$ rpki-client -vvf rpki.apnic.net/member_repository/A91D0B34/6037D5DC82A111EA93413B4AC4F9AE02/XfEC4qXnNnchwRjb7NpgKoAp7pQ.mft File: XfEC4qXnNnchwRjb7NpgKoAp7pQ.mft (raw, json) Hash identifier: IY6m6fQFv/JKXTIA65K3+M5Fwo1LM8mP732cugWMgyc= Subject key identifier: C2:83:34:54:E4:D4:41:BE:8B:B8:EF:34:08:17:E1:3A:2E:81:A4:7C Authority key identifier: 5D:F1:02:E2:A5:E7:36:77:21:C1:18:DB:EC:DA:60:2A:80:29:EE:94 Certificate issuer: /CN=A91D0B34/serialNumber=5DF102E2A5E7367721C118DBECDA602A8029EE94 Certificate serial: 097D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XfEC4qXnNnchwRjb7NpgKoAp7pQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D0B34/6037D5DC82A111EA93413B4AC4F9AE02/XfEC4qXnNnchwRjb7NpgKoAp7pQ.mft Manifest number: 0970 Signing time: Fri 22 Nov 2024 19:55:21 +0000 Manifest this update: Fri 22 Nov 2024 19:55:21 +0000 Manifest next update: Fri 29 Nov 2024 19:55:21 +0000 Files and hashes: 1: XfEC4qXnNnchwRjb7NpgKoAp7pQ.crl (hash: HZOalHwZKKU3kRlfBWFaxOczL80lBW9aRoAJJNHQ0VM=) 2: 97E61FE46F2111EB85D19531C4F9AE02.roa (hash: QT/K5tGfOd7GalxXyOBi4xKWLa0cvDIyEyK/W9LM+Pk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D0B34/6037D5DC82A111EA93413B4AC4F9AE02/XfEC4qXnNnchwRjb7NpgKoAp7pQ.crl rsync://rpki.apnic.net/member_repository/A91D0B34/6037D5DC82A111EA93413B4AC4F9AE02/XfEC4qXnNnchwRjb7NpgKoAp7pQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XfEC4qXnNnchwRjb7NpgKoAp7pQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 19:55:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2429 (0x97d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D0B34/serialNumber=5DF102E2A5E7367721C118DBECDA602A8029EE94 Validity Not Before: Nov 22 19:55:21 2024 GMT Not After : Nov 29 19:55:21 2024 GMT Subject: CN=6740e1a9-b219 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:c5:6a:f5:1a:56:87:f5:89:d4:03:4e:85:b4: 35:05:43:cd:76:72:b1:a5:03:46:a7:4c:0a:37:82: b9:4c:d4:7d:20:cb:2f:5f:e3:79:81:79:7a:54:69: c2:0b:25:9d:ce:57:c3:2d:8c:3f:f5:91:8f:68:8a: ce:c7:b1:92:63:ef:50:21:33:17:1a:30:5f:71:ba: 1d:de:70:90:3d:1d:4c:52:58:4d:e7:c4:92:bd:82: 8a:5b:87:00:0e:1c:3f:ca:6a:dc:5d:70:49:6d:47: 40:e5:43:80:5d:95:9d:20:08:e3:5d:5f:11:5f:97: 25:24:c6:bb:f1:95:cc:d9:62:2e:3c:a9:99:be:50: f0:73:8b:0a:9f:2d:b4:e9:e0:14:e2:f1:f0:a2:e9: 9e:d4:fa:d4:50:fd:1b:23:fe:42:d2:35:e7:f1:16: 68:79:c0:c5:a4:fb:3d:f8:7b:43:8a:94:72:5d:22: 54:8b:d9:a6:ef:b2:11:3c:51:cf:cd:e4:8c:9c:52: fb:f3:12:4f:77:4d:98:d7:ab:4a:ab:b0:8a:72:fd: b1:8b:49:ce:f0:6b:64:dd:cd:a1:79:bb:be:f1:ba: bd:d3:fe:57:28:d2:88:fa:f3:1c:06:d3:16:0d:0c: 1a:50:a1:10:23:31:5c:61:97:ee:9b:a0:5c:bd:ac: 4c:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:83:34:54:E4:D4:41:BE:8B:B8:EF:34:08:17:E1:3A:2E:81:A4:7C X509v3 Authority Key Identifier: keyid:5D:F1:02:E2:A5:E7:36:77:21:C1:18:DB:EC:DA:60:2A:80:29:EE:94 