$ rpki-client -vvf rpki.apnic.net/member_repository/A91B8265/4CD5FE0E7DC411ECA9C4431DC4F9AE02/jxHEfi_qGZwnJ8hrSZDzv66CAWI.mft File: jxHEfi_qGZwnJ8hrSZDzv66CAWI.mft (raw, json) Hash identifier: G7lBJUxq+WmRWC2D67OnsmIMgv52NLxglwt6moSnQnY= Subject key identifier: 1B:D3:40:1F:71:55:76:47:B6:04:28:94:36:18:80:6D:13:84:64:53 Authority key identifier: 8F:11:C4:7E:2F:EA:19:9C:27:27:C8:6B:49:90:F3:BF:AE:82:01:62 Certificate issuer: /CN=A91B8265/serialNumber=8F11C47E2FEA199C2727C86B4990F3BFAE820162 Certificate serial: 0392 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jxHEfi_qGZwnJ8hrSZDzv66CAWI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B8265/4CD5FE0E7DC411ECA9C4431DC4F9AE02/jxHEfi_qGZwnJ8hrSZDzv66CAWI.mft Manifest number: 0389 Signing time: Sat 23 Nov 2024 00:22:15 +0000 Manifest this update: Sat 23 Nov 2024 00:22:15 +0000 Manifest next update: Sat 30 Nov 2024 00:22:15 +0000 Files and hashes: 1: jxHEfi_qGZwnJ8hrSZDzv66CAWI.crl (hash: EjWG2ROoxQhVwULU61L1FbNMpwLRIBUzxkC2whCyueQ=) 2: D9470BFE7DC811ECB84BD174C4F9AE02.roa (hash: XBZp03p3CBLFAovdVwUeRZcGzU+Bm8gzcdv/m/ApSBQ=) 3: 84F58DCA7DCB11EC99806E25C4F9AE02.roa (hash: /8Nf4uZDSnN/p9IwW8sx2sknWcMkeU0uy8pmXCNQQ4k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B8265/4CD5FE0E7DC411ECA9C4431DC4F9AE02/jxHEfi_qGZwnJ8hrSZDzv66CAWI.crl rsync://rpki.apnic.net/member_repository/A91B8265/4CD5FE0E7DC411ECA9C4431DC4F9AE02/jxHEfi_qGZwnJ8hrSZDzv66CAWI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jxHEfi_qGZwnJ8hrSZDzv66CAWI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 914 (0x392) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B8265/serialNumber=8F11C47E2FEA199C2727C86B4990F3BFAE820162 Validity Not Before: Nov 23 00:22:15 2024 GMT Not After : Nov 30 00:22:15 2024 GMT Subject: CN=67412037-e25c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:58:c1:97:29:7e:a1:99:53:58:5e:dd:c8:59: 41:24:e7:66:05:3b:0d:3e:3f:b0:ce:be:35:f5:4b: d5:5f:03:d9:3c:22:1b:84:61:fc:81:62:1f:b5:a7: 1c:4b:ea:43:fc:74:8a:cc:97:4d:98:f4:18:f2:70: 1c:00:e8:53:8a:44:4f:fd:e0:d0:60:3c:36:ee:29: ca:2a:e5:f2:5a:59:be:35:42:cb:c0:58:7d:19:4d: 85:36:6a:a7:ab:59:c7:a7:87:ee:ff:29:25:d5:d3: 62:bc:1c:45:36:3c:b0:87:9f:68:5c:54:72:ef:05: 37:ff:0b:c3:bf:78:f5:d0:44:89:5d:84:2f:fa:c4: db:0b:f7:00:76:69:23:f0:97:42:8c:ff:4b:80:e3: a1:b7:38:7e:9e:f5:9c:d1:95:64:f2:1e:8b:fd:79: 5d:35:70:28:5b:49:bd:8b:bc:a9:db:58:dc:18:a7: be:10:10:c1:15:3f:4d:7b:b2:2c:2b:4c:1c:54:c5: 5d:bb:b0:36:0f:7c:d6:7a:d0:47:4f:ac:a7:40:c0: e4:3e:00:1b:18:05:33:e4:67:73:84:9e:6e:53:10: cd:17:fd:8f:9a:33:c5:9f:3c:b9:85:de:42:d7:bc: c3:29:4c:a5:5c:78:b8:7c:71:86:a6:b8:0c:88:5e: 3e:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:D3:40:1F:71:55:76:47:B6:04:28:94:36:18:80:6D:13:84:64:53 X509v3 Authority Key Identifier: keyid:8F:11:C4:7E:2F:EA:19:9C:27:27:C8:6B:49:90:F3:BF:AE:82:01:62 