB:23:EB:5B:7E:DF:BB Certificate issuer: /CN=A918E4B7/serialNumber=E34B4F80D9E3F700BCAC4C52C5AB23EB5B7EDFBB Certificate serial: D3 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/40tPgNnj9wC8rExSxasj61t-37s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918E4B7/96E6675A784E11EEB19AD34DC4F9AE02/40tPgNnj9wC8rExSxasj61t-37s.mft Manifest number: CF Signing time: Wed 20 Nov 2024 23:37:16 +0000 Manifest this update: Wed 20 Nov 2024 23:37:15 +0000 Manifest next update: Wed 27 Nov 2024 23:37:15 +0000 Files and hashes: 1: 40tPgNnj9wC8rExSxasj61t-37s.crl (hash: NkxmV8HpYG/LQC90K50PMxJCpxGzkae0qWYd67bshO0=) 2: 1E4ABC8C50C111EFA64C2437C4F9AE02.roa (hash: +idkc0Y+TplJvB7T7xrVzyMgw/UlYDqH1h1gbH9ycfU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918E4B7/96E6675A784E11EEB19AD34DC4F9AE02/40tPgNnj9wC8rExSxasj61t-37s.crl rsync://rpki.apnic.net/member_repository/A918E4B7/96E6675A784E11EEB19AD34DC4F9AE02/40tPgNnj9wC8rExSxasj61t-37s.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/40tPgNnj9wC8rExSxasj61t-37s.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 19:45:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 211 (0xd3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918E4B7/serialNumber=E34B4F80D9E3F700BCAC4C52C5AB23EB5B7EDFBB Validity Not Before: Nov 20 23:37:15 2024 GMT Not After : Nov 27 23:37:15 2024 GMT Subject: CN=673e72ac-6825 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:90:da:2e:9a:b4:45:b4:69:f4:80:11:ff:5d:38: 8c:e7:63:1a:10:a6:e7:4b:79:34:fb:44:e5:61:4e: c4:d5:bc:0c:30:00:70:1a:49:d7:93:9f:fe:60:bd: 46:5b:76:b3:aa:f5:31:02:d0:0b:5c:23:ad:0d:df: 52:e3:c2:c5:cd:8a:8b:f7:d2:d7:37:96:29:a3:22: 25:b6:f3:d3:43:00:d1:5f:98:1e:ec:9f:29:a9:3f: 05:16:19:75:6f:0e:7b:6e:93:80:42:3c:43:7b:f8: ec:43:e0:3e:65:b1:78:fa:9a:67:f0:4a:38:b4:19: f3:b9:f9:12:08:88:df:1c:89:83:c0:4b:54:22:a4: cf:be:d7:51:e9:6f:eb:0b:b1:7e:20:a5:9e:97:d8: ca:0a:cd:bc:be:ab:ed:64:84:71:c1:80:90:c7:e5: b7:ea:b7:fe:41:bc:be:9d:68:86:3e:8e:61:3d:a8: ae:ca:4f:38:e8:47:20:60:64:78:60:d8:b4:a9:50: 31:02:a9:1d:31:9a:11:d4:90:d5:28:e1:1c:fd:de: 3c:3e:9b:03:a1:de:2c:fe:83:db:54:d4:ae:e6:34: f0:69:22:eb:cf:09:7a:3d:45:23:96:94:81:8a:ee: 6d:fd:9e:47:23:b5:e5:da:c6:f5:45:94:a0:f0:16: 83:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:2B:5B:AA:3A:41:8E:BB:E1:01:D9:4F:9F:AC:42:32:BB:33:27:B0 X509v3 Authority Key Identifier: keyid:E3:4B:4F:80:D9:E3:F7:00:BC:AC:4C:52:C5:AB:23:EB:5B:7E:DF:BB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918E4B7/96E6675A784E11EEB19AD34DC4F9AE02/40tPgNnj9wC8rExSxasj61t-37s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/40tPgNnj9wC8rExSxasj61t-37s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918E4B7/96E6675A784E11EEB19AD34DC4F9AE02/40tPgNnj9wC8rExSxasj61t-37s.