$ rpki-client -vvf rpki.apnic.net/member_repository/A91AAF73/D5FF1F405E7211EEBC2C4926C4F9AE02/xAXwYeM7BxfJBPwd8-ebzXlSD6Y.mft File: xAXwYeM7BxfJBPwd8-ebzXlSD6Y.mft (raw, json) Hash identifier: eUJxY9g5oy7gCvGCg6zz7OwmOh4wgLDyYCPeosSJwMM= Subject key identifier: 67:C0:AF:CE:8E:3A:C2:04:01:D8:F5:22:18:A7:21:D5:56:63:40:CC Authority key identifier: C4:05:F0:61:E3:3B:07:17:C9:04:FC:1D:F3:E7:9B:CD:79:52:0F:A6 Certificate issuer: /CN=A91AAF73/serialNumber=C405F061E33B0717C904FC1DF3E79BCD79520FA6 Certificate serial: DA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xAXwYeM7BxfJBPwd8-ebzXlSD6Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AAF73/D5FF1F405E7211EEBC2C4926C4F9AE02/xAXwYeM7BxfJBPwd8-ebzXlSD6Y.mft Manifest number: D8 Signing time: Sat 23 Nov 2024 03:41:25 +0000 Manifest this update: Sat 23 Nov 2024 03:41:25 +0000 Manifest next update: Sat 30 Nov 2024 03:41:25 +0000 Files and hashes: 1: xAXwYeM7BxfJBPwd8-ebzXlSD6Y.crl (hash: 0RM3U4bMyRW7q5lYnSCKZRoJ85Ulqng3SU0rSbOfzOk=) 2: 4B2F1F725E7811EE9307D234C4F9AE02.roa (hash: MT11dCBCJZcHWXZx/470dhBVNTyr6a/ASCVfjrKRXRY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AAF73/D5FF1F405E7211EEBC2C4926C4F9AE02/xAXwYeM7BxfJBPwd8-ebzXlSD6Y.crl rsync://rpki.apnic.net/member_repository/A91AAF73/D5FF1F405E7211EEBC2C4926C4F9AE02/xAXwYeM7BxfJBPwd8-ebzXlSD6Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xAXwYeM7BxfJBPwd8-ebzXlSD6Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 218 (0xda) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AAF73/serialNumber=C405F061E33B0717C904FC1DF3E79BCD79520FA6 Validity Not Before: Nov 23 03:41:25 2024 GMT Not After : Nov 30 03:41:25 2024 GMT Subject: CN=67414ee5-9e26 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:8c:68:ac:66:5f:0a:fd:ca:0f:28:32:27:fd: 72:2b:2b:76:4e:85:b8:e0:0d:59:26:84:2b:65:e5: 14:ca:04:87:d5:24:8a:7e:09:b4:42:3e:3d:e5:bb: 97:c0:93:82:3c:55:20:28:56:02:28:af:03:6c:26: 43:5a:fe:dd:7f:c8:98:33:f4:6e:c1:d2:17:7f:ac: 30:73:83:29:ca:47:19:ea:c9:bf:d7:07:aa:c9:e5: 10:8a:25:31:03:e6:50:ba:5a:ca:f2:95:b8:89:e9: cf:5d:97:6a:b4:61:53:4b:74:66:7f:cd:58:0d:ab: c6:00:2e:b6:00:ea:0b:4f:19:ac:10:d6:03:9d:d9: 6d:94:56:ad:8b:46:0f:35:cc:c0:8d:63:82:d6:6c: d1:46:70:91:81:0e:22:e7:c1:1b:91:9d:f1:af:c2: 04:03:95:70:58:55:41:da:e2:37:dd:0d:cd:19:86: 85:92:37:65:ba:96:65:29:93:2e:0e:00:fd:91:d1: fd:d1:67:b9:b9:d7:54:9c:0b:3e:d0:08:21:a8:02: b5:b2:a8:2d:91:ab:70:8e:aa:77:02:f1:4b:f3:39: 96:75:02:2e:e8:fe:46:d6:79:f3:8a:95:1f:b5:ac: 72:00:06:15:38:91:76:c7:d9:ca:fb:1a:6b:c8:1d: 26:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:C0:AF:CE:8E:3A:C2:04:01:D8:F5:22:18:A7:21:D5:56:63:40:CC X509v3 Authority Key Identifier: keyid:C4:05:F0:61:E3:3B:07:17:C9:04:FC:1D:F3:E7:9B:CD:79:52:0F:A6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AAF73/D5FF1F405E7211EEBC2C4926C4F9AE02/xAXwYeM7BxfJBPwd8-ebzXlSD6Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xAXwYeM7BxfJBPwd8-ebzXlSD6Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AAF73/D5FF1F405E7211EEBC2C4926C4F9AE02/xAXwYeM7BxfJBPwd8-ebzXlSD6Y.