$ rpki-client -vvf rpki.apnic.net/member_repository/A919136B/F7C87E843A7B11E9ACBC6A18C4F9AE02/5IPa-2wrg71IK24pCn5AU1W1Ltk.mft File: 5IPa-2wrg71IK24pCn5AU1W1Ltk.mft (raw, json) Hash identifier: C95bqTtfPOhDs7ECXrOrthgpwHZ7hCjI7cJ1EW6DMwU= Subject key identifier: 35:11:71:40:50:88:5D:18:CE:FC:F6:51:4A:BF:09:77:A3:3C:83:9B Authority key identifier: E4:83:DA:FB:6C:2B:83:BD:48:2B:6E:29:0A:7E:40:53:55:B5:2E:D9 Certificate issuer: /CN=A919136B/serialNumber=E483DAFB6C2B83BD482B6E290A7E405355B52ED9 Certificate serial: 0FF8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5IPa-2wrg71IK24pCn5AU1W1Ltk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919136B/F7C87E843A7B11E9ACBC6A18C4F9AE02/5IPa-2wrg71IK24pCn5AU1W1Ltk.mft Manifest number: 0FED Signing time: Fri 22 Nov 2024 17:26:36 +0000 Manifest this update: Fri 22 Nov 2024 17:26:36 +0000 Manifest next update: Fri 29 Nov 2024 17:26:36 +0000 Files and hashes: 1: 5IPa-2wrg71IK24pCn5AU1W1Ltk.crl (hash: MKDFfwJdXqwPp6JXl0LnwbGgbPHTk7dsN1LR7A58cUA=) 2: 99B6039C215311EA86E1E020C4F9AE02.roa (hash: FBjiENDexTIY9F8hqJiP3C+uJeH57VnMwir8al3nYvk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919136B/F7C87E843A7B11E9ACBC6A18C4F9AE02/5IPa-2wrg71IK24pCn5AU1W1Ltk.crl rsync://rpki.apnic.net/member_repository/A919136B/F7C87E843A7B11E9ACBC6A18C4F9AE02/5IPa-2wrg71IK24pCn5AU1W1Ltk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5IPa-2wrg71IK24pCn5AU1W1Ltk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 17:26:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4088 (0xff8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919136B/serialNumber=E483DAFB6C2B83BD482B6E290A7E405355B52ED9 Validity Not Before: Nov 22 17:26:36 2024 GMT Not After : Nov 29 17:26:36 2024 GMT Subject: CN=6740becc-dd00 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:34:ab:38:98:5c:b8:06:10:f5:8d:9d:4e:48: 09:04:89:e5:9a:c3:80:d5:fc:cd:74:70:78:d2:b0: d6:ea:0d:1a:6c:21:d3:db:88:86:57:2b:95:e2:83: 9b:29:ab:1c:61:e6:cf:29:05:1d:66:27:0c:2b:56: 52:52:93:c2:35:4e:68:39:9e:1a:28:34:64:7c:6e: d9:6f:c5:ea:f2:f8:5f:5c:02:95:40:3e:5d:42:c3: 2f:e2:80:6f:e1:83:39:5d:fb:3c:40:2f:ca:fb:4f: 75:17:87:f0:cf:a5:9e:18:5f:47:9d:69:c8:ac:f2: 2b:b4:17:f6:82:b4:62:cc:7c:9a:e8:50:f8:44:63: 39:b2:e9:d4:76:19:93:47:50:c7:cf:eb:5d:3c:fa: 46:4e:89:e3:fb:1d:71:22:42:b2:07:fc:be:a4:d8: df:ba:12:0d:4c:cd:a7:49:71:ad:72:09:d7:a9:24: 1c:83:77:1a:43:d1:83:40:9b:44:96:6a:23:d2:cb: 87:f5:8b:be:13:27:97:0b:c3:5f:d1:6d:5d:f7:c3: b4:01:af:18:ff:ff:84:f2:cc:20:ca:a3:7d:1f:18: 2c:8a:57:7c:f7:92:8d:94:47:a3:84:8e:f8:b3:30: b7:d4:38:68:26:90:78:be:8d:ea:92:d6:cb:07:64: 75:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:11:71:40:50:88:5D:18:CE:FC:F6:51:4A:BF:09:77:A3:3C:83:9B X509v3 Authority Key Identifier: