$ rpki-client -vvf rpki.apnic.net/member_repository/A91B42CA/D34DB97E1DA011E283A1619208B02CD2/57DhU8QU0ThUitp16M0FzWk2cgY.mft File: 57DhU8QU0ThUitp16M0FzWk2cgY.mft (raw, json) Hash identifier: 23JA7Vt/KfjvNgifPctzFVkcOxokcVxqkkhw7vL2aCo= Subject key identifier: 2C:D0:DF:87:0F:94:1D:8B:DB:19:98:01:65:4D:60:35:2B:7E:90:44 Authority key identifier: E7:B0:E1:53:C4:14:D1:38:54:8A:DA:75:E8:CD:05:CD:69:36:72:06 Certificate issuer: /CN=A91B42CA/serialNumber=E7B0E153C414D138548ADA75E8CD05CD69367206 Certificate serial: 3425 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/57DhU8QU0ThUitp16M0FzWk2cgY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B42CA/D34DB97E1DA011E283A1619208B02CD2/57DhU8QU0ThUitp16M0FzWk2cgY.mft Manifest number: 515E Signing time: Fri 22 Nov 2024 15:05:58 +0000 Manifest this update: Fri 22 Nov 2024 15:05:58 +0000 Manifest next update: Fri 29 Nov 2024 15:05:58 +0000 Files and hashes: 1: 57DhU8QU0ThUitp16M0FzWk2cgY.crl (hash: 2+d8IM9aA1fwvjCHFqIHD3uJby/feg/nHiq9+3ISozk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B42CA/D34DB97E1DA011E283A1619208B02CD2/57DhU8QU0ThUitp16M0FzWk2cgY.crl rsync://rpki.apnic.net/member_repository/A91B42CA/D34DB97E1DA011E283A1619208B02CD2/57DhU8QU0ThUitp16M0FzWk2cgY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/57DhU8QU0ThUitp16M0FzWk2cgY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 15:05:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13349 (0x3425) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B42CA/serialNumber=E7B0E153C414D138548ADA75E8CD05CD69367206 Validity Not Before: Nov 22 15:05:58 2024 GMT Not After : Nov 29 15:05:58 2024 GMT Subject: CN=67409dd6-422c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:b1:2f:1a:27:6b:65:10:33:e0:04:1f:b0:40: c2:64:42:30:2e:e3:61:36:9b:34:97:d1:c1:dc:25: f7:08:6f:81:a2:74:51:01:d6:dc:65:34:2a:59:0c: d2:ea:4f:ab:4d:af:99:22:cf:00:e7:98:5a:81:8d: b5:56:53:8b:c0:b9:81:c8:14:20:a8:a3:b2:f5:90: f0:84:c1:97:a7:39:7e:6e:7a:72:6a:30:54:97:c7: 87:0b:1e:eb:d9:40:58:ee:67:98:ee:46:dd:bb:d9: 4e:8f:1c:55:ef:9f:9f:83:97:1f:01:7a:89:3c:d1: 51:d2:e4:80:ab:f2:2b:96:40:09:75:c6:9c:07:db: 50:70:27:da:6e:c4:b6:ca:84:eb:cd:88:7b:d2:63: dc:96:25:bc:59:1a:a6:12:25:f3:33:e1:20:55:0d: b0:ea:bc:6d:9c:76:4f:34:00:26:32:ce:1d:87:6b: 18:c1:bc:f1:c5:be:40:42:c4:91:47:6c:5a:94:f4: d8:44:9d:4c:ff:ea:cd:9b:b1:ec:e0:6e:08:63:85: 6c:86:21:8d:62:7f:e7:dc:be:bf:76:b8:0b:a7:21: 0f:7e:d3:80:70:9e:fa:4c:6f:23:4d:07:f6:0d:9a: 3c:24:ca:d0:f5:5c:d9:a4:59:a5:5f:f0:0a:2f:92: b8:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:D0:DF:87:0F:94:1D:8B:DB:19:98:01:65:4D:60:35:2B:7E:90:44 X509v3 Authority Key Identifier: keyid:E7:B0:E1:53:C4:14:D1:38:54:8A:DA:75:E8:CD:05:CD:69:36:72:06 