$ rpki-client -vvf rpki.apnic.net/member_repository/A91D28BC/92092390EAD811EBBD2CC758C4F9AE02/xIoOQPt_45dbEsI-AwrFTFIFcWM.mft File: xIoOQPt_45dbEsI-AwrFTFIFcWM.mft (raw, json) Hash identifier: ydtOLGi+mrrwwGp44IIwECdHkMMFnUiGFMUlGX24ApY= Subject key identifier: 81:76:2A:DC:18:89:A5:65:41:D0:46:54:15:9C:94:0E:B5:52:24:12 Authority key identifier: C4:8A:0E:40:FB:7F:E3:97:5B:12:C2:3E:03:0A:C5:4C:52:05:71:63 Certificate issuer: /CN=A91D28BC/serialNumber=C48A0E40FB7FE3975B12C23E030AC54C52057163 Certificate serial: 04FA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xIoOQPt_45dbEsI-AwrFTFIFcWM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D28BC/92092390EAD811EBBD2CC758C4F9AE02/xIoOQPt_45dbEsI-AwrFTFIFcWM.mft Manifest number: 04F6 Signing time: Fri 22 Nov 2024 23:14:24 +0000 Manifest this update: Fri 22 Nov 2024 23:14:23 +0000 Manifest next update: Fri 29 Nov 2024 23:14:23 +0000 Files and hashes: 1: xIoOQPt_45dbEsI-AwrFTFIFcWM.crl (hash: HID+D/jt1JV70Z+2IxysmSroHX+RpFqin0fkJTv1F0I=) 2: 2B07FA82EADC11EBBE430B5EC4F9AE02.roa (hash: tglvnraOKLhDlwg3ok6ZNO34EJEOJeyX625ohOQmYAw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D28BC/92092390EAD811EBBD2CC758C4F9AE02/xIoOQPt_45dbEsI-AwrFTFIFcWM.crl rsync://rpki.apnic.net/member_repository/A91D28BC/92092390EAD811EBBD2CC758C4F9AE02/xIoOQPt_45dbEsI-AwrFTFIFcWM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xIoOQPt_45dbEsI-AwrFTFIFcWM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1274 (0x4fa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D28BC/serialNumber=C48A0E40FB7FE3975B12C23E030AC54C52057163 Validity Not Before: Nov 22 23:14:23 2024 GMT Not After : Nov 29 23:14:23 2024 GMT Subject: CN=6741104f-5319 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:17:2d:b2:ca:35:1b:cb:d5:09:a1:6c:69:db: 88:bb:eb:0f:eb:65:6e:3a:3a:f5:56:6b:36:55:ed: 1d:9d:fa:44:3e:5a:ef:26:76:70:60:0f:cf:68:b3: 0d:ea:84:60:38:95:a4:11:c8:b0:e8:49:e9:fe:4c: 2d:bc:7d:6f:73:80:25:0f:0f:d8:d8:0e:c0:b7:fb: ce:17:10:da:11:66:60:5c:92:41:28:3e:0c:71:39: 12:c0:c6:8e:2f:21:e5:86:99:04:a2:cf:e1:b9:68: 91:b1:34:bc:39:71:7c:63:52:45:fb:3d:5b:7f:64: 78:ae:05:3f:20:80:85:72:58:91:c5:2b:bd:57:22: 5c:a8:60:8f:c2:d2:9a:d9:c4:83:2d:5a:a6:42:9e: c1:c0:7a:9b:67:9a:48:c0:ac:8f:39:33:ff:97:2d: fc:36:0e:de:2d:49:2b:89:1f:6c:29:8c:69:88:61: f6:b3:0e:4c:ee:f3:fd:4a:92:c5:4d:d9:fd:67:ba: 53:f2:2b:18:2e:9d:b5:82:83:2d:e1:80:f6:61:53: 4b:bd:4d:c9:bb:31:89:98:27:f1:f1:ad:83:a1:10: d3:02:8e:3b:8b:9a:ec:1c:85:b9:79:97:da:f7:89: 1d:1e:d4:71:e6:5b:d7:68:4a:5b:45:e1:b2:a4:7c: 5e:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:76:2A:DC:18:89:A5:65:41:D0:46:54:15:9C:94:0E:B5:52:24:12 X509v3 Authority Key Identifier: keyid:C4:8A:0E:40:FB:7F:E3:97:5B:12:C2:3E:03:0A:C5:4C:52:05:71:63 