$ rpki-client -vvf rpki.apnic.net/member_repository/A91E66E5/56430586A27511E9A74D4E82C4F9AE02/XDlbosoKv2WIhyaHTHgktpt4mZU.mft File: XDlbosoKv2WIhyaHTHgktpt4mZU.mft (raw, json) Hash identifier: 06duQslrraixPLI57uHpgU19EKBiY6OXustNPqZc5/M= Subject key identifier: 7E:BA:0C:3A:F3:FC:85:61:24:1C:DD:8A:B3:FC:68:52:7B:82:B9:CD Authority key identifier: 5C:39:5B:A2:CA:0A:BF:65:88:87:26:87:4C:78:24:B6:9B:78:99:95 Certificate issuer: /CN=A91E66E5/serialNumber=5C395BA2CA0ABF65888726874C7824B69B789995 Certificate serial: 0DE5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XDlbosoKv2WIhyaHTHgktpt4mZU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E66E5/56430586A27511E9A74D4E82C4F9AE02/XDlbosoKv2WIhyaHTHgktpt4mZU.mft Manifest number: 0DD9 Signing time: Fri 22 Nov 2024 17:48:25 +0000 Manifest this update: Fri 22 Nov 2024 17:48:25 +0000 Manifest next update: Fri 29 Nov 2024 17:48:25 +0000 Files and hashes: 1: XDlbosoKv2WIhyaHTHgktpt4mZU.crl (hash: KtV8SZF2MOG10Zkn2vxe8Dw0LLY6jTnt0s3Zq7euOJc=) 2: AECDA1B0448F11EDACC30815C4F9AE02.roa (hash: 75VrOzcpDab1F7Wv+WNG5U/RAvlmTKHuKdZ/I9KgDv8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E66E5/56430586A27511E9A74D4E82C4F9AE02/XDlbosoKv2WIhyaHTHgktpt4mZU.crl rsync://rpki.apnic.net/member_repository/A91E66E5/56430586A27511E9A74D4E82C4F9AE02/XDlbosoKv2WIhyaHTHgktpt4mZU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XDlbosoKv2WIhyaHTHgktpt4mZU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 17:48:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3557 (0xde5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E66E5/serialNumber=5C395BA2CA0ABF65888726874C7824B69B789995 Validity Not Before: Nov 22 17:48:25 2024 GMT Not After : Nov 29 17:48:25 2024 GMT Subject: CN=6740c3e9-e644 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:ec:34:d9:3c:44:6f:58:30:e5:35:a9:cb:c3: 6d:b8:f1:0e:f7:0a:6e:f8:8b:ee:8f:b9:7c:5d:ac: 66:83:af:1e:91:49:03:b9:ba:10:39:37:ff:92:ca: 40:fd:b6:54:f9:d4:30:1d:9c:4b:d9:db:6b:7b:61: d6:04:36:f7:1f:85:76:d7:3f:e0:55:f7:d7:48:19: a3:63:d8:63:a0:03:90:02:49:58:a7:b1:e4:4a:89: ee:56:58:ba:4b:b6:14:b5:61:43:03:8b:c8:56:10: 14:58:0b:e9:18:fd:9c:a9:d3:ac:88:0a:73:d5:14: 0b:76:5b:52:e5:ac:c8:d5:ed:9f:99:1e:0a:6b:22: db:f8:55:62:ad:dd:86:fb:ad:58:8c:5e:54:2d:ac: 27:fa:06:36:ad:3a:54:e1:0b:4d:e1:49:d6:4e:1e: ce:d2:91:f9:1a:5f:d1:09:db:6f:f5:da:33:b3:8c: cc:62:ed:7d:bb:b0:07:70:58:53:6d:4f:50:62:0e: ad:2a:3c:a6:90:24:5d:25:d5:24:80:2c:cd:d8:16: b3:e4:53:23:14:27:aa:55:51:55:68:47:65:58:0d: 34:5a:99:fc:4d:3b:bf:1b:e9:3e:96:73:32:5d:33: 64:63:69:f4:f3:57:0d:92:99:30:6b:6c:e6:0e:1e: fb:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:BA:0C:3A:F3:FC:85:61:24:1C:DD:8A:B3:FC:68:52:7B:82:B9:CD X509v3 Authority Key Identifier: keyid:5C:39:5B:A2:CA:0A:BF:65:88:87:26:87:4C:78:24:B6:9B:78:99:95 