$ rpki-client -vvf rpki.apnic.net/member_repository/A91B4F01/A700A8444B7811EC86E50A30C4F9AE02/Xr2n-qgBxaJ03CPRcfiLRqEeQVQ.mft File: Xr2n-qgBxaJ03CPRcfiLRqEeQVQ.mft (raw, json) Hash identifier: ZNkLYXN6X05kCjJXsUjHtqV4lkJ678yQm8bY1lkMFzQ= Subject key identifier: 2E:C5:AC:6F:48:85:CC:E5:8B:41:2E:D8:CF:48:B3:18:81:5B:CF:31 Authority key identifier: 5E:BD:A7:FA:A8:01:C5:A2:74:DC:23:D1:71:F8:8B:46:A1:1E:41:54 Certificate issuer: /CN=A91B4F01/serialNumber=5EBDA7FAA801C5A274DC23D171F88B46A11E4154 Certificate serial: 0408 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Xr2n-qgBxaJ03CPRcfiLRqEeQVQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B4F01/A700A8444B7811EC86E50A30C4F9AE02/Xr2n-qgBxaJ03CPRcfiLRqEeQVQ.mft Manifest number: 0405 Signing time: Fri 22 Nov 2024 23:59:29 +0000 Manifest this update: Fri 22 Nov 2024 23:59:29 +0000 Manifest next update: Fri 29 Nov 2024 23:59:29 +0000 Files and hashes: 1: Xr2n-qgBxaJ03CPRcfiLRqEeQVQ.crl (hash: 59qnDQ25wHtGlucfyXT0jQzqNlC8WTse2COVsdfRfPw=) 2: BD115AB24B7C11ECA63C0038C4F9AE02.roa (hash: 6CT4A5Z7mS/Dgpw7JiEf3AxJ+VrPvktJ4pEL6052hpw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B4F01/A700A8444B7811EC86E50A30C4F9AE02/Xr2n-qgBxaJ03CPRcfiLRqEeQVQ.crl rsync://rpki.apnic.net/member_repository/A91B4F01/A700A8444B7811EC86E50A30C4F9AE02/Xr2n-qgBxaJ03CPRcfiLRqEeQVQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Xr2n-qgBxaJ03CPRcfiLRqEeQVQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1032 (0x408) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B4F01/serialNumber=5EBDA7FAA801C5A274DC23D171F88B46A11E4154 Validity Not Before: Nov 22 23:59:29 2024 GMT Not After : Nov 29 23:59:29 2024 GMT Subject: CN=67411ae1-9c77 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:aa:4e:4e:95:7e:eb:e0:bb:6a:ab:a2:a8:74: 14:5f:7b:6e:38:c1:ce:31:8a:06:d0:92:48:ad:d6: 70:8b:7e:04:ea:46:1e:f1:07:7e:83:c6:05:ab:9b: 3a:db:e2:d0:82:56:c6:77:db:a8:18:f8:1e:fd:9f: bc:e2:71:99:ad:85:96:22:1d:2f:3e:6f:0a:b8:ac: 17:23:a3:74:12:6b:af:04:f0:fe:0d:33:de:e4:eb: 7b:af:06:61:67:9b:37:e8:1b:7f:87:e6:08:2e:db: 56:eb:b9:ff:03:56:a1:4a:6c:5a:c9:bc:ef:cc:eb: af:54:55:0b:7a:3b:86:36:d9:a6:48:68:17:cc:c1: 0d:08:b3:b8:4b:24:8e:53:ef:60:20:bf:8c:0d:77: b4:64:f6:d6:78:38:2d:49:7c:18:ce:4d:1e:c1:57: 2a:25:36:22:32:47:55:5f:e4:99:f5:ac:84:78:44: c2:99:b6:04:ee:7d:59:c1:95:8a:65:18:44:7b:47: fd:37:55:a3:f7:9e:e9:38:a3:86:91:0b:22:cd:bd: 8f:5e:b1:ce:43:76:e0:b8:ed:7e:17:53:c3:55:22: 3d:e1:d9:4c:cd:ca:70:f5:36:63:b7:a0:da:e3:37: 60:91:f6:e8:24:1c:4e:f6:93:9d:42:fd:43:47:ae: 28:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:C5:AC:6F:48:85:CC:E5:8B:41:2E:D8:CF:48:B3:18:81:5B:CF:31 X509v3 Authority Key Identifier: keyid:5E:BD:A7:FA:A8:01:C5:A2:74:DC:23:D1:71:F8:8B:46:A1:1E:41:54 