$ rpki-client -vvf rpki.apnic.net/member_repository/A913638A/5BDD2CAE954711EF96808F2CC4F9AE02/xGxDuid9LBDufR7_PfDi78iFGh0.mft File: xGxDuid9LBDufR7_PfDi78iFGh0.mft (raw, json) Hash identifier: ++VTtUKGZTMntMdaO4PWGuET1BslAf7xladb1A+Bxj4= Subject key identifier: 64:CB:78:C0:C5:1E:1D:11:6D:8D:7C:E3:68:66:16:2A:13:44:D2:65 Authority key identifier: C4:6C:43:BA:27:7D:2C:10:EE:7D:1E:FF:3D:F0:E2:EF:C8:85:1A:1D Certificate issuer: /CN=A913638A/serialNumber=C46C43BA277D2C10EE7D1EFF3DF0E2EFC8851A1D Certificate serial: 10 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xGxDuid9LBDufR7_PfDi78iFGh0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913638A/5BDD2CAE954711EF96808F2CC4F9AE02/xGxDuid9LBDufR7_PfDi78iFGh0.mft Manifest number: 0F Signing time: Sat 23 Nov 2024 06:00:58 +0000 Manifest this update: Sat 23 Nov 2024 06:00:57 +0000 Manifest next update: Sat 30 Nov 2024 06:00:57 +0000 Files and hashes: 1: xGxDuid9LBDufR7_PfDi78iFGh0.crl (hash: uNy8WKXWiq9Ok+bbWRMGTk51iIcIRPVIluNq2DXCXGg=) 2: 9D7ED59A954711EF9830412DC4F9AE02.roa (hash: uh0RsXXXDr4A3r/l+n4K/1lemqOiMBSx6tfsdjRL1A4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913638A/5BDD2CAE954711EF96808F2CC4F9AE02/xGxDuid9LBDufR7_PfDi78iFGh0.crl rsync://rpki.apnic.net/member_repository/A913638A/5BDD2CAE954711EF96808F2CC4F9AE02/xGxDuid9LBDufR7_PfDi78iFGh0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xGxDuid9LBDufR7_PfDi78iFGh0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 16 (0x10) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913638A/serialNumber=C46C43BA277D2C10EE7D1EFF3DF0E2EFC8851A1D Validity Not Before: Nov 23 06:00:57 2024 GMT Not After : Nov 30 06:00:57 2024 GMT Subject: CN=67416f99-e21d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:7f:8e:ac:da:cd:20:93:f4:40:03:4c:84:c9: 4b:49:eb:3b:2d:00:10:bb:00:26:9c:cf:d9:f8:26: ff:07:cb:07:1b:06:be:b2:ab:0a:b7:ab:76:27:3b: 1a:dc:4e:45:e2:df:27:d5:d1:7b:87:6c:72:71:3c: 6e:8f:0a:01:6a:6a:03:d2:9b:e1:4d:1a:7b:9e:7a: e9:52:cf:b6:3d:de:0b:01:40:ac:f8:c8:47:b2:48: e3:76:90:f2:33:a1:4a:06:db:f8:25:7d:ab:3f:2e: d3:1c:c4:58:e4:8a:50:db:e6:21:dc:cd:a9:b0:15: b0:04:7d:d5:09:8f:20:f8:6f:93:1e:93:8b:83:9a: 45:41:60:16:49:02:46:6b:6c:23:80:c9:ee:3c:8e: 63:8d:56:4f:00:ec:60:71:50:9c:fd:ec:54:be:53: f7:74:9f:c7:90:32:bc:04:63:f6:95:92:3f:3f:1d: dc:6b:65:21:d8:ff:88:f6:c0:cb:c7:c7:96:a8:ce: 8c:c3:3f:bd:f1:2b:d1:65:68:56:e6:1d:d4:b8:39: 74:24:8c:85:78:87:5f:0a:18:cb:dc:df:f0:95:12: 1a:7f:71:7e:5c:b0:c2:e6:c6:07:8f:9c:27:6d:ff: 11:af:26:b6:36:de:c8:1f:95:2f:09:fa:78:86:45: d9:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:CB:78:C0:C5:1E:1D:11:6D:8D:7C:E3:68:66:16:2A:13:44:D2:65 X509v3 Authority Key Identifier: keyid:C4:6C:43:BA:27:7D:2C:10:EE:7D:1E:FF:3D:F0:E2:EF:C8:85:1A:1D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913638A/5BDD2CAE954711EF96808F2CC4F9AE02/xGxDuid9LBDufR7_PfDi78iFGh0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xGxDuid9LBDufR7_PfDi78iFGh0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913638A/5BDD2CAE954711EF96808F2CC4F9AE02/xGxDuid9LBDufR7_PfDi78iFGh0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a1:af:77:09:66:ad:9f:40:88:0a:3e:97:87:9e:df:f0:7a:8d: d2:65:3a:09:85:84:d2:b3:23:0f:71:d6:85:70:15:8d:ee:f4: e3:9d:91:fe:aa:2f:b5:16:62:c2:76:f4:86:fd:21:7a:fd:35: 05:c5:11:90:91:ab:0d:1f:69:a1:dd:b0:e9:00:02:9d:3c:45: 3a:67:b1:dd:4a:fa:52:71:d4:d9:06:88:62:92:0d:b4:5c:a0: 5f:43:97:35:51:70:fb:7f:46:49:b2:c4:34:76:9e:2e:07:f6: 3a:91:37:bf:88:49:b3:d9:c8:db:70:b4:cd:7f:f7:69:b2:c0: eb:64:d2:80:8b:b5:eb:4e:8d:6f:b9:97:bc:86:fa:fa:21:0a: de:a6:0f:48:c3:5b:1f:14:0a:a8:ad:a0:ab:3a:91:ce:ad:43: b1:4b:eb:a0:29:54:1c:13:01:77:8d:14:90:b8:32:79:fc:b6: 8a:98:43:99:a6:24:5a:e0:c0:54:ad:bd:32:5d:a2:a6:b0:e3: cd:db:5f:2e:97:fb:f3:a3:3e:7f:f5:65:3b:9e:9e:8c:a9:95: 2f:a0:1b:4f:70:b6:ac:9b:73:95:06:c6:e9:23:67:1e:e1:01: 58:17:fa:35:69:cf:fc:d5:ce:d6:ce:50:8a:f3:30:11:f7:13: b9:7b:f7:77 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBEDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEz NjM4QTExMC8GA1UEBRMoQzQ2QzQzQkEyNzdEMkMxMEVFN0QxRUZGM0RGMEUyRUZD ODg1MUExRDAeFw0yNDExMjMwNjAwNTdaFw0yNDExMzAwNjAwNTdaMBgxFjAUBgNV BAMTDTY3NDE2Zjk5LWUyMWQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDrf46s2s0gk/RAA0yEyUtJ6zstABC7ACacz9n4Jv8HywcbBr6yqwq3q3YnOxrc TkXi3yfV0XuHbHJxPG6PCgFqagPSm+FNGnueeulSz7Y93gsBQKz4yEeySON2kPIz oUoG2/glfas/LtMcxFjkilDb5iHczamwFbAEfdUJjyD4b5Mek4uDmkVBYBZJAkZr bCOAye48jmONVk8A7GBxUJz97FS+U/d0n8eQMrwEY/aVkj8/HdxrZSHY/4j2wMvH x5aozozDP73xK9FlaFbmHdS4OXQkjIV4h18KGMvc3/CVEhp/cX5csMLmxgePnCdt /xGvJrY23sgflS8J+niGRdmtAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUZMt4wMUe HRFtjXzjaGYWKhNE0mUwHwYDVR0jBBgwFoAUxGxDuid9LBDufR7/PfDi78iFGh0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTM2MzhBLzVCREQyQ0FFOTU0 NzExRUY5NjgwOEYyQ0M0RjlBRTAyL3hHeER1aWQ5TEJEdWZSN19QZkRpNzhpRkdo MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIveEd4RHVpZDlMQkR1ZlI3X1BmRGk3OGlGR2gwLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTM2 MzhBLzVCREQyQ0FFOTU0NzExRUY5NjgwOEYyQ0M0RjlBRTAyL3hHeER1aWQ5TEJE dWZSN19QZkRpNzhpRkdoMC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAKGvdwlmrZ9AiAo+l4ee3/B6jdJlOgmFhNKzIw9x1oVwFY3u9OOdkf6q L7UWYsJ29Ib9IXr9NQXFEZCRqw0faaHdsOkAAp08RTpnsd1K+lJx1NkGiGKSDbRc oF9DlzVRcPt/RkmyxDR2ni4H9jqRN7+ISbPZyNtwtM1/92mywOtk0oCLtetOjW+5 l7yG+vohCt6mD0jDWx8UCqitoKs6kc6tQ7FL66ApVBwTAXeNFJC4Mnn8toqYQ5mm JFrgwFStvTJdoqaw483bXy6X+/OjPn/1ZTuenoyplS+gG09wtqybc5UGxukjZx7h AVgX+jVpz/zVztbOUIrzMBH3E7l793c= -----END CERTIFICATE-----Generated at Sat Nov 23 07:45:02 2024 by rpki-client on console-ams.rpki-client.org