$ rpki-client -vvf rpki.apnic.net/member_repository/A91F79A2/B8C0B0A026A011EFB9A37E39C4F9AE02/EdT02sf7qLXBIiQwBTm9xhVEXeU.mft File: EdT02sf7qLXBIiQwBTm9xhVEXeU.mft (raw, json) Hash identifier: ZDviAPxZ2ywZkJQ8jSH1QkVZJ4aK0PGdlrimcvb8p0Y= Subject key identifier: 11:B4:95:CE:27:10:40:4D:F3:10:16:E0:3E:DC:F6:0C:26:9C:0A:97 Authority key identifier: 11:D4:F4:DA:C7:FB:A8:B5:C1:22:24:30:05:39:BD:C6:15:44:5D:E5 Certificate issuer: /CN=A91F79A2/serialNumber=11D4F4DAC7FBA8B5C12224300539BDC615445DE5 Certificate serial: 5A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EdT02sf7qLXBIiQwBTm9xhVEXeU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F79A2/B8C0B0A026A011EFB9A37E39C4F9AE02/EdT02sf7qLXBIiQwBTm9xhVEXeU.mft Manifest number: 5A Signing time: Thu 21 Nov 2024 05:14:35 +0000 Manifest this update: Thu 21 Nov 2024 05:14:35 +0000 Manifest next update: Thu 28 Nov 2024 05:14:35 +0000 Files and hashes: 1: EdT02sf7qLXBIiQwBTm9xhVEXeU.crl (hash: JoEu3pLxlVHKFIuYjOQHDf/72S8IU4Ky6mgrJw1iEAc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F79A2/B8C0B0A026A011EFB9A37E39C4F9AE02/EdT02sf7qLXBIiQwBTm9xhVEXeU.crl rsync://rpki.apnic.net/member_repository/A91F79A2/B8C0B0A026A011EFB9A37E39C4F9AE02/EdT02sf7qLXBIiQwBTm9xhVEXeU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EdT02sf7qLXBIiQwBTm9xhVEXeU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 05:14:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 90 (0x5a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F79A2/serialNumber=11D4F4DAC7FBA8B5C12224300539BDC615445DE5 Validity Not Before: Nov 21 05:14:35 2024 GMT Not After : Nov 28 05:14:35 2024 GMT Subject: CN=673ec1bb-f21f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:fb:49:b2:f1:09:ed:17:34:ba:8d:2a:5a:b5: cb:74:03:6d:03:93:e1:75:e8:6a:52:e6:c8:16:81: f2:39:03:fa:ec:3a:2a:13:04:e8:b4:06:73:1f:01: 2c:65:c6:c7:d0:10:a3:38:9e:2c:a8:79:5b:b1:83: dc:cf:50:d9:f1:d9:1f:f0:da:69:86:f5:ae:bb:9b: 81:7c:46:a0:05:8c:58:aa:c9:c0:0b:40:a6:d1:a6: 70:8a:91:f2:35:df:05:b5:32:bb:ae:2e:0a:b1:c6: 72:de:f7:98:59:39:47:5e:73:31:17:51:63:33:72: 7d:d7:c6:88:2f:13:1f:18:37:44:8a:fa:2a:1e:3f: 61:77:29:9d:76:43:e9:53:0d:a1:71:8a:ab:1b:cb: dd:7b:71:4f:13:6e:39:c5:59:ad:66:e0:92:27:a2: 4d:a6:47:42:95:b4:07:0c:9c:82:0f:4b:c0:ca:67: dc:82:c0:8b:ab:e7:c9:fa:bd:21:94:f8:fb:e2:e3: fb:88:f9:61:98:ef:a8:29:6d:5d:9f:f5:64:5a:5a: 55:b5:26:c7:fa:fd:c2:45:96:65:bb:81:08:b8:32: a1:3d:fe:d9:09:72:31:2e:a8:c2:d2:de:17:50:24: c2:70:9b:81:f7:3d:aa:41:9a:30:33:c2:34:d9:58: 3b:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:B4:95:CE:27:10:40:4D:F3:10:16:E0:3E:DC:F6:0C:26:9C:0A:97 X509v3 Authority Key Identifier: