$ rpki-client -vvf rpki.apnic.net/member_repository/A918E85E/659E9010EFF311EE977CAC31C4F9AE02/tTvOFhrPYwXsBVxZqJHoIqEe-AQ.mft File: tTvOFhrPYwXsBVxZqJHoIqEe-AQ.mft (raw, json) Hash identifier: 4KxFWNIQDGM3iMCk95zkNNDDrl0J2wVDiw8C4alfHfc= Subject key identifier: D0:67:6B:C6:C4:0B:3D:D8:0B:DF:70:49:11:1A:65:4B:E2:7F:CE:B3 Authority key identifier: B5:3B:CE:16:1A:CF:63:05:EC:05:5C:59:A8:91:E8:22:A1:1E:F8:04 Certificate issuer: /CN=A918E85E/serialNumber=B53BCE161ACF6305EC055C59A891E822A11EF804 Certificate serial: 79 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tTvOFhrPYwXsBVxZqJHoIqEe-AQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918E85E/659E9010EFF311EE977CAC31C4F9AE02/tTvOFhrPYwXsBVxZqJHoIqEe-AQ.mft Manifest number: 79 Signing time: Wed 27 Nov 2024 04:54:16 +0000 Manifest this update: Wed 27 Nov 2024 04:54:16 +0000 Manifest next update: Wed 04 Dec 2024 04:54:16 +0000 Files and hashes: 1: tTvOFhrPYwXsBVxZqJHoIqEe-AQ.crl (hash: 9TNDmSX+ENM/4Da7ONHcNLOtTcAaKA0L9wRgGZTbeIA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918E85E/659E9010EFF311EE977CAC31C4F9AE02/tTvOFhrPYwXsBVxZqJHoIqEe-AQ.crl rsync://rpki.apnic.net/member_repository/A918E85E/659E9010EFF311EE977CAC31C4F9AE02/tTvOFhrPYwXsBVxZqJHoIqEe-AQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tTvOFhrPYwXsBVxZqJHoIqEe-AQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 04 Dec 2024 04:54:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 121 (0x79) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918E85E/serialNumber=B53BCE161ACF6305EC055C59A891E822A11EF804 Validity Not Before: Nov 27 04:54:16 2024 GMT Not After : Dec 4 04:54:16 2024 GMT Subject: CN=6746a5f8-caf3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:9d:72:69:21:4b:8a:6f:b1:77:7c:00:a9:15: dd:e5:59:6f:be:55:34:eb:4c:30:d5:b1:74:b0:08: 1d:6d:79:98:9a:01:26:4d:ff:c6:b5:65:dc:4f:85: 19:27:88:3a:a6:34:b5:6f:49:65:93:77:fb:f9:78: 70:b5:22:56:f2:7a:a8:b1:fd:b2:ae:a7:be:26:0c: 41:f4:9b:88:ef:af:96:5e:28:b2:0c:85:25:73:e1: 9d:a1:8f:9e:9d:77:93:67:3b:81:ac:aa:16:1c:40: a0:7e:ac:cc:10:2e:ff:8a:eb:3d:4b:8d:77:ee:15: f6:25:f5:90:c7:90:e1:d1:09:19:15:60:fa:36:72: 06:36:79:9b:06:f5:02:eb:46:65:1a:b7:cb:da:2b: 04:a6:18:a8:61:b6:34:9c:fa:44:8b:1c:e0:18:75: 59:22:6b:35:a9:db:50:d2:94:95:ed:d9:2c:41:11: 8b:03:0e:22:4f:45:32:d6:5b:bc:4d:29:c9:3e:de: 6b:d6:7f:ee:d8:72:7a:ea:2d:9e:05:92:96:60:ee: c8:9b:08:20:b0:40:7a:9f:2f:0c:64:07:37:31:4a: 38:49:7c:d4:22:d3:cb:07:ae:e7:8a:11:c5:01:c7: 63:1b:00:ee:34:05:bc:d7:8a:87:a8:eb:2e:a7:cf: 78:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:67:6B:C6:C4:0B:3D:D8:0B:DF:70:49:11:1A:65:4B:E2:7F:CE:B3 X509v3 Authority Key Identifier: keyid:B5:3B:CE:16:1A:CF:63:05:EC:05:5C:59:A8:91:E8:22:A1:1E:F8:04 