$ rpki-client -vvf rpki.apnic.net/member_repository/A9167CC5/2AC4D33E46B111EC945B4F57C4F9AE02/XSeFtU0WPtAepUGLz6NPG3RWtxM.mft File: XSeFtU0WPtAepUGLz6NPG3RWtxM.mft (raw, json) Hash identifier: mpTBbU3tBHl19c3C+BO+HABw7+sZ419lo/0ixQvFRII= Subject key identifier: 76:C4:3E:FA:55:12:93:6A:7A:B7:2D:CA:E4:80:45:5C:74:BB:C6:53 Authority key identifier: 5D:27:85:B5:4D:16:3E:D0:1E:A5:41:8B:CF:A3:4F:1B:74:56:B7:13 Certificate issuer: /CN=A9167CC5/serialNumber=5D2785B54D163ED01EA5418BCFA34F1B7456B713 Certificate serial: 042F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XSeFtU0WPtAepUGLz6NPG3RWtxM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9167CC5/2AC4D33E46B111EC945B4F57C4F9AE02/XSeFtU0WPtAepUGLz6NPG3RWtxM.mft Manifest number: 041A Signing time: Wed 20 Nov 2024 23:56:50 +0000 Manifest this update: Wed 20 Nov 2024 23:56:49 +0000 Manifest next update: Wed 27 Nov 2024 23:56:49 +0000 Files and hashes: 1: XSeFtU0WPtAepUGLz6NPG3RWtxM.crl (hash: afri5z0AlCH5uTxbtPuZgBPbnszvx97Fp4j3j6ioJT0=) 2: 6337963E4C3D11ECB5FF844FC4F9AE02.roa (hash: GQCSA6QyrQT61zgUzzq3IA+DEvS1M9WVjoPYcq1Bd4c=) 3: ACE844F047AA11ECA0F05026C4F9AE02.roa (hash: RB7zIrr0vmaPJFrKM5hv3nF1tNHSBNjXihwLxIeXId8=) 4: 1F77EFA44C4011EC952D5A23C4F9AE02.roa (hash: 3nJLpeMdcFe+Gds2ygUBHLssUTU630EavjtxrzJszKo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9167CC5/2AC4D33E46B111EC945B4F57C4F9AE02/XSeFtU0WPtAepUGLz6NPG3RWtxM.crl rsync://rpki.apnic.net/member_repository/A9167CC5/2AC4D33E46B111EC945B4F57C4F9AE02/XSeFtU0WPtAepUGLz6NPG3RWtxM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XSeFtU0WPtAepUGLz6NPG3RWtxM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:33:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1071 (0x42f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9167CC5/serialNumber=5D2785B54D163ED01EA5418BCFA34F1B7456B713 Validity Not Before: Nov 20 23:56:49 2024 GMT Not After : Nov 27 23:56:49 2024 GMT Subject: CN=673e7742-84c3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:7a:f5:53:d1:2c:5b:c3:63:51:db:b7:25:92: 73:d7:fd:64:7a:d3:23:a5:ef:a7:b3:a3:fe:d0:94: 22:27:7a:20:b5:a7:b2:11:58:a0:03:a6:2e:61:f5: 19:c5:90:49:d8:bd:0a:e2:38:28:ee:88:c7:17:94: b5:8e:85:1e:d3:e5:a6:07:83:28:38:67:b9:37:ee: ce:01:96:8d:15:e5:1e:ba:73:03:2e:39:cc:04:67: 33:47:6b:de:d7:46:4b:92:a8:ce:5d:44:df:e7:bf: ad:3d:ec:2c:12:86:ed:56:5c:1b:1a:8a:e4:c9:0a: 47:e9:dc:ed:f1:f9:0c:5c:68:39:fb:c3:b7:87:c2: b9:f6:98:91:48:5c:85:50:12:0b:cc:a7:5e:04:82: ff:5f:48:03:a6:f7:8e:b9:84:63:f7:a9:05:b4:57: b7:8d:0a:f8:7f:1c:20:a8:85:bd:75:3e:a0:16:95: 37:0e:37:65:a6:7f:fe:a3:45:61:97:cc:6a:90:49: 3a:88:6a:3d:03:21:06:c1:63:2b:cb:1d:3b:94:f9: ab:83:17:f5:a7:95:4e:5c:ee:0f:f9:66:dc:8b:7b: 5f:b2:0d:a9:2d:b6:bd:26:34:72:0d:86:05:9d:ab: 0d:f4:4e:25:f5:e6:a7:34:72:cb:14:f3:3c:3c:06: 11:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:C4:3E:FA:55:12:93:6A:7A:B7:2D:CA:E4:80:45:5C:74:BB:C6:53 X509v3 Authority Key