$ rpki-client -vvf rpki.apnic.net/member_repository/A9170304/AB8249B21D8E11E2B18226ED08B02CD2/X8J5LPRAuFeDnWiKcLYPB2KrqzU.mft File: X8J5LPRAuFeDnWiKcLYPB2KrqzU.mft (raw, json) Hash identifier: +3eqW4thR0x4CshE86DqHh/OEdNsOMyfLMnF+QVcq5o= Subject key identifier: 58:FB:E1:20:2E:65:6F:63:0A:2A:58:F3:4E:19:C2:83:36:0F:EA:C6 Authority key identifier: 5F:C2:79:2C:F4:40:B8:57:83:9D:68:8A:70:B6:0F:07:62:AB:AB:35 Certificate issuer: /CN=A9170304/serialNumber=5FC2792CF440B857839D688A70B60F0762ABAB35 Certificate serial: 3432 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X8J5LPRAuFeDnWiKcLYPB2KrqzU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9170304/AB8249B21D8E11E2B18226ED08B02CD2/X8J5LPRAuFeDnWiKcLYPB2KrqzU.mft Manifest number: 342B Signing time: Wed 20 Nov 2024 14:39:21 +0000 Manifest this update: Wed 20 Nov 2024 14:39:21 +0000 Manifest next update: Wed 27 Nov 2024 14:39:21 +0000 Files and hashes: 1: X8J5LPRAuFeDnWiKcLYPB2KrqzU.crl (hash: CWMz2PgDKPiPtKtvFKAszGs2yjFQ1I51vHJ7dBXyODQ=) 2: 6D106CEE3AA011EB963B4842C4F9AE02.roa (hash: dIOO+N+ZrFHeKmWGUD9CmhvwX/HZ9yoGdGFIS58lszc=) 3: 3A304DB4F54411EE8FF34627C4F9AE02.roa (hash: /40Lfx7mc+RKzfFNZjcJomMgvMglcXnhZ5igcKXMupQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9170304/AB8249B21D8E11E2B18226ED08B02CD2/X8J5LPRAuFeDnWiKcLYPB2KrqzU.crl rsync://rpki.apnic.net/member_repository/A9170304/AB8249B21D8E11E2B18226ED08B02CD2/X8J5LPRAuFeDnWiKcLYPB2KrqzU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X8J5LPRAuFeDnWiKcLYPB2KrqzU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 14:39:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13362 (0x3432) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9170304/serialNumber=5FC2792CF440B857839D688A70B60F0762ABAB35 Validity Not Before: Nov 20 14:39:21 2024 GMT Not After : Nov 27 14:39:21 2024 GMT Subject: CN=673df499-b7df Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:6f:5c:e0:c3:11:b9:e6:71:5a:9b:74:0f:f7: 19:a9:4b:14:17:bb:ca:40:74:18:70:95:84:aa:33: ec:62:f1:75:bd:2f:cb:c0:48:8c:e0:10:1f:fb:e0: 5e:31:ac:1c:39:65:3a:0c:5d:5f:b7:72:68:4e:be: 34:47:09:df:6f:b1:30:b8:75:2d:b3:87:de:96:f4: 51:39:0e:aa:6d:99:ac:69:e2:3f:70:5e:4f:bd:61: db:d5:3f:86:39:85:9e:ff:e3:cc:b7:fb:8f:9a:eb: 4f:ec:72:2e:d4:42:d9:62:5b:1e:7b:38:6e:3e:f8: 03:7b:a6:ea:6a:05:9d:2c:b8:49:72:16:e9:87:14: 84:1c:31:f5:6e:ef:85:97:7a:3f:46:91:ab:1f:80: ad:06:fd:51:4d:ea:b3:06:bb:2b:23:5b:81:5b:fc: ad:a0:60:b7:19:26:0e:a7:ba:d4:ed:d1:f1:c9:a4: d9:35:89:7b:67:af:c5:42:9b:49:90:67:e1:e3:b3: 2f:e2:26:69:9d:8e:81:8a:3f:11:b6:62:c9:5c:4a: bd:24:aa:0d:63:c9:a9:29:4e:47:99:45:f6:b4:aa: bb:b6:79:37:36:8b:ee:dd:33:1f:15:bc:75:9d:da: 2e:a5:f2:1a:80:ba:7c:8c:8a:38:d5:88:40:1c:21: 5a:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:FB:E1:20:2E:65:6F:63:0A:2A:58:F3:4E:19:C2:83:36:0F:EA:C6 X509v3 Authority Key Identifier: