$ rpki-client -vvf rpki.apnic.net/member_repository/A91BD73B/26BDF32C1DAA11E2BE25A6A508B02CD2/REhMnzpz9xlXK4vIoaH9nln6hPY.mft File: REhMnzpz9xlXK4vIoaH9nln6hPY.mft (raw, json) Hash identifier: GPEFbSBtxNhhsd42+AmoXg9GSYuleAd0TNglX9UJatg= Subject key identifier: 83:FC:AF:B6:48:6D:BE:84:C2:83:87:A8:CC:63:54:76:FE:2A:84:FE Authority key identifier: 44:48:4C:9F:3A:73:F7:19:57:2B:8B:C8:A1:A1:FD:9E:59:FA:84:F6 Certificate issuer: /CN=A91BD73B/serialNumber=44484C9F3A73F719572B8BC8A1A1FD9E59FA84F6 Certificate serial: 3421 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/REhMnzpz9xlXK4vIoaH9nln6hPY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BD73B/26BDF32C1DAA11E2BE25A6A508B02CD2/REhMnzpz9xlXK4vIoaH9nln6hPY.mft Manifest number: 3421 Signing time: Fri 22 Nov 2024 15:19:09 +0000 Manifest this update: Fri 22 Nov 2024 15:19:08 +0000 Manifest next update: Fri 29 Nov 2024 15:19:08 +0000 Files and hashes: 1: REhMnzpz9xlXK4vIoaH9nln6hPY.crl (hash: bv0zpdcbhzcDvPP4dQTurRY8XO2BLSWe/uMDUv4tJPM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BD73B/26BDF32C1DAA11E2BE25A6A508B02CD2/REhMnzpz9xlXK4vIoaH9nln6hPY.crl rsync://rpki.apnic.net/member_repository/A91BD73B/26BDF32C1DAA11E2BE25A6A508B02CD2/REhMnzpz9xlXK4vIoaH9nln6hPY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/REhMnzpz9xlXK4vIoaH9nln6hPY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 15:19:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13345 (0x3421) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BD73B/serialNumber=44484C9F3A73F719572B8BC8A1A1FD9E59FA84F6 Validity Not Before: Nov 22 15:19:08 2024 GMT Not After : Nov 29 15:19:08 2024 GMT Subject: CN=6740a0ec-2289 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:04:74:6f:e9:ed:2e:28:6a:97:33:e1:84:5d: 48:0b:3a:e1:56:ef:ad:af:11:14:31:ec:c8:37:9c: 65:f1:da:ba:f2:66:03:f8:53:2e:ed:bd:b0:d8:08: 24:92:16:51:63:41:e6:47:8b:46:8f:ee:e8:8a:ea: 14:42:88:6d:fa:93:f7:e0:a3:d8:78:01:3c:f9:8c: 68:65:77:f7:b0:1f:f4:78:f5:cc:9e:27:93:7c:dd: 10:36:50:5a:3c:6e:98:26:73:0f:57:a3:07:6b:ad: 1b:72:e1:7b:7b:ac:08:11:11:b4:a1:81:0c:4c:72: 8d:39:a5:68:17:09:f9:8c:0d:bd:cd:22:87:f4:31: ff:2c:5e:f2:83:9e:85:66:9b:37:1b:38:4d:61:28: e6:eb:3e:37:6e:aa:73:6b:cc:ec:c1:d9:25:ff:3d: 90:2a:d9:6b:46:8f:d1:63:b9:5f:2f:59:d2:0c:af: d1:7d:51:8c:a0:bc:24:30:e1:0c:5c:60:8d:8d:99: bd:7e:61:3a:0c:36:76:d5:51:f7:c7:c3:a5:06:ca: 9a:15:86:98:56:3d:81:1c:b8:f0:ff:7b:4e:d3:78: ff:ad:ae:07:13:84:c0:c1:28:d2:4c:c1:4d:c0:64: f1:44:a1:13:2d:7e:2b:b5:8f:61:3d:31:be:0b:05: 72:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:FC:AF:B6:48:6D:BE:84:C2:83:87:A8:CC:63:54:76:FE:2A:84:FE X509v3 Authority Key Identifier: keyid:44:48:4C:9F:3A:73:F7:19:57:2B:8B:C8:A1:A1:FD:9E:59:FA:84:F6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BD73B/26BDF32C1DAA11E2BE25A6A508B02CD2/REhMnzpz9xlXK4vIoaH9nln6hPY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/REhMnzpz9xlXK4vIoaH9nln6hPY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BD73B/26BDF32C1DAA11E2BE25A6A508B02CD2/REhMnzpz9xlXK4vIoaH9nln6hPY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0c:a1:7f:dd:13:f0:f1:3d:e2:f7:be:0e:69:5f:7c:63:32:2e: 6c:58:6f:55:7d:04:9b:fb:2d:5b:71:ae:a7:70:af:52:e1:13: bd:8d:74:41:e7:30:c8:58:00:85:b6:c1:d1:7f:9a:c4:a2:90: 44:1d:8f:fb:c3:ff:eb:24:51:34:48:80:a1:3b:fd:3c:81:ba: 76:28:61:63:e0:74:6b:77:04:b1:ac:3b:b8:67:c0:49:f3:a1: 7b:09:18:0f:c8:1c:12:02:8e:4c:20:ae:f2:62:10:4e:aa:80: a9:7e:03:8d:20:e3:0d:49:b5:35:bd:a9:9b:21:17:c3:c4:20: a5:e6:0d:41:41:57:1e:88:e6:05:80:69:a5:a9:9b:f5:d9:3e: 8a:86:01:5e:b6:c7:70:0d:a1:5b:d9:21:a3:94:d8:85:05:d7: fe:41:99:84:b1:e8:3e:54:8b:d3:0e:7c:e9:fb:be:7f:3c:b9: 93:cd:2d:91:1b:b9:14:95:29:29:0b:72:34:14:8a:6f:40:b5: ac:70:40:2f:a9:6d:90:96:30:58:2c:45:6b:e4:7e:96:3e:74: b1:7e:ff:dd:57:26:d8:46:f6:5b:1f:cb:3a:d4:82:3b:ea:c4: a1:07:77:00:7c:b2:fe:1d:20:cb:2a:d6:14:29:51:f1:66:4f: 1b:0a:56:fd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNCEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkQ3M0IxMTAvBgNVBAUTKDQ0NDg0QzlGM0E3M0Y3MTk1NzJCOEJDOEExQTFGRDlF NTlGQTg0RjYwHhcNMjQxMTIyMTUxOTA4WhcNMjQxMTI5MTUxOTA4WjAYMRYwFAYD VQQDEw02NzQwYTBlYy0yMjg5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvAR0b+ntLihqlzPhhF1ICzrhVu+trxEUMezIN5xl8dq68mYD+FMu7b2w2Agk khZRY0HmR4tGj+7oiuoUQoht+pP34KPYeAE8+YxoZXf3sB/0ePXMnieTfN0QNlBa PG6YJnMPV6MHa60bcuF7e6wIERG0oYEMTHKNOaVoFwn5jA29zSKH9DH/LF7yg56F Zps3GzhNYSjm6z43bqpza8zswdkl/z2QKtlrRo/RY7lfL1nSDK/RfVGMoLwkMOEM XGCNjZm9fmE6DDZ21VH3x8OlBsqaFYaYVj2BHLjw/3tO03j/ra4HE4TAwSjSTMFN wGTxRKETLX4rtY9hPTG+CwVypQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIP8r7ZI bb6EwoOHqMxjVHb+KoT+MB8GA1UdIwQYMBaAFERITJ86c/cZVyuLyKGh/Z5Z+oT2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCRDczQi8yNkJERjMyQzFE QUExMUUyQkUyNUE2QTUwOEIwMkNEMi9SRWhNbnpwejl4bFhLNHZJb2FIOW5sbjZo UFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1JFaE1uenB6OXhsWEs0dklvYUg5bmxuNmhQWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC RDczQi8yNkJERjMyQzFEQUExMUUyQkUyNUE2QTUwOEIwMkNEMi9SRWhNbnpwejl4 bFhLNHZJb2FIOW5sbjZoUFkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAMoX/dE/DxPeL3vg5pX3xjMi5sWG9VfQSb+y1bca6ncK9S4RO9jXRB 5zDIWACFtsHRf5rEopBEHY/7w//rJFE0SIChO/08gbp2KGFj4HRrdwSxrDu4Z8BJ 86F7CRgPyBwSAo5MIK7yYhBOqoCpfgONIOMNSbU1vambIRfDxCCl5g1BQVceiOYF gGmlqZv12T6KhgFetsdwDaFb2SGjlNiFBdf+QZmEseg+VIvTDnzp+75/PLmTzS2R G7kUlSkpC3I0FIpvQLWscEAvqW2QljBYLEVr5H6WPnSxfv/dVybYRvZbH8s61II7 6sShB3cAfLL+HSDLKtYUKVHxZk8bClb9 -----END CERTIFICATE-----Generated at Fri Nov 22 17:56:20 2024 by rpki-client on console-fra.rpki-client.org