$ rpki-client -vvf rpki.apnic.net/member_repository/A91AA444/8DCE274AB11D11EEA3363319C4F9AE02/cx5XsN_ep5G6TV1xly2oEF3JPos.mft File: cx5XsN_ep5G6TV1xly2oEF3JPos.mft (raw, json) Hash identifier: R3RGO6TixmpFCmMXl3dkNH/HbzD/D9tFQIWxB3dKaAE= Subject key identifier: 1C:C9:34:EB:5E:DF:9D:15:F8:52:9C:8D:CF:C0:82:0F:A7:6A:5E:08 Authority key identifier: 73:1E:57:B0:DF:DE:A7:91:BA:4D:5D:71:97:2D:A8:10:5D:C9:3E:8B Certificate issuer: /CN=A91AA444/serialNumber=731E57B0DFDEA791BA4D5D71972DA8105DC93E8B Certificate serial: A3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cx5XsN_ep5G6TV1xly2oEF3JPos.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AA444/8DCE274AB11D11EEA3363319C4F9AE02/cx5XsN_ep5G6TV1xly2oEF3JPos.mft Manifest number: A3 Signing time: Sat 23 Nov 2024 04:17:07 +0000 Manifest this update: Sat 23 Nov 2024 04:17:07 +0000 Manifest next update: Sat 30 Nov 2024 04:17:07 +0000 Files and hashes: 1: cx5XsN_ep5G6TV1xly2oEF3JPos.crl (hash: UYsGP5H15+Asa/q4HCHMTxpIauhA7SSBNzGUZ+Re3hw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AA444/8DCE274AB11D11EEA3363319C4F9AE02/cx5XsN_ep5G6TV1xly2oEF3JPos.crl rsync://rpki.apnic.net/member_repository/A91AA444/8DCE274AB11D11EEA3363319C4F9AE02/cx5XsN_ep5G6TV1xly2oEF3JPos.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cx5XsN_ep5G6TV1xly2oEF3JPos.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 163 (0xa3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AA444/serialNumber=731E57B0DFDEA791BA4D5D71972DA8105DC93E8B Validity Not Before: Nov 23 04:17:07 2024 GMT Not After : Nov 30 04:17:07 2024 GMT Subject: CN=67415743-39e8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:b5:ed:af:ac:62:6d:9b:e7:8c:8a:a4:a5:ab: ff:f0:7f:30:73:83:eb:11:bb:aa:66:dd:ac:90:8b: 38:05:06:85:39:2c:6a:f2:c3:3c:ef:cb:8b:42:9f: dd:42:66:f8:04:b0:93:da:4f:54:d9:1c:50:57:d1: f2:f1:d8:54:8e:70:7e:91:12:07:a5:bc:df:c4:df: a2:aa:68:2d:28:7f:ce:59:90:15:bd:cc:65:00:85: 3b:e8:65:b7:81:e5:f1:31:e6:72:fd:5e:d4:0c:8f: 45:65:4a:e9:38:f5:c2:7f:f8:4f:99:a3:42:92:4c: 32:a3:05:96:77:f3:ef:91:bd:ed:49:08:fa:a2:8f: 83:8d:ce:5e:bf:1b:4a:b6:a5:25:76:da:61:fc:bc: 8b:fb:7a:e8:a8:ea:36:77:e1:5f:9c:c9:3d:46:e6: 48:0d:eb:93:20:f8:42:c9:7f:4a:78:d7:e6:98:b3: 2b:0f:8c:2b:1b:66:62:74:71:68:b0:df:0b:e6:c2: 0e:9f:e7:09:ef:a2:be:85:81:1a:1a:29:2a:20:ce: 6c:7a:50:52:cb:c9:73:12:d0:d6:71:17:a9:80:0c: a4:2f:34:b7:07:15:ab:7c:0a:11:f9:69:a1:73:5c: 9a:1f:c4:d6:4b:95:df:00:3e:c6:07:35:9a:f0:28: 1a:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:C9:34:EB:5E:DF:9D:15:F8:52:9C:8D:CF:C0:82:0F:A7:6A:5E:08 X509v3 Authority Key Identifier: keyid:73:1E:57:B0:DF:DE:A7:91:BA:4D:5D:71:97:2D:A8:10:5D:C9:3E:8B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AA444/8DCE274AB11D11EEA3363319C4F9AE02/cx5XsN_ep5G6TV1xly2oEF3JPos.