$ rpki-client -vvf rpki.apnic.net/member_repository/A9147241/62BB5C74ECF111EAA39D5722C4F9AE02/X2mHOU7ukmatexkjRBv29RNP-VA.mft File: X2mHOU7ukmatexkjRBv29RNP-VA.mft (raw, json) Hash identifier: uQ8WPTtcRrMJW1zjMeCk9N1uF9QPJsw73KI/IAnu9E4= Subject key identifier: F4:80:31:83:9B:BB:2E:32:61:A4:F6:B5:C4:84:03:E7:35:A4:13:D3 Authority key identifier: 5F:69:87:39:4E:EE:92:66:AD:7B:19:23:44:1B:F6:F5:13:4F:F9:50 Certificate issuer: /CN=A9147241/serialNumber=5F6987394EEE9266AD7B1923441BF6F5134FF950 Certificate serial: 0787 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X2mHOU7ukmatexkjRBv29RNP-VA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9147241/62BB5C74ECF111EAA39D5722C4F9AE02/X2mHOU7ukmatexkjRBv29RNP-VA.mft Manifest number: 0781 Signing time: Fri 22 Nov 2024 20:53:56 +0000 Manifest this update: Fri 22 Nov 2024 20:53:55 +0000 Manifest next update: Fri 29 Nov 2024 20:53:55 +0000 Files and hashes: 1: X2mHOU7ukmatexkjRBv29RNP-VA.crl (hash: 5w+skHdUP76iUwdJvaA55VR8f0uqhGSD15XT+LQE9PM=) 2: F69648C2ECF211EABBFDDD24C4F9AE02.roa (hash: AbTa3FvqHZw2c+ID7EYHnElRVbhMiY1lE0h/9V7vHn8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9147241/62BB5C74ECF111EAA39D5722C4F9AE02/X2mHOU7ukmatexkjRBv29RNP-VA.crl rsync://rpki.apnic.net/member_repository/A9147241/62BB5C74ECF111EAA39D5722C4F9AE02/X2mHOU7ukmatexkjRBv29RNP-VA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X2mHOU7ukmatexkjRBv29RNP-VA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1927 (0x787) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9147241/serialNumber=5F6987394EEE9266AD7B1923441BF6F5134FF950 Validity Not Before: Nov 22 20:53:55 2024 GMT Not After : Nov 29 20:53:55 2024 GMT Subject: CN=6740ef63-d098 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:ac:20:f3:44:0a:d9:c1:38:e4:b1:2a:da:d4: d4:9b:e1:12:79:b0:5f:f2:a5:b5:69:35:37:6c:0d: 96:b1:c8:a0:77:b2:5f:df:ae:d8:5e:b1:6f:13:8e: 9f:45:ab:a9:7e:54:43:ca:3a:9c:78:54:21:e1:de: 9f:a2:dc:4e:b5:96:b4:71:74:c6:48:f5:34:3e:30: dd:41:2a:1a:87:a0:93:07:d0:0c:42:90:32:be:c2: 56:89:a0:2d:0d:5f:a0:b2:ff:bc:aa:f7:85:53:44: 17:cc:8f:0d:7a:0e:03:f2:64:5e:39:0e:f7:f9:a4: a8:03:d8:68:c3:49:7e:ca:39:8f:26:41:50:af:6a: 85:b2:06:d1:31:85:ea:5a:2c:98:04:8c:a7:c8:ac: 72:4a:33:94:ce:2a:47:b5:03:cc:ca:9b:78:6b:76: db:46:13:02:8e:e4:69:a0:f2:2d:ef:02:62:b7:b6: f8:a2:f5:78:86:2a:7d:e5:be:a4:6d:6e:9c:50:39: a0:82:ce:a9:0c:e4:79:c4:5e:2d:26:6a:bb:2f:b0: 4f:db:c3:1b:73:f7:11:ed:80:cd:da:d8:b8:d6:aa: e4:4f:35:f5:f9:19:cd:0f:bb:9c:47:4d:53:95:53: 3d:b4:09:3b:6e:75:fa:96:97:1f:d5:11:52:87:4e: 59:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:80:31:83:9B:BB:2E:32:61:A4:F6:B5:C4:84:03:E7:35:A4:13:D3 X509v3 Authority Key Identifier: keyid:5F:69:87:39:4E:EE:92:66:AD:7B:19:23:44:1B:F6:F5:13:4F:F9:50 