$ rpki-client -vvf rpki.apnic.net/member_repository/A9136C7C/2B5CAAE869E511EEBB668246C4F9AE02/XTwWiWSSv8hwyKALZou_6VlF-No.mft File: XTwWiWSSv8hwyKALZou_6VlF-No.mft (raw, json) Hash identifier: y0shSbg05K8ktkJ7yOQlUW0rXD5pYbiSSL65F8TDqE0= Subject key identifier: 22:CA:BF:BC:11:FE:67:29:AB:F4:BC:1F:9D:39:21:01:3A:10:2B:4E Authority key identifier: 5D:3C:16:89:64:92:BF:C8:70:C8:A0:0B:66:8B:BF:E9:59:45:F8:DA Certificate issuer: /CN=A9136C7C/serialNumber=5D3C16896492BFC870C8A00B668BBFE95945F8DA Certificate serial: D9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XTwWiWSSv8hwyKALZou_6VlF-No.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9136C7C/2B5CAAE869E511EEBB668246C4F9AE02/XTwWiWSSv8hwyKALZou_6VlF-No.mft Manifest number: D3 Signing time: Thu 21 Nov 2024 03:49:35 +0000 Manifest this update: Thu 21 Nov 2024 03:49:34 +0000 Manifest next update: Thu 28 Nov 2024 03:49:34 +0000 Files and hashes: 1: XTwWiWSSv8hwyKALZou_6VlF-No.crl (hash: HNnajIC55r2A6D6rs67L8i5pcPX1kKbvDRKfiDvZSgA=) 2: DFE29CB669E511EE92E9E35AC4F9AE02.roa (hash: 4bTWH9M590F1oNYI+4009Dgzv1wi5Ma+iLsvHoitUUg=) 3: DF0BED1069E511EE92E9E35AC4F9AE02.roa (hash: KqPIH/H/B9T4h72HKj+O5mzRF+YoT4ryPu+BJg3Ag5E=) 4: DF7C0A6E69E511EE92E9E35AC4F9AE02.roa (hash: iJRwMxkdNQLeeEVuslXyXtf9B8dgpFmmL7UpHuO43X0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9136C7C/2B5CAAE869E511EEBB668246C4F9AE02/XTwWiWSSv8hwyKALZou_6VlF-No.crl rsync://rpki.apnic.net/member_repository/A9136C7C/2B5CAAE869E511EEBB668246C4F9AE02/XTwWiWSSv8hwyKALZou_6VlF-No.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XTwWiWSSv8hwyKALZou_6VlF-No.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 03:49:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 217 (0xd9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9136C7C/serialNumber=5D3C16896492BFC870C8A00B668BBFE95945F8DA Validity Not Before: Nov 21 03:49:34 2024 GMT Not After : Nov 28 03:49:34 2024 GMT Subject: CN=673eadce-427c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:b0:77:24:37:61:e0:95:8e:3b:77:00:25:cd: d4:90:2a:45:b6:3e:b5:89:36:0b:b8:02:b6:5f:17: 4d:58:35:71:d0:43:14:53:01:fc:f8:b9:f2:3c:49: 66:ed:0e:22:50:3f:e0:82:ce:fd:ce:77:b6:0c:b5: 66:74:77:b1:08:3f:37:b9:72:8b:dc:d9:86:bd:c3: 10:aa:0b:1a:7a:1f:f0:97:84:0f:bf:35:27:ab:57: f8:04:14:8a:09:62:bc:01:7f:f3:83:d7:04:21:e7: 63:1a:a6:36:30:70:91:95:24:f0:b5:bd:64:b1:20: 1d:e5:10:18:bf:8e:fd:03:fa:54:03:c8:8c:fb:17: ab:ab:88:d6:10:58:db:d7:a4:b0:cf:db:19:ba:d4: 31:f3:b7:df:60:20:12:34:d9:73:dc:fe:1d:c9:e1: 6d:ff:9b:ab:fa:85:ac:38:61:8f:8a:f6:0d:7f:4a: 17:03:63:25:58:53:59:83:f2:5f:5b:65:d2:b8:f4: 75:86:b9:88:fe:0c:c4:05:29:f6:e6:63:7c:43:c4: cd:b3:7e:55:85:b4:e6:6d:e8:8f:83:32:cc:99:60: b2:a3:93:bc:eb:a0:74:3e:26:e3:f4:5c:d3:d7:28: a9:a2:86:95:b3:ee:56:6e:67:4a:8f:fc:e9:ac:2b: db:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:CA:BF:BC:11:FE:67:29:AB:F4:BC:1F:9D:39:21:01:3A:10:2B:4E X509v3 Authority Key Identifier: keyid:5D:3C:16:89:64:92:BF:C8:70:C8:A0:0B:66:8B:BF:E9:59:45:F8:DA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9136C7C/2B5CAAE869E511EEBB668246C4F9AE02/XTwWiWSSv8hwyKALZou_6VlF-No.