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2b:7e:56:c1:53:75:a7:c5:1e:e3:0a:7a:a1:92:0e:8f:6b:9c: 17:64:aa:7d:84:ee:0e:21:db:f2:fb:8a:0c:a4:87:e6:de:86: a1:d5:df:18:a1:92:af:e5:54:23:8b:36:b8:36:0b:44:a6:a6: 45:b4:3d:b8:af:e7:8b:cf:23:e4:b4:8f:bd:55:dc:2f:37:68: dc:32:2c:1b:08:59:70:55:a5:35:f2:10:46:58:ac:75:4b:24: 02:c3:ae:8e:6f:3c:cb:1a:2a:fe:e9:81:18:1c:e6:46:6e:3b: a7:74:88:33:ac:dd:0b:ed:ef:69:62:aa:ef:f1:90:6f:22:e9: 46:6a:61:1a:72:29:d9:38:e4:46:3a:51:2b:43:a4:14:a6:94: fd:22:c4:62:e3:3a:1f:23:9a:a9:69:17:48:93:46:1a:39:f6: 8a:7c:5c:31:ba:b7:94:28:52:70:8f:97:83:60:1e:ee:2c:01: ac:32:3d:2a:d7:65:94:18:61:ae:0a:a9:3e:b9:15:03:ff:26: 1d:02:71:48:a8:de:ee:c3:04:51:44:05:da:e8:df:39:49:30: 6d:73:bb:49:9b:4c:8d:4a:6c:54:f7:0e:ce:be:3d:1c:0c:f1: 78:7a:da:78:48:5b:2d:c7:e8:c4:3d:de:92:ba:2d:5e:37:f0: 6d:1f:d5:00 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICANowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUFGNzMxMTAvBgNVBAUTKEM0MDVGMDYxRTMzQjA3MTdDOTA0RkMxREYzRTc5QkNE Nzk1MjBGQTYwHhcNMjQxMTIzMDM0MTI1WhcNMjQxMTMwMDM0MTI1WjAYMRYwFAYD VQQDEw02NzQxNGVlNS05ZTI2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv4xorGZfCv3KDygyJ/1yKyt2ToW44A1ZJoQrZeUUygSH1SSKfgm0Qj495buX wJOCPFUgKFYCKK8DbCZDWv7df8iYM/RuwdIXf6wwc4MpykcZ6sm/1weqyeUQiiUx A+ZQulrK8pW4ienPXZdqtGFTS3Rmf81YDavGAC62AOoLTxmsENYDndltlFati0YP NczAjWOC1mzRRnCRgQ4i58EbkZ3xr8IEA5VwWFVB2uI33Q3NGYaFkjdlupZlKZMu DgD9kdH90We5uddUnAs+0AghqAK1sqgtkatwjqp3AvFL8zmWdQIu6P5G1nnzipUf taxyAAYVOJF2x9nK+xpryB0m6QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGfAr86O OsIEAdj1IhinIdVWY0DMMB8GA1UdIwQYMBaAFMQF8GHjOwcXyQT8HfPnm815Ug+m MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQUY3My9ENUZGMUY0MDVF NzIxMUVFQkMyQzQ5MjZDNEY5QUUwMi94QVh3WWVNN0J4ZkpCUHdkOC1lYnpYbFNE NlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hBWHdZZU03QnhmSkJQd2Q4LWVielhsU0Q2WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QUY3My9ENUZGMUY0MDVFNzIxMUVFQkMyQzQ5MjZDNEY5QUUwMi94QVh3WWVNN0J4 ZkpCUHdkOC1lYnpYbFNENlkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQArflbBU3WnxR7jCnqhkg6Pa5wXZKp9hO4OIdvy+4oMpIfm3oah1d8Y oZKv5VQjiza4NgtEpqZFtD24r+eLzyPktI+9VdwvN2jcMiwbCFlwVaU18hBGWKx1 SyQCw66ObzzLGir+6YEYHOZGbjundIgzrN0L7e9pYqrv8ZBvIulGamEacinZOORG OlErQ6QUppT9IsRi4zofI5qpaRdIk0YaOfaKfFwxureUKFJwj5eDYB7uLAGsMj0q 12WUGGGuCqk+uRUD/yYdAnFIqN7uwwRRRAXa6N85STBtc7tJm0yNSmxU9w7Ovj0c DPF4etp4SFstx+jEPd6Sui1eN/BtH9UA -----END CERTIFICATE-----Generated at Sat Nov 23 06:13:19 2024 by rpki-client on console-ams.rpki-client.org