Identifier: keyid:5D:27:85:B5:4D:16:3E:D0:1E:A5:41:8B:CF:A3:4F:1B:74:56:B7:13 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9167CC5/2AC4D33E46B111EC945B4F57C4F9AE02/XSeFtU0WPtAepUGLz6NPG3RWtxM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XSeFtU0WPtAepUGLz6NPG3RWtxM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9167CC5/2AC4D33E46B111EC945B4F57C4F9AE02/XSeFtU0WPtAepUGLz6NPG3RWtxM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a3:4e:5d:f9:d1:0d:b3:d4:cd:15:61:a5:86:6b:89:d3:f4:e1: b0:3d:4d:27:fc:63:73:f3:0a:de:72:ca:a6:93:75:06:39:c1: ed:a3:e3:fc:f0:f6:b1:b2:ea:37:70:1b:5a:0c:97:9a:9f:ee: ec:4c:6f:f3:9d:2c:02:d6:88:7f:c1:ed:54:87:ae:fb:16:44: a5:92:18:ef:2d:00:01:d4:1e:3d:d2:ca:49:11:34:7f:22:cd: 1f:70:55:a3:ad:49:8f:6e:6d:66:4a:bd:9c:14:51:94:11:5e: f0:a4:db:88:45:8f:bc:75:42:d2:a9:1b:9f:c0:29:6f:1d:8f: c7:4c:24:a4:5a:4b:aa:b0:24:fe:da:37:82:fb:30:59:4c:26: 96:d8:6f:3d:43:aa:64:17:50:a9:af:fd:e9:28:4b:9f:32:23: 48:f4:94:cb:bd:8a:06:9a:5d:53:70:e0:2f:86:3b:38:e2:8e: 1b:de:5f:e1:27:5d:5b:f1:dc:f2:06:5e:a0:a1:30:06:14:48: e3:c1:5a:c6:bd:de:5b:ff:d4:a2:fb:1e:72:dd:3a:f2:e9:56: c3:0b:be:2b:3f:0c:10:5e:0a:5c:c3:ef:6a:a8:7f:53:19:a2: de:24:e8:2f:a9:5e:67:d1:be:13:01:18:f5:50:d4:f5:eb:71: 8a:77:01:ed -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBC8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjdDQzUxMTAvBgNVBAUTKDVEMjc4NUI1NEQxNjNFRDAxRUE1NDE4QkNGQTM0RjFC NzQ1NkI3MTMwHhcNMjQxMTIwMjM1NjQ5WhcNMjQxMTI3MjM1NjQ5WjAYMRYwFAYD VQQDEw02NzNlNzc0Mi04NGMzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxnr1U9EsW8NjUdu3JZJz1/1ketMjpe+ns6P+0JQiJ3ogtaeyEVigA6YuYfUZ xZBJ2L0K4jgo7ojHF5S1joUe0+WmB4MoOGe5N+7OAZaNFeUeunMDLjnMBGczR2ve 10ZLkqjOXUTf57+tPewsEobtVlwbGorkyQpH6dzt8fkMXGg5+8O3h8K59piRSFyF UBILzKdeBIL/X0gDpveOuYRj96kFtFe3jQr4fxwgqIW9dT6gFpU3Djdlpn/+o0Vh l8xqkEk6iGo9AyEGwWMryx07lPmrgxf1p5VOXO4P+Wbci3tfsg2pLba9JjRyDYYF nasN9E4l9eanNHLLFPM8PAYRtwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHbEPvpV EpNqerctyuSARVx0u8ZTMB8GA1UdIwQYMBaAFF0nhbVNFj7QHqVBi8+jTxt0VrcT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2N0NDNS8yQUM0RDMzRTQ2 QjExMUVDOTQ1QjRGNTdDNEY5QUUwMi9YU2VGdFUwV1B0QWVwVUdMejZOUEczUld0 eE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hTZUZ0VTBXUHRBZXBVR0x6Nk5QRzNSV3R4TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 N0NDNS8yQUM0RDMzRTQ2QjExMUVDOTQ1QjRGNTdDNEY5QUUwMi9YU2VGdFUwV1B0 QWVwVUdMejZOUEczUld0eE0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCjTl350Q2z1M0VYaWGa4nT9OGwPU0n/GNz8wrecsqmk3UGOcHto+P8 8Paxsuo3cBtaDJean+7sTG/znSwC1oh/we1Uh677FkSlkhjvLQAB1B490spJETR/ Is0fcFWjrUmPbm1mSr2cFFGUEV7wpNuIRY+8dULSqRufwClvHY/HTCSkWkuqsCT+ 2jeC+zBZTCaW2G89Q6pkF1Cpr/3pKEufMiNI9JTLvYoGml1TcOAvhjs44o4b3l/h J11b8dzyBl6goTAGFEjjwVrGvd5b/9Si+x5y3Try6VbDC74rPwwQXgpcw+9qqH9T GaLeJOgvqV5n0b4TARj1UNT163GKdwHt -----END CERTIFICATE-----Generated at Thu Nov 21 01:25:59 2024 by rpki-client on console-ams.rpki-client.org