$ rpki-client -vvf rpki.apnic.net/member_repository/A917F8A9/2AA0433094F011EA83EF1E7DC4F9AE02/XAq0JfK0I14cgVaDvWyOi3uAtyc.mft File: XAq0JfK0I14cgVaDvWyOi3uAtyc.mft (raw, json) Hash identifier: i/ikH9Wnvzn68NmaCllpx+g+B3PrxcszaHOdIOJELII= Subject key identifier: D1:01:47:4D:4E:58:C2:9D:93:23:01:59:75:46:66:AA:5B:78:A8:00 Authority key identifier: 5C:0A:B4:25:F2:B4:23:5E:1C:81:56:83:BD:6C:8E:8B:7B:80:B7:27 Certificate issuer: /CN=A917F8A9/serialNumber=5C0AB425F2B4235E1C815683BD6C8E8B7B80B727 Certificate serial: 091F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XAq0JfK0I14cgVaDvWyOi3uAtyc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917F8A9/2AA0433094F011EA83EF1E7DC4F9AE02/XAq0JfK0I14cgVaDvWyOi3uAtyc.mft Manifest number: 090A Signing time: Fri 22 Nov 2024 20:08:20 +0000 Manifest this update: Fri 22 Nov 2024 20:08:19 +0000 Manifest next update: Fri 29 Nov 2024 20:08:19 +0000 Files and hashes: 1: XAq0JfK0I14cgVaDvWyOi3uAtyc.crl (hash: DQby4dQQrc9HOaU6RwB4+q5v6Vk17u1hhiUKMwscZv8=) 2: 83DC30E0D0DB11EA9336962FC4F9AE02.roa (hash: bUYUEG9rlvWLeJULxYTOt+yyfrQInR4t1BBt7mMKyis=) 3: 0774A2C894F211EAB30E7682C4F9AE02.roa (hash: Fq/pVmaUyaXfhTK7mExdKDljB++79tgdQzG08MLch8k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917F8A9/2AA0433094F011EA83EF1E7DC4F9AE02/XAq0JfK0I14cgVaDvWyOi3uAtyc.crl rsync://rpki.apnic.net/member_repository/A917F8A9/2AA0433094F011EA83EF1E7DC4F9AE02/XAq0JfK0I14cgVaDvWyOi3uAtyc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XAq0JfK0I14cgVaDvWyOi3uAtyc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:08:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2335 (0x91f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917F8A9/serialNumber=5C0AB425F2B4235E1C815683BD6C8E8B7B80B727 Validity Not Before: Nov 22 20:08:19 2024 GMT Not After : Nov 29 20:08:19 2024 GMT Subject: CN=6740e4b3-691b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:a2:8f:cf:b2:c3:ef:1c:4b:ba:84:a2:43:65: 38:b5:e6:e7:49:da:40:b6:be:9f:19:ee:50:fa:fd: 2c:48:7f:4c:41:5e:bc:5f:6f:2e:57:b6:72:5a:8f: 0d:4e:b9:a2:d8:ae:a5:8c:82:44:db:c5:61:16:e8: d8:58:06:fc:f8:d5:95:06:b9:04:ed:6a:54:ba:cc: ae:5d:79:75:53:cf:07:1d:42:e6:0d:d0:73:6e:69: 99:a8:ed:51:2c:9a:d6:c7:de:9c:19:3d:83:75:16: 0e:2a:3a:57:3a:dd:41:49:65:72:22:d1:29:49:73: 52:63:46:ae:ea:59:5d:11:97:73:59:01:da:89:97: 36:0e:83:ac:53:75:0a:d8:62:d1:ce:6e:54:74:5e: 21:39:96:d9:c8:2a:64:08:0d:a9:f1:16:1d:83:49: d3:c5:99:cb:8a:06:1e:06:3c:3a:0c:40:f7:8f:34: e3:76:52:97:94:e1:27:92:db:38:46:eb:92:f9:ff: 8b:2f:04:01:c2:58:72:18:fb:ef:cf:b9:4c:02:ad: 58:83:cf:f4:f3:3c:44:81:16:d3:35:60:99:90:b2: 68:9f:9c:d8:d0:46:82:5a:75:7b:62:76:5c:ca:02: 5f:b1:f8:98:5d:0f:c6:e3:3f:68:ec:69:84:93:4a: 51:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:01:47:4D:4E:58:C2:9D:93:23:01:59:75:46:66:AA:5B:78:A8:00 X509v3 Authority Key Identifier: keyid:5C:0A:B4:25:F2:B4:23:5E:1C:81:56:83:BD:6C:8E:8B:7B:80:B7:27 