$ rpki-client -vvf rpki.apnic.net/member_repository/A917C716/4DB9CAC4140211EDB9663415C4F9AE02/XOvYaFsXSV2z4edFmXn-hPBDg_I.mft File: XOvYaFsXSV2z4edFmXn-hPBDg_I.mft (raw, json) Hash identifier: hQO3vq1WW9Ul1GWMfNpueDITAkYESaHiVeb9EDZMyBw= Subject key identifier: D3:32:1C:7D:96:B4:38:85:47:93:79:77:3D:66:38:27:82:30:61:F3 Authority key identifier: 5C:EB:D8:68:5B:17:49:5D:B3:E1:E7:45:99:79:FE:84:F0:43:83:F2 Certificate issuer: /CN=A917C716/serialNumber=5CEBD8685B17495DB3E1E7459979FE84F04383F2 Certificate serial: 61 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XOvYaFsXSV2z4edFmXn-hPBDg_I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917C716/4DB9CAC4140211EDB9663415C4F9AE02/XOvYaFsXSV2z4edFmXn-hPBDg_I.mft Manifest number: 026F Signing time: Thu 21 Nov 2024 01:35:30 +0000 Manifest this update: Thu 21 Nov 2024 01:35:29 +0000 Manifest next update: Thu 28 Nov 2024 01:35:29 +0000 Files and hashes: 1: XOvYaFsXSV2z4edFmXn-hPBDg_I.crl (hash: TyvZG0YuwTP06qNgAkehd+RxhRasisFOUE3MbQg7Byc=) 2: 873B172AA46611EFB7561648C4F9AE02.roa (hash: vo5lQMl5I8uhZ1s6XXgPIO5Xr6twjgZLI/MtkF4v78k=) 3: 48D1340C1E4B11EF91B1E611C4F9AE02.roa (hash: svT6qtzLSMx+UTK8XXgF9N/eQtu+nO8qycZ+vtRmD7Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917C716/4DB9CAC4140211EDB9663415C4F9AE02/XOvYaFsXSV2z4edFmXn-hPBDg_I.crl rsync://rpki.apnic.net/member_repository/A917C716/4DB9CAC4140211EDB9663415C4F9AE02/XOvYaFsXSV2z4edFmXn-hPBDg_I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XOvYaFsXSV2z4edFmXn-hPBDg_I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:33:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 97 (0x61) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917C716/serialNumber=5CEBD8685B17495DB3E1E7459979FE84F04383F2 Validity Not Before: Nov 21 01:35:29 2024 GMT Not After : Nov 28 01:35:29 2024 GMT Subject: CN=673e8e62-bf0a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f9:e1:e3:72:89:fe:fb:ca:40:b0:42:d2:92:ff: a0:0d:ac:e1:aa:59:c5:14:a9:83:77:aa:e8:8e:df: b2:f4:8e:74:01:9f:2a:47:c1:83:2a:d4:83:3c:f9: f1:6d:e3:57:37:2c:d6:22:32:20:ca:c0:e5:14:c9: b5:a0:b5:1b:7d:38:00:e2:8d:ff:02:0f:aa:62:af: 53:8c:38:48:02:29:98:a0:36:c5:92:af:ed:03:a5: ab:7b:00:2e:19:ec:ff:05:da:78:61:b1:7a:9f:a9: a8:a2:d6:4c:1f:f2:3a:4d:51:e9:4b:1a:fd:1a:2c: 31:b6:07:1e:d2:d2:35:74:a7:83:54:ab:33:05:36: 51:13:89:db:5f:f0:e6:d3:ff:cd:fe:ad:37:65:cb: 76:6e:25:bc:be:d6:f1:9b:81:c7:49:ed:db:54:44: a6:19:71:17:52:96:9b:40:f7:4b:5f:c7:f7:62:d2: 5c:18:3b:21:13:e8:3f:58:59:22:48:74:19:94:2b: a0:d6:6f:72:36:68:36:65:da:5c:46:3d:49:60:19: fb:9e:35:c9:07:eb:c1:cd:6b:cc:27:aa:53:38:e5: d7:13:b3:ba:0e:6d:96:5a:dd:c0:60:3b:74:a8:76: de:16:37:51:bb:60:2a:4b:b6:61:ef:e6:6c:0e:31: 5c:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:32:1C:7D:96:B4:38:85:47:93:79:77:3D:66:38:27:82:30:61:F3 X509v3 Authority Key Identifier: keyid:5C:EB:D8:68:5B:17:49:5D:B3:E1:E7:45:99:79:FE:84:F0:43:83:F2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917C716/4DB9CAC4140211EDB9663415C4F9AE02/XOvYaFsXSV2z4edFmXn-hPBDg_I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XOvYaFsXSV2z4edFmXn-hPBDg_I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917C716/4DB9CAC4140211EDB9663415C4F9AE02/XOvYaFsXSV2z4edFmXn-hPBDg_I.