$ rpki-client -vvf rpki.apnic.net/member_repository/A915EBC8/589820C2EF0211ED8C2DD91FC4F9AE02/xiGEgVH3l79yMQfxTWLGeiE6U-M.mft File: xiGEgVH3l79yMQfxTWLGeiE6U-M.mft (raw, json) Hash identifier: JMNK5EgELkKbkp6NpUkIBdttY5Xsk3N+oGbo9PlF4Mw= Subject key identifier: 5C:7F:C6:E2:EB:72:DC:05:8E:13:3E:B4:64:4A:55:B7:65:FC:89:EE Authority key identifier: C6:21:84:81:51:F7:97:BF:72:31:07:F1:4D:62:C6:7A:21:3A:53:E3 Certificate issuer: /CN=A915EBC8/serialNumber=C621848151F797BF723107F14D62C67A213A53E3 Certificate serial: 0159 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xiGEgVH3l79yMQfxTWLGeiE6U-M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915EBC8/589820C2EF0211ED8C2DD91FC4F9AE02/xiGEgVH3l79yMQfxTWLGeiE6U-M.mft Manifest number: 013D Signing time: Thu 21 Nov 2024 02:57:09 +0000 Manifest this update: Thu 21 Nov 2024 02:57:09 +0000 Manifest next update: Thu 28 Nov 2024 02:57:09 +0000 Files and hashes: 1: xiGEgVH3l79yMQfxTWLGeiE6U-M.crl (hash: e5m2YDn59pLlBL6Vv2gv37gn4AhuBleZEUAHF5zV42E=) 2: AC61350A4E3C11EF9286040CC4F9AE02.roa (hash: Jo4WABUEWPRcQSHlp0OZS00fwB0a0r3f/UDtxFI4TE8=) 3: 781637A8FADD11EE880BF37DC4F9AE02.roa (hash: UkUpU1afkgtg1CQHu61ZJeRImk8QtltSVX5opIK6H/k=) 4: 9BB3FAB6CCB511EE8612FB18C4F9AE02.roa (hash: c9KG9vpN1QmGvwjTf9PDbnl/EQ1PMVZ2QmsDIyegpZw=) 5: 7755D5B2FADD11EE880BF37DC4F9AE02.roa (hash: kzfyShpZyRgXv5qW19HVktsh3HfmhmaLBtleNFL05u8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915EBC8/589820C2EF0211ED8C2DD91FC4F9AE02/xiGEgVH3l79yMQfxTWLGeiE6U-M.crl rsync://rpki.apnic.net/member_repository/A915EBC8/589820C2EF0211ED8C2DD91FC4F9AE02/xiGEgVH3l79yMQfxTWLGeiE6U-M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xiGEgVH3l79yMQfxTWLGeiE6U-M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 02:50:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 345 (0x159) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915EBC8/serialNumber=C621848151F797BF723107F14D62C67A213A53E3 Validity Not Before: Nov 21 02:57:09 2024 GMT Not After : Nov 28 02:57:09 2024 GMT Subject: CN=673ea185-88f1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:ca:ef:d2:04:54:12:bc:69:24:c8:0a:02:9a: ce:94:5a:97:af:1c:e8:d8:a0:36:43:72:02:aa:7a: e2:44:ed:af:21:15:64:76:73:98:6e:e4:33:ed:77: ce:d8:eb:80:4a:a4:50:c9:68:8e:ad:62:51:34:79: f3:89:01:72:61:e8:60:7a:49:82:dd:ee:12:74:4d: bc:cc:9c:50:f9:ce:77:96:19:4f:ce:81:c3:ed:cf: b9:91:c8:d1:c6:80:65:e4:ac:b8:1a:ba:14:4d:29: d7:ea:bf:94:70:ae:0a:e5:b4:6b:76:83:dd:cb:bb: 92:e6:9b:8c:e6:a5:30:b7:a5:89:15:07:5c:e4:e2: bc:7a:d0:25:e1:f0:79:aa:4a:f5:0a:19:7e:73:65: d4:7a:5c:12:4b:cb:50:3b:c4:b9:fb:fb:44:3e:26: 13:da:68:f5:09:58:49:34:03:a6:e0:84:75:60:4c: 74:b1:b4:bc:a2:10:c7:09:f2:43:72:32:8f:dc:0f: 86:1d:2f:2a:47:8d:23:5f:e3:66:58:c2:2e:93:6b: dc:4d:13:5f:83:28:09:67:63:d4:84:f9:66:6e:bf: 3d:b0:50:ab:9d:5d:e1:72:ca:f6:85:d4:75:7c:a7: c4:30:25:b0:c9:f3:d2:ae:4f:46:b1:bf:e1:bc:25: 15:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:7F:C6:E2:EB:72:DC:05:8E:13:3E:B4:64:4A:55:B7:65:FC:89:EE