$ rpki-client -vvf rpki.apnic.net/member_repository/A91A4481/BC840F4602C111EFAF3CB465C4F9AE02/XerjhTD4FfvwubP472N1B4bIrAo.mft File: XerjhTD4FfvwubP472N1B4bIrAo.mft (raw, json) Hash identifier: iuxiuRWDamFU9BIMp4oe8hpqCJtjaDPe/7q3XvFJtVA= Subject key identifier: 99:7B:00:21:0B:27:51:3A:B9:51:4F:8E:7A:AA:BE:F8:1A:D6:CB:24 Authority key identifier: 5D:EA:E3:85:30:F8:15:FB:F0:B9:B3:F8:EF:63:75:07:86:C8:AC:0A Certificate issuer: /CN=A91A4481/serialNumber=5DEAE38530F815FBF0B9B3F8EF63750786C8AC0A Certificate serial: 6D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XerjhTD4FfvwubP472N1B4bIrAo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A4481/BC840F4602C111EFAF3CB465C4F9AE02/XerjhTD4FfvwubP472N1B4bIrAo.mft Manifest number: 6C Signing time: Sat 23 Nov 2024 04:52:43 +0000 Manifest this update: Sat 23 Nov 2024 04:52:43 +0000 Manifest next update: Sat 30 Nov 2024 04:52:43 +0000 Files and hashes: 1: XerjhTD4FfvwubP472N1B4bIrAo.crl (hash: cZ0T50uXILug7ijODVgEu0W3qWDxFVfcUHKYHSDSs8s=) 2: 5B08B12602C211EF9A1E4567C4F9AE02.roa (hash: LMERtpQp+DLty4Wivq0OeREYwOOHlqWpDYnqAURaibM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A4481/BC840F4602C111EFAF3CB465C4F9AE02/XerjhTD4FfvwubP472N1B4bIrAo.crl rsync://rpki.apnic.net/member_repository/A91A4481/BC840F4602C111EFAF3CB465C4F9AE02/XerjhTD4FfvwubP472N1B4bIrAo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XerjhTD4FfvwubP472N1B4bIrAo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 109 (0x6d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A4481/serialNumber=5DEAE38530F815FBF0B9B3F8EF63750786C8AC0A Validity Not Before: Nov 23 04:52:43 2024 GMT Not After : Nov 30 04:52:43 2024 GMT Subject: CN=67415f9b-d6c2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:cd:c4:9c:d8:0e:bf:a7:2b:6a:07:07:30:31: ae:9a:a9:84:67:43:59:33:a1:c5:41:ed:ae:47:68: 1f:16:2b:f9:69:5f:23:49:44:44:3a:98:ed:59:40: 95:af:be:e6:89:0b:71:b3:7a:97:ad:5a:30:b8:43: 92:d3:af:92:ee:63:3b:d8:48:0c:54:db:80:26:d5: 98:e9:6c:42:de:8e:e2:10:fd:2e:8e:fd:84:ef:4c: db:7e:05:93:f6:ac:76:da:0f:e8:67:3f:36:8b:45: 4c:3f:83:31:82:11:eb:9b:6e:70:7e:8a:6e:24:cb: 1c:32:38:fd:d0:0a:00:5f:0e:6b:0b:a7:0f:2c:84: 32:dc:70:06:c5:71:fe:66:e3:fc:0b:91:82:4b:2e: 85:63:34:0d:48:9d:53:96:fb:04:e3:d8:d5:df:88: 62:2a:4e:cc:7d:c1:d1:ed:d4:95:5c:32:41:5e:0c: 85:e4:78:b3:70:90:c9:fa:1d:6a:6d:d0:4c:6c:3a: 33:ba:33:24:62:ca:f1:11:7c:42:32:2c:b2:aa:89: 79:9f:57:91:ef:a7:00:52:db:51:d2:1f:c3:87:78: cb:c5:00:d6:2d:79:c0:55:a0:4b:f8:0a:d1:b9:8b: ed:6f:6a:51:17:4d:5e:d6:76:d9:31:f1:e6:08:9b: 25:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:7B:00:21:0B:27:51:3A:B9:51:4F:8E:7A:AA:BE:F8:1A:D6:CB:24 X509v3 Authority Key Identifier: keyid:5D:EA:E3:85:30:F8:15:FB:F0:B9:B3:F8:EF:63:75:07:86:C8:AC:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A4481/BC840F4602C111EFAF3CB465C4F9AE02/XerjhTD4FfvwubP472N1B4bIrAo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XerjhTD4FfvwubP472N1B4bIrAo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A4481/BC840F4602C111EFAF3CB465C4F9AE02/XerjhTD4FfvwubP472N1B4bIrAo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a1:f6:2e:c2:a5:19:09:61:11:71:1d:35:ec:0d:e0:2a:0a:08: f2:d6:c1:ff:62:3a:a4:4a:f6:74:91:78:5e:92:40:09:09:bd: 0d:28:e8:8d:10:f8:4c:57:0d:3a:85:08:6c:bb:36:64:60:e2: 40:63:c6:68:63:18:d2:d3:1e:c7:3f:23:b4:82:31:1f:1a:8d: 8b:2b:83:eb:7b:06:ac:b0:13:64:85:c6:11:91:ff:c0:d8:0d: 70:03:81:12:ab:10:b9:9e:85:6e:3f:17:ac:73:8b:85:ff:6f: 66:43:61:5c:05:85:de:4e:60:1b:d0:09:83:92:13:59:b2:95: c7:a2:f3:3f:3a:ce:e1:1f:10:0b:79:99:e4:d9:83:9d:38:a3: e6:db:ec:4c:0c:26:69:46:6d:1d:ef:ab:cf:e1:f8:00:e3:f2: 00:1f:65:44:8e:03:41:0c:14:27:3a:5b:d7:c0:f4:aa:fe:89: d8:b6:12:7c:8a:e3:71:fa:b5:6c:e4:44:99:3e:f8:8d:e5:c8: a4:57:48:82:c6:a2:22:25:3d:d5:7a:ce:48:3e:36:0a:1f:62: 88:59:81:b1:28:f0:16:21:d1:57:98:dc:96:d3:10:bc:55:c1: 53:0b:ad:e9:74:a3:ad:24:ed:3f:28:38:f5:ce:75:a2:ca:0c: 5d:6b:8a:77 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBbTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB NDQ4MTExMC8GA1UEBRMoNURFQUUzODUzMEY4MTVGQkYwQjlCM0Y4RUY2Mzc1MDc4 NkM4QUMwQTAeFw0yNDExMjMwNDUyNDNaFw0yNDExMzAwNDUyNDNaMBgxFjAUBgNV BAMTDTY3NDE1ZjliLWQ2YzIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDezcSc2A6/pytqBwcwMa6aqYRnQ1kzocVB7a5HaB8WK/lpXyNJREQ6mO1ZQJWv vuaJC3GzepetWjC4Q5LTr5LuYzvYSAxU24Am1ZjpbELejuIQ/S6O/YTvTNt+BZP2 rHbaD+hnPzaLRUw/gzGCEeubbnB+im4kyxwyOP3QCgBfDmsLpw8shDLccAbFcf5m 4/wLkYJLLoVjNA1InVOW+wTj2NXfiGIqTsx9wdHt1JVcMkFeDIXkeLNwkMn6HWpt 0ExsOjO6MyRiyvERfEIyLLKqiXmfV5HvpwBS21HSH8OHeMvFANYtecBVoEv4CtG5 i+1valEXTV7Wdtkx8eYImyUVAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUmXsAIQsn UTq5UU+Oeqq++BrWyyQwHwYDVR0jBBgwFoAUXerjhTD4FfvwubP472N1B4bIrAow DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE0NDgxL0JDODQwRjQ2MDJD MTExRUZBRjNDQjQ2NUM0RjlBRTAyL1hlcmpoVEQ0RmZ2d3ViUDQ3Mk4xQjRiSXJB by5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvWGVyamhURDRGZnZ3dWJQNDcyTjFCNGJJckFvLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE0 NDgxL0JDODQwRjQ2MDJDMTExRUZBRjNDQjQ2NUM0RjlBRTAyL1hlcmpoVEQ0RmZ2 d3ViUDQ3Mk4xQjRiSXJBby5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAKH2LsKlGQlhEXEdNewN4CoKCPLWwf9iOqRK9nSReF6SQAkJvQ0o6I0Q +ExXDTqFCGy7NmRg4kBjxmhjGNLTHsc/I7SCMR8ajYsrg+t7BqywE2SFxhGR/8DY DXADgRKrELmehW4/F6xzi4X/b2ZDYVwFhd5OYBvQCYOSE1mylcei8z86zuEfEAt5 meTZg504o+bb7EwMJmlGbR3vq8/h+ADj8gAfZUSOA0EMFCc6W9fA9Kr+idi2EnyK 43H6tWzkRJk++I3lyKRXSILGoiIlPdV6zkg+NgofYohZgbEo8BYh0VeY3JbTELxV wVMLrel0o60k7T8oOPXOdaLKDF1rinc= -----END CERTIFICATE-----Generated at Sat Nov 23 06:21:28 2024 by rpki-client on console-fra.rpki-client.org