$ rpki-client -vvf rpki.apnic.net/member_repository/A913900D/FCDCD3A0AC9D11E892CDAD0DC4F9AE02/xgN4bVWpBBJOdZLu0ome9XiSEQA.mft File: xgN4bVWpBBJOdZLu0ome9XiSEQA.mft (raw, json) Hash identifier: Mxj160Um9+Y16ijkKdNliSGLURgzwomBugb+BTdnn1Q= Subject key identifier: 8E:6C:B3:BB:7F:14:0F:1D:DD:37:72:4D:BA:54:8B:74:10:CF:45:3E Authority key identifier: C6:03:78:6D:55:A9:04:12:4E:75:92:EE:D2:89:9E:F5:78:92:11:00 Certificate issuer: /CN=A913900D/serialNumber=C603786D55A904124E7592EED2899EF578921100 Certificate serial: 7D0F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xgN4bVWpBBJOdZLu0ome9XiSEQA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913900D/FCDCD3A0AC9D11E892CDAD0DC4F9AE02/xgN4bVWpBBJOdZLu0ome9XiSEQA.mft Manifest number: 47CC Signing time: Wed 20 Nov 2024 17:01:45 +0000 Manifest this update: Wed 20 Nov 2024 17:01:44 +0000 Manifest next update: Wed 27 Nov 2024 17:01:44 +0000 Files and hashes: 1: xgN4bVWpBBJOdZLu0ome9XiSEQA.crl (hash: wStqsZqoOqIaeNpAEYWmqkf8h7N5h0/BQ8n8s2vHswc=) 2: C6EB4BB695C411EFB4437E46C4F9AE02.roa (hash: DKjdHPHX9uK/7sXdnl0CnoAUxvUfxg2iDv7piZLbE+g=) 3: 51DB195AACA011E8BA30FF16C4F9AE02.roa (hash: bo2MU7FnWVB61bLgSeX3nMyKR524oPoEbjubyqJ1GeY=) 4: 596D48ACC17311EAB16B1912C4F9AE02.roa (hash: vN9wyIhoEAvL0Ppx9rHt6RaOh++3jtvNmxs0UWEaa1k=) 5: 5D73B28421F911EFAF8DD824C4F9AE02.roa (hash: i2YNi83/orqDBNfNUa80ExexK4FtLNMUjcoWzzX1+Rc=) 6: A160BBAEC17711EABFFC9E1FC4F9AE02.roa (hash: CbTGgfEWFtslvO2wALZJ+DSTt60SxWMiq0xTARE85r4=) 7: 0F7F7F6A072311ED8067812FC4F9AE02.roa (hash: IaM5JoKkMFAzjZpn+sEYIwIyVW6+qhIz6t87EVXHjEI=) 8: 5079D4A2ACA011E8BA30FF16C4F9AE02.roa (hash: aTECUl8KOBHDuvj6RQo/fOOhivuGrPAhZR0mAtm2uuY=) 9: A2696B18D16C11EA8886BE5DC4F9AE02.roa (hash: fq/qWIdl/zMbQPXZZ52zcLgyQibFEjxrMjtOCJGOy18=) 10: 1ACCB31CCA2011EEAAE0BC1DC4F9AE02.roa (hash: zvj9UK8T+8CC31S1QfeLyCh52ggJamqXxF9Th/UxIhc=) 11: 0526730C2C4811EEAC2E4D46C4F9AE02.roa (hash: colPM8HZ1vvIi6XidfSQJiOmkoAqKV69tfTn2aphAGs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913900D/FCDCD3A0AC9D11E892CDAD0DC4F9AE02/xgN4bVWpBBJOdZLu0ome9XiSEQA.crl rsync://rpki.apnic.net/member_repository/A913900D/FCDCD3A0AC9D11E892CDAD0DC4F9AE02/xgN4bVWpBBJOdZLu0ome9XiSEQA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xgN4bVWpBBJOdZLu0ome9XiSEQA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 17:01:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 32015 (0x7d0f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913900D/serialNumber=C603786D55A904124E7592EED2899EF578921100 Validity Not Before: Nov 20 17:01:44 2024 GMT Not After : Nov 27 17:01:44 2024 GMT Subject: CN=673e15f8-4f96 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:20:45:3f:b6:eb:41:77:ef:6f:6e:9a:44:a9: c0:5e:96:51:9b:79:d3:c8:58:8e:cc:b2:90:3d:c2: 38:88:28:9b:46:be:f5:70:57:35:4e:cb:e7:01:ad: 3d:2a:05:2c:d2:20:e6:f7:6d:5e:35:30:cb:ba:12: f3:90:b8:13:cb:4e:71:e8:2e:3c:ca:72:c6:90:86: 2b:b9:fa:6b:07:7c:98:c4:f3:c3:d6:32:22:d4:d9: 76:42:8e:67:f7:42:6f:65:f9:0c:b9:31:c1:7f:28: 3f:bf:93:cf:a5:ab:ee:c5:32:73:7b:50:3d:e5:f6: 78:dc:21:05:c4:48:6b:af:91:8f:a4:25:37:48:6b: ef:65:4d:e6:84:a4:30:f9:02:40:fa:e4:5d:97:cf: a0:43:22:02:9b:b9:7e:72:df:7b:ac:b8:26:f8:3c: fe:ea:68:cd:5f:a2:e9:0e:d5:a1:46:7d:ba:17:1a: c6:6a:07:16:fd:4b:33:2e:8f:ac:2c:f4:ec:2c:87: 