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XTwWiWSSv8hwyKALZou_6VlF-No.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9136C7C/2B5CAAE869E511EEBB668246C4F9AE02/XTwWiWSSv8hwyKALZou_6VlF-No.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1e:86:e7:1c:26:b6:18:3b:b0:ad:4b:50:5a:11:fe:83:69:aa: 01:0e:ba:64:03:b3:f0:02:ad:a5:fe:c0:1c:3d:a1:05:6d:7a: 8d:88:6b:b0:b0:05:ee:6f:53:b3:e9:56:a4:c6:74:8e:b2:e5: e1:e1:6e:82:3b:85:eb:24:8c:1f:b5:8b:cf:da:d8:46:7f:bb: 25:40:6c:26:1e:b8:de:7a:4e:22:9d:86:9f:a9:f2:3d:78:9b: 8f:2d:4b:2b:60:b4:d7:f5:80:4e:8d:c1:0f:60:65:7c:58:66: 67:c8:88:10:e1:a4:6e:dc:02:50:18:7c:fd:4f:e4:39:7e:38: 16:98:5d:89:fb:c6:ef:c8:6b:e8:c8:59:eb:07:93:80:79:72: fa:cc:99:58:ab:51:15:88:5b:60:c3:3a:3f:18:41:68:1d:ef: 85:20:44:dc:c5:f0:f5:f6:51:1c:d8:cc:09:33:59:75:1c:6e: 10:3c:fd:cc:01:09:95:ac:2e:74:3a:cb:f7:86:d0:7d:16:b8: 81:4f:74:aa:55:e1:0d:12:be:69:f5:a5:ed:23:c9:af:00:11: 89:55:3b:4f:ed:81:29:59:d0:22:1e:d0:ee:83:29:f2:73:b3: 8b:da:76:59:cd:2a:98:56:f6:97:18:91:d9:ad:6b:e4:e6:fe: 0c:79:f0:f8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICANkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzZDN0MxMTAvBgNVBAUTKDVEM0MxNjg5NjQ5MkJGQzg3MEM4QTAwQjY2OEJCRkU5 NTk0NUY4REEwHhcNMjQxMTIxMDM0OTM0WhcNMjQxMTI4MDM0OTM0WjAYMRYwFAYD VQQDEw02NzNlYWRjZS00MjdjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtbB3JDdh4JWOO3cAJc3UkCpFtj61iTYLuAK2XxdNWDVx0EMUUwH8+LnyPElm 7Q4iUD/ggs79zne2DLVmdHexCD83uXKL3NmGvcMQqgsaeh/wl4QPvzUnq1f4BBSK CWK8AX/zg9cEIedjGqY2MHCRlSTwtb1ksSAd5RAYv479A/pUA8iM+xerq4jWEFjb 16Swz9sZutQx87ffYCASNNlz3P4dyeFt/5ur+oWsOGGPivYNf0oXA2MlWFNZg/Jf W2XSuPR1hrmI/gzEBSn25mN8Q8TNs35VhbTmbeiPgzLMmWCyo5O866B0Pibj9FzT 1yipooaVs+5WbmdKj/zprCvbLQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCLKv7wR /mcpq/S8H505IQE6ECtOMB8GA1UdIwQYMBaAFF08Folkkr/IcMigC2aLv+lZRfja MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNkM3Qy8yQjVDQUFFODY5 RTUxMUVFQkI2NjgyNDZDNEY5QUUwMi9YVHdXaVdTU3Y4aHd5S0FMWm91XzZWbEYt Tm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hUd1dpV1NTdjhod3lLQUxab3VfNlZsRi1Oby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NkM3Qy8yQjVDQUFFODY5RTUxMUVFQkI2NjgyNDZDNEY5QUUwMi9YVHdXaVdTU3Y4 aHd5S0FMWm91XzZWbEYtTm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAehuccJrYYO7CtS1BaEf6DaaoBDrpkA7PwAq2l/sAcPaEFbXqNiGuw sAXub1Oz6VakxnSOsuXh4W6CO4XrJIwftYvP2thGf7slQGwmHrjeek4inYafqfI9 eJuPLUsrYLTX9YBOjcEPYGV8WGZnyIgQ4aRu3AJQGHz9T+Q5fjgWmF2J+8bvyGvo yFnrB5OAeXL6zJlYq1EViFtgwzo/GEFoHe+FIETcxfD19lEc2MwJM1l1HG4QPP3M AQmVrC50Osv3htB9FriBT3SqVeENEr5p9aXtI8mvABGJVTtP7YEpWdAiHtDugyny c7OL2nZZzSqYVvaXGJHZrWvk5v4MefD4 -----END CERTIFICATE-----Generated at Thu Nov 21 05:05:55 2024 by rpki-client on console-fra.rpki-client.org