$ rpki-client -vvf rpki.apnic.net/member_repository/A9152787/2286562A8F7911EF92AC781EC4F9AE02/XZRtT0edN7zhcAywut1RosPfYg8.mft File: XZRtT0edN7zhcAywut1RosPfYg8.mft (raw, json) Hash identifier: kxsbkn8URVEKh84cJqezWvVt92jEN7r3I3Nm8I0yZLU= Subject key identifier: 13:27:78:5C:C8:7B:67:16:C2:BD:F9:0F:80:05:05:A4:F1:8A:50:84 Authority key identifier: 5D:94:6D:4F:47:9D:37:BC:E1:70:0C:B0:BA:DD:51:A2:C3:DF:62:0F Certificate issuer: /CN=A9152787/serialNumber=5D946D4F479D37BCE1700CB0BADD51A2C3DF620F Certificate serial: 04 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XZRtT0edN7zhcAywut1RosPfYg8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9152787/2286562A8F7911EF92AC781EC4F9AE02/XZRtT0edN7zhcAywut1RosPfYg8.mft Manifest number: 03 Signing time: Wed 23 Oct 2024 06:54:20 +0000 Manifest this update: Wed 23 Oct 2024 06:54:19 +0000 Manifest next update: Wed 30 Oct 2024 06:54:19 +0000 Files and hashes: 1: XZRtT0edN7zhcAywut1RosPfYg8.crl (hash: 3q5Z5zTvRcZp8vwq6apqxsN2E7mld7kWnK12Br3mNig=) 2: B45D344C8F7911EF90F6941FC4F9AE02.roa (hash: IwG41/v32DGnAzEUwm2fWrp5jpFSCenIV1xWWix510E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9152787/2286562A8F7911EF92AC781EC4F9AE02/XZRtT0edN7zhcAywut1RosPfYg8.crl rsync://rpki.apnic.net/member_repository/A9152787/2286562A8F7911EF92AC781EC4F9AE02/XZRtT0edN7zhcAywut1RosPfYg8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XZRtT0edN7zhcAywut1RosPfYg8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 30 Oct 2024 02:50:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4 (0x4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9152787/serialNumber=5D946D4F479D37BCE1700CB0BADD51A2C3DF620F Validity Not Before: Oct 23 06:54:19 2024 GMT Not After : Oct 30 06:54:19 2024 GMT Subject: CN=67189d9c-03fd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:48:23:f7:38:28:16:da:07:99:6c:89:64:c1: 0e:25:24:6a:93:7a:c4:23:c3:41:a4:24:06:dc:e9: 09:86:56:35:dd:a2:92:17:17:fe:99:54:09:5e:3d: 6f:de:d4:58:2f:8b:08:a7:5c:f5:5f:d3:95:d9:aa: c6:39:60:70:95:be:47:55:d0:ed:2b:88:4b:6c:9e: fb:4e:a5:0d:ee:02:2f:c4:35:20:b7:60:58:7e:ee: d5:67:31:10:04:50:6c:93:9b:7b:61:00:58:38:5d: 75:24:25:c8:af:8b:a7:d1:2a:80:2c:bc:1b:6a:7c: 9c:7c:4f:aa:fd:cd:2c:70:3f:ce:68:46:2a:90:99: 9b:4f:80:0f:f7:f0:d8:c5:d0:a1:75:2f:18:b7:4b: 4e:83:ac:42:38:38:e2:9e:34:a0:ca:36:31:93:4b: 86:34:59:a4:1c:d3:a6:e0:59:fa:86:e7:e5:ef:8f: 6d:4a:72:b6:a2:40:5f:e0:6a:00:0c:17:63:5b:ff: 0e:b7:7c:29:ae:97:5f:cc:e5:29:e3:c3:63:f7:22: fe:29:5c:3b:c5:b4:5d:04:cc:72:64:62:bc:59:a2: 48:c6:02:18:49:84:f6:fc:41:30:e4:7f:24:06:4b: 22:aa:9f:63:0f:b4:4e:d3:cb:78:8d:7d:20:c6:7b: 14:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:27:78:5C:C8:7B:67:16:C2:BD:F9:0F:80:05:05:A4:F1:8A:50:84 X509v3 Authority Key Identifier: keyid:5D:94:6D:4F:47:9D:37:BC:E1:70:0C:B0:BA:DD:51:A2:C3:DF:62:0F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9152787/2286562A8F7911EF92AC781EC4F9AE02/XZRtT0edN7zhcAywut1RosPfYg8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XZRtT0edN7zhcAywut1RosPfYg8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9152787/2286562A8F7911EF92AC781EC4F9AE02/XZRtT0edN7zhcAywut1RosPfYg8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 73:b0:15:4a:97:a5:e4:f2:50:87:b9:50:1e:24:45:f6:5f:15: 3d:31:e8:df:03:4d:22:5c:d9:69:95:15:50:a8:97:60:33:e0: 55:f9:01:2c:61:0d:5f:90:17:60:26:b8:92:22:92:0e:8a:ae: f9:2f:ee:c9:ca:04:63:d7:cd:9a:c5:72:b9:a9:e4:2e:99:7b: 58:e2:87:85:29:51:bd:92:e6:64:ae:98:b9:5b:ad:e7:7b:c5: b8:67:ea:6c:ca:21:6f:37:74:1f:a7:16:13:01:ce:10:38:77: 73:f7:9b:ff:15:74:bb:a6:83:5b:23:9b:87:43:4b:b8:79:ea: 96:11:a4:00:d3:23:c6:6b:3d:07:75:fb:4a:63:74:70:a5:0a: 2f:f8:10:a1:4e:f7:fe:cf:08:80:41:82:bd:c8:2a:80:11:8a: 19:d6:64:e2:38:99:68:82:5f:87:f1:09:71:b4:6b:2d:b4:d1: 9e:10:d5:7c:cd:09:64:ab:e8:fb:50:1e:22:6b:df:33:8d:f6: e2:48:d4:cf:89:53:d5:dc:bf:8e:c2:ae:76:75:b3:cf:b5:7c: 80:d5:9d:21:f3:ea:ef:02:ce:af:7e:60:c3:8a:1a:f0:7b:50: 0f:c0:25:d7:34:bb:be:1a:73:64:fe:19:ae:07:38:32:0a:16: 82:7d:13:6a -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBBDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1 Mjc4NzExMC8GA1UEBRMoNUQ5NDZENEY0NzlEMzdCQ0UxNzAwQ0IwQkFERDUxQTJD M0RGNjIwRjAeFw0yNDEwMjMwNjU0MTlaFw0yNDEwMzAwNjU0MTlaMBgxFjAUBgNV BAMTDTY3MTg5ZDljLTAzZmQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCfSCP3OCgW2geZbIlkwQ4lJGqTesQjw0GkJAbc6QmGVjXdopIXF/6ZVAlePW/e 1FgviwinXPVf05XZqsY5YHCVvkdV0O0riEtsnvtOpQ3uAi/ENSC3YFh+7tVnMRAE UGyTm3thAFg4XXUkJcivi6fRKoAsvBtqfJx8T6r9zSxwP85oRiqQmZtPgA/38NjF 0KF1Lxi3S06DrEI4OOKeNKDKNjGTS4Y0WaQc06bgWfqG5+Xvj21KcraiQF/gagAM F2Nb/w63fCmul1/M5Snjw2P3Iv4pXDvFtF0EzHJkYrxZokjGAhhJhPb8QTDkfyQG SyKqn2MPtE7Ty3iNfSDGexRxAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUEyd4XMh7 ZxbCvfkPgAUFpPGKUIQwHwYDVR0jBBgwFoAUXZRtT0edN7zhcAywut1RosPfYg8w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTUyNzg3LzIyODY1NjJBOEY3 OTExRUY5MkFDNzgxRUM0RjlBRTAyL1haUnRUMGVkTjd6aGNBeXd1dDFSb3NQZlln OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvWFpSdFQwZWRON3poY0F5d3V0MVJvc1BmWWc4LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTUy Nzg3LzIyODY1NjJBOEY3OTExRUY5MkFDNzgxRUM0RjlBRTAyL1haUnRUMGVkTjd6 aGNBeXd1dDFSb3NQZllnOC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAHOwFUqXpeTyUIe5UB4kRfZfFT0x6N8DTSJc2WmVFVCol2Az4FX5ASxh DV+QF2AmuJIikg6Krvkv7snKBGPXzZrFcrmp5C6Ze1jih4UpUb2S5mSumLlbred7 xbhn6mzKIW83dB+nFhMBzhA4d3P3m/8VdLumg1sjm4dDS7h56pYRpADTI8ZrPQd1 +0pjdHClCi/4EKFO9/7PCIBBgr3IKoARihnWZOI4mWiCX4fxCXG0ay200Z4Q1XzN CWSr6PtQHiJr3zON9uJI1M+JU9Xcv47CrnZ1s8+1fIDVnSHz6u8Czq9+YMOKGvB7 UA/AJdc0u74ac2T+Ga4HODIKFoJ9E2o= -----END CERTIFICATE-----Generated at Wed Oct 23 07:33:19 2024 by rpki-client on console-fra.rpki-client.org