$ rpki-client -vvf rpki.apnic.net/member_repository/A91C6BF0/1491974AAEBB11E98A390B59C4F9AE02/2YRcGequkJIocqDK_QUfFmFPhK8.mft File: 2YRcGequkJIocqDK_QUfFmFPhK8.mft (raw, json) Hash identifier: NPJpCLYsl18MiRgM51+NOZExShwDy5BYOCi+2ZjR6RA= Subject key identifier: 84:CC:98:FB:B4:E2:37:E7:D7:33:33:73:BA:50:55:89:7A:A7:AE:90 Authority key identifier: D9:84:5C:19:EA:AE:90:92:28:72:A0:CA:FD:05:1F:16:61:4F:84:AF Certificate issuer: /CN=A91C6BF0/serialNumber=D9845C19EAAE90922872A0CAFD051F16614F84AF Certificate serial: 0DB7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2YRcGequkJIocqDK_QUfFmFPhK8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C6BF0/1491974AAEBB11E98A390B59C4F9AE02/2YRcGequkJIocqDK_QUfFmFPhK8.mft Manifest number: 0ED9 Signing time: Fri 22 Nov 2024 17:52:38 +0000 Manifest this update: Fri 22 Nov 2024 17:52:37 +0000 Manifest next update: Fri 29 Nov 2024 17:52:37 +0000 Files and hashes: 1: 2YRcGequkJIocqDK_QUfFmFPhK8.crl (hash: xEPCaJotGi4lqstH+6l4fwmh1xDPQpcXmHuAAntWgUo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C6BF0/1491974AAEBB11E98A390B59C4F9AE02/2YRcGequkJIocqDK_QUfFmFPhK8.crl rsync://rpki.apnic.net/member_repository/A91C6BF0/1491974AAEBB11E98A390B59C4F9AE02/2YRcGequkJIocqDK_QUfFmFPhK8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2YRcGequkJIocqDK_QUfFmFPhK8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 17:52:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3511 (0xdb7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C6BF0/serialNumber=D9845C19EAAE90922872A0CAFD051F16614F84AF Validity Not Before: Nov 22 17:52:37 2024 GMT Not After : Nov 29 17:52:37 2024 GMT Subject: CN=6740c4e6-edb4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:60:fa:a2:91:ad:af:23:44:3f:c4:57:7a:bb: 6d:d8:70:d5:4a:69:c4:23:b4:e6:e6:48:5b:48:0d: 4a:95:48:98:ad:3d:83:9c:39:9b:16:f0:0d:0c:6f: 3f:ec:57:ca:c4:a5:29:4c:02:eb:e0:21:e0:92:e6: ee:8d:b7:7f:60:89:13:42:70:7a:cc:f1:bb:ad:1a: 80:48:0a:40:34:ea:54:c5:69:5f:ec:55:2d:5d:2a: e7:9d:91:d4:52:58:fa:61:76:67:a4:12:28:09:a1: b1:4e:ca:dc:05:e5:42:2a:39:58:76:e4:93:ce:45: f5:91:5e:ed:79:9b:3e:8c:3a:e0:4e:e2:a0:70:fa: 2d:ab:f9:83:2e:f6:34:99:cd:19:9d:5f:6f:56:67: 6e:98:83:7d:c1:ed:13:ea:3c:05:31:dc:98:5c:72: 52:0e:aa:1d:ec:fa:ce:02:3d:00:b9:61:33:2c:d9: 3a:4a:c9:25:b7:54:0d:6a:03:06:e2:45:d2:55:cd: 40:9c:99:62:56:be:7e:93:05:52:91:29:03:55:5e: 3f:2f:05:15:f1:42:b8:8a:a4:9c:46:b1:fa:a8:a8: 4d:ed:24:aa:da:d6:e2:c3:24:4b:21:11:7c:c8:fa: 8d:9a:a2:8e:38:4b:ad:32:be:ff:13:7c:b3:1d:ed: c0:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:CC:98:FB:B4:E2:37:E7:D7:33:33:73:BA:50:55:89:7A:A7:AE:90 X509v3 Authority Key Identifier: keyid:D9:84:5C:19:EA:AE:90:92:28:72:A0:CA:FD:05:1F:16:61:4F:84:AF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C6BF0/1491974AAEBB11E98A390B59C4F9AE02/2YRcGequkJIocqDK_QUfFmFPhK8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2YRcGequkJIocqDK_QUfFmFPhK8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C6BF0/1491974AAEBB11E98A390B59C4F9AE02/2YRcGequkJIocqDK_QUfFmFPhK8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ba:85:ee:3f:67:52:b2:7d:06:4c:09:59:3f:0a:d3:1d:88:d7: c6:f7:54:b2:20:66:97:47:c0:7b:ef:13:84:99:d4:10:46:49: 49:e7:f0:e5:a5:cc:96:1e:36:0a:80:f7:d3:a3:0e:9a:88:40: 42:da:09:96:4f:46:4d:42:78:7e:36:43:5d:d1:25:45:12:4d: 0e:74:35:6f:ae:8f:3f:a6:e1:ff:09:9e:d8:1c:3b:6f:48:02: 27:6a:7e:9d:8d:33:29:02:89:6a:b9:8c:58:3e:2c:e0:d9:94: 92:24:ff:af:72:99:d7:c9:a1:d2:9d:ee:a5:da:7b:f4:cb:4b: 77:7f:96:9e:c9:c1:57:e7:da:ed:2e:b5:be:4a:99:ab:00:c6: a6:63:41:0b:fe:64:af:23:64:e4:2e:53:51:38:57:3f:1e:45: ac:4d:f4:2c:4b:19:eb:b9:d3:f7:ec:be:80:3c:21:7d:93:ab: 2f:cf:63:88:72:45:57:52:5e:97:9e:b6:e6:62:4b:d4:ec:b2: 36:33:64:61:89:5c:94:a4:df:04:e0:c2:ff:91:66:a5:18:3c: 38:c9:d3:89:ac:b7:eb:2f:91:89:4e:57:35:76:8e:7c:4a:f9: 29:f5:c6:95:2d:5a:04:57:db:1a:85:9c:2a:42:b8:49:b1:89: f5:8c:73:e1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDbcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzZCRjAxMTAvBgNVBAUTKEQ5ODQ1QzE5RUFBRTkwOTIyODcyQTBDQUZEMDUxRjE2 NjE0Rjg0QUYwHhcNMjQxMTIyMTc1MjM3WhcNMjQxMTI5MTc1MjM3WjAYMRYwFAYD VQQDEw02NzQwYzRlNi1lZGI0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtWD6opGtryNEP8RXertt2HDVSmnEI7Tm5khbSA1KlUiYrT2DnDmbFvANDG8/ 7FfKxKUpTALr4CHgkubujbd/YIkTQnB6zPG7rRqASApANOpUxWlf7FUtXSrnnZHU Ulj6YXZnpBIoCaGxTsrcBeVCKjlYduSTzkX1kV7teZs+jDrgTuKgcPotq/mDLvY0 mc0ZnV9vVmdumIN9we0T6jwFMdyYXHJSDqod7PrOAj0AuWEzLNk6Ssklt1QNagMG 4kXSVc1AnJliVr5+kwVSkSkDVV4/LwUV8UK4iqScRrH6qKhN7SSq2tbiwyRLIRF8 yPqNmqKOOEutMr7/E3yzHe3AewIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFITMmPu0 4jfn1zMzc7pQVYl6p66QMB8GA1UdIwQYMBaAFNmEXBnqrpCSKHKgyv0FHxZhT4Sv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNkJGMC8xNDkxOTc0QUFF QkIxMUU5OEEzOTBCNTlDNEY5QUUwMi8yWVJjR2VxdWtKSW9jcURLX1FVZkZtRlBo SzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJZUmNHZXF1a0pJb2NxREtfUVVmRm1GUGhLOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NkJGMC8xNDkxOTc0QUFFQkIxMUU5OEEzOTBCNTlDNEY5QUUwMi8yWVJjR2VxdWtK SW9jcURLX1FVZkZtRlBoSzgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC6he4/Z1KyfQZMCVk/CtMdiNfG91SyIGaXR8B77xOEmdQQRklJ5/Dl pcyWHjYKgPfTow6aiEBC2gmWT0ZNQnh+NkNd0SVFEk0OdDVvro8/puH/CZ7YHDtv SAInan6djTMpAolquYxYPizg2ZSSJP+vcpnXyaHSne6l2nv0y0t3f5aeycFX59rt LrW+SpmrAMamY0EL/mSvI2TkLlNROFc/HkWsTfQsSxnrudP37L6APCF9k6svz2OI ckVXUl6XnrbmYkvU7LI2M2RhiVyUpN8E4ML/kWalGDw4ydOJrLfrL5GJTlc1do58 Svkp9caVLVoEV9sahZwqQrhJsYn1jHPh -----END CERTIFICATE-----Generated at Fri Nov 22 19:45:03 2024 by rpki-client on console-fra.rpki-client.org