$ rpki-client -vvf rpki.apnic.net/member_repository/A91A840E/DA10FF6662EE11E3AAD99F835911EA32/f3UA8ZRiBwd03Is7S5avThubtUU.mft File: f3UA8ZRiBwd03Is7S5avThubtUU.mft (raw, json) Hash identifier: Ik0iG00HPe6Zc+SpNaIDfJt2kDGtkZRRIYupGk5SyYE= Subject key identifier: 78:A3:08:1D:98:AE:BA:C3:23:B7:3E:1B:43:FE:BD:C9:72:B3:A9:B0 Authority key identifier: 7F:75:00:F1:94:62:07:07:74:DC:8B:3B:4B:96:AF:4E:1B:9B:B5:45 Certificate issuer: /CN=A91A840E/serialNumber=7F7500F19462070774DC8B3B4B96AF4E1B9BB545 Certificate serial: 2DAB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/f3UA8ZRiBwd03Is7S5avThubtUU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A840E/DA10FF6662EE11E3AAD99F835911EA32/f3UA8ZRiBwd03Is7S5avThubtUU.mft Manifest number: 2DAB Signing time: Fri 22 Nov 2024 15:31:32 +0000 Manifest this update: Fri 22 Nov 2024 15:31:32 +0000 Manifest next update: Fri 29 Nov 2024 15:31:32 +0000 Files and hashes: 1: f3UA8ZRiBwd03Is7S5avThubtUU.crl (hash: VNhmA9nQOba0b/HEAs6vkkWfyRp6Fzy6xDvHTHiOBBc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A840E/DA10FF6662EE11E3AAD99F835911EA32/f3UA8ZRiBwd03Is7S5avThubtUU.crl rsync://rpki.apnic.net/member_repository/A91A840E/DA10FF6662EE11E3AAD99F835911EA32/f3UA8ZRiBwd03Is7S5avThubtUU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/f3UA8ZRiBwd03Is7S5avThubtUU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 15:31:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11691 (0x2dab) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A840E/serialNumber=7F7500F19462070774DC8B3B4B96AF4E1B9BB545 Validity Not Before: Nov 22 15:31:32 2024 GMT Not After : Nov 29 15:31:32 2024 GMT Subject: CN=6740a3d4-6600 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:4a:18:14:35:0c:87:9c:94:d4:96:26:b0:a0: ba:bf:d2:80:94:ab:b7:7c:89:74:7e:ff:9e:93:bb: 02:71:f6:ac:26:79:72:22:d3:3f:8b:8a:8e:80:9e: 75:41:42:76:d4:3d:2c:5e:81:3d:63:82:80:2d:fc: 73:59:de:57:de:78:71:5f:8b:21:27:b6:62:6f:74: a5:d9:26:93:90:b9:2f:e6:14:99:4e:d5:67:e1:12: 64:e4:bd:ce:b3:3f:65:ad:75:8f:f3:2d:63:21:cf: 39:ab:bf:02:21:a3:f1:d0:1a:34:96:20:1d:33:f3: 12:6d:9a:71:ec:21:16:94:2a:93:d2:b2:55:91:bc: 29:bd:28:cc:e5:ee:cd:d0:ea:25:fb:08:ff:37:08: 99:a9:fe:f5:45:be:ce:38:07:99:b1:57:80:d4:09: 66:7c:a3:b0:6d:98:00:bf:8a:45:a8:40:e9:a8:a3: 83:23:bf:77:df:27:37:72:72:cb:02:3a:55:a7:32: 9c:78:0c:43:21:dc:77:10:5d:69:f2:2f:a5:86:32: e9:55:33:77:e2:3d:4e:bf:f1:f8:3a:d7:a6:29:db: f9:aa:2b:ca:82:27:40:d5:4e:25:a8:9f:cc:6b:cc: 4e:a4:de:22:27:b6:16:43:06:a6:21:38:96:31:d8: 84:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:A3:08:1D:98:AE:BA:C3:23:B7:3E:1B:43:FE:BD:C9:72:B3:A9:B0 X509v3 Authority Key Identifier: keyid:7F:75:00:F1:94:62:07:07:74:DC:8B:3B:4B:96:AF:4E:1B:9B:B5:45 