$ rpki-client -vvf rpki.apnic.net/member_repository/A91BCF31/AF7FED62AA4E11EA9D8EC782C4F9AE02/X45P1KbdY15DeC5aBVYiyrJlSjc.mft File: X45P1KbdY15DeC5aBVYiyrJlSjc.mft (raw, json) Hash identifier: qYQ7TIxRuvxVqh60ssNF8VA/F3fGa9XchVqtkkzILnQ= Subject key identifier: 90:94:23:B7:98:B0:3C:1F:C2:AA:A5:CD:1B:3F:8E:43:61:D2:75:08 Authority key identifier: 5F:8E:4F:D4:A6:DD:63:5E:43:78:2E:5A:05:56:22:CA:B2:65:4A:37 Certificate issuer: /CN=A91BCF31/serialNumber=5F8E4FD4A6DD635E43782E5A055622CAB2654A37 Certificate serial: 089B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X45P1KbdY15DeC5aBVYiyrJlSjc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BCF31/AF7FED62AA4E11EA9D8EC782C4F9AE02/X45P1KbdY15DeC5aBVYiyrJlSjc.mft Manifest number: 0895 Signing time: Fri 22 Nov 2024 20:18:14 +0000 Manifest this update: Fri 22 Nov 2024 20:18:14 +0000 Manifest next update: Fri 29 Nov 2024 20:18:14 +0000 Files and hashes: 1: X45P1KbdY15DeC5aBVYiyrJlSjc.crl (hash: iE3KJvqyt5kOJ+ZoWWzyoeF/o5eTEHsPBlZcPM4W0hE=) 2: B757FF4EAB8311EA9983D717C4F9AE02.roa (hash: DFYmotmgpsB5tTA/60Ic5g7wJNaP0r3jSSNRCaoltrE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BCF31/AF7FED62AA4E11EA9D8EC782C4F9AE02/X45P1KbdY15DeC5aBVYiyrJlSjc.crl rsync://rpki.apnic.net/member_repository/A91BCF31/AF7FED62AA4E11EA9D8EC782C4F9AE02/X45P1KbdY15DeC5aBVYiyrJlSjc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X45P1KbdY15DeC5aBVYiyrJlSjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:18:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2203 (0x89b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BCF31/serialNumber=5F8E4FD4A6DD635E43782E5A055622CAB2654A37 Validity Not Before: Nov 22 20:18:14 2024 GMT Not After : Nov 29 20:18:14 2024 GMT Subject: CN=6740e706-a026 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:7d:f6:ac:c2:35:59:96:cc:24:3f:16:51:3f: f7:f3:6d:e0:8e:5f:08:2c:37:df:39:d1:4a:89:d1: 28:b6:f0:b1:05:34:3d:ae:e8:91:82:64:d2:b9:e8: 4d:18:67:7d:a3:1f:62:03:2a:62:e1:a1:d3:17:d4: 6c:77:2b:cb:7a:fb:b2:ca:39:85:c6:7d:c1:5b:2f: 99:37:29:53:44:ff:48:fb:8f:2c:c0:b3:99:83:9c: 3d:44:70:b0:cf:d9:aa:d0:13:8c:e0:ae:6f:41:48: 15:d8:7c:e3:74:5a:11:1d:22:0c:da:e5:cb:09:f8: d4:ed:96:e2:33:cd:ed:cd:de:04:23:50:cc:01:65: 84:f9:b0:6f:cd:13:91:b8:fa:9c:4c:92:c3:df:70: 64:63:cf:44:43:11:fe:d5:ad:39:44:c1:03:69:d9: 4f:4a:4b:b5:41:05:d5:b0:b0:e1:27:d5:5f:a4:00: fb:45:6f:5a:8e:27:06:d6:e1:ff:b5:c9:24:ea:f3: f2:3f:85:04:4a:0d:06:f4:f0:00:f7:2e:92:68:3f: 23:b6:e0:dc:cf:66:f9:93:b6:cd:0e:b2:10:ab:2d: 61:6b:b1:1c:1e:4f:6f:85:6d:5e:0d:96:83:20:d7: 97:e8:a6:7a:e7:40:a4:88:5b:99:1e:89:71:bd:51: 97:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:94:23:B7:98:B0:3C:1F:C2:AA:A5:CD:1B:3F:8E:43:61:D2:75:08 X509v3 Authority Key Identifier: