$ rpki-client -vvf rpki.apnic.net/member_repository/A9196296/42A0B71AAF5B11EEB60D0527C4F9AE02/X9vV31MtLFYgb3sRLnu7MFejmZA.mft File: X9vV31MtLFYgb3sRLnu7MFejmZA.mft (raw, json) Hash identifier: +1MHMhE8zQlTQ7KsK+p670lxOkwbdlvkx2NhMuxCvmI= Subject key identifier: D2:82:B6:DF:9A:D7:6C:D3:AF:0F:6E:77:3F:A0:64:93:D0:AD:5C:C7 Authority key identifier: 5F:DB:D5:DF:53:2D:2C:56:20:6F:7B:11:2E:7B:BB:30:57:A3:99:90 Certificate issuer: /CN=A9196296/serialNumber=5FDBD5DF532D2C56206F7B112E7BBB3057A39990 Certificate serial: A7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X9vV31MtLFYgb3sRLnu7MFejmZA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9196296/42A0B71AAF5B11EEB60D0527C4F9AE02/X9vV31MtLFYgb3sRLnu7MFejmZA.mft Manifest number: A5 Signing time: Sat 23 Nov 2024 04:15:47 +0000 Manifest this update: Sat 23 Nov 2024 04:15:47 +0000 Manifest next update: Sat 30 Nov 2024 04:15:47 +0000 Files and hashes: 1: X9vV31MtLFYgb3sRLnu7MFejmZA.crl (hash: ai4jfioxmp/F211dss3XiQuNxWbazPiv99vkQqXAPnY=) 2: 9A28A416AF5B11EE9B50AD27C4F9AE02.roa (hash: ZtCY4of0oNZSmT+bU0NNMOI3a0wB7P9BZQfRH7MJK3I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9196296/42A0B71AAF5B11EEB60D0527C4F9AE02/X9vV31MtLFYgb3sRLnu7MFejmZA.crl rsync://rpki.apnic.net/member_repository/A9196296/42A0B71AAF5B11EEB60D0527C4F9AE02/X9vV31MtLFYgb3sRLnu7MFejmZA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X9vV31MtLFYgb3sRLnu7MFejmZA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 167 (0xa7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9196296/serialNumber=5FDBD5DF532D2C56206F7B112E7BBB3057A39990 Validity Not Before: Nov 23 04:15:47 2024 GMT Not After : Nov 30 04:15:47 2024 GMT Subject: CN=674156f3-32b4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:b5:53:7a:79:6a:a0:b4:eb:b6:f9:d4:e4:f9: 58:cb:f1:55:b4:f7:a6:97:76:d4:47:a2:80:dc:f1: c8:8e:2d:b5:69:ce:78:14:5e:10:20:08:c5:8b:f0: 35:4b:1b:95:2a:25:07:99:f1:9f:e9:c1:2d:c2:f7: 1c:bc:27:ae:c7:ab:3c:18:cc:a0:ec:7f:32:86:ee: e7:db:d7:e0:45:4a:cb:a5:8a:14:32:56:d2:ff:87: 8e:f9:fe:d6:07:d6:32:50:85:0a:4a:c9:59:aa:38: a4:59:96:44:eb:15:b1:42:e6:91:b2:d9:46:f2:c9: 81:a5:68:99:5b:f3:56:dc:8c:75:ca:2c:1e:27:a7: fc:e0:00:53:f6:6a:a9:20:bb:07:7d:38:92:3a:c2: 89:1d:12:fc:61:02:95:41:fd:cd:35:9a:1f:22:1e: d8:ef:a3:93:90:f1:24:1e:be:07:33:d4:96:d9:0e: c4:f6:f8:f8:b5:0e:53:8d:f6:23:f1:af:3e:01:6b: 05:2f:be:e9:b2:e1:67:1f:e8:50:d1:6e:5e:d5:d6: 31:78:be:8b:be:e0:b1:7d:1e:01:d1:41:89:1e:0c: 4c:2f:7d:80:5d:46:8d:79:41:67:f3:05:57:a4:6f: 01:ec:0a:83:f9:0b:72:6f:02:de:e4:2b:88:fb:00: b5:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:82:B6:DF:9A:D7:6C:D3:AF:0F:6E:77:3F:A0:64:93:D0:AD:5C:C7 X509v3 Authority Key Identifier: keyid:5F:DB:D5:DF:53:2D:2C:56:20:6F:7B:11:2E:7B:BB:30:57:A3:99:90 