$ rpki-client -vvf rpki.apnic.net/member_repository/A91A654C/51A9EACC416011EB90874450C4F9AE02/XqEcijop4GlzwfEhYR1aXCobBp0.mft File: XqEcijop4GlzwfEhYR1aXCobBp0.mft (raw, json) Hash identifier: xNNUk4R5BOSa9iLVLI/bXkEcZvyEUy/sxLSajFUU5t4= Subject key identifier: F3:A2:1C:58:24:66:66:99:99:3B:07:08:DB:33:ED:AC:CE:06:97:48 Authority key identifier: 5E:A1:1C:8A:3A:29:E0:69:73:C1:F1:21:61:1D:5A:5C:2A:1B:06:9D Certificate issuer: /CN=A91A654C/serialNumber=5EA11C8A3A29E06973C1F121611D5A5C2A1B069D Certificate serial: 06CA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XqEcijop4GlzwfEhYR1aXCobBp0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A654C/51A9EACC416011EB90874450C4F9AE02/XqEcijop4GlzwfEhYR1aXCobBp0.mft Manifest number: 06B2 Signing time: Fri 22 Nov 2024 21:46:18 +0000 Manifest this update: Fri 22 Nov 2024 21:46:17 +0000 Manifest next update: Fri 29 Nov 2024 21:46:17 +0000 Files and hashes: 1: XqEcijop4GlzwfEhYR1aXCobBp0.crl (hash: ZVg9Egjx6jO4UJMEKcnA4kX6LQz2lzrveHlVcvXoKu4=) 2: 5A51D464F5FA11EC9B35372AC4F9AE02.roa (hash: nqhvH+f7wHKT8bjIs6vVLkOc7U1WY+z2Ysz9HVOAovM=) 3: 0940732E0E6311EDB98DEA0DC4F9AE02.roa (hash: qUPEINX626GY/GxqsT2NmJH0x/s+ptRFq/aAOkerh8M=) 4: 0A37FEFA0E6311EDB98DEA0DC4F9AE02.roa (hash: Bcj/iiKxpeGROHNnH2fXMR3kft/+QpPcp29Mc0T3G5U=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A654C/51A9EACC416011EB90874450C4F9AE02/XqEcijop4GlzwfEhYR1aXCobBp0.crl rsync://rpki.apnic.net/member_repository/A91A654C/51A9EACC416011EB90874450C4F9AE02/XqEcijop4GlzwfEhYR1aXCobBp0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XqEcijop4GlzwfEhYR1aXCobBp0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1738 (0x6ca) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A654C/serialNumber=5EA11C8A3A29E06973C1F121611D5A5C2A1B069D Validity Not Before: Nov 22 21:46:17 2024 GMT Not After : Nov 29 21:46:17 2024 GMT Subject: CN=6740fba9-94ab Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:48:77:1c:58:6c:51:92:a1:86:b8:1c:ae:71: 1c:32:37:da:ae:da:82:2b:70:53:d2:e9:bd:c5:5e: 80:eb:a0:74:bc:f0:ed:c5:d9:87:fc:72:49:60:51: 96:8f:34:11:04:4d:b6:62:2a:90:88:0d:ea:67:cf: 21:06:be:ed:24:c9:51:c8:fa:8a:a1:e6:42:25:07: d2:59:15:78:ad:95:d7:87:99:ea:08:ff:d8:47:0f: 35:8b:18:cb:f8:93:2b:e1:d0:a3:5e:db:74:0a:ac: f2:3e:11:ed:2c:05:50:09:30:29:50:2d:f8:f6:c6: 05:05:6e:64:b6:2d:75:d6:88:a9:b8:84:d6:90:d5: 5f:fa:90:e6:3f:fe:44:ad:43:ed:ad:bf:22:e3:a4: 5f:f2:41:10:f5:c5:af:7f:57:37:18:e3:e4:82:2e: e4:a2:af:b4:66:d3:7d:9a:0d:3f:5a:e2:56:a3:0d: 40:f4:8a:7a:76:2e:a0:e0:d8:3c:fb:33:ac:3b:9a: 42:a0:e8:55:da:c7:16:c4:f4:c5:28:0e:a6:89:df: 8c:cf:d9:7b:7e:64:cc:37:d7:2d:55:b8:36:c0:c3: 64:32:3e:93:50:e9:fe:ba:fe:f3:2d:e8:29:1e:23: 08:bc:6b:50:80:1f:4c:11:93:fc:39:ca:a2:14:52: 64:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:A2:1C:58:24:66:66:99:99:3B:07:08:DB:33:ED:AC:CE:06:97:48 X509v3 Authority Key Identifier: