$ rpki-client -vvf rpki.apnic.net/member_repository/A91ADFD3/1FD1A8BE948611E5AE0C8B72C4F9AE02/xgie68VWt39k5EJJpouV1b2UHkA.mft File: xgie68VWt39k5EJJpouV1b2UHkA.mft (raw, json) Hash identifier: HsGDrnWeTUEjRDiMZyQgNkpV9eccB9s4VkojvzR16/c= Subject key identifier: A3:1E:0E:8B:6D:72:F8:C5:3D:8F:AE:D3:2B:81:EC:C1:56:37:1E:2C Authority key identifier: C6:08:9E:EB:C5:56:B7:7F:64:E4:42:49:A6:8B:95:D5:BD:94:1E:40 Certificate issuer: /CN=A91ADFD3/serialNumber=C6089EEBC556B77F64E44249A68B95D5BD941E40 Certificate serial: 22CF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xgie68VWt39k5EJJpouV1b2UHkA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ADFD3/1FD1A8BE948611E5AE0C8B72C4F9AE02/xgie68VWt39k5EJJpouV1b2UHkA.mft Manifest number: 22A3 Signing time: Sun 24 Nov 2024 15:46:35 +0000 Manifest this update: Sun 24 Nov 2024 15:46:34 +0000 Manifest next update: Sun 01 Dec 2024 15:46:34 +0000 Files and hashes: 1: xgie68VWt39k5EJJpouV1b2UHkA.crl (hash: aIc0+TI8RZM95X2OdJ0nfsKRqK2NzPKOwYuWaKBbZ80=) 2: 6880FA2C59D211EAB77C8C13C4F9AE02.roa (hash: IhQ7eTqBdRib/DA5N6YpIbUC+S3mXMSoqBokw69dd1M=) 3: 678DA8FE59D211EAB77C8C13C4F9AE02.roa (hash: UOaxMQztH6OfRmI3k4wAxIdXb76oWhevbZkXsQ8dCZc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ADFD3/1FD1A8BE948611E5AE0C8B72C4F9AE02/xgie68VWt39k5EJJpouV1b2UHkA.crl rsync://rpki.apnic.net/member_repository/A91ADFD3/1FD1A8BE948611E5AE0C8B72C4F9AE02/xgie68VWt39k5EJJpouV1b2UHkA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xgie68VWt39k5EJJpouV1b2UHkA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Dec 2024 15:46:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8911 (0x22cf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ADFD3/serialNumber=C6089EEBC556B77F64E44249A68B95D5BD941E40 Validity Not Before: Nov 24 15:46:34 2024 GMT Not After : Dec 1 15:46:34 2024 GMT Subject: CN=67434a5b-3355 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f5:00:23:4f:9f:06:9d:42:01:1d:86:c5:8c:e8: f7:95:5e:7c:eb:12:5f:2f:3b:e0:94:72:25:7e:8e: d2:98:32:85:41:03:a9:a2:5d:f5:72:df:02:bd:38: 81:bb:d1:f3:14:97:a2:0e:f0:3f:a9:b3:0e:f9:0d: cf:14:6d:7a:4c:42:c2:13:10:bd:b7:10:ff:d8:c8: a2:55:16:95:42:dd:cf:6d:46:30:98:ef:54:01:b2: 34:11:5c:22:24:c5:6a:ff:1a:a7:16:61:35:a2:9f: 4f:a2:02:ca:52:b3:4e:54:9f:41:8f:ad:cc:14:44: ca:22:d3:37:08:8f:09:3c:f4:69:a7:16:17:51:2f: 5a:71:6a:e2:e1:28:0b:17:dd:33:5f:b2:51:56:d0: 64:e5:af:41:d0:0b:9f:d5:d0:42:0e:3d:d8:b3:83: 26:dd:7c:c0:b4:c5:4b:0b:a9:64:f0:8c:7c:62:da: e6:df:94:2a:b2:2f:ed:9e:89:60:32:7f:e6:c2:59: 61:4f:93:26:62:5e:de:b5:20:2b:26:40:bd:34:2e: 02:19:0b:eb:57:2e:76:0b:70:41:5f:ac:72:09:28: dc:eb:6c:42:09:e1:86:94:3d:ae:bb:43:0d:f7:4e: a6:ca:89:9c:8e:86:4e:05:26:69:7a:6a:b3:e7:18: 34:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:1E:0E:8B:6D:72:F8:C5:3D:8F:AE:D3:2B:81:EC:C1:56:37:1E:2C X509v3 Authority Key Identifier: keyid:C6:08:9E:EB:C5:56:B7:7F:64:E4:42:49:A6:8B:95:D5:BD:94:1E:40 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ADFD3/1FD1A8BE948611E5AE0C8B72C4F9AE02/xgie68VWt39k5EJJpouV1b2UHkA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xgie68VWt39k5EJJpouV1b2UHkA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ADFD3/1FD1A8BE948611E5AE0C8B72C4F9AE02/xgie68VWt39k5EJJpouV1b2UHkA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 20:a8:e1:36:7b:a6:92:21:39:a4:a2:c6:b7:51:89:85:23:95: 56:03:ff:f4:25:09:c9:2c:3e:16:3f:24:0c:c2:a7:84:04:f7: d8:c8:3e:c6:99:51:d7:6d:53:bd:3f:92:3e:72:02:2a:2c:ec: 16:05:12:7a:b6:55:7c:19:27:4c:0d:af:4b:54:e3:c4:4c:ff: 04:c4:19:0c:a0:a3:39:8d:94:cf:68:52:a6:71:6f:8d:fc:a5: 52:cc:ac:66:56:99:61:d2:5a:64:04:5e:e0:a2:1b:1d:17:80: 24:e1:ed:f8:71:fa:6c:9b:f8:f5:2e:09:63:c6:c7:5e:88:ab: c0:4c:8c:41:60:a6:1e:3f:a9:77:97:c8:86:34:79:b6:2c:27: ba:a3:a7:b8:68:04:f0:e9:93:3e:7b:10:fd:57:40:91:a7:85: bd:e5:53:d1:41:01:38:eb:ee:cd:09:1e:fc:56:6d:a0:b4:0b: fa:c8:7b:cc:32:c8:99:a0:48:23:25:b7:71:55:af:99:cb:81: 4b:d2:0e:e3:a4:e0:38:a6:79:1a:ac:2f:d7:9c:30:d1:25:09: 8b:6b:3a:a0:51:be:93:4d:08:b6:80:a8:89:12:74:09:93:f5: 63:05:d7:5b:41:da:db:29:9d:ed:e6:28:83:2c:a8:e6:25:c6: 08:89:a8:6f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICIs8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QURGRDMxMTAvBgNVBAUTKEM2MDg5RUVCQzU1NkI3N0Y2NEU0NDI0OUE2OEI5NUQ1 QkQ5NDFFNDAwHhcNMjQxMTI0MTU0NjM0WhcNMjQxMjAxMTU0NjM0WjAYMRYwFAYD VQQDEw02NzQzNGE1Yi0zMzU1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9QAjT58GnUIBHYbFjOj3lV586xJfLzvglHIlfo7SmDKFQQOpol31ct8CvTiB u9HzFJeiDvA/qbMO+Q3PFG16TELCExC9txD/2MiiVRaVQt3PbUYwmO9UAbI0EVwi JMVq/xqnFmE1op9PogLKUrNOVJ9Bj63MFETKItM3CI8JPPRppxYXUS9acWri4SgL F90zX7JRVtBk5a9B0Auf1dBCDj3Ys4Mm3XzAtMVLC6lk8Ix8Ytrm35Qqsi/tnolg Mn/mwllhT5MmYl7etSArJkC9NC4CGQvrVy52C3BBX6xyCSjc62xCCeGGlD2uu0MN 906myomcjoZOBSZpemqz5xg0HwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKMeDott cvjFPY+u0yuB7MFWNx4sMB8GA1UdIwQYMBaAFMYInuvFVrd/ZORCSaaLldW9lB5A MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBREZEMy8xRkQxQThCRTk0 ODYxMUU1QUUwQzhCNzJDNEY5QUUwMi94Z2llNjhWV3QzOWs1RUpKcG91VjFiMlVI a0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hnaWU2OFZXdDM5azVFSkpwb3VWMWIyVUhrQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB REZEMy8xRkQxQThCRTk0ODYxMUU1QUUwQzhCNzJDNEY5QUUwMi94Z2llNjhWV3Qz OWs1RUpKcG91VjFiMlVIa0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAgqOE2e6aSITmkosa3UYmFI5VWA//0JQnJLD4WPyQMwqeEBPfYyD7G mVHXbVO9P5I+cgIqLOwWBRJ6tlV8GSdMDa9LVOPETP8ExBkMoKM5jZTPaFKmcW+N /KVSzKxmVplh0lpkBF7gohsdF4Ak4e34cfpsm/j1LgljxsdeiKvATIxBYKYeP6l3 l8iGNHm2LCe6o6e4aATw6ZM+exD9V0CRp4W95VPRQQE46+7NCR78Vm2gtAv6yHvM MsiZoEgjJbdxVa+Zy4FL0g7jpOA4pnkarC/XnDDRJQmLazqgUb6TTQi2gKiJEnQJ k/VjBddbQdrbKZ3t5iiDLKjmJcYIiahv -----END CERTIFICATE-----Generated at Sun Nov 24 17:20:50 2024 by rpki-client on console-fra.rpki-client.org