$ rpki-client -vvf rpki.apnic.net/member_repository/A91A3FEB/B018AD96291911EB9854985CC4F9AE02/x5XlnAMMfJKfy-R0Gfxexp4frP0.mft File: x5XlnAMMfJKfy-R0Gfxexp4frP0.mft (raw, json) Hash identifier: Rq+ZOANOoyEcKFKvnUDulXAX0576AUMTS+pwKC3ljy8= Subject key identifier: 73:FB:56:5E:C1:57:C0:65:C7:FC:6B:3A:12:22:0E:C4:E6:5D:ED:33 Authority key identifier: C7:95:E5:9C:03:0C:7C:92:9F:CB:E4:74:19:FC:5E:C6:9E:1F:AC:FD Certificate issuer: /CN=A91A3FEB/serialNumber=C795E59C030C7C929FCBE47419FC5EC69E1FACFD Certificate serial: 06EC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/x5XlnAMMfJKfy-R0Gfxexp4frP0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A3FEB/B018AD96291911EB9854985CC4F9AE02/x5XlnAMMfJKfy-R0Gfxexp4frP0.mft Manifest number: 06E7 Signing time: Wed 20 Nov 2024 21:32:17 +0000 Manifest this update: Wed 20 Nov 2024 21:32:17 +0000 Manifest next update: Wed 27 Nov 2024 21:32:17 +0000 Files and hashes: 1: x5XlnAMMfJKfy-R0Gfxexp4frP0.crl (hash: HHmjVHvJdiHjGL5ffqheShSI/DfcsqSrkZnpd7d544Q=) 2: B722FC542A0411EB992DD32EC4F9AE02.roa (hash: T2Lsfba/5wcE3DtMzCheps9cMl47tWjTgMCBmWf+3eA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A3FEB/B018AD96291911EB9854985CC4F9AE02/x5XlnAMMfJKfy-R0Gfxexp4frP0.crl rsync://rpki.apnic.net/member_repository/A91A3FEB/B018AD96291911EB9854985CC4F9AE02/x5XlnAMMfJKfy-R0Gfxexp4frP0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/x5XlnAMMfJKfy-R0Gfxexp4frP0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:33:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1772 (0x6ec) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A3FEB/serialNumber=C795E59C030C7C929FCBE47419FC5EC69E1FACFD Validity Not Before: Nov 20 21:32:17 2024 GMT Not After : Nov 27 21:32:17 2024 GMT Subject: CN=673e5561-02ac Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:c8:46:ac:5e:6a:5a:06:d6:0f:36:65:01:d2: 70:a5:29:00:8b:9a:36:de:fe:42:16:ae:37:da:a8: 73:88:48:3d:09:07:c7:b0:59:19:19:37:6c:bb:7a: 7a:89:b6:e3:5d:4b:63:6d:c1:42:11:b9:8d:65:1e: c2:81:dc:8a:63:11:e7:76:25:a9:25:4d:3b:c2:5a: 05:b2:81:2c:f0:b5:9e:d8:8f:f4:97:c3:7a:5a:79: e8:7f:c7:36:c9:30:ed:a5:b9:70:c2:d0:0c:f2:e9: b3:98:39:e5:0e:f2:1e:4a:0b:cd:fe:29:8c:76:cd: 9a:0d:d5:b3:07:83:b6:77:4e:43:64:60:63:1f:4a: b6:b7:87:65:2d:60:58:d8:87:ca:f9:0b:8a:7e:27: 35:d2:cb:6e:6e:fa:b5:ca:50:4a:b4:5f:7e:fe:83: 3d:f0:43:4f:90:f7:73:a6:5f:f3:94:c9:11:37:08: 53:56:46:a7:be:88:c5:1c:1f:f9:ad:9e:0d:ab:b3: f5:52:8a:ca:14:16:59:6e:d9:2e:52:25:c8:7d:a7: c5:31:19:6b:5a:8c:42:47:80:6d:f0:16:05:d3:34: c0:cd:fe:70:90:1e:06:03:5f:ca:a0:56:d7:ec:94: bd:14:95:66:fc:30:7c:ec:33:58:db:cc:b0:52:de: 99:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:FB:56:5E:C1:57:C0:65:C7:FC:6B:3A:12:22:0E:C4:E6:5D:ED:33 X509v3 Authority Key Identifier: