$ rpki-client -vvf rpki.apnic.net/member_repository/A91EEC3B/6B37E19C841711E785F17080C4F9AE02/maB2Nu64AHCDMDGWpYxBvsxoj4A.mft File: maB2Nu64AHCDMDGWpYxBvsxoj4A.mft (raw, json) Hash identifier: LmgynhX0Ql/xOcAlY85jcfMtH8Sv7klMNVukgCUPaHw= Subject key identifier: B8:89:31:89:DC:52:DA:6C:67:95:1B:CA:00:A4:51:4D:87:05:01:AA Authority key identifier: 99:A0:76:36:EE:B8:00:70:83:30:31:96:A5:8C:41:BE:CC:68:8F:80 Certificate issuer: /CN=A91EEC3B/serialNumber=99A07636EEB8007083303196A58C41BECC688F80 Certificate serial: 0B77 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/maB2Nu64AHCDMDGWpYxBvsxoj4A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EEC3B/6B37E19C841711E785F17080C4F9AE02/maB2Nu64AHCDMDGWpYxBvsxoj4A.mft Manifest number: 2B1F Signing time: Fri 22 Nov 2024 16:28:58 +0000 Manifest this update: Fri 22 Nov 2024 16:28:57 +0000 Manifest next update: Fri 29 Nov 2024 16:28:57 +0000 Files and hashes: 1: maB2Nu64AHCDMDGWpYxBvsxoj4A.crl (hash: X8x6KfTS4J1m7jwiq+u+2UPGS2jw4sVgipxBA8cqr9E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EEC3B/6B37E19C841711E785F17080C4F9AE02/maB2Nu64AHCDMDGWpYxBvsxoj4A.crl rsync://rpki.apnic.net/member_repository/A91EEC3B/6B37E19C841711E785F17080C4F9AE02/maB2Nu64AHCDMDGWpYxBvsxoj4A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/maB2Nu64AHCDMDGWpYxBvsxoj4A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 16:28:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2935 (0xb77) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EEC3B/serialNumber=99A07636EEB8007083303196A58C41BECC688F80 Validity Not Before: Nov 22 16:28:57 2024 GMT Not After : Nov 29 16:28:57 2024 GMT Subject: CN=6740b14a-5af3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:d9:25:e9:ee:ae:a0:00:e9:1f:94:26:d9:59: bd:e9:9c:a4:df:67:a6:49:0c:f0:9a:46:c4:21:33: 7d:49:4a:ad:d3:7f:14:3b:e5:74:db:1f:eb:fe:b0: 4c:d7:e4:6b:f6:0c:c4:08:92:25:e8:48:21:d4:ad: 99:2e:96:1e:ad:fd:e5:63:6c:04:16:ce:24:8e:c3: b1:36:d3:04:b6:09:fd:4b:93:ce:44:1f:cd:15:5e: b0:8e:d0:dd:60:f8:4f:e7:d6:a9:a8:c0:40:3e:4e: 47:16:52:b3:ce:83:96:c3:d8:b1:42:02:f7:7c:68: 27:26:07:08:63:5b:d3:a0:36:b3:b2:d7:5a:44:51: 21:cf:ec:94:0e:5f:65:89:45:d7:89:41:3f:88:e4: 49:c1:5a:c3:90:44:8a:f5:89:b5:1c:63:1b:bf:77: b0:c8:c4:c0:a6:9f:3b:02:85:50:d1:61:60:77:90: 3f:d0:f0:41:28:eb:a1:c0:e8:0d:31:d9:4b:05:a9: b0:2b:26:0c:2b:51:32:c5:c0:7b:42:0e:b6:e3:ce: 68:77:39:69:00:8e:cb:23:89:e3:53:8f:13:32:d7: 01:c3:ab:3b:4a:de:ad:86:ea:b4:ce:0a:1c:5f:3b: 43:08:0f:ba:cb:c7:80:42:87:70:1d:3b:3a:53:04: 55:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:89:31:89:DC:52:DA:6C:67:95:1B:CA:00:A4:51:4D:87:05:01:AA X509v3 Authority Key Identifier: keyid:99:A0:76:36:EE:B8:00:70:83:30:31:96:A5:8C:41:BE:CC:68:8F:80 