$ rpki-client -vvf rpki.apnic.net/member_repository/A9181CA2/79365B8E8F0711EC9EB23170C4F9AE02/xI1E8RHZ9NyOPmStf5ZIZGHLn70.mft File: xI1E8RHZ9NyOPmStf5ZIZGHLn70.mft (raw, json) Hash identifier: yiLdBvXLOSIGzBmD1xZe+Bhyr7O7h14bRLOIr5oyYA0= Subject key identifier: 44:07:50:99:17:FD:5B:52:5C:0D:67:73:3B:AB:4C:57:CB:8F:7A:F2 Authority key identifier: C4:8D:44:F1:11:D9:F4:DC:8E:3E:64:AD:7F:96:48:64:61:CB:9F:BD Certificate issuer: /CN=A9181CA2/serialNumber=C48D44F111D9F4DC8E3E64AD7F96486461CB9FBD Certificate serial: 035E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xI1E8RHZ9NyOPmStf5ZIZGHLn70.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9181CA2/79365B8E8F0711EC9EB23170C4F9AE02/xI1E8RHZ9NyOPmStf5ZIZGHLn70.mft Manifest number: 035A Signing time: Sat 23 Nov 2024 00:31:39 +0000 Manifest this update: Sat 23 Nov 2024 00:31:38 +0000 Manifest next update: Sat 30 Nov 2024 00:31:38 +0000 Files and hashes: 1: xI1E8RHZ9NyOPmStf5ZIZGHLn70.crl (hash: p8pJPxHc0SpwSXtaCMpkdA4xzD96ZT52B5HLz+9w3/s=) 2: 76391AA6995311EC8EAA8C59C4F9AE02.roa (hash: nlvzWGcCzQ3g4WB0QEnebQiCK2io0J1tCDKfBVlK9FY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9181CA2/79365B8E8F0711EC9EB23170C4F9AE02/xI1E8RHZ9NyOPmStf5ZIZGHLn70.crl rsync://rpki.apnic.net/member_repository/A9181CA2/79365B8E8F0711EC9EB23170C4F9AE02/xI1E8RHZ9NyOPmStf5ZIZGHLn70.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xI1E8RHZ9NyOPmStf5ZIZGHLn70.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 862 (0x35e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9181CA2/serialNumber=C48D44F111D9F4DC8E3E64AD7F96486461CB9FBD Validity Not Before: Nov 23 00:31:38 2024 GMT Not After : Nov 30 00:31:38 2024 GMT Subject: CN=6741226b-5810 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:b4:fc:b1:b6:7c:ae:33:95:0b:b4:60:c0:07: e7:4c:3d:b7:3e:2d:48:16:8a:87:4e:91:d7:53:58: 99:1b:e0:f1:30:a7:30:7c:5e:f2:0d:19:a5:d5:58: f4:f2:5a:91:66:ef:6a:80:0c:47:05:cb:66:8f:74: d4:b0:46:9b:d1:bb:74:28:fa:b3:50:bd:50:00:66: 26:3a:73:18:eb:02:27:01:7e:17:cc:04:88:bb:a1: 3e:41:7d:d6:44:b9:7e:71:d9:98:6c:be:b8:0f:bb: 2f:77:a4:8c:78:3b:44:aa:4d:ac:81:0a:67:df:29: 05:de:bd:4d:19:33:28:7f:f0:8d:c7:16:44:df:61: 74:86:3d:9e:be:29:75:2c:17:36:b2:27:46:74:45: 27:22:ad:af:3f:3d:92:e9:4b:4c:af:5f:06:6e:b3: 49:d3:00:27:c8:54:7f:14:cb:e8:1d:79:e5:d3:66: 4b:e8:ae:11:40:69:81:fa:5e:06:f9:e2:60:1d:7d: 3e:52:78:1c:c8:74:93:44:6e:dd:b8:84:85:46:b7: 97:bb:3d:80:f0:f0:cd:2f:ad:3d:b5:d8:24:51:d5: 9a:43:ba:04:34:59:e7:a1:ff:ca:45:e4:0a:a7:81: c7:14:91:c7:01:fa:27:6e:3a:5b:a7:0b:a0:32:06: 2b:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:07:50:99:17:FD:5B:52:5C:0D:67:73:3B:AB:4C:57:CB:8F:7A:F2 X509v3 Authority Key Identifier: keyid:C4:8D:44:F1:11:D9:F4:DC:8E:3E:64:AD:7F:96:48:64:61:CB:9F:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9181CA2/79365B8E8F0711EC9EB23170C4F9AE02/xI1E8RHZ9NyOPmStf5ZIZGHLn70.