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918E85E/659E9010EFF311EE977CAC31C4F9AE02/tTvOFhrPYwXsBVxZqJHoIqEe-AQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tTvOFhrPYwXsBVxZqJHoIqEe-AQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918E85E/659E9010EFF311EE977CAC31C4F9AE02/tTvOFhrPYwXsBVxZqJHoIqEe-AQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 79:37:03:9c:e2:c7:d5:88:c4:9a:bd:20:03:73:aa:06:7b:b9: d6:2e:d0:a6:dc:1c:9e:69:b3:53:03:c9:34:7b:65:38:b7:ee: 52:35:77:59:81:01:6b:32:d1:7b:a0:95:cd:30:bf:91:76:92: 2e:5f:f5:70:98:b6:93:27:c5:ac:2b:db:3a:a5:6a:eb:b6:ae: a1:3e:17:d4:22:26:82:55:fe:a4:ee:68:d1:c4:d3:02:3d:15: b6:8b:51:c1:0e:bd:97:33:31:7d:e4:5b:46:0a:91:8e:6a:9a: b0:a1:3f:0a:ec:c7:9b:5f:b3:67:17:dd:54:d0:95:d7:68:21: 07:1d:47:28:ab:bd:1e:4e:e0:13:0f:ae:04:d9:e3:92:d0:41: d1:11:f3:78:8e:dc:2d:fd:b9:b2:22:31:61:c8:1d:77:70:be: bd:a7:3f:5d:02:24:48:71:c1:9a:07:98:9a:b7:0f:a9:26:a5: 0d:3d:03:37:88:36:e5:1e:ac:c8:00:61:9c:42:37:ff:e2:01: bf:69:34:1e:cf:2d:da:56:0d:dd:01:7e:01:f8:65:55:1c:43: 26:08:3d:46:3f:e3:d6:e7:6b:c7:41:e1:92:f5:eb:ff:5d:ba: 71:b1:24:e5:f5:8d:7e:71:a2:39:ae:c8:e9:c0:fd:80:d9:ce: b0:8b:ff:8b -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBeTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE4 RTg1RTExMC8GA1UEBRMoQjUzQkNFMTYxQUNGNjMwNUVDMDU1QzU5QTg5MUU4MjJB MTFFRjgwNDAeFw0yNDExMjcwNDU0MTZaFw0yNDEyMDQwNDU0MTZaMBgxFjAUBgNV BAMTDTY3NDZhNWY4LWNhZjMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDfnXJpIUuKb7F3fACpFd3lWW++VTTrTDDVsXSwCB1teZiaASZN/8a1ZdxPhRkn iDqmNLVvSWWTd/v5eHC1Ilbyeqix/bKup74mDEH0m4jvr5ZeKLIMhSVz4Z2hj56d d5NnO4GsqhYcQKB+rMwQLv+K6z1LjXfuFfYl9ZDHkOHRCRkVYPo2cgY2eZsG9QLr RmUat8vaKwSmGKhhtjSc+kSLHOAYdVkiazWp21DSlJXt2SxBEYsDDiJPRTLWW7xN Kck+3mvWf+7YcnrqLZ4FkpZg7sibCCCwQHqfLwxkBzcxSjhJfNQi08sHrueKEcUB x2MbAO40BbzXioeo6y6nz3gTAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU0GdrxsQL PdgL33BJERplS+J/zrMwHwYDVR0jBBgwFoAUtTvOFhrPYwXsBVxZqJHoIqEe+AQw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MThFODVFLzY1OUU5MDEwRUZG MzExRUU5NzdDQUMzMUM0RjlBRTAyL3RUdk9GaHJQWXdYc0JWeFpxSkhvSXFFZS1B US5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvdFR2T0ZoclBZd1hzQlZ4WnFKSG9JcUVlLUFRLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MThF ODVFLzY1OUU5MDEwRUZGMzExRUU5NzdDQUMzMUM0RjlBRTAyL3RUdk9GaHJQWXdY c0JWeFpxSkhvSXFFZS1BUS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAHk3A5zix9WIxJq9IANzqgZ7udYu0KbcHJ5ps1MDyTR7ZTi37lI1d1mB AWsy0Xuglc0wv5F2ki5f9XCYtpMnxawr2zqlauu2rqE+F9QiJoJV/qTuaNHE0wI9 FbaLUcEOvZczMX3kW0YKkY5qmrChPwrsx5tfs2cX3VTQlddoIQcdRyirvR5O4BMP rgTZ45LQQdER83iO3C39ubIiMWHIHXdwvr2nP10CJEhxwZoHmJq3D6kmpQ09AzeI NuUerMgAYZxCN//iAb9pNB7PLdpWDd0BfgH4ZVUcQyYIPUY/49bna8dB4ZL16/9d unGxJOX1jX5xojmuyOnA/YDZzrCL/4s= -----END CERTIFICATE-----Generated at Wed Nov 27 06:13:39 2024 by rpki-client on console-ams.rpki-client.org