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B8265/4CD5FE0E7DC411ECA9C4431DC4F9AE02/jxHEfi_qGZwnJ8hrSZDzv66CAWI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jxHEfi_qGZwnJ8hrSZDzv66CAWI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B8265/4CD5FE0E7DC411ECA9C4431DC4F9AE02/jxHEfi_qGZwnJ8hrSZDzv66CAWI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a4:c0:6d:61:e0:9f:c8:dd:0e:26:e1:81:17:2d:13:83:e7:be: fa:f4:ae:79:38:6f:07:94:30:06:9e:ef:1e:bd:0c:86:ab:54: df:1d:c1:b5:61:3d:b7:61:4e:d1:98:e6:87:0e:26:42:e4:52: 5b:29:e3:d8:86:69:89:5c:e3:f4:ce:59:04:29:b9:15:63:be: 83:25:61:64:78:9a:01:3d:56:1b:40:b5:2b:9e:6b:fe:39:37: a2:5d:ab:58:03:5a:a6:8b:dc:0e:53:b3:9e:ea:fd:e8:b2:0d: 2b:bc:bc:dd:11:29:ab:49:ea:ec:b7:23:67:d5:a1:46:e4:c1: d2:3b:b9:6f:40:58:f0:7f:a1:96:37:91:df:f5:4b:10:a1:cf: b4:e6:56:ca:24:b2:0f:1a:ba:92:c9:01:34:19:f6:42:54:ef: 2e:53:e1:8b:aa:34:32:83:ea:db:d8:d1:b1:df:bb:bf:b4:45: 43:e1:63:ec:57:0d:5a:f6:5e:27:9a:96:2a:89:1d:0e:bb:be: 54:a9:46:cc:4f:ef:bd:35:52:b4:05:37:05:92:b5:33:f8:b8: 7d:12:ba:9e:8f:50:35:a1:4b:a6:66:d9:58:81:cc:6d:2d:38: 34:51:59:d0:15:2c:56:75:86:83:e3:a0:f8:a6:0b:13:1a:48: 69:e4:4d:fc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA5IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjgyNjUxMTAvBgNVBAUTKDhGMTFDNDdFMkZFQTE5OUMyNzI3Qzg2QjQ5OTBGM0JG QUU4MjAxNjIwHhcNMjQxMTIzMDAyMjE1WhcNMjQxMTMwMDAyMjE1WjAYMRYwFAYD VQQDEw02NzQxMjAzNy1lMjVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs1jBlyl+oZlTWF7dyFlBJOdmBTsNPj+wzr419UvVXwPZPCIbhGH8gWIftacc S+pD/HSKzJdNmPQY8nAcAOhTikRP/eDQYDw27inKKuXyWlm+NULLwFh9GU2FNmqn q1nHp4fu/ykl1dNivBxFNjywh59oXFRy7wU3/wvDv3j10ESJXYQv+sTbC/cAdmkj 8JdCjP9LgOOhtzh+nvWc0ZVk8h6L/XldNXAoW0m9i7yp21jcGKe+EBDBFT9Ne7Is K0wcVMVdu7A2D3zWetBHT6ynQMDkPgAbGAUz5GdzhJ5uUxDNF/2PmjPFnzy5hd5C 17zDKUylXHi4fHGGprgMiF4+EQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBvTQB9x VXZHtgQolDYYgG0ThGRTMB8GA1UdIwQYMBaAFI8RxH4v6hmcJyfIa0mQ87+uggFi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCODI2NS80Q0Q1RkUwRTdE QzQxMUVDQTlDNDQzMURDNEY5QUUwMi9qeEhFZmlfcUdad25KOGhyU1pEenY2NkNB V0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2p4SEVmaV9xR1p3bko4aHJTWkR6djY2Q0FXSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC ODI2NS80Q0Q1RkUwRTdEQzQxMUVDQTlDNDQzMURDNEY5QUUwMi9qeEhFZmlfcUda d25KOGhyU1pEenY2NkNBV0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCkwG1h4J/I3Q4m4YEXLROD57769K55OG8HlDAGnu8evQyGq1TfHcG1 YT23YU7RmOaHDiZC5FJbKePYhmmJXOP0zlkEKbkVY76DJWFkeJoBPVYbQLUrnmv+ OTeiXatYA1qmi9wOU7Oe6v3osg0rvLzdESmrSerstyNn1aFG5MHSO7lvQFjwf6GW N5Hf9UsQoc+05lbKJLIPGrqSyQE0GfZCVO8uU+GLqjQyg+rb2NGx37u/tEVD4WPs Vw1a9l4nmpYqiR0Ou75UqUbMT++9NVK0BTcFkrUz+Lh9Erqej1A1oUumZtlYgcxt LTg0UVnQFSxWdYaD46D4pgsTGkhp5E38 -----END CERTIFICATE-----Generated at Sat Nov 23 02:33:44 2024 by rpki-client on console-fra.rpki-client.org