$ rpki-client -vvf rpki.apnic.net/member_repository/A91E4BD2/F40B116AAA2F11EA9C29591EC4F9AE02/XcpFKLnkDIjkZ6Q_3BK3jys1ReM.mft File: XcpFKLnkDIjkZ6Q_3BK3jys1ReM.mft (raw, json) Hash identifier: j7+drTwWsaD/tmiaqBQ33b7/IrZErbnPUv2P/WDNcJM= Subject key identifier: 7F:F8:DC:1F:80:54:05:C6:F3:F3:D2:E8:D4:B2:8E:2B:F9:DB:BF:7C Authority key identifier: 5D:CA:45:28:B9:E4:0C:88:E4:67:A4:3F:DC:12:B7:8F:2B:35:45:E3 Certificate issuer: /CN=A91E4BD2/serialNumber=5DCA4528B9E40C88E467A43FDC12B78F2B3545E3 Certificate serial: 0899 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XcpFKLnkDIjkZ6Q_3BK3jys1ReM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E4BD2/F40B116AAA2F11EA9C29591EC4F9AE02/XcpFKLnkDIjkZ6Q_3BK3jys1ReM.mft Manifest number: 0893 Signing time: Fri 22 Nov 2024 20:18:07 +0000 Manifest this update: Fri 22 Nov 2024 20:18:06 +0000 Manifest next update: Fri 29 Nov 2024 20:18:06 +0000 Files and hashes: 1: XcpFKLnkDIjkZ6Q_3BK3jys1ReM.crl (hash: xLPOVNR7deJk37E7xjS4rgnrrho+ojr4omD7x7Y+UGA=) 2: A862F866AA3111EA9E08C324C4F9AE02.roa (hash: 3Ir1IuKRfOTCPGTcqkNhUsK0tdvw53ia+7U41pr4LNw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E4BD2/F40B116AAA2F11EA9C29591EC4F9AE02/XcpFKLnkDIjkZ6Q_3BK3jys1ReM.crl rsync://rpki.apnic.net/member_repository/A91E4BD2/F40B116AAA2F11EA9C29591EC4F9AE02/XcpFKLnkDIjkZ6Q_3BK3jys1ReM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XcpFKLnkDIjkZ6Q_3BK3jys1ReM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:18:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2201 (0x899) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E4BD2/serialNumber=5DCA4528B9E40C88E467A43FDC12B78F2B3545E3 Validity Not Before: Nov 22 20:18:06 2024 GMT Not After : Nov 29 20:18:06 2024 GMT Subject: CN=6740e6ff-bca0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:e5:31:ff:d5:74:d9:a4:6d:52:d0:0c:f4:9f: 1e:88:0b:41:a0:f5:ad:33:de:40:2d:2f:f7:67:93: 57:8e:89:c8:14:b7:0b:1a:94:05:49:78:a8:8a:b1: 20:09:91:d4:06:f9:d9:be:55:aa:4b:fe:78:1f:03: 79:24:bf:48:08:fe:0e:0f:02:bf:81:02:c4:80:0d: a6:f3:e9:3b:6b:a2:38:c1:90:cf:ec:3a:23:0c:96: f0:c9:29:bc:e9:7f:29:ae:2c:98:93:91:85:3f:49: dd:8a:80:da:70:6d:a9:8f:d5:f6:b5:89:ce:31:f1: fe:55:35:a1:f1:1f:49:56:30:91:5c:83:3c:8c:75: da:13:9f:a4:a3:4a:aa:f2:e1:bb:39:eb:42:c9:e0: d9:09:b1:59:81:64:5c:d8:37:ee:de:1b:37:a3:99: 2e:d8:24:83:79:e0:75:71:66:0e:72:80:f5:f4:e1: 42:c0:af:95:25:c1:8d:a1:8f:ac:7c:82:49:da:cd: 62:43:af:b9:d1:f0:d8:68:3e:8c:04:52:8c:31:35: bc:7e:75:8b:ef:83:a4:4d:62:ef:3b:b3:10:6c:33: 6d:c0:4c:ed:ec:69:fc:9e:78:44:de:c0:1e:08:af: 37:00:a4:f2:8b:73:dd:07:9c:d1:62:27:89:d9:1e: 9b:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:F8:DC:1F:80:54:05:C6:F3:F3:D2:E8:D4:B2:8E:2B:F9:DB:BF:7C X509v3 Authority Key Identifier: keyid:5D:CA:45:28:B9:E4:0C:88:E4:67:A4:3F:DC:12:B7:8F:2B:35:45:E3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E4BD2/F40B116AAA2F11EA9C29591EC4F9AE02/XcpFKLnkDIjkZ6Q_3BK3jys1ReM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XcpFKLnkDIjkZ6Q_3BK3jys1ReM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E4BD2/F40B116AAA2F11EA9C29591EC4F9AE02/XcpFKLnkDIjkZ6Q_3BK3jys1ReM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 08:27:cb:fb:48:d6:7f:0c:39:5c:54:a9:f1:a1:d0:65:8b:43: 55:40:eb:0b:fa:07:ab:d0:a1:e1:e1:c8:57:f1:1e:68:31:53: 04:e3:0a:a8:5b:09:fe:c2:c0:bc:fe:3f:d0:33:bc:cc:be:88: a4:e0:d1:7d:7f:1a:01:58:64:07:54:c2:9a:76:e7:8a:b3:b5: 51:1b:f2:9e:ea:05:38:86:d1:bb:4d:40:15:9f:f4:1f:7e:24: 76:e3:a1:ee:ff:48:e1:4d:5b:54:94:b9:f4:50:99:ad:bb:aa: 5b:6f:e2:20:e0:b7:d4:f8:d1:c4:af:41:01:94:37:f7:42:cd: 4c:36:3d:d0:f9:d6:6c:b6:07:30:f8:bf:41:c8:f3:4a:b8:36: 9a:cd:98:6c:9e:d9:8e:1f:0d:7f:47:d1:c0:3e:8c:88:c2:de: 55:45:4a:da:3f:61:cc:dd:1f:f9:1f:f9:17:2e:ae:46:70:6f: 0b:25:1a:8f:55:f2:5d:f6:32:8e:a4:d1:51:fc:fa:3c:89:fc: 1c:cf:79:60:ed:87:ec:81:cd:c8:55:e3:66:9c:f5:9e:3b:04: 4d:6c:ef:41:34:5e:83:89:a1:08:f1:fe:b2:e4:30:7a:f7:67: ef:2c:bf:9c:de:89:a9:fb:c5:9f:7a:9c:10:eb:df:d8:10:be: 70:ff:7d:05 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCJkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTRCRDIxMTAvBgNVBAUTKDVEQ0E0NTI4QjlFNDBDODhFNDY3QTQzRkRDMTJCNzhG MkIzNTQ1RTMwHhcNMjQxMTIyMjAxODA2WhcNMjQxMTI5MjAxODA2WjAYMRYwFAYD VQQDEw02NzQwZTZmZi1iY2EwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzeUx/9V02aRtUtAM9J8eiAtBoPWtM95ALS/3Z5NXjonIFLcLGpQFSXioirEg CZHUBvnZvlWqS/54HwN5JL9ICP4ODwK/gQLEgA2m8+k7a6I4wZDP7DojDJbwySm8 6X8priyYk5GFP0ndioDacG2pj9X2tYnOMfH+VTWh8R9JVjCRXIM8jHXaE5+ko0qq 8uG7OetCyeDZCbFZgWRc2Dfu3hs3o5ku2CSDeeB1cWYOcoD19OFCwK+VJcGNoY+s fIJJ2s1iQ6+50fDYaD6MBFKMMTW8fnWL74OkTWLvO7MQbDNtwEzt7Gn8nnhE3sAe CK83AKTyi3PdB5zRYieJ2R6bcwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFH/43B+A VAXG8/PS6NSyjiv52798MB8GA1UdIwQYMBaAFF3KRSi55AyI5GekP9wSt48rNUXj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNEJEMi9GNDBCMTE2QUFB MkYxMUVBOUMyOTU5MUVDNEY5QUUwMi9YY3BGS0xua0RJamtaNlFfM0JLM2p5czFS ZU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hjcEZLTG5rRElqa1o2UV8zQkszanlzMVJlTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NEJEMi9GNDBCMTE2QUFBMkYxMUVBOUMyOTU5MUVDNEY5QUUwMi9YY3BGS0xua0RJ amtaNlFfM0JLM2p5czFSZU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAIJ8v7SNZ/DDlcVKnxodBli0NVQOsL+ger0KHh4chX8R5oMVME4wqo Wwn+wsC8/j/QM7zMvoik4NF9fxoBWGQHVMKadueKs7VRG/Ke6gU4htG7TUAVn/Qf fiR246Hu/0jhTVtUlLn0UJmtu6pbb+Ig4LfU+NHEr0EBlDf3Qs1MNj3Q+dZstgcw +L9ByPNKuDaazZhsntmOHw1/R9HAPoyIwt5VRUraP2HM3R/5H/kXLq5GcG8LJRqP VfJd9jKOpNFR/Po8ifwcz3lg7Yfsgc3IVeNmnPWeOwRNbO9BNF6DiaEI8f6y5DB6 92fvLL+c3omp+8WfepwQ69/YEL5w/30F -----END CERTIFICATE-----Generated at Fri Nov 22 22:14:48 2024 by rpki-client on console-ams.rpki-client.org