$ rpki-client -vvf rpki.apnic.net/member_repository/A91490C8/CC2338DC6E5111EEA47E2B74C4F9AE02/MxjodUE2Qh4kSmxB3aXezBDaj4E.mft File: MxjodUE2Qh4kSmxB3aXezBDaj4E.mft (raw, json) Hash identifier: rnjsqzKL7tv+XsZvG9YmdQ80Xf+zoEDIjbIkP0T2mJg= Subject key identifier: 4C:2D:01:71:C4:B7:C4:3C:AB:6D:11:25:CC:8B:88:46:0E:4E:F7:0B Authority key identifier: 33:18:E8:75:41:36:42:1E:24:4A:6C:41:DD:A5:DE:CC:10:DA:8F:81 Certificate issuer: /CN=A91490C8/serialNumber=3318E8754136421E244A6C41DDA5DECC10DA8F81 Certificate serial: CF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MxjodUE2Qh4kSmxB3aXezBDaj4E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91490C8/CC2338DC6E5111EEA47E2B74C4F9AE02/MxjodUE2Qh4kSmxB3aXezBDaj4E.mft Manifest number: CD Signing time: Thu 21 Nov 2024 03:51:56 +0000 Manifest this update: Thu 21 Nov 2024 03:51:56 +0000 Manifest next update: Thu 28 Nov 2024 03:51:56 +0000 Files and hashes: 1: MxjodUE2Qh4kSmxB3aXezBDaj4E.crl (hash: AHIrDOWCyYKGynd+V80Zkv4zmOLkZZV5G1/uak/jbks=) 2: 2201EFC86E5211EEB027A974C4F9AE02.roa (hash: 4nQ3/xG4CFEbotiusShRvyeKgM0UbijAal8OSC/u9HU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91490C8/CC2338DC6E5111EEA47E2B74C4F9AE02/MxjodUE2Qh4kSmxB3aXezBDaj4E.crl rsync://rpki.apnic.net/member_repository/A91490C8/CC2338DC6E5111EEA47E2B74C4F9AE02/MxjodUE2Qh4kSmxB3aXezBDaj4E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MxjodUE2Qh4kSmxB3aXezBDaj4E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 03:51:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 207 (0xcf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91490C8/serialNumber=3318E8754136421E244A6C41DDA5DECC10DA8F81 Validity Not Before: Nov 21 03:51:56 2024 GMT Not After : Nov 28 03:51:56 2024 GMT Subject: CN=673eae5c-56c7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:6d:af:d9:48:ae:91:4d:48:1b:02:d9:65:54: 5a:3d:15:ab:c8:22:d3:b0:27:40:de:8a:28:aa:2a: f2:cf:92:91:3b:fa:b4:6c:9c:49:6d:e7:63:5a:09: 6f:e4:b9:4f:59:77:53:26:1f:cc:f2:77:cf:8c:7d: 4e:ec:ee:18:3c:90:66:81:fc:65:45:49:24:88:ad: 8b:6a:7a:b2:2a:d8:46:8b:6a:43:22:fb:34:78:b2: 85:63:b6:df:18:f9:29:47:7b:92:e5:9a:dd:c7:78: 6c:9a:f0:17:04:d7:28:08:20:43:b7:5c:26:a4:9a: fd:fc:c4:c4:6f:d1:b1:c6:d4:56:01:a4:8e:ea:c0: 3f:c8:d7:06:df:e4:d0:02:4f:e5:94:64:ad:a5:3f: d9:22:4e:43:3f:8a:ba:1d:a6:d2:17:bb:4b:b4:9b: 65:93:a7:93:b4:87:72:45:d4:4c:d9:82:87:53:b4: 84:6b:ea:b1:8d:c1:a0:d9:a8:3f:63:4b:c8:74:9c: b4:97:fd:28:f9:7c:bc:20:f9:8f:0b:fe:73:39:a9: bd:9f:6d:3f:dd:dd:10:63:76:05:72:60:a8:e8:1f: c3:34:17:24:1c:32:d2:07:9b:8d:20:bb:b5:04:11: a1:15:c1:fd:dd:85:03:15:0c:d6:c5:68:a3:4b:47: cf:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:2D:01:71:C4:B7:C4:3C:AB:6D:11:25:CC:8B:88:46:0E:4E:F7:0B X509v3 Authority Key Identifier: keyid:33:18:E8:75:41:36:42:1E:24:4A:6C:41:DD:A5:DE:CC:10:DA:8F:81 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91490C8/CC2338DC6E5111EEA47E2B74C4F9AE02/MxjodUE2Qh4kSmxB3aXezBDaj4E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MxjodUE2Qh4kSmxB3aXezBDaj4E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91490C8/CC2338DC6E5111EEA47E2B74C4F9AE02/MxjodUE2Qh4kSmxB3aXezBDaj4E.