$ rpki-client -vvf rpki.apnic.net/member_repository/A91BF2FD/638D62A0E11211EEAC786138C4F9AE02/XytYId1DwpQ50rruW9wEMpHEe68.mft File: XytYId1DwpQ50rruW9wEMpHEe68.mft (raw, json) Hash identifier: DQfSMwoIyj2J1CSn2Ecvh9LK9TuUcGO2u8YRPSU+dPo= Subject key identifier: AE:06:7D:0D:DC:26:26:27:90:A2:A7:22:91:CF:49:96:B2:54:2B:F7 Authority key identifier: 5F:2B:58:21:DD:43:C2:94:39:D2:BA:EE:5B:DC:04:32:91:C4:7B:AF Certificate issuer: /CN=A91BF2FD/serialNumber=5F2B5821DD43C29439D2BAEE5BDC043291C47BAF Certificate serial: 86 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XytYId1DwpQ50rruW9wEMpHEe68.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BF2FD/638D62A0E11211EEAC786138C4F9AE02/XytYId1DwpQ50rruW9wEMpHEe68.mft Manifest number: 83 Signing time: Sat 23 Nov 2024 04:38:02 +0000 Manifest this update: Sat 23 Nov 2024 04:38:01 +0000 Manifest next update: Sat 30 Nov 2024 04:38:01 +0000 Files and hashes: 1: XytYId1DwpQ50rruW9wEMpHEe68.crl (hash: imxrw7RNNpI4FEAVtwCRPurNZD8tihqAjJ0psJvkI9M=) 2: 199F588CE21711EE913F3E62C4F9AE02.roa (hash: 3MMDEbkkdNFM/djNh0ORf8UHeAKMwjP4dT3GZUmqZZQ=) 3: F5A311DAE21611EEB7B0D361C4F9AE02.roa (hash: 7eg8s3nshujJWlMFILJG4nxViOoj4GxAMrDMLj0daAk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BF2FD/638D62A0E11211EEAC786138C4F9AE02/XytYId1DwpQ50rruW9wEMpHEe68.crl rsync://rpki.apnic.net/member_repository/A91BF2FD/638D62A0E11211EEAC786138C4F9AE02/XytYId1DwpQ50rruW9wEMpHEe68.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XytYId1DwpQ50rruW9wEMpHEe68.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 134 (0x86) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BF2FD/serialNumber=5F2B5821DD43C29439D2BAEE5BDC043291C47BAF Validity Not Before: Nov 23 04:38:01 2024 GMT Not After : Nov 30 04:38:01 2024 GMT Subject: CN=67415c2a-f13c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:ba:6a:29:41:29:0e:e5:cf:59:4e:a5:bd:b6: 09:07:eb:1a:b3:4f:aa:18:f6:39:06:4b:a8:ad:fa: 6b:96:2e:92:e8:64:78:f0:2a:1e:0e:b0:51:e0:e6: 3d:5b:f4:0f:27:1e:c9:b4:aa:e4:9c:2f:d8:bf:28: 3d:9a:b0:8a:fa:c6:7f:b3:a8:97:c2:11:af:54:d3: 1e:90:33:1b:07:03:25:43:de:08:dd:32:32:a6:68: b0:af:d0:16:bc:31:25:4e:11:fb:2d:95:ba:11:b8: 5a:84:cd:28:2f:97:75:3c:39:29:e7:ac:05:8e:77: 66:79:fa:42:a6:fa:2d:1d:da:d9:12:86:d6:9b:16: 60:67:bf:40:02:d8:71:f4:1d:4f:19:19:3e:9d:84: 32:7e:82:cd:98:41:fe:70:f8:da:45:43:c5:48:9d: 06:ea:6f:38:1a:3c:03:86:4d:83:16:b1:80:b1:f3: fd:51:17:1e:50:04:fa:17:e6:ce:bd:05:cf:11:b8: fc:17:bf:66:f5:7d:db:34:a9:a8:83:e5:be:d1:75: 89:66:a4:99:66:46:c8:cd:08:96:57:d1:a2:1b:33: 0e:cc:8b:9f:4d:43:69:7c:b9:cf:cb:c1:98:99:2f: 0e:a8:07:e3:03:b2:a2:42:c1:1c:ab:2b:4a:4c:a0: cf:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:06:7D:0D:DC:26:26:27:90:A2:A7:22:91:CF:49:96:B2:54:2B:F7 X509v3 Authority Key Identifier: keyid:5F:2B:58:21:DD:43:C2:94:39:D2:BA:EE:5B:DC:04:32:91:C4:7B:AF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BF2FD/638D62A0E11211EEAC786138C4F9AE02/XytYId1DwpQ50rruW9wEMpHEe68.