$ rpki-client -vvf rpki.apnic.net/member_repository/A9133B47/871B92940FA411EFA1A16934C4F9AE02/XfVm12I2fCjH8_ElYbRxa4yhuWY.mft File: XfVm12I2fCjH8_ElYbRxa4yhuWY.mft (raw, json) Hash identifier: zLQFx2SQY+s6f6fsERGQybDUQGoCLVuCiarvReDAgq0= Subject key identifier: E1:6C:0C:D4:E2:81:FF:86:F8:68:E7:38:CC:25:BF:A4:8A:ED:FD:59 Authority key identifier: 5D:F5:66:D7:62:36:7C:28:C7:F3:F1:25:61:B4:71:6B:8C:A1:B9:66 Certificate issuer: /CN=A9133B47/serialNumber=5DF566D762367C28C7F3F12561B4716B8CA1B966 Certificate serial: 69 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XfVm12I2fCjH8_ElYbRxa4yhuWY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9133B47/871B92940FA411EFA1A16934C4F9AE02/XfVm12I2fCjH8_ElYbRxa4yhuWY.mft Manifest number: 67 Signing time: Sat 23 Nov 2024 04:57:33 +0000 Manifest this update: Sat 23 Nov 2024 04:57:32 +0000 Manifest next update: Sat 30 Nov 2024 04:57:32 +0000 Files and hashes: 1: XfVm12I2fCjH8_ElYbRxa4yhuWY.crl (hash: JB25XRu+ylKN6TAXzOmY92RZ1L4SftaJCISeNwUQ29s=) 2: 23B1A0120FA511EFB28F5235C4F9AE02.roa (hash: hXpBoYToApPmmdPekjKleadge49SIJY0fjcaISdG6yE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9133B47/871B92940FA411EFA1A16934C4F9AE02/XfVm12I2fCjH8_ElYbRxa4yhuWY.crl rsync://rpki.apnic.net/member_repository/A9133B47/871B92940FA411EFA1A16934C4F9AE02/XfVm12I2fCjH8_ElYbRxa4yhuWY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XfVm12I2fCjH8_ElYbRxa4yhuWY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 105 (0x69) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9133B47/serialNumber=5DF566D762367C28C7F3F12561B4716B8CA1B966 Validity Not Before: Nov 23 04:57:32 2024 GMT Not After : Nov 30 04:57:32 2024 GMT Subject: CN=674160bc-df50 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:b3:c9:4c:bd:e9:c1:98:44:fc:55:09:c1:6a: 7d:72:ab:0c:01:8c:8b:a1:00:b5:01:bc:79:b8:32: 01:da:4d:50:9a:63:f9:b7:7c:54:1b:a7:63:e8:1b: ea:8d:cc:45:4e:96:86:ae:7f:5b:1b:e7:ad:58:6a: 88:2b:41:8e:0d:f4:8d:61:c1:51:18:fa:5c:8c:02: 82:df:b1:de:32:5f:41:97:b0:8b:7b:6e:ed:d9:ce: 7a:f2:9c:c0:92:a0:ff:fe:ed:e9:0d:f6:74:56:c8: 13:d3:24:c0:cb:aa:b5:52:d6:eb:5d:1d:17:6e:0a: 2a:2b:45:dc:50:82:6d:5f:c1:26:8f:b0:15:41:de: 25:0f:27:48:cb:33:56:21:78:d1:65:28:35:89:c6: 13:4d:ea:90:5b:dc:8c:f8:17:1d:e7:42:4d:69:06: bb:0a:56:9a:9a:e4:fd:1d:52:a2:cf:63:67:27:3a: 00:21:85:67:c6:96:8c:c7:92:02:d3:d3:09:82:77: f8:09:f3:ed:d4:da:5b:74:2d:9f:7a:db:62:d0:cc: f8:4a:22:50:51:bb:e0:18:eb:70:be:88:f4:56:be: bb:b9:eb:32:d7:85:94:21:d5:7f:a7:2d:ad:51:62: 15:3c:4c:bf:78:64:d7:4f:1c:dd:f3:74:77:91:ec: 54:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:6C:0C:D4:E2:81:FF:86:F8:68:E7:38:CC:25:BF:A4:8A:ED:FD:59 X509v3 Authority Key Identifier: keyid:5D:F5:66:D7:62:36:7C:28:C7:F3:F1:25:61:B4:71:6B:8C:A1:B9:66 