$ rpki-client -vvf rpki.apnic.net/member_repository/A9158E8E/04FBB8F0AE0F11ECA0205666C4F9AE02/Xy5eYpMrtQqF_y-aXzGyut1fNKw.mft File: Xy5eYpMrtQqF_y-aXzGyut1fNKw.mft (raw, json) Hash identifier: uyZOmI31ZIS4IlH8PImnvV38QCnq8MOmgD034f2sQvE= Subject key identifier: 17:3E:6F:6A:8C:3A:C7:56:AC:B7:7D:25:66:76:36:68:8B:03:8C:79 Authority key identifier: 5F:2E:5E:62:93:2B:B5:0A:85:FF:2F:9A:5F:31:B2:BA:DD:5F:34:AC Certificate issuer: /CN=A9158E8E/serialNumber=5F2E5E62932BB50A85FF2F9A5F31B2BADD5F34AC Certificate serial: 0338 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Xy5eYpMrtQqF_y-aXzGyut1fNKw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9158E8E/04FBB8F0AE0F11ECA0205666C4F9AE02/Xy5eYpMrtQqF_y-aXzGyut1fNKw.mft Manifest number: 0320 Signing time: Sat 23 Nov 2024 00:46:12 +0000 Manifest this update: Sat 23 Nov 2024 00:46:11 +0000 Manifest next update: Sat 30 Nov 2024 00:46:11 +0000 Files and hashes: 1: Xy5eYpMrtQqF_y-aXzGyut1fNKw.crl (hash: 3uvjRtdW/gJCqFnamRo+GonuN1AXDKRjfabIlMUn1ps=) 2: DED376FAC0B211EEBAD8C90CC4F9AE02.roa (hash: 55JHX4ew0160t2EeeFzUdAANCqPk1wqNfiUZNAUhc9g=) 3: DD058EDAC0B211EEBAD8C90CC4F9AE02.roa (hash: mxN3e88k7fubkVX0grtmJ23AfKb/8VxSvKoITefqqmc=) 4: DDF31C5EC0B211EEBAD8C90CC4F9AE02.roa (hash: 4nJdqfAbv7yNLVKtomee0puKp1DxSseTMZJCnJsI1S4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9158E8E/04FBB8F0AE0F11ECA0205666C4F9AE02/Xy5eYpMrtQqF_y-aXzGyut1fNKw.crl rsync://rpki.apnic.net/member_repository/A9158E8E/04FBB8F0AE0F11ECA0205666C4F9AE02/Xy5eYpMrtQqF_y-aXzGyut1fNKw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Xy5eYpMrtQqF_y-aXzGyut1fNKw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 824 (0x338) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9158E8E/serialNumber=5F2E5E62932BB50A85FF2F9A5F31B2BADD5F34AC Validity Not Before: Nov 23 00:46:11 2024 GMT Not After : Nov 30 00:46:11 2024 GMT Subject: CN=674125d3-7574 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:8d:e0:60:2a:88:a6:cf:13:6e:5c:2a:8b:b5: ec:fa:ea:72:2d:28:89:8a:c7:4e:a0:2c:49:93:15: bb:e1:c4:53:90:ab:0c:e8:f1:a8:89:5c:1c:bc:49: 89:e0:b4:0d:76:94:b3:bb:c5:78:ef:f5:d8:6d:35: 41:a4:7e:20:95:dd:a2:17:6b:ee:cb:b2:d4:99:79: 0d:ed:12:99:a8:0a:93:68:53:93:ac:c3:7d:b0:5c: 6a:85:e1:bf:57:94:fa:25:fa:b8:53:f6:d6:3a:14: 4a:e8:70:74:ad:b5:5c:2c:92:df:20:62:59:c4:ff: da:6a:53:fb:e3:b1:c7:a8:a9:a3:65:ef:da:29:93: 6f:50:8e:dc:cf:e7:8b:ba:07:78:b1:75:fd:b8:63: 06:42:12:38:02:8a:d4:31:c8:67:d3:56:75:2f:72: 29:66:41:27:67:d4:c2:d2:ea:e3:35:79:2d:d3:c1: d1:42:be:52:77:8a:3b:1e:92:7f:f8:11:66:80:36: f4:0e:4c:b5:66:5c:e3:30:7a:ae:dd:d6:00:31:10: 7b:5a:0c:e4:08:3f:cf:00:21:64:10:4e:88:1b:12: 25:f3:4c:e5:b3:b3:c5:b8:0a:96:f4:e1:9d:3c:32: 1e:ab:8f:4c:06:6c:b5:e8:dc:87:02:e0:ff:f6:c6: 43:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:3E:6F:6A:8C:3A:C7:56:AC:B7:7D:25:66:76:36:68:8B:03:8C:79 X509v3 Authority Key Identifier: keyid:5F:2E:5E:62:93:2B:B5:0A:85:FF:2F:9A:5F:31:B2:BA:DD:5F:34:AC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9158E8E/04FBB8F0AE0F11ECA0205666C4F9AE02/Xy5eYpMrtQqF_y-aXzGyut1fNKw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Xy5eYpMrtQqF_y-aXzGyut1fNKw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9158E8E/04FBB8F0AE0F11ECA0205666C4F9AE02/Xy5eYpMrtQqF_y-aXzGyut1fNKw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 42:f9:21:52:1e:51:41:2b:e4:01:f5:2f:ad:74:39:40:57:d4: 0c:06:99:a7:ab:c1:24:09:79:5f:b8:d1:98:eb:fd:97:1c:8f: 31:2b:8a:ca:8f:7e:9b:5a:6e:51:10:d9:fc:d7:80:ee:d4:3d: 85:fc:9c:ef:cb:b8:8a:39:30:1b:f0:f5:0c:e1:bf:f5:1c:46: b0:d8:bf:ab:b9:7f:1c:d8:3f:d6:41:91:ce:68:ee:45:32:ae: af:66:f4:74:ed:71:7f:81:8c:8b:d7:83:e7:bf:ed:88:2e:70: 57:26:e2:85:cd:11:80:00:01:fe:b8:87:a1:b7:44:53:5f:c5: 6e:95:0f:8f:2d:62:e4:89:46:26:69:99:94:c6:52:fe:15:70: 56:4a:5a:cf:4c:71:e7:03:4d:b9:48:70:6b:e7:35:10:d4:89: 02:5b:45:a5:82:8a:12:72:a0:6c:e1:1b:49:a2:56:3e:3c:41: 4c:4e:c3:97:c3:cf:bc:7b:18:c0:f5:d6:63:06:11:d3:9d:d3: 01:f5:5c:08:da:0b:95:66:2d:9e:33:82:47:a1:5e:8f:68:e5: 1e:5b:8e:30:96:5c:6b:b7:7b:28:f4:56:c6:12:32:b4:0c:e9: 95:fd:40:0e:e0:74:4d:cd:1c:d1:e2:31:f0:01:7b:08:16:5c: 78:35:72:96 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAzgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NThFOEUxMTAvBgNVBAUTKDVGMkU1RTYyOTMyQkI1MEE4NUZGMkY5QTVGMzFCMkJB REQ1RjM0QUMwHhcNMjQxMTIzMDA0NjExWhcNMjQxMTMwMDA0NjExWjAYMRYwFAYD VQQDEw02NzQxMjVkMy03NTc0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArI3gYCqIps8Tblwqi7Xs+upyLSiJisdOoCxJkxW74cRTkKsM6PGoiVwcvEmJ 4LQNdpSzu8V47/XYbTVBpH4gld2iF2vuy7LUmXkN7RKZqAqTaFOTrMN9sFxqheG/ V5T6Jfq4U/bWOhRK6HB0rbVcLJLfIGJZxP/aalP747HHqKmjZe/aKZNvUI7cz+eL ugd4sXX9uGMGQhI4AorUMchn01Z1L3IpZkEnZ9TC0urjNXkt08HRQr5Sd4o7HpJ/ +BFmgDb0Dky1ZlzjMHqu3dYAMRB7WgzkCD/PACFkEE6IGxIl80zls7PFuAqW9OGd PDIeq49MBmy16NyHAuD/9sZDxQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBc+b2qM OsdWrLd9JWZ2NmiLA4x5MB8GA1UdIwQYMBaAFF8uXmKTK7UKhf8vml8xsrrdXzSs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1OEU4RS8wNEZCQjhGMEFF MEYxMUVDQTAyMDU2NjZDNEY5QUUwMi9YeTVlWXBNcnRRcUZfeS1hWHpHeXV0MWZO S3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1h5NWVZcE1ydFFxRl95LWFYekd5dXQxZk5Ldy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 OEU4RS8wNEZCQjhGMEFFMEYxMUVDQTAyMDU2NjZDNEY5QUUwMi9YeTVlWXBNcnRR cUZfeS1hWHpHeXV0MWZOS3cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBC+SFSHlFBK+QB9S+tdDlAV9QMBpmnq8EkCXlfuNGY6/2XHI8xK4rK j36bWm5RENn814Du1D2F/Jzvy7iKOTAb8PUM4b/1HEaw2L+ruX8c2D/WQZHOaO5F Mq6vZvR07XF/gYyL14Pnv+2ILnBXJuKFzRGAAAH+uIeht0RTX8VulQ+PLWLkiUYm aZmUxlL+FXBWSlrPTHHnA025SHBr5zUQ1IkCW0WlgooScqBs4RtJolY+PEFMTsOX w8+8exjA9dZjBhHTndMB9VwI2guVZi2eM4JHoV6PaOUeW44wllxrt3so9FbGEjK0 DOmV/UAO4HRNzRzR4jHwAXsIFlx4NXKW -----END CERTIFICATE-----Generated at Sat Nov 23 02:33:37 2024 by rpki-client on console-fra.rpki-client.org