$ rpki-client -vvf rpki.apnic.net/member_repository/A91B9FB9/2114D5681DA411E2841AF29908B02CD2/7LW7UwpypAlWiey7FY8q5e_pElU.mft File: 7LW7UwpypAlWiey7FY8q5e_pElU.mft (raw, json) Hash identifier: JrdqWqL5f5h9df9XeqvzChUO+8e+UiVRaVdjf6lraX4= Subject key identifier: 32:45:C3:4D:1C:5E:EB:70:9A:40:29:55:7D:D2:37:D9:2E:87:BB:F2 Authority key identifier: EC:B5:BB:53:0A:72:A4:09:56:89:EC:BB:15:8F:2A:E5:EF:E9:12:55 Certificate issuer: /CN=A91B9FB9/serialNumber=ECB5BB530A72A4095689ECBB158F2AE5EFE91255 Certificate serial: 3420 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7LW7UwpypAlWiey7FY8q5e_pElU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B9FB9/2114D5681DA411E2841AF29908B02CD2/7LW7UwpypAlWiey7FY8q5e_pElU.mft Manifest number: 341D Signing time: Fri 22 Nov 2024 15:10:31 +0000 Manifest this update: Fri 22 Nov 2024 15:10:31 +0000 Manifest next update: Fri 29 Nov 2024 15:10:31 +0000 Files and hashes: 1: 7LW7UwpypAlWiey7FY8q5e_pElU.crl (hash: slHDDbhz86/4Fu6ZR9upX5NDteF6qgCkzgDhnY+UZIs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B9FB9/2114D5681DA411E2841AF29908B02CD2/7LW7UwpypAlWiey7FY8q5e_pElU.crl rsync://rpki.apnic.net/member_repository/A91B9FB9/2114D5681DA411E2841AF29908B02CD2/7LW7UwpypAlWiey7FY8q5e_pElU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7LW7UwpypAlWiey7FY8q5e_pElU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 15:10:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13344 (0x3420) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B9FB9/serialNumber=ECB5BB530A72A4095689ECBB158F2AE5EFE91255 Validity Not Before: Nov 22 15:10:31 2024 GMT Not After : Nov 29 15:10:31 2024 GMT Subject: CN=67409ee7-cfa0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:5d:a1:2a:cd:04:bc:65:d7:c2:2e:8d:70:03: 92:bf:f4:be:a5:ea:3d:a1:93:d6:1e:2f:b1:b4:4a: b7:4c:ce:95:9c:94:fc:f1:65:17:65:2f:4d:00:b9: ef:65:46:24:91:80:40:83:11:3d:15:25:24:0a:68: 0d:30:ec:69:28:3b:e0:23:60:a2:00:14:f1:c4:b1: d5:9e:61:01:cb:9d:cd:d2:dd:18:39:b8:bb:20:7c: 3d:70:9f:be:3d:1b:fc:d4:31:8c:b1:7e:ec:79:8d: 33:e9:67:f7:9d:e2:19:d0:18:ad:4e:89:00:e3:86: 53:87:27:f1:27:30:22:b0:e9:d1:81:dd:65:7e:e5: 41:ef:8b:72:0f:33:45:c3:3c:f8:07:7c:7e:3d:2e: 62:7a:d8:90:cc:8d:c1:5f:3d:ac:21:74:48:ef:d2: 50:62:6b:eb:c5:06:1f:87:55:ef:f9:38:b1:0a:2c: c2:0e:cc:76:90:e7:da:c2:2c:41:a5:d4:69:ee:13: 40:10:b9:b3:3d:d0:5a:21:ed:8d:9b:ea:5d:19:5e: 30:34:8f:94:2d:6a:59:83:3e:a7:24:99:63:61:f9: 6f:da:c5:21:61:4d:a8:be:54:6f:7b:76:a1:4f:a9: 66:1a:bd:ed:72:6b:51:50:d7:d7:5d:47:42:8b:b9: c9:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:45:C3:4D:1C:5E:EB:70:9A:40:29:55:7D:D2:37:D9:2E:87:BB:F2 X509v3 Authority Key Identifier: keyid:EC:B5:BB:53:0A:72:A4:09:56:89:EC:BB:15:8F:2A:E5:EF:E9:12:55 