keyid:5E:A1:1C:8A:3A:29:E0:69:73:C1:F1:21:61:1D:5A:5C:2A:1B:06:9D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A654C/51A9EACC416011EB90874450C4F9AE02/XqEcijop4GlzwfEhYR1aXCobBp0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XqEcijop4GlzwfEhYR1aXCobBp0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A654C/51A9EACC416011EB90874450C4F9AE02/XqEcijop4GlzwfEhYR1aXCobBp0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8b:a2:62:7a:7d:6f:4a:63:4c:bd:d0:4a:5c:f2:4f:fb:87:f3: 1d:a9:39:ad:ca:5e:3f:dc:94:51:60:d6:b7:52:21:2a:40:c4: 7b:55:76:95:c0:24:86:35:05:15:78:17:98:65:44:aa:71:63: c3:99:0b:30:be:0a:3b:c0:1e:0d:41:e1:ed:d8:fc:4c:a3:79: 4b:dd:46:4f:e3:99:74:aa:dd:e6:bc:5e:9f:f4:5a:b1:22:41: 8d:63:5d:d7:76:2a:2b:51:d9:1f:08:19:f1:91:80:71:b9:1a: 49:89:af:80:05:14:28:04:26:c1:1e:02:93:41:98:51:9b:b9: 1d:10:b7:a5:42:ee:93:c5:89:7a:0e:64:ff:cc:6e:6e:de:11: 1c:07:26:b9:7b:b4:46:a8:71:4a:46:a9:e2:ae:b8:97:38:66: e5:7d:77:ea:c5:11:32:07:10:21:36:2c:ed:95:00:f0:ad:fb: a7:aa:c7:f8:69:c2:15:94:a1:fd:74:ca:01:0b:09:bb:17:02: a2:8f:87:e7:47:1f:42:e4:4f:3e:29:ec:dc:c2:c9:77:14:95: a1:45:d0:fe:54:5e:8c:ac:3d:4c:b8:c9:e0:f1:f5:4c:11:21: a9:3d:bb:cb:c3:c1:a7:0b:5b:b5:70:c9:d1:63:fb:d0:ca:52: 9f:9e:43:c8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBsowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTY1NEMxMTAvBgNVBAUTKDVFQTExQzhBM0EyOUUwNjk3M0MxRjEyMTYxMUQ1QTVD MkExQjA2OUQwHhcNMjQxMTIyMjE0NjE3WhcNMjQxMTI5MjE0NjE3WjAYMRYwFAYD VQQDEw02NzQwZmJhOS05NGFiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA00h3HFhsUZKhhrgcrnEcMjfartqCK3BT0um9xV6A66B0vPDtxdmH/HJJYFGW jzQRBE22YiqQiA3qZ88hBr7tJMlRyPqKoeZCJQfSWRV4rZXXh5nqCP/YRw81ixjL +JMr4dCjXtt0CqzyPhHtLAVQCTApUC349sYFBW5kti111oipuITWkNVf+pDmP/5E rUPtrb8i46Rf8kEQ9cWvf1c3GOPkgi7koq+0ZtN9mg0/WuJWow1A9Ip6di6g4Ng8 +zOsO5pCoOhV2scWxPTFKA6mid+Mz9l7fmTMN9ctVbg2wMNkMj6TUOn+uv7zLegp HiMIvGtQgB9MEZP8OcqiFFJk5QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPOiHFgk ZmaZmTsHCNsz7azOBpdIMB8GA1UdIwQYMBaAFF6hHIo6KeBpc8HxIWEdWlwqGwad MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNjU0Qy81MUE5RUFDQzQx NjAxMUVCOTA4NzQ0NTBDNEY5QUUwMi9YcUVjaWpvcDRHbHp3ZkVoWVIxYVhDb2JC cDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hxRWNpam9wNEdsendmRWhZUjFhWENvYkJwMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NjU0Qy81MUE5RUFDQzQxNjAxMUVCOTA4NzQ0NTBDNEY5QUUwMi9YcUVjaWpvcDRH bHp3ZkVoWVIxYVhDb2JCcDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCLomJ6fW9KY0y90Epc8k/7h/MdqTmtyl4/3JRRYNa3UiEqQMR7VXaV wCSGNQUVeBeYZUSqcWPDmQswvgo7wB4NQeHt2PxMo3lL3UZP45l0qt3mvF6f9Fqx IkGNY13XdiorUdkfCBnxkYBxuRpJia+ABRQoBCbBHgKTQZhRm7kdELelQu6TxYl6 DmT/zG5u3hEcBya5e7RGqHFKRqnirriXOGblfXfqxREyBxAhNiztlQDwrfunqsf4 acIVlKH9dMoBCwm7FwKij4fnRx9C5E8+Kezcwsl3FJWhRdD+VF6MrD1MuMng8fVM ESGpPbvLw8GnC1u1cMnRY/vQylKfnkPI -----END CERTIFICATE-----Generated at Fri Nov 22 22:24:11 2024 by rpki-client on console-fra.rpki-client.org