$ rpki-client -vvf rpki.apnic.net/member_repository/A91FCEB1/9C14B4063A2111E79AA0D51CC4F9AE02/5z-4ho3TtGHqGmc8ejaUUjXpyq4.mft File: 5z-4ho3TtGHqGmc8ejaUUjXpyq4.mft (raw, json) Hash identifier: cEcT6se+tHQbKgp7OcqSQQoLPE7ygGWYIi3eiVOnjns= Subject key identifier: 6C:EA:F5:CC:BA:D6:8C:F7:41:2B:E0:C6:95:B7:13:DA:5B:4A:71:17 Authority key identifier: E7:3F:B8:86:8D:D3:B4:61:EA:1A:67:3C:7A:36:94:52:35:E9:CA:AE Certificate issuer: /CN=A91FCEB1/serialNumber=E73FB8868DD3B461EA1A673C7A36945235E9CAAE Certificate serial: 06A0 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5z-4ho3TtGHqGmc8ejaUUjXpyq4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FCEB1/9C14B4063A2111E79AA0D51CC4F9AE02/5z-4ho3TtGHqGmc8ejaUUjXpyq4.mft Manifest number: 20B1 Signing time: Wed 20 Nov 2024 15:57:46 +0000 Manifest this update: Wed 20 Nov 2024 15:57:46 +0000 Manifest next update: Wed 27 Nov 2024 15:57:46 +0000 Files and hashes: 1: 5z-4ho3TtGHqGmc8ejaUUjXpyq4.crl (hash: VsKgSV+6SAoX+ZbFWdvJfHrKvgijzuJPkMfC2LCw4vU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FCEB1/9C14B4063A2111E79AA0D51CC4F9AE02/5z-4ho3TtGHqGmc8ejaUUjXpyq4.crl rsync://rpki.apnic.net/member_repository/A91FCEB1/9C14B4063A2111E79AA0D51CC4F9AE02/5z-4ho3TtGHqGmc8ejaUUjXpyq4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5z-4ho3TtGHqGmc8ejaUUjXpyq4.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 15:22:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1696 (0x6a0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FCEB1/serialNumber=E73FB8868DD3B461EA1A673C7A36945235E9CAAE Validity Not Before: Nov 20 15:57:46 2024 GMT Not After : Nov 27 15:57:46 2024 GMT Subject: CN=673e06fa-59bc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:83:45:5e:01:bf:0c:6c:9f:af:d9:98:2b:f5: 02:7c:9e:4d:bc:64:16:17:9a:56:e9:54:e8:91:d9: cc:d4:b7:60:78:8e:5c:08:1a:b6:d1:18:41:e4:d5: e4:5c:6e:68:2c:31:c8:22:ba:1c:d5:a2:80:40:23: de:54:39:46:ac:66:1a:85:01:ed:22:c9:55:41:d2: f3:0f:ea:d8:51:ec:9b:73:6f:bd:04:7a:72:7a:77: bf:75:a9:ea:97:79:46:ec:89:31:83:2f:e6:02:e3: f9:b7:6c:21:7e:40:da:96:88:45:d0:67:d3:95:21: c4:ce:fb:b8:9f:b0:b8:2c:26:30:9f:48:e5:e3:c8: d9:0e:89:38:1c:05:30:37:27:70:4b:5d:8e:32:81: a1:75:7c:3d:dc:2a:29:00:00:f0:e5:31:2f:37:0d: 69:91:37:57:0e:08:22:e3:27:c2:56:e6:f5:de:e9: 2c:0b:eb:61:41:dc:2a:ab:6f:40:7e:a3:0b:42:57: 12:bd:19:72:89:c1:6f:5c:34:e9:98:01:08:6a:af: 41:fd:b3:27:8a:27:c1:f1:93:d8:9a:11:ff:44:87: 29:8a:fc:eb:c0:5f:a5:77:7f:c2:d3:2b:34:82:70: 3b:c4:61:28:e1:d9:0c:28:f4:54:6c:96:91:89:66: 12:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:EA:F5:CC:BA:D6:8C:F7:41:2B:E0:C6:95:B7:13:DA:5B:4A:71:17 X509v3 Authority Key Identifier: keyid:E7:3F:B8:86:8D:D3:B4:61:EA:1A:67:3C:7A:36:94:52:35:E9:CA:AE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FCEB1/9C14B4063A2111E79AA0D51CC4F9AE02/5z-4ho3TtGHqGmc8ejaUUjXpyq4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5z-4ho3TtGHqGmc8ejaUUjXpyq4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FCEB1/9C14B4063A2111E79AA0D51CC4F9AE02/5z-4ho3TtGHqGmc8ejaUUjXpyq4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 53:06:7b:a3:4e:04:41:60:63:7f:00:e3:e8:01:c3:c1:12:27: 78:0c:00:24:6b:c9:21:71:67:8e:60:43:04:67:00:e1:ef:33: ad:e9:2e:50:5f:34:8d:72:81:93:5a:5e:6c:05:7e:38:12:e2: 26:b0:30:e3:a1:5d:c2:bc:70:81:b0:41:89:a2:bc:76:3c:e2: 03:6e:98:bc:9b:b5:2d:6b:40:b6:3f:16:e9:1b:ac:42:b0:b6: d3:27:89:a8:cc:fe:21:84:71:50:60:bc:cb:6b:67:79:ff:da: e7:fa:8d:e5:fc:57:65:87:d5:88:fb:1f:86:79:82:19:66:2f: b6:03:43:00:ba:cb:c7:bb:7a:3a:50:a7:e0:28:4b:cf:90:5e: c0:0d:20:72:27:1c:52:a0:43:f0:e6:b9:66:06:ac:86:d8:ad: a4:cd:cc:0e:24:31:c9:2c:ad:ff:a1:44:8b:07:56:f5:3f:3c: 18:f7:67:b6:f3:cb:d2:ce:08:17:60:71:57:07:3c:6c:f6:e9: 02:33:bc:a8:da:32:6e:2e:2e:9a:a3:a8:23:ed:59:68:29:25: 20:27:07:03:39:ab:17:04:78:e9:71:91:5e:67:8d:b5:6f:7d: 13:cf:74:2e:c3:39:45:57:aa:3e:7a:75:99:19:86:ce:06:28: e4:36:41:d5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBqAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkNFQjExMTAvBgNVBAUTKEU3M0ZCODg2OEREM0I0NjFFQTFBNjczQzdBMzY5NDUy MzVFOUNBQUUwHhcNMjQxMTIwMTU1NzQ2WhcNMjQxMTI3MTU1NzQ2WjAYMRYwFAYD VQQDEw02NzNlMDZmYS01OWJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2YNFXgG/DGyfr9mYK/UCfJ5NvGQWF5pW6VTokdnM1LdgeI5cCBq20RhB5NXk XG5oLDHIIroc1aKAQCPeVDlGrGYahQHtIslVQdLzD+rYUeybc2+9BHpyene/danq l3lG7Ikxgy/mAuP5t2whfkDalohF0GfTlSHEzvu4n7C4LCYwn0jl48jZDok4HAUw NydwS12OMoGhdXw93CopAADw5TEvNw1pkTdXDggi4yfCVub13uksC+thQdwqq29A fqMLQlcSvRlyicFvXDTpmAEIaq9B/bMniifB8ZPYmhH/RIcpivzrwF+ld3/C0ys0 gnA7xGEo4dkMKPRUbJaRiWYSDQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGzq9cy6 1oz3QSvgxpW3E9pbSnEXMB8GA1UdIwQYMBaAFOc/uIaN07Rh6hpnPHo2lFI16cqu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQ0VCMS85QzE0QjQwNjNB MjExMUU3OUFBMEQ1MUNDNEY5QUUwMi81ei00aG8zVHRHSHFHbWM4ZWphVVVqWHB5 cTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzV6LTRobzNUdEdIcUdtYzhlamFVVWpYcHlxNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG Q0VCMS85QzE0QjQwNjNBMjExMUU3OUFBMEQ1MUNDNEY5QUUwMi81ei00aG8zVHRH SHFHbWM4ZWphVVVqWHB5cTQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBTBnujTgRBYGN/AOPoAcPBEid4DAAka8khcWeOYEMEZwDh7zOt6S5Q XzSNcoGTWl5sBX44EuImsDDjoV3CvHCBsEGJorx2POIDbpi8m7Uta0C2PxbpG6xC sLbTJ4mozP4hhHFQYLzLa2d5/9rn+o3l/Fdlh9WI+x+GeYIZZi+2A0MAusvHu3o6 UKfgKEvPkF7ADSByJxxSoEPw5rlmBqyG2K2kzcwOJDHJLK3/oUSLB1b1PzwY92e2 88vSzggXYHFXBzxs9ukCM7yo2jJuLi6ao6gj7VloKSUgJwcDOasXBHjpcZFeZ421 b30Tz3QuwzlFV6o+enWZGYbOBijkNkHV -----END CERTIFICATE-----Generated at Wed Nov 20 18:45:08 2024 by rpki-client on console-fra.rpki-client.org