$ rpki-client -vvf rpki.apnic.net/member_repository/A912BC39/B37B158E3F2911EB9B9A2314C4F9AE02/XQ11AElW7cyrm4QnGnNA5jhV_4o.mft File: XQ11AElW7cyrm4QnGnNA5jhV_4o.mft (raw, json) Hash identifier: 9OZFMyC9aU5sgGnVsTELD3GmnMLZDolrsxWWIyVeWwE= Subject key identifier: BF:A3:6A:73:4D:FC:74:D9:21:81:60:66:92:16:55:84:15:32:26:0C Authority key identifier: 5D:0D:75:00:49:56:ED:CC:AB:9B:84:27:1A:73:40:E6:38:55:FF:8A Certificate issuer: /CN=A912BC39/serialNumber=5D0D75004956EDCCAB9B84271A7340E63855FF8A Certificate serial: 0652 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XQ11AElW7cyrm4QnGnNA5jhV_4o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912BC39/B37B158E3F2911EB9B9A2314C4F9AE02/XQ11AElW7cyrm4QnGnNA5jhV_4o.mft Manifest number: 0648 Signing time: Sat 04 May 2024 23:50:42 +0000 Manifest this update: Sat 04 May 2024 23:50:41 +0000 Manifest next update: Sat 11 May 2024 23:50:41 +0000 Files and hashes: 1: XQ11AElW7cyrm4QnGnNA5jhV_4o.crl (hash: 0hOaY5WlihF7EEZx/e8UvYej3E/kmLLYA1WBI0AGc60=) 2: 8EBA772E3F2B11EB87759716C4F9AE02.roa (hash: q4TouYnOJK9kw6DthKwE6ddGIfkkP54GXsDvT4D8ffw=) 3: 688EAE1E8A1911EC94921D85C4F9AE02.roa (hash: MTlBKQOvD3H5x3p8f5g16DXDYpM2GkLqkKOyF+T4GdA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912BC39/B37B158E3F2911EB9B9A2314C4F9AE02/XQ11AElW7cyrm4QnGnNA5jhV_4o.crl rsync://rpki.apnic.net/member_repository/A912BC39/B37B158E3F2911EB9B9A2314C4F9AE02/XQ11AElW7cyrm4QnGnNA5jhV_4o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XQ11AElW7cyrm4QnGnNA5jhV_4o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 21:20:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1618 (0x652) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912BC39/serialNumber=5D0D75004956EDCCAB9B84271A7340E63855FF8A Validity Not Before: May 4 23:50:41 2024 GMT Not After : May 11 23:50:41 2024 GMT Subject: CN=6636c9d2-af05 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:10:18:92:f4:8a:3b:6c:12:ce:43:4e:fc:9e: c6:cd:63:03:05:27:3d:e6:1f:18:f2:4f:48:54:eb: 3a:37:34:da:a2:7f:04:18:60:cb:5a:99:f3:8a:df: d9:6e:5e:33:a4:c8:ff:48:12:2e:db:8a:1b:46:59: 5f:75:ef:de:96:7b:84:2a:7f:74:7f:28:34:2f:f5: be:f4:2f:70:1d:8b:01:c2:b0:cd:d7:40:df:13:7e: aa:c3:7c:f9:13:0b:2e:03:29:65:25:fb:0f:6e:2c: eb:f4:0c:96:73:f5:5d:64:39:5c:64:c8:02:59:20: 1e:39:58:48:97:28:72:0e:30:3c:5d:77:df:3f:21: e4:14:39:e0:56:e8:94:d9:55:cc:75:4e:10:62:ec: 48:56:1f:21:23:4a:58:5d:71:d2:22:ae:45:dd:4f: a6:7f:d4:f7:8b:92:c1:41:df:ed:d3:02:0e:e9:09: a0:f7:17:dc:cc:82:37:16:bc:eb:df:1c:33:73:b8: 79:80:4e:21:26:80:e6:99:13:52:ba:17:6b:1c:3b: 18:9b:2a:54:ee:73:29:0f:ff:ae:4a:b0:c9:ed:1b: cb:63:0f:e4:e4:97:98:e1:6b:44:5f:5f:a1:b6:7d: b4:95:08:1e:50:8b:3c:d3:01:ce:4f:09:ca:69:65: fc:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:A3:6A:73:4D:FC:74:D9:21:81:60:66:92:16:55:84:15:32:26:0C X509v3 Authority Key Identifier: keyid:5D:0D:75:00:49:56:ED:CC:AB:9B:84:27:1A:73:40:E6:38:55:FF:8A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912BC39/B37B158E3F2911EB9B9A2314C4F9AE02/XQ11AElW7cyrm4QnGnNA5jhV_4o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XQ11AElW7cyrm4QnGnNA5jhV_4o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912BC39/B37B158E3F2911EB9B9A2314C4F9AE02/XQ11AElW7cyrm4QnGnNA5jhV_4o.