$ rpki-client -vvf rpki.apnic.net/member_repository/A91E82F0/5C57E5C0828311EE90C8816AC4F9AE02/7unhDCkeVsgtdwcgELDlgAg_5yk.mft File: 7unhDCkeVsgtdwcgELDlgAg_5yk.mft (raw, json) Hash identifier: g7CBKXPogBNWFYwGDH+Nzy5050X67fPNXQLDYnZwAjU= Subject key identifier: 06:13:59:17:81:8F:EB:E2:C5:EF:D0:69:B1:20:6F:74:C7:E3:E9:1C Authority key identifier: EE:E9:E1:0C:29:1E:56:C8:2D:77:07:20:10:B0:E5:80:08:3F:E7:29 Certificate issuer: /CN=A91E82F0/serialNumber=EEE9E10C291E56C82D77072010B0E580083FE729 Certificate serial: C0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7unhDCkeVsgtdwcgELDlgAg_5yk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E82F0/5C57E5C0828311EE90C8816AC4F9AE02/7unhDCkeVsgtdwcgELDlgAg_5yk.mft Manifest number: C0 Signing time: Sat 23 Nov 2024 03:55:51 +0000 Manifest this update: Sat 23 Nov 2024 03:55:50 +0000 Manifest next update: Sat 30 Nov 2024 03:55:50 +0000 Files and hashes: 1: 7unhDCkeVsgtdwcgELDlgAg_5yk.crl (hash: D8nUrUOtx2KTeXTR4rp7nMntL1le5kMxfTg0seE2aFc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E82F0/5C57E5C0828311EE90C8816AC4F9AE02/7unhDCkeVsgtdwcgELDlgAg_5yk.crl rsync://rpki.apnic.net/member_repository/A91E82F0/5C57E5C0828311EE90C8816AC4F9AE02/7unhDCkeVsgtdwcgELDlgAg_5yk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7unhDCkeVsgtdwcgELDlgAg_5yk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 192 (0xc0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E82F0/serialNumber=EEE9E10C291E56C82D77072010B0E580083FE729 Validity Not Before: Nov 23 03:55:50 2024 GMT Not After : Nov 30 03:55:50 2024 GMT Subject: CN=67415246-ec75 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:7c:ed:18:12:3e:77:94:b8:93:7c:cd:6b:60: 13:4f:3f:db:23:3a:ae:02:d6:df:8b:3e:69:c8:20: c7:31:09:03:0f:5e:cd:5c:45:55:01:62:0e:df:0d: b7:56:a8:00:ff:50:e8:66:94:0f:dc:3e:ac:de:ab: 75:82:a0:48:c4:61:46:26:df:9f:5c:da:12:17:7e: d4:93:22:f9:6f:3b:dc:54:1a:83:b9:6b:7f:4a:ce: 5f:31:d8:a8:45:08:f6:82:49:ae:42:05:f7:45:8d: 07:cd:b0:82:ee:f0:72:13:8e:8f:14:ce:b3:a5:d5: 11:05:87:16:68:62:5f:3a:b1:13:c8:da:a7:8b:d0: 4e:42:e1:8e:6e:42:84:e4:7d:3d:9f:5e:49:a4:4f: 05:ac:60:08:ed:6a:0d:29:8a:1b:80:75:6a:67:21: 06:7c:cf:ff:17:d5:dd:b4:49:2b:d9:8b:bf:9f:cc: 9e:2c:4c:7e:28:c7:83:aa:09:c5:97:e7:63:26:34: 18:69:a8:b0:cf:c9:e9:08:7e:2f:b4:c5:04:3b:67: 0b:2d:5c:3a:42:ca:7f:c3:62:ca:4c:20:cf:6b:71: 93:65:1e:6a:1e:d1:92:ba:ed:5a:e9:a3:b9:ca:35: 63:97:5c:92:47:6c:4a:14:7e:f3:cf:8d:5d:0a:36: d6:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:13:59:17:81:8F:EB:E2:C5:EF:D0:69:B1:20:6F:74:C7:E3:E9:1C X509v3 Authority Key Identifier: keyid:EE:E9:E1:0C:29:1E:56:C8:2D:77:07:20:10:B0:E5:80:08:3F:E7:29 