$ rpki-client -vvf rpki.apnic.net/member_repository/A918767B/F87FAD926AC611EC9EF5F262C4F9AE02/xTQjKI-f_BAEhCvMQKUZI4k0qnc.mft File: xTQjKI-f_BAEhCvMQKUZI4k0qnc.mft (raw, json) Hash identifier: aDE3cmg6tALte2euKlnNd+28mR7UqoCE72wUd8AwGdc= Subject key identifier: E8:10:14:5B:93:6E:AF:8B:AE:0E:C6:C4:58:2A:34:1A:E9:B3:0B:09 Authority key identifier: C5:34:23:28:8F:9F:FC:10:04:84:2B:CC:40:A5:19:23:89:34:AA:77 Certificate issuer: /CN=A918767B/serialNumber=C53423288F9FFC1004842BCC40A519238934AA77 Certificate serial: 03B1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xTQjKI-f_BAEhCvMQKUZI4k0qnc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918767B/F87FAD926AC611EC9EF5F262C4F9AE02/xTQjKI-f_BAEhCvMQKUZI4k0qnc.mft Manifest number: 03B1 Signing time: Sat 23 Nov 2024 00:16:14 +0000 Manifest this update: Sat 23 Nov 2024 00:16:14 +0000 Manifest next update: Sat 30 Nov 2024 00:16:14 +0000 Files and hashes: 1: xTQjKI-f_BAEhCvMQKUZI4k0qnc.crl (hash: ggPcoidFBOsD0KyT6sKCWLldVDGFZ/wBLSzX4/xagwk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918767B/F87FAD926AC611EC9EF5F262C4F9AE02/xTQjKI-f_BAEhCvMQKUZI4k0qnc.crl rsync://rpki.apnic.net/member_repository/A918767B/F87FAD926AC611EC9EF5F262C4F9AE02/xTQjKI-f_BAEhCvMQKUZI4k0qnc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xTQjKI-f_BAEhCvMQKUZI4k0qnc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 945 (0x3b1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918767B/serialNumber=C53423288F9FFC1004842BCC40A519238934AA77 Validity Not Before: Nov 23 00:16:14 2024 GMT Not After : Nov 30 00:16:14 2024 GMT Subject: CN=67411ece-ccef Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:36:8a:06:6b:a3:06:2f:d0:f8:37:97:23:8c: de:03:24:87:52:ea:a7:80:cc:4a:c3:b7:3b:75:31: d2:c1:14:ec:80:d0:e7:fd:5d:5e:19:7c:0b:81:d2: 5d:42:bd:71:d8:63:b7:84:39:89:a9:3f:b8:fe:8a: ae:5a:69:c9:39:7c:3e:39:f7:24:d0:08:03:a0:71: 71:69:42:82:e5:02:62:02:c0:7b:88:c6:19:9a:de: 43:a4:56:3b:2a:ca:79:8b:f9:d8:8d:54:13:3d:1a: 95:2b:35:a1:71:36:d9:cb:10:ee:5a:d4:5b:17:5c: 40:95:fc:97:2d:f0:b0:33:21:11:a6:d7:d7:57:38: de:21:ef:40:f3:ab:a5:b3:a2:e9:0b:cb:ea:0c:23: 5b:6f:b9:c6:53:96:da:db:48:8c:e1:2a:92:b2:69: 3e:ac:34:04:88:41:16:a2:cc:dc:33:c3:b0:f9:5f: a8:3d:e2:66:19:12:65:43:c5:a4:83:d0:13:17:ae: 51:ae:85:51:f5:48:6d:e9:f2:49:f0:2f:4f:c5:d5: 53:4a:c1:83:16:e6:79:b8:63:1f:e7:22:d1:e3:0f: 3a:96:ea:e3:42:21:85:66:ce:65:77:1b:55:04:9e: 2c:1c:3c:58:89:6f:e2:2a:e0:61:df:fb:82:75:9b: 7c:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:10:14:5B:93:6E:AF:8B:AE:0E:C6:C4:58:2A:34:1A:E9:B3:0B:09 X509v3 Authority Key Identifier: keyid:C5:34:23:28:8F:9F:FC:10:04:84:2B:CC:40:A5:19:23:89:34:AA:77 