$ rpki-client -vvf rpki.apnic.net/member_repository/A91D28EB/77148AC6EB0911EB9C759180C4F9AE02/XDZbFzHKfOfbgd1XEwvU1kMBm14.mft File: XDZbFzHKfOfbgd1XEwvU1kMBm14.mft (raw, json) Hash identifier: kVlLCAbPBQe2l7JSAi3RM9q+OKN+dVrBo15OncmFr8Y= Subject key identifier: 7D:74:AA:7F:1A:98:3D:0A:3C:99:22:2C:83:EA:88:65:5D:16:CE:3C Authority key identifier: 5C:36:5B:17:31:CA:7C:E7:DB:81:DD:57:13:0B:D4:D6:43:01:9B:5E Certificate issuer: /CN=A91D28EB/serialNumber=5C365B1731CA7CE7DB81DD57130BD4D643019B5E Certificate serial: 0502 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XDZbFzHKfOfbgd1XEwvU1kMBm14.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D28EB/77148AC6EB0911EB9C759180C4F9AE02/XDZbFzHKfOfbgd1XEwvU1kMBm14.mft Manifest number: 04FB Signing time: Fri 22 Nov 2024 23:14:31 +0000 Manifest this update: Fri 22 Nov 2024 23:14:30 +0000 Manifest next update: Fri 29 Nov 2024 23:14:30 +0000 Files and hashes: 1: XDZbFzHKfOfbgd1XEwvU1kMBm14.crl (hash: sYhLbu357dB8ExPz/z73VNYJUD0HLoejUGkQt8mvpx0=) 2: 8E90AA02EB0B11EBA0B6DD84C4F9AE02.roa (hash: QJH4AI00yRGEUDIXxzK7vr00Zj8U+JgNqRc/dr5Ast0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D28EB/77148AC6EB0911EB9C759180C4F9AE02/XDZbFzHKfOfbgd1XEwvU1kMBm14.crl rsync://rpki.apnic.net/member_repository/A91D28EB/77148AC6EB0911EB9C759180C4F9AE02/XDZbFzHKfOfbgd1XEwvU1kMBm14.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XDZbFzHKfOfbgd1XEwvU1kMBm14.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1282 (0x502) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D28EB/serialNumber=5C365B1731CA7CE7DB81DD57130BD4D643019B5E Validity Not Before: Nov 22 23:14:30 2024 GMT Not After : Nov 29 23:14:30 2024 GMT Subject: CN=67411057-5605 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:f5:91:93:d5:f9:e2:0a:c7:b7:21:38:4f:2b: 15:1d:e8:3c:aa:f2:e3:18:ca:28:20:e7:b0:6d:e1: f8:5a:20:09:c1:ea:f8:a0:f0:a1:ea:32:cb:53:f0: 71:30:cb:5e:04:5b:2e:f2:b7:55:6e:80:7e:ed:f8: e1:78:31:f2:82:bb:ff:8c:b8:5a:ec:08:59:91:52: aa:ad:e9:51:63:bd:68:2c:51:92:d7:f3:60:c1:72: 60:31:8b:7e:80:b4:5a:79:b1:37:73:f4:b0:21:f8: cb:d8:c2:30:f1:d0:c3:66:61:01:23:5b:cf:a4:92: 19:cc:b3:ae:f7:7b:7d:5f:8f:60:8c:b5:7c:a4:75: b1:eb:40:a0:75:1b:86:fb:05:44:ac:11:28:6d:88: 2e:70:6f:67:40:29:28:a9:3a:85:b2:f0:70:3d:02: 25:f0:97:a2:35:f0:51:e5:c4:98:72:30:ed:f5:84: fc:9a:5e:27:f4:07:0d:f1:85:2a:ff:5b:58:d9:00: 5e:97:56:69:39:06:fd:6f:0d:17:be:dc:cc:8e:5b: 0d:1a:82:27:71:8e:48:cb:87:77:99:af:b4:4c:f0: 16:cc:00:c5:65:ab:20:0e:46:02:0f:ef:84:22:ae: 55:f2:67:f2:cc:73:2f:59:d3:98:c5:30:fa:99:7d: ff:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:74:AA:7F:1A:98:3D:0A:3C:99:22:2C:83:EA:88:65:5D:16:CE:3C X509v3 Authority Key Identifier: keyid:5C:36:5B:17:31:CA:7C:E7:DB:81:DD:57:13:0B:D4:D6:43:01:9B:5E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D28EB/77148AC6EB0911EB9C759180C4F9AE02/XDZbFzHKfOfbgd1XEwvU1kMBm14.