$ rpki-client -vvf rpki.apnic.net/member_repository/A912BC39/B37B158E3F2911EB9B9A2314C4F9AE02/XQ11AElW7cyrm4QnGnNA5jhV_4o.mft File: XQ11AElW7cyrm4QnGnNA5jhV_4o.mft (raw, json) Hash identifier: wHTJB0Z9uTSRlop0v7b6hl9x3QYOcitpR/o8kHK37OE= Subject key identifier: 76:D7:AA:6A:5B:DB:AC:54:7F:91:14:E5:40:FC:82:35:8A:90:38:99 Authority key identifier: 5D:0D:75:00:49:56:ED:CC:AB:9B:84:27:1A:73:40:E6:38:55:FF:8A Certificate issuer: /CN=A912BC39/serialNumber=5D0D75004956EDCCAB9B84271A7340E63855FF8A Certificate serial: 06BC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XQ11AElW7cyrm4QnGnNA5jhV_4o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912BC39/B37B158E3F2911EB9B9A2314C4F9AE02/XQ11AElW7cyrm4QnGnNA5jhV_4o.mft Manifest number: 06B0 Signing time: Fri 22 Nov 2024 21:45:28 +0000 Manifest this update: Fri 22 Nov 2024 21:45:27 +0000 Manifest next update: Fri 29 Nov 2024 21:45:27 +0000 Files and hashes: 1: XQ11AElW7cyrm4QnGnNA5jhV_4o.crl (hash: AtTEVnYQml97R2xjx5Nj5rfAeDZrFSL4nc2Tc7+xz5E=) 2: 8EBA772E3F2B11EB87759716C4F9AE02.roa (hash: IwbM0qanfV+e3+145YunmnHjT+laZw+y8+B4ZLa5xus=) 3: 688EAE1E8A1911EC94921D85C4F9AE02.roa (hash: l86iuU4A1knmyjZ3msJqjoeK6VLpJ7MZC8Ec9/M8Wvc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912BC39/B37B158E3F2911EB9B9A2314C4F9AE02/XQ11AElW7cyrm4QnGnNA5jhV_4o.crl rsync://rpki.apnic.net/member_repository/A912BC39/B37B158E3F2911EB9B9A2314C4F9AE02/XQ11AElW7cyrm4QnGnNA5jhV_4o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XQ11AElW7cyrm4QnGnNA5jhV_4o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1724 (0x6bc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912BC39/serialNumber=5D0D75004956EDCCAB9B84271A7340E63855FF8A Validity Not Before: Nov 22 21:45:27 2024 GMT Not After : Nov 29 21:45:27 2024 GMT Subject: CN=6740fb78-8089 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:19:af:d5:e8:ef:e2:53:ea:40:3a:26:25:7b: be:e2:ae:1e:56:bc:09:30:67:42:3d:10:6c:a9:2a: 8e:4c:c4:95:d0:42:b4:28:ff:9f:9e:d4:65:97:71: e5:f2:b8:24:fe:41:5c:be:3c:34:b2:96:9a:d7:d7: c2:1f:bc:98:a9:86:71:e2:87:fb:b9:62:fd:1f:36: ff:85:f3:22:5e:e0:97:dc:4b:7d:2a:20:7a:b8:78: 27:69:9b:9c:9a:1d:87:76:ce:fa:64:86:e5:ab:0c: 8c:f5:3e:a4:f8:f2:6d:bc:1a:43:c5:6b:51:f2:c0: 97:e8:10:06:d7:9a:0e:cb:07:ad:bb:b7:dc:81:b0: 9f:80:d7:4a:40:c5:88:58:e1:0f:d6:bb:ff:ca:3a: 15:fc:84:e7:c5:f4:69:d4:cf:d1:d8:28:e5:7d:8f: ff:c2:9c:fb:25:1a:7e:df:1e:a5:40:ef:c3:e6:b0: 62:44:61:13:a5:ab:cb:05:64:d0:91:61:f3:86:6a: 27:37:9d:88:b4:2f:2c:65:c3:1c:a7:a9:62:90:83: 13:2e:da:b3:4f:43:a3:d7:b4:00:b0:68:74:66:3a: ec:82:b5:e4:c5:bb:df:30:17:54:0c:b5:bf:83:f1: 99:f9:d0:10:96:d4:50:25:d6:c2:0c:0c:05:2d:51: 14:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:D7:AA:6A:5B:DB:AC:54:7F:91:14:E5:40:FC:82:35:8A:90:38:99 X509v3 Authority Key Identifier: keyid:5D:0D:75:00:49:56:ED:CC:AB:9B:84:27:1A:73:40:E6:38:55:FF:8A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912BC39/B37B158E3F2911EB9B9A2314C4F9AE02/XQ11AElW7cyrm4QnGnNA5jhV_4o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XQ11AElW7cyrm4QnGnNA5jhV_4o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912BC39/B37B158E3F2911EB9B9A2314C4F9AE02/XQ11AElW7cyrm4QnGnNA5jhV_4o.