$ rpki-client -vvf rpki.apnic.net/member_repository/A9173CE6/03A017847BD011EB85A66980C4F9AE02/X60bOb5FVSYiBtGfWmabx7afcsg.mft File: X60bOb5FVSYiBtGfWmabx7afcsg.mft (raw, json) Hash identifier: 0jXIrjpLnLHOF6GuA0mpCTOoB5T2U78z3wSH+/bGqmE= Subject key identifier: 33:09:8B:EE:F6:E3:EE:E0:DB:7E:57:5E:1B:75:BF:49:26:A9:9B:FA Authority key identifier: 5F:AD:1B:39:BE:45:55:26:22:06:D1:9F:5A:66:9B:C7:B6:9F:72:C8 Certificate issuer: /CN=A9173CE6/serialNumber=5FAD1B39BE4555262206D19F5A669BC7B69F72C8 Certificate serial: 0616 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/X60bOb5FVSYiBtGfWmabx7afcsg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9173CE6/03A017847BD011EB85A66980C4F9AE02/X60bOb5FVSYiBtGfWmabx7afcsg.mft Manifest number: 0613 Signing time: Sun 24 Nov 2024 22:00:59 +0000 Manifest this update: Sun 24 Nov 2024 22:00:59 +0000 Manifest next update: Sun 01 Dec 2024 22:00:59 +0000 Files and hashes: 1: X60bOb5FVSYiBtGfWmabx7afcsg.crl (hash: 2Mz7hOFs6/6xN9eNAZJx+poIJ2V0RYwuKCbdG7f70ps=) 2: C4245600E55A11ED98D38780C4F9AE02.roa (hash: yju+fZAWtM3RsMZrSlngexqtu4I3chkHV+7N/8ZbBdQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9173CE6/03A017847BD011EB85A66980C4F9AE02/X60bOb5FVSYiBtGfWmabx7afcsg.crl rsync://rpki.apnic.net/member_repository/A9173CE6/03A017847BD011EB85A66980C4F9AE02/X60bOb5FVSYiBtGfWmabx7afcsg.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/X60bOb5FVSYiBtGfWmabx7afcsg.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Dec 2024 17:11:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1558 (0x616) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9173CE6/serialNumber=5FAD1B39BE4555262206D19F5A669BC7B69F72C8 Validity Not Before: Nov 24 22:00:59 2024 GMT Not After : Dec 1 22:00:59 2024 GMT Subject: CN=6743a21b-b386 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:d4:07:8b:17:12:7b:fc:a5:57:21:11:4c:dd: 0e:35:11:b8:dd:59:54:6e:e3:d0:1d:95:32:57:ff: e3:a2:04:26:84:02:22:1c:8f:45:6c:25:37:ce:63: e0:a8:b3:58:af:17:df:e1:fd:ec:b2:b3:6f:f0:53: d9:9c:ce:1f:cf:2f:6d:5d:b0:40:e7:23:43:3c:17: 4a:e5:9f:da:ad:e2:8e:50:89:f5:83:ea:55:af:58: ac:bf:fc:17:bb:ff:4b:ab:4e:ca:04:a0:fa:b2:19: 79:6f:d3:9c:e5:35:50:d8:04:17:8a:df:55:ef:ab: 50:70:52:6e:13:b0:d4:a0:1a:91:a7:7c:93:97:6a: 31:fc:38:96:9c:f0:d6:a5:02:8d:b9:17:66:15:5a: 3d:a5:9f:d8:33:f8:19:f3:38:97:9c:5e:4f:c2:3c: 67:be:cb:d6:e2:8c:3b:10:a1:d5:b4:d4:5e:45:18: ea:33:43:d7:12:06:d6:bc:34:86:7f:1c:03:70:87: 89:df:3d:18:14:90:e9:9a:e4:a2:5f:81:13:7d:4b: b7:39:7c:cd:9c:38:8d:f5:60:d1:32:aa:50:b1:22: e6:a8:a6:22:aa:61:1b:1a:65:5f:4f:7f:a6:ea:28: 68:12:d9:20:9d:ba:77:b0:b8:70:b3:d9:f1:fd:37: 07:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:09:8B:EE:F6:E3:EE:E0:DB:7E:57:5E:1B:75:BF:49:26:A9:9B:FA X509v3 Authority Key Identifier: keyid:5F:AD:1B:39:BE:45:55:26:22:06:D1:9F:5A:66:9B:C7:B6:9F:72:C8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9173CE6/03A017847BD011EB85A66980C4F9AE02/X60bOb5FVSYiBtGfWmabx7afcsg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/X60bOb5FVSYiBtGfWmabx7afcsg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9173CE6/03A017847BD011EB85A66980C4F9AE02/X60bOb5FVSYiBtGfWmabx7afcsg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0c:11:58:06:a0:f0:cb:55:00:74:e1:76:51:8e:9f:c6:02:ea: 77:1f:96:4b:38:5f:75:d6:17:c7:cc:7e:76:65:47:44:34:ba: d4:fb:92:72:7d:f0:a7:b9:e3:6a:64:85:e4:3e:5e:5e:96:3d: 6f:d5:73:e1:01:4b:c3:0b:01:08:2b:7c:d9:5a:06:96:a9:77: 76:1b:8a:86:07:9d:40:42:5a:51:6c:c7:41:de:38:f0:25:04: d2:00:1c:0a:35:ff:7a:aa:41:4e:d5:c2:46:67:f8:7b:a8:a5: f6:2e:37:b3:4a:a7:f8:54:83:53:13:b4:c6:f8:c0:de:8a:83: 83:76:7e:7d:01:ad:90:2b:ae:cf:cd:4a:df:f9:ec:54:f7:2b: 41:0b:e9:73:21:65:13:01:fe:73:b6:5d:26:c2:0d:d4:e2:6b: 7c:15:db:cf:c1:56:b2:0d:e1:72:6d:62:71:8a:19:a4:96:06: fa:d8:45:8d:d6:e7:eb:7a:05:2d:63:75:d5:9b:b7:5c:07:03: f3:b8:6d:9b:ab:5c:9f:58:0b:0d:63:da:44:d2:2d:d8:58:9c: c6:9d:a6:6c:39:6e:2a:cd:94:ac:94:96:8b:44:eb:13:7e:a9: 3a:f5:97:44:a3:7e:69:09:e3:7e:63:fb:47:13:7c:43:15:6d: fe:10:71:52 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBhYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzNDRTYxMTAvBgNVBAUTKDVGQUQxQjM5QkU0NTU1MjYyMjA2RDE5RjVBNjY5QkM3 QjY5RjcyQzgwHhcNMjQxMTI0MjIwMDU5WhcNMjQxMjAxMjIwMDU5WjAYMRYwFAYD VQQDEw02NzQzYTIxYi1iMzg2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv9QHixcSe/ylVyERTN0ONRG43VlUbuPQHZUyV//jogQmhAIiHI9FbCU3zmPg qLNYrxff4f3ssrNv8FPZnM4fzy9tXbBA5yNDPBdK5Z/areKOUIn1g+pVr1isv/wX u/9Lq07KBKD6shl5b9Oc5TVQ2AQXit9V76tQcFJuE7DUoBqRp3yTl2ox/DiWnPDW pQKNuRdmFVo9pZ/YM/gZ8ziXnF5PwjxnvsvW4ow7EKHVtNReRRjqM0PXEgbWvDSG fxwDcIeJ3z0YFJDpmuSiX4ETfUu3OXzNnDiN9WDRMqpQsSLmqKYiqmEbGmVfT3+m 6ihoEtkgnbp3sLhws9nx/TcHtwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDMJi+72 4+7g235XXht1v0kmqZv6MB8GA1UdIwQYMBaAFF+tGzm+RVUmIgbRn1pmm8e2n3LI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3M0NFNi8wM0EwMTc4NDdC RDAxMUVCODVBNjY5ODBDNEY5QUUwMi9YNjBiT2I1RlZTWWlCdEdmV21hYng3YWZj c2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1g2MGJPYjVGVlNZaUJ0R2ZXbWFieDdhZmNzZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 M0NFNi8wM0EwMTc4NDdCRDAxMUVCODVBNjY5ODBDNEY5QUUwMi9YNjBiT2I1RlZT WWlCdEdmV21hYng3YWZjc2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAMEVgGoPDLVQB04XZRjp/GAup3H5ZLOF911hfHzH52ZUdENLrU+5Jy ffCnueNqZIXkPl5elj1v1XPhAUvDCwEIK3zZWgaWqXd2G4qGB51AQlpRbMdB3jjw JQTSABwKNf96qkFO1cJGZ/h7qKX2LjezSqf4VINTE7TG+MDeioODdn59Aa2QK67P zUrf+exU9ytBC+lzIWUTAf5ztl0mwg3U4mt8FdvPwVayDeFybWJxihmklgb62EWN 1ufregUtY3XVm7dcBwPzuG2bq1yfWAsNY9pE0i3YWJzGnaZsOW4qzZSslJaLROsT fqk69ZdEo35pCeN+Y/tHE3xDFW3+EHFS -----END CERTIFICATE-----Generated at Sun Nov 24 23:58:48 2024 by rpki-client on console-fra.rpki-client.org