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A840E/DA10FF6662EE11E3AAD99F835911EA32/f3UA8ZRiBwd03Is7S5avThubtUU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/f3UA8ZRiBwd03Is7S5avThubtUU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A840E/DA10FF6662EE11E3AAD99F835911EA32/f3UA8ZRiBwd03Is7S5avThubtUU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 24:61:49:90:59:99:37:94:df:a2:95:76:34:69:0b:47:b2:f1: db:07:43:ca:a6:06:69:91:b4:c0:94:08:38:51:e3:14:aa:61: 5d:23:07:30:f3:10:9c:5c:d8:f2:e1:95:2a:6f:3e:ac:6a:6b: 93:08:e4:c3:d2:15:89:fc:8f:c1:13:45:c5:c9:46:c7:7b:9a: 9a:49:c6:62:17:48:da:1f:f5:f5:a9:2e:7f:83:55:d8:c2:fa: 33:b8:14:c3:3f:c8:88:e3:7b:85:64:d8:5e:e7:f3:ff:ef:1b: ba:47:1e:28:1f:13:aa:52:c8:d3:e5:68:f5:81:fc:b6:65:51: 8b:98:e3:ae:39:37:d4:f3:d9:99:50:db:d7:ab:ef:08:24:98: fb:43:ce:6f:fa:1b:47:0b:9d:0a:ff:ae:d2:d3:8f:b1:4e:a6: 58:85:dd:11:46:8b:69:0a:f0:4d:39:d5:bd:12:3e:17:5d:17: 26:c7:7a:2e:a5:7f:6e:c8:e6:c0:16:a2:13:49:12:de:5f:1f: e8:5e:bb:5d:0b:01:4e:fe:86:58:9e:3d:f9:e9:8b:80:4c:fb: ba:96:04:37:b4:5c:9f:ce:f3:04:ca:f3:54:21:93:a3:78:81: 7c:fb:3d:9a:2a:48:28:7c:07:e0:39:74:e1:cd:95:f1:6b:6c: 54:67:11:3e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICLaswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTg0MEUxMTAvBgNVBAUTKDdGNzUwMEYxOTQ2MjA3MDc3NERDOEIzQjRCOTZBRjRF MUI5QkI1NDUwHhcNMjQxMTIyMTUzMTMyWhcNMjQxMTI5MTUzMTMyWjAYMRYwFAYD VQQDEw02NzQwYTNkNC02NjAwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx0oYFDUMh5yU1JYmsKC6v9KAlKu3fIl0fv+ek7sCcfasJnlyItM/i4qOgJ51 QUJ21D0sXoE9Y4KALfxzWd5X3nhxX4shJ7Zib3Sl2SaTkLkv5hSZTtVn4RJk5L3O sz9lrXWP8y1jIc85q78CIaPx0Bo0liAdM/MSbZpx7CEWlCqT0rJVkbwpvSjM5e7N 0Ool+wj/NwiZqf71Rb7OOAeZsVeA1AlmfKOwbZgAv4pFqEDpqKODI7933yc3cnLL AjpVpzKceAxDIdx3EF1p8i+lhjLpVTN34j1Ov/H4OtemKdv5qivKgidA1U4lqJ/M a8xOpN4iJ7YWQwamITiWMdiE2wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHijCB2Y rrrDI7c+G0P+vclys6mwMB8GA1UdIwQYMBaAFH91APGUYgcHdNyLO0uWr04bm7VF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBODQwRS9EQTEwRkY2NjYy RUUxMUUzQUFEOTlGODM1OTExRUEzMi9mM1VBOFpSaUJ3ZDAzSXM3UzVhdlRodWJ0 VVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2YzVUE4WlJpQndkMDNJczdTNWF2VGh1YnRVVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB ODQwRS9EQTEwRkY2NjYyRUUxMUUzQUFEOTlGODM1OTExRUEzMi9mM1VBOFpSaUJ3 ZDAzSXM3UzVhdlRodWJ0VVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAkYUmQWZk3lN+ilXY0aQtHsvHbB0PKpgZpkbTAlAg4UeMUqmFdIwcw 8xCcXNjy4ZUqbz6samuTCOTD0hWJ/I/BE0XFyUbHe5qaScZiF0jaH/X1qS5/g1XY wvozuBTDP8iI43uFZNhe5/P/7xu6Rx4oHxOqUsjT5Wj1gfy2ZVGLmOOuOTfU89mZ UNvXq+8IJJj7Q85v+htHC50K/67S04+xTqZYhd0RRotpCvBNOdW9Ej4XXRcmx3ou pX9uyObAFqITSRLeXx/oXrtdCwFO/oZYnj356YuATPu6lgQ3tFyfzvMEyvNUIZOj eIF8+z2aKkgofAfgOXThzZXxa2xUZxE+ -----END CERTIFICATE-----Generated at Fri Nov 22 17:56:19 2024 by rpki-client on console-fra.rpki-client.org