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 37:d0:05:a4:c5:f1:12:fe:5c:da:6e:d0:9a:59:3b:98:36:c4: 86:9c:23:f9:3a:82:cb:59:c0:12:09:c6:a0:09:23:1f:80:94: f1:ec:cb:5c:d0:5c:3e:aa:8b:f4:df:29:f2:22:7a:c7:1b:55: 56:8b:5d:1b:0a:d5:a6:d7:8e:ed:f6:05:7c:3d:84:cb:2b:6a: af:f8:60:a7:db:af:02:c7:10:45:50:fd:37:4e:78:9a:a2:d5: 89:80:cd:a8:02:e0:de:03:bf:f2:84:7c:6d:05:42:72:20:92: 7d:b1:a1:8b:d7:58:5a:c5:f9:3e:63:7d:5a:43:5d:04:e6:75: 05:fb:5b:1e:ee:fb:46:03:12:c6:a6:db:58:fd:77:30:7f:12: a2:19:d5:71:ae:ca:47:bc:3e:01:59:bc:a9:62:98:9f:54:07: 43:26:23:f8:c8:57:25:6a:fa:0c:70:05:7a:73:d6:a8:15:b8: 87:b7:2f:22:44:20:77:24:28:74:a2:52:48:34:1f:fc:c4:0a: 19:d2:35:2f:ea:f1:77:ce:50:e1:09:a9:10:8f:66:bd:a4:b0: ac:59:55:2c:3c:7c:5d:6c:62:42:7e:31:51:08:09:e4:22:04: 0d:ee:06:ff:7f:a0:e2:f3:46:1c:67:a7:e9:e4:bd:b4:d2:34: b2:93:20:95 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICANMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEU0QjcxMTAvBgNVBAUTKEUzNEI0RjgwRDlFM0Y3MDBCQ0FDNEM1MkM1QUIyM0VC NUI3RURGQkIwHhcNMjQxMTIwMjMzNzE1WhcNMjQxMTI3MjMzNzE1WjAYMRYwFAYD VQQDEw02NzNlNzJhYy02ODI1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAkNoumrRFtGn0gBH/XTiM52MaEKbnS3k0+0TlYU7E1bwMMABwGknXk5/+YL1G W3azqvUxAtALXCOtDd9S48LFzYqL99LXN5YpoyIltvPTQwDRX5ge7J8pqT8FFhl1 bw57bpOAQjxDe/jsQ+A+ZbF4+ppn8Eo4tBnzufkSCIjfHImDwEtUIqTPvtdR6W/r C7F+IKWel9jKCs28vqvtZIRxwYCQx+W36rf+Qby+nWiGPo5hPaiuyk846EcgYGR4 YNi0qVAxAqkdMZoR1JDVKOEc/d48PpsDod4s/oPbVNSu5jTwaSLrzwl6PUUjlpSB iu5t/Z5HI7Xl2sb1RZSg8BaDAwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMIrW6o6 QY674QHZT5+sQjK7MyewMB8GA1UdIwQYMBaAFONLT4DZ4/cAvKxMUsWrI+tbft+7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RTRCNy85NkU2Njc1QTc4 NEUxMUVFQjE5QUQzNERDNEY5QUUwMi80MHRQZ05uajl3QzhyRXhTeGFzajYxdC0z N3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzQwdFBnTm5qOXdDOHJFeFN4YXNqNjF0LTM3cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RTRCNy85NkU2Njc1QTc4NEUxMUVFQjE5QUQzNERDNEY5QUUwMi80MHRQZ05uajl3 QzhyRXhTeGFzajYxdC0zN3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA30AWkxfES/lzabtCaWTuYNsSGnCP5OoLLWcASCcagCSMfgJTx7Mtc 0Fw+qov03ynyInrHG1VWi10bCtWm147t9gV8PYTLK2qv+GCn268CxxBFUP03Tnia otWJgM2oAuDeA7/yhHxtBUJyIJJ9saGL11haxfk+Y31aQ10E5nUF+1se7vtGAxLG pttY/XcwfxKiGdVxrspHvD4BWbypYpifVAdDJiP4yFclavoMcAV6c9aoFbiHty8i RCB3JCh0olJINB/8xAoZ0jUv6vF3zlDhCakQj2a9pLCsWVUsPHxdbGJCfjFRCAnk IgQN7gb/f6Di80YcZ6fp5L200jSykyCV -----END CERTIFICATE-----Generated at Thu Nov 21 00:21:22 2024 by rpki-client on console-fra.rpki-client.org