$ rpki-client -vvf rpki.apnic.net/member_repository/A91EA409/0289F6FC9CAC11EFAB595516C4F9AE02/N3g1zaK9Y2fvD-tepYGY-Bg6h8E.mft File: N3g1zaK9Y2fvD-tepYGY-Bg6h8E.mft (raw, json) Hash identifier: a9Mqz6wPA2Nn+K2B0Q16x9k58/y8ZvcC8H0GC9oL7Xc= Subject key identifier: 70:0C:14:CD:4A:D7:A3:D8:9C:A1:68:FA:9F:E9:D4:ED:5E:77:DA:DA Authority key identifier: 37:78:35:CD:A2:BD:63:67:EF:0F:EB:5E:A5:81:98:F8:18:3A:87:C1 Certificate issuer: /CN=A91EA409/serialNumber=377835CDA2BD6367EF0FEB5EA58198F8183A87C1 Certificate serial: 0A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/N3g1zaK9Y2fvD-tepYGY-Bg6h8E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EA409/0289F6FC9CAC11EFAB595516C4F9AE02/N3g1zaK9Y2fvD-tepYGY-Bg6h8E.mft Manifest number: 0A Signing time: Sat 23 Nov 2024 06:03:56 +0000 Manifest this update: Sat 23 Nov 2024 06:03:56 +0000 Manifest next update: Sat 30 Nov 2024 06:03:56 +0000 Files and hashes: 1: N3g1zaK9Y2fvD-tepYGY-Bg6h8E.crl (hash: K9+2wo2xDtMXBueLsL2TGnLwkD6t+5Z8hqyRrYNykK0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EA409/0289F6FC9CAC11EFAB595516C4F9AE02/N3g1zaK9Y2fvD-tepYGY-Bg6h8E.crl rsync://rpki.apnic.net/member_repository/A91EA409/0289F6FC9CAC11EFAB595516C4F9AE02/N3g1zaK9Y2fvD-tepYGY-Bg6h8E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/N3g1zaK9Y2fvD-tepYGY-Bg6h8E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10 (0xa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EA409/serialNumber=377835CDA2BD6367EF0FEB5EA58198F8183A87C1 Validity Not Before: Nov 23 06:03:56 2024 GMT Not After : Nov 30 06:03:56 2024 GMT Subject: CN=6741704c-611e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f4:ef:cd:32:4f:db:0c:0d:65:56:c5:99:0f:50: c6:c0:33:96:1d:71:01:02:2b:1f:62:17:3a:b1:44: 2d:c3:e8:25:0e:b1:d2:6c:2d:7c:96:2a:da:36:c4: 79:29:be:2f:64:d3:e2:c6:7d:2a:ed:63:5d:6c:2e: ae:da:1d:6a:56:8f:42:b2:9e:c7:89:e9:4b:64:d0: ae:d7:e7:6d:8b:a8:37:1c:a5:08:4a:12:a6:0c:71: eb:cb:c7:e1:82:4c:b5:82:84:79:54:e5:81:d1:44: ed:38:e1:e6:0c:95:71:73:9d:d4:65:6e:a3:a3:3f: 54:12:b1:99:e3:40:b6:0f:28:29:39:49:7c:e0:0f: 41:04:8a:f6:a8:8d:d8:1d:0a:90:b6:7b:b6:bf:2a: 16:6e:02:a1:e5:47:66:e4:7b:71:64:13:77:d8:71: 7d:e9:5d:a7:6a:c9:a4:35:31:ee:c3:63:c1:5c:3d: 57:80:e0:ca:25:f8:4c:c9:95:07:b0:14:cd:b9:a8: 7c:8f:5b:4e:a8:ae:47:54:55:f2:31:ec:fa:1e:0e: 57:b3:5a:60:4d:1f:84:05:66:10:db:1f:06:50:a9: e8:ff:38:4d:2a:76:1a:e9:06:92:9b:ce:2a:ea:7a: 9a:a0:f5:6c:60:84:62:6f:80:fe:0b:38:99:41:5e: b7:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:0C:14:CD:4A:D7:A3:D8:9C:A1:68:FA:9F:E9:D4:ED:5E:77:DA:DA X509v3 Authority Key Identifier: keyid:37:78:35:CD:A2:BD:63:67:EF:0F:EB:5E:A5:81:98:F8:18:3A:87:C1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EA409/0289F6FC9CAC11EFAB595516C4F9AE02/N3g1zaK9Y2fvD-tepYGY-Bg6h8E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/N3g1zaK9Y2fvD-tepYGY-Bg6h8E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EA409/0289F6FC9CAC11EFAB595516C4F9AE02/N3g1zaK9Y2fvD-tepYGY-Bg6h8E.