$ rpki-client -vvf rpki.apnic.net/member_repository/A91DF937/A447BFDC553011E6A3642745C4F9AE02/xJ5Rg-ovxJuKg8kgUrziqLZXbHA.mft File: xJ5Rg-ovxJuKg8kgUrziqLZXbHA.mft (raw, json) Hash identifier: NCPYpNdEy10YPVbLpj/VU1rA68fmp2YQllsUmsxXU3A= Subject key identifier: 95:64:BF:3C:60:B4:3A:0D:D3:BC:C0:69:9E:E2:4B:1A:73:D5:93:49 Authority key identifier: C4:9E:51:83:EA:2F:C4:9B:8A:83:C9:20:52:BC:E2:A8:B6:57:6C:70 Certificate issuer: /CN=A91DF937/serialNumber=C49E5183EA2FC49B8A83C92052BCE2A8B6576C70 Certificate serial: 1EBD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xJ5Rg-ovxJuKg8kgUrziqLZXbHA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DF937/A447BFDC553011E6A3642745C4F9AE02/xJ5Rg-ovxJuKg8kgUrziqLZXbHA.mft Manifest number: 1EB1 Signing time: Fri 22 Nov 2024 16:02:47 +0000 Manifest this update: Fri 22 Nov 2024 16:02:46 +0000 Manifest next update: Fri 29 Nov 2024 16:02:46 +0000 Files and hashes: 1: xJ5Rg-ovxJuKg8kgUrziqLZXbHA.crl (hash: n4ew3vcQ3KlhYHSSuoKYeIfYVDzzL0ZBtQpUpLb9Sis=) 2: E723101E553D11E7B552CE31C4F9AE02.roa (hash: GAb6VP25Sih6kuMJl/07aQz0S9qS9uziUSigVGvFQjs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DF937/A447BFDC553011E6A3642745C4F9AE02/xJ5Rg-ovxJuKg8kgUrziqLZXbHA.crl rsync://rpki.apnic.net/member_repository/A91DF937/A447BFDC553011E6A3642745C4F9AE02/xJ5Rg-ovxJuKg8kgUrziqLZXbHA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xJ5Rg-ovxJuKg8kgUrziqLZXbHA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 16:02:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7869 (0x1ebd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DF937/serialNumber=C49E5183EA2FC49B8A83C92052BCE2A8B6576C70 Validity Not Before: Nov 22 16:02:46 2024 GMT Not After : Nov 29 16:02:46 2024 GMT Subject: CN=6740ab27-2eb7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:84:97:f1:0b:52:d3:98:a3:5a:ef:87:c2:70: b4:58:06:96:56:ac:5e:af:16:aa:00:22:0b:a6:59: 84:39:38:b6:90:1a:bb:e8:cd:aa:b4:04:ef:23:f9: 36:8c:31:ca:f2:6b:c0:bb:cd:6d:92:16:4f:6b:fb: 95:82:1f:5c:2b:44:47:ac:bf:f0:b0:df:2a:d7:ed: 0b:54:cd:54:dd:fb:1d:49:4b:85:68:ce:b3:4d:21: 16:5f:7d:6d:2f:f6:d9:7b:5c:87:87:23:82:ef:ed: 77:81:e7:a2:1d:1c:14:bb:b4:b2:c3:8b:49:b1:5b: 06:2a:5d:7a:93:e8:a5:c0:60:c7:d7:39:cd:f5:c8: 4b:21:b1:23:e1:3f:ff:d2:d3:57:af:82:66:88:80: f5:2c:ac:c7:26:b2:3c:29:ab:03:ae:8c:e6:60:7f: b5:2c:86:9c:1d:3a:7e:9a:3c:f1:4b:17:f1:94:5c: ae:6c:08:2d:dc:8f:81:98:ac:80:2a:4d:17:be:d1: 89:9b:7f:ab:95:88:1e:cc:ee:85:6a:14:c2:8d:e2: ec:8a:2e:a1:da:3f:7a:9b:8a:a4:83:26:c7:d9:2a: 45:e1:a8:2d:03:bf:f9:cd:60:23:29:6a:9b:d8:cf: 74:82:e4:63:ef:d8:e1:1e:5e:39:ee:94:83:71:81: 4c:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:64:BF:3C:60:B4:3A:0D:D3:BC:C0:69:9E:E2:4B:1A:73:D5:93:49 X509v3 Authority Key Identifier: keyid:C4:9E:51:83:EA:2F:C4:9B:8A:83:C9:20:52:BC:E2:A8:B6:57:6C:70 