$ rpki-client -vvf rpki.apnic.net/member_repository/A91F0A98/8F4864EA35E011EE87C2A670C4F9AE02/1h14JILiVI0iXRvIiINjk97jmBI.mft File: 1h14JILiVI0iXRvIiINjk97jmBI.mft (raw, json) Hash identifier: SGmejcZuMGAjIUZiyOZMYxohBkDPaXKs17ApcZ1/cEU= Subject key identifier: 43:20:42:D2:88:D7:52:95:1D:B9:93:47:F3:01:C2:7D:80:3F:1F:97 Authority key identifier: D6:1D:78:24:82:E2:54:8D:22:5D:1B:C8:88:83:63:93:DE:E3:98:12 Certificate issuer: /CN=A91F0A98/serialNumber=D61D782482E2548D225D1BC888836393DEE39812 Certificate serial: F3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1h14JILiVI0iXRvIiINjk97jmBI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F0A98/8F4864EA35E011EE87C2A670C4F9AE02/1h14JILiVI0iXRvIiINjk97jmBI.mft Manifest number: F3 Signing time: Sat 23 Nov 2024 03:23:46 +0000 Manifest this update: Sat 23 Nov 2024 03:23:46 +0000 Manifest next update: Sat 30 Nov 2024 03:23:46 +0000 Files and hashes: 1: 1h14JILiVI0iXRvIiINjk97jmBI.crl (hash: kxwBPtIzn1eHhw0Fw0rB3pRO1IEsluI5UVRQCOzMWjU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F0A98/8F4864EA35E011EE87C2A670C4F9AE02/1h14JILiVI0iXRvIiINjk97jmBI.crl rsync://rpki.apnic.net/member_repository/A91F0A98/8F4864EA35E011EE87C2A670C4F9AE02/1h14JILiVI0iXRvIiINjk97jmBI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1h14JILiVI0iXRvIiINjk97jmBI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 243 (0xf3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F0A98/serialNumber=D61D782482E2548D225D1BC888836393DEE39812 Validity Not Before: Nov 23 03:23:46 2024 GMT Not After : Nov 30 03:23:46 2024 GMT Subject: CN=67414ac2-63bc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:08:20:0f:57:07:ed:64:a2:6c:5c:fc:35:30: 54:ed:de:99:20:95:43:80:18:68:a0:a5:2c:b8:b8: c7:1e:20:e7:54:85:36:94:a2:75:ea:63:3c:7f:15: 13:99:33:2c:ed:74:9b:4d:9c:88:f8:14:68:29:37: fb:05:6b:73:97:90:24:e0:e2:d8:76:70:78:bf:34: 24:42:f0:db:a3:0b:90:bb:5d:93:27:28:b3:4a:2c: 3f:5b:6f:11:94:05:ba:ca:65:ef:58:30:f3:62:3f: cf:1b:05:b1:eb:c6:70:08:85:3e:b9:56:90:1b:af: 20:0d:1d:e0:a4:0e:c6:d4:27:32:67:9d:54:48:9e: 2a:17:25:c6:3c:f3:96:48:13:22:78:89:08:4b:6b: 94:08:64:7d:04:aa:62:b9:c2:26:b1:85:10:2c:f7: 15:9f:1f:96:f9:ca:d1:69:26:88:10:0c:e6:47:7a: d1:5d:25:98:63:b5:0a:b7:52:99:eb:77:a3:b2:63: 1e:70:d7:00:42:e7:90:34:fb:4f:3f:9a:db:cf:bd: e6:6c:7e:8b:1b:42:e1:02:b6:11:8a:05:32:6d:4e: c7:0d:64:34:54:7f:f4:a0:dc:9f:61:b4:91:6e:5b: 67:06:12:68:b6:3b:57:19:ea:24:8f:5b:ef:d4:f1: d6:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:20:42:D2:88:D7:52:95:1D:B9:93:47:F3:01:C2:7D:80:3F:1F:97 X509v3 Authority Key Identifier: keyid:D6:1D:78:24:82:E2:54:8D:22:5D:1B:C8:88:83:63:93:DE:E3:98:12 