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1d:76:11:b0:4b:97:92:22:15:5d:0c:28:66:75:ff:0e:69:a7: 74:7c:0d:58:40:33:ac:f0:3d:0c:aa:8c:85:13:f2:8e:77:e4: e7:d9:ed:3e:db:0f:28:fe:44:f7:8b:32:25:9b:5b:72:0d:d2: 25:a2:27:85:27:5d:84:01:99:a7:b7:bc:d3:a3:6c:56:4a:4e: 6b:f6:aa:55:68:a2:13:cf:22:ef:cd:10:eb:47:b4:a3:80:20: 04:2f:fc:bc:94:3c:c0:eb:0c:29:ec:9c:4b:31:9e:5f:9c:c2: 94:da:bb:d1:ff:da:4a:6d:df:44:ad:59:0a:9b:4b:50:9b:40: 3e:15:52:0d:43:b4:39:fa:9d:a4:61:2a:f0:57:dd:7d:12:5a: 09:2f:98:a5:fe:51:fc:b0:c0:b1:5d:11:42:8b:57:b9:3a:a8: 9d:fb:34:c7:4c:b7:8c:0c:43:d2:c8:a0:dc:66:2e:2e:a6:8f: 1a:b1:81:01:d7:64:05:78:46:50:23:97:2c:0f:74:f4:70:9e: 6e:50:b0:78:4a:cb:ee:6e:51:93:91:33:2b:04:d4:c9:c5:65: c7:d1:ef:b6:2f:50:48:d6:79:88:06:6a:8d:40:f2:6a:fc:ea: 62:e8:24:7e:93:5e:a3:91:bf:dc:43:f3:ac:be:0b:97:96:75: 67:2f:ea:99 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAM8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDkwQzgxMTAvBgNVBAUTKDMzMThFODc1NDEzNjQyMUUyNDRBNkM0MUREQTVERUND MTBEQThGODEwHhcNMjQxMTIxMDM1MTU2WhcNMjQxMTI4MDM1MTU2WjAYMRYwFAYD VQQDEw02NzNlYWU1Yy01NmM3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyG2v2UiukU1IGwLZZVRaPRWryCLTsCdA3oooqiryz5KRO/q0bJxJbedjWglv 5LlPWXdTJh/M8nfPjH1O7O4YPJBmgfxlRUkkiK2LanqyKthGi2pDIvs0eLKFY7bf GPkpR3uS5Zrdx3hsmvAXBNcoCCBDt1wmpJr9/MTEb9GxxtRWAaSO6sA/yNcG3+TQ Ak/llGStpT/ZIk5DP4q6HabSF7tLtJtlk6eTtIdyRdRM2YKHU7SEa+qxjcGg2ag/ Y0vIdJy0l/0o+Xy8IPmPC/5zOam9n20/3d0QY3YFcmCo6B/DNBckHDLSB5uNILu1 BBGhFcH93YUDFQzWxWijS0fP6QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEwtAXHE t8Q8q20RJcyLiEYOTvcLMB8GA1UdIwQYMBaAFDMY6HVBNkIeJEpsQd2l3swQ2o+B MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OTBDOC9DQzIzMzhEQzZF NTExMUVFQTQ3RTJCNzRDNEY5QUUwMi9NeGpvZFVFMlFoNGtTbXhCM2FYZXpCRGFq NEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL014am9kVUUyUWg0a1NteEIzYVhlekJEYWo0RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 OTBDOC9DQzIzMzhEQzZFNTExMUVFQTQ3RTJCNzRDNEY5QUUwMi9NeGpvZFVFMlFo NGtTbXhCM2FYZXpCRGFqNEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAddhGwS5eSIhVdDChmdf8Oaad0fA1YQDOs8D0MqoyFE/KOd+Tn2e0+ 2w8o/kT3izIlm1tyDdIloieFJ12EAZmnt7zTo2xWSk5r9qpVaKITzyLvzRDrR7Sj gCAEL/y8lDzA6wwp7JxLMZ5fnMKU2rvR/9pKbd9ErVkKm0tQm0A+FVINQ7Q5+p2k YSrwV919EloJL5il/lH8sMCxXRFCi1e5Oqid+zTHTLeMDEPSyKDcZi4upo8asYEB 12QFeEZQI5csD3T0cJ5uULB4SsvublGTkTMrBNTJxWXH0e+2L1BI1nmIBmqNQPJq /Opi6CR+k16jkb/cQ/OsvguXlnVnL+qZ -----END CERTIFICATE-----Generated at Thu Nov 21 05:05:56 2024 by rpki-client on console-fra.rpki-client.org