$ rpki-client -vvf rpki.apnic.net/member_repository/A919B3BC/381244FE8F9B11E6BEC5CB25C4F9AE02/xPuRgT57oJnZHpxIFyCUuZBcDxE.mft File: xPuRgT57oJnZHpxIFyCUuZBcDxE.mft (raw, json) Hash identifier: l2BvFmMSTJXJZBiOfcWppLUL6SAoDLBi/0jE3f5WIkI= Subject key identifier: F4:91:0C:0D:16:A4:8C:EC:83:C8:2E:D7:52:36:22:51:B7:AA:81:37 Authority key identifier: C4:FB:91:81:3E:7B:A0:99:D9:1E:9C:48:17:20:94:B9:90:5C:0F:11 Certificate issuer: /CN=A919B3BC/serialNumber=C4FB91813E7BA099D91E9C48172094B9905C0F11 Certificate serial: 1DB1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xPuRgT57oJnZHpxIFyCUuZBcDxE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919B3BC/381244FE8F9B11E6BEC5CB25C4F9AE02/xPuRgT57oJnZHpxIFyCUuZBcDxE.mft Manifest number: 1D9E Signing time: Sun 24 Nov 2024 16:01:23 +0000 Manifest this update: Sun 24 Nov 2024 16:01:22 +0000 Manifest next update: Sun 01 Dec 2024 16:01:22 +0000 Files and hashes: 1: xPuRgT57oJnZHpxIFyCUuZBcDxE.crl (hash: TM8hGKscj3igL/9iqP9G1pCPOKoFSANzaXL52kOa0T8=) 2: 8B2074D0548D11EF9BA26C38C4F9AE02.roa (hash: x3z7Bcu0z3Wrcipomw2QfmEoOC8RigJtIgSZz6L4z4E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919B3BC/381244FE8F9B11E6BEC5CB25C4F9AE02/xPuRgT57oJnZHpxIFyCUuZBcDxE.crl rsync://rpki.apnic.net/member_repository/A919B3BC/381244FE8F9B11E6BEC5CB25C4F9AE02/xPuRgT57oJnZHpxIFyCUuZBcDxE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xPuRgT57oJnZHpxIFyCUuZBcDxE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Dec 2024 15:54:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7601 (0x1db1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919B3BC/serialNumber=C4FB91813E7BA099D91E9C48172094B9905C0F11 Validity Not Before: Nov 24 16:01:22 2024 GMT Not After : Dec 1 16:01:22 2024 GMT Subject: CN=67434dd3-20c6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:85:49:64:5f:fa:2e:dd:8d:7c:bb:39:d6:aa: 41:e2:a5:d2:4f:8a:47:3b:b7:1e:cf:d5:f4:ea:b3: c2:61:d3:5e:09:2c:75:31:fe:18:b1:ec:4f:17:8f: 52:5e:67:6f:a0:62:bf:ca:8a:73:04:a0:15:98:e4: 28:c0:3f:67:71:bf:56:a8:2f:32:39:cd:f0:67:9e: be:0d:3c:c7:43:c3:f1:5e:66:e1:ae:64:72:3b:31: 85:ec:68:cd:f1:39:28:95:1e:16:04:8e:ab:b7:20: 44:0b:15:a0:d7:64:5a:e2:e4:d8:85:bf:54:e7:ce: fa:77:b1:7f:17:5d:a0:b6:a5:82:69:9c:eb:61:08: 39:20:00:d0:02:19:e4:18:4e:2a:91:97:16:44:fa: 8d:0f:0a:56:fe:4c:02:8a:c4:6d:5f:7d:d3:54:f2: 35:fc:9b:9f:bc:75:8e:38:58:34:de:3e:55:78:b6: f2:b0:ef:6f:15:e1:ee:fd:36:be:ab:c5:2e:a5:6d: 6a:e1:da:46:78:27:0b:9f:b6:36:ed:66:55:54:25: b5:f4:f6:de:e3:f3:cd:6e:20:af:f6:f7:21:71:16: 07:c9:1f:11:12:c6:0c:33:2e:3c:55:a7:41:b5:e4: 21:64:ab:41:02:b1:e6:19:70:16:9e:02:46:4e:43: 5e:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:91:0C:0D:16:A4:8C:EC:83:C8:2E:D7:52:36:22:51:B7:AA:81:37 X509v3 Authority Key Identifier: keyid:C4:FB:91:81:3E:7B:A0:99:D9:1E:9C:48:17:20:94:B9:90:5C:0F:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919B3BC/381244FE8F9B11E6BEC5CB25C4F9AE02/xPuRgT57oJnZHpxIFyCUuZBcDxE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xPuRgT57oJnZHpxIFyCUuZBcDxE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919B3BC/381244FE8F9B11E6BEC5CB25C4F9AE02/xPuRgT57oJnZHpxIFyCUuZBcDxE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9d:49:3e:0b:ef:bd:c8:c3:58:cc:a0:1d:75:91:3b:6e:5c:00: 2a:e4:cc:3c:d5:5e:52:b0:e8:6f:08:a5:1c:90:2b:30:76:8f: 51:60:86:50:95:07:02:82:ca:f6:53:76:4c:19:e1:15:8b:93: 02:ce:f9:30:c4:6a:38:32:14:4d:3c:30:c5:f0:1a:0c:e4:9d: 94:2d:7e:95:90:f0:c4:6f:03:56:ba:c4:90:fe:d4:ec:29:16: cc:1b:10:d9:45:a6:df:f5:ba:e0:a8:46:1b:af:73:76:a4:e0: 85:c6:64:00:f0:59:0a:74:ca:74:91:2e:c8:85:6d:66:7c:af: 12:b9:d8:43:b2:3e:db:d4:bc:ea:4e:0f:4e:39:23:53:b4:0e: 9b:b1:33:31:1b:45:a2:10:fe:9a:ba:55:50:fd:c1:c4:2c:16: 27:c8:90:e2:19:60:26:67:0d:29:d1:3a:fd:38:16:23:09:60: 57:c9:d3:f5:cf:f0:f9:d2:b8:07:4a:47:25:4b:4b:52:8e:d0: 82:ce:c9:64:c4:11:c4:a6:0c:e9:34:7b:20:bd:94:32:2f:78: 73:8b:c0:44:1f:f4:29:c4:13:8d:2a:86:c9:4b:0b:de:6e:73: 90:9b:32:3a:22:b3:49:dd:3a:fe:18:e4:1f:3e:c2:59:67:45: 0b:dc:df:4f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICHbEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUIzQkMxMTAvBgNVBAUTKEM0RkI5MTgxM0U3QkEwOTlEOTFFOUM0ODE3MjA5NEI5 OTA1QzBGMTEwHhcNMjQxMTI0MTYwMTIyWhcNMjQxMjAxMTYwMTIyWjAYMRYwFAYD VQQDEw02NzQzNGRkMy0yMGM2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtoVJZF/6Lt2NfLs51qpB4qXST4pHO7cez9X06rPCYdNeCSx1Mf4YsexPF49S XmdvoGK/yopzBKAVmOQowD9ncb9WqC8yOc3wZ56+DTzHQ8PxXmbhrmRyOzGF7GjN 8TkolR4WBI6rtyBECxWg12Ra4uTYhb9U5876d7F/F12gtqWCaZzrYQg5IADQAhnk GE4qkZcWRPqNDwpW/kwCisRtX33TVPI1/JufvHWOOFg03j5VeLbysO9vFeHu/Ta+ q8UupW1q4dpGeCcLn7Y27WZVVCW19Pbe4/PNbiCv9vchcRYHyR8REsYMMy48VadB teQhZKtBArHmGXAWngJGTkNeuwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPSRDA0W pIzsg8gu11I2IlG3qoE3MB8GA1UdIwQYMBaAFMT7kYE+e6CZ2R6cSBcglLmQXA8R MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QjNCQy8zODEyNDRGRThG OUIxMUU2QkVDNUNCMjVDNEY5QUUwMi94UHVSZ1Q1N29KblpIcHhJRnlDVXVaQmNE eEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hQdVJnVDU3b0puWkhweElGeUNVdVpCY0R4RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 QjNCQy8zODEyNDRGRThGOUIxMUU2QkVDNUNCMjVDNEY5QUUwMi94UHVSZ1Q1N29K blpIcHhJRnlDVXVaQmNEeEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCdST4L773Iw1jMoB11kTtuXAAq5Mw81V5SsOhvCKUckCswdo9RYIZQ lQcCgsr2U3ZMGeEVi5MCzvkwxGo4MhRNPDDF8BoM5J2ULX6VkPDEbwNWusSQ/tTs KRbMGxDZRabf9brgqEYbr3N2pOCFxmQA8FkKdMp0kS7IhW1mfK8SudhDsj7b1Lzq Tg9OOSNTtA6bsTMxG0WiEP6aulVQ/cHELBYnyJDiGWAmZw0p0Tr9OBYjCWBXydP1 z/D50rgHSkclS0tSjtCCzslkxBHEpgzpNHsgvZQyL3hzi8BEH/QpxBONKobJSwve bnOQmzI6IrNJ3Tr+GOQfPsJZZ0UL3N9P -----END CERTIFICATE-----Generated at Sun Nov 24 17:20:47 2024 by rpki-client on console-fra.rpki-client.org