$ rpki-client -vvf rpki.apnic.net/member_repository/A918B0B9/9CBF3D908FA011EAAA9BBA18C4F9AE02/XFpPrkrwH_3JJ1NVzLq4yBAYn1Q.mft File: XFpPrkrwH_3JJ1NVzLq4yBAYn1Q.mft (raw, json) Hash identifier: is46Tb8iAAmx3p0cvdbVQ2a+SxzCDZVatZiwnjR0ZMc= Subject key identifier: 9C:4B:97:11:06:6C:8D:50:0F:5C:71:30:7D:CA:01:AE:35:82:6C:8E Authority key identifier: 5C:5A:4F:AE:4A:F0:1F:FD:C9:27:53:55:CC:BA:B8:C8:10:18:9F:54 Certificate issuer: /CN=A918B0B9/serialNumber=5C5A4FAE4AF01FFDC9275355CCBAB8C810189F54 Certificate serial: 093E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XFpPrkrwH_3JJ1NVzLq4yBAYn1Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918B0B9/9CBF3D908FA011EAAA9BBA18C4F9AE02/XFpPrkrwH_3JJ1NVzLq4yBAYn1Q.mft Manifest number: 0928 Signing time: Fri 22 Nov 2024 20:05:25 +0000 Manifest this update: Fri 22 Nov 2024 20:05:24 +0000 Manifest next update: Fri 29 Nov 2024 20:05:24 +0000 Files and hashes: 1: XFpPrkrwH_3JJ1NVzLq4yBAYn1Q.crl (hash: ptgMZYvhYMPbl6bZKZAU1SmX6raCOFm5+1cZLWtqOb0=) 2: 724AF49CE2F911ECAA4F4C71C4F9AE02.roa (hash: oxiEJ6/TPU8a18QQQJsARd7wolyFAwbWspbY9Oof4OE=) 3: 52F955A89B1511EA9BEFA53BC4F9AE02.roa (hash: 5fp5xPdrf28AzhElrO+JWN/gejEYqnFXoStD/HGk1zI=) 4: BED54F1A9B1611EA939F5A3FC4F9AE02.roa (hash: sHHQTYQ4Ee+qL1FSRc7R4PCypgoLoQnfR9k5950BZKI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918B0B9/9CBF3D908FA011EAAA9BBA18C4F9AE02/XFpPrkrwH_3JJ1NVzLq4yBAYn1Q.crl rsync://rpki.apnic.net/member_repository/A918B0B9/9CBF3D908FA011EAAA9BBA18C4F9AE02/XFpPrkrwH_3JJ1NVzLq4yBAYn1Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XFpPrkrwH_3JJ1NVzLq4yBAYn1Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:05:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2366 (0x93e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918B0B9/serialNumber=5C5A4FAE4AF01FFDC9275355CCBAB8C810189F54 Validity Not Before: Nov 22 20:05:24 2024 GMT Not After : Nov 29 20:05:24 2024 GMT Subject: CN=6740e404-537a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:ca:4e:75:bb:94:fc:99:8e:83:f7:d6:6e:be: e7:c4:4b:fe:9d:2c:af:69:f1:96:f4:00:8f:66:ab: b1:af:44:74:0f:79:37:08:bc:f3:82:d0:7e:47:09: 4d:23:f3:70:72:1e:6e:3d:53:60:3f:93:86:2a:9c: ab:7f:28:2f:b2:2c:c5:15:88:c9:71:8f:df:d1:dd: d2:de:4d:63:02:de:44:c3:b9:ae:09:20:63:9a:aa: 43:f0:7f:7e:60:2d:50:d2:ea:71:31:89:d7:a2:f0: dc:84:a7:14:18:06:53:8e:bd:ec:65:1c:3e:f3:cb: 55:fa:74:56:b2:ff:c5:b9:db:46:05:65:30:7a:ba: 1e:db:14:8d:75:9d:21:07:e3:d2:b3:a7:55:e1:4d: a2:43:d3:20:e7:3e:a3:54:ca:ae:77:a3:f2:7a:08: 4e:4b:9c:71:db:2c:42:15:d9:d2:d2:b0:b4:6a:c8: e3:b1:a6:6c:0d:6c:e2:4b:b4:e6:9e:4b:d5:ba:8d: 64:d6:8f:14:ea:24:21:57:38:01:38:79:40:a3:18: 11:75:7d:da:72:15:6f:93:04:98:0e:e3:9a:a0:4f: fd:07:6e:e0:20:7a:4e:9b:52:9d:4d:03:b3:a1:2f: 77:b6:5e:82:d6:32:b2:4b:da:1a:a5:cf:68:c3:4e: a1:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9C:4B:97:11:06:6C:8D:50:0F:5C:71:30:7D:CA:01:AE:35:82:6C:8E X509v3 Authority Key Identifier: keyid:5C:5A:4F:AE:4A:F0:1F:FD:C9:27:53:55:CC:BA:B8:C8:10:18:9F:54 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918B0B9/9CBF3D908FA011EAAA9BBA18C4F9AE02/XFpPrkrwH_3JJ1NVzLq4yBAYn1Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XFpPrkrwH_3JJ1NVzLq4yBAYn1Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918B0B9/9CBF3D908FA011EAAA9BBA18C4F9AE02/XFpPrkrwH_3JJ1NVzLq4yBAYn1Q.