$ rpki-client -vvf rpki.apnic.net/member_repository/A912759E/CB0EA7760CCB11ED9E722369C4F9AE02/XnPt2W_yeohfYTVup3sfVDXIT8w.mft File: XnPt2W_yeohfYTVup3sfVDXIT8w.mft (raw, json) Hash identifier: S9CZLiWI3lJPgT06kGoKXlj8djIfxwlhkg90Z9641O8= Subject key identifier: 79:97:CC:C3:C3:0D:BE:F8:6C:E1:79:44:9B:7F:47:E1:0C:A9:5E:5A Authority key identifier: 5E:73:ED:D9:6F:F2:7A:88:5F:61:35:6E:A7:7B:1F:54:35:C8:4F:CC Certificate issuer: /CN=A912759E/serialNumber=5E73EDD96FF27A885F61356EA77B1F5435C84FCC Certificate serial: 021F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XnPt2W_yeohfYTVup3sfVDXIT8w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912759E/CB0EA7760CCB11ED9E722369C4F9AE02/XnPt2W_yeohfYTVup3sfVDXIT8w.mft Manifest number: 021B Signing time: Sat 23 Nov 2024 01:30:48 +0000 Manifest this update: Sat 23 Nov 2024 01:30:47 +0000 Manifest next update: Sat 30 Nov 2024 01:30:47 +0000 Files and hashes: 1: XnPt2W_yeohfYTVup3sfVDXIT8w.crl (hash: JKPxWm+nI4Phq7CDKxvG6KgQSN/VRKUfscjWdcJ50cs=) 2: 7F0509300CCE11ED97C94316C4F9AE02.roa (hash: 7VxNMjQG1zgfT4tsEQfcFuOpbFyf2w1++cKzRTPQB1c=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912759E/CB0EA7760CCB11ED9E722369C4F9AE02/XnPt2W_yeohfYTVup3sfVDXIT8w.crl rsync://rpki.apnic.net/member_repository/A912759E/CB0EA7760CCB11ED9E722369C4F9AE02/XnPt2W_yeohfYTVup3sfVDXIT8w.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XnPt2W_yeohfYTVup3sfVDXIT8w.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 543 (0x21f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912759E/serialNumber=5E73EDD96FF27A885F61356EA77B1F5435C84FCC Validity Not Before: Nov 23 01:30:47 2024 GMT Not After : Nov 30 01:30:47 2024 GMT Subject: CN=67413047-30cb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:2c:2a:74:b7:20:c0:66:b4:88:88:14:c3:89: fd:fa:6d:00:c4:ed:e9:b4:2b:f0:71:4c:e0:5a:f1: 0a:f4:c7:92:68:db:ef:0f:da:53:f3:a7:ab:9c:e7: 19:67:1d:ca:f2:a1:26:22:fc:b2:28:06:4c:d6:57: 80:60:d9:e9:4a:a3:f1:be:2a:71:4d:d3:b2:33:2f: 9a:71:4b:26:c8:74:12:f5:fe:f8:ec:fe:42:2e:0e: 78:03:55:7b:4c:bb:0e:bc:25:b3:e1:f1:62:34:60: a3:e1:b3:b5:06:3c:b2:69:5b:82:b9:d7:4f:d8:da: b2:43:34:88:c2:c6:6a:53:30:6d:35:88:03:b0:ad: a0:1a:4b:7d:85:2f:a2:68:3d:8a:13:bf:1b:fc:97: d5:65:c6:6d:02:65:da:a9:ab:e0:1e:32:06:ef:b0: 02:e2:d8:6a:40:a5:64:86:52:36:65:31:ab:1a:d4: 62:9a:02:0b:15:ff:d2:06:1f:9f:0f:bd:70:4c:3e: 9f:2d:f6:c3:e7:55:9f:13:3c:86:5f:e9:d5:cc:23: e0:57:f5:06:dc:f7:ce:30:75:c9:0d:18:4e:5d:10: a9:76:b1:ce:93:e3:f2:0a:d9:38:29:9c:88:78:fb: 05:e8:fc:e0:48:f3:33:9d:9c:62:f2:14:ee:f4:d5: cb:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:97:CC:C3:C3:0D:BE:F8:6C:E1:79:44:9B:7F:47:E1:0C:A9:5E:5A X509v3 Authority Key Identifier: keyid:5E:73:ED:D9:6F:F2:7A:88:5F:61:35:6E:A7:7B:1F:54:35:C8:4F:CC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912759E/CB0EA7760CCB11ED9E722369C4F9AE02/XnPt2W_yeohfYTVup3sfVDXIT8w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XnPt2W_yeohfYTVup3sfVDXIT8w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912759E/CB0EA7760CCB11ED9E722369C4F9AE02/XnPt2W_yeohfYTVup3sfVDXIT8w.