$ rpki-client -vvf rpki.apnic.net/member_repository/A91B758E/E799F922D53D11EE8F1E8A85C4F9AE02/XucUYNY3KKxeq5GKVB0NcFFXfU0.mft File: XucUYNY3KKxeq5GKVB0NcFFXfU0.mft (raw, json) Hash identifier: 0PoAFxcpP3lKqPqY42p6u0Lw9GKApRvS+Luse+2AQWc= Subject key identifier: ED:0D:68:E8:C5:CB:E9:30:35:53:91:1E:B0:E5:17:F2:99:34:03:F4 Authority key identifier: 5E:E7:14:60:D6:37:28:AC:5E:AB:91:8A:54:1D:0D:70:51:57:7D:4D Certificate issuer: /CN=A91B758E/serialNumber=5EE71460D63728AC5EAB918A541D0D7051577D4D Certificate serial: 8A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XucUYNY3KKxeq5GKVB0NcFFXfU0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B758E/E799F922D53D11EE8F1E8A85C4F9AE02/XucUYNY3KKxeq5GKVB0NcFFXfU0.mft Manifest number: 8A Signing time: Mon 25 Nov 2024 04:31:25 +0000 Manifest this update: Mon 25 Nov 2024 04:31:24 +0000 Manifest next update: Mon 02 Dec 2024 04:31:24 +0000 Files and hashes: 1: XucUYNY3KKxeq5GKVB0NcFFXfU0.crl (hash: hD5/IlU+aIh3qVx5d365PTcTp5/iO/EnI4Z5E8sZ3Vg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B758E/E799F922D53D11EE8F1E8A85C4F9AE02/XucUYNY3KKxeq5GKVB0NcFFXfU0.crl rsync://rpki.apnic.net/member_repository/A91B758E/E799F922D53D11EE8F1E8A85C4F9AE02/XucUYNY3KKxeq5GKVB0NcFFXfU0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XucUYNY3KKxeq5GKVB0NcFFXfU0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 02 Dec 2024 04:31:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 138 (0x8a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B758E/serialNumber=5EE71460D63728AC5EAB918A541D0D7051577D4D Validity Not Before: Nov 25 04:31:24 2024 GMT Not After : Dec 2 04:31:24 2024 GMT Subject: CN=6743fd9c-506d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:5c:5f:b6:a5:67:d3:87:66:89:f2:e0:3b:62: 64:f9:76:74:21:3d:10:5a:3c:d9:38:2d:e2:41:09: 0a:8d:47:21:b0:d1:10:76:aa:1e:2e:d1:4b:26:06: 87:52:af:d6:32:75:68:f3:a4:c2:03:a3:b9:09:1b: a0:27:58:3f:1d:61:e3:f5:88:b1:8e:8f:d7:5d:a8: 58:3f:21:a3:db:4c:9d:47:37:cc:07:77:b5:13:12: ca:80:59:20:d1:da:bc:ea:05:cb:31:f1:ed:9b:3e: a1:c6:08:e9:7b:41:56:ed:f6:43:2e:6f:0a:10:67: 46:6b:08:e9:55:c5:f7:ea:33:ce:c8:12:3d:45:9b: 8e:3b:02:3e:b5:6d:2f:fe:cc:e1:04:8d:e0:ea:9a: 25:09:68:c5:bd:0a:a2:b0:34:75:fd:4a:f2:fb:b3: d7:e3:b4:87:11:e5:5d:10:ae:e9:60:ac:5d:6b:47: 07:b1:f7:7f:3a:4d:7b:95:ef:2d:8e:fd:3b:52:bb: 43:90:29:77:24:88:68:49:e2:65:c0:58:eb:c3:0b: bd:fb:01:8d:b8:16:82:d6:bc:9e:99:73:d4:a6:49: eb:0e:f9:a9:19:3f:32:08:a0:09:8b:b1:20:80:a5: 6e:c4:55:1c:09:12:2b:fb:47:90:e6:66:3d:c4:a5: 3d:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:0D:68:E8:C5:CB:E9:30:35:53:91:1E:B0:E5:17:F2:99:34:03:F4 X509v3 Authority Key Identifier: keyid:5E:E7:14:60:D6:37:28:AC:5E:AB:91:8A:54:1D:0D:70:51:57:7D:4D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B758E/E799F922D53D11EE8F1E8A85C4F9AE02/XucUYNY3KKxeq5GKVB0NcFFXfU0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XucUYNY3KKxeq5GKVB0NcFFXfU0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B758E/E799F922D53D11EE8F1E8A85C4F9AE02/XucUYNY3KKxeq5GKVB0NcFFXfU0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 77:0b:c7:d1:0e:67:b1:db:6a:bd:d2:54:65:e3:18:b5:e1:04: a0:a5:4e:1c:a6:79:83:f8:f8:2d:b0:e0:ff:51:13:08:e2:0e: fa:00:72:1d:d3:72:2c:25:39:36:37:12:c8:da:32:a6:60:1a: cd:23:6c:27:c6:b6:21:2c:3f:72:13:5f:a4:e2:dd:c3:6d:16: af:8c:26:36:a7:62:81:39:8f:5a:b5:cf:a9:e6:2c:cb:af:e6: bc:3a:22:d7:2e:7f:d3:25:03:5f:31:f3:49:2f:e6:e6:7e:78: 71:ad:e3:91:23:de:53:8d:eb:f4:6b:9c:2e:54:b4:76:19:78: 86:1e:7e:56:e4:fe:9d:87:32:19:9c:48:8b:87:1c:30:ab:f1: 3d:d3:ed:ec:87:f9:3f:1c:78:b3:66:b2:7b:16:b7:15:04:80: 4e:8a:f5:ac:16:18:00:f7:69:0b:8f:1d:55:89:eb:01:8c:12: 45:17:04:d2:2f:0b:f4:4f:34:4b:c1:e9:0f:b7:51:f1:e2:2b: 23:4a:17:49:6a:09:67:a5:16:51:c4:85:ad:44:9c:e9:be:96: 22:5b:80:85:f0:f6:20:19:f2:bb:60:a0:9f:13:64:eb:1b:36: 28:44:87:2a:da:f8:bb:b4:19:cd:ea:f1:18:09:91:01:45:c0: 8e:0f:ed:eb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qjc1OEUxMTAvBgNVBAUTKDVFRTcxNDYwRDYzNzI4QUM1RUFCOTE4QTU0MUQwRDcw NTE1NzdENEQwHhcNMjQxMTI1MDQzMTI0WhcNMjQxMjAyMDQzMTI0WjAYMRYwFAYD VQQDEw02NzQzZmQ5Yy01MDZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnFxftqVn04dmifLgO2Jk+XZ0IT0QWjzZOC3iQQkKjUchsNEQdqoeLtFLJgaH Uq/WMnVo86TCA6O5CRugJ1g/HWHj9Yixjo/XXahYPyGj20ydRzfMB3e1ExLKgFkg 0dq86gXLMfHtmz6hxgjpe0FW7fZDLm8KEGdGawjpVcX36jPOyBI9RZuOOwI+tW0v /szhBI3g6polCWjFvQqisDR1/Ury+7PX47SHEeVdEK7pYKxda0cHsfd/Ok17le8t jv07UrtDkCl3JIhoSeJlwFjrwwu9+wGNuBaC1ryemXPUpknrDvmpGT8yCKAJi7Eg gKVuxFUcCRIr+0eQ5mY9xKU97QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFO0NaOjF y+kwNVORHrDlF/KZNAP0MB8GA1UdIwQYMBaAFF7nFGDWNyisXquRilQdDXBRV31N MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNzU4RS9FNzk5RjkyMkQ1 M0QxMUVFOEYxRThBODVDNEY5QUUwMi9YdWNVWU5ZM0tLeGVxNUdLVkIwTmNGRlhm VTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1h1Y1VZTlkzS0t4ZXE1R0tWQjBOY0ZGWGZVMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NzU4RS9FNzk5RjkyMkQ1M0QxMUVFOEYxRThBODVDNEY5QUUwMi9YdWNVWU5ZM0tL eGVxNUdLVkIwTmNGRlhmVTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB3C8fRDmex22q90lRl4xi14QSgpU4cpnmD+PgtsOD/URMI4g76AHId 03IsJTk2NxLI2jKmYBrNI2wnxrYhLD9yE1+k4t3DbRavjCY2p2KBOY9atc+p5izL r+a8OiLXLn/TJQNfMfNJL+bmfnhxreORI95Tjev0a5wuVLR2GXiGHn5W5P6dhzIZ nEiLhxwwq/E90+3sh/k/HHizZrJ7FrcVBIBOivWsFhgA92kLjx1ViesBjBJFFwTS Lwv0TzRLwekPt1Hx4isjShdJaglnpRZRxIWtRJzpvpYiW4CF8PYgGfK7YKCfE2Tr GzYoRIcq2vi7tBnN6vEYCZEBRcCOD+3r -----END CERTIFICATE-----Generated at Mon Nov 25 06:05:10 2024 by rpki-client on console-fra.rpki-client.org