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9147241/62BB5C74ECF111EAA39D5722C4F9AE02/X2mHOU7ukmatexkjRBv29RNP-VA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X2mHOU7ukmatexkjRBv29RNP-VA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9147241/62BB5C74ECF111EAA39D5722C4F9AE02/X2mHOU7ukmatexkjRBv29RNP-VA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1a:1f:dc:16:af:70:88:e4:3d:ad:9a:b2:c0:6e:71:4f:89:79: 26:77:19:85:9e:94:c0:e6:51:8c:00:39:55:7b:a2:9d:ac:88: 62:cc:7a:c4:fa:b9:02:73:0b:de:87:9d:6b:8e:7e:90:94:8d: 9a:44:d1:79:94:ea:79:a7:f2:7a:7e:d4:31:c7:0e:e3:da:75: 88:df:97:f2:09:f4:3b:42:18:f9:c6:c2:ca:5b:3b:bb:60:4a: 26:8a:d2:75:9c:bd:2c:da:b0:45:fe:42:44:84:83:8b:fa:00: e6:0c:4e:23:37:f8:a2:d0:8b:49:69:f0:9e:25:5d:10:a4:d9: f8:3d:d0:f5:b0:ba:2b:2f:62:79:92:d6:56:c5:74:16:9f:c1: 40:f2:29:8b:f3:5f:62:f9:09:e6:68:3b:24:ba:6c:95:cd:f2: bc:5a:08:ea:03:a0:fe:0c:f3:df:bf:00:66:26:56:2b:84:62: 2c:df:62:29:e8:62:60:c2:50:0a:d8:1c:c3:50:6b:18:4b:e6: c9:eb:f0:31:16:00:bf:a2:6f:db:14:ca:cd:a3:57:17:a4:30: 10:b7:33:4b:1d:a7:2c:a1:8d:33:81:6a:97:f1:9e:0f:66:18: 9f:35:1c:d6:f3:7c:07:4f:cf:4d:97:bc:07:f8:21:63:4e:3e: 44:06:3e:e5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB4cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDcyNDExMTAvBgNVBAUTKDVGNjk4NzM5NEVFRTkyNjZBRDdCMTkyMzQ0MUJGNkY1 MTM0RkY5NTAwHhcNMjQxMTIyMjA1MzU1WhcNMjQxMTI5MjA1MzU1WjAYMRYwFAYD VQQDEw02NzQwZWY2My1kMDk4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAp6wg80QK2cE45LEq2tTUm+ESebBf8qW1aTU3bA2Wscigd7Jf367YXrFvE46f RaupflRDyjqceFQh4d6fotxOtZa0cXTGSPU0PjDdQSoah6CTB9AMQpAyvsJWiaAt DV+gsv+8qveFU0QXzI8Neg4D8mReOQ73+aSoA9how0l+yjmPJkFQr2qFsgbRMYXq WiyYBIynyKxySjOUzipHtQPMypt4a3bbRhMCjuRpoPIt7wJit7b4ovV4hip95b6k bW6cUDmggs6pDOR5xF4tJmq7L7BP28Mbc/cR7YDN2ti41qrkTzX1+RnND7ucR01T lVM9tAk7bnX6lpcf1RFSh05ZKQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPSAMYOb uy4yYaT2tcSEA+c1pBPTMB8GA1UdIwQYMBaAFF9phzlO7pJmrXsZI0Qb9vUTT/lQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NzI0MS82MkJCNUM3NEVD RjExMUVBQTM5RDU3MjJDNEY5QUUwMi9YMm1IT1U3dWttYXRleGtqUkJ2MjlSTlAt VkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1gybUhPVTd1a21hdGV4a2pSQnYyOVJOUC1WQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NzI0MS82MkJCNUM3NEVDRjExMUVBQTM5RDU3MjJDNEY5QUUwMi9YMm1IT1U3dWtt YXRleGtqUkJ2MjlSTlAtVkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAaH9wWr3CI5D2tmrLAbnFPiXkmdxmFnpTA5lGMADlVe6KdrIhizHrE +rkCcwveh51rjn6QlI2aRNF5lOp5p/J6ftQxxw7j2nWI35fyCfQ7Qhj5xsLKWzu7 YEomitJ1nL0s2rBF/kJEhIOL+gDmDE4jN/ii0ItJafCeJV0QpNn4PdD1sLorL2J5 ktZWxXQWn8FA8imL819i+QnmaDskumyVzfK8WgjqA6D+DPPfvwBmJlYrhGIs32Ip 6GJgwlAK2BzDUGsYS+bJ6/AxFgC/om/bFMrNo1cXpDAQtzNLHacsoY0zgWqX8Z4P ZhifNRzW83wHT89Nl7wH+CFjTj5EBj7l -----END CERTIFICATE-----Generated at Fri Nov 22 22:24:07 2024 by rpki-client on console-fra.rpki-client.org