$ rpki-client -vvf rpki.apnic.net/member_repository/A91D1EBA/8394E25091EA11EBAADBF92FC4F9AE02/XDfN_Mjp6QxBFko5HukDtN5U37E.mft File: XDfN_Mjp6QxBFko5HukDtN5U37E.mft (raw, json) Hash identifier: aZvkJJVTo98ZmIj70wxwmy7jgkzkS0OsQ6DvitNzuxQ= Subject key identifier: D4:A1:B6:39:D0:09:09:0E:33:9D:DB:08:BB:75:50:EC:78:2A:79:F0 Authority key identifier: 5C:37:CD:FC:C8:E9:E9:0C:41:16:4A:39:1E:E9:03:B4:DE:54:DF:B1 Certificate issuer: /CN=A91D1EBA/serialNumber=5C37CDFCC8E9E90C41164A391EE903B4DE54DFB1 Certificate serial: 05E1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XDfN_Mjp6QxBFko5HukDtN5U37E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D1EBA/8394E25091EA11EBAADBF92FC4F9AE02/XDfN_Mjp6QxBFko5HukDtN5U37E.mft Manifest number: 05DC Signing time: Fri 22 Nov 2024 22:30:35 +0000 Manifest this update: Fri 22 Nov 2024 22:30:34 +0000 Manifest next update: Fri 29 Nov 2024 22:30:34 +0000 Files and hashes: 1: XDfN_Mjp6QxBFko5HukDtN5U37E.crl (hash: 1JXz0/Me2QRQlwetoEOcgTddaf4XnORq6wPAJ2e4ls4=) 2: A14BDCE491EB11EBAD7A1530C4F9AE02.roa (hash: oheVgwgcc5IUYSIleOKjSz3O1d0TWSDn9p0tlk0co7w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D1EBA/8394E25091EA11EBAADBF92FC4F9AE02/XDfN_Mjp6QxBFko5HukDtN5U37E.crl rsync://rpki.apnic.net/member_repository/A91D1EBA/8394E25091EA11EBAADBF92FC4F9AE02/XDfN_Mjp6QxBFko5HukDtN5U37E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XDfN_Mjp6QxBFko5HukDtN5U37E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1505 (0x5e1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D1EBA/serialNumber=5C37CDFCC8E9E90C41164A391EE903B4DE54DFB1 Validity Not Before: Nov 22 22:30:34 2024 GMT Not After : Nov 29 22:30:34 2024 GMT Subject: CN=6741060a-1003 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:d7:2c:22:d6:73:44:56:fb:3f:52:9c:7d:6b: 80:02:f5:bd:a0:48:e4:5a:90:dd:c8:ef:50:65:1d: c2:64:05:30:e1:2f:96:ed:ee:fa:ec:d4:e7:bb:98: 51:56:13:79:9b:4f:93:74:97:47:6b:07:23:3d:77: f7:7e:a3:4c:74:05:27:14:4c:8f:fa:21:a1:85:d6: 68:1b:a6:6b:7d:b8:9c:b2:f7:a2:a5:a8:79:14:69: 99:fe:72:10:c7:e3:04:68:35:a4:a7:b8:a2:01:76: 94:8a:1a:63:42:40:9c:e1:68:11:51:f4:c6:e6:b7: 5b:ad:07:2f:12:99:28:bf:4c:7a:0d:06:1d:ec:80: 30:1a:55:5b:0d:56:b4:33:e8:14:e1:bc:cd:ea:82: 8d:0e:6c:82:5c:8f:90:14:ec:44:e3:86:db:83:c5: 2a:3b:1c:c4:d4:a6:29:c3:3b:1d:55:fa:47:52:7a: 12:98:bf:08:b7:6a:d2:4b:c1:07:c8:cd:57:06:89: 1c:89:7b:aa:0a:68:bb:1f:92:5d:73:86:1c:ea:93: 95:db:d2:34:54:49:97:b7:ae:97:33:66:71:e1:08: de:14:93:f9:3d:9a:43:bb:cc:2b:d0:13:47:63:6f: 2b:57:51:6c:95:cc:9a:06:a7:34:44:2f:d6:7b:c9: b6:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:A1:B6:39:D0:09:09:0E:33:9D:DB:08:BB:75:50:EC:78:2A:79:F0 X509v3 Authority Key Identifier: keyid:5C:37:CD:FC:C8:E9:E9:0C:41:16:4A:39:1E:E9:03:B4:DE:54:DF:B1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D1EBA/8394E25091EA11EBAADBF92FC4F9AE02/XDfN_Mjp6QxBFko5HukDtN5U37E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XDfN_Mjp6QxBFko5HukDtN5U37E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D1EBA/8394E25091EA11EBAADBF92FC4F9AE02/XDfN_Mjp6QxBFko5HukDtN5U37E.