keyid:E4:83:DA:FB:6C:2B:83:BD:48:2B:6E:29:0A:7E:40:53:55:B5:2E:D9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919136B/F7C87E843A7B11E9ACBC6A18C4F9AE02/5IPa-2wrg71IK24pCn5AU1W1Ltk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5IPa-2wrg71IK24pCn5AU1W1Ltk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919136B/F7C87E843A7B11E9ACBC6A18C4F9AE02/5IPa-2wrg71IK24pCn5AU1W1Ltk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 58:1d:ce:fd:5d:2a:c1:ff:63:64:8b:76:70:b5:dc:74:c0:ac: 55:e3:2a:ea:c5:30:ea:fd:6c:98:78:78:e7:14:0a:fe:79:6b: a6:d6:1f:30:69:66:b6:90:e4:d6:aa:84:41:2d:72:76:a1:39: 9a:72:f5:f0:de:bd:e0:d4:45:36:f6:48:50:a7:a8:4e:35:c0: b1:d5:61:c6:f9:e7:14:0b:8a:fe:e5:87:2d:46:63:59:7a:d2: 9a:61:cf:b8:d2:94:46:6e:5b:5f:69:4f:ef:cf:d9:fe:f0:bd: c3:94:20:32:3f:77:56:81:e0:1f:21:e7:9f:f0:fd:81:15:83: 36:d9:22:5e:9b:a2:59:6e:69:87:ad:02:35:d8:a9:4a:4b:2f: bb:40:91:e6:f4:a4:77:88:dc:a9:37:d6:b9:80:e6:7a:3b:00: 56:18:9f:58:76:67:f8:7c:b7:db:59:16:44:51:8b:2d:7e:8b: c5:ae:74:fd:ca:b4:e5:e3:e4:7a:02:02:22:0c:90:00:41:63: 83:85:55:1e:ab:94:01:aa:39:fc:67:d8:f1:b9:a6:f1:34:a4: 12:2f:1b:a9:85:b1:88:a7:b7:2f:14:66:53:d8:40:77:ab:3b: 9d:e7:98:43:f6:f7:ae:40:1c:61:b9:08:5e:c5:ee:19:32:bb: dc:13:d1:42 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICD/gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTEzNkIxMTAvBgNVBAUTKEU0ODNEQUZCNkMyQjgzQkQ0ODJCNkUyOTBBN0U0MDUz NTVCNTJFRDkwHhcNMjQxMTIyMTcyNjM2WhcNMjQxMTI5MTcyNjM2WjAYMRYwFAYD VQQDEw02NzQwYmVjYy1kZDAwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwjSrOJhcuAYQ9Y2dTkgJBInlmsOA1fzNdHB40rDW6g0abCHT24iGVyuV4oOb KascYebPKQUdZicMK1ZSUpPCNU5oOZ4aKDRkfG7Zb8Xq8vhfXAKVQD5dQsMv4oBv 4YM5Xfs8QC/K+091F4fwz6WeGF9HnWnIrPIrtBf2grRizHya6FD4RGM5sunUdhmT R1DHz+tdPPpGTonj+x1xIkKyB/y+pNjfuhINTM2nSXGtcgnXqSQcg3caQ9GDQJtE lmoj0suH9Yu+EyeXC8Nf0W1d98O0Aa8Y//+E8swgyqN9Hxgsild895KNlEejhI74 szC31DhoJpB4vo3qktbLB2R1OQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDURcUBQ iF0Yzvz2UUq/CXejPIObMB8GA1UdIwQYMBaAFOSD2vtsK4O9SCtuKQp+QFNVtS7Z MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MTM2Qi9GN0M4N0U4NDNB N0IxMUU5QUNCQzZBMThDNEY5QUUwMi81SVBhLTJ3cmc3MUlLMjRwQ241QVUxVzFM dGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVJUGEtMndyZzcxSUsyNHBDbjVBVTFXMUx0ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 MTM2Qi9GN0M4N0U4NDNBN0IxMUU5QUNCQzZBMThDNEY5QUUwMi81SVBhLTJ3cmc3 MUlLMjRwQ241QVUxVzFMdGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBYHc79XSrB/2Nki3Zwtdx0wKxV4yrqxTDq/WyYeHjnFAr+eWum1h8w aWa2kOTWqoRBLXJ2oTmacvXw3r3g1EU29khQp6hONcCx1WHG+ecUC4r+5YctRmNZ etKaYc+40pRGbltfaU/vz9n+8L3DlCAyP3dWgeAfIeef8P2BFYM22SJem6JZbmmH rQI12KlKSy+7QJHm9KR3iNypN9a5gOZ6OwBWGJ9Ydmf4fLfbWRZEUYstfovFrnT9 yrTl4+R6AgIiDJAAQWODhVUeq5QBqjn8Z9jxuabxNKQSLxuphbGIp7cvFGZT2EB3 qzud55hD9veuQBxhuQhexe4ZMrvcE9FC -----END CERTIFICATE-----Generated at Fri Nov 22 19:45:00 2024 by rpki-client on console-fra.rpki-client.org