$ rpki-client -vvf rpki.apnic.net/member_repository/A91972DF/CC78B7627C0B11EF894A2919C4F9AE02/aBR3td5WajjZsBVtqHq6-p-vhb0.mft File: aBR3td5WajjZsBVtqHq6-p-vhb0.mft (raw, json) Hash identifier: kXNNO8OnV01rYFbqQ5m3i8NZuzb5hKd2mYJ17FlBMdA= Subject key identifier: 34:95:D7:0B:45:20:95:77:F6:DD:D5:BB:AB:AC:D7:28:4C:95:00:42 Authority key identifier: 68:14:77:B5:DE:56:6A:38:D9:B0:15:6D:A8:7A:BA:FA:9F:AF:85:BD Certificate issuer: /CN=A91972DF/serialNumber=681477B5DE566A38D9B0156DA87ABAFA9FAF85BD Certificate serial: 21 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aBR3td5WajjZsBVtqHq6-p-vhb0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91972DF/CC78B7627C0B11EF894A2919C4F9AE02/aBR3td5WajjZsBVtqHq6-p-vhb0.mft Manifest number: 21 Signing time: Thu 21 Nov 2024 05:55:44 +0000 Manifest this update: Thu 21 Nov 2024 05:55:44 +0000 Manifest next update: Thu 28 Nov 2024 05:55:44 +0000 Files and hashes: 1: aBR3td5WajjZsBVtqHq6-p-vhb0.crl (hash: vLbUvaKvqAlYh8uas1qCRZP0cuxcdQMbUEj3XQlDmcM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91972DF/CC78B7627C0B11EF894A2919C4F9AE02/aBR3td5WajjZsBVtqHq6-p-vhb0.crl rsync://rpki.apnic.net/member_repository/A91972DF/CC78B7627C0B11EF894A2919C4F9AE02/aBR3td5WajjZsBVtqHq6-p-vhb0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aBR3td5WajjZsBVtqHq6-p-vhb0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 05:18:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 33 (0x21) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91972DF/serialNumber=681477B5DE566A38D9B0156DA87ABAFA9FAF85BD Validity Not Before: Nov 21 05:55:44 2024 GMT Not After : Nov 28 05:55:44 2024 GMT Subject: CN=673ecb60-ac84 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:9a:2e:3a:0b:4a:67:02:a9:b0:d1:50:4e:2f: f9:70:a0:32:70:65:be:da:6b:88:35:7f:23:1a:86: b8:1d:82:35:fd:1a:82:47:56:e6:5e:4d:0a:5b:fd: 09:5f:3b:e4:ef:c2:54:0c:9a:aa:65:49:b4:f8:93: 1b:f9:df:93:b3:4d:57:c6:b6:4a:7f:05:e4:ba:93: 67:30:4d:b7:6e:9a:72:e9:c2:8f:e5:39:61:6e:69: 04:ab:54:81:a6:a9:8d:2e:e3:c7:48:3e:19:a5:1f: cb:66:d7:06:52:f9:b9:a3:a0:e4:c0:ae:5a:76:8e: 1a:a3:51:df:2d:c1:ac:6e:d1:b0:59:7e:5a:3c:86: 93:af:9f:72:c8:91:b4:9d:54:f7:a7:f9:5e:94:9e: 28:de:e3:ba:e2:11:d5:a5:38:61:09:a9:67:49:9f: e0:25:18:6d:03:8a:d1:4f:1a:f4:73:f4:86:e0:ca: dc:66:0a:43:98:ed:fe:e8:f6:cd:6a:75:31:ad:49: 98:e4:3a:53:25:ce:4d:f8:23:51:b8:a9:55:ff:80: 5a:94:09:d4:de:4d:b3:be:f2:8e:9d:52:01:b0:80: 4b:29:b7:01:b5:f5:3b:40:71:2e:6c:61:e2:1d:ba: 5f:9b:4b:bd:b3:7a:9b:4d:7b:58:f7:2a:99:d2:26: 3f:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:95:D7:0B:45:20:95:77:F6:DD:D5:BB:AB:AC:D7:28:4C:95:00:42 X509v3 Authority Key Identifier: keyid:68:14:77:B5:DE:56:6A:38:D9:B0:15:6D:A8:7A:BA:FA:9F:AF:85:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91972DF/CC78B7627C0B11EF894A2919C4F9AE02/aBR3td5WajjZsBVtqHq6-p-vhb0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aBR3td5WajjZsBVtqHq6-p-vhb0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91972DF/CC78B7627C0B11EF894A2919C4F9AE02/aBR3td5WajjZsBVtqHq6-p-vhb0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 85:9e:4d:fb:4c:c4:24:38:4b:3d:da:b9:d7:45:b2:ee:52:50: d8:16:b4:09:29:b3:eb:42:4b:52:77:36:c9:b0:e8:d1:7d:c2: a5:53:57:0a:19:55:fd:eb:90:3f:04:3e:e2:21:f1:f6:05:bc: 9a:e6:eb:ae:d9:47:72:4e:bc:c8:00:0a:a0:58:d9:1f:c6:6a: 6e:90:57:31:47:ec:d3:7f:cd:23:9a:e2:0e:8f:37:27:c8:07: f0:80:79:24:b6:4b:41:de:46:30:76:ac:a8:bd:d3:d8:b7:97: 81:cc:46:6f:a0:7c:bb:df:40:df:ff:3d:06:c1:47:53:9a:64: b4:38:06:07:a0:70:1c:00:41:85:e0:5a:e0:9b:f3:b1:12:e7: 3b:ae:bb:96:51:a7:2d:b5:33:a3:6b:f0:77:67:5c:ae:ea:fc: f6:52:62:54:66:d0:a9:d4:a9:63:27:4f:ab:77:3a:91:42:12: df:53:6d:56:cb:99:83:28:39:6c:3f:68:82:d9:9d:bc:c6:6e: 13:ad:19:b3:b4:4c:2c:1d:a7:00:8a:5a:1b:ce:11:2b:b3:db: 72:77:2d:0e:86:94:d2:1f:98:63:4a:eb:37:76:6b:26:4a:9c: 10:b7:68:d8:c7:82:70:1a:83:44:ea:b0:4f:ce:9d:88:75:57: 12:47:ad:2a -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBITANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE5 NzJERjExMC8GA1UEBRMoNjgxNDc3QjVERTU2NkEzOEQ5QjAxNTZEQTg3QUJBRkE5 RkFGODVCRDAeFw0yNDExMjEwNTU1NDRaFw0yNDExMjgwNTU1NDRaMBgxFjAUBgNV BAMTDTY3M2VjYjYwLWFjODQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCymi46C0pnAqmw0VBOL/lwoDJwZb7aa4g1fyMahrgdgjX9GoJHVuZeTQpb/Qlf O+TvwlQMmqplSbT4kxv535OzTVfGtkp/BeS6k2cwTbdumnLpwo/lOWFuaQSrVIGm qY0u48dIPhmlH8tm1wZS+bmjoOTArlp2jhqjUd8twaxu0bBZflo8hpOvn3LIkbSd VPen+V6Unije47riEdWlOGEJqWdJn+AlGG0DitFPGvRz9IbgytxmCkOY7f7o9s1q dTGtSZjkOlMlzk34I1G4qVX/gFqUCdTeTbO+8o6dUgGwgEsptwG19TtAcS5sYeId ul+bS72zeptNe1j3KpnSJj+vAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUNJXXC0Ug lXf23dW7q6zXKEyVAEIwHwYDVR0jBBgwFoAUaBR3td5WajjZsBVtqHq6+p+vhb0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTk3MkRGL0NDNzhCNzYyN0Mw QjExRUY4OTRBMjkxOUM0RjlBRTAyL2FCUjN0ZDVXYWpqWnNCVnRxSHE2LXAtdmhi MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvYUJSM3RkNVdhampac0JWdHFIcTYtcC12aGIwLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTk3 MkRGL0NDNzhCNzYyN0MwQjExRUY4OTRBMjkxOUM0RjlBRTAyL2FCUjN0ZDVXYWpq WnNCVnRxSHE2LXAtdmhiMC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAIWeTftMxCQ4Sz3auddFsu5SUNgWtAkps+tCS1J3Nsmw6NF9wqVTVwoZ Vf3rkD8EPuIh8fYFvJrm667ZR3JOvMgACqBY2R/Gam6QVzFH7NN/zSOa4g6PNyfI B/CAeSS2S0HeRjB2rKi909i3l4HMRm+gfLvfQN//PQbBR1OaZLQ4BgegcBwAQYXg WuCb87ES5zuuu5ZRpy21M6Nr8HdnXK7q/PZSYlRm0KnUqWMnT6t3OpFCEt9TbVbL mYMoOWw/aILZnbzGbhOtGbO0TCwdpwCKWhvOESuz23J3LQ6GlNIfmGNK6zd2ayZK nBC3aNjHgnAag0TqsE/OnYh1VxJHrSo= -----END CERTIFICATE-----Generated at Thu Nov 21 06:50:46 2024 by rpki-client on console-fra.rpki-client.org