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 47:8e:1c:84:cf:a5:58:3f:4e:e1:63:8f:8e:c0:44:24:0b:1a: 1f:b9:b0:05:28:a0:e6:5f:d3:3e:05:02:75:c0:06:e0:c3:ec: 31:13:43:a6:06:28:59:f1:f9:fc:32:a9:60:89:68:36:65:e8: 9f:e9:e2:93:aa:85:9d:c9:5c:8a:32:a7:3b:22:b1:25:08:a8: 13:59:c4:00:30:f3:17:e9:1a:7c:64:70:f2:22:58:b0:78:d4: be:8f:c6:b0:fd:71:f6:8a:9c:4e:1e:5d:5d:71:0a:0e:d4:01: c0:4b:14:cd:0e:55:80:a9:e1:76:e7:82:d1:9a:00:43:05:0b: 8c:de:35:16:5c:bb:2e:dd:ec:3e:09:23:57:b4:53:7a:38:a9: 89:6d:65:a1:6e:bd:ba:ee:63:ac:d4:3a:98:a9:52:c9:87:8f: 91:d5:f0:de:dc:e6:25:b3:99:bf:c7:b9:b5:4b:e6:f8:4d:02: 71:bb:25:44:a2:5b:c8:9b:70:1e:0e:41:c9:17:28:db:ad:98: 85:39:b7:d7:eb:8d:d8:1c:15:9c:20:b9:5d:e8:4f:63:04:19: 3e:aa:90:02:e5:00:15:c7:b6:0a:1c:9d:12:2a:31:e4:e1:62: 37:b8:36:c7:fb:93:ae:2d:12:91:80:7c:a5:25:ac:79:10:58: 0c:21:1c:06 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBCjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF QTQwOTExMC8GA1UEBRMoMzc3ODM1Q0RBMkJENjM2N0VGMEZFQjVFQTU4MTk4Rjgx ODNBODdDMTAeFw0yNDExMjMwNjAzNTZaFw0yNDExMzAwNjAzNTZaMBgxFjAUBgNV BAMTDTY3NDE3MDRjLTYxMWUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQD0780yT9sMDWVWxZkPUMbAM5YdcQECKx9iFzqxRC3D6CUOsdJsLXyWKto2xHkp vi9k0+LGfSrtY11sLq7aHWpWj0KynseJ6Utk0K7X522LqDccpQhKEqYMcevLx+GC TLWChHlU5YHRRO044eYMlXFzndRlbqOjP1QSsZnjQLYPKCk5SXzgD0EEivaojdgd CpC2e7a/KhZuAqHlR2bke3FkE3fYcX3pXadqyaQ1Me7DY8FcPVeA4Mol+EzJlQew FM25qHyPW06orkdUVfIx7PoeDlezWmBNH4QFZhDbHwZQqej/OE0qdhrpBpKbzirq epqg9WxghGJvgP4LOJlBXrdXAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUcAwUzUrX o9icoWj6n+nU7V532towHwYDVR0jBBgwFoAUN3g1zaK9Y2fvD+tepYGY+Bg6h8Ew DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUVBNDA5LzAyODlGNkZDOUNB QzExRUZBQjU5NTUxNkM0RjlBRTAyL04zZzF6YUs5WTJmdkQtdGVwWUdZLUJnNmg4 RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvTjNnMXphSzlZMmZ2RC10ZXBZR1ktQmc2aDhFLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUVB NDA5LzAyODlGNkZDOUNBQzExRUZBQjU5NTUxNkM0RjlBRTAyL04zZzF6YUs5WTJm dkQtdGVwWUdZLUJnNmg4RS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAEeOHITPpVg/TuFjj47ARCQLGh+5sAUooOZf0z4FAnXABuDD7DETQ6YG KFnx+fwyqWCJaDZl6J/p4pOqhZ3JXIoypzsisSUIqBNZxAAw8xfpGnxkcPIiWLB4 1L6PxrD9cfaKnE4eXV1xCg7UAcBLFM0OVYCp4XbngtGaAEMFC4zeNRZcuy7d7D4J I1e0U3o4qYltZaFuvbruY6zUOpipUsmHj5HV8N7c5iWzmb/HubVL5vhNAnG7JUSi W8ibcB4OQckXKNutmIU5t9frjdgcFZwguV3oT2MEGT6qkALlABXHtgocnRIqMeTh Yje4Nsf7k64tEpGAfKUlrHkQWAwhHAY= -----END CERTIFICATE-----Generated at Sat Nov 23 07:31:32 2024 by rpki-client on console-fra.rpki-client.org