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xI1E8RHZ9NyOPmStf5ZIZGHLn70.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9181CA2/79365B8E8F0711EC9EB23170C4F9AE02/xI1E8RHZ9NyOPmStf5ZIZGHLn70.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ba:dc:88:b3:81:e8:64:4c:10:ed:69:26:d7:91:8e:72:37:12: 8a:b6:97:7a:09:2d:6b:d9:59:87:34:49:e8:e1:70:91:d0:d5: a3:d5:4b:34:50:98:c1:b5:0c:3f:e1:59:31:d0:17:4d:89:34: dd:f3:d5:4f:bc:3b:a9:2d:63:47:25:88:66:9e:2e:3a:5d:a8: 07:c1:e5:72:b1:4f:b4:1b:c6:f2:b1:c0:0c:81:42:e3:e0:3e: 2a:24:e4:0e:f5:df:87:c2:15:40:6f:36:f6:fa:80:19:d6:6a: a2:11:df:4f:6f:76:3f:9c:41:3c:c5:54:7b:ac:79:70:45:fd: 26:b4:81:03:11:6a:e6:19:61:9a:02:18:91:8e:bf:56:00:e8: 59:6a:65:90:ef:5a:5b:95:05:bd:57:97:12:ac:d5:0c:e7:de: a8:0d:90:c7:37:a3:cd:63:c4:13:5f:af:fe:8a:3e:12:58:6d: 4e:a2:56:8d:7a:6a:3e:cb:a1:b5:bc:5e:a6:0f:9f:3b:1b:5d: 50:9a:e0:58:93:40:ab:6c:97:78:c9:0c:1c:4a:c7:e4:ed:fa: 2c:c3:ed:1e:83:e3:36:0b:fd:05:81:f8:1d:b5:62:b6:5e:84: b5:ad:0e:74:6f:05:82:4f:51:a3:36:5f:5c:5e:03:c3:85:72: 12:2d:4d:a1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA14wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODFDQTIxMTAvBgNVBAUTKEM0OEQ0NEYxMTFEOUY0REM4RTNFNjRBRDdGOTY0ODY0 NjFDQjlGQkQwHhcNMjQxMTIzMDAzMTM4WhcNMjQxMTMwMDAzMTM4WjAYMRYwFAYD VQQDEw02NzQxMjI2Yi01ODEwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsbT8sbZ8rjOVC7RgwAfnTD23Pi1IFoqHTpHXU1iZG+DxMKcwfF7yDRml1Vj0 8lqRZu9qgAxHBctmj3TUsEab0bt0KPqzUL1QAGYmOnMY6wInAX4XzASIu6E+QX3W RLl+cdmYbL64D7svd6SMeDtEqk2sgQpn3ykF3r1NGTMof/CNxxZE32F0hj2evil1 LBc2sidGdEUnIq2vPz2S6UtMr18GbrNJ0wAnyFR/FMvoHXnl02ZL6K4RQGmB+l4G +eJgHX0+UngcyHSTRG7duISFRreXuz2A8PDNL609tdgkUdWaQ7oENFnnof/KReQK p4HHFJHHAfonbjpbpwugMgYrNQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEQHUJkX /VtSXA1nczurTFfLj3ryMB8GA1UdIwQYMBaAFMSNRPER2fTcjj5krX+WSGRhy5+9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MUNBMi83OTM2NUI4RThG MDcxMUVDOUVCMjMxNzBDNEY5QUUwMi94STFFOFJIWjlOeU9QbVN0ZjVaSVpHSExu NzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hJMUU4UkhaOU55T1BtU3RmNVpJWkdITG43MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 MUNBMi83OTM2NUI4RThGMDcxMUVDOUVCMjMxNzBDNEY5QUUwMi94STFFOFJIWjlO eU9QbVN0ZjVaSVpHSExuNzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC63IizgehkTBDtaSbXkY5yNxKKtpd6CS1r2VmHNEno4XCR0NWj1Us0 UJjBtQw/4Vkx0BdNiTTd89VPvDupLWNHJYhmni46XagHweVysU+0G8byscAMgULj 4D4qJOQO9d+HwhVAbzb2+oAZ1mqiEd9Pb3Y/nEE8xVR7rHlwRf0mtIEDEWrmGWGa AhiRjr9WAOhZamWQ71pblQW9V5cSrNUM596oDZDHN6PNY8QTX6/+ij4SWG1OolaN emo+y6G1vF6mD587G11QmuBYk0CrbJd4yQwcSsfk7fosw+0eg+M2C/0FgfgdtWK2 XoS1rQ50bwWCT1GjNl9cXgPDhXISLU2h -----END CERTIFICATE-----Generated at Sat Nov 23 02:33:40 2024 by rpki-client on console-fra.rpki-client.org