$ rpki-client -vvf rpki.apnic.net/member_repository/A915A0FB/E17193623D8D11EF87053B0FC4F9AE02/XwTABfKMKFbHu_R2uRxioC8vxRw.mft File: XwTABfKMKFbHu_R2uRxioC8vxRw.mft (raw, json) Hash identifier: QCMHhKedGlTfeLQPCqekznstQuw6BibWtR6AMiNSszI= Subject key identifier: 46:A3:EF:9F:E2:18:C4:FF:15:D8:E3:19:D8:7E:63:60:E8:3D:E3:6C Authority key identifier: 5F:04:C0:05:F2:8C:28:56:C7:BB:F4:76:B9:1C:62:A0:2F:2F:C5:1C Certificate issuer: /CN=A915A0FB/serialNumber=5F04C005F28C2856C7BBF476B91C62A02F2FC51C Certificate serial: 3B Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XwTABfKMKFbHu_R2uRxioC8vxRw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915A0FB/E17193623D8D11EF87053B0FC4F9AE02/XwTABfKMKFbHu_R2uRxioC8vxRw.mft Manifest number: 3A Signing time: Wed 23 Oct 2024 05:43:11 +0000 Manifest this update: Wed 23 Oct 2024 05:43:11 +0000 Manifest next update: Wed 30 Oct 2024 05:43:11 +0000 Files and hashes: 1: XwTABfKMKFbHu_R2uRxioC8vxRw.crl (hash: kUas+5gvesa3kKC81bBiZmf+QN7FaQyeBSL/XQjiAWE=) 2: 900F4ADA440611EF85166C30C4F9AE02.roa (hash: 9WoABq8qgtlhd8O7kY7Pm0wRxoDHY9iJv3fcQEhQf1I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915A0FB/E17193623D8D11EF87053B0FC4F9AE02/XwTABfKMKFbHu_R2uRxioC8vxRw.crl rsync://rpki.apnic.net/member_repository/A915A0FB/E17193623D8D11EF87053B0FC4F9AE02/XwTABfKMKFbHu_R2uRxioC8vxRw.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XwTABfKMKFbHu_R2uRxioC8vxRw.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 30 Oct 2024 02:50:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 59 (0x3b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915A0FB/serialNumber=5F04C005F28C2856C7BBF476B91C62A02F2FC51C Validity Not Before: Oct 23 05:43:11 2024 GMT Not After : Oct 30 05:43:11 2024 GMT Subject: CN=67188cef-58bf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:2e:52:3e:d1:1f:76:91:3a:be:68:15:eb:7d: 85:83:df:58:96:73:4d:ab:a4:77:60:17:82:ca:9a: 69:84:53:43:25:cc:96:b3:4e:2d:5e:cf:e4:dd:42: f0:3e:2f:d8:11:08:65:a3:a6:a6:e0:a6:09:ab:53: d1:ec:07:6d:3a:d6:41:1b:09:ec:34:83:48:bf:e1: 11:95:0f:b5:fe:e6:d0:02:9f:6f:4a:9e:aa:ad:cf: 23:13:11:51:af:83:f5:cc:e5:1f:07:94:e7:e2:49: 08:88:e3:01:af:f7:d4:f8:2b:7c:e2:22:0a:4c:16: 61:66:ce:07:ed:c5:a8:b9:ff:5f:74:4b:60:38:c3: 52:b9:c9:a7:9f:da:fd:77:09:a8:25:7a:81:f9:67: 83:2d:30:70:3d:c8:2f:92:db:47:3a:3d:47:15:1e: 1b:6f:c8:6e:5f:39:bb:54:ad:26:0a:dd:d5:4d:7d: b8:40:a7:9c:5f:1f:d8:b7:28:e3:ab:95:1e:7d:42: 7d:4f:98:6a:c1:3f:d0:28:a4:c8:26:51:40:36:4e: 96:e1:89:ad:76:80:cf:92:33:bb:07:66:34:d4:6f: 60:9a:4c:cf:5a:c6:5b:4c:08:07:8d:db:2e:1b:af: a7:fa:3b:51:e6:96:88:70:ad:0e:65:80:c7:d9:2f: 6e:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:A3:EF:9F:E2:18:C4:FF:15:D8:E3:19:D8:7E:63:60:E8:3D:E3:6C X509v3 Authority Key Identifier: keyid:5F:04:C0:05:F2:8C:28:56:C7:BB:F4:76:B9:1C:62:A0:2F:2F:C5:1C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915A0FB/E17193623D8D11EF87053B0FC4F9AE02/XwTABfKMKFbHu_R2uRxioC8vxRw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XwTABfKMKFbHu_R2uRxioC8vxRw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915A0FB/E17193623D8D11EF87053B0FC4F9AE02/XwTABfKMKFbHu_R2uRxioC8vxRw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9c:a7:0d:a9:97:72:d0:e3:e0:d3:1b:78:89:1d:09:e7:32:a4: 6b:b0:e0:4c:a1:f0:d6:0c:77:ba:cc:54:15:97:2b:14:de:fb: a0:2b:ca:6d:fb:16:fa:7c:7d:5c:3d:ba:4c:35:37:19:43:f7: 41:6d:b0:a4:4b:38:67:46:f1:8d:8c:17:c1:37:bd:e7:e2:b7: 47:94:f7:d8:26:d2:bd:82:21:be:35:9f:2c:2b:4a:2a:b9:61: 4c:d5:dd:8c:d3:fe:31:14:55:15:84:bb:a7:54:6c:bd:eb:8d: b9:05:8d:7c:5b:af:65:41:ea:d2:00:79:7b:cb:15:ff:e0:bc: f5:be:07:e5:15:61:7b:db:23:72:ea:76:56:f7:c2:61:7a:c0: b9:74:09:10:5c:63:31:40:9b:6a:c6:49:9d:01:44:d8:94:5b: 5f:13:93:3d:93:2a:f0:24:fa:94:fe:67:61:5b:78:82:33:99: 8b:8d:e1:f6:fe:45:07:26:b3:e3:05:bf:f8:af:bb:49:1e:c8: a4:38:ec:fa:d9:e9:f0:1f:1c:8e:cb:24:66:bc:d6:65:fe:62: 84:f0:af:2c:dd:41:31:b6:2d:b0:54:d7:ae:fa:af:e7:ea:7a: 74:83:e2:df:0f:a5:80:ba:f7:96:78:7f:1a:2f:64:cd:7f:bd: b9:31:18:b5 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBOzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1 QTBGQjExMC8GA1UEBRMoNUYwNEMwMDVGMjhDMjg1NkM3QkJGNDc2QjkxQzYyQTAy RjJGQzUxQzAeFw0yNDEwMjMwNTQzMTFaFw0yNDEwMzAwNTQzMTFaMBgxFjAUBgNV BAMTDTY3MTg4Y2VmLTU4YmYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDnLlI+0R92kTq+aBXrfYWD31iWc02rpHdgF4LKmmmEU0MlzJazTi1ez+TdQvA+ L9gRCGWjpqbgpgmrU9HsB2061kEbCew0g0i/4RGVD7X+5tACn29KnqqtzyMTEVGv g/XM5R8HlOfiSQiI4wGv99T4K3ziIgpMFmFmzgftxai5/190S2A4w1K5yaef2v13 CagleoH5Z4MtMHA9yC+S20c6PUcVHhtvyG5fObtUrSYK3dVNfbhAp5xfH9i3KOOr lR59Qn1PmGrBP9AopMgmUUA2Tpbhia12gM+SM7sHZjTUb2CaTM9axltMCAeN2y4b r6f6O1HmlohwrQ5lgMfZL261AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQURqPvn+IY xP8V2OMZ2H5jYOg942wwHwYDVR0jBBgwFoAUXwTABfKMKFbHu/R2uRxioC8vxRww DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTVBMEZCL0UxNzE5MzYyM0Q4 RDExRUY4NzA1M0IwRkM0RjlBRTAyL1h3VEFCZktNS0ZiSHVfUjJ1Unhpb0M4dnhS dy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvWHdUQUJmS01LRmJIdV9SMnVSeGlvQzh2eFJ3LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTVB MEZCL0UxNzE5MzYyM0Q4RDExRUY4NzA1M0IwRkM0RjlBRTAyL1h3VEFCZktNS0Zi SHVfUjJ1Unhpb0M4dnhSdy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAJynDamXctDj4NMbeIkdCecypGuw4Eyh8NYMd7rMVBWXKxTe+6Arym37 Fvp8fVw9ukw1NxlD90FtsKRLOGdG8Y2MF8E3vefit0eU99gm0r2CIb41nywrSiq5 YUzV3YzT/jEUVRWEu6dUbL3rjbkFjXxbr2VB6tIAeXvLFf/gvPW+B+UVYXvbI3Lq dlb3wmF6wLl0CRBcYzFAm2rGSZ0BRNiUW18Tkz2TKvAk+pT+Z2FbeIIzmYuN4fb+ RQcms+MFv/ivu0keyKQ47PrZ6fAfHI7LJGa81mX+YoTwryzdQTG2LbBU1676r+fq enSD4t8PpYC695Z4fxovZM1/vbkxGLU= -----END CERTIFICATE-----Generated at Wed Oct 23 07:45:53 2024 by rpki-client on console-ams.rpki-client.org