$ rpki-client -vvf rpki.apnic.net/member_repository/A9153F9E/00D8C88C53AF11EB99300916C4F9AE02/XCxYJ8TombwqUDQGxcsJsY4TP8Y.mft File: XCxYJ8TombwqUDQGxcsJsY4TP8Y.mft (raw, json) Hash identifier: gbvD2gwDhsfaQunzu4UlEB33KMBeR5atY7EL4svjL3g= Subject key identifier: 19:20:3B:30:EC:FA:C6:DF:BE:B0:DC:21:1A:2B:73:AE:E3:B0:78:FA Authority key identifier: 5C:2C:58:27:C4:E8:99:BC:2A:50:34:06:C5:CB:09:B1:8E:13:3F:C6 Certificate issuer: /CN=A9153F9E/serialNumber=5C2C5827C4E899BC2A503406C5CB09B18E133FC6 Certificate serial: 0671 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XCxYJ8TombwqUDQGxcsJsY4TP8Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9153F9E/00D8C88C53AF11EB99300916C4F9AE02/XCxYJ8TombwqUDQGxcsJsY4TP8Y.mft Manifest number: 0671 Signing time: Fri 22 Nov 2024 21:51:35 +0000 Manifest this update: Fri 22 Nov 2024 21:51:34 +0000 Manifest next update: Fri 29 Nov 2024 21:51:34 +0000 Files and hashes: 1: XCxYJ8TombwqUDQGxcsJsY4TP8Y.crl (hash: 9vdA53rlAHPqgNiERCfKSdOnEYa8qQiuMKHyVQN0Tjs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9153F9E/00D8C88C53AF11EB99300916C4F9AE02/XCxYJ8TombwqUDQGxcsJsY4TP8Y.crl rsync://rpki.apnic.net/member_repository/A9153F9E/00D8C88C53AF11EB99300916C4F9AE02/XCxYJ8TombwqUDQGxcsJsY4TP8Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XCxYJ8TombwqUDQGxcsJsY4TP8Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1649 (0x671) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9153F9E/serialNumber=5C2C5827C4E899BC2A503406C5CB09B18E133FC6 Validity Not Before: Nov 22 21:51:34 2024 GMT Not After : Nov 29 21:51:34 2024 GMT Subject: CN=6740fce7-c431 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:b6:14:9a:d3:59:2b:be:c9:62:b1:20:31:6b: 96:ca:55:63:fd:f2:81:89:0c:23:b5:c4:08:68:b3: 2f:fc:ad:b3:b0:87:e3:65:5b:2c:20:b0:45:ba:b6: c9:60:01:21:0f:fb:5a:87:6c:a8:af:f0:12:51:66: b8:97:6e:75:2b:15:8a:4e:d1:ee:86:53:8c:f7:18: 46:61:af:7d:09:a7:f8:85:2b:92:fc:70:cb:14:64: cf:69:cf:d5:d8:15:a8:62:55:07:b8:f1:70:83:fb: e1:e0:3e:ba:b9:48:95:af:6b:28:85:ae:35:43:c0: 8a:b5:e5:d7:d9:5e:ac:e0:af:12:d0:63:4e:97:8e: 53:bc:d7:7a:4f:f2:d3:34:aa:da:90:9c:cb:70:d6: 5b:e5:8d:a5:60:db:4b:1e:ca:9a:a7:4a:06:fe:6f: 58:17:cc:73:1c:cd:de:3a:b7:1b:1e:b9:25:8c:56: e1:6e:27:c7:4a:ac:48:71:69:3f:7d:5c:ab:cf:ed: cd:c0:63:d4:8b:55:b4:8c:f8:26:88:60:d1:ab:53: 50:38:58:06:74:c5:f7:4f:0f:26:f0:aa:7a:05:2a: 1e:50:88:c4:b6:99:98:d0:3e:27:94:4c:7b:48:8d: 5a:f7:68:5d:16:21:40:5e:0b:87:6e:7e:81:1f:34: d7:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:20:3B:30:EC:FA:C6:DF:BE:B0:DC:21:1A:2B:73:AE:E3:B0:78:FA X509v3 Authority Key Identifier: keyid:5C:2C:58:27:C4:E8:99:BC:2A:50:34:06:C5:CB:09:B1:8E:13:3F:C6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9153F9E/00D8C88C53AF11EB99300916C4F9AE02/XCxYJ8TombwqUDQGxcsJsY4TP8Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XCxYJ8TombwqUDQGxcsJsY4TP8Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9153F9E/00D8C88C53AF11EB99300916C4F9AE02/XCxYJ8TombwqUDQGxcsJsY4TP8Y.