$ rpki-client -vvf rpki.apnic.net/member_repository/A9132DC8/444C6F14ECB511ED9D68C450C4F9AE02/xNJqwGyKZSWK1Ekbad-DKQvhg3s.mft File: xNJqwGyKZSWK1Ekbad-DKQvhg3s.mft (raw, json) Hash identifier: kkLdBeltJ9KooqvwPr/p60fEWsdg2/fRvwiu7S/a04M= Subject key identifier: 40:24:96:2F:A5:97:1E:5A:25:85:20:EC:37:C4:7D:68:5F:C0:3C:C6 Authority key identifier: C4:D2:6A:C0:6C:8A:65:25:8A:D4:49:1B:69:DF:83:29:0B:E1:83:7B Certificate issuer: /CN=A9132DC8/serialNumber=C4D26AC06C8A65258AD4491B69DF83290BE1837B Certificate serial: 0127 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xNJqwGyKZSWK1Ekbad-DKQvhg3s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9132DC8/444C6F14ECB511ED9D68C450C4F9AE02/xNJqwGyKZSWK1Ekbad-DKQvhg3s.mft Manifest number: 0124 Signing time: Sat 23 Nov 2024 02:53:55 +0000 Manifest this update: Sat 23 Nov 2024 02:53:54 +0000 Manifest next update: Sat 30 Nov 2024 02:53:54 +0000 Files and hashes: 1: xNJqwGyKZSWK1Ekbad-DKQvhg3s.crl (hash: XeWqy74rEg6lnSaf9PlHT2v2RVCUUEyUmVbATCtSYR4=) 2: 59AFB718ECB911ED99732649C4F9AE02.roa (hash: +N1Z+YRZBmqUzAg48fb4th5gmmSesIwu/VfApSVKW6g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9132DC8/444C6F14ECB511ED9D68C450C4F9AE02/xNJqwGyKZSWK1Ekbad-DKQvhg3s.crl rsync://rpki.apnic.net/member_repository/A9132DC8/444C6F14ECB511ED9D68C450C4F9AE02/xNJqwGyKZSWK1Ekbad-DKQvhg3s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xNJqwGyKZSWK1Ekbad-DKQvhg3s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 295 (0x127) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9132DC8/serialNumber=C4D26AC06C8A65258AD4491B69DF83290BE1837B Validity Not Before: Nov 23 02:53:54 2024 GMT Not After : Nov 30 02:53:54 2024 GMT Subject: CN=674143c3-ff1e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:46:68:36:0e:86:91:67:39:7f:eb:21:1c:9e: 2f:91:3d:13:5f:9b:b5:32:4f:99:51:02:77:f7:f1: 02:59:ef:9d:b0:80:28:56:5d:b8:c9:0a:d0:9f:96: 58:d0:ef:96:1c:7c:35:6f:0d:48:71:c9:84:13:78: b8:f9:95:53:b9:93:26:3b:fa:4e:b8:db:a2:ff:23: 35:7b:3b:03:dc:21:6d:19:b5:af:d7:cf:d3:ff:f5: 2e:e0:4a:88:2e:97:46:db:d4:59:d9:44:77:92:3d: 8a:95:19:8f:6c:43:7c:c3:a0:a0:3c:cf:fe:98:ef: c9:a5:b4:b7:93:13:88:56:6f:5f:92:cf:f4:44:69: bd:61:b8:5c:b9:12:2e:b4:fc:68:ea:f2:38:9d:6e: fe:83:39:79:d6:f7:68:2c:91:ea:b4:7a:de:34:c2: 6a:2a:32:0e:b0:44:7d:9f:2a:fe:20:e3:89:99:a4: 77:73:1d:ec:14:a9:36:09:af:b1:b0:33:62:83:ec: d8:2f:e0:2d:7b:fa:96:12:aa:c6:83:d8:96:9a:0b: 8b:e4:14:92:b9:7b:85:d4:f3:17:bb:6b:3c:43:39: c7:98:f2:d2:b9:b6:28:86:38:d3:a0:d5:9b:cb:8e: e6:14:15:7c:6c:d6:9c:46:25:3a:ca:03:05:9a:a3: b0:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:24:96:2F:A5:97:1E:5A:25:85:20:EC:37:C4:7D:68:5F:C0:3C:C6 X509v3 Authority Key Identifier: keyid:C4:D2:6A:C0:6C:8A:65:25:8A:D4:49:1B:69:DF:83:29:0B:E1:83:7B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9132DC8/444C6F14ECB511ED9D68C450C4F9AE02/xNJqwGyKZSWK1Ekbad-DKQvhg3s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xNJqwGyKZSWK1Ekbad-DKQvhg3s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9132DC8/444C6F14ECB511ED9D68C450C4F9AE02/xNJqwGyKZSWK1Ekbad-DKQvhg3s.