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917F8A9/2AA0433094F011EA83EF1E7DC4F9AE02/XAq0JfK0I14cgVaDvWyOi3uAtyc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XAq0JfK0I14cgVaDvWyOi3uAtyc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917F8A9/2AA0433094F011EA83EF1E7DC4F9AE02/XAq0JfK0I14cgVaDvWyOi3uAtyc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption de:70:d7:7f:cb:cc:ef:f0:51:29:38:d3:28:89:c5:63:24:cc: e7:e6:30:c1:9a:48:2f:69:a0:4c:ff:de:0f:64:a8:5e:58:ec: 6a:d0:58:a9:32:51:30:83:34:cc:1e:66:48:51:1e:f5:61:44: 34:5d:8a:b7:a0:54:a0:ae:33:8a:fe:6c:fe:b9:1a:75:ed:fe: 45:c6:1b:8e:e2:15:d0:42:14:4e:70:4d:51:08:1c:dc:eb:5a: fe:df:ec:a1:34:19:75:f0:e4:3f:d4:83:31:9a:f0:dc:fe:d1: 27:91:82:85:30:a8:e8:f8:e7:e4:c4:3e:5d:b5:62:28:8f:20: 0c:0a:b1:95:da:d7:5f:cf:d3:31:20:ae:3e:6e:33:ea:57:e8: cf:38:7b:78:76:fd:8a:cb:73:a7:39:cc:8a:36:27:0f:4f:1e: e9:ef:f1:11:ca:0f:8a:69:43:eb:7a:38:54:77:f0:f1:09:dd: 10:e3:ee:ea:f8:4c:a0:cc:14:38:f6:75:4f:01:97:00:8f:f5: 62:0b:c3:a1:fb:c1:e1:14:98:38:7d:c1:28:fe:9e:6c:c3:9a: e3:a8:fb:2e:0e:05:5b:b0:a0:54:3b:89:22:dc:7e:9a:3a:30: fb:2e:77:8a:ef:73:a6:39:67:99:37:0b:36:36:be:3a:6e:e5: 56:2f:93:8f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCR8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0Y4QTkxMTAvBgNVBAUTKDVDMEFCNDI1RjJCNDIzNUUxQzgxNTY4M0JENkM4RThC N0I4MEI3MjcwHhcNMjQxMTIyMjAwODE5WhcNMjQxMTI5MjAwODE5WjAYMRYwFAYD VQQDEw02NzQwZTRiMy02OTFiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvqKPz7LD7xxLuoSiQ2U4tebnSdpAtr6fGe5Q+v0sSH9MQV68X28uV7ZyWo8N Trmi2K6ljIJE28VhFujYWAb8+NWVBrkE7WpUusyuXXl1U88HHULmDdBzbmmZqO1R LJrWx96cGT2DdRYOKjpXOt1BSWVyItEpSXNSY0au6lldEZdzWQHaiZc2DoOsU3UK 2GLRzm5UdF4hOZbZyCpkCA2p8RYdg0nTxZnLigYeBjw6DED3jzTjdlKXlOEnkts4 RuuS+f+LLwQBwlhyGPvvz7lMAq1Yg8/08zxEgRbTNWCZkLJon5zY0EaCWnV7YnZc ygJfsfiYXQ/G4z9o7GmEk0pRRwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNEBR01O WMKdkyMBWXVGZqpbeKgAMB8GA1UdIwQYMBaAFFwKtCXytCNeHIFWg71sjot7gLcn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RjhBOS8yQUEwNDMzMDk0 RjAxMUVBODNFRjFFN0RDNEY5QUUwMi9YQXEwSmZLMEkxNGNnVmFEdld5T2kzdUF0 eWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hBcTBKZkswSTE0Y2dWYUR2V3lPaTN1QXR5Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RjhBOS8yQUEwNDMzMDk0RjAxMUVBODNFRjFFN0RDNEY5QUUwMi9YQXEwSmZLMEkx NGNnVmFEdld5T2kzdUF0eWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDecNd/y8zv8FEpONMoicVjJMzn5jDBmkgvaaBM/94PZKheWOxq0Fip MlEwgzTMHmZIUR71YUQ0XYq3oFSgrjOK/mz+uRp17f5FxhuO4hXQQhROcE1RCBzc 61r+3+yhNBl18OQ/1IMxmvDc/tEnkYKFMKjo+OfkxD5dtWIojyAMCrGV2tdfz9Mx IK4+bjPqV+jPOHt4dv2Ky3OnOcyKNicPTx7p7/ERyg+KaUPrejhUd/DxCd0Q4+7q +EygzBQ49nVPAZcAj/ViC8Oh+8HhFJg4fcEo/p5sw5rjqPsuDgVbsKBUO4ki3H6a OjD7LneK73OmOWeZNws2Nr46buVWL5OP -----END CERTIFICATE-----Generated at Fri Nov 22 22:14:32 2024 by rpki-client on console-ams.rpki-client.org