$ rpki-client -vvf rpki.apnic.net/member_repository/A919EDE5/4A2B6CCE1D9E11E29CA3098E08B02CD2/I-mD64u3-GulkjUkGhAWDIBSxk4.mft File: I-mD64u3-GulkjUkGhAWDIBSxk4.mft (raw, json) Hash identifier: SfcBh+etwytaoAsfdJlKWt9lSizGWLm+2qlirpHp6To= Subject key identifier: 7E:E9:C2:1D:56:61:E8:E5:BF:3B:83:F5:76:F2:8B:AC:7F:B6:9E:FC Authority key identifier: 23:E9:83:EB:8B:B7:F8:6B:A5:92:35:24:1A:10:16:0C:80:52:C6:4E Certificate issuer: /CN=A919EDE5/serialNumber=23E983EB8BB7F86BA59235241A10160C8052C64E Certificate serial: 3425 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/I-mD64u3-GulkjUkGhAWDIBSxk4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919EDE5/4A2B6CCE1D9E11E29CA3098E08B02CD2/I-mD64u3-GulkjUkGhAWDIBSxk4.mft Manifest number: 3425 Signing time: Fri 22 Nov 2024 15:02:23 +0000 Manifest this update: Fri 22 Nov 2024 15:02:23 +0000 Manifest next update: Fri 29 Nov 2024 15:02:23 +0000 Files and hashes: 1: I-mD64u3-GulkjUkGhAWDIBSxk4.crl (hash: uhQiubQsaj51ixq7nyQch0MrL8XlnBFdZE6TCMALARs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919EDE5/4A2B6CCE1D9E11E29CA3098E08B02CD2/I-mD64u3-GulkjUkGhAWDIBSxk4.crl rsync://rpki.apnic.net/member_repository/A919EDE5/4A2B6CCE1D9E11E29CA3098E08B02CD2/I-mD64u3-GulkjUkGhAWDIBSxk4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/I-mD64u3-GulkjUkGhAWDIBSxk4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 15:02:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13349 (0x3425) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919EDE5/serialNumber=23E983EB8BB7F86BA59235241A10160C8052C64E Validity Not Before: Nov 22 15:02:23 2024 GMT Not After : Nov 29 15:02:23 2024 GMT Subject: CN=67409cff-48ec Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:bf:c1:13:34:ed:68:11:d8:c4:b0:87:8e:5c: 76:9c:0c:64:04:de:5d:15:d0:3e:1a:2b:81:78:84: c8:31:6f:01:ba:5a:8c:47:b0:b7:a1:a9:04:fd:d9: c9:9c:f9:12:67:b0:9d:1a:e4:e5:1c:2f:de:ca:02: 49:1b:74:93:a1:79:02:aa:83:55:f4:6f:ed:38:96: 05:1b:06:ef:e9:93:91:22:aa:24:99:e2:27:40:32: 6a:a4:1f:de:38:91:a0:3b:21:01:56:65:27:33:53: 87:da:2c:a1:0b:6e:bd:97:20:a6:8c:e9:8b:4c:49: 5b:5e:63:70:74:60:da:3c:b8:0a:b5:23:1e:51:25: 71:01:72:6c:af:bc:a2:ed:cb:15:ce:28:d2:5e:22: 41:81:e0:24:40:f7:5b:71:06:a7:6d:bf:c0:47:e5: e1:9a:4c:b3:d9:74:84:e2:4d:b2:74:17:2d:37:7c: 48:1d:fc:99:37:dd:86:b2:75:ef:cd:a0:f2:d2:50: fc:14:72:1b:89:34:55:ee:35:b3:14:44:1e:b6:72: 08:6e:5a:a3:57:90:53:39:87:29:11:36:3d:04:01: e4:d3:19:6b:ec:33:6f:63:1b:c9:16:1c:2e:8c:cc: 5d:b2:ce:1c:39:bb:a5:6a:d3:1c:4e:8d:97:35:b0: a2:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:E9:C2:1D:56:61:E8:E5:BF:3B:83:F5:76:F2:8B:AC:7F:B6:9E:FC X509v3 Authority Key Identifier: keyid:23:E9:83:EB:8B:B7:F8:6B:A5:92:35:24:1A:10:16:0C:80:52:C6:4E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919EDE5/4A2B6CCE1D9E11E29CA3098E08B02CD2/I-mD64u3-GulkjUkGhAWDIBSxk4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/I-mD64u3-GulkjUkGhAWDIBSxk4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919EDE5/4A2B6CCE1D9E11E29CA3098E08B02CD2/I-mD64u3-GulkjUkGhAWDIBSxk4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9f:0c:ae:53:3f:66:66:a8:a3:f9:e3:70:8c:ca:b1:84:6a:d3: 44:80:20:9f:6a:d4:da:19:ae:62:c9:ef:fb:b3:1f:bd:b2:e1: cc:92:d0:6d:9b:6d:58:f8:90:9b:85:ec:2c:43:1e:fa:ed:f7: 87:ad:94:68:ea:de:3c:37:6d:9d:98:af:f5:c7:e5:72:32:61: 66:5b:91:ab:51:cf:91:63:54:24:3b:18:98:e3:1e:6b:fb:e9: dc:25:5a:4d:b9:d6:b4:b2:24:5a:cf:01:e2:90:67:71:56:2b: da:e1:7d:1e:03:9a:2f:17:5f:44:fa:3d:9a:f2:24:bf:ac:03: b2:0f:ca:18:c5:02:7e:59:de:51:3f:30:2b:14:55:bc:fa:f6: a2:d0:53:ea:4a:dc:87:27:12:d6:92:b4:b0:c4:64:72:9a:eb: 9b:df:f1:79:da:db:c7:92:6f:41:1c:f3:55:d1:15:d2:77:a2: 2b:3f:5d:d9:40:f8:9d:32:a3:6b:17:4c:6a:06:b7:45:00:7a: 6b:60:59:2c:a6:7e:b0:78:7a:ab:03:1e:44:85:04:62:37:eb: 97:90:52:cf:34:ba:23:e6:62:b2:67:95:d7:e3:4d:3e:10:26: 5d:66:1c:10:74:a8:1b:62:2d:c3:27:e6:21:55:24:72:63:25: 3c:2e:1c:1d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNCUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUVERTUxMTAvBgNVBAUTKDIzRTk4M0VCOEJCN0Y4NkJBNTkyMzUyNDFBMTAxNjBD ODA1MkM2NEUwHhcNMjQxMTIyMTUwMjIzWhcNMjQxMTI5MTUwMjIzWjAYMRYwFAYD VQQDEw02NzQwOWNmZi00OGVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApb/BEzTtaBHYxLCHjlx2nAxkBN5dFdA+GiuBeITIMW8BulqMR7C3oakE/dnJ nPkSZ7CdGuTlHC/eygJJG3SToXkCqoNV9G/tOJYFGwbv6ZORIqokmeInQDJqpB/e OJGgOyEBVmUnM1OH2iyhC269lyCmjOmLTElbXmNwdGDaPLgKtSMeUSVxAXJsr7yi 7csVzijSXiJBgeAkQPdbcQanbb/AR+Xhmkyz2XSE4k2ydBctN3xIHfyZN92GsnXv zaDy0lD8FHIbiTRV7jWzFEQetnIIblqjV5BTOYcpETY9BAHk0xlr7DNvYxvJFhwu jMxdss4cObulatMcTo2XNbCi5QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFH7pwh1W YejlvzuD9Xbyi6x/tp78MB8GA1UdIwQYMBaAFCPpg+uLt/hrpZI1JBoQFgyAUsZO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RURFNS80QTJCNkNDRTFE OUUxMUUyOUNBMzA5OEUwOEIwMkNEMi9JLW1ENjR1My1HdWxralVrR2hBV0RJQlN4 azQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ktbUQ2NHUzLUd1bGtqVWtHaEFXRElCU3hrNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RURFNS80QTJCNkNDRTFEOUUxMUUyOUNBMzA5OEUwOEIwMkNEMi9JLW1ENjR1My1H dWxralVrR2hBV0RJQlN4azQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCfDK5TP2ZmqKP543CMyrGEatNEgCCfatTaGa5iye/7sx+9suHMktBt m21Y+JCbhewsQx767feHrZRo6t48N22dmK/1x+VyMmFmW5GrUc+RY1QkOxiY4x5r ++ncJVpNuda0siRazwHikGdxViva4X0eA5ovF19E+j2a8iS/rAOyD8oYxQJ+Wd5R PzArFFW8+vai0FPqStyHJxLWkrSwxGRymuub3/F52tvHkm9BHPNV0RXSd6IrP13Z QPidMqNrF0xqBrdFAHprYFkspn6weHqrAx5EhQRiN+uXkFLPNLoj5mKyZ5XX400+ ECZdZhwQdKgbYi3DJ+YhVSRyYyU8Lhwd -----END CERTIFICATE-----Generated at Fri Nov 22 16:49:58 2024 by rpki-client on console-ams.rpki-client.org