$ rpki-client -vvf rpki.apnic.net/member_repository/A91DC524/B5C2B7342C5711EEBB188629C4F9AE02/x52oqmnxJno4UemSoGnAL1DoArw.mft File: x52oqmnxJno4UemSoGnAL1DoArw.mft (raw, json) Hash identifier: J8xNcG7zpWMFxUcotpEp2gXn2KXvKA21QR8N4M5XORE= Subject key identifier: 54:18:AB:AA:79:46:74:E2:F6:32:BB:67:45:2F:79:45:BB:AC:6F:CC Authority key identifier: C7:9D:A8:AA:69:F1:26:7A:38:51:E9:92:A0:69:C0:2F:50:E8:02:BC Certificate issuer: /CN=A91DC524/serialNumber=C79DA8AA69F1267A3851E992A069C02F50E802BC Certificate serial: FE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/x52oqmnxJno4UemSoGnAL1DoArw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DC524/B5C2B7342C5711EEBB188629C4F9AE02/x52oqmnxJno4UemSoGnAL1DoArw.mft Manifest number: FB Signing time: Sat 23 Nov 2024 03:19:22 +0000 Manifest this update: Sat 23 Nov 2024 03:19:21 +0000 Manifest next update: Sat 30 Nov 2024 03:19:21 +0000 Files and hashes: 1: x52oqmnxJno4UemSoGnAL1DoArw.crl (hash: NJmgOPCt7TzU7VO8c6x20KlpS4+rpojaksEQJHaeyKM=) 2: 0D705F8A2C5911EEBB4C2C4BC4F9AE02.roa (hash: ljYZPmOEJ2gVmqt+FLp/8ARO8gytp4GPuoxvLwL03ls=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DC524/B5C2B7342C5711EEBB188629C4F9AE02/x52oqmnxJno4UemSoGnAL1DoArw.crl rsync://rpki.apnic.net/member_repository/A91DC524/B5C2B7342C5711EEBB188629C4F9AE02/x52oqmnxJno4UemSoGnAL1DoArw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/x52oqmnxJno4UemSoGnAL1DoArw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 254 (0xfe) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DC524/serialNumber=C79DA8AA69F1267A3851E992A069C02F50E802BC Validity Not Before: Nov 23 03:19:21 2024 GMT Not After : Nov 30 03:19:21 2024 GMT Subject: CN=674149ba-e05c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:1d:a1:50:68:8a:d9:e2:e4:17:d0:a1:da:29: ff:bb:3c:c6:7a:8f:47:45:89:32:eb:2d:6b:fa:cb: 95:6b:64:77:7e:2b:dd:05:27:33:8e:e3:cf:6f:fb: 6e:30:80:15:7d:de:c7:e1:ba:46:da:a5:09:be:b5: 22:84:b3:83:2e:11:3e:82:64:07:ff:e9:2c:38:34: ec:5f:3c:d2:0a:32:aa:1f:a1:49:82:1a:fc:ff:38: 4d:b3:6d:7a:53:54:7e:ea:4f:32:06:5e:a5:69:15: 8d:8a:bf:f2:b0:d1:eb:3a:e5:07:da:0b:ac:fe:13: 62:22:4f:f7:46:30:0b:49:4e:31:b2:42:4b:93:3b: 1d:43:06:e8:ac:51:51:da:15:a7:8b:5a:7b:32:50: 87:40:b0:43:c1:15:d9:6d:cb:14:e9:f1:d2:1b:cb: 1c:77:22:f7:78:d1:6a:08:d7:f7:d1:33:cf:64:cf: 89:d9:38:ff:83:6f:5b:6f:7e:f2:2d:30:19:ac:1d: ef:30:89:09:f9:4e:df:d9:14:d0:23:df:2c:a7:9f: c0:13:aa:37:e7:4f:68:cd:02:ba:84:59:89:30:55: 4b:e6:08:cd:49:c0:2e:67:1e:58:cc:a2:58:bd:a1: 95:49:a3:b5:de:d4:82:d0:ae:e9:4b:68:19:b4:f3: da:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:18:AB:AA:79:46:74:E2:F6:32:BB:67:45:2F:79:45:BB:AC:6F:CC X509v3 Authority Key Identifier: keyid:C7:9D:A8:AA:69:F1:26:7A:38:51:E9:92:A0:69:C0:2F:50:E8:02:BC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DC524/B5C2B7342C5711EEBB188629C4F9AE02/x52oqmnxJno4UemSoGnAL1DoArw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/x52oqmnxJno4UemSoGnAL1DoArw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DC524/B5C2B7342C5711EEBB188629C4F9AE02/x52oqmnxJno4UemSoGnAL1DoArw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 12:8d:34:8a:2b:d1:5c:30:d8:46:1c:46:cd:90:98:3d:d3:bf: 7c:ba:79:2a:90:14:02:2f:c7:07:df:24:c3:59:89:fe:0f:7b: ff:e3:8d:14:1b:05:8a:4d:14:7b:d7:18:5e:07:df:2a:f0:ac: ea:1c:ce:c9:4d:bb:5a:bc:a2:87:97:f5:57:ea:f9:c6:b4:99: 13:7c:37:0f:22:cb:9e:aa:9f:a1:57:a2:77:0c:83:ca:66:d5: 24:0c:8f:4a:51:9e:e8:0c:6f:83:99:99:86:20:a5:23:52:c0: fb:af:25:1a:cd:8c:b6:66:d4:38:33:83:81:c3:7d:f5:9c:44: d3:55:1e:a3:80:f6:45:de:e6:eb:dd:52:fb:54:e3:7a:b6:96: 95:28:2d:76:82:be:d2:c1:dc:b0:54:63:f8:28:a2:ae:de:b9: ac:aa:fb:19:5c:17:04:b2:64:67:6d:1e:ba:b8:ea:74:9b:68: 81:b3:4f:2b:21:61:1d:9c:4b:6f:7f:56:87:74:b0:0c:57:09: 67:e2:e6:96:28:b5:42:28:c5:00:81:14:cf:dc:5f:df:dc:9d: e4:90:23:b7:30:1e:7d:16:c3:56:7f:fb:ad:7c:29:46:19:39: 60:d8:6b:57:26:ec:44:03:e5:1e:41:92:c9:17:d0:ab:9b:1a: 8a:04:97:98 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAP4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REM1MjQxMTAvBgNVBAUTKEM3OURBOEFBNjlGMTI2N0EzODUxRTk5MkEwNjlDMDJG NTBFODAyQkMwHhcNMjQxMTIzMDMxOTIxWhcNMjQxMTMwMDMxOTIxWjAYMRYwFAYD VQQDEw02NzQxNDliYS1lMDVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0h2hUGiK2eLkF9Ch2in/uzzGeo9HRYky6y1r+suVa2R3fivdBSczjuPPb/tu MIAVfd7H4bpG2qUJvrUihLODLhE+gmQH/+ksODTsXzzSCjKqH6FJghr8/zhNs216 U1R+6k8yBl6laRWNir/ysNHrOuUH2gus/hNiIk/3RjALSU4xskJLkzsdQwborFFR 2hWni1p7MlCHQLBDwRXZbcsU6fHSG8scdyL3eNFqCNf30TPPZM+J2Tj/g29bb37y LTAZrB3vMIkJ+U7f2RTQI98sp5/AE6o3509ozQK6hFmJMFVL5gjNScAuZx5YzKJY vaGVSaO13tSC0K7pS2gZtPPabwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFQYq6p5 RnTi9jK7Z0UveUW7rG/MMB8GA1UdIwQYMBaAFMedqKpp8SZ6OFHpkqBpwC9Q6AK8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQzUyNC9CNUMyQjczNDJD NTcxMUVFQkIxODg2MjlDNEY5QUUwMi94NTJvcW1ueEpubzRVZW1Tb0duQUwxRG9B cncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3g1Mm9xbW54Sm5vNFVlbVNvR25BTDFEb0Fydy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QzUyNC9CNUMyQjczNDJDNTcxMUVFQkIxODg2MjlDNEY5QUUwMi94NTJvcW1ueEpu bzRVZW1Tb0duQUwxRG9BcncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQASjTSKK9FcMNhGHEbNkJg90798unkqkBQCL8cH3yTDWYn+D3v/440U GwWKTRR71xheB98q8KzqHM7JTbtavKKHl/VX6vnGtJkTfDcPIsueqp+hV6J3DIPK ZtUkDI9KUZ7oDG+DmZmGIKUjUsD7ryUazYy2ZtQ4M4OBw331nETTVR6jgPZF3ubr 3VL7VON6tpaVKC12gr7SwdywVGP4KKKu3rmsqvsZXBcEsmRnbR66uOp0m2iBs08r IWEdnEtvf1aHdLAMVwln4uaWKLVCKMUAgRTP3F/f3J3kkCO3MB59FsNWf/utfClG GTlg2GtXJuxEA+UeQZLJF9CrmxqKBJeY -----END CERTIFICATE-----Generated at Sat Nov 23 05:02:59 2024 by rpki-client on console-fra.rpki-client.org