X509v3 Authority Key Identifier: keyid:C6:21:84:81:51:F7:97:BF:72:31:07:F1:4D:62:C6:7A:21:3A:53:E3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915EBC8/589820C2EF0211ED8C2DD91FC4F9AE02/xiGEgVH3l79yMQfxTWLGeiE6U-M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xiGEgVH3l79yMQfxTWLGeiE6U-M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915EBC8/589820C2EF0211ED8C2DD91FC4F9AE02/xiGEgVH3l79yMQfxTWLGeiE6U-M.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6d:b5:3c:cd:74:b8:37:29:0d:b6:42:2d:a0:f0:61:0c:73:7f: b5:95:a3:5a:27:b5:99:29:d9:de:50:a7:29:51:bf:e8:3e:cc: b3:94:11:bc:25:aa:4a:cf:12:0c:14:f8:30:37:b2:33:fd:8f: 80:8a:6a:cb:77:c7:f6:20:01:4a:3c:77:6f:6d:0b:e6:c1:d3: b3:db:6b:35:43:c3:78:a8:f2:21:9e:4a:97:37:28:f9:fb:c7: 28:da:fa:b1:df:da:65:96:ac:2e:b9:a8:00:e4:e8:75:49:a3: af:6f:61:d9:a0:1b:b2:18:8e:63:c2:32:fe:ab:4d:8b:1d:4b: ac:b2:58:91:60:5a:b1:0a:8a:36:de:ea:61:6f:ee:8d:9b:c9: 4e:45:ef:ff:15:f8:94:72:70:51:39:95:0b:fc:33:0b:dc:e0: 0d:56:4c:cc:d7:ff:e3:c2:7a:3e:a0:f4:12:38:94:d4:fb:97: 36:ff:76:2c:13:e5:c6:fa:fa:52:41:a6:63:6e:e6:08:3a:2d: 6f:fa:62:bb:00:ee:2e:82:02:2f:83:03:78:62:98:ea:af:40: 5a:81:28:09:1a:01:cd:b3:68:03:65:e8:1a:04:8c:1e:39:3d: 9d:47:1c:b7:87:cb:eb:0e:b8:d4:06:df:d5:b5:ae:ef:9b:15: 6d:4d:5e:8d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAVkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUVCQzgxMTAvBgNVBAUTKEM2MjE4NDgxNTFGNzk3QkY3MjMxMDdGMTRENjJDNjdB MjEzQTUzRTMwHhcNMjQxMTIxMDI1NzA5WhcNMjQxMTI4MDI1NzA5WjAYMRYwFAYD VQQDEw02NzNlYTE4NS04OGYxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAocrv0gRUErxpJMgKAprOlFqXrxzo2KA2Q3ICqnriRO2vIRVkdnOYbuQz7XfO 2OuASqRQyWiOrWJRNHnziQFyYehgekmC3e4SdE28zJxQ+c53lhlPzoHD7c+5kcjR xoBl5Ky4GroUTSnX6r+UcK4K5bRrdoPdy7uS5puM5qUwt6WJFQdc5OK8etAl4fB5 qkr1Chl+c2XUelwSS8tQO8S5+/tEPiYT2mj1CVhJNAOm4IR1YEx0sbS8ohDHCfJD cjKP3A+GHS8qR40jX+NmWMIuk2vcTRNfgygJZ2PUhPlmbr89sFCrnV3hcsr2hdR1 fKfEMCWwyfPSrk9Gsb/hvCUVKwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFx/xuLr ctwFjhM+tGRKVbdl/InuMB8GA1UdIwQYMBaAFMYhhIFR95e/cjEH8U1ixnohOlPj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RUJDOC81ODk4MjBDMkVG MDIxMUVEOEMyREQ5MUZDNEY5QUUwMi94aUdFZ1ZIM2w3OXlNUWZ4VFdMR2VpRTZV LU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3hpR0VnVkgzbDc5eU1RZnhUV0xHZWlFNlUtTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 RUJDOC81ODk4MjBDMkVGMDIxMUVEOEMyREQ5MUZDNEY5QUUwMi94aUdFZ1ZIM2w3 OXlNUWZ4VFdMR2VpRTZVLU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBttTzNdLg3KQ22Qi2g8GEMc3+1laNaJ7WZKdneUKcpUb/oPsyzlBG8 JapKzxIMFPgwN7Iz/Y+AimrLd8f2IAFKPHdvbQvmwdOz22s1Q8N4qPIhnkqXNyj5 +8co2vqx39pllqwuuagA5Oh1SaOvb2HZoBuyGI5jwjL+q02LHUussliRYFqxCoo2 3uphb+6Nm8lORe//FfiUcnBROZUL/DML3OANVkzM1//jwno+oPQSOJTU+5c2/3Ys E+XG+vpSQaZjbuYIOi1v+mK7AO4uggIvgwN4Ypjqr0BagSgJGgHNs2gDZegaBIwe OT2dRxy3h8vrDrjUBt/Vta7vmxVtTV6N -----END CERTIFICATE-----Generated at Thu Nov 21 05:05:57 2024 by rpki-client on console-fra.rpki-client.org