$ rpki-client -vvf rpki.apnic.net/member_repository/A918FD04/0ABBF4720DF211EA8EE8913BC4F9AE02/xKTDVDWP1II_bsUxMnZ0hUyGxt8.mft File: xKTDVDWP1II_bsUxMnZ0hUyGxt8.mft (raw, json) Hash identifier: 8Dm1BBXnATxfIs80ckovhVAnO3BGY2TBa7cnHpIYX3g= Subject key identifier: B8:11:A3:33:26:55:0F:4F:C7:34:8F:DB:5A:0F:0D:6A:8B:86:79:84 Authority key identifier: C4:A4:C3:54:35:8F:D4:82:3F:6E:C5:31:32:76:74:85:4C:86:C6:DF Certificate issuer: /CN=A918FD04/serialNumber=C4A4C354358FD4823F6EC531327674854C86C6DF Certificate serial: 082C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xKTDVDWP1II_bsUxMnZ0hUyGxt8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918FD04/0ABBF4720DF211EA8EE8913BC4F9AE02/xKTDVDWP1II_bsUxMnZ0hUyGxt8.mft Manifest number: 13D3 Signing time: Fri 22 Nov 2024 18:39:02 +0000 Manifest this update: Fri 22 Nov 2024 18:39:01 +0000 Manifest next update: Fri 29 Nov 2024 18:39:01 +0000 Files and hashes: 1: xKTDVDWP1II_bsUxMnZ0hUyGxt8.crl (hash: Sgp7RBz6ODEHBi5eYmhYG8szW1D9CF5iml6a3JJ6iTo=) 2: 7BBC1DD2040611EF909F6C3EC4F9AE02.roa (hash: d+L19gUHVaLQL/PMqiWFVUvVqO9gHwxatHS8mTM15PU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918FD04/0ABBF4720DF211EA8EE8913BC4F9AE02/xKTDVDWP1II_bsUxMnZ0hUyGxt8.crl rsync://rpki.apnic.net/member_repository/A918FD04/0ABBF4720DF211EA8EE8913BC4F9AE02/xKTDVDWP1II_bsUxMnZ0hUyGxt8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xKTDVDWP1II_bsUxMnZ0hUyGxt8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 18:39:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2092 (0x82c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918FD04/serialNumber=C4A4C354358FD4823F6EC531327674854C86C6DF Validity Not Before: Nov 22 18:39:01 2024 GMT Not After : Nov 29 18:39:01 2024 GMT Subject: CN=6740cfc6-b02f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:70:d8:ea:e4:21:a1:7a:52:f7:55:35:80:ac: 14:b6:aa:3e:f0:f2:88:91:c0:70:3b:57:60:f3:b4: f4:32:e1:5f:b9:ff:a8:83:0d:5f:64:fb:aa:6b:4b: ac:54:78:b8:4f:f2:34:fa:42:5f:3a:be:1a:b1:2a: 21:40:bc:61:52:bd:ed:7f:cd:9c:5d:a5:7e:15:e3: f4:57:27:d1:62:43:23:6d:e6:96:79:a3:84:21:4d: bc:6b:7a:f9:f6:39:55:27:84:df:d9:3e:a2:2a:c7: fb:43:f2:2e:8d:b8:ca:8d:18:df:59:a6:1f:49:7a: 8a:80:5d:83:99:e1:d1:b1:d3:1e:0e:3c:a3:b1:5f: 3a:0f:75:0b:ed:19:bb:ff:7e:7e:2a:eb:6f:12:1f: e8:89:75:82:ec:7a:cd:4f:d7:f2:87:27:55:5d:6c: 67:48:8d:b7:f1:e6:15:c1:61:79:15:5a:13:6e:92: ae:b3:0c:75:43:1b:68:29:4f:3f:1b:81:2f:12:dc: 68:4e:cf:ab:4b:54:b1:b1:8c:09:01:6c:1a:d4:09: 58:4e:d8:86:7f:f2:19:48:cd:5a:c1:ce:13:40:c3: 75:f5:4e:b8:4a:df:ca:61:99:04:0a:fb:16:aa:c8: ee:d7:20:ee:70:e9:d7:f7:42:11:0f:7c:7f:3d:a4: 69:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:11:A3:33:26:55:0F:4F:C7:34:8F:DB:5A:0F:0D:6A:8B:86:79:84 X509v3 Authority Key Identifier: keyid:C4:A4:C3:54:35:8F:D4:82:3F:6E:C5:31:32:76:74:85:4C:86:C6:DF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918FD04/0ABBF4720DF211EA8EE8913BC4F9AE02/xKTDVDWP1II_bsUxMnZ0hUyGxt8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xKTDVDWP1II_bsUxMnZ0hUyGxt8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918FD04/0ABBF4720DF211EA8EE8913BC4F9AE02/xKTDVDWP1II_bsUxMnZ0hUyGxt8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 50:89:3b:e2:40:f2:42:99:c7:a5:3a:d9:68:ab:03:3d:93:88: 50:5d:46:27:ec:ee:e7:0b:33:99:72:cf:74:21:28:c8:24:04: 04:f4:f8:62:08:a6:e1:14:88:b8:5e:f4:da:9b:89:59:85:be: bc:a5:e8:9b:9a:38:2a:04:90:5c:fc:be:85:8b:8f:6b:a0:ba: 98:ea:98:75:d2:81:d7:6c:30:b8:67:27:81:af:75:c2:44:a3: b1:de:d1:d5:c6:d2:26:8a:c4:43:0a:cb:7f:65:5b:b7:44:aa: a1:81:9c:72:c7:7d:d5:ec:52:c5:15:4f:47:65:80:b9:30:1f: 09:63:01:89:dc:50:95:02:1a:9d:25:3e:c1:e0:d1:14:b7:4c: b7:78:d0:b8:72:d1:d7:39:40:ae:f1:3b:4e:05:24:ad:12:88: eb:20:61:54:f3:b2:eb:aa:41:2a:db:f0:dd:82:eb:19:83:be: 8a:82:e0:44:64:e8:5d:2f:47:a1:d9:7a:c7:83:e4:85:45:16: 29:f0:21:87:0e:ba:98:9a:e4:c0:b9:63:d8:c2:dd:43:76:0e: f7:08:aa:ee:83:07:e0:11:b3:37:ff:5c:08:ba:6c:49:af:b7: b4:92:ff:08:87:e9:3d:26:02:fa:a0:4a:83:24:a0:bb:c8:e9: b9:f5:d9:fe -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCCwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEZEMDQxMTAvBgNVBAUTKEM0QTRDMzU0MzU4RkQ0ODIzRjZFQzUzMTMyNzY3NDg1 NEM4NkM2REYwHhcNMjQxMTIyMTgzOTAxWhcNMjQxMTI5MTgzOTAxWjAYMRYwFAYD VQQDEw02NzQwY2ZjNi1iMDJmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw3DY6uQhoXpS91U1gKwUtqo+8PKIkcBwO1dg87T0MuFfuf+ogw1fZPuqa0us VHi4T/I0+kJfOr4asSohQLxhUr3tf82cXaV+FeP0VyfRYkMjbeaWeaOEIU28a3r5 9jlVJ4Tf2T6iKsf7Q/IujbjKjRjfWaYfSXqKgF2DmeHRsdMeDjyjsV86D3UL7Rm7 /35+KutvEh/oiXWC7HrNT9fyhydVXWxnSI238eYVwWF5FVoTbpKuswx1QxtoKU8/ G4EvEtxoTs+rS1SxsYwJAWwa1AlYTtiGf/IZSM1awc4TQMN19U64St/KYZkECvsW qsju1yDucOnX90IRD3x/PaRpLwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLgRozMm VQ9PxzSP21oPDWqLhnmEMB8GA1UdIwQYMBaAFMSkw1Q1j9SCP27FMTJ2dIVMhsbf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RkQwNC8wQUJCRjQ3MjBE RjIxMUVBOEVFODkxM0JDNEY5QUUwMi94S1REVkRXUDFJSV9ic1V4TW5aMGhVeUd4 dDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hLVERWRFdQMUlJX2JzVXhNblowaFV5R3h0OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RkQwNC8wQUJCRjQ3MjBERjIxMUVBOEVFODkxM0JDNEY5QUUwMi94S1REVkRXUDFJ SV9ic1V4TW5aMGhVeUd4dDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBQiTviQPJCmcelOtloqwM9k4hQXUYn7O7nCzOZcs90ISjIJAQE9Phi CKbhFIi4XvTam4lZhb68peibmjgqBJBc/L6Fi49roLqY6ph10oHXbDC4ZyeBr3XC RKOx3tHVxtImisRDCst/ZVu3RKqhgZxyx33V7FLFFU9HZYC5MB8JYwGJ3FCVAhqd JT7B4NEUt0y3eNC4ctHXOUCu8TtOBSStEojrIGFU87LrqkEq2/DdgusZg76KguBE ZOhdL0eh2XrHg+SFRRYp8CGHDrqYmuTAuWPYwt1Ddg73CKrugwfgEbM3/1wIumxJ r7e0kv8Ih+k9JgL6oEqDJKC7yOm59dn+ -----END CERTIFICATE-----Generated at Fri Nov 22 19:45:00 2024 by rpki-client on console-fra.rpki-client.org