keyid:5F:C2:79:2C:F4:40:B8:57:83:9D:68:8A:70:B6:0F:07:62:AB:AB:35 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9170304/AB8249B21D8E11E2B18226ED08B02CD2/X8J5LPRAuFeDnWiKcLYPB2KrqzU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X8J5LPRAuFeDnWiKcLYPB2KrqzU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9170304/AB8249B21D8E11E2B18226ED08B02CD2/X8J5LPRAuFeDnWiKcLYPB2KrqzU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 15:be:4e:7e:0e:c3:52:91:fc:41:31:ec:c1:7d:89:f7:c1:0e: d7:dc:48:cc:a2:d8:33:78:6d:74:2b:db:5f:56:d4:c6:69:7d: 5e:de:51:c6:8c:a5:23:0e:00:09:90:64:b6:e1:90:ba:f8:53: 96:3c:1a:68:73:8c:1b:62:cd:c6:80:68:cb:c6:d9:e4:69:6b: 16:14:87:ad:1d:02:a0:bd:7a:9c:50:e3:80:23:3f:a6:1f:50: 35:24:fa:7f:da:c9:7b:d2:a9:33:f2:5c:e2:f3:34:95:91:d3: 0e:ab:97:40:17:19:52:f6:df:ee:ff:0a:ef:32:c0:ae:ff:f1: 7e:b3:cc:01:b8:be:9a:13:db:53:b5:c5:47:b8:c8:e7:6d:cd: 30:56:ca:98:6d:c1:d4:4d:f8:c3:fc:04:f3:02:ed:6d:19:2b: b0:f1:82:bb:3b:68:eb:60:4f:e9:d7:75:e9:05:ed:f2:d9:f4: 84:34:1a:70:ee:f5:db:f9:0e:b9:f7:bb:cc:ca:de:26:d7:86: b3:e2:d3:f3:99:45:93:7f:c0:b5:77:e3:5d:96:bc:6f:7e:8f: 25:98:11:0f:ff:93:56:b6:c3:fa:39:1e:ad:e6:cd:56:25:27: d8:e8:7e:d5:50:76:3c:1a:c6:88:75:58:b1:3e:f9:c6:88:6e: f2:16:92:fc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNDIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzAzMDQxMTAvBgNVBAUTKDVGQzI3OTJDRjQ0MEI4NTc4MzlENjg4QTcwQjYwRjA3 NjJBQkFCMzUwHhcNMjQxMTIwMTQzOTIxWhcNMjQxMTI3MTQzOTIxWjAYMRYwFAYD VQQDEw02NzNkZjQ5OS1iN2RmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyW9c4MMRueZxWpt0D/cZqUsUF7vKQHQYcJWEqjPsYvF1vS/LwEiM4BAf++Be MawcOWU6DF1ft3JoTr40Rwnfb7EwuHUts4felvRROQ6qbZmsaeI/cF5PvWHb1T+G OYWe/+PMt/uPmutP7HIu1ELZYlseezhuPvgDe6bqagWdLLhJchbphxSEHDH1bu+F l3o/RpGrH4CtBv1RTeqzBrsrI1uBW/ytoGC3GSYOp7rU7dHxyaTZNYl7Z6/FQptJ kGfh47Mv4iZpnY6Bij8RtmLJXEq9JKoNY8mpKU5HmUX2tKq7tnk3Novu3TMfFbx1 ndoupfIagLp8jIo41YhAHCFaKwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFj74SAu ZW9jCipY804ZwoM2D+rGMB8GA1UdIwQYMBaAFF/CeSz0QLhXg51oinC2Dwdiq6s1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MDMwNC9BQjgyNDlCMjFE OEUxMUUyQjE4MjI2RUQwOEIwMkNEMi9YOEo1TFBSQXVGZURuV2lLY0xZUEIyS3Jx elUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1g4SjVMUFJBdUZlRG5XaUtjTFlQQjJLcnF6VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MDMwNC9BQjgyNDlCMjFEOEUxMUUyQjE4MjI2RUQwOEIwMkNEMi9YOEo1TFBSQXVG ZURuV2lLY0xZUEIyS3JxelUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAVvk5+DsNSkfxBMezBfYn3wQ7X3EjMotgzeG10K9tfVtTGaX1e3lHG jKUjDgAJkGS24ZC6+FOWPBpoc4wbYs3GgGjLxtnkaWsWFIetHQKgvXqcUOOAIz+m H1A1JPp/2sl70qkz8lzi8zSVkdMOq5dAFxlS9t/u/wrvMsCu//F+s8wBuL6aE9tT tcVHuMjnbc0wVsqYbcHUTfjD/ATzAu1tGSuw8YK7O2jrYE/p13XpBe3y2fSENBpw 7vXb+Q6597vMyt4m14az4tPzmUWTf8C1d+Ndlrxvfo8lmBEP/5NWtsP6OR6t5s1W JSfY6H7VUHY8GsaIdVixPvnGiG7yFpL8 -----END CERTIFICATE-----Generated at Wed Nov 20 16:11:28 2024 by rpki-client on console-fra.rpki-client.org