keyid:5F:8E:4F:D4:A6:DD:63:5E:43:78:2E:5A:05:56:22:CA:B2:65:4A:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BCF31/AF7FED62AA4E11EA9D8EC782C4F9AE02/X45P1KbdY15DeC5aBVYiyrJlSjc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X45P1KbdY15DeC5aBVYiyrJlSjc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BCF31/AF7FED62AA4E11EA9D8EC782C4F9AE02/X45P1KbdY15DeC5aBVYiyrJlSjc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 47:8e:7e:9f:f3:83:f0:9c:9e:c4:3b:16:a4:82:71:d0:2b:2a: 54:b6:2d:6b:ce:0e:2d:ec:dc:e3:0b:89:24:cd:8c:a1:7e:34: 24:90:65:6e:32:0d:f6:98:22:aa:b6:1a:37:fb:47:35:25:23: d4:36:04:23:8d:77:c3:7b:56:67:1c:54:98:ab:ac:87:2f:86: 1e:c8:10:4c:54:8e:0c:ee:29:e5:f6:bb:24:a5:78:cb:9d:13: 48:fc:ba:b5:ab:24:cd:bd:a8:51:0a:93:56:af:ac:ca:95:e8: a3:9c:3a:ce:f4:7d:e9:e0:43:e1:88:59:5f:19:d2:2e:7a:ea: f4:91:71:8e:47:65:6e:91:94:92:85:89:ec:b3:7e:78:4b:46: 82:27:4e:d1:d2:c7:36:a9:4b:c6:2f:5e:e5:37:5b:82:6c:cd: 72:7f:ab:a8:b4:90:a0:88:cc:6a:63:dc:c3:cd:07:b2:a9:e6: 04:87:c9:78:3b:14:b4:59:dd:a7:b6:c7:d7:5c:7a:a9:10:ea: 89:22:8d:39:82:ec:3c:91:c5:37:59:1c:a5:89:32:06:83:d6: e9:89:ed:b3:f2:4b:94:ca:d4:36:9d:c3:c4:e1:62:36:72:5f: e1:3d:c5:fe:03:61:18:56:22:6a:07:a5:7b:f1:5d:39:5e:1e: 66:97:9d:bc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCJswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkNGMzExMTAvBgNVBAUTKDVGOEU0RkQ0QTZERDYzNUU0Mzc4MkU1QTA1NTYyMkNB QjI2NTRBMzcwHhcNMjQxMTIyMjAxODE0WhcNMjQxMTI5MjAxODE0WjAYMRYwFAYD VQQDEw02NzQwZTcwNi1hMDI2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsX32rMI1WZbMJD8WUT/3823gjl8ILDffOdFKidEotvCxBTQ9ruiRgmTSuehN GGd9ox9iAypi4aHTF9RsdyvLevuyyjmFxn3BWy+ZNylTRP9I+48swLOZg5w9RHCw z9mq0BOM4K5vQUgV2HzjdFoRHSIM2uXLCfjU7ZbiM83tzd4EI1DMAWWE+bBvzROR uPqcTJLD33BkY89EQxH+1a05RMEDadlPSku1QQXVsLDhJ9VfpAD7RW9ajicG1uH/ tckk6vPyP4UESg0G9PAA9y6SaD8jtuDcz2b5k7bNDrIQqy1ha7EcHk9vhW1eDZaD INeX6KZ650CkiFuZHolxvVGXMwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJCUI7eY sDwfwqqlzRs/jkNh0nUIMB8GA1UdIwQYMBaAFF+OT9Sm3WNeQ3guWgVWIsqyZUo3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQ0YzMS9BRjdGRUQ2MkFB NEUxMUVBOUQ4RUM3ODJDNEY5QUUwMi9YNDVQMUtiZFkxNURlQzVhQlZZaXlySmxT amMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1g0NVAxS2JkWTE1RGVDNWFCVllpeXJKbFNqYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC Q0YzMS9BRjdGRUQ2MkFBNEUxMUVBOUQ4RUM3ODJDNEY5QUUwMi9YNDVQMUtiZFkx NURlQzVhQlZZaXlySmxTamMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBHjn6f84PwnJ7EOxakgnHQKypUti1rzg4t7NzjC4kkzYyhfjQkkGVu Mg32mCKqtho3+0c1JSPUNgQjjXfDe1ZnHFSYq6yHL4YeyBBMVI4M7inl9rskpXjL nRNI/Lq1qyTNvahRCpNWr6zKleijnDrO9H3p4EPhiFlfGdIueur0kXGOR2VukZSS hYnss354S0aCJ07R0sc2qUvGL17lN1uCbM1yf6uotJCgiMxqY9zDzQeyqeYEh8l4 OxS0Wd2ntsfXXHqpEOqJIo05guw8kcU3WRyliTIGg9bpie2z8kuUytQ2ncPE4WI2 cl/hPcX+A2EYViJqB6V78V05Xh5ml528 -----END CERTIFICATE-----Generated at Fri Nov 22 22:14:39 2024 by rpki-client on console-ams.rpki-client.org