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XytYId1DwpQ50rruW9wEMpHEe68.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BF2FD/638D62A0E11211EEAC786138C4F9AE02/XytYId1DwpQ50rruW9wEMpHEe68.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 02:a6:b8:b7:2d:1b:5e:71:1f:cb:cb:79:45:4e:90:f8:a5:61: 22:c7:69:a1:f6:d1:e6:e2:d7:0e:1f:17:0c:e0:65:67:5b:47: 0c:7a:7e:0f:73:a1:8b:19:cb:f7:d5:40:1f:96:3e:d4:c5:f1: 21:23:be:96:18:a3:35:9a:1b:23:c8:85:cc:5b:2e:fa:82:c8: ef:ad:70:62:b8:0b:cd:66:dd:7f:e4:7a:a3:bb:d1:37:5c:cf: 87:11:78:0b:b4:4b:56:ed:9a:4c:82:75:de:68:3b:5d:13:3e: c3:c1:1c:cb:a5:fa:c1:64:fb:c1:b0:ea:5f:b7:81:a8:44:59: 4d:9d:d9:78:7e:0c:9f:09:62:fa:ab:1e:4f:5a:98:7b:fd:88: 84:b7:7a:d4:40:1a:3a:6e:a6:04:fe:27:b5:9e:1a:91:91:f2: 75:5c:3f:bc:87:0e:1e:30:1a:77:30:d0:71:45:c7:e6:1d:b8: 23:0d:ee:61:c2:b9:21:53:7b:0f:a9:c9:f2:36:5e:78:64:c5: 48:cf:1b:d8:f6:e3:a5:b0:8d:75:17:4f:a6:7a:15:b0:76:0a: 04:8d:fe:df:d6:0a:79:18:1d:49:61:1b:fc:5f:a7:9c:ea:d2: be:3b:2f:0a:67:d6:e4:76:06:41:42:a5:f8:a2:a1:17:ba:5e: 9c:b8:16:2c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkYyRkQxMTAvBgNVBAUTKDVGMkI1ODIxREQ0M0MyOTQzOUQyQkFFRTVCREMwNDMy OTFDNDdCQUYwHhcNMjQxMTIzMDQzODAxWhcNMjQxMTMwMDQzODAxWjAYMRYwFAYD VQQDEw02NzQxNWMyYS1mMTNjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy7pqKUEpDuXPWU6lvbYJB+sas0+qGPY5Bkuorfprli6S6GR48CoeDrBR4OY9 W/QPJx7JtKrknC/Yvyg9mrCK+sZ/s6iXwhGvVNMekDMbBwMlQ94I3TIypmiwr9AW vDElThH7LZW6EbhahM0oL5d1PDkp56wFjndmefpCpvotHdrZEobWmxZgZ79AAthx 9B1PGRk+nYQyfoLNmEH+cPjaRUPFSJ0G6m84GjwDhk2DFrGAsfP9URceUAT6F+bO vQXPEbj8F79m9X3bNKmog+W+0XWJZqSZZkbIzQiWV9GiGzMOzIufTUNpfLnPy8GY mS8OqAfjA7KiQsEcqytKTKDPPQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFK4GfQ3c JiYnkKKnIpHPSZayVCv3MB8GA1UdIwQYMBaAFF8rWCHdQ8KUOdK67lvcBDKRxHuv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCRjJGRC82MzhENjJBMEUx MTIxMUVFQUM3ODYxMzhDNEY5QUUwMi9YeXRZSWQxRHdwUTUwcnJ1Vzl3RU1wSEVl NjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1h5dFlJZDFEd3BRNTBycnVXOXdFTXBIRWU2OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC RjJGRC82MzhENjJBMEUxMTIxMUVFQUM3ODYxMzhDNEY5QUUwMi9YeXRZSWQxRHdw UTUwcnJ1Vzl3RU1wSEVlNjgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQACpri3LRtecR/Ly3lFTpD4pWEix2mh9tHm4tcOHxcM4GVnW0cMen4P c6GLGcv31UAflj7UxfEhI76WGKM1mhsjyIXMWy76gsjvrXBiuAvNZt1/5Hqju9E3 XM+HEXgLtEtW7ZpMgnXeaDtdEz7DwRzLpfrBZPvBsOpft4GoRFlNndl4fgyfCWL6 qx5PWph7/YiEt3rUQBo6bqYE/ie1nhqRkfJ1XD+8hw4eMBp3MNBxRcfmHbgjDe5h wrkhU3sPqcnyNl54ZMVIzxvY9uOlsI11F0+mehWwdgoEjf7f1gp5GB1JYRv8X6ec 6tK+Oy8KZ9bkdgZBQqX4oqEXul6cuBYs -----END CERTIFICATE-----Generated at Sat Nov 23 06:21:29 2024 by rpki-client on console-fra.rpki-client.org