$ rpki-client -vvf rpki.apnic.net/member_repository/A9157B66/E5C4D326903811EBA4DC5A54C4F9AE02/xFWwhrq4ZHzSUQyoMkHnABTNikQ.mft File: xFWwhrq4ZHzSUQyoMkHnABTNikQ.mft (raw, json) Hash identifier: wC2tHLFmxC0z0S+IZIkHsooAHVKXBWx9+WaH7Q0cytQ= Subject key identifier: 32:29:30:26:06:FB:16:1D:80:63:76:19:CA:61:D1:0C:9B:52:70:E9 Authority key identifier: C4:55:B0:86:BA:B8:64:7C:D2:51:0C:A8:32:41:E7:00:14:CD:8A:44 Certificate issuer: /CN=A9157B66/serialNumber=C455B086BAB8647CD2510CA83241E70014CD8A44 Certificate serial: 05E0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xFWwhrq4ZHzSUQyoMkHnABTNikQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9157B66/E5C4D326903811EBA4DC5A54C4F9AE02/xFWwhrq4ZHzSUQyoMkHnABTNikQ.mft Manifest number: 05DC Signing time: Fri 22 Nov 2024 22:27:42 +0000 Manifest this update: Fri 22 Nov 2024 22:27:42 +0000 Manifest next update: Fri 29 Nov 2024 22:27:42 +0000 Files and hashes: 1: xFWwhrq4ZHzSUQyoMkHnABTNikQ.crl (hash: 2sjk199RcKmWX6rGx6a0aGpitWYdyPAaNMXSozvjm3o=) 2: 807CB298903A11EBA9783756C4F9AE02.roa (hash: VRlOw4U0zK5u1Vp0LZloOBpL4DGdSHt/Hph/KRzLuAc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9157B66/E5C4D326903811EBA4DC5A54C4F9AE02/xFWwhrq4ZHzSUQyoMkHnABTNikQ.crl rsync://rpki.apnic.net/member_repository/A9157B66/E5C4D326903811EBA4DC5A54C4F9AE02/xFWwhrq4ZHzSUQyoMkHnABTNikQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xFWwhrq4ZHzSUQyoMkHnABTNikQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1504 (0x5e0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9157B66/serialNumber=C455B086BAB8647CD2510CA83241E70014CD8A44 Validity Not Before: Nov 22 22:27:42 2024 GMT Not After : Nov 29 22:27:42 2024 GMT Subject: CN=6741055e-a651 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:ca:a5:77:ce:59:2b:05:6c:57:1b:04:83:12: 56:7a:37:e6:59:54:c9:fa:dc:f3:9a:71:79:38:c0: ea:61:11:6a:62:ab:fd:bc:49:45:2c:59:7c:ea:e3: 9f:f9:88:e6:49:49:c9:6d:76:1f:18:59:39:f6:14: cc:19:e8:9b:d5:6f:46:ba:fc:a2:9a:aa:51:94:e7: fc:45:8b:a1:42:13:a2:3a:28:bc:77:74:70:e4:ce: c5:b6:a4:09:0d:aa:59:07:e1:d7:36:ae:99:d6:c3: dd:c3:c3:62:6f:bd:82:d8:7c:b9:1c:24:0b:43:1c: 8f:63:24:19:ec:cd:e7:41:22:9b:b4:22:fe:60:98: 1f:0c:39:a0:cf:02:f8:89:72:a6:00:ef:0b:4c:40: 5a:de:fd:c7:7e:d2:76:37:96:00:2b:ba:c8:6e:dc: a3:e5:4a:63:d5:8a:e4:28:9b:ba:45:10:46:ce:b9: f3:03:36:a7:b9:af:61:17:d7:fa:f5:62:22:33:02: 03:de:b2:ce:df:1f:bd:dc:11:1c:04:74:49:ee:82: ef:f9:03:9c:12:75:12:8f:f9:15:7f:7f:60:21:44: 2b:59:3b:da:0d:bd:d2:e4:46:d0:8b:af:3c:d1:d1: 4c:59:7e:fa:bd:85:c9:6e:2d:2d:60:b9:bd:eb:66: 54:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:29:30:26:06:FB:16:1D:80:63:76:19:CA:61:D1:0C:9B:52:70:E9 X509v3 Authority Key Identifier: keyid:C4:55:B0:86:BA:B8:64:7C:D2:51:0C:A8:32:41:E7:00:14:CD:8A:44 