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F0A98/8F4864EA35E011EE87C2A670C4F9AE02/1h14JILiVI0iXRvIiINjk97jmBI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1h14JILiVI0iXRvIiINjk97jmBI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F0A98/8F4864EA35E011EE87C2A670C4F9AE02/1h14JILiVI0iXRvIiINjk97jmBI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 50:91:85:3a:a5:d9:4e:e2:09:cb:cc:eb:b9:cf:2d:3f:08:6e: 54:6d:d4:41:17:30:f0:76:81:04:a0:ab:86:bb:4a:36:3d:f7: a4:2f:20:e7:3c:65:ec:ed:ef:2c:f3:aa:f1:2f:d5:2a:cf:33: 7e:03:8f:08:4e:f9:a4:be:9a:05:aa:bf:7c:8d:59:b4:67:c7: 58:20:9d:46:38:19:7c:19:50:7b:45:9e:8e:6d:e8:5d:62:f1: 63:48:b5:5a:1b:13:69:f6:03:3a:88:93:4c:6c:a1:ef:fc:16: 7d:bb:5d:7c:79:6a:61:06:c6:4b:56:5b:d7:19:7a:cd:38:81: 23:d5:3c:14:b9:73:43:75:89:04:ed:c7:30:0a:c8:a4:95:9a: 10:39:4a:68:09:2b:9b:c8:ff:e7:43:b3:7f:ec:47:87:5e:65: cc:dc:51:88:f6:d4:63:c7:e9:4b:c8:3e:a8:49:43:5f:dc:0a: 9c:31:42:a6:55:12:02:c6:f0:9b:af:8d:e7:9b:4f:21:37:9c: bb:37:49:ba:ec:f9:52:d8:27:06:1d:12:18:2c:50:85:5b:4d: ab:e2:9b:df:99:84:e3:94:76:52:92:5c:39:85:d8:d2:7a:95: bc:84:a0:69:b5:b4:b9:ab:b8:dd:20:34:89:3b:d8:a6:3d:4f: fb:d6:5c:fc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAPMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjBBOTgxMTAvBgNVBAUTKEQ2MUQ3ODI0ODJFMjU0OEQyMjVEMUJDODg4ODM2Mzkz REVFMzk4MTIwHhcNMjQxMTIzMDMyMzQ2WhcNMjQxMTMwMDMyMzQ2WjAYMRYwFAYD VQQDEw02NzQxNGFjMi02M2JjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwwggD1cH7WSibFz8NTBU7d6ZIJVDgBhooKUsuLjHHiDnVIU2lKJ16mM8fxUT mTMs7XSbTZyI+BRoKTf7BWtzl5Ak4OLYdnB4vzQkQvDbowuQu12TJyizSiw/W28R lAW6ymXvWDDzYj/PGwWx68ZwCIU+uVaQG68gDR3gpA7G1CcyZ51USJ4qFyXGPPOW SBMieIkIS2uUCGR9BKpiucImsYUQLPcVnx+W+crRaSaIEAzmR3rRXSWYY7UKt1KZ 63ejsmMecNcAQueQNPtPP5rbz73mbH6LG0LhArYRigUybU7HDWQ0VH/0oNyfYbSR bltnBhJotjtXGeokj1vv1PHWmQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEMgQtKI 11KVHbmTR/MBwn2APx+XMB8GA1UdIwQYMBaAFNYdeCSC4lSNIl0byIiDY5Pe45gS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMEE5OC84RjQ4NjRFQTM1 RTAxMUVFODdDMkE2NzBDNEY5QUUwMi8xaDE0SklMaVZJMGlYUnZJaUlOams5N2pt QkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFoMTRKSUxpVkkwaVhSdklpSU5qazk3am1CSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MEE5OC84RjQ4NjRFQTM1RTAxMUVFODdDMkE2NzBDNEY5QUUwMi8xaDE0SklMaVZJ MGlYUnZJaUlOams5N2ptQkkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBQkYU6pdlO4gnLzOu5zy0/CG5UbdRBFzDwdoEEoKuGu0o2PfekLyDn PGXs7e8s86rxL9UqzzN+A48ITvmkvpoFqr98jVm0Z8dYIJ1GOBl8GVB7RZ6Obehd YvFjSLVaGxNp9gM6iJNMbKHv/BZ9u118eWphBsZLVlvXGXrNOIEj1TwUuXNDdYkE 7ccwCsiklZoQOUpoCSubyP/nQ7N/7EeHXmXM3FGI9tRjx+lLyD6oSUNf3AqcMUKm VRICxvCbr43nm08hN5y7N0m67PlS2CcGHRIYLFCFW02r4pvfmYTjlHZSklw5hdjS epW8hKBptbS5q7jdIDSJO9imPU/71lz8 -----END CERTIFICATE-----Generated at Sat Nov 23 05:03:00 2024 by rpki-client on console-fra.rpki-client.org