$ rpki-client -vvf rpki.apnic.net/member_repository/A91E3BF2/509096A8F6C311EC833AEF39C4F9AE02/xHGlbulPBbQ3wJ7uD0QgP6RZJzY.mft File: xHGlbulPBbQ3wJ7uD0QgP6RZJzY.mft (raw, json) Hash identifier: IKcnbCtd20x3orGV/74Z26hok5lO9vuRf901H1EilAM= Subject key identifier: EF:73:77:0F:F6:BB:AF:7A:46:67:C3:48:4D:AF:85:14:32:3A:C4:0F Authority key identifier: C4:71:A5:6E:E9:4F:05:B4:37:C0:9E:EE:0F:44:20:3F:A4:59:27:36 Certificate issuer: /CN=A91E3BF2/serialNumber=C471A56EE94F05B437C09EEE0F44203FA4592736 Certificate serial: 0254 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xHGlbulPBbQ3wJ7uD0QgP6RZJzY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E3BF2/509096A8F6C311EC833AEF39C4F9AE02/xHGlbulPBbQ3wJ7uD0QgP6RZJzY.mft Manifest number: 024F Signing time: Sat 23 Nov 2024 01:17:28 +0000 Manifest this update: Sat 23 Nov 2024 01:17:27 +0000 Manifest next update: Sat 30 Nov 2024 01:17:27 +0000 Files and hashes: 1: xHGlbulPBbQ3wJ7uD0QgP6RZJzY.crl (hash: kkg1DO5t8yF0bP6nC13qpmSMrzqKSBw9ddpG42hb2qw=) 2: 6B7C33C8F6C811ECBDF7DD40C4F9AE02.roa (hash: jZodcyxZ4nUw78pUbwh5qrFajwuNLHaye10ReDwTgoQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E3BF2/509096A8F6C311EC833AEF39C4F9AE02/xHGlbulPBbQ3wJ7uD0QgP6RZJzY.crl rsync://rpki.apnic.net/member_repository/A91E3BF2/509096A8F6C311EC833AEF39C4F9AE02/xHGlbulPBbQ3wJ7uD0QgP6RZJzY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xHGlbulPBbQ3wJ7uD0QgP6RZJzY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 596 (0x254) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E3BF2/serialNumber=C471A56EE94F05B437C09EEE0F44203FA4592736 Validity Not Before: Nov 23 01:17:27 2024 GMT Not After : Nov 30 01:17:27 2024 GMT Subject: CN=67412d27-c6a1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:f5:55:be:3d:7f:83:2d:cd:88:27:71:70:18: 8a:53:28:35:bc:42:4e:ee:fe:79:75:3e:e7:a0:75: 9a:8c:8a:83:3b:7c:6c:5e:05:73:3a:e0:0c:e6:14: 30:57:96:97:a8:3b:b3:a7:17:12:63:9b:9e:e0:c4: 59:5a:ce:90:39:fe:26:a7:a7:4f:3e:ae:9c:cd:05: eb:66:ae:d7:5f:7c:10:74:c3:1d:7f:6b:09:1e:b4: 34:ad:51:87:5b:c9:7e:14:12:65:af:e8:33:9c:bc: a7:13:69:f2:5a:fb:f8:39:c1:32:55:42:bb:78:19: 41:14:1d:08:93:27:93:34:64:34:ca:19:1e:ad:3b: 08:ca:a9:d3:03:6a:e2:d2:6a:24:58:cd:95:a3:12: 2c:c2:9c:8e:70:d8:ad:ad:21:ce:fc:50:fc:d6:90: b0:83:59:df:66:a1:2a:1e:b4:2c:d7:61:fb:fb:c1: 37:dd:b2:25:da:d2:2e:94:b0:81:6d:fc:5d:50:49: b6:21:0e:4b:8d:d2:ae:77:73:e6:b5:16:57:c0:82: 9f:71:8b:35:95:f1:47:ff:9b:49:24:1d:e2:97:09: 0f:01:91:ce:8f:5f:b4:80:79:a2:3b:ff:74:8a:c0: 20:b4:9b:cc:bf:67:f0:5a:f1:a6:41:08:df:d9:f6: 22:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:73:77:0F:F6:BB:AF:7A:46:67:C3:48:4D:AF:85:14:32:3A:C4:0F X509v3 Authority Key Identifier: keyid:C4:71:A5:6E:E9:4F:05:B4:37:C0:9E:EE:0F:44:20:3F:A4:59:27:36 