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9157B66/E5C4D326903811EBA4DC5A54C4F9AE02/xFWwhrq4ZHzSUQyoMkHnABTNikQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xFWwhrq4ZHzSUQyoMkHnABTNikQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9157B66/E5C4D326903811EBA4DC5A54C4F9AE02/xFWwhrq4ZHzSUQyoMkHnABTNikQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ab:65:be:f7:52:ee:26:95:c1:3e:97:cc:b3:bc:f5:ba:64:4b: a7:5d:12:5e:ca:c0:f8:ba:32:b6:f1:4f:8c:43:9b:d8:08:ad: 94:ea:1a:9f:c6:09:22:7e:47:91:58:d4:25:86:9f:2e:e9:8a: a6:64:5f:d1:a4:49:53:9b:3a:98:11:63:22:4b:f7:cf:b7:f3: 17:3d:69:8a:35:be:ec:24:7d:6e:bb:44:68:71:67:a0:77:5c: f1:7c:08:a3:1a:a7:21:c4:9d:01:08:7e:4c:74:e5:9b:c2:cf: c0:67:23:b3:e5:09:d7:2d:ff:a7:72:b8:43:13:06:00:78:f4: a1:b0:d7:2e:1d:46:b6:87:93:4b:23:77:fb:06:c8:f6:2f:9a: 2b:28:8e:7f:4b:0d:66:6c:46:ac:2f:2f:78:12:4f:09:e2:2d: 49:03:60:b4:1b:6f:7c:52:45:19:82:45:32:fc:ec:07:c2:58: a9:9f:1a:be:9c:9a:23:02:b8:9a:09:9e:12:84:bd:c8:fe:b6: 1a:bd:93:1f:be:da:30:0e:cd:16:79:b3:c0:17:3a:f8:21:63: 7f:0f:03:e7:62:43:ab:82:1c:dd:31:1a:77:a6:23:46:78:b8: d4:25:68:5a:fb:3f:7e:5e:ed:82:0d:ba:91:49:b5:44:d4:9f: 6a:b5:8c:40 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBeAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTdCNjYxMTAvBgNVBAUTKEM0NTVCMDg2QkFCODY0N0NEMjUxMENBODMyNDFFNzAw MTRDRDhBNDQwHhcNMjQxMTIyMjIyNzQyWhcNMjQxMTI5MjIyNzQyWjAYMRYwFAYD VQQDEw02NzQxMDU1ZS1hNjUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4cqld85ZKwVsVxsEgxJWejfmWVTJ+tzzmnF5OMDqYRFqYqv9vElFLFl86uOf +YjmSUnJbXYfGFk59hTMGeib1W9GuvyimqpRlOf8RYuhQhOiOii8d3Rw5M7FtqQJ DapZB+HXNq6Z1sPdw8Nib72C2Hy5HCQLQxyPYyQZ7M3nQSKbtCL+YJgfDDmgzwL4 iXKmAO8LTEBa3v3HftJ2N5YAK7rIbtyj5Upj1YrkKJu6RRBGzrnzAzanua9hF9f6 9WIiMwID3rLO3x+93BEcBHRJ7oLv+QOcEnUSj/kVf39gIUQrWTvaDb3S5EbQi688 0dFMWX76vYXJbi0tYLm962ZUAwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDIpMCYG +xYdgGN2Gcph0QybUnDpMB8GA1UdIwQYMBaAFMRVsIa6uGR80lEMqDJB5wAUzYpE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1N0I2Ni9FNUM0RDMyNjkw MzgxMUVCQTREQzVBNTRDNEY5QUUwMi94Rld3aHJxNFpIelNVUXlvTWtIbkFCVE5p a1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hGV3docnE0Wkh6U1VReW9Na0huQUJUTmlrUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 N0I2Ni9FNUM0RDMyNjkwMzgxMUVCQTREQzVBNTRDNEY5QUUwMi94Rld3aHJxNFpI elNVUXlvTWtIbkFCVE5pa1EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCrZb73Uu4mlcE+l8yzvPW6ZEunXRJeysD4ujK28U+MQ5vYCK2U6hqf xgkifkeRWNQlhp8u6YqmZF/RpElTmzqYEWMiS/fPt/MXPWmKNb7sJH1uu0RocWeg d1zxfAijGqchxJ0BCH5MdOWbws/AZyOz5QnXLf+ncrhDEwYAePShsNcuHUa2h5NL I3f7Bsj2L5orKI5/Sw1mbEasLy94Ek8J4i1JA2C0G298UkUZgkUy/OwHwlipnxq+ nJojAriaCZ4ShL3I/rYavZMfvtowDs0WebPAFzr4IWN/DwPnYkOrghzdMRp3piNG eLjUJWha+z9+Xu2CDbqRSbVE1J9qtYxA -----END CERTIFICATE-----Generated at Sat Nov 23 00:08:40 2024 by rpki-client on console-ams.rpki-client.org