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B42CA/D34DB97E1DA011E283A1619208B02CD2/57DhU8QU0ThUitp16M0FzWk2cgY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/57DhU8QU0ThUitp16M0FzWk2cgY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B42CA/D34DB97E1DA011E283A1619208B02CD2/57DhU8QU0ThUitp16M0FzWk2cgY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption cd:1c:84:11:ec:21:c7:63:49:3d:cb:8d:e1:6b:a5:66:07:5b: e1:ee:dc:b1:ca:1b:c7:d9:3b:6b:07:02:5c:df:1b:c6:8f:f8: 4a:01:cb:18:21:36:ec:64:6e:29:a5:a0:bc:2e:2b:f2:76:c4: 9c:cb:98:d8:44:5c:e8:c6:1c:6f:35:62:c9:0e:ec:58:80:f7: 65:9e:9a:e9:1c:76:78:68:b9:af:90:79:3e:ac:b9:83:fb:49: 4c:1a:a2:72:2b:f9:59:b7:d5:62:8a:5c:b6:cd:12:f8:77:1f: 0d:0d:c8:a8:f0:c9:68:d1:36:06:8b:5c:fc:43:80:14:d4:33: bb:87:f6:2e:7c:40:fe:26:bf:eb:3e:03:29:04:21:40:08:d8: 06:50:13:50:22:ab:37:1a:ec:69:62:41:97:67:9a:b2:9e:01: e4:af:61:ea:ec:fa:55:ed:e5:d1:06:2b:fb:b1:d9:d7:aa:ac: 19:a0:ac:49:b2:96:bf:a0:5d:74:2d:55:0e:f1:67:b5:02:4b: 8c:c2:e1:c4:80:95:41:5f:81:12:e4:fc:b0:9d:cc:bd:21:8e: f4:b4:1b:24:da:15:7e:3e:49:21:3c:75:db:a0:77:56:c4:c3: 8a:63:d6:84:c3:49:ce:17:88:ed:43:93:fb:35:d6:a0:3f:77: e7:f1:47:cd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNCUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjQyQ0ExMTAvBgNVBAUTKEU3QjBFMTUzQzQxNEQxMzg1NDhBREE3NUU4Q0QwNUNE NjkzNjcyMDYwHhcNMjQxMTIyMTUwNTU4WhcNMjQxMTI5MTUwNTU4WjAYMRYwFAYD VQQDEw02NzQwOWRkNi00MjJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0bEvGidrZRAz4AQfsEDCZEIwLuNhNps0l9HB3CX3CG+BonRRAdbcZTQqWQzS 6k+rTa+ZIs8A55hagY21VlOLwLmByBQgqKOy9ZDwhMGXpzl+bnpyajBUl8eHCx7r 2UBY7meY7kbdu9lOjxxV75+fg5cfAXqJPNFR0uSAq/IrlkAJdcacB9tQcCfabsS2 yoTrzYh70mPcliW8WRqmEiXzM+EgVQ2w6rxtnHZPNAAmMs4dh2sYwbzxxb5AQsSR R2xalPTYRJ1M/+rNm7Hs4G4IY4VshiGNYn/n3L6/drgLpyEPftOAcJ76TG8jTQf2 DZo8JMrQ9VzZpFmlX/AKL5K4dwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCzQ34cP lB2L2xmYAWVNYDUrfpBEMB8GA1UdIwQYMBaAFOew4VPEFNE4VIradejNBc1pNnIG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNDJDQS9EMzREQjk3RTFE QTAxMUUyODNBMTYxOTIwOEIwMkNEMi81N0RoVThRVTBUaFVpdHAxNk0wRnpXazJj Z1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzU3RGhVOFFVMFRoVWl0cDE2TTBGeldrMmNnWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NDJDQS9EMzREQjk3RTFEQTAxMUUyODNBMTYxOTIwOEIwMkNEMi81N0RoVThRVTBU aFVpdHAxNk0wRnpXazJjZ1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDNHIQR7CHHY0k9y43ha6VmB1vh7tyxyhvH2TtrBwJc3xvGj/hKAcsY ITbsZG4ppaC8LivydsScy5jYRFzoxhxvNWLJDuxYgPdlnprpHHZ4aLmvkHk+rLmD +0lMGqJyK/lZt9Viily2zRL4dx8NDcio8Mlo0TYGi1z8Q4AU1DO7h/YufED+Jr/r PgMpBCFACNgGUBNQIqs3GuxpYkGXZ5qyngHkr2Hq7PpV7eXRBiv7sdnXqqwZoKxJ spa/oF10LVUO8We1AkuMwuHEgJVBX4ES5Pywncy9IY70tBsk2hV+PkkhPHXboHdW xMOKY9aEw0nOF4jtQ5P7NdagP3fn8UfN -----END CERTIFICATE-----Generated at Fri Nov 22 16:50:03 2024 by rpki-client on console-ams.rpki-client.org