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E3BF2/509096A8F6C311EC833AEF39C4F9AE02/xHGlbulPBbQ3wJ7uD0QgP6RZJzY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xHGlbulPBbQ3wJ7uD0QgP6RZJzY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E3BF2/509096A8F6C311EC833AEF39C4F9AE02/xHGlbulPBbQ3wJ7uD0QgP6RZJzY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b0:79:c8:06:c8:34:c7:58:f0:84:1e:6c:74:99:ae:24:70:c6: 96:d2:c3:8f:f0:4a:62:a3:a4:3f:3c:6c:2c:c4:5d:73:9f:cd: d8:d5:6c:e1:d0:a0:d2:6a:02:dd:68:ae:14:61:09:ef:35:bc: 9f:0e:31:4a:76:f8:8b:5c:ac:9a:de:47:9b:c7:63:4d:84:75: 28:fa:2d:9e:3f:a5:b8:e9:cd:f7:a8:0a:5e:57:48:a5:2b:76: e0:21:d8:07:f6:4a:3a:8a:56:13:d4:6d:56:eb:3f:79:8b:03: 85:1f:5b:52:42:35:ab:3e:bf:ea:ac:6d:f8:e4:70:fa:18:9e: ad:2a:87:51:ba:a4:46:f1:13:32:96:7e:de:fb:26:82:4e:86: c3:33:d5:a8:ae:8a:e7:74:c6:d0:32:39:c9:db:8e:74:f3:4f: fe:90:3f:c7:ff:2f:1a:42:97:8e:10:e9:2b:d2:43:25:f1:39: 53:96:90:0e:b9:cf:f7:75:73:0d:b9:25:35:f9:30:59:10:dd: e4:55:38:74:f1:d8:95:61:43:64:da:31:1a:1e:5c:f7:ac:e2: c5:d7:40:af:0b:02:8d:b2:69:f9:43:e7:6b:17:c8:cc:f4:5f: c2:6b:cd:9a:5b:ff:9a:72:48:5a:d0:9e:62:2a:0c:08:7d:c7: f8:60:c8:a1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAlQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTNCRjIxMTAvBgNVBAUTKEM0NzFBNTZFRTk0RjA1QjQzN0MwOUVFRTBGNDQyMDNG QTQ1OTI3MzYwHhcNMjQxMTIzMDExNzI3WhcNMjQxMTMwMDExNzI3WjAYMRYwFAYD VQQDEw02NzQxMmQyNy1jNmExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr/VVvj1/gy3NiCdxcBiKUyg1vEJO7v55dT7noHWajIqDO3xsXgVzOuAM5hQw V5aXqDuzpxcSY5ue4MRZWs6QOf4mp6dPPq6czQXrZq7XX3wQdMMdf2sJHrQ0rVGH W8l+FBJlr+gznLynE2nyWvv4OcEyVUK7eBlBFB0IkyeTNGQ0yhkerTsIyqnTA2ri 0mokWM2VoxIswpyOcNitrSHO/FD81pCwg1nfZqEqHrQs12H7+8E33bIl2tIulLCB bfxdUEm2IQ5LjdKud3PmtRZXwIKfcYs1lfFH/5tJJB3ilwkPAZHOj1+0gHmiO/90 isAgtJvMv2fwWvGmQQjf2fYizQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFO9zdw/2 u696RmfDSE2vhRQyOsQPMB8GA1UdIwQYMBaAFMRxpW7pTwW0N8Ce7g9EID+kWSc2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFM0JGMi81MDkwOTZBOEY2 QzMxMUVDODMzQUVGMzlDNEY5QUUwMi94SEdsYnVsUEJiUTN3Sjd1RDBRZ1A2UlpK elkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hIR2xidWxQQmJRM3dKN3VEMFFnUDZSWkp6WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF M0JGMi81MDkwOTZBOEY2QzMxMUVDODMzQUVGMzlDNEY5QUUwMi94SEdsYnVsUEJi UTN3Sjd1RDBRZ1A2UlpKelkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCwecgGyDTHWPCEHmx0ma4kcMaW0sOP8Epio6Q/PGwsxF1zn83Y1Wzh 0KDSagLdaK4UYQnvNbyfDjFKdviLXKya3kebx2NNhHUo+i2eP6W46c33qApeV0il K3bgIdgH9ko6ilYT1G1W6z95iwOFH1tSQjWrPr/qrG345HD6GJ6tKodRuqRG8RMy ln7e+yaCTobDM9WororndMbQMjnJ245080/+kD/H/y8aQpeOEOkr0kMl8TlTlpAO uc/3dXMNuSU1+TBZEN3kVTh08diVYUNk2jEaHlz3rOLF10CvCwKNsmn5Q+drF8jM 9F/Ca82aW/+ackha0J5iKgwIfcf4YMih -----END CERTIFICATE-----Generated at Sat Nov 23 02:33:49 2024 by rpki-client on console-fra.rpki-client.org