$ rpki-client -vvf rpki.apnic.net/member_repository/A91B08F7/4714380AD59411E78E7C9143C4F9AE02/md4sN9GmK6i5e1oc_SzSlAsNTQ0.mft File: md4sN9GmK6i5e1oc_SzSlAsNTQ0.mft (raw, json) Hash identifier: K4zcGa7KuNj7HfYqvwNGI2rkb3q0gyE2LxRUZNBzEbQ= Subject key identifier: 51:AF:3B:43:CE:FE:8C:AB:CC:E3:BA:66:6B:7C:A3:35:60:61:64:DA Authority key identifier: 99:DE:2C:37:D1:A6:2B:A8:B9:7B:5A:1C:FD:2C:D2:94:0B:0D:4D:0D Certificate issuer: /CN=A91B08F7/serialNumber=99DE2C37D1A62BA8B97B5A1CFD2CD2940B0D4D0D Certificate serial: 170B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/md4sN9GmK6i5e1oc_SzSlAsNTQ0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B08F7/4714380AD59411E78E7C9143C4F9AE02/md4sN9GmK6i5e1oc_SzSlAsNTQ0.mft Manifest number: 1AAC Signing time: Fri 22 Nov 2024 16:38:05 +0000 Manifest this update: Fri 22 Nov 2024 16:38:05 +0000 Manifest next update: Fri 29 Nov 2024 16:38:05 +0000 Files and hashes: 1: md4sN9GmK6i5e1oc_SzSlAsNTQ0.crl (hash: QLDdsk0VM7BjvjCs/WmTm5pC7EnGQWCgoKs79Pi23so=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B08F7/4714380AD59411E78E7C9143C4F9AE02/md4sN9GmK6i5e1oc_SzSlAsNTQ0.crl rsync://rpki.apnic.net/member_repository/A91B08F7/4714380AD59411E78E7C9143C4F9AE02/md4sN9GmK6i5e1oc_SzSlAsNTQ0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/md4sN9GmK6i5e1oc_SzSlAsNTQ0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 16:30:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5899 (0x170b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B08F7/serialNumber=99DE2C37D1A62BA8B97B5A1CFD2CD2940B0D4D0D Validity Not Before: Nov 22 16:38:05 2024 GMT Not After : Nov 29 16:38:05 2024 GMT Subject: CN=6740b36d-b4ea Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:a2:ea:16:ab:64:4d:98:94:39:25:0d:da:27: 8a:c0:79:c1:c6:77:ac:1d:df:10:d1:a5:b8:52:3f: 18:03:d1:6b:38:c5:cd:40:d2:ec:aa:16:e2:5b:f3: a3:50:d5:be:16:4f:36:65:f0:64:36:ee:27:a1:68: 44:ed:43:0d:72:b5:58:09:cf:85:b5:7b:10:65:db: f7:5c:73:32:4c:65:ff:e6:6f:41:fc:2b:ea:48:fb: 8f:de:71:1e:e2:50:67:45:b5:a1:26:c5:c9:93:84: 7b:e6:8d:82:4f:74:0c:63:f4:52:d4:9a:7d:18:4f: b2:96:27:16:01:5c:03:eb:5e:89:24:61:d7:87:2a: e0:20:30:5f:f5:16:05:5d:56:f4:4b:87:58:4b:9f: cd:4e:58:8b:b8:a2:86:6c:11:a2:90:9d:03:a9:9c: a0:0d:3c:f6:4a:e3:58:e5:1b:34:05:1c:06:ff:aa: b0:00:33:c7:f4:ad:ff:14:e7:5e:8d:be:76:ec:a1: 75:b2:d4:06:a2:4e:39:34:6d:b2:a7:7d:c6:2c:a5: 63:63:8e:4f:2f:d6:28:3d:cc:16:3b:64:fb:d2:b6: 93:e0:03:79:bc:48:e7:6c:48:e1:da:c5:6c:ec:2c: fe:23:0b:4c:02:69:5a:14:df:92:c0:0e:61:49:2e: fa:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:AF:3B:43:CE:FE:8C:AB:CC:E3:BA:66:6B:7C:A3:35:60:61:64:DA X509v3 Authority Key Identifier: keyid:99:DE:2C:37:D1:A6:2B:A8:B9:7B:5A:1C:FD:2C:D2:94:0B:0D:4D:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B08F7/4714380AD59411E78E7C9143C4F9AE02/md4sN9GmK6i5e1oc_SzSlAsNTQ0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/md4sN9GmK6i5e1oc_SzSlAsNTQ0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B08F7/4714380AD59411E78E7C9143C4F9AE02/md4sN9GmK6i5e1oc_SzSlAsNTQ0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 27:dd:0c:91:fc:eb:9a:e2:a3:af:53:cc:c1:7b:0b:97:2a:78: 35:5c:6b:0f:b4:2b:61:b2:96:e1:91:a2:e5:a1:b3:b6:20:97: 55:0b:a5:de:ea:ad:6d:b2:1b:cb:01:ad:93:78:0d:63:41:33: a0:e8:5a:cc:93:11:8e:4b:31:f0:f6:f2:23:4e:08:2a:a7:21: fe:81:48:10:f1:58:a2:dd:ec:ca:40:31:38:b0:fd:7f:b9:89: 30:f6:aa:97:f4:4f:61:54:9a:e8:02:1c:ca:d8:42:84:93:c8: 01:63:23:27:74:ca:91:16:56:7c:54:be:3b:75:1b:d9:8f:c0: 08:7e:f4:9a:6e:64:00:54:18:41:91:f7:2c:b5:64:11:27:63: d3:c2:7e:25:f6:19:6c:25:98:a7:42:c1:50:59:f2:32:5e:ca: 29:36:2a:07:c9:ca:04:24:d8:4e:84:b4:0b:ad:81:85:7f:c5: 33:ca:97:a5:86:55:11:5e:3a:32:5d:3d:45:bc:5d:75:76:91: 74:c6:62:a2:5a:ba:c1:fa:cf:c1:eb:2e:e2:aa:13:bd:04:bf: ce:eb:7b:69:59:7b:f5:25:31:a5:37:57:70:da:0e:63:81:df: 04:0d:eb:de:f3:3d:d7:ed:59:08:03:c5:96:2f:83:2f:98:74: c2:c8:87:46 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFwswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjA4RjcxMTAvBgNVBAUTKDk5REUyQzM3RDFBNjJCQThCOTdCNUExQ0ZEMkNEMjk0 MEIwRDREMEQwHhcNMjQxMTIyMTYzODA1WhcNMjQxMTI5MTYzODA1WjAYMRYwFAYD VQQDEw02NzQwYjM2ZC1iNGVhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlaLqFqtkTZiUOSUN2ieKwHnBxnesHd8Q0aW4Uj8YA9FrOMXNQNLsqhbiW/Oj UNW+Fk82ZfBkNu4noWhE7UMNcrVYCc+FtXsQZdv3XHMyTGX/5m9B/CvqSPuP3nEe 4lBnRbWhJsXJk4R75o2CT3QMY/RS1Jp9GE+ylicWAVwD616JJGHXhyrgIDBf9RYF XVb0S4dYS5/NTliLuKKGbBGikJ0DqZygDTz2SuNY5Rs0BRwG/6qwADPH9K3/FOde jb527KF1stQGok45NG2yp33GLKVjY45PL9YoPcwWO2T70raT4AN5vEjnbEjh2sVs 7Cz+IwtMAmlaFN+SwA5hSS76UwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFGvO0PO /oyrzOO6Zmt8ozVgYWTaMB8GA1UdIwQYMBaAFJneLDfRpiuouXtaHP0s0pQLDU0N MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMDhGNy80NzE0MzgwQUQ1 OTQxMUU3OEU3QzkxNDNDNEY5QUUwMi9tZDRzTjlHbUs2aTVlMW9jX1N6U2xBc05U UTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL21kNHNOOUdtSzZpNWUxb2NfU3pTbEFzTlRRMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MDhGNy80NzE0MzgwQUQ1OTQxMUU3OEU3QzkxNDNDNEY5QUUwMi9tZDRzTjlHbUs2 aTVlMW9jX1N6U2xBc05UUTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAn3QyR/Oua4qOvU8zBewuXKng1XGsPtCthspbhkaLlobO2IJdVC6Xe 6q1tshvLAa2TeA1jQTOg6FrMkxGOSzHw9vIjTggqpyH+gUgQ8Vii3ezKQDE4sP1/ uYkw9qqX9E9hVJroAhzK2EKEk8gBYyMndMqRFlZ8VL47dRvZj8AIfvSabmQAVBhB kfcstWQRJ2PTwn4l9hlsJZinQsFQWfIyXsopNioHycoEJNhOhLQLrYGFf8Uzypel hlURXjoyXT1FvF11dpF0xmKiWrrB+s/B6y7iqhO9BL/O63tpWXv1JTGlN1dw2g5j gd8EDeve8z3X7VkIA8WWL4MvmHTCyIdG -----END CERTIFICATE-----Generated at Fri Nov 22 17:56:19 2024 by rpki-client on console-fra.rpki-client.org