$ rpki-client -vvf rpki.apnic.net/member_repository/A919E3FB/FDD44C22266E11ECAC097C7BC4F9AE02/XrCY701WVcxmtq-Bw83kBi2ALzs.mft File: XrCY701WVcxmtq-Bw83kBi2ALzs.mft (raw, json) Hash identifier: N0vQ5WgRZqsufUQmXQIxR+cfdEMpWG8L/UHRLrRItHE= Subject key identifier: 2B:85:F4:5C:25:9A:12:9F:7E:6F:EA:13:F2:24:68:2C:32:88:43:DF Authority key identifier: 5E:B0:98:EF:4D:56:55:CC:66:B6:AF:81:C3:CD:E4:06:2D:80:2F:3B Certificate issuer: /CN=A919E3FB/serialNumber=5EB098EF4D5655CC66B6AF81C3CDE4062D802F3B Certificate serial: 046B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XrCY701WVcxmtq-Bw83kBi2ALzs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919E3FB/FDD44C22266E11ECAC097C7BC4F9AE02/XrCY701WVcxmtq-Bw83kBi2ALzs.mft Manifest number: 0466 Signing time: Fri 22 Nov 2024 23:40:55 +0000 Manifest this update: Fri 22 Nov 2024 23:40:54 +0000 Manifest next update: Fri 29 Nov 2024 23:40:54 +0000 Files and hashes: 1: XrCY701WVcxmtq-Bw83kBi2ALzs.crl (hash: sPgbdgsJfoXYCnPa7DBC8HU+xNHigKKiDS/NYHGpFLo=) 2: B4D8E692267111ECA0546981C4F9AE02.roa (hash: APl5b4vCPo52FjFgWioqB5D0vfXVOhLUTwuTuf6xSiY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919E3FB/FDD44C22266E11ECAC097C7BC4F9AE02/XrCY701WVcxmtq-Bw83kBi2ALzs.crl rsync://rpki.apnic.net/member_repository/A919E3FB/FDD44C22266E11ECAC097C7BC4F9AE02/XrCY701WVcxmtq-Bw83kBi2ALzs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XrCY701WVcxmtq-Bw83kBi2ALzs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1131 (0x46b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919E3FB/serialNumber=5EB098EF4D5655CC66B6AF81C3CDE4062D802F3B Validity Not Before: Nov 22 23:40:54 2024 GMT Not After : Nov 29 23:40:54 2024 GMT Subject: CN=67411686-14e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:cd:7b:e9:b1:7b:f1:66:01:9e:42:48:f3:be: c3:64:b4:6e:c9:e1:4b:2f:17:39:db:11:b4:0a:80: 5f:be:06:64:cb:9d:78:8f:27:13:11:2f:77:14:7b: f8:af:24:f2:3b:f4:f9:bf:4a:9a:82:0c:80:61:fc: 4e:96:07:87:39:49:1b:95:43:8e:cd:2f:1b:be:0f: 0d:7b:67:5b:ec:c6:6c:b3:d8:26:12:a2:e7:c2:13: d2:55:e8:37:d0:1b:65:e7:f8:c3:96:bc:0e:8a:0e: b0:bf:d4:94:4a:69:e7:c3:a5:07:58:45:4b:92:b1: 7e:e6:a4:b6:9f:bf:1d:94:f2:60:58:4e:c1:8e:50: cf:fd:05:4b:8e:a2:20:51:b9:77:6e:d1:d0:07:21: 68:38:94:36:0e:16:8c:71:bf:2e:35:2a:53:f9:06: 10:e7:70:d9:eb:4e:b5:68:56:b6:75:02:cb:ca:d3: 8f:17:c9:85:9a:ff:75:e5:9c:5a:34:6d:c8:60:98: 8a:37:05:0e:8d:a9:ca:6e:53:e6:d8:22:dd:69:d1: 51:7e:14:1d:f9:5e:49:bd:a3:e8:7f:55:2f:6d:58: 3b:35:9f:a4:93:95:a8:00:73:f7:c1:2c:4f:4e:6c: d9:88:86:bd:7d:c0:a9:c4:da:b4:ee:f8:46:72:64: 95:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:85:F4:5C:25:9A:12:9F:7E:6F:EA:13:F2:24:68:2C:32:88:43:DF X509v3 Authority Key Identifier: keyid:5E:B0:98:EF:4D:56:55:CC:66:B6:AF:81:C3:CD:E4:06:2D:80:2F:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919E3FB/FDD44C22266E11ECAC097C7BC4F9AE02/XrCY701WVcxmtq-Bw83kBi2ALzs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XrCY701WVcxmtq-Bw83kBi2ALzs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919E3FB/FDD44C22266E11ECAC097C7BC4F9AE02/XrCY701WVcxmtq-Bw83kBi2ALzs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 58:80:07:ea:fc:d9:36:da:13:ba:40:49:6a:27:b6:2d:07:cb: 6d:fe:e6:68:45:bf:85:f0:f8:9b:9d:33:5f:ea:7c:f5:82:e1: 44:a7:7d:b1:03:fb:7c:5c:47:3b:83:34:56:8d:fe:a3:52:71: e6:ec:b0:d4:a5:54:78:be:07:a1:e6:a9:89:ce:3d:69:a6:2e: 7a:d7:a2:65:cf:ed:51:8e:88:e0:2f:ff:f3:2e:f8:7c:01:17: 18:dd:2e:25:15:1b:b0:27:a1:f2:45:8c:f8:71:f2:33:76:a1: 38:48:06:6f:c9:a7:6b:f5:7f:40:b0:75:a0:94:23:9e:2e:71: 16:43:f2:96:8e:a2:63:85:94:cc:23:e9:52:f2:16:d6:05:c3: 09:4d:d8:1f:3c:bc:b2:41:1a:82:31:41:0a:fe:71:47:9f:8a: 71:47:39:c6:ed:d0:77:02:53:1a:89:9c:83:17:5f:95:99:87: 89:fb:0c:72:c3:b5:f1:86:21:71:9d:10:bf:a6:aa:7e:cf:72: bf:c7:d5:8d:99:e2:8f:ac:1d:72:8c:66:c1:46:d8:42:de:e4: 67:f3:7c:93:e3:76:e2:6f:83:ca:7a:e4:7f:69:54:dc:09:17: ca:26:29:f5:a2:9a:35:c0:73:9d:a8:7b:3e:f1:0b:14:ac:b0: 76:a1:f3:84 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBGswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUUzRkIxMTAvBgNVBAUTKDVFQjA5OEVGNEQ1NjU1Q0M2NkI2QUY4MUMzQ0RFNDA2 MkQ4MDJGM0IwHhcNMjQxMTIyMjM0MDU0WhcNMjQxMTI5MjM0MDU0WjAYMRYwFAYD VQQDEw02NzQxMTY4Ni0xNGUyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2s176bF78WYBnkJI877DZLRuyeFLLxc52xG0CoBfvgZky514jycTES93FHv4 ryTyO/T5v0qaggyAYfxOlgeHOUkblUOOzS8bvg8Ne2db7MZss9gmEqLnwhPSVeg3 0Btl5/jDlrwOig6wv9SUSmnnw6UHWEVLkrF+5qS2n78dlPJgWE7BjlDP/QVLjqIg Ubl3btHQByFoOJQ2DhaMcb8uNSpT+QYQ53DZ6061aFa2dQLLytOPF8mFmv915Zxa NG3IYJiKNwUOjanKblPm2CLdadFRfhQd+V5JvaPof1UvbVg7NZ+kk5WoAHP3wSxP TmzZiIa9fcCpxNq07vhGcmSV2QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCuF9Fwl mhKffm/qE/IkaCwyiEPfMB8GA1UdIwQYMBaAFF6wmO9NVlXMZravgcPN5AYtgC87 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RTNGQi9GREQ0NEMyMjI2 NkUxMUVDQUMwOTdDN0JDNEY5QUUwMi9YckNZNzAxV1ZjeG10cS1Cdzgza0JpMkFM enMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hyQ1k3MDFXVmN4bXRxLUJ3ODNrQmkyQUx6cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RTNGQi9GREQ0NEMyMjI2NkUxMUVDQUMwOTdDN0JDNEY5QUUwMi9YckNZNzAxV1Zj eG10cS1Cdzgza0JpMkFMenMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBYgAfq/Nk22hO6QElqJ7YtB8tt/uZoRb+F8PibnTNf6nz1guFEp32x A/t8XEc7gzRWjf6jUnHm7LDUpVR4vgeh5qmJzj1ppi5616Jlz+1RjojgL//zLvh8 ARcY3S4lFRuwJ6HyRYz4cfIzdqE4SAZvyadr9X9AsHWglCOeLnEWQ/KWjqJjhZTM I+lS8hbWBcMJTdgfPLyyQRqCMUEK/nFHn4pxRznG7dB3AlMaiZyDF1+VmYeJ+wxy w7XxhiFxnRC/pqp+z3K/x9WNmeKPrB1yjGbBRthC3uRn83yT43bib4PKeuR/aVTc CRfKJin1opo1wHOdqHs+8QsUrLB2ofOE -----END CERTIFICATE-----Generated at Sat Nov 23 00:49:36 2024 by rpki-client on console-fra.rpki-client.org