$ rpki-client -vvf rpki.apnic.net/member_repository/A91569FB/8DE1DCDA762011EBBC553C60C4F9AE02/Xe4W74Wiv4Ta2IdmZ1mx7BXRuUw.mft File: Xe4W74Wiv4Ta2IdmZ1mx7BXRuUw.mft (raw, json) Hash identifier: Jh4gibSiSf50MLX4tRvi5glUfCepyrSWmAYVvALf5fg= Subject key identifier: 40:1E:76:91:06:75:C3:F1:7C:1E:B5:D3:F1:D7:A9:A6:CC:9B:2A:2D Authority key identifier: 5D:EE:16:EF:85:A2:BF:84:DA:D8:87:66:67:59:B1:EC:15:D1:B9:4C Certificate issuer: /CN=A91569FB/serialNumber=5DEE16EF85A2BF84DAD887666759B1EC15D1B94C Certificate serial: 0627 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Xe4W74Wiv4Ta2IdmZ1mx7BXRuUw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91569FB/8DE1DCDA762011EBBC553C60C4F9AE02/Xe4W74Wiv4Ta2IdmZ1mx7BXRuUw.mft Manifest number: 0621 Signing time: Fri 22 Nov 2024 22:07:42 +0000 Manifest this update: Fri 22 Nov 2024 22:07:42 +0000 Manifest next update: Fri 29 Nov 2024 22:07:42 +0000 Files and hashes: 1: Xe4W74Wiv4Ta2IdmZ1mx7BXRuUw.crl (hash: Mf6yzTrQ8XFzvAf1aBWG4QJ+x9bLnirvJjztKlvz4XA=) 2: 154E7E02762211EBA80A6D61C4F9AE02.roa (hash: qkyN60ECu4BYWQ3TkIsHpS5OSWIDmixvU/RZxjOnAoY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91569FB/8DE1DCDA762011EBBC553C60C4F9AE02/Xe4W74Wiv4Ta2IdmZ1mx7BXRuUw.crl rsync://rpki.apnic.net/member_repository/A91569FB/8DE1DCDA762011EBBC553C60C4F9AE02/Xe4W74Wiv4Ta2IdmZ1mx7BXRuUw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Xe4W74Wiv4Ta2IdmZ1mx7BXRuUw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1575 (0x627) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91569FB/serialNumber=5DEE16EF85A2BF84DAD887666759B1EC15D1B94C Validity Not Before: Nov 22 22:07:42 2024 GMT Not After : Nov 29 22:07:42 2024 GMT Subject: CN=674100ae-29e3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:1c:58:18:27:c0:20:ca:3c:26:fc:48:04:24: 64:d9:5b:a7:0f:53:7b:07:fb:e9:82:4e:db:64:79: 4c:29:b0:b4:5c:bb:c6:be:d1:7c:ae:4b:9d:9f:91: c2:d9:3a:ec:bd:9d:8f:3b:f7:74:2f:73:37:7c:85: 1a:f5:67:3c:91:a2:54:72:52:b5:37:97:ed:be:19: fc:dd:76:7f:d7:b0:16:dd:c9:56:fe:e5:97:14:24: cf:90:11:61:96:90:94:f0:97:fb:4e:40:da:73:e8: 9a:52:46:c3:1e:cc:57:d6:d0:ef:8f:e3:1f:23:d5: 18:00:96:38:e0:33:ca:c6:29:77:9e:63:d0:e4:b0: 71:89:fc:91:63:24:ee:f5:a9:2a:04:19:a9:bb:76: 2d:bb:30:7c:14:23:5a:d1:7e:21:19:63:96:7b:82: b3:b2:a7:a9:25:66:78:9f:b1:6d:69:00:05:da:4d: 16:45:f7:be:b0:b5:c3:c6:e2:c2:fb:bc:46:f2:a3: 43:30:31:a2:ad:f0:9c:db:1a:38:d6:1b:fe:74:47: 7e:ad:96:dd:c7:f3:01:85:ce:5a:d2:12:7a:94:a9: 60:1a:96:04:5a:ae:8d:de:05:5b:ff:0c:98:1c:c3: ec:4e:c9:1f:6d:0e:78:be:bf:92:28:0f:ce:7c:78: e9:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:1E:76:91:06:75:C3:F1:7C:1E:B5:D3:F1:D7:A9:A6:CC:9B:2A:2D X509v3 Authority Key Identifier: