$ rpki-client -vvf rpki.apnic.net/member_repository/A91194E9/C5D5E4CA067411EDB1D29A28C4F9AE02/XUofz1MBwCdZyE7qVZFeJcFxpz8.mft File: XUofz1MBwCdZyE7qVZFeJcFxpz8.mft (raw, json) Hash identifier: Qdr9zIvg+3kO87sslpZnkcBdMHbsS2+M6ZCenAbFHBc= Subject key identifier: E1:BC:BF:48:CF:94:31:A4:A5:9C:B2:58:76:8D:E1:C1:94:E8:44:E6 Authority key identifier: 5D:4A:1F:CF:53:01:C0:27:59:C8:4E:EA:55:91:5E:25:C1:71:A7:3F Certificate issuer: /CN=A91194E9/serialNumber=5D4A1FCF5301C02759C84EEA55915E25C171A73F Certificate serial: 0232 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XUofz1MBwCdZyE7qVZFeJcFxpz8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91194E9/C5D5E4CA067411EDB1D29A28C4F9AE02/XUofz1MBwCdZyE7qVZFeJcFxpz8.mft Manifest number: 022D Signing time: Sat 23 Nov 2024 01:26:14 +0000 Manifest this update: Sat 23 Nov 2024 01:26:14 +0000 Manifest next update: Sat 30 Nov 2024 01:26:14 +0000 Files and hashes: 1: XUofz1MBwCdZyE7qVZFeJcFxpz8.crl (hash: 4/zkvIL6YgsqDeIhNCUfJ+ke7pqqSKiCm8NedSWw+MI=) 2: 388802BC067711EDA1DEB529C4F9AE02.roa (hash: EuoLXvibJYzVLshOhBvVYHJccoZUmB/oPyzL/sJ9KVc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91194E9/C5D5E4CA067411EDB1D29A28C4F9AE02/XUofz1MBwCdZyE7qVZFeJcFxpz8.crl rsync://rpki.apnic.net/member_repository/A91194E9/C5D5E4CA067411EDB1D29A28C4F9AE02/XUofz1MBwCdZyE7qVZFeJcFxpz8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XUofz1MBwCdZyE7qVZFeJcFxpz8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 562 (0x232) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91194E9/serialNumber=5D4A1FCF5301C02759C84EEA55915E25C171A73F Validity Not Before: Nov 23 01:26:14 2024 GMT Not After : Nov 30 01:26:14 2024 GMT Subject: CN=67412f36-d267 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:9c:0e:11:79:a3:7f:83:60:91:fb:82:85:0d: b1:56:9f:79:2d:0e:10:e2:de:78:e9:90:11:dc:3b: 22:cd:f0:0b:e6:25:9a:43:14:6d:c7:19:a4:cd:47: 74:27:9d:26:5d:1d:92:1d:56:47:0a:59:19:f9:f1: 50:a0:d5:97:b2:98:ed:58:6d:32:75:75:37:2b:7b: bc:4a:04:c5:f2:3b:2d:f9:a4:7a:5a:da:9f:53:40: 74:5a:a8:52:84:9b:74:cf:0f:84:4c:1f:98:71:a0: 84:6b:87:21:3f:5c:40:ca:2c:44:1b:0d:6f:f3:ad: fc:38:47:ba:35:66:8f:40:88:b8:b1:30:f0:6a:39: e6:44:82:8b:44:e4:a0:fc:76:47:15:0f:64:ae:c5: 1f:c8:cb:46:28:9b:83:e1:50:14:4c:f3:04:89:a5: 46:94:ae:a6:a9:11:53:1a:04:2e:24:d5:b9:1a:a3: d3:11:cb:c9:3b:97:fe:c5:1a:eb:e5:88:f9:36:d3: 89:30:1c:65:d2:66:7c:e5:a7:3d:84:77:33:25:05: 65:5d:3b:75:4c:02:41:e2:9f:93:96:b3:aa:a4:aa: d4:b0:2a:09:22:fa:1d:de:e9:69:c7:dd:84:ba:3c: ff:3a:94:4e:21:78:f6:f0:bc:41:b2:71:1d:28:0f: d6:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:BC:BF:48:CF:94:31:A4:A5:9C:B2:58:76:8D:E1:C1:94:E8:44:E6 X509v3 Authority Key Identifier: keyid:5D:4A:1F:CF:53:01:C0:27:59:C8:4E:EA:55:91:5E:25:C1:71:A7:3F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91194E9/C5D5E4CA067411EDB1D29A28C4F9AE02/XUofz1MBwCdZyE7qVZFeJcFxpz8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XUofz1MBwCdZyE7qVZFeJcFxpz8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91194E9/C5D5E4CA067411EDB1D29A28C4F9AE02/XUofz1MBwCdZyE7qVZFeJcFxpz8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 89:47:ed:0f:0c:95:9f:37:bd:88:82:0e:df:7e:37:7d:2a:49: 24:61:a3:f9:70:81:4e:bd:94:0d:89:59:e0:93:21:e3:31:7d: 6f:59:2b:15:0b:26:f6:08:2b:e1:59:2e:44:f3:08:ea:b3:52: 22:15:52:9b:8e:98:d5:d9:1c:4c:c5:80:b0:4e:87:b2:0e:4b: 65:2f:32:f1:bd:5a:3b:f5:c9:2b:7b:ed:3c:b6:12:56:7f:fb: e9:e0:9e:10:86:46:ee:da:9f:65:9a:1b:15:5d:c7:5d:3e:97: 7e:5a:0a:dd:cd:84:11:f5:ba:8c:75:fc:2d:6d:d0:4b:7f:ce: a4:fe:08:68:1e:69:33:25:3c:60:46:0c:07:2d:26:ad:b4:5d: 1f:25:d8:03:4f:4b:74:c8:e5:67:82:18:7b:58:3e:7c:8a:98: a6:e3:25:e9:aa:c8:91:61:b3:17:03:a6:95:e6:9f:2d:f1:4b: de:f9:eb:6a:c9:83:49:6b:07:81:b5:5d:8e:b7:b6:5d:21:d6: 6b:45:e5:ac:39:7d:e3:a7:b6:e3:4f:db:c8:96:c3:f1:9d:5b: 83:40:10:f8:f8:f5:1c:af:67:d7:38:92:9e:2e:68:bc:25:f3: b6:65:d7:2d:0d:0d:b0:3d:37:67:77:b8:24:35:85:a1:c8:72: 6d:da:62:bd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAjIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTk0RTkxMTAvBgNVBAUTKDVENEExRkNGNTMwMUMwMjc1OUM4NEVFQTU1OTE1RTI1 QzE3MUE3M0YwHhcNMjQxMTIzMDEyNjE0WhcNMjQxMTMwMDEyNjE0WjAYMRYwFAYD VQQDEw02NzQxMmYzNi1kMjY3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2ZwOEXmjf4NgkfuChQ2xVp95LQ4Q4t546ZAR3DsizfAL5iWaQxRtxxmkzUd0 J50mXR2SHVZHClkZ+fFQoNWXspjtWG0ydXU3K3u8SgTF8jst+aR6WtqfU0B0WqhS hJt0zw+ETB+YcaCEa4chP1xAyixEGw1v8638OEe6NWaPQIi4sTDwajnmRIKLROSg /HZHFQ9krsUfyMtGKJuD4VAUTPMEiaVGlK6mqRFTGgQuJNW5GqPTEcvJO5f+xRrr 5Yj5NtOJMBxl0mZ85ac9hHczJQVlXTt1TAJB4p+TlrOqpKrUsCoJIvod3ulpx92E ujz/OpROIXj28LxBsnEdKA/WTQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOG8v0jP lDGkpZyyWHaN4cGU6ETmMB8GA1UdIwQYMBaAFF1KH89TAcAnWchO6lWRXiXBcac/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExOTRFOS9DNUQ1RTRDQTA2 NzQxMUVEQjFEMjlBMjhDNEY5QUUwMi9YVW9mejFNQndDZFp5RTdxVlpGZUpjRnhw ejguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hVb2Z6MU1Cd0NkWnlFN3FWWkZlSmNGeHB6OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx OTRFOS9DNUQ1RTRDQTA2NzQxMUVEQjFEMjlBMjhDNEY5QUUwMi9YVW9mejFNQndD ZFp5RTdxVlpGZUpjRnhwejgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCJR+0PDJWfN72Igg7ffjd9KkkkYaP5cIFOvZQNiVngkyHjMX1vWSsV Cyb2CCvhWS5E8wjqs1IiFVKbjpjV2RxMxYCwToeyDktlLzLxvVo79ckre+08thJW f/vp4J4Qhkbu2p9lmhsVXcddPpd+WgrdzYQR9bqMdfwtbdBLf86k/ghoHmkzJTxg RgwHLSattF0fJdgDT0t0yOVnghh7WD58ipim4yXpqsiRYbMXA6aV5p8t8Uve+etq yYNJaweBtV2Ot7ZdIdZrReWsOX3jp7bjT9vIlsPxnVuDQBD4+PUcr2fXOJKeLmi8 JfO2ZdctDQ2wPTdnd7gkNYWhyHJt2mK9 -----END CERTIFICATE-----Generated at Sat Nov 23 02:33:30 2024 by rpki-client on console-fra.rpki-client.org