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cx5XsN_ep5G6TV1xly2oEF3JPos.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AA444/8DCE274AB11D11EEA3363319C4F9AE02/cx5XsN_ep5G6TV1xly2oEF3JPos.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5b:7e:df:83:55:1f:41:be:ed:17:e6:b4:5f:75:43:26:43:81: e9:e7:a8:65:64:60:ed:c9:34:62:ad:7b:67:65:3b:83:85:14: ce:97:bf:79:d4:30:23:ff:e7:e6:8d:29:3c:99:12:d8:a8:68: cc:d8:87:1d:a5:db:b4:8f:e6:f4:a4:83:10:5f:20:56:99:a5: e6:1e:e9:de:8a:a8:1a:32:33:ff:f1:b4:d3:26:eb:df:9d:a6: 45:19:90:b5:70:f2:77:2b:aa:2f:4f:7f:83:b9:6e:6d:20:4e: 09:27:8f:57:5b:91:6b:2b:30:7d:7c:0b:87:0d:12:b3:10:7f: 8a:64:42:ff:3d:6b:38:2c:f7:1a:88:de:0d:03:61:a3:fc:11: d0:00:4a:96:5c:d5:b3:40:4e:ac:30:44:fe:f2:a8:c1:4c:9d: 6c:b8:1e:f1:8a:94:b7:6c:ae:63:62:6c:96:0c:14:ee:bc:dc: e5:0c:ba:d1:e9:2a:63:a9:3a:02:bc:55:fa:c2:ac:2c:53:5e: c9:3b:ca:16:13:4c:d2:89:d6:e0:43:27:70:32:91:cb:1d:df: b3:25:bf:76:b4:f9:52:ed:1b:6d:f0:2c:fe:00:73:48:6f:e8: 89:ce:57:70:07:64:5d:f5:29:e4:49:cc:3c:0b:8e:7d:7b:9c: c1:00:5b:59 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUE0NDQxMTAvBgNVBAUTKDczMUU1N0IwREZERUE3OTFCQTRENUQ3MTk3MkRBODEw NURDOTNFOEIwHhcNMjQxMTIzMDQxNzA3WhcNMjQxMTMwMDQxNzA3WjAYMRYwFAYD VQQDEw02NzQxNTc0My0zOWU4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuLXtr6xibZvnjIqkpav/8H8wc4PrEbuqZt2skIs4BQaFOSxq8sM878uLQp/d Qmb4BLCT2k9U2RxQV9Hy8dhUjnB+kRIHpbzfxN+iqmgtKH/OWZAVvcxlAIU76GW3 geXxMeZy/V7UDI9FZUrpOPXCf/hPmaNCkkwyowWWd/Pvkb3tSQj6oo+Djc5evxtK tqUldtph/LyL+3roqOo2d+FfnMk9RuZIDeuTIPhCyX9KeNfmmLMrD4wrG2ZidHFo sN8L5sIOn+cJ76K+hYEaGikqIM5selBSy8lzEtDWcRepgAykLzS3BxWrfAoR+Wmh c1yaH8TWS5XfAD7GBzWa8Cga7wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBzJNOte 350V+FKcjc/Agg+nal4IMB8GA1UdIwQYMBaAFHMeV7Df3qeRuk1dcZctqBBdyT6L MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQTQ0NC84RENFMjc0QUIx MUQxMUVFQTMzNjMzMTlDNEY5QUUwMi9jeDVYc05fZXA1RzZUVjF4bHkyb0VGM0pQ b3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2N4NVhzTl9lcDVHNlRWMXhseTJvRUYzSlBvcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QTQ0NC84RENFMjc0QUIxMUQxMUVFQTMzNjMzMTlDNEY5QUUwMi9jeDVYc05fZXA1 RzZUVjF4bHkyb0VGM0pQb3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBbft+DVR9Bvu0X5rRfdUMmQ4Hp56hlZGDtyTRirXtnZTuDhRTOl795 1DAj/+fmjSk8mRLYqGjM2Icdpdu0j+b0pIMQXyBWmaXmHuneiqgaMjP/8bTTJuvf naZFGZC1cPJ3K6ovT3+DuW5tIE4JJ49XW5FrKzB9fAuHDRKzEH+KZEL/PWs4LPca iN4NA2Gj/BHQAEqWXNWzQE6sMET+8qjBTJ1suB7xipS3bK5jYmyWDBTuvNzlDLrR 6SpjqToCvFX6wqwsU17JO8oWE0zSidbgQydwMpHLHd+zJb92tPlS7Rtt8Cz+AHNI b+iJzldwB2Rd9SnkScw8C459e5zBAFtZ -----END CERTIFICATE-----Generated at Sat Nov 23 06:13:19 2024 by rpki-client on console-ams.rpki-client.org