$ rpki-client -vvf rpki.apnic.net/member_repository/A9154330/EAD8763CC09311E880E52D23C4F9AE02/XCJQF8zJYrDnOQswzwpWIvfN-u0.mft File: XCJQF8zJYrDnOQswzwpWIvfN-u0.mft (raw, json) Hash identifier: 5A9EqH48CTvVOUNtK9NUNAmoh+NQtT92mvOpO8k5Ykc= Subject key identifier: EF:DA:8C:2F:59:E5:EF:CE:8D:87:12:58:C8:40:26:70:2B:86:35:84 Authority key identifier: 5C:22:50:17:CC:C9:62:B0:E7:39:0B:30:CF:0A:56:22:F7:CD:FA:ED Certificate issuer: /CN=A9154330/serialNumber=5C225017CCC962B0E7390B30CF0A5622F7CDFAED Certificate serial: 124E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XCJQF8zJYrDnOQswzwpWIvfN-u0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9154330/EAD8763CC09311E880E52D23C4F9AE02/XCJQF8zJYrDnOQswzwpWIvfN-u0.mft Manifest number: 124D Signing time: Fri 22 Nov 2024 17:06:29 +0000 Manifest this update: Fri 22 Nov 2024 17:06:29 +0000 Manifest next update: Fri 29 Nov 2024 17:06:29 +0000 Files and hashes: 1: XCJQF8zJYrDnOQswzwpWIvfN-u0.crl (hash: s2L+WaRgWCx9lEyBfxKU2/cYlo+e1QS2t2LAvlBg7+Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9154330/EAD8763CC09311E880E52D23C4F9AE02/XCJQF8zJYrDnOQswzwpWIvfN-u0.crl rsync://rpki.apnic.net/member_repository/A9154330/EAD8763CC09311E880E52D23C4F9AE02/XCJQF8zJYrDnOQswzwpWIvfN-u0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XCJQF8zJYrDnOQswzwpWIvfN-u0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 16:30:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4686 (0x124e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9154330/serialNumber=5C225017CCC962B0E7390B30CF0A5622F7CDFAED Validity Not Before: Nov 22 17:06:29 2024 GMT Not After : Nov 29 17:06:29 2024 GMT Subject: CN=6740ba15-08dd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:c9:f2:30:f2:ef:76:31:61:54:5a:d3:25:59: d3:44:7b:db:83:77:84:99:f3:02:56:55:46:5d:1b: 55:9e:1e:46:43:24:40:18:8a:e0:04:4e:94:12:c8: ed:a0:73:94:bc:22:76:41:29:20:94:78:83:78:35: 79:f7:f4:c9:c4:f7:af:83:50:df:98:18:d9:88:cb: fd:0b:82:48:c4:f7:12:d7:4d:dd:41:54:9c:20:b5: e2:0c:df:dd:7c:e6:4b:b7:53:43:e0:18:5b:a1:df: 9c:c3:9c:3a:c7:46:c3:46:d5:89:89:16:39:37:92: 0f:56:ab:49:44:5e:a9:95:7f:46:09:66:74:b7:69: 3e:c6:3d:3a:80:1f:f9:87:53:76:24:fb:35:f3:ca: 97:94:a0:d5:29:6c:81:89:19:ff:2d:07:cb:56:92: 72:5e:8f:89:ec:93:b2:d1:6a:d5:5a:64:4c:85:54: b7:fc:3c:e2:b0:05:fe:93:4c:18:ff:25:4b:f5:8c: 3c:58:71:f9:3c:f7:0a:d3:5c:6a:03:88:a6:6b:d8: 2a:65:3f:be:55:34:1b:4c:46:b4:fe:6f:ee:c2:68: fd:06:ab:6e:a1:03:2e:37:6f:83:70:2d:77:22:e9: 43:12:f6:a9:d9:99:b4:38:0a:f3:16:a3:c7:21:06: 17:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:DA:8C:2F:59:E5:EF:CE:8D:87:12:58:C8:40:26:70:2B:86:35:84 X509v3 Authority Key Identifier: keyid:5C:22:50:17:CC:C9:62:B0:E7:39:0B:30:CF:0A:56:22:F7:CD:FA:ED