41:49:9e:5a:2f:24:58:1e:f8:bc:30:28:8d:44:70: b4:a1:ab:1d:07:be:21:1b:12:55:63:7b:db:c2:59: 5b:9a:61:a5:af:55:bb:07:f3:c4:a8:89:ff:35:52: b9:83:4c:78:c6:85:60:41:62:27:09:b8:c2:22:4c: a0:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:6C:B3:BB:7F:14:0F:1D:DD:37:72:4D:BA:54:8B:74:10:CF:45:3E X509v3 Authority Key Identifier: keyid:C6:03:78:6D:55:A9:04:12:4E:75:92:EE:D2:89:9E:F5:78:92:11:00 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913900D/FCDCD3A0AC9D11E892CDAD0DC4F9AE02/xgN4bVWpBBJOdZLu0ome9XiSEQA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xgN4bVWpBBJOdZLu0ome9XiSEQA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913900D/FCDCD3A0AC9D11E892CDAD0DC4F9AE02/xgN4bVWpBBJOdZLu0ome9XiSEQA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1b:6a:59:f8:f8:9f:93:01:b3:dd:49:91:43:29:0f:6e:92:53: a0:7d:f9:95:82:71:bb:29:ca:e6:88:f3:c4:ac:5b:60:ff:f6: 9a:f5:d5:0c:03:93:1d:44:eb:66:5f:a6:a3:8c:03:8f:cd:aa: 56:ae:88:f2:5e:b8:ce:ff:c4:de:f9:bf:9d:f6:cc:d6:a2:23: 63:13:a2:02:ee:34:81:cb:e4:a9:2a:e2:ef:91:8b:92:52:61: 9c:ff:15:69:19:89:21:2f:aa:16:bb:b3:25:60:10:a7:a4:92: 79:80:5d:8c:7b:cc:7a:cd:d0:85:31:24:85:7b:d9:87:3f:8f: e6:72:3f:17:ed:fc:24:08:72:15:d4:ea:9c:30:aa:4d:72:1c: 16:5c:7c:df:38:af:aa:cc:77:78:27:1b:fb:98:5f:a2:b0:3c: 20:fc:68:98:ee:1f:32:05:be:65:76:06:47:bf:7e:7f:60:96: fa:03:e3:3b:18:02:69:04:7d:9b:f4:4f:ef:70:b4:76:ac:1f: e7:b0:50:70:75:f4:9c:3f:b6:a3:4b:92:53:65:6d:be:52:b3: 7e:c0:73:ab:b3:56:30:86:26:4b:5f:3b:0b:e5:d1:52:a4:48: af:c2:de:48:fa:08:22:2d:78:12:6f:9f:f8:20:a3:2b:26:7e: bf:0c:cf:e0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICfQ8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzkwMEQxMTAvBgNVBAUTKEM2MDM3ODZENTVBOTA0MTI0RTc1OTJFRUQyODk5RUY1 Nzg5MjExMDAwHhcNMjQxMTIwMTcwMTQ0WhcNMjQxMTI3MTcwMTQ0WjAYMRYwFAYD VQQDEw02NzNlMTVmOC00Zjk2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuiBFP7brQXfvb26aRKnAXpZRm3nTyFiOzLKQPcI4iCibRr71cFc1TsvnAa09 KgUs0iDm921eNTDLuhLzkLgTy05x6C48ynLGkIYrufprB3yYxPPD1jIi1Nl2Qo5n 90JvZfkMuTHBfyg/v5PPpavuxTJze1A95fZ43CEFxEhrr5GPpCU3SGvvZU3mhKQw +QJA+uRdl8+gQyICm7l+ct97rLgm+Dz+6mjNX6LpDtWhRn26FxrGagcW/UszLo+s LPTsLIdBSZ5aLyRYHvi8MCiNRHC0oasdB74hGxJVY3vbwllbmmGlr1W7B/PEqIn/ NVK5g0x4xoVgQWInCbjCIkygiwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFI5ss7t/ FA8d3TdyTbpUi3QQz0U+MB8GA1UdIwQYMBaAFMYDeG1VqQQSTnWS7tKJnvV4khEA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzOTAwRC9GQ0RDRDNBMEFD OUQxMUU4OTJDREFEMERDNEY5QUUwMi94Z040YlZXcEJCSk9kWkx1MG9tZTlYaVNF UUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hnTjRiVldwQkJKT2RaTHUwb21lOVhpU0VRQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz OTAwRC9GQ0RDRDNBMEFDOUQxMUU4OTJDREFEMERDNEY5QUUwMi94Z040YlZXcEJC Sk9kWkx1MG9tZTlYaVNFUUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAbaln4+J+TAbPdSZFDKQ9uklOgffmVgnG7KcrmiPPErFtg//aa9dUM A5MdROtmX6ajjAOPzapWrojyXrjO/8Te+b+d9szWoiNjE6IC7jSBy+SpKuLvkYuS UmGc/xVpGYkhL6oWu7MlYBCnpJJ5gF2Me8x6zdCFMSSFe9mHP4/mcj8X7fwkCHIV 1OqcMKpNchwWXHzfOK+qzHd4Jxv7mF+isDwg/GiY7h8yBb5ldgZHv35/YJb6A+M7 GAJpBH2b9E/vcLR2rB/nsFBwdfScP7ajS5JTZW2+UrN+wHOrs1YwhiZLXzsL5dFS pEivwt5I+ggiLXgSb5/4IKMrJn6/DM/g -----END CERTIFICATE-----Generated at Wed Nov 20 18:44:50 2024 by rpki-client on console-fra.rpki-client.org