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 12:4d:da:6b:e5:1f:88:b2:49:93:ab:d6:78:96:9d:98:db:8e: 32:f7:66:16:77:8a:30:61:ce:9c:e9:03:d2:55:5c:c6:22:a8: 67:b5:73:42:92:96:5b:f1:43:0b:6b:70:79:82:d6:6d:26:51: fc:9b:2b:b0:e3:5f:24:88:c3:7b:c9:fd:af:82:7e:ef:cd:e4: 23:d9:4d:3b:bd:3b:71:ba:19:d4:7e:d6:0c:97:9a:cb:ce:36: 5b:a9:42:a1:65:98:a3:1c:d9:79:78:94:68:ad:25:36:9b:61: 5e:bd:99:b0:fa:85:28:dc:bc:f4:ac:34:84:38:d9:19:b4:8c: d5:0b:ac:c6:7f:56:e5:1d:5f:16:ec:fc:17:05:95:6d:6b:e6: 23:8f:5e:49:31:79:f3:1d:68:71:60:67:4a:20:6c:72:10:30: 7e:fa:7b:15:2e:70:8a:20:ac:c8:42:b1:89:8d:5c:e1:e6:ae: f3:3b:1d:88:b6:cd:5d:4c:bd:ef:84:f7:e6:e0:67:cf:ff:46: 40:48:a5:1d:e8:e0:7e:c4:25:23:e0:bf:d1:86:b7:b4:f2:52: 20:95:b7:8d:92:4d:87:2c:58:34:8f:d8:93:c6:9a:6d:e4:3e: 5e:33:a2:87:04:13:a7:0b:97:73:e4:9e:b4:df:80:97:ab:d7: fe:58:69:a4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBnEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTNGOUUxMTAvBgNVBAUTKDVDMkM1ODI3QzRFODk5QkMyQTUwMzQwNkM1Q0IwOUIx OEUxMzNGQzYwHhcNMjQxMTIyMjE1MTM0WhcNMjQxMTI5MjE1MTM0WjAYMRYwFAYD VQQDEw02NzQwZmNlNy1jNDMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw7YUmtNZK77JYrEgMWuWylVj/fKBiQwjtcQIaLMv/K2zsIfjZVssILBFurbJ YAEhD/tah2yor/ASUWa4l251KxWKTtHuhlOM9xhGYa99Caf4hSuS/HDLFGTPac/V 2BWoYlUHuPFwg/vh4D66uUiVr2soha41Q8CKteXX2V6s4K8S0GNOl45TvNd6T/LT NKrakJzLcNZb5Y2lYNtLHsqap0oG/m9YF8xzHM3eOrcbHrkljFbhbifHSqxIcWk/ fVyrz+3NwGPUi1W0jPgmiGDRq1NQOFgGdMX3Tw8m8Kp6BSoeUIjEtpmY0D4nlEx7 SI1a92hdFiFAXguHbn6BHzTXzQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBkgOzDs +sbfvrDcIRorc67jsHj6MB8GA1UdIwQYMBaAFFwsWCfE6Jm8KlA0BsXLCbGOEz/G MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1M0Y5RS8wMEQ4Qzg4QzUz QUYxMUVCOTkzMDA5MTZDNEY5QUUwMi9YQ3hZSjhUb21id3FVRFFHeGNzSnNZNFRQ OFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hDeFlKOFRvbWJ3cVVEUUd4Y3NKc1k0VFA4WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 M0Y5RS8wMEQ4Qzg4QzUzQUYxMUVCOTkzMDA5MTZDNEY5QUUwMi9YQ3hZSjhUb21i d3FVRFFHeGNzSnNZNFRQOFkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQASTdpr5R+IskmTq9Z4lp2Y244y92YWd4owYc6c6QPSVVzGIqhntXNC kpZb8UMLa3B5gtZtJlH8myuw418kiMN7yf2vgn7vzeQj2U07vTtxuhnUftYMl5rL zjZbqUKhZZijHNl5eJRorSU2m2FevZmw+oUo3Lz0rDSEONkZtIzVC6zGf1blHV8W 7PwXBZVta+Yjj15JMXnzHWhxYGdKIGxyEDB++nsVLnCKIKzIQrGJjVzh5q7zOx2I ts1dTL3vhPfm4GfP/0ZASKUd6OB+xCUj4L/Rhre08lIglbeNkk2HLFg0j9iTxppt 5D5eM6KHBBOnC5dz5J6034CXq9f+WGmk -----END CERTIFICATE-----Generated at Sat Nov 23 00:08:39 2024 by rpki-client on console-ams.rpki-client.org