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b3:ec:fe:69:16:1c:82:27:c8:95:b7:a5:4c:46:40:e2:3b:07: 86:39:d1:8b:8f:df:08:04:b4:6c:a4:ef:a9:d4:b2:d9:1e:53: 61:05:e1:d1:9e:76:35:47:70:b7:9e:5d:20:7a:83:1b:fe:6a: c1:99:a7:cc:71:62:db:4d:29:8d:d4:a1:e6:bd:8b:3f:e2:b2: 43:02:62:b0:a1:91:36:f1:5b:1c:3b:3a:2e:9a:2b:59:c5:95: d5:4f:d8:b3:de:52:5a:2b:89:77:6c:7e:0a:36:81:75:8d:05: d3:d8:a9:a4:4e:6d:4a:52:75:c7:e8:1e:a7:50:d2:c9:11:e5: 77:cc:52:ed:21:51:b5:e5:97:f6:12:2c:78:93:5f:9d:1f:f8: 99:bd:60:92:f9:c5:cf:d1:c5:58:14:7f:15:80:84:e8:62:40: 2b:f3:ec:bd:b8:08:52:c5:04:ef:cd:14:c0:31:02:95:77:e7: 28:93:d6:04:45:6d:24:fc:ef:a4:af:7d:8a:37:34:87:48:f4: 8c:0b:0d:9c:59:9c:c1:5a:0c:82:24:f4:0b:85:4c:1b:6a:48: 1e:f9:c3:4e:b7:4c:c2:55:79:36:9b:29:18:1d:bc:ac:bd:99: 13:8a:51:9d:c3:73:0e:5c:89:f9:43:60:37:a9:0b:2d:52:bf: 02:18:c6:0f -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBYTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 QzcxNjExMC8GA1UEBRMoNUNFQkQ4Njg1QjE3NDk1REIzRTFFNzQ1OTk3OUZFODRG MDQzODNGMjAeFw0yNDExMjEwMTM1MjlaFw0yNDExMjgwMTM1MjlaMBgxFjAUBgNV BAMTDTY3M2U4ZTYyLWJmMGEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQD54eNyif77ykCwQtKS/6ANrOGqWcUUqYN3quiO37L0jnQBnypHwYMq1IM8+fFt 41c3LNYiMiDKwOUUybWgtRt9OADijf8CD6pir1OMOEgCKZigNsWSr+0Dpat7AC4Z 7P8F2nhhsXqfqaii1kwf8jpNUelLGv0aLDG2Bx7S0jV0p4NUqzMFNlETidtf8ObT /83+rTdly3ZuJby+1vGbgcdJ7dtURKYZcRdSlptA90tfx/di0lwYOyET6D9YWSJI dBmUK6DWb3I2aDZl2lxGPUlgGfueNckH68HNa8wnqlM45dcTs7oObZZa3cBgO3So dt4WN1G7YCpLtmHv5mwOMVxvAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU0zIcfZa0 OIVHk3l3PWY4J4IwYfMwHwYDVR0jBBgwFoAUXOvYaFsXSV2z4edFmXn+hPBDg/Iw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTdDNzE2LzREQjlDQUM0MTQw MjExRURCOTY2MzQxNUM0RjlBRTAyL1hPdllhRnNYU1YyejRlZEZtWG4taFBCRGdf SS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvWE92WWFGc1hTVjJ6NGVkRm1Ybi1oUEJEZ19JLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTdD NzE2LzREQjlDQUM0MTQwMjExRURCOTY2MzQxNUM0RjlBRTAyL1hPdllhRnNYU1Yy ejRlZEZtWG4taFBCRGdfSS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBALPs/mkWHIInyJW3pUxGQOI7B4Y50YuP3wgEtGyk76nUstkeU2EF4dGe djVHcLeeXSB6gxv+asGZp8xxYttNKY3Uoea9iz/iskMCYrChkTbxWxw7Oi6aK1nF ldVP2LPeUloriXdsfgo2gXWNBdPYqaRObUpSdcfoHqdQ0skR5XfMUu0hUbXll/YS LHiTX50f+Jm9YJL5xc/RxVgUfxWAhOhiQCvz7L24CFLFBO/NFMAxApV35yiT1gRF bST876SvfYo3NIdI9IwLDZxZnMFaDIIk9AuFTBtqSB75w063TMJVeTabKRgdvKy9 mROKUZ3Dcw5ciflDYDepCy1SvwIYxg8= -----END CERTIFICATE-----Generated at Thu Nov 21 03:11:59 2024 by rpki-client on console-fra.rpki-client.org