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XDZbFzHKfOfbgd1XEwvU1kMBm14.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D28EB/77148AC6EB0911EB9C759180C4F9AE02/XDZbFzHKfOfbgd1XEwvU1kMBm14.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0d:41:9f:8a:6f:1d:4d:b0:b4:17:e1:24:12:e4:ae:b0:07:3a: 1d:6b:c5:7a:34:55:ad:fb:74:6f:6a:9a:4f:6c:40:2c:5b:68: 7b:8b:4f:c0:e3:36:8d:16:66:23:d1:00:f9:30:f5:92:08:e6: 34:7a:59:3d:b8:3d:0c:84:80:46:a7:51:9b:67:54:06:5d:a1: a3:b5:e9:47:3b:62:20:37:2f:df:3a:2c:8b:57:17:1d:cf:89: cf:fe:63:66:9f:50:04:84:8f:42:85:db:21:ea:60:b9:26:69: 7c:3b:77:43:9d:97:f0:c0:db:3e:a4:77:74:d3:fa:79:f9:21: fd:04:83:a2:8c:69:55:bf:99:e3:83:72:77:51:a3:f4:2c:d9: dc:ad:5f:eb:47:97:cf:71:c7:55:a7:94:e6:f2:14:44:1c:51: 28:56:f7:98:ec:18:fd:c5:14:27:8b:1b:b9:51:34:2e:28:42: f1:25:0a:0f:72:93:55:cd:79:56:1a:1e:55:9b:81:a9:a4:80: 97:ad:db:76:30:cd:bd:20:f3:dd:22:c0:c4:a3:f6:82:e0:cb: cf:f8:75:a0:fb:52:2d:66:27:cc:23:43:a3:dd:fa:7c:2e:0b: 8b:f5:69:93:a3:d9:ef:f6:1f:8a:5e:f0:5f:d0:f4:41:37:2e: 97:42:f4:57 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBQIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDI4RUIxMTAvBgNVBAUTKDVDMzY1QjE3MzFDQTdDRTdEQjgxREQ1NzEzMEJENEQ2 NDMwMTlCNUUwHhcNMjQxMTIyMjMxNDMwWhcNMjQxMTI5MjMxNDMwWjAYMRYwFAYD VQQDEw02NzQxMTA1Ny01NjA1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsvWRk9X54grHtyE4TysVHeg8qvLjGMooIOewbeH4WiAJwer4oPCh6jLLU/Bx MMteBFsu8rdVboB+7fjheDHygrv/jLha7AhZkVKqrelRY71oLFGS1/NgwXJgMYt+ gLRaebE3c/SwIfjL2MIw8dDDZmEBI1vPpJIZzLOu93t9X49gjLV8pHWx60CgdRuG +wVErBEobYgucG9nQCkoqTqFsvBwPQIl8JeiNfBR5cSYcjDt9YT8ml4n9AcN8YUq /1tY2QBel1ZpOQb9bw0XvtzMjlsNGoIncY5Iy4d3ma+0TPAWzADFZasgDkYCD++E Iq5V8mfyzHMvWdOYxTD6mX3/rQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFH10qn8a mD0KPJkiLIPqiGVdFs48MB8GA1UdIwQYMBaAFFw2Wxcxynzn24HdVxML1NZDAZte MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMjhFQi83NzE0OEFDNkVC MDkxMUVCOUM3NTkxODBDNEY5QUUwMi9YRFpiRnpIS2ZPZmJnZDFYRXd2VTFrTUJt MTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hEWmJGekhLZk9mYmdkMVhFd3ZVMWtNQm0xNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MjhFQi83NzE0OEFDNkVCMDkxMUVCOUM3NTkxODBDNEY5QUUwMi9YRFpiRnpIS2ZP ZmJnZDFYRXd2VTFrTUJtMTQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQANQZ+Kbx1NsLQX4SQS5K6wBzoda8V6NFWt+3RvappPbEAsW2h7i0/A 4zaNFmYj0QD5MPWSCOY0elk9uD0MhIBGp1GbZ1QGXaGjtelHO2IgNy/fOiyLVxcd z4nP/mNmn1AEhI9Chdsh6mC5Jml8O3dDnZfwwNs+pHd00/p5+SH9BIOijGlVv5nj g3J3UaP0LNncrV/rR5fPccdVp5Tm8hREHFEoVveY7Bj9xRQnixu5UTQuKELxJQoP cpNVzXlWGh5Vm4GppICXrdt2MM29IPPdIsDEo/aC4MvP+HWg+1ItZifMI0Oj3fp8 LguL9WmTo9nv9h+KXvBf0PRBNy6XQvRX -----END CERTIFICATE-----Generated at Sat Nov 23 00:08:50 2024 by rpki-client on console-ams.rpki-client.org