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D28BC/92092390EAD811EBBD2CC758C4F9AE02/xIoOQPt_45dbEsI-AwrFTFIFcWM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xIoOQPt_45dbEsI-AwrFTFIFcWM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D28BC/92092390EAD811EBBD2CC758C4F9AE02/xIoOQPt_45dbEsI-AwrFTFIFcWM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a9:ea:75:e5:02:ac:cc:fe:ff:d7:25:66:9a:dc:61:94:71:52: 41:dd:4b:7a:19:8e:18:e4:8e:82:38:5e:31:be:05:f3:11:43: b0:bf:12:bb:37:d8:31:17:1a:90:3c:8a:a7:ec:3b:b4:e6:12: d1:16:53:52:4f:bb:e8:c2:b1:f5:b3:88:76:0e:4c:b5:a9:2c: fe:1e:6d:62:ce:c0:64:7e:e8:9b:56:b2:cf:c4:0b:77:7c:91: a0:9e:2a:a9:63:7b:35:76:44:99:81:f6:1e:b8:35:81:c0:68: 5f:d1:44:53:e3:3b:ab:cf:2f:db:99:13:1d:f8:37:17:3f:4d: 81:ae:be:3e:68:18:79:6f:91:ab:17:7c:42:29:7a:6a:62:35: 2a:73:70:5b:8d:1d:1d:9d:d2:7f:14:d4:f4:bc:02:46:98:ab: d5:77:23:5a:a1:b5:f1:3b:12:b2:08:69:95:76:88:58:ad:d5: 83:be:32:70:51:7e:fd:c4:e2:cc:b6:0f:85:b1:46:5e:ac:90: e4:21:1b:9d:2c:1b:59:e8:ac:0f:a8:96:d2:67:15:32:ba:d6: ed:20:9a:52:0e:3a:6d:ae:ac:83:9e:e8:d8:a8:68:d3:4a:90: a7:eb:ee:26:87:17:fb:94:c3:fc:e2:b5:c0:55:c4:8a:e6:07: f1:04:72:99 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBPowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDI4QkMxMTAvBgNVBAUTKEM0OEEwRTQwRkI3RkUzOTc1QjEyQzIzRTAzMEFDNTRD NTIwNTcxNjMwHhcNMjQxMTIyMjMxNDIzWhcNMjQxMTI5MjMxNDIzWjAYMRYwFAYD VQQDEw02NzQxMTA0Zi01MzE5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3Bctsso1G8vVCaFsaduIu+sP62VuOjr1Vms2Ve0dnfpEPlrvJnZwYA/PaLMN 6oRgOJWkEciw6Enp/kwtvH1vc4AlDw/Y2A7At/vOFxDaEWZgXJJBKD4McTkSwMaO LyHlhpkEos/huWiRsTS8OXF8Y1JF+z1bf2R4rgU/IICFcliRxSu9VyJcqGCPwtKa 2cSDLVqmQp7BwHqbZ5pIwKyPOTP/ly38Ng7eLUkriR9sKYxpiGH2sw5M7vP9SpLF Tdn9Z7pT8isYLp21goMt4YD2YVNLvU3JuzGJmCfx8a2DoRDTAo47i5rsHIW5eZfa 94kdHtRx5lvXaEpbReGypHxeJQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIF2KtwY iaVlQdBGVBWclA61UiQSMB8GA1UdIwQYMBaAFMSKDkD7f+OXWxLCPgMKxUxSBXFj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMjhCQy85MjA5MjM5MEVB RDgxMUVCQkQyQ0M3NThDNEY5QUUwMi94SW9PUVB0XzQ1ZGJFc0ktQXdyRlRGSUZj V00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hJb09RUHRfNDVkYkVzSS1Bd3JGVEZJRmNXTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MjhCQy85MjA5MjM5MEVBRDgxMUVCQkQyQ0M3NThDNEY5QUUwMi94SW9PUVB0XzQ1 ZGJFc0ktQXdyRlRGSUZjV00ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCp6nXlAqzM/v/XJWaa3GGUcVJB3Ut6GY4Y5I6COF4xvgXzEUOwvxK7 N9gxFxqQPIqn7Du05hLRFlNST7vowrH1s4h2Dky1qSz+Hm1izsBkfuibVrLPxAt3 fJGgniqpY3s1dkSZgfYeuDWBwGhf0URT4zurzy/bmRMd+DcXP02Brr4+aBh5b5Gr F3xCKXpqYjUqc3BbjR0dndJ/FNT0vAJGmKvVdyNaobXxOxKyCGmVdohYrdWDvjJw UX79xOLMtg+FsUZerJDkIRudLBtZ6KwPqJbSZxUyutbtIJpSDjptrqyDnujYqGjT SpCn6+4mhxf7lMP84rXAVcSK5gfxBHKZ -----END CERTIFICATE-----Generated at Sat Nov 23 00:49:38 2024 by rpki-client on console-fra.rpki-client.org