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918767B/F87FAD926AC611EC9EF5F262C4F9AE02/xTQjKI-f_BAEhCvMQKUZI4k0qnc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xTQjKI-f_BAEhCvMQKUZI4k0qnc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918767B/F87FAD926AC611EC9EF5F262C4F9AE02/xTQjKI-f_BAEhCvMQKUZI4k0qnc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 43:1d:1a:cd:5d:d5:e7:ca:89:76:68:72:0f:5c:b0:6f:c9:12: a3:c2:b4:e9:b8:2e:5f:63:ab:2d:01:a2:2d:49:55:eb:2e:a1: e0:0f:5d:eb:1d:77:42:04:de:5e:99:ea:e4:0e:18:6d:c6:6c: 29:c9:67:94:60:51:4e:df:06:81:df:a1:55:ad:84:86:c4:3e: d3:91:10:b2:8e:74:13:f0:77:19:52:5a:d0:3b:15:b1:57:4a: 26:e2:6e:af:fb:c0:59:f1:62:9a:9c:ef:4e:fe:68:29:2d:a3: ff:3c:19:78:89:62:d1:7f:40:44:92:04:77:b8:07:78:a1:f6: 7f:8a:05:58:3a:9d:6b:e8:1a:b5:81:11:3f:30:62:86:d7:ac: 7b:24:55:65:a0:5b:36:3a:dc:4e:4d:e6:aa:fc:04:d9:90:d1: 95:bf:6b:c6:1f:f3:c1:d7:c6:03:d8:c2:f0:25:15:29:b6:70: 74:e5:e8:df:bc:5a:50:ec:2b:c7:35:b1:26:c6:bf:88:5f:bf: c8:55:32:d9:eb:6b:36:ae:ca:ad:05:10:39:e9:29:df:2b:b8: ec:ab:80:9b:92:c3:7d:31:0a:a7:f1:7c:87:71:57:86:77:a9: f2:cc:1b:ff:47:4f:3a:c4:04:a8:01:29:94:8e:f7:4c:ee:8d: 71:3c:9d:1c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA7EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODc2N0IxMTAvBgNVBAUTKEM1MzQyMzI4OEY5RkZDMTAwNDg0MkJDQzQwQTUxOTIz ODkzNEFBNzcwHhcNMjQxMTIzMDAxNjE0WhcNMjQxMTMwMDAxNjE0WjAYMRYwFAYD VQQDEw02NzQxMWVjZS1jY2VmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsjaKBmujBi/Q+DeXI4zeAySHUuqngMxKw7c7dTHSwRTsgNDn/V1eGXwLgdJd Qr1x2GO3hDmJqT+4/oquWmnJOXw+Ofck0AgDoHFxaUKC5QJiAsB7iMYZmt5DpFY7 Ksp5i/nYjVQTPRqVKzWhcTbZyxDuWtRbF1xAlfyXLfCwMyERptfXVzjeIe9A86ul s6LpC8vqDCNbb7nGU5ba20iM4SqSsmk+rDQEiEEWoszcM8Ow+V+oPeJmGRJlQ8Wk g9ATF65RroVR9Uht6fJJ8C9PxdVTSsGDFuZ5uGMf5yLR4w86lurjQiGFZs5ldxtV BJ4sHDxYiW/iKuBh3/uCdZt8AwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOgQFFuT bq+Lrg7GxFgqNBrpswsJMB8GA1UdIwQYMBaAFMU0IyiPn/wQBIQrzEClGSOJNKp3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NzY3Qi9GODdGQUQ5MjZB QzYxMUVDOUVGNUYyNjJDNEY5QUUwMi94VFFqS0ktZl9CQUVoQ3ZNUUtVWkk0azBx bmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hUUWpLSS1mX0JBRWhDdk1RS1VaSTRrMHFuYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NzY3Qi9GODdGQUQ5MjZBQzYxMUVDOUVGNUYyNjJDNEY5QUUwMi94VFFqS0ktZl9C QUVoQ3ZNUUtVWkk0azBxbmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBDHRrNXdXnyol2aHIPXLBvyRKjwrTpuC5fY6stAaItSVXrLqHgD13r HXdCBN5emerkDhhtxmwpyWeUYFFO3waB36FVrYSGxD7TkRCyjnQT8HcZUlrQOxWx V0om4m6v+8BZ8WKanO9O/mgpLaP/PBl4iWLRf0BEkgR3uAd4ofZ/igVYOp1r6Bq1 gRE/MGKG16x7JFVloFs2OtxOTeaq/ATZkNGVv2vGH/PB18YD2MLwJRUptnB05ejf vFpQ7CvHNbEmxr+IX7/IVTLZ62s2rsqtBRA56SnfK7jsq4CbksN9MQqn8XyHcVeG d6nyzBv/R086xASoASmUjvdM7o1xPJ0c -----END CERTIFICATE-----Generated at Sat Nov 23 02:33:40 2024 by rpki-client on console-fra.rpki-client.org