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E66E5/56430586A27511E9A74D4E82C4F9AE02/XDlbosoKv2WIhyaHTHgktpt4mZU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XDlbosoKv2WIhyaHTHgktpt4mZU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E66E5/56430586A27511E9A74D4E82C4F9AE02/XDlbosoKv2WIhyaHTHgktpt4mZU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 44:5f:ae:fd:48:32:47:0d:77:11:5d:eb:da:3f:6f:af:e1:bf: 00:c3:7a:1a:5b:a3:82:41:03:a3:23:e2:24:cf:86:10:c9:7f: eb:f6:4e:36:52:52:0f:c1:e2:e9:26:05:fa:b3:72:8e:e6:8f: 79:2a:95:3b:a9:8e:67:e4:ec:95:69:88:92:b3:5a:01:97:fb: c6:12:3a:88:f8:b3:ea:12:26:de:50:9b:9b:a0:5e:d9:32:c3: 81:67:84:eb:41:25:ef:b5:2d:af:2f:f9:39:62:f7:4c:dd:71: de:f2:ac:65:12:7b:80:3d:ef:23:d9:e0:80:c6:95:3e:95:85: 8a:46:33:e9:0b:76:44:2a:f7:ac:b8:69:85:4a:c8:a5:cb:df: fb:76:a3:70:b0:10:d1:23:c6:3d:a9:bd:c5:ec:1f:51:38:b0: 37:72:9a:47:dd:f0:38:d9:02:c2:34:5a:bb:56:5e:bb:7d:ef: 59:5e:f0:7b:29:95:d2:8a:53:9f:ad:4b:49:d3:5a:0e:b8:27: 66:86:5e:5d:4e:64:b8:16:51:ad:03:12:16:7a:2a:03:4c:ed: a9:ce:07:41:84:2a:04:a7:d9:cf:b2:de:88:50:39:57:cd:8a: cd:93:70:fb:94:d1:d7:2c:8e:f3:34:3f:ac:05:48:4b:a9:e3: d6:ca:fd:09 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDeUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTY2RTUxMTAvBgNVBAUTKDVDMzk1QkEyQ0EwQUJGNjU4ODg3MjY4NzRDNzgyNEI2 OUI3ODk5OTUwHhcNMjQxMTIyMTc0ODI1WhcNMjQxMTI5MTc0ODI1WjAYMRYwFAYD VQQDEw02NzQwYzNlOS1lNjQ0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4Ow02TxEb1gw5TWpy8NtuPEO9wpu+Ivuj7l8Xaxmg68ekUkDuboQOTf/kspA /bZU+dQwHZxL2dtre2HWBDb3H4V21z/gVffXSBmjY9hjoAOQAklYp7HkSonuVli6 S7YUtWFDA4vIVhAUWAvpGP2cqdOsiApz1RQLdltS5azI1e2fmR4KayLb+FVird2G +61YjF5ULawn+gY2rTpU4QtN4UnWTh7O0pH5Gl/RCdtv9dozs4zMYu19u7AHcFhT bU9QYg6tKjymkCRdJdUkgCzN2Baz5FMjFCeqVVFVaEdlWA00Wpn8TTu/G+k+lnMy XTNkY2n081cNkpkwa2zmDh778QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFH66DDrz /IVhJBzdirP8aFJ7grnNMB8GA1UdIwQYMBaAFFw5W6LKCr9liIcmh0x4JLabeJmV MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNjZFNS81NjQzMDU4NkEy NzUxMUU5QTc0RDRFODJDNEY5QUUwMi9YRGxib3NvS3YyV0loeWFIVEhna3RwdDRt WlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hEbGJvc29LdjJXSWh5YUhUSGdrdHB0NG1aVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NjZFNS81NjQzMDU4NkEyNzUxMUU5QTc0RDRFODJDNEY5QUUwMi9YRGxib3NvS3Yy V0loeWFIVEhna3RwdDRtWlUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBEX679SDJHDXcRXevaP2+v4b8Aw3oaW6OCQQOjI+Ikz4YQyX/r9k42 UlIPweLpJgX6s3KO5o95KpU7qY5n5OyVaYiSs1oBl/vGEjqI+LPqEibeUJuboF7Z MsOBZ4TrQSXvtS2vL/k5YvdM3XHe8qxlEnuAPe8j2eCAxpU+lYWKRjPpC3ZEKves uGmFSsily9/7dqNwsBDRI8Y9qb3F7B9ROLA3cppH3fA42QLCNFq7Vl67fe9ZXvB7 KZXSilOfrUtJ01oOuCdmhl5dTmS4FlGtAxIWeioDTO2pzgdBhCoEp9nPst6IUDlX zYrNk3D7lNHXLI7zND+sBUhLqePWyv0J -----END CERTIFICATE-----Generated at Fri Nov 22 19:45:04 2024 by rpki-client on console-fra.rpki-client.org