keyid:11:D4:F4:DA:C7:FB:A8:B5:C1:22:24:30:05:39:BD:C6:15:44:5D:E5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F79A2/B8C0B0A026A011EFB9A37E39C4F9AE02/EdT02sf7qLXBIiQwBTm9xhVEXeU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EdT02sf7qLXBIiQwBTm9xhVEXeU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F79A2/B8C0B0A026A011EFB9A37E39C4F9AE02/EdT02sf7qLXBIiQwBTm9xhVEXeU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ea:cc:45:3b:fd:ea:c8:3b:e1:49:60:e9:33:b7:2d:10:d7:f8: df:e7:07:6b:dd:1a:2e:53:1d:f7:e1:23:94:df:87:6d:99:58: 78:1f:50:74:1c:4b:11:2f:94:b4:bf:9e:21:11:2e:d0:70:c4: a1:de:8d:a8:bb:ae:d1:66:c9:96:2e:0c:01:ed:98:4a:20:a0: 1c:a4:39:75:0b:7d:1f:32:ed:bb:32:c6:93:e8:95:fc:dc:c8: a6:be:15:20:d6:1b:7c:bc:f1:cf:45:10:1a:65:ee:5b:1a:c2: d0:2a:4a:6e:49:8b:de:55:da:77:ed:1b:9c:61:89:39:47:ee: 97:de:b9:a2:44:9a:36:b2:86:b0:80:7c:e7:de:cd:94:e4:05: aa:27:bd:91:e8:03:73:00:0d:45:61:cb:4b:8c:75:54:26:f8: 36:69:a8:50:5d:bb:57:bb:03:97:8a:a4:ae:fd:19:b1:38:4a: 4a:03:0a:00:11:09:f0:f6:71:8b:86:cc:18:ea:08:d8:5a:a7: 15:f9:2b:30:d2:89:46:91:fb:f8:51:21:db:e8:23:0c:d6:2e: a8:68:eb:41:c5:bb:bd:e8:cb:f3:0e:d7:e8:1b:ed:e8:cc:be: 76:74:ed:45:e0:57:f5:00:e0:b0:5b:f6:90:20:53:9a:15:f1: d3:93:44:09 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBWjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG NzlBMjExMC8GA1UEBRMoMTFENEY0REFDN0ZCQThCNUMxMjIyNDMwMDUzOUJEQzYx NTQ0NURFNTAeFw0yNDExMjEwNTE0MzVaFw0yNDExMjgwNTE0MzVaMBgxFjAUBgNV BAMTDTY3M2VjMWJiLWYyMWYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCx+0my8QntFzS6jSpatct0A20Dk+F16GpS5sgWgfI5A/rsOioTBOi0BnMfASxl xsfQEKM4niyoeVuxg9zPUNnx2R/w2mmG9a67m4F8RqAFjFiqycALQKbRpnCKkfI1 3wW1MruuLgqxxnLe95hZOUdeczEXUWMzcn3XxogvEx8YN0SK+ioeP2F3KZ12Q+lT DaFxiqsby917cU8TbjnFWa1m4JInok2mR0KVtAcMnIIPS8DKZ9yCwIur58n6vSGU +Pvi4/uI+WGY76gpbV2f9WRaWlW1Jsf6/cJFlmW7gQi4MqE9/tkJcjEuqMLS3hdQ JMJwm4H3PapBmjAzwjTZWDs3AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUEbSVzicQ QE3zEBbgPtz2DCacCpcwHwYDVR0jBBgwFoAUEdT02sf7qLXBIiQwBTm9xhVEXeUw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUY3OUEyL0I4QzBCMEEwMjZB MDExRUZCOUEzN0UzOUM0RjlBRTAyL0VkVDAyc2Y3cUxYQklpUXdCVG05eGhWRVhl VS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvRWRUMDJzZjdxTFhCSWlRd0JUbTl4aFZFWGVVLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUY3 OUEyL0I4QzBCMEEwMjZBMDExRUZCOUEzN0UzOUM0RjlBRTAyL0VkVDAyc2Y3cUxY QklpUXdCVG05eGhWRVhlVS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAOrMRTv96sg74Ulg6TO3LRDX+N/nB2vdGi5THffhI5Tfh22ZWHgfUHQc SxEvlLS/niERLtBwxKHejai7rtFmyZYuDAHtmEogoBykOXULfR8y7bsyxpPolfzc yKa+FSDWG3y88c9FEBpl7lsawtAqSm5Ji95V2nftG5xhiTlH7pfeuaJEmjayhrCA fOfezZTkBaonvZHoA3MADUVhy0uMdVQm+DZpqFBdu1e7A5eKpK79GbE4SkoDCgAR CfD2cYuGzBjqCNhapxX5KzDSiUaR+/hRIdvoIwzWLqho60HFu73oy/MO1+gb7ejM vnZ07UXgV/UA4LBb9pAgU5oV8dOTRAk= -----END CERTIFICATE-----Generated at Thu Nov 21 06:50:53 2024 by rpki-client on console-fra.rpki-client.org