$ rpki-client -vvf rpki.apnic.net/member_repository/A913AE78/F1F4D3CE292911EB94E38D26C4F9AE02/XufPQ5pCIyMpgqLLTeVPN8cgWqk.mft File: XufPQ5pCIyMpgqLLTeVPN8cgWqk.mft (raw, json) Hash identifier: /R6O57ojSKWTww2/JnCXrdkRrPNR4SPIYTwU/CKsytA= Subject key identifier: B1:6B:5B:2E:F6:36:70:23:CC:3D:35:61:0E:A2:BC:E7:79:5A:B0:3E Authority key identifier: 5E:E7:CF:43:9A:42:23:23:29:82:A2:CB:4D:E5:4F:37:C7:20:5A:A9 Certificate issuer: /CN=A913AE78/serialNumber=5EE7CF439A4223232982A2CB4DE54F37C7205AA9 Certificate serial: 06ED Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XufPQ5pCIyMpgqLLTeVPN8cgWqk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913AE78/F1F4D3CE292911EB94E38D26C4F9AE02/XufPQ5pCIyMpgqLLTeVPN8cgWqk.mft Manifest number: 06E7 Signing time: Fri 22 Nov 2024 21:32:46 +0000 Manifest this update: Fri 22 Nov 2024 21:32:46 +0000 Manifest next update: Fri 29 Nov 2024 21:32:46 +0000 Files and hashes: 1: XufPQ5pCIyMpgqLLTeVPN8cgWqk.crl (hash: G5ommJhYF29+8BHnq4sRigr+8XSHBpYbpTRophwlQi4=) 2: D6138A3C292A11EB9CEDCC26C4F9AE02.roa (hash: eaeoz8RqOSGEC4peCpxGpY2PbARdRPwT9kf9QvE/Y6E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913AE78/F1F4D3CE292911EB94E38D26C4F9AE02/XufPQ5pCIyMpgqLLTeVPN8cgWqk.crl rsync://rpki.apnic.net/member_repository/A913AE78/F1F4D3CE292911EB94E38D26C4F9AE02/XufPQ5pCIyMpgqLLTeVPN8cgWqk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XufPQ5pCIyMpgqLLTeVPN8cgWqk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1773 (0x6ed) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913AE78/serialNumber=5EE7CF439A4223232982A2CB4DE54F37C7205AA9 Validity Not Before: Nov 22 21:32:46 2024 GMT Not After : Nov 29 21:32:46 2024 GMT Subject: CN=6740f87e-963b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:d3:c2:cf:a8:12:47:3d:44:e9:0b:11:32:48: 00:1f:e7:a1:69:9e:64:f8:a6:e7:53:1f:52:ac:3a: bc:b3:a1:13:f9:61:a7:46:8a:fc:ad:d3:ac:06:71: 6d:11:88:68:c7:d6:b5:8b:df:43:e9:4b:b5:9a:8f: c5:8f:b3:95:24:56:5b:2f:f0:53:9c:1d:cd:4e:99: 3d:45:64:4b:73:d4:8f:3f:ba:86:0b:a8:10:0d:93: b2:61:45:03:37:3b:3c:e4:a8:25:50:d6:62:1a:e4: af:9c:05:54:88:03:b6:86:fe:0a:27:9e:33:39:7f: cd:21:c7:52:0b:c5:21:9c:e2:7b:76:ef:1b:72:63: 2e:42:d0:fb:2a:8b:3e:80:c0:e8:27:9c:2e:c9:3c: 3f:1b:ea:40:58:af:25:9b:af:f7:93:5a:e9:5b:4a: ac:3e:b2:3a:70:d3:e6:4e:d9:54:ca:9c:39:51:b8: 24:88:3a:67:b9:b7:e7:ed:45:70:e5:82:ff:06:09: d3:b0:cb:16:92:30:f1:74:88:64:05:74:f9:64:b5: 27:90:31:56:ae:43:89:28:cb:b3:19:93:f3:a9:17: 25:32:42:65:37:0f:71:3a:c3:d7:f4:ef:48:61:77: 5d:bd:82:fd:4d:93:6d:4f:7c:0e:da:89:e3:25:bf: e7:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:6B:5B:2E:F6:36:70:23:CC:3D:35:61:0E:A2:BC:E7:79:5A:B0:3E X509v3 Authority Key Identifier: keyid:5E:E7:CF:43:9A:42:23:23:29:82:A2:CB:4D:E5:4F:37:C7:20:5A:A9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913AE78/F1F4D3CE292911EB94E38D26C4F9AE02/XufPQ5pCIyMpgqLLTeVPN8cgWqk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XufPQ5pCIyMpgqLLTeVPN8cgWqk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913AE78/F1F4D3CE292911EB94E38D26C4F9AE02/XufPQ5pCIyMpgqLLTeVPN8cgWqk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0a:a9:c3:76:e0:f2:11:8b:c3:d9:9d:c5:cf:b1:21:00:e1:73: aa:c3:bf:cb:0c:6e:0f:f2:5f:90:88:14:7d:7b:df:f2:a6:5e: 38:ba:fb:5f:18:cc:5e:23:19:07:57:e6:2a:d0:2e:34:a1:41: 11:fd:85:c3:82:aa:a0:54:9f:c5:85:0c:3e:ed:74:9b:9b:fe: cc:dd:e3:1c:97:75:39:22:f7:ea:9e:8b:cf:d4:de:fd:54:1b: d0:d6:06:3c:93:b2:6b:b6:96:08:fb:d5:65:fb:8d:78:bb:9d: 06:f4:22:30:94:49:75:09:3b:2d:64:f7:fd:09:ff:fa:8b:54: ea:88:3c:dc:10:ae:2e:c7:b9:02:b4:3e:ac:a7:65:39:91:93: 43:d0:34:8a:1c:46:c7:98:1b:76:22:80:f5:d2:d2:e1:40:a8: 50:a7:d7:a4:a1:f5:fa:56:df:85:5d:93:3c:8f:27:5d:ea:6b: 91:22:28:17:50:20:6c:b6:a6:84:63:a7:35:ee:69:6c:52:0c: 2e:33:f7:f0:c6:49:52:dc:c8:fe:df:96:b3:1d:e1:50:45:11: 68:d8:af:ec:20:e3:f1:e4:28:86:37:cc:ee:68:bb:6f:51:23: e7:da:a1:5a:25:72:98:63:ff:4a:99:2b:ec:7c:b2:05:55:d3: aa:29:96:35 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBu0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0FFNzgxMTAvBgNVBAUTKDVFRTdDRjQzOUE0MjIzMjMyOTgyQTJDQjRERTU0RjM3 QzcyMDVBQTkwHhcNMjQxMTIyMjEzMjQ2WhcNMjQxMTI5MjEzMjQ2WjAYMRYwFAYD VQQDEw02NzQwZjg3ZS05NjNiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4tPCz6gSRz1E6QsRMkgAH+ehaZ5k+KbnUx9SrDq8s6ET+WGnRor8rdOsBnFt EYhox9a1i99D6Uu1mo/Fj7OVJFZbL/BTnB3NTpk9RWRLc9SPP7qGC6gQDZOyYUUD Nzs85KglUNZiGuSvnAVUiAO2hv4KJ54zOX/NIcdSC8UhnOJ7du8bcmMuQtD7Kos+ gMDoJ5wuyTw/G+pAWK8lm6/3k1rpW0qsPrI6cNPmTtlUypw5UbgkiDpnubfn7UVw 5YL/BgnTsMsWkjDxdIhkBXT5ZLUnkDFWrkOJKMuzGZPzqRclMkJlNw9xOsPX9O9I YXddvYL9TZNtT3wO2onjJb/n8QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLFrWy72 NnAjzD01YQ6ivOd5WrA+MB8GA1UdIwQYMBaAFF7nz0OaQiMjKYKiy03lTzfHIFqp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQUU3OC9GMUY0RDNDRTI5 MjkxMUVCOTRFMzhEMjZDNEY5QUUwMi9YdWZQUTVwQ0l5TXBncUxMVGVWUE44Y2dX cWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1h1ZlBRNXBDSXlNcGdxTExUZVZQTjhjZ1dxay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz QUU3OC9GMUY0RDNDRTI5MjkxMUVCOTRFMzhEMjZDNEY5QUUwMi9YdWZQUTVwQ0l5 TXBncUxMVGVWUE44Y2dXcWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAKqcN24PIRi8PZncXPsSEA4XOqw7/LDG4P8l+QiBR9e9/ypl44uvtf GMxeIxkHV+Yq0C40oUER/YXDgqqgVJ/FhQw+7XSbm/7M3eMcl3U5IvfqnovP1N79 VBvQ1gY8k7JrtpYI+9Vl+414u50G9CIwlEl1CTstZPf9Cf/6i1TqiDzcEK4ux7kC tD6sp2U5kZND0DSKHEbHmBt2IoD10tLhQKhQp9ekofX6Vt+FXZM8jydd6muRIigX UCBstqaEY6c17mlsUgwuM/fwxklS3Mj+35azHeFQRRFo2K/sIOPx5CiGN8zuaLtv USPn2qFaJXKYY/9KmSvsfLIFVdOqKZY1 -----END CERTIFICATE-----Generated at Fri Nov 22 22:24:07 2024 by rpki-client on console-fra.rpki-client.org