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B4F01/A700A8444B7811EC86E50A30C4F9AE02/Xr2n-qgBxaJ03CPRcfiLRqEeQVQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Xr2n-qgBxaJ03CPRcfiLRqEeQVQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B4F01/A700A8444B7811EC86E50A30C4F9AE02/Xr2n-qgBxaJ03CPRcfiLRqEeQVQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 95:c5:30:c6:a6:5a:5b:7c:bc:ae:21:3d:d1:e4:cd:f8:e0:0d: 4a:09:b6:1c:3e:25:d5:4e:98:ec:7b:0b:e0:c5:47:f1:14:f5: 87:6c:5a:21:cb:e1:92:1f:0a:bf:66:1a:ea:fe:33:98:66:04: d6:53:e7:03:41:8c:5f:d2:5d:08:1d:37:b0:9d:f8:9b:d9:59: 0c:83:2d:43:46:5a:13:bc:d5:91:6c:bc:f9:cc:13:01:c9:cb: 00:47:65:05:fb:00:8c:44:67:f6:96:85:13:6b:92:9d:d3:3a: 39:9f:77:c2:2c:72:a3:1a:d0:0e:db:4b:62:4e:a5:00:42:c1: 3f:ae:9c:57:28:60:39:59:0d:df:88:62:f8:00:5a:c3:72:f1: 7d:56:67:66:f2:3f:ae:5f:2d:3c:70:d2:09:e5:cc:3c:69:39: 69:a1:10:a3:4a:f4:d1:d3:b5:ae:a4:5f:44:64:5b:7c:70:ab: 0a:3a:1e:5d:98:90:0d:fb:cc:2c:11:9a:db:31:61:b5:9e:75: c1:7e:8b:0a:33:66:1d:77:cd:97:ae:62:21:9d:87:4f:09:22: d1:48:62:71:ea:51:2b:7e:e4:36:a6:42:85:65:69:14:64:38: e7:47:33:ec:a0:6d:a0:8f:e0:f0:eb:3e:73:3d:b7:b5:78:d9: 54:c7:56:b7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBAgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjRGMDExMTAvBgNVBAUTKDVFQkRBN0ZBQTgwMUM1QTI3NERDMjNEMTcxRjg4QjQ2 QTExRTQxNTQwHhcNMjQxMTIyMjM1OTI5WhcNMjQxMTI5MjM1OTI5WjAYMRYwFAYD VQQDEw02NzQxMWFlMS05Yzc3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1qpOTpV+6+C7aquiqHQUX3tuOMHOMYoG0JJIrdZwi34E6kYe8Qd+g8YFq5s6 2+LQglbGd9uoGPge/Z+84nGZrYWWIh0vPm8KuKwXI6N0EmuvBPD+DTPe5Ot7rwZh Z5s36Bt/h+YILttW67n/A1ahSmxaybzvzOuvVFULejuGNtmmSGgXzMENCLO4SySO U+9gIL+MDXe0ZPbWeDgtSXwYzk0ewVcqJTYiMkdVX+SZ9ayEeETCmbYE7n1ZwZWK ZRhEe0f9N1Wj957pOKOGkQsizb2PXrHOQ3bguO1+F1PDVSI94dlMzcpw9TZjt6Da 4zdgkfboJBxO9pOdQv1DR64oUwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFC7FrG9I hczli0Eu2M9IsxiBW88xMB8GA1UdIwQYMBaAFF69p/qoAcWidNwj0XH4i0ahHkFU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNEYwMS9BNzAwQTg0NDRC NzgxMUVDODZFNTBBMzBDNEY5QUUwMi9YcjJuLXFnQnhhSjAzQ1BSY2ZpTFJxRWVR VlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hyMm4tcWdCeGFKMDNDUFJjZmlMUnFFZVFWUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NEYwMS9BNzAwQTg0NDRCNzgxMUVDODZFNTBBMzBDNEY5QUUwMi9YcjJuLXFnQnhh SjAzQ1BSY2ZpTFJxRWVRVlEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCVxTDGplpbfLyuIT3R5M344A1KCbYcPiXVTpjsewvgxUfxFPWHbFoh y+GSHwq/Zhrq/jOYZgTWU+cDQYxf0l0IHTewnfib2VkMgy1DRloTvNWRbLz5zBMB ycsAR2UF+wCMRGf2loUTa5Kd0zo5n3fCLHKjGtAO20tiTqUAQsE/rpxXKGA5WQ3f iGL4AFrDcvF9Vmdm8j+uXy08cNIJ5cw8aTlpoRCjSvTR07WupF9EZFt8cKsKOh5d mJAN+8wsEZrbMWG1nnXBfosKM2Ydd82XrmIhnYdPCSLRSGJx6lErfuQ2pkKFZWkU ZDjnRzPsoG2gj+Dw6z5zPbe1eNlUx1a3 -----END CERTIFICATE-----Generated at Sat Nov 23 01:27:27 2024 by rpki-client on console-ams.rpki-client.org