keyid:C7:95:E5:9C:03:0C:7C:92:9F:CB:E4:74:19:FC:5E:C6:9E:1F:AC:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A3FEB/B018AD96291911EB9854985CC4F9AE02/x5XlnAMMfJKfy-R0Gfxexp4frP0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/x5XlnAMMfJKfy-R0Gfxexp4frP0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A3FEB/B018AD96291911EB9854985CC4F9AE02/x5XlnAMMfJKfy-R0Gfxexp4frP0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 62:fa:0f:e1:a5:4e:16:b9:69:84:aa:57:75:52:71:91:08:3f: 1a:9d:e7:d9:35:83:11:4f:63:71:3b:a4:99:a9:19:e0:de:f2: 66:15:70:75:72:ba:d4:4c:4e:c3:ce:3b:7f:ce:66:ff:b2:72: db:61:01:40:34:04:45:87:4f:07:e7:64:5e:ba:89:16:78:c7: 85:8d:14:71:3a:21:55:a0:08:51:13:d8:ac:09:f0:14:5d:f8: 66:ee:80:df:d7:82:e1:2d:62:40:c0:60:fb:25:d3:51:8d:13: 44:e8:22:82:6b:0f:55:54:e7:29:e4:13:2e:fd:f4:ae:3b:fa: 8e:28:22:3c:0f:66:fd:9e:45:97:0f:e1:08:53:09:2b:61:f1: 74:f0:0f:42:eb:c7:8c:05:21:c4:bd:ed:c8:6f:4f:ab:28:c1: 02:7e:d7:48:38:ef:ba:a1:23:bd:2e:64:49:fc:63:f5:55:f6: 23:d5:80:be:ed:ec:8f:e3:6a:23:97:cb:9e:c1:e1:4c:fa:21: a7:3e:96:5a:50:41:c7:7d:8d:2a:7d:d3:3d:36:c9:d2:8a:24: 96:43:7d:41:9f:fe:04:19:48:77:da:71:e9:70:36:02:4f:26: 42:e6:c4:92:fc:10:6d:56:b5:eb:82:15:3c:57:07:a3:e7:b3: ac:a9:92:0b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBuwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTNGRUIxMTAvBgNVBAUTKEM3OTVFNTlDMDMwQzdDOTI5RkNCRTQ3NDE5RkM1RUM2 OUUxRkFDRkQwHhcNMjQxMTIwMjEzMjE3WhcNMjQxMTI3MjEzMjE3WjAYMRYwFAYD VQQDEw02NzNlNTU2MS0wMmFjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyshGrF5qWgbWDzZlAdJwpSkAi5o23v5CFq432qhziEg9CQfHsFkZGTdsu3p6 ibbjXUtjbcFCEbmNZR7CgdyKYxHndiWpJU07wloFsoEs8LWe2I/0l8N6Wnnof8c2 yTDtpblwwtAM8umzmDnlDvIeSgvN/imMds2aDdWzB4O2d05DZGBjH0q2t4dlLWBY 2IfK+QuKfic10stubvq1ylBKtF9+/oM98ENPkPdzpl/zlMkRNwhTVkanvojFHB/5 rZ4Nq7P1UorKFBZZbtkuUiXIfafFMRlrWoxCR4Bt8BYF0zTAzf5wkB4GA1/KoFbX 7JS9FJVm/DB87DNY28ywUt6ZsQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHP7Vl7B V8Blx/xrOhIiDsTmXe0zMB8GA1UdIwQYMBaAFMeV5ZwDDHySn8vkdBn8XsaeH6z9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBM0ZFQi9CMDE4QUQ5NjI5 MTkxMUVCOTg1NDk4NUNDNEY5QUUwMi94NVhsbkFNTWZKS2Z5LVIwR2Z4ZXhwNGZy UDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3g1WGxuQU1NZkpLZnktUjBHZnhleHA0ZnJQMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB M0ZFQi9CMDE4QUQ5NjI5MTkxMUVCOTg1NDk4NUNDNEY5QUUwMi94NVhsbkFNTWZK S2Z5LVIwR2Z4ZXhwNGZyUDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBi+g/hpU4WuWmEqld1UnGRCD8anefZNYMRT2NxO6SZqRng3vJmFXB1 crrUTE7Dzjt/zmb/snLbYQFANARFh08H52ReuokWeMeFjRRxOiFVoAhRE9isCfAU Xfhm7oDf14LhLWJAwGD7JdNRjRNE6CKCaw9VVOcp5BMu/fSuO/qOKCI8D2b9nkWX D+EIUwkrYfF08A9C68eMBSHEve3Ib0+rKMECftdIOO+6oSO9LmRJ/GP1VfYj1YC+ 7eyP42ojl8ueweFM+iGnPpZaUEHHfY0qfdM9NsnSiiSWQ31Bn/4EGUh32nHpcDYC TyZC5sSS/BBtVrXrghU8Vwej57OsqZIL -----END CERTIFICATE-----Generated at Wed Nov 20 23:55:48 2024 by rpki-client on console-ams.rpki-client.org