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 43:6f:7f:f0:08:06:3a:a0:9e:ce:f7:b9:e6:b3:48:27:f0:ac: 44:96:7e:1d:c1:32:6b:39:83:c5:01:5f:5f:ad:16:0e:ef:34: f8:d2:0e:b8:ff:26:07:db:5b:eb:e5:7a:68:47:c8:5c:98:3e: 47:55:3a:3f:3f:e6:b8:8c:ba:76:ed:cb:14:31:17:37:76:00: 3b:ee:8b:9a:9a:0a:29:00:2a:c0:47:db:0e:64:aa:b2:b2:18: 43:cd:5c:0a:b2:35:06:e7:6d:d7:97:7f:d4:9f:9f:5e:52:1c: 02:37:39:ef:2d:1f:ad:eb:f6:3f:b3:0d:41:b9:ac:fa:99:c5: e3:89:da:59:32:4c:7c:8f:af:67:dd:c6:04:27:79:e3:64:2e: 7b:b4:b0:9b:4c:32:06:20:72:f3:5d:37:c1:04:9f:2a:39:84: 20:63:1e:4e:4c:37:e9:10:40:fd:cf:06:5a:95:4b:f4:95:83: 57:1a:0a:37:cf:41:f9:34:88:a3:97:77:22:df:9d:b0:78:18: f1:b9:b4:79:29:66:43:df:ad:5e:1d:30:2c:25:81:95:bd:17: 65:85:67:ef:d3:69:a4:69:59:27:8e:63:5d:1a:45:5f:d7:d5: 67:c3:b7:2f:f8:35:79:32:92:00:fd:c9:ff:4b:ec:26:3b:f3: 28:ee:5b:96 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBrwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkJDMzkxMTAvBgNVBAUTKDVEMEQ3NTAwNDk1NkVEQ0NBQjlCODQyNzFBNzM0MEU2 Mzg1NUZGOEEwHhcNMjQxMTIyMjE0NTI3WhcNMjQxMTI5MjE0NTI3WjAYMRYwFAYD VQQDEw02NzQwZmI3OC04MDg5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzRmv1ejv4lPqQDomJXu+4q4eVrwJMGdCPRBsqSqOTMSV0EK0KP+fntRll3Hl 8rgk/kFcvjw0spaa19fCH7yYqYZx4of7uWL9Hzb/hfMiXuCX3Et9KiB6uHgnaZuc mh2Hds76ZIblqwyM9T6k+PJtvBpDxWtR8sCX6BAG15oOywetu7fcgbCfgNdKQMWI WOEP1rv/yjoV/ITnxfRp1M/R2CjlfY//wpz7JRp+3x6lQO/D5rBiRGETpavLBWTQ kWHzhmonN52ItC8sZcMcp6likIMTLtqzT0Oj17QAsGh0ZjrsgrXkxbvfMBdUDLW/ g/GZ+dAQltRQJdbCDAwFLVEU+wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHbXqmpb 26xUf5EU5UD8gjWKkDiZMB8GA1UdIwQYMBaAFF0NdQBJVu3Mq5uEJxpzQOY4Vf+K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQkMzOS9CMzdCMTU4RTNG MjkxMUVCOUI5QTIzMTRDNEY5QUUwMi9YUTExQUVsVzdjeXJtNFFuR25OQTVqaFZf NG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hRMTFBRWxXN2N5cm00UW5Hbk5BNWpoVl80by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy QkMzOS9CMzdCMTU4RTNGMjkxMUVCOUI5QTIzMTRDNEY5QUUwMi9YUTExQUVsVzdj eXJtNFFuR25OQTVqaFZfNG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBDb3/wCAY6oJ7O97nms0gn8KxEln4dwTJrOYPFAV9frRYO7zT40g64 /yYH21vr5XpoR8hcmD5HVTo/P+a4jLp27csUMRc3dgA77ouamgopACrAR9sOZKqy shhDzVwKsjUG523Xl3/Un59eUhwCNznvLR+t6/Y/sw1Buaz6mcXjidpZMkx8j69n 3cYEJ3njZC57tLCbTDIGIHLzXTfBBJ8qOYQgYx5OTDfpEED9zwZalUv0lYNXGgo3 z0H5NIijl3ci352weBjxubR5KWZD361eHTAsJYGVvRdlhWfv02mkaVknjmNdGkVf 19Vnw7cv+DV5MpIA/cn/S+wmO/Mo7luW -----END CERTIFICATE-----Generated at Fri Nov 22 22:24:06 2024 by rpki-client on console-fra.rpki-client.org