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8e:0a:81:46:1b:e5:74:6c:61:87:3b:9e:6d:80:90:1e:ae:74: bc:a8:e5:07:eb:14:74:73:c7:a9:bf:ed:d0:4f:a6:81:a6:a4: 85:5b:8f:a4:9d:f2:36:a1:07:36:3f:e6:25:b6:06:4e:77:b0: 30:25:2e:14:4a:6b:5b:55:71:92:fd:fa:94:51:cd:74:a3:b4: e7:32:50:4b:e9:0a:56:e2:c6:db:b8:7c:77:85:30:5f:1c:46: f5:c1:00:a1:a8:68:7b:d2:16:67:6f:47:d6:fc:34:73:b7:83: 7f:96:91:06:0b:44:9e:b3:0b:fb:51:c0:94:f2:1b:98:b4:57: fe:7c:5f:55:b1:5e:98:9e:58:b4:e4:23:4a:56:ec:10:91:41: 96:4c:fd:61:7b:bf:c5:84:2b:dd:58:74:97:e0:31:7f:9f:94: 3c:7d:23:50:68:c2:e9:3c:76:a8:f0:c4:13:ea:86:e2:4e:20: c2:4b:02:51:91:cf:8c:d3:37:8c:17:06:ec:5c:d7:d4:62:b2: 59:7e:b8:e3:e7:b3:33:3c:ff:f8:ea:3b:c8:95:1e:c2:d5:4f: 6f:1b:b5:fa:d8:b3:8c:10:e0:d7:fb:1f:b4:cd:e6:d8:8c:82: 37:e2:cb:0c:45:e6:36:1e:d5:35:0d:a1:14:04:da:4b:4b:a5: 14:c4:18:32 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBlIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkJDMzkxMTAvBgNVBAUTKDVEMEQ3NTAwNDk1NkVEQ0NBQjlCODQyNzFBNzM0MEU2 Mzg1NUZGOEEwHhcNMjQwNTA0MjM1MDQxWhcNMjQwNTExMjM1MDQxWjAYMRYwFAYD VQQDEw02NjM2YzlkMi1hZjA1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxxAYkvSKO2wSzkNO/J7GzWMDBSc95h8Y8k9IVOs6NzTaon8EGGDLWpnzit/Z bl4zpMj/SBIu24obRllfde/elnuEKn90fyg0L/W+9C9wHYsBwrDN10DfE36qw3z5 EwsuAyllJfsPbizr9AyWc/VdZDlcZMgCWSAeOVhIlyhyDjA8XXffPyHkFDngVuiU 2VXMdU4QYuxIVh8hI0pYXXHSIq5F3U+mf9T3i5LBQd/t0wIO6Qmg9xfczII3Frzr 3xwzc7h5gE4hJoDmmRNSuhdrHDsYmypU7nMpD/+uSrDJ7RvLYw/k5JeY4WtEX1+h tn20lQgeUIs80wHOTwnKaWX8AQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFL+janNN /HTZIYFgZpIWVYQVMiYMMB8GA1UdIwQYMBaAFF0NdQBJVu3Mq5uEJxpzQOY4Vf+K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQkMzOS9CMzdCMTU4RTNG MjkxMUVCOUI5QTIzMTRDNEY5QUUwMi9YUTExQUVsVzdjeXJtNFFuR25OQTVqaFZf NG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hRMTFBRWxXN2N5cm00UW5Hbk5BNWpoVl80by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy QkMzOS9CMzdCMTU4RTNGMjkxMUVCOUI5QTIzMTRDNEY5QUUwMi9YUTExQUVsVzdj eXJtNFFuR25OQTVqaFZfNG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCOCoFGG+V0bGGHO55tgJAernS8qOUH6xR0c8epv+3QT6aBpqSFW4+k nfI2oQc2P+YltgZOd7AwJS4USmtbVXGS/fqUUc10o7TnMlBL6QpW4sbbuHx3hTBf HEb1wQChqGh70hZnb0fW/DRzt4N/lpEGC0Seswv7UcCU8huYtFf+fF9VsV6Ynli0 5CNKVuwQkUGWTP1he7/FhCvdWHSX4DF/n5Q8fSNQaMLpPHao8MQT6obiTiDCSwJR kc+M0zeMFwbsXNfUYrJZfrjj57MzPP/46jvIlR7C1U9vG7X62LOMEODX+x+0zebY jII34ssMReY2HtU1DaEUBNpLS6UUxBgy -----END CERTIFICATE-----Generated at Sun May 5 01:13:17 2024 by rpki-client on console-ams.rpki-client.org