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9196296/42A0B71AAF5B11EEB60D0527C4F9AE02/X9vV31MtLFYgb3sRLnu7MFejmZA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X9vV31MtLFYgb3sRLnu7MFejmZA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9196296/42A0B71AAF5B11EEB60D0527C4F9AE02/X9vV31MtLFYgb3sRLnu7MFejmZA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 34:39:96:e3:8b:38:34:6f:1c:42:68:3c:44:02:f3:a4:93:1c: b0:16:4d:48:5e:65:7d:7f:59:03:4d:78:b4:82:2f:d5:b8:3e: 62:07:85:fb:b4:01:70:50:d6:6d:b7:de:f6:70:b6:80:95:ef: 35:09:7c:f0:15:3a:91:cc:91:52:8f:f4:66:cc:12:4f:f9:7b: 60:62:4e:3d:93:92:51:68:83:34:6d:54:1f:9a:e2:b1:c6:75: 9d:20:fd:11:70:25:1d:65:ac:88:6b:d0:88:a5:2b:5b:20:ba: 36:51:b1:3f:30:ae:fa:28:75:55:a2:96:57:48:89:65:c0:52: 8a:d0:2d:c4:49:96:2d:e3:54:49:97:e9:ca:12:31:3b:8b:e8: ff:d0:9f:0a:9c:a2:a5:6f:1d:af:c6:79:84:4c:56:56:3c:9a: 56:1f:3e:0c:9f:ad:1c:50:99:90:6b:9f:1f:74:10:97:a7:cf: 2e:10:b6:ce:4a:e4:74:5f:02:94:66:6a:db:e0:b7:96:be:31: ae:3a:ac:0c:97:b8:2b:d5:9d:3d:1a:2b:77:50:29:e7:a0:f4: ce:97:7b:c3:07:59:ed:54:94:fe:f8:4b:59:02:be:92:7f:8c: b4:c2:9a:a7:54:5a:bf:73:fc:0e:0e:f3:b7:dc:c0:01:7f:6c: 8c:55:1d:bf -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTYyOTYxMTAvBgNVBAUTKDVGREJENURGNTMyRDJDNTYyMDZGN0IxMTJFN0JCQjMw NTdBMzk5OTAwHhcNMjQxMTIzMDQxNTQ3WhcNMjQxMTMwMDQxNTQ3WjAYMRYwFAYD VQQDEw02NzQxNTZmMy0zMmI0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz7VTenlqoLTrtvnU5PlYy/FVtPeml3bUR6KA3PHIji21ac54FF4QIAjFi/A1 SxuVKiUHmfGf6cEtwvccvCeux6s8GMyg7H8yhu7n29fgRUrLpYoUMlbS/4eO+f7W B9YyUIUKSslZqjikWZZE6xWxQuaRstlG8smBpWiZW/NW3Ix1yiweJ6f84ABT9mqp ILsHfTiSOsKJHRL8YQKVQf3NNZofIh7Y76OTkPEkHr4HM9SW2Q7E9vj4tQ5TjfYj 8a8+AWsFL77psuFnH+hQ0W5e1dYxeL6LvuCxfR4B0UGJHgxML32AXUaNeUFn8wVX pG8B7AqD+QtybwLe5CuI+wC1QwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNKCtt+a 12zTrw9udz+gZJPQrVzHMB8GA1UdIwQYMBaAFF/b1d9TLSxWIG97ES57uzBXo5mQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NjI5Ni80MkEwQjcxQUFG NUIxMUVFQjYwRDA1MjdDNEY5QUUwMi9YOXZWMzFNdExGWWdiM3NSTG51N01GZWpt WkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1g5dlYzMU10TEZZZ2Izc1JMbnU3TUZlam1aQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NjI5Ni80MkEwQjcxQUFGNUIxMUVFQjYwRDA1MjdDNEY5QUUwMi9YOXZWMzFNdExG WWdiM3NSTG51N01GZWptWkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA0OZbjizg0bxxCaDxEAvOkkxywFk1IXmV9f1kDTXi0gi/VuD5iB4X7 tAFwUNZtt972cLaAle81CXzwFTqRzJFSj/RmzBJP+XtgYk49k5JRaIM0bVQfmuKx xnWdIP0RcCUdZayIa9CIpStbILo2UbE/MK76KHVVopZXSIllwFKK0C3ESZYt41RJ l+nKEjE7i+j/0J8KnKKlbx2vxnmETFZWPJpWHz4Mn60cUJmQa58fdBCXp88uELbO SuR0XwKUZmrb4LeWvjGuOqwMl7gr1Z09Git3UCnnoPTOl3vDB1ntVJT++EtZAr6S f4y0wpqnVFq/c/wODvO33MABf2yMVR2/ -----END CERTIFICATE-----Generated at Sat Nov 23 05:02:53 2024 by rpki-client on console-fra.rpki-client.org