keyid:5D:EE:16:EF:85:A2:BF:84:DA:D8:87:66:67:59:B1:EC:15:D1:B9:4C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91569FB/8DE1DCDA762011EBBC553C60C4F9AE02/Xe4W74Wiv4Ta2IdmZ1mx7BXRuUw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Xe4W74Wiv4Ta2IdmZ1mx7BXRuUw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91569FB/8DE1DCDA762011EBBC553C60C4F9AE02/Xe4W74Wiv4Ta2IdmZ1mx7BXRuUw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 21:4e:9e:67:c3:b1:92:c3:21:d6:34:f9:71:33:e6:18:1a:31: 93:1d:d7:1d:ff:72:05:23:a4:14:5a:df:53:f6:c8:4d:25:02: 16:e6:ed:99:15:61:81:11:a2:d7:95:cf:ed:e3:31:d9:ab:31: 3c:54:aa:93:4a:b3:64:4a:b4:88:71:99:d3:c6:0b:62:61:eb: da:e8:85:ce:a6:aa:84:89:cc:d2:df:83:59:bd:d9:61:5a:06: 54:3f:71:25:9d:64:30:a5:25:28:8a:1d:5e:f9:56:9c:c7:61: cc:d3:bd:eb:86:e4:42:97:e9:2a:b7:b6:f3:0a:27:45:88:02: 5f:03:af:a8:78:80:5c:db:69:4d:31:55:c3:3f:94:87:57:eb: 32:1d:bf:c5:78:0d:31:5d:cb:23:28:14:1c:5b:7e:22:1a:fb: ec:24:5b:fc:c3:7d:56:18:8c:2f:c2:fd:69:df:2b:f3:3f:8b: d6:ac:3e:cb:df:2c:7f:bb:3b:e7:61:cb:00:0e:25:28:58:7a: 4f:a4:03:6b:7f:27:79:f8:07:18:fa:aa:62:e0:b7:b0:67:ce: 66:64:b3:44:56:71:33:e5:cb:1b:88:e1:89:2f:cd:52:e9:00: ad:51:29:17:63:55:8b:e1:28:63:8a:68:59:c9:26:64:9b:d7: 93:1c:c2:6a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBicwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTY5RkIxMTAvBgNVBAUTKDVERUUxNkVGODVBMkJGODREQUQ4ODc2NjY3NTlCMUVD MTVEMUI5NEMwHhcNMjQxMTIyMjIwNzQyWhcNMjQxMTI5MjIwNzQyWjAYMRYwFAYD VQQDEw02NzQxMDBhZS0yOWUzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqBxYGCfAIMo8JvxIBCRk2VunD1N7B/vpgk7bZHlMKbC0XLvGvtF8rkudn5HC 2TrsvZ2PO/d0L3M3fIUa9Wc8kaJUclK1N5ftvhn83XZ/17AW3clW/uWXFCTPkBFh lpCU8Jf7TkDac+iaUkbDHsxX1tDvj+MfI9UYAJY44DPKxil3nmPQ5LBxifyRYyTu 9akqBBmpu3YtuzB8FCNa0X4hGWOWe4KzsqepJWZ4n7FtaQAF2k0WRfe+sLXDxuLC +7xG8qNDMDGirfCc2xo41hv+dEd+rZbdx/MBhc5a0hJ6lKlgGpYEWq6N3gVb/wyY HMPsTskfbQ54vr+SKA/OfHjp0wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEAedpEG dcPxfB610/HXqabMmyotMB8GA1UdIwQYMBaAFF3uFu+For+E2tiHZmdZsewV0blM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NjlGQi84REUxRENEQTc2 MjAxMUVCQkM1NTNDNjBDNEY5QUUwMi9YZTRXNzRXaXY0VGEySWRtWjFteDdCWFJ1 VXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hlNFc3NFdpdjRUYTJJZG1aMW14N0JYUnVVdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NjlGQi84REUxRENEQTc2MjAxMUVCQkM1NTNDNjBDNEY5QUUwMi9YZTRXNzRXaXY0 VGEySWRtWjFteDdCWFJ1VXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAhTp5nw7GSwyHWNPlxM+YYGjGTHdcd/3IFI6QUWt9T9shNJQIW5u2Z FWGBEaLXlc/t4zHZqzE8VKqTSrNkSrSIcZnTxgtiYeva6IXOpqqEiczS34NZvdlh WgZUP3ElnWQwpSUoih1e+Vacx2HM073rhuRCl+kqt7bzCidFiAJfA6+oeIBc22lN MVXDP5SHV+syHb/FeA0xXcsjKBQcW34iGvvsJFv8w31WGIwvwv1p3yvzP4vWrD7L 3yx/uzvnYcsADiUoWHpPpANrfyd5+AcY+qpi4LewZ85mZLNEVnEz5csbiOGJL81S 6QCtUSkXY1WL4ShjimhZySZkm9eTHMJq -----END CERTIFICATE-----Generated at Fri Nov 22 23:39:25 2024 by rpki-client on console-fra.rpki-client.org