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B9FB9/2114D5681DA411E2841AF29908B02CD2/7LW7UwpypAlWiey7FY8q5e_pElU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7LW7UwpypAlWiey7FY8q5e_pElU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B9FB9/2114D5681DA411E2841AF29908B02CD2/7LW7UwpypAlWiey7FY8q5e_pElU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5c:51:da:df:5d:44:84:98:ce:7b:c5:ce:03:08:c8:b4:a4:f2: f7:d3:55:91:d9:d0:e1:8d:22:68:99:6c:24:de:b9:b4:f0:54: 1d:53:06:a5:71:ae:ae:88:ff:46:bc:99:95:a4:c8:d7:74:a2: 08:2e:2e:ac:df:4b:95:fb:43:6e:17:6a:f3:2d:ce:99:d7:fd: b1:27:d8:78:36:bb:c4:e3:7f:77:cc:61:ad:48:85:89:d6:91: d0:f3:a5:58:fa:c0:90:f5:c5:46:34:5c:5b:f9:38:09:de:ac: 9e:f7:ec:63:03:a9:f6:cb:c8:00:bd:1b:43:29:4b:27:bf:d9: 08:f9:21:42:fb:80:ea:f4:7c:8f:bb:46:4e:81:48:19:06:44: cc:21:07:24:39:86:99:41:3e:76:25:79:8b:8b:e4:0e:b6:6c: 19:d6:57:15:ac:22:28:75:a4:de:03:b6:38:cc:97:61:0e:18: ab:de:64:43:b1:66:65:7b:2a:3a:5c:90:71:b7:1f:19:c9:15: 9c:b8:45:03:7d:72:cd:bc:4a:e9:9d:21:b3:36:21:d4:39:40: 4a:20:0e:a1:94:b1:c8:5f:f1:2e:33:d1:5b:4c:34:2c:05:25: 46:a8:d0:32:f1:79:9c:00:49:13:48:00:93:95:bc:70:15:98: 8e:50:d8:ad -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNCAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjlGQjkxMTAvBgNVBAUTKEVDQjVCQjUzMEE3MkE0MDk1Njg5RUNCQjE1OEYyQUU1 RUZFOTEyNTUwHhcNMjQxMTIyMTUxMDMxWhcNMjQxMTI5MTUxMDMxWjAYMRYwFAYD VQQDEw02NzQwOWVlNy1jZmEwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArV2hKs0EvGXXwi6NcAOSv/S+peo9oZPWHi+xtEq3TM6VnJT88WUXZS9NALnv ZUYkkYBAgxE9FSUkCmgNMOxpKDvgI2CiABTxxLHVnmEBy53N0t0YObi7IHw9cJ++ PRv81DGMsX7seY0z6Wf3neIZ0BitTokA44ZThyfxJzAisOnRgd1lfuVB74tyDzNF wzz4B3x+PS5ietiQzI3BXz2sIXRI79JQYmvrxQYfh1Xv+TixCizCDsx2kOfawixB pdRp7hNAELmzPdBaIe2Nm+pdGV4wNI+ULWpZgz6nJJljYflv2sUhYU2ovlRve3ah T6lmGr3tcmtRUNfXXUdCi7nJeQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDJFw00c XutwmkApVX3SN9kuh7vyMB8GA1UdIwQYMBaAFOy1u1MKcqQJVonsuxWPKuXv6RJV MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCOUZCOS8yMTE0RDU2ODFE QTQxMUUyODQxQUYyOTkwOEIwMkNEMi83TFc3VXdweXBBbFdpZXk3Rlk4cTVlX3BF bFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzdMVzdVd3B5cEFsV2lleTdGWThxNWVfcEVsVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC OUZCOS8yMTE0RDU2ODFEQTQxMUUyODQxQUYyOTkwOEIwMkNEMi83TFc3VXdweXBB bFdpZXk3Rlk4cTVlX3BFbFUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBcUdrfXUSEmM57xc4DCMi0pPL301WR2dDhjSJomWwk3rm08FQdUwal ca6uiP9GvJmVpMjXdKIILi6s30uV+0NuF2rzLc6Z1/2xJ9h4NrvE4393zGGtSIWJ 1pHQ86VY+sCQ9cVGNFxb+TgJ3qye9+xjA6n2y8gAvRtDKUsnv9kI+SFC+4Dq9HyP u0ZOgUgZBkTMIQckOYaZQT52JXmLi+QOtmwZ1lcVrCIodaTeA7Y4zJdhDhir3mRD sWZleyo6XJBxtx8ZyRWcuEUDfXLNvErpnSGzNiHUOUBKIA6hlLHIX/EuM9FbTDQs BSVGqNAy8XmcAEkTSACTlbxwFZiOUNit -----END CERTIFICATE-----Generated at Fri Nov 22 16:50:03 2024 by rpki-client on console-ams.rpki-client.org