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D0B34/6037D5DC82A111EA93413B4AC4F9AE02/XfEC4qXnNnchwRjb7NpgKoAp7pQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XfEC4qXnNnchwRjb7NpgKoAp7pQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D0B34/6037D5DC82A111EA93413B4AC4F9AE02/XfEC4qXnNnchwRjb7NpgKoAp7pQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b1:d8:c2:7c:51:4a:d5:21:cf:11:84:1b:a2:36:d5:9c:36:26: ed:ff:08:fb:08:e6:af:52:96:a7:af:10:f5:b1:fc:4c:b3:98: 19:77:73:0c:27:44:81:90:15:0a:b2:8b:41:8b:0f:a8:a5:77: cb:10:16:27:4c:4b:1a:e0:5c:ed:76:e5:c5:96:30:73:fb:d2: c9:be:c3:5e:30:88:25:37:c7:fc:09:18:12:d7:88:80:45:4d: 3c:be:ba:c8:fa:a9:15:20:ad:4c:f1:bd:1d:ae:71:96:9e:8a: 0d:54:ca:25:00:46:ea:c3:41:aa:60:83:a6:9b:b9:31:8d:7a: 5b:17:0a:33:67:6e:d7:61:29:d5:a5:97:ad:ed:a6:ab:b4:2b: 2b:7b:19:e1:13:aa:69:a1:19:1e:45:f7:98:d9:de:07:87:ee: 6f:af:20:ad:40:ef:7d:60:c5:4f:59:f7:09:52:db:32:59:0f: 24:d7:e3:37:ab:97:fa:7a:68:03:73:73:e2:41:c6:e8:f1:df: 85:c7:6f:0b:d4:df:3c:a1:04:94:ef:fa:9e:98:6e:28:28:05: 8f:a0:2c:1f:e0:f6:8a:1c:3b:6d:bc:62:b8:44:34:9a:4a:80: 48:d9:ce:4f:bb:e7:1b:e5:78:c6:3e:d1:e0:3a:21:df:78:90: 62:81:e9:85 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCX0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDBCMzQxMTAvBgNVBAUTKDVERjEwMkUyQTVFNzM2NzcyMUMxMThEQkVDREE2MDJB ODAyOUVFOTQwHhcNMjQxMTIyMTk1NTIxWhcNMjQxMTI5MTk1NTIxWjAYMRYwFAYD VQQDEw02NzQwZTFhOS1iMjE5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvsVq9RpWh/WJ1ANOhbQ1BUPNdnKxpQNGp0wKN4K5TNR9IMsvX+N5gXl6VGnC CyWdzlfDLYw/9ZGPaIrOx7GSY+9QITMXGjBfcbod3nCQPR1MUlhN58SSvYKKW4cA Dhw/ymrcXXBJbUdA5UOAXZWdIAjjXV8RX5clJMa78ZXM2WIuPKmZvlDwc4sKny20 6eAU4vHwoume1PrUUP0bI/5C0jXn8RZoecDFpPs9+HtDipRyXSJUi9mm77IRPFHP zeSMnFL78xJPd02Y16tKq7CKcv2xi0nO8Gtk3c2hebu+8bq90/5XKNKI+vMcBtMW DQwaUKEQIzFcYZfum6BcvaxMjwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMKDNFTk 1EG+i7jvNAgX4TougaR8MB8GA1UdIwQYMBaAFF3xAuKl5zZ3IcEY2+zaYCqAKe6U MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMEIzNC82MDM3RDVEQzgy QTExMUVBOTM0MTNCNEFDNEY5QUUwMi9YZkVDNHFYbk5uY2h3UmpiN05wZ0tvQXA3 cFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hmRUM0cVhuTm5jaHdSamI3TnBnS29BcDdwUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MEIzNC82MDM3RDVEQzgyQTExMUVBOTM0MTNCNEFDNEY5QUUwMi9YZkVDNHFYbk5u Y2h3UmpiN05wZ0tvQXA3cFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCx2MJ8UUrVIc8RhBuiNtWcNibt/wj7COavUpanrxD1sfxMs5gZd3MM J0SBkBUKsotBiw+opXfLEBYnTEsa4FztduXFljBz+9LJvsNeMIglN8f8CRgS14iA RU08vrrI+qkVIK1M8b0drnGWnooNVMolAEbqw0GqYIOmm7kxjXpbFwozZ27XYSnV pZet7aartCsrexnhE6ppoRkeRfeY2d4Hh+5vryCtQO99YMVPWfcJUtsyWQ8k1+M3 q5f6emgDc3PiQcbo8d+Fx28L1N88oQSU7/qemG4oKAWPoCwf4PaKHDttvGK4RDSa SoBI2c5Pu+cb5XjGPtHgOiHfeJBigemF -----END CERTIFICATE-----Generated at Fri Nov 22 22:14:41 2024 by rpki-client on console-ams.rpki-client.org