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E82F0/5C57E5C0828311EE90C8816AC4F9AE02/7unhDCkeVsgtdwcgELDlgAg_5yk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7unhDCkeVsgtdwcgELDlgAg_5yk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E82F0/5C57E5C0828311EE90C8816AC4F9AE02/7unhDCkeVsgtdwcgELDlgAg_5yk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 69:05:04:01:47:93:a3:f4:47:d6:45:53:85:25:d9:56:7f:1a: 1f:c1:87:ec:af:9e:a5:60:98:92:87:46:d5:7a:a9:d7:4f:53: 94:62:eb:88:fb:63:1b:44:45:45:98:49:bb:2c:34:bb:17:13: 2e:1d:07:b0:59:1d:29:f6:49:f0:28:1e:8c:6d:2b:95:62:be: 77:2a:fb:1b:3d:1c:24:01:9c:52:c7:90:87:1e:dc:d3:1a:31: f4:2a:8e:e1:ea:53:93:ef:81:e8:39:51:31:f6:9c:23:9d:f9: 8d:ce:b8:70:72:a2:d4:82:6d:a4:18:5c:a7:40:a4:a4:b4:28: 15:cc:b7:88:2f:c2:10:1e:2c:ec:f6:4d:5b:9b:9c:8b:67:3a: 4e:d7:06:9c:06:d4:5c:75:7b:b9:b9:a5:27:66:e4:6c:69:48: ed:5f:5f:78:98:d9:81:9c:39:dc:c9:32:d7:df:19:84:19:89: f4:2d:a7:ef:d2:da:eb:be:97:58:b9:19:e1:16:a1:5d:e3:08: 3e:79:68:1b:b1:7d:06:26:ae:6c:05:92:1c:c0:fc:73:23:2a: d2:e6:21:b6:51:11:9f:73:fe:8d:6a:bc:38:b1:87:13:ee:ce: b4:f5:f7:66:bd:89:68:a4:9a:e5:85:cc:f2:5e:65:23:cf:da: 8e:4e:12:72 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAMAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTgyRjAxMTAvBgNVBAUTKEVFRTlFMTBDMjkxRTU2QzgyRDc3MDcyMDEwQjBFNTgw MDgzRkU3MjkwHhcNMjQxMTIzMDM1NTUwWhcNMjQxMTMwMDM1NTUwWjAYMRYwFAYD VQQDEw02NzQxNTI0Ni1lYzc1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzHztGBI+d5S4k3zNa2ATTz/bIzquAtbfiz5pyCDHMQkDD17NXEVVAWIO3w23 VqgA/1DoZpQP3D6s3qt1gqBIxGFGJt+fXNoSF37UkyL5bzvcVBqDuWt/Ss5fMdio RQj2gkmuQgX3RY0HzbCC7vByE46PFM6zpdURBYcWaGJfOrETyNqni9BOQuGObkKE 5H09n15JpE8FrGAI7WoNKYobgHVqZyEGfM//F9XdtEkr2Yu/n8yeLEx+KMeDqgnF l+djJjQYaaiwz8npCH4vtMUEO2cLLVw6Qsp/w2LKTCDPa3GTZR5qHtGSuu1a6aO5 yjVjl1ySR2xKFH7zz41dCjbWHQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAYTWReB j+vixe/QabEgb3TH4+kcMB8GA1UdIwQYMBaAFO7p4QwpHlbILXcHIBCw5YAIP+cp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFODJGMC81QzU3RTVDMDgy ODMxMUVFOTBDODgxNkFDNEY5QUUwMi83dW5oRENrZVZzZ3Rkd2NnRUxEbGdBZ181 eWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzd1bmhEQ2tlVnNndGR3Y2dFTERsZ0FnXzV5ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF ODJGMC81QzU3RTVDMDgyODMxMUVFOTBDODgxNkFDNEY5QUUwMi83dW5oRENrZVZz Z3Rkd2NnRUxEbGdBZ181eWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBpBQQBR5Oj9EfWRVOFJdlWfxofwYfsr56lYJiSh0bVeqnXT1OUYuuI +2MbREVFmEm7LDS7FxMuHQewWR0p9knwKB6MbSuVYr53KvsbPRwkAZxSx5CHHtzT GjH0Ko7h6lOT74HoOVEx9pwjnfmNzrhwcqLUgm2kGFynQKSktCgVzLeIL8IQHizs 9k1bm5yLZzpO1wacBtRcdXu5uaUnZuRsaUjtX194mNmBnDncyTLX3xmEGYn0Lafv 0trrvpdYuRnhFqFd4wg+eWgbsX0GJq5sBZIcwPxzIyrS5iG2URGfc/6Narw4sYcT 7s609fdmvYlopJrlhczyXmUjz9qOThJy -----END CERTIFICATE-----Generated at Sat Nov 23 05:02:59 2024 by rpki-client on console-fra.rpki-client.org