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3f:2b:00:f6:f2:0c:ce:ca:d5:80:2d:ec:1c:b1:c7:65:bd:80: 8f:11:df:79:72:c0:bd:c9:32:ae:a3:b3:b6:da:ea:d0:22:28: 40:28:cd:f7:34:88:57:22:fc:99:d9:d9:fe:a8:72:6d:14:d7: 82:13:1d:ad:a8:fd:7b:e5:c4:b7:b2:1e:9d:11:fd:07:85:1c: b3:57:30:5e:ab:59:f4:a3:4c:d2:c9:3d:2e:dd:cf:ad:a6:55: 13:81:c4:f6:b9:95:62:a7:ea:d2:eb:ff:28:20:dd:f8:45:31: 00:94:a2:4a:9b:fd:dc:31:68:9e:5b:09:a7:a3:c8:1f:13:a3: 09:07:64:80:3c:31:ee:70:02:13:19:65:00:d1:10:1e:21:61: 05:27:d6:31:72:88:0b:39:fb:02:93:83:b9:ff:ad:9f:1b:1f: e2:f7:a3:7c:47:ec:01:7f:57:2e:f4:06:64:eb:9f:42:8a:1b: fe:59:00:55:be:23:7a:1a:23:da:38:4b:6b:72:a8:60:99:ad: bb:90:ec:c7:ef:25:75:b7:31:59:9a:38:2e:52:3e:34:7e:2f: 98:fc:75:9b:95:5c:6d:9f:84:7c:b7:e6:0e:4e:46:b3:1f:a4: 42:d0:07:f8:48:65:88:9d:a6:24:89:9c:8f:49:91:37:e6:85: f8:ce:35:56 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAh8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mjc1OUUxMTAvBgNVBAUTKDVFNzNFREQ5NkZGMjdBODg1RjYxMzU2RUE3N0IxRjU0 MzVDODRGQ0MwHhcNMjQxMTIzMDEzMDQ3WhcNMjQxMTMwMDEzMDQ3WjAYMRYwFAYD VQQDEw02NzQxMzA0Ny0zMGNiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsSwqdLcgwGa0iIgUw4n9+m0AxO3ptCvwcUzgWvEK9MeSaNvvD9pT86ernOcZ Zx3K8qEmIvyyKAZM1leAYNnpSqPxvipxTdOyMy+acUsmyHQS9f747P5CLg54A1V7 TLsOvCWz4fFiNGCj4bO1BjyyaVuCuddP2NqyQzSIwsZqUzBtNYgDsK2gGkt9hS+i aD2KE78b/JfVZcZtAmXaqavgHjIG77AC4thqQKVkhlI2ZTGrGtRimgILFf/SBh+f D71wTD6fLfbD51WfEzyGX+nVzCPgV/UG3PfOMHXJDRhOXRCpdrHOk+PyCtk4KZyI ePsF6PzgSPMznZxi8hTu9NXLAQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHmXzMPD Db74bOF5RJt/R+EMqV5aMB8GA1UdIwQYMBaAFF5z7dlv8nqIX2E1bqd7H1Q1yE/M MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNzU5RS9DQjBFQTc3NjBD Q0IxMUVEOUU3MjIzNjlDNEY5QUUwMi9YblB0MldfeWVvaGZZVFZ1cDNzZlZEWElU OHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1huUHQyV195ZW9oZllUVnVwM3NmVkRYSVQ4dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NzU5RS9DQjBFQTc3NjBDQ0IxMUVEOUU3MjIzNjlDNEY5QUUwMi9YblB0MldfeWVv aGZZVFZ1cDNzZlZEWElUOHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA/KwD28gzOytWALewcscdlvYCPEd95csC9yTKuo7O22urQIihAKM33 NIhXIvyZ2dn+qHJtFNeCEx2tqP175cS3sh6dEf0HhRyzVzBeq1n0o0zSyT0u3c+t plUTgcT2uZVip+rS6/8oIN34RTEAlKJKm/3cMWieWwmno8gfE6MJB2SAPDHucAIT GWUA0RAeIWEFJ9YxcogLOfsCk4O5/62fGx/i96N8R+wBf1cu9AZk659Cihv+WQBV viN6GiPaOEtrcqhgma27kOzH7yV1tzFZmjguUj40fi+Y/HWblVxtn4R8t+YOTkaz H6RC0Af4SGWInaYkiZyPSZE35oX4zjVW -----END CERTIFICATE-----Generated at Sat Nov 23 02:33:32 2024 by rpki-client on console-fra.rpki-client.org