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5b:34:26:cf:c8:18:21:4e:19:a0:80:27:81:1d:8f:04:cf:3a: 4b:99:ad:1f:37:80:7c:cd:99:49:af:d7:74:11:de:0b:cd:cf: 97:ba:b9:da:77:91:e4:a6:be:d4:36:c5:78:53:80:60:bd:75: d0:09:4a:0c:3b:bd:aa:39:0d:99:5f:57:70:7b:59:c7:7a:f4: 55:a9:96:b0:4a:53:11:aa:ac:63:f4:32:4d:79:81:22:2a:d7: c0:34:91:d5:cb:73:a4:78:7d:f3:23:1c:eb:ca:26:8a:fc:05: e5:a8:3e:44:eb:0f:bd:83:d6:6d:c2:22:57:ca:73:6e:7c:45: f6:91:7b:a9:0b:bf:9f:56:7c:69:d7:15:8e:a6:9c:c6:d9:35: 1b:50:90:a5:2b:3a:cc:b0:ce:bf:ba:8f:22:c0:ed:dd:b1:64: 36:7f:8f:06:fd:e3:8c:e1:9f:99:5a:c3:fb:b6:8d:af:c5:a7: 30:e9:79:74:6a:70:6f:1b:9a:2a:1a:94:5d:45:6f:a4:b5:c4: 27:b0:e7:db:81:c3:96:38:dd:51:d5:75:60:37:58:bc:5d:b1: 21:34:88:d5:f0:79:a7:5e:f2:33:a1:6d:a3:6e:09:30:2b:e9: 64:93:a5:76:01:2a:e5:f0:45:22:ca:2d:1c:e6:d4:7b:78:48: e1:18:61:59 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBeEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDFFQkExMTAvBgNVBAUTKDVDMzdDREZDQzhFOUU5MEM0MTE2NEEzOTFFRTkwM0I0 REU1NERGQjEwHhcNMjQxMTIyMjIzMDM0WhcNMjQxMTI5MjIzMDM0WjAYMRYwFAYD VQQDEw02NzQxMDYwYS0xMDAzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3tcsItZzRFb7P1KcfWuAAvW9oEjkWpDdyO9QZR3CZAUw4S+W7e767NTnu5hR VhN5m0+TdJdHawcjPXf3fqNMdAUnFEyP+iGhhdZoG6Zrfbicsveipah5FGmZ/nIQ x+MEaDWkp7iiAXaUihpjQkCc4WgRUfTG5rdbrQcvEpkov0x6DQYd7IAwGlVbDVa0 M+gU4bzN6oKNDmyCXI+QFOxE44bbg8UqOxzE1KYpwzsdVfpHUnoSmL8It2rSS8EH yM1XBokciXuqCmi7H5Jdc4Yc6pOV29I0VEmXt66XM2Zx4QjeFJP5PZpDu8wr0BNH Y28rV1FslcyaBqc0RC/We8m2/wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNShtjnQ CQkOM53bCLt1UOx4KnnwMB8GA1UdIwQYMBaAFFw3zfzI6ekMQRZKOR7pA7TeVN+x MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMUVCQS84Mzk0RTI1MDkx RUExMUVCQUFEQkY5MkZDNEY5QUUwMi9YRGZOX01qcDZReEJGa281SHVrRHRONVUz N0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hEZk5fTWpwNlF4QkZrbzVIdWtEdE41VTM3RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MUVCQS84Mzk0RTI1MDkxRUExMUVCQUFEQkY5MkZDNEY5QUUwMi9YRGZOX01qcDZR eEJGa281SHVrRHRONVUzN0UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBbNCbPyBghThmggCeBHY8EzzpLma0fN4B8zZlJr9d0Ed4Lzc+Xurna d5Hkpr7UNsV4U4BgvXXQCUoMO72qOQ2ZX1dwe1nHevRVqZawSlMRqqxj9DJNeYEi KtfANJHVy3OkeH3zIxzryiaK/AXlqD5E6w+9g9ZtwiJXynNufEX2kXupC7+fVnxp 1xWOppzG2TUbUJClKzrMsM6/uo8iwO3dsWQ2f48G/eOM4Z+ZWsP7to2vxacw6Xl0 anBvG5oqGpRdRW+ktcQnsOfbgcOWON1R1XVgN1i8XbEhNIjV8HmnXvIzoW2jbgkw K+lkk6V2ASrl8EUiyi0c5tR7eEjhGGFZ -----END CERTIFICATE-----Generated at Sat Nov 23 00:08:50 2024 by rpki-client on console-ams.rpki-client.org