X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9154330/EAD8763CC09311E880E52D23C4F9AE02/XCJQF8zJYrDnOQswzwpWIvfN-u0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XCJQF8zJYrDnOQswzwpWIvfN-u0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9154330/EAD8763CC09311E880E52D23C4F9AE02/XCJQF8zJYrDnOQswzwpWIvfN-u0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3c:99:77:39:e9:98:d0:64:ac:6f:22:58:6d:df:f0:96:d5:52: 38:9c:f9:19:42:bd:74:0f:cb:0c:6e:6d:56:85:b7:27:36:27: 51:c5:c4:65:91:4b:4f:a8:d7:55:8d:4e:74:f1:f1:df:16:e5: a0:4a:e0:bd:d4:08:10:ce:c9:5c:75:c7:b4:10:97:0e:45:ad: 49:9d:7e:3f:21:b8:53:f5:f9:a6:13:96:97:57:c0:23:f1:0d: b6:e9:5f:c8:d4:0a:1f:27:4d:e1:e4:9e:78:9e:ce:46:8d:5a: b8:9a:d7:6d:fe:bb:c1:11:dc:a9:d3:ec:98:21:28:a2:20:ae: e5:1c:b2:8c:73:a7:90:73:a4:3d:bf:ed:89:4a:9d:cb:0e:c8: 6f:fb:12:8d:36:c1:c7:98:05:d6:b2:76:ac:73:51:ca:42:78: 09:b2:0c:a4:b8:8a:9d:b3:da:f8:51:ff:6e:51:3e:a8:3a:91: 3a:ee:30:c3:8c:d7:c3:2f:b1:96:09:a1:38:d8:3e:51:06:03: 8d:69:26:ed:16:79:ac:35:65:86:4b:8c:03:52:55:e0:78:fd: 5e:a2:92:0c:e2:07:2e:79:ae:3a:46:f1:15:a8:49:2f:fa:d7: d3:32:12:61:12:9a:97:fb:45:b3:93:eb:28:3e:57:5d:aa:13: 4d:24:cb:2b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEk4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTQzMzAxMTAvBgNVBAUTKDVDMjI1MDE3Q0NDOTYyQjBFNzM5MEIzMENGMEE1NjIy RjdDREZBRUQwHhcNMjQxMTIyMTcwNjI5WhcNMjQxMTI5MTcwNjI5WjAYMRYwFAYD VQQDEw02NzQwYmExNS0wOGRkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuMnyMPLvdjFhVFrTJVnTRHvbg3eEmfMCVlVGXRtVnh5GQyRAGIrgBE6UEsjt oHOUvCJ2QSkglHiDeDV59/TJxPevg1DfmBjZiMv9C4JIxPcS103dQVScILXiDN/d fOZLt1ND4Bhbod+cw5w6x0bDRtWJiRY5N5IPVqtJRF6plX9GCWZ0t2k+xj06gB/5 h1N2JPs188qXlKDVKWyBiRn/LQfLVpJyXo+J7JOy0WrVWmRMhVS3/DzisAX+k0wY /yVL9Yw8WHH5PPcK01xqA4ima9gqZT++VTQbTEa0/m/uwmj9BqtuoQMuN2+DcC13 IulDEvap2Zm0OArzFqPHIQYXWQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFO/ajC9Z 5e/OjYcSWMhAJnArhjWEMB8GA1UdIwQYMBaAFFwiUBfMyWKw5zkLMM8KViL3zfrt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NDMzMC9FQUQ4NzYzQ0Mw OTMxMUU4ODBFNTJEMjNDNEY5QUUwMi9YQ0pRRjh6SllyRG5PUXN3endwV0l2Zk4t dTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hDSlFGOHpKWXJEbk9Rc3d6d3BXSXZmTi11MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NDMzMC9FQUQ4NzYzQ0MwOTMxMUU4ODBFNTJEMjNDNEY5QUUwMi9YQ0pRRjh6Slly RG5PUXN3endwV0l2Zk4tdTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA8mXc56ZjQZKxvIlht3/CW1VI4nPkZQr10D8sMbm1WhbcnNidRxcRl kUtPqNdVjU508fHfFuWgSuC91AgQzslcdce0EJcORa1JnX4/IbhT9fmmE5aXV8Aj 8Q226V/I1AofJ03h5J54ns5GjVq4mtdt/rvBEdyp0+yYISiiIK7lHLKMc6eQc6Q9 v+2JSp3LDshv+xKNNsHHmAXWsnasc1HKQngJsgykuIqds9r4Uf9uUT6oOpE67jDD jNfDL7GWCaE42D5RBgONaSbtFnmsNWWGS4wDUlXgeP1eopIM4gcuea46RvEVqEkv +tfTMhJhEpqX+0Wzk+soPlddqhNNJMsr -----END CERTIFICATE-----Generated at Fri Nov 22 17:55:46 2024 by rpki-client on console-fra.rpki-client.org