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DF937/A447BFDC553011E6A3642745C4F9AE02/xJ5Rg-ovxJuKg8kgUrziqLZXbHA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xJ5Rg-ovxJuKg8kgUrziqLZXbHA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DF937/A447BFDC553011E6A3642745C4F9AE02/xJ5Rg-ovxJuKg8kgUrziqLZXbHA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8a:1d:ce:f8:5b:33:b8:5c:85:52:6b:41:8d:fc:d8:74:d8:db: 28:ca:f4:6d:04:11:3d:bb:75:ee:90:ba:dc:1d:95:46:ff:e0: 5f:04:23:d0:28:e1:26:57:89:60:15:de:e1:af:a7:a1:51:47: 6f:ed:f5:ea:b7:75:a7:26:14:48:33:11:24:32:00:90:04:f3: af:02:7b:ea:38:da:0f:b9:92:45:b4:b7:3f:ca:fd:5b:a5:2d: 45:56:ba:36:b7:b1:c5:94:42:5f:c1:00:b5:66:45:ef:67:fb: 0e:65:13:c2:ad:38:d8:70:0d:a3:0f:9f:04:6b:c6:0b:53:e8: c4:45:43:56:28:57:44:b6:9b:6e:80:8b:5e:77:62:31:23:01: d3:23:00:6c:4e:a8:f0:73:db:79:ba:e0:d9:48:25:9f:93:4c: 77:f9:e8:3f:70:70:89:a4:ef:7f:a6:f4:d4:24:5d:73:a8:4c: 24:82:70:84:bb:e5:29:f0:16:18:64:55:d0:62:31:c8:63:8c: 72:f6:cf:48:87:e2:39:be:3b:9e:0b:92:98:33:78:98:51:a2: a2:d6:00:8f:b0:ac:b7:49:37:60:f9:25:54:bb:c0:fb:68:db: b1:bb:de:6e:cc:f3:db:b7:b5:5e:89:ea:a8:4f:2c:ef:41:f4: 70:90:ca:b8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICHr0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REY5MzcxMTAvBgNVBAUTKEM0OUU1MTgzRUEyRkM0OUI4QTgzQzkyMDUyQkNFMkE4 QjY1NzZDNzAwHhcNMjQxMTIyMTYwMjQ2WhcNMjQxMTI5MTYwMjQ2WjAYMRYwFAYD VQQDEw02NzQwYWIyNy0yZWI3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6ISX8QtS05ijWu+HwnC0WAaWVqxerxaqACILplmEOTi2kBq76M2qtATvI/k2 jDHK8mvAu81tkhZPa/uVgh9cK0RHrL/wsN8q1+0LVM1U3fsdSUuFaM6zTSEWX31t L/bZe1yHhyOC7+13geeiHRwUu7Syw4tJsVsGKl16k+ilwGDH1znN9chLIbEj4T// 0tNXr4JmiID1LKzHJrI8KasDrozmYH+1LIacHTp+mjzxSxfxlFyubAgt3I+BmKyA Kk0XvtGJm3+rlYgezO6FahTCjeLsii6h2j96m4qkgybH2SpF4agtA7/5zWAjKWqb 2M90guRj79jhHl457pSDcYFMrQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJVkvzxg tDoN07zAaZ7iSxpz1ZNJMB8GA1UdIwQYMBaAFMSeUYPqL8SbioPJIFK84qi2V2xw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERjkzNy9BNDQ3QkZEQzU1 MzAxMUU2QTM2NDI3NDVDNEY5QUUwMi94SjVSZy1vdnhKdUtnOGtnVXJ6aXFMWlhi SEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hKNVJnLW92eEp1S2c4a2dVcnppcUxaWGJIQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RjkzNy9BNDQ3QkZEQzU1MzAxMUU2QTM2NDI3NDVDNEY5QUUwMi94SjVSZy1vdnhK dUtnOGtnVXJ6aXFMWlhiSEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCKHc74WzO4XIVSa0GN/Nh02NsoyvRtBBE9u3XukLrcHZVG/+BfBCPQ KOEmV4lgFd7hr6ehUUdv7fXqt3WnJhRIMxEkMgCQBPOvAnvqONoPuZJFtLc/yv1b pS1FVro2t7HFlEJfwQC1ZkXvZ/sOZRPCrTjYcA2jD58Ea8YLU+jERUNWKFdEtptu gIted2IxIwHTIwBsTqjwc9t5uuDZSCWfk0x3+eg/cHCJpO9/pvTUJF1zqEwkgnCE u+Up8BYYZFXQYjHIY4xy9s9Ih+I5vjueC5KYM3iYUaKi1gCPsKy3STdg+SVUu8D7 aNuxu95uzPPbt7VeieqoTyzvQfRwkMq4 -----END CERTIFICATE-----Generated at Fri Nov 22 19:50:19 2024 by rpki-client on console-ams.rpki-client.org