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EEC3B/6B37E19C841711E785F17080C4F9AE02/maB2Nu64AHCDMDGWpYxBvsxoj4A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/maB2Nu64AHCDMDGWpYxBvsxoj4A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EEC3B/6B37E19C841711E785F17080C4F9AE02/maB2Nu64AHCDMDGWpYxBvsxoj4A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bb:0c:b8:42:19:bb:3c:9e:6d:d9:29:d1:44:b3:72:d3:f1:09: f5:4c:6d:e0:43:5d:be:18:45:e7:e4:1b:ba:d6:5f:48:e8:45: 4c:19:b3:d6:ce:b6:36:02:32:b4:28:ab:af:89:0d:de:de:75: 94:c3:b0:63:39:cb:31:ef:8b:c5:fb:d2:ab:9b:47:05:27:7e: 4f:4d:f5:1d:68:49:df:ee:d6:d8:80:5d:3f:7b:23:02:85:a7: 10:b3:b8:b2:d4:bb:56:a9:49:ae:b5:f2:16:58:d5:78:3e:bc: 1c:bb:b2:13:b1:d2:cc:e8:a4:36:02:b4:df:dd:07:0e:74:da: 88:11:41:1a:52:8d:27:fe:cc:ea:65:cc:83:c0:d3:b4:e2:8e: 86:64:17:25:17:df:03:1f:45:c7:ca:74:e1:d2:7e:72:0e:b4: 40:e4:8f:c4:ae:bc:67:c5:9b:39:79:96:f1:ff:36:85:2a:ac: 99:4c:8c:5f:cc:71:c1:cf:9a:f9:b7:3e:0a:e5:a9:09:2d:be: 38:9d:3f:cb:c0:10:cb:cf:cf:a2:95:76:64:f5:07:eb:5c:02: f9:de:aa:00:06:71:41:a0:81:d8:bc:bc:85:0d:87:20:ae:c9: 5d:55:49:a4:89:05:8d:cc:ec:90:a4:09:9f:48:60:d2:4e:3a: 91:00:4f:25 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC3cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUVDM0IxMTAvBgNVBAUTKDk5QTA3NjM2RUVCODAwNzA4MzMwMzE5NkE1OEM0MUJF Q0M2ODhGODAwHhcNMjQxMTIyMTYyODU3WhcNMjQxMTI5MTYyODU3WjAYMRYwFAYD VQQDEw02NzQwYjE0YS01YWYzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3dkl6e6uoADpH5Qm2Vm96Zyk32emSQzwmkbEITN9SUqt038UO+V02x/r/rBM 1+Rr9gzECJIl6Egh1K2ZLpYerf3lY2wEFs4kjsOxNtMEtgn9S5PORB/NFV6wjtDd YPhP59apqMBAPk5HFlKzzoOWw9ixQgL3fGgnJgcIY1vToDazstdaRFEhz+yUDl9l iUXXiUE/iORJwVrDkESK9Ym1HGMbv3ewyMTApp87AoVQ0WFgd5A/0PBBKOuhwOgN MdlLBamwKyYMK1EyxcB7Qg62485odzlpAI7LI4njU48TMtcBw6s7St6thuq0zgoc XztDCA+6y8eAQodwHTs6UwRVNQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLiJMYnc UtpsZ5UbygCkUU2HBQGqMB8GA1UdIwQYMBaAFJmgdjbuuABwgzAxlqWMQb7MaI+A MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRUMzQi82QjM3RTE5Qzg0 MTcxMUU3ODVGMTcwODBDNEY5QUUwMi9tYUIyTnU2NEFIQ0RNREdXcFl4QnZzeG9q NEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL21hQjJOdTY0QUhDRE1ER1dwWXhCdnN4b2o0QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF RUMzQi82QjM3RTE5Qzg0MTcxMUU3ODVGMTcwODBDNEY5QUUwMi9tYUIyTnU2NEFI Q0RNREdXcFl4QnZzeG9qNEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC7DLhCGbs8nm3ZKdFEs3LT8Qn1TG3gQ12+GEXn5Bu61l9I6EVMGbPW zrY2AjK0KKuviQ3e3nWUw7BjOcsx74vF+9Krm0cFJ35PTfUdaEnf7tbYgF0/eyMC hacQs7iy1LtWqUmutfIWWNV4Prwcu7ITsdLM6KQ2ArTf3QcOdNqIEUEaUo0n/szq ZcyDwNO04o6GZBclF98DH0XHynTh0n5yDrRA5I/ErrxnxZs5eZbx/zaFKqyZTIxf zHHBz5r5tz4K5akJLb44nT/LwBDLz8+ilXZk9QfrXAL53qoABnFBoIHYvLyFDYcg rsldVUmkiQWNzOyQpAmfSGDSTjqRAE8l -----END CERTIFICATE-----Generated at Fri Nov 22 19:50:22 2024 by rpki-client on console-ams.rpki-client.org