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8a:2f:30:9d:0c:30:8e:2a:5e:63:d0:52:94:60:12:d9:5c:c3: ae:70:60:33:47:53:91:0b:da:a6:b8:93:70:50:ba:2f:1a:39: 9f:39:08:3a:b8:34:f1:74:f9:a0:92:91:9c:fb:6a:3f:34:27: 21:9b:90:24:97:a4:36:b3:3a:2d:4b:43:02:c0:5e:89:0d:6a: 23:bd:96:d4:93:16:e6:91:bf:fc:c6:35:d4:ae:61:ae:f2:7a: 94:5d:e9:0c:c6:64:94:61:b1:04:f6:12:43:ef:84:3b:a3:e3: f7:4f:3e:8e:cb:2d:1d:9c:af:73:bd:10:8b:53:f7:6c:c7:f3: ab:36:aa:28:a9:5c:89:29:c8:44:69:cd:4f:9f:99:9a:9e:0e: 4b:ba:20:c0:a8:26:31:4a:5a:5d:15:9f:07:33:63:92:ac:6a: 50:8f:4c:1e:84:26:51:7c:f4:76:54:eb:dc:7b:57:6b:b8:b7: 92:ef:fe:a5:0e:c2:8b:43:db:e4:f4:d6:ab:c9:8f:fb:95:ec: e9:49:fd:67:bb:0d:e8:d4:6f:79:65:f9:e4:58:5e:0c:e2:73: 1f:1e:20:91:4f:9f:39:de:41:4f:e1:b1:f5:ab:29:26:8e:81: b3:44:97:32:98:84:55:c9:44:d1:c9:c9:ae:03:21:be:91:4a: 74:ba:ac:cb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCT4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEIwQjkxMTAvBgNVBAUTKDVDNUE0RkFFNEFGMDFGRkRDOTI3NTM1NUNDQkFCOEM4 MTAxODlGNTQwHhcNMjQxMTIyMjAwNTI0WhcNMjQxMTI5MjAwNTI0WjAYMRYwFAYD VQQDEw02NzQwZTQwNC01MzdhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr8pOdbuU/JmOg/fWbr7nxEv+nSyvafGW9ACPZquxr0R0D3k3CLzzgtB+RwlN I/Nwch5uPVNgP5OGKpyrfygvsizFFYjJcY/f0d3S3k1jAt5Ew7muCSBjmqpD8H9+ YC1Q0upxMYnXovDchKcUGAZTjr3sZRw+88tV+nRWsv/FudtGBWUweroe2xSNdZ0h B+PSs6dV4U2iQ9Mg5z6jVMqud6PyeghOS5xx2yxCFdnS0rC0asjjsaZsDWziS7Tm nkvVuo1k1o8U6iQhVzgBOHlAoxgRdX3achVvkwSYDuOaoE/9B27gIHpOm1KdTQOz oS93tl6C1jKyS9oapc9ow06hAwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJxLlxEG bI1QD1xxMH3KAa41gmyOMB8GA1UdIwQYMBaAFFxaT65K8B/9ySdTVcy6uMgQGJ9U MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QjBCOS85Q0JGM0Q5MDhG QTAxMUVBQUE5QkJBMThDNEY5QUUwMi9YRnBQcmtyd0hfM0pKMU5WekxxNHlCQVlu MVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hGcFBya3J3SF8zSkoxTlZ6THE0eUJBWW4xUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 QjBCOS85Q0JGM0Q5MDhGQTAxMUVBQUE5QkJBMThDNEY5QUUwMi9YRnBQcmtyd0hf M0pKMU5WekxxNHlCQVluMVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCKLzCdDDCOKl5j0FKUYBLZXMOucGAzR1ORC9qmuJNwULovGjmfOQg6 uDTxdPmgkpGc+2o/NCchm5Akl6Q2szotS0MCwF6JDWojvZbUkxbmkb/8xjXUrmGu 8nqUXekMxmSUYbEE9hJD74Q7o+P3Tz6Oyy0dnK9zvRCLU/dsx/OrNqooqVyJKchE ac1Pn5mang5LuiDAqCYxSlpdFZ8HM2OSrGpQj0wehCZRfPR2VOvce1druLeS7/6l DsKLQ9vk9NaryY/7lezpSf1nuw3o1G95ZfnkWF4M4nMfHiCRT5853kFP4bH1qykm joGzRJcymIRVyUTRycmuAyG+kUp0uqzL -----END CERTIFICATE-----Generated at Fri Nov 22 22:14:34 2024 by rpki-client on console-ams.rpki-client.org