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 46:ca:36:af:57:21:85:25:92:3d:a9:58:48:a7:44:97:6e:6c: b4:28:22:2e:96:dc:fb:96:60:82:7c:7a:e5:82:28:7d:d0:58: 3e:08:cb:39:54:b4:30:e5:23:4d:16:d5:8c:cc:62:1b:95:d8: 9b:39:0d:fd:ef:b9:0a:5f:a7:7c:fa:14:5f:76:86:62:73:fc: 4f:95:5f:f4:6f:0d:a5:5b:c0:50:65:bd:2d:69:6a:f3:f5:22: 73:2f:00:01:f1:54:9d:40:19:da:ae:a7:b3:9a:8b:97:93:f5: 6a:b4:bd:a6:69:04:5e:02:ed:60:40:ca:e7:35:96:17:64:35: c2:3f:07:44:d5:72:8d:04:fa:ef:31:f4:3c:37:24:87:90:d9: 73:ab:dd:cd:63:7f:c1:e4:68:6c:c4:be:84:9d:4e:d7:d8:d3: ef:2d:90:a5:5c:6b:d6:82:f8:94:f8:b8:27:45:ad:86:5b:6a: 8c:2e:ef:3e:e3:09:3d:38:35:61:4d:8c:16:42:3f:ae:b2:09: 50:48:b8:19:b9:35:09:0f:84:14:6b:f6:13:61:dd:27:52:17: 83:4e:fa:80:2a:bf:d1:19:30:55:b8:67:46:54:67:82:3a:fe: 04:ab:0d:ab:a3:65:c5:cd:b4:a9:a9:66:b9:b6:e5:45:e8:6f: bb:ab:af:a0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAScwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzJEQzgxMTAvBgNVBAUTKEM0RDI2QUMwNkM4QTY1MjU4QUQ0NDkxQjY5REY4MzI5 MEJFMTgzN0IwHhcNMjQxMTIzMDI1MzU0WhcNMjQxMTMwMDI1MzU0WjAYMRYwFAYD VQQDEw02NzQxNDNjMy1mZjFlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv0ZoNg6GkWc5f+shHJ4vkT0TX5u1Mk+ZUQJ39/ECWe+dsIAoVl24yQrQn5ZY 0O+WHHw1bw1IccmEE3i4+ZVTuZMmO/pOuNui/yM1ezsD3CFtGbWv18/T//Uu4EqI LpdG29RZ2UR3kj2KlRmPbEN8w6CgPM/+mO/JpbS3kxOIVm9fks/0RGm9YbhcuRIu tPxo6vI4nW7+gzl51vdoLJHqtHreNMJqKjIOsER9nyr+IOOJmaR3cx3sFKk2Ca+x sDNig+zYL+Ate/qWEqrGg9iWmguL5BSSuXuF1PMXu2s8QznHmPLSubYohjjToNWb y47mFBV8bNacRiU6ygMFmqOw3QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEAkli+l lx5aJYUg7DfEfWhfwDzGMB8GA1UdIwQYMBaAFMTSasBsimUlitRJG2nfgykL4YN7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMkRDOC80NDRDNkYxNEVD QjUxMUVEOUQ2OEM0NTBDNEY5QUUwMi94Tkpxd0d5S1pTV0sxRWtiYWQtREtRdmhn M3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hOSnF3R3lLWlNXSzFFa2JhZC1ES1F2aGczcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MkRDOC80NDRDNkYxNEVDQjUxMUVEOUQ2OEM0NTBDNEY5QUUwMi94Tkpxd0d5S1pT V0sxRWtiYWQtREtRdmhnM3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBGyjavVyGFJZI9qVhIp0SXbmy0KCIultz7lmCCfHrlgih90Fg+CMs5 VLQw5SNNFtWMzGIbldibOQ3977kKX6d8+hRfdoZic/xPlV/0bw2lW8BQZb0taWrz 9SJzLwAB8VSdQBnarqezmouXk/VqtL2maQReAu1gQMrnNZYXZDXCPwdE1XKNBPrv MfQ8NySHkNlzq93NY3/B5GhsxL6EnU7X2NPvLZClXGvWgviU+LgnRa2GW2qMLu8+ 4wk9ODVhTYwWQj+usglQSLgZuTUJD4QUa/YTYd0nUheDTvqAKr/RGTBVuGdGVGeC Ov4Eqw2ro2XFzbSpqWa5tuVF6G+7q6+g -----END CERTIFICATE-----Generated at Sat Nov 23 05:02:46 2024 by rpki-client on console-fra.rpki-client.org