$ rpki-client -vvf rpki.apnic.net/member_repository/A91E3377/60B77DAEEF8E11EBB0DA4E59C4F9AE02/x3wTCfShUw6jlUFFKIFfnHZ8UVs.mft File: x3wTCfShUw6jlUFFKIFfnHZ8UVs.mft (raw, json) Hash identifier: sz8itIV5RJJvB6cJ7ZHC4YiNzBDV4TNITzVPdahVQD4= Subject key identifier: CB:89:68:EA:5F:67:A5:56:F4:05:1B:16:94:98:A4:15:C6:84:1A:CF Authority key identifier: C7:7C:13:09:F4:A1:53:0E:A3:95:41:45:28:81:5F:9C:76:7C:51:5B Certificate issuer: /CN=A91E3377/serialNumber=C77C1309F4A1530EA395414528815F9C767C515B Certificate serial: 04EF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/x3wTCfShUw6jlUFFKIFfnHZ8UVs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E3377/60B77DAEEF8E11EBB0DA4E59C4F9AE02/x3wTCfShUw6jlUFFKIFfnHZ8UVs.mft Manifest number: 04EB Signing time: Fri 22 Nov 2024 23:16:15 +0000 Manifest this update: Fri 22 Nov 2024 23:16:15 +0000 Manifest next update: Fri 29 Nov 2024 23:16:15 +0000 Files and hashes: 1: x3wTCfShUw6jlUFFKIFfnHZ8UVs.crl (hash: bZwtsEBZbB7GzS08OMB7S0VtKP7T+paw+7yo9K1ViJQ=) 2: 4756B350EF9011EBAAE0375AC4F9AE02.roa (hash: l/5p1WINKz3TNzRuWnRaS5/CleEw3KzqgOzzW2+y1jw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E3377/60B77DAEEF8E11EBB0DA4E59C4F9AE02/x3wTCfShUw6jlUFFKIFfnHZ8UVs.crl rsync://rpki.apnic.net/member_repository/A91E3377/60B77DAEEF8E11EBB0DA4E59C4F9AE02/x3wTCfShUw6jlUFFKIFfnHZ8UVs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/x3wTCfShUw6jlUFFKIFfnHZ8UVs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1263 (0x4ef) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E3377/serialNumber=C77C1309F4A1530EA395414528815F9C767C515B Validity Not Before: Nov 22 23:16:15 2024 GMT Not After : Nov 29 23:16:15 2024 GMT Subject: CN=674110bf-c7c3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:ea:8e:76:e9:cf:6c:48:f1:9b:00:02:fa:75: 9a:28:68:50:52:d1:1d:a1:92:11:e9:76:c2:fa:4b: 9d:09:96:31:74:a5:cf:24:a3:ed:7c:7f:a5:0d:71: bf:a4:a5:35:da:e2:3b:14:95:dc:fd:c1:13:a3:69: b8:cb:ba:3c:db:22:c5:1e:be:f0:a5:a8:7b:9d:f0: 34:9f:2f:73:da:c1:83:0f:d1:f5:91:c7:78:a0:03: ab:5a:6a:6f:13:2e:aa:1d:3f:55:49:4b:6e:b3:4f: 72:35:3a:11:87:82:2d:88:14:ca:48:1a:3b:ec:27: a0:7d:b6:5b:75:b1:63:09:14:66:df:a8:3a:b1:72: 06:0c:59:c7:b1:32:78:02:8e:2f:bb:b9:77:27:7a: 40:90:7e:0a:07:37:3c:2e:42:db:22:81:24:d7:86: f2:2e:42:e6:f7:80:bc:b4:6c:b7:18:10:ba:db:ee: e2:6a:05:57:0e:76:dc:a5:33:cc:f7:e7:82:18:9f: a6:5e:01:79:bd:83:24:98:6f:00:31:b8:c9:c1:f8: 1d:67:cd:b2:df:29:13:00:69:16:34:f4:3e:55:0d: d5:02:07:ae:c4:bb:49:a0:2a:b5:88:e0:aa:97:c0: f8:a3:d4:0b:47:e7:f4:05:ba:9d:77:f9:15:90:8b: 99:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:89:68:EA:5F:67:A5:56:F4:05:1B:16:94:98:A4:15:C6:84:1A:CF X509v3 Authority Key Identifier: keyid:C7:7C:13:09:F4:A1:53:0E:A3:95:41:45:28:81:5F:9C:76:7C:51:5B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E3377/60B77DAEEF8E11EBB0DA4E59C4F9AE02/x3wTCfShUw6jlUFFKIFfnHZ8UVs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/x3wTCfShUw6jlUFFKIFfnHZ8UVs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E3377/60B77DAEEF8E11EBB0DA4E59C4F9AE02/x3wTCfShUw6jlUFFKIFfnHZ8UVs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 28:74:e3:8d:6c:a1:d3:41:c4:a1:17:81:c7:b8:88:86:8a:56: 75:53:24:c1:ae:41:a6:45:d5:37:5b:e5:ac:95:b4:73:d0:38: ac:0d:ae:90:15:ba:26:2b:03:8f:af:c4:17:07:fc:bb:c0:da: 94:92:ed:c3:20:f6:d1:0f:f2:fc:c6:31:29:bb:f9:b8:9f:41: 64:fe:9f:88:dd:b8:2f:69:c9:cd:fe:e7:e5:f5:f1:fc:c9:04: 08:45:1b:2b:fb:f5:49:3d:aa:08:ab:81:81:01:6c:36:82:77: b4:31:f5:3e:0b:ee:94:75:4f:7c:69:28:92:a2:ee:0f:24:9d: 4b:bf:83:0f:5f:3d:5d:9c:3e:0f:65:9c:ab:ef:84:a2:34:c2: c3:36:d4:a1:dd:d6:be:4f:fa:cf:3d:dd:e5:43:1f:22:dc:82: 14:22:c1:a6:00:9f:7e:a0:a6:71:09:95:ba:1b:b8:84:99:5e: f2:82:1c:55:46:45:0a:72:ad:70:ed:a5:04:f8:07:83:b2:58: 85:0f:45:42:b1:09:43:42:78:2d:84:dc:9e:96:0f:e4:b0:d5: 32:4e:96:8c:ec:5d:5e:92:ae:c1:ab:09:1c:eb:2c:7a:a1:9c: 4f:04:8a:4f:f8:c9:20:e8:e3:1a:70:4f:2b:8c:46:45:c4:cc: 08:4a:e2:18 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBO8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTMzNzcxMTAvBgNVBAUTKEM3N0MxMzA5RjRBMTUzMEVBMzk1NDE0NTI4ODE1RjlD NzY3QzUxNUIwHhcNMjQxMTIyMjMxNjE1WhcNMjQxMTI5MjMxNjE1WjAYMRYwFAYD VQQDEw02NzQxMTBiZi1jN2MzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0uqOdunPbEjxmwAC+nWaKGhQUtEdoZIR6XbC+kudCZYxdKXPJKPtfH+lDXG/ pKU12uI7FJXc/cETo2m4y7o82yLFHr7wpah7nfA0ny9z2sGDD9H1kcd4oAOrWmpv Ey6qHT9VSUtus09yNToRh4ItiBTKSBo77CegfbZbdbFjCRRm36g6sXIGDFnHsTJ4 Ao4vu7l3J3pAkH4KBzc8LkLbIoEk14byLkLm94C8tGy3GBC62+7iagVXDnbcpTPM 9+eCGJ+mXgF5vYMkmG8AMbjJwfgdZ82y3ykTAGkWNPQ+VQ3VAgeuxLtJoCq1iOCq l8D4o9QLR+f0Bbqdd/kVkIuZdQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMuJaOpf Z6VW9AUbFpSYpBXGhBrPMB8GA1UdIwQYMBaAFMd8Ewn0oVMOo5VBRSiBX5x2fFFb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMzM3Ny82MEI3N0RBRUVG OEUxMUVCQjBEQTRFNTlDNEY5QUUwMi94M3dUQ2ZTaFV3NmpsVUZGS0lGZm5IWjhV VnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3gzd1RDZlNoVXc2amxVRkZLSUZmbkhaOFVWcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MzM3Ny82MEI3N0RBRUVGOEUxMUVCQjBEQTRFNTlDNEY5QUUwMi94M3dUQ2ZTaFV3 NmpsVUZGS0lGZm5IWjhVVnMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAodOONbKHTQcShF4HHuIiGilZ1UyTBrkGmRdU3W+WslbRz0DisDa6Q FbomKwOPr8QXB/y7wNqUku3DIPbRD/L8xjEpu/m4n0Fk/p+I3bgvacnN/ufl9fH8 yQQIRRsr+/VJPaoIq4GBAWw2gne0MfU+C+6UdU98aSiSou4PJJ1Lv4MPXz1dnD4P ZZyr74SiNMLDNtSh3da+T/rPPd3lQx8i3IIUIsGmAJ9+oKZxCZW6G7iEmV7yghxV RkUKcq1w7aUE+AeDsliFD0VCsQlDQngthNyelg/ksNUyTpaM7F1ekq7Bqwkc6yx6 oZxPBIpP+Mkg6OMacE8rjEZFxMwISuIY -----END CERTIFICATE-----Generated at Sat Nov 23 00:49:38 2024 by rpki-client on console-fra.rpki-client.org