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9133B47/871B92940FA411EFA1A16934C4F9AE02/XfVm12I2fCjH8_ElYbRxa4yhuWY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XfVm12I2fCjH8_ElYbRxa4yhuWY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9133B47/871B92940FA411EFA1A16934C4F9AE02/XfVm12I2fCjH8_ElYbRxa4yhuWY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2f:ed:23:40:ab:d9:94:55:01:cf:35:3d:9e:d4:37:2b:df:b7: cd:a5:62:fc:09:57:65:63:fc:95:51:31:22:89:28:7d:55:00: 98:7a:17:43:b4:5a:ea:86:cd:21:7f:4a:1e:71:54:0f:34:61: 83:ab:ea:51:fe:92:63:d8:48:b3:31:80:81:15:ed:de:df:5a: 03:7b:47:fb:a1:c9:91:a9:49:b4:94:80:0c:5b:56:36:06:c3: e9:6e:da:5a:bf:34:e1:27:d8:af:f4:77:c6:4a:fa:f1:ae:45: e2:0d:87:3d:28:49:6c:82:52:6f:ca:20:22:84:8e:00:a3:d3: bc:d6:76:bf:8d:26:4f:21:fc:bd:d4:8f:ad:9a:f9:c2:d8:ec: 81:b3:cd:61:00:1b:4e:18:82:51:91:49:49:11:08:05:0d:dc: 12:9b:68:d7:0c:b2:ce:25:ef:ac:bd:de:69:9f:79:96:ad:2d: 4e:0a:e4:5c:16:c4:47:3a:f6:22:21:60:2e:25:7e:69:34:61: 57:ae:23:ac:8c:4e:ab:4b:1f:49:19:ff:d9:cc:7c:1a:a9:e5: 93:72:69:fd:90:c3:d3:41:b3:e8:5f:5f:6f:8b:0c:74:fb:4d: 58:07:c8:64:c6:51:b6:1a:4e:04:fb:6e:e0:8a:51:ce:65:d1: 54:f1:86:c7 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBaTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEz M0I0NzExMC8GA1UEBRMoNURGNTY2RDc2MjM2N0MyOEM3RjNGMTI1NjFCNDcxNkI4 Q0ExQjk2NjAeFw0yNDExMjMwNDU3MzJaFw0yNDExMzAwNDU3MzJaMBgxFjAUBgNV BAMTDTY3NDE2MGJjLWRmNTAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDDs8lMvenBmET8VQnBan1yqwwBjIuhALUBvHm4MgHaTVCaY/m3fFQbp2PoG+qN zEVOloauf1sb561YaogrQY4N9I1hwVEY+lyMAoLfsd4yX0GXsIt7bu3ZznrynMCS oP/+7ekN9nRWyBPTJMDLqrVS1utdHRduCiorRdxQgm1fwSaPsBVB3iUPJ0jLM1Yh eNFlKDWJxhNN6pBb3Iz4Fx3nQk1pBrsKVpqa5P0dUqLPY2cnOgAhhWfGlozHkgLT 0wmCd/gJ8+3U2lt0LZ9622LQzPhKIlBRu+AY63C+iPRWvru56zLXhZQh1X+nLa1R YhU8TL94ZNdPHN3zdHeR7FSdAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU4WwM1OKB /4b4aOc4zCW/pIrt/VkwHwYDVR0jBBgwFoAUXfVm12I2fCjH8/ElYbRxa4yhuWYw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTMzQjQ3Lzg3MUI5Mjk0MEZB NDExRUZBMUExNjkzNEM0RjlBRTAyL1hmVm0xMkkyZkNqSDhfRWxZYlJ4YTR5aHVX WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvWGZWbTEySTJmQ2pIOF9FbFliUnhhNHlodVdZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTMz QjQ3Lzg3MUI5Mjk0MEZBNDExRUZBMUExNjkzNEM0RjlBRTAyL1hmVm0xMkkyZkNq SDhfRWxZYlJ4YTR5aHVXWS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAC/tI0Cr2ZRVAc81PZ7UNyvft82lYvwJV2Vj/JVRMSKJKH1VAJh6F0O0 WuqGzSF/Sh5xVA80YYOr6lH+kmPYSLMxgIEV7d7fWgN7R/uhyZGpSbSUgAxbVjYG w+lu2lq/NOEn2K/0d8ZK+vGuReINhz0oSWyCUm/KICKEjgCj07zWdr+NJk8h/L3U j62a+cLY7IGzzWEAG04YglGRSUkRCAUN3BKbaNcMss4l76y93mmfeZatLU4K5FwW xEc69iIhYC4lfmk0YVeuI6yMTqtLH0kZ/9nMfBqp5ZNyaf2Qw9NBs+hfX2+LDHT7 TVgHyGTGUbYaTgT7buCKUc5l0VTxhsc= -----END CERTIFICATE-----Generated at Sat Nov 23 06:13:05 2024 by rpki-client on console-ams.rpki-client.org