$ rpki-client -vvf rpki.apnic.net/member_repository/A91C9E82/EA7E5FA6636F11EE97C74B5CC4F9AE02/XnKqfVsdVjLl0z_scvp0M_Sc4po.mft File: XnKqfVsdVjLl0z_scvp0M_Sc4po.mft (raw, json) Hash identifier: 9X6er/90/DT97LpUV5/2DtZUKFjwRM5LWmVOYU1uUBw= Subject key identifier: B0:63:A3:FC:A7:D0:C6:22:FF:E1:BE:7E:AF:2E:19:E1:B4:7A:C7:86 Authority key identifier: 5E:72:AA:7D:5B:1D:56:32:E5:D3:3F:EC:72:FA:74:33:F4:9C:E2:9A Certificate issuer: /CN=A91C9E82/serialNumber=5E72AA7D5B1D5632E5D33FEC72FA7433F49CE29A Certificate serial: 010B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XnKqfVsdVjLl0z_scvp0M_Sc4po.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C9E82/EA7E5FA6636F11EE97C74B5CC4F9AE02/XnKqfVsdVjLl0z_scvp0M_Sc4po.mft Manifest number: EE Signing time: Thu 21 Nov 2024 03:46:48 +0000 Manifest this update: Thu 21 Nov 2024 03:46:47 +0000 Manifest next update: Thu 28 Nov 2024 03:46:47 +0000 Files and hashes: 1: XnKqfVsdVjLl0z_scvp0M_Sc4po.crl (hash: OLTduBMMikEMzq16/7fv+GHFGyxxC/B0bOtmmp6Rzi4=) 2: 36C31E00637111EEA51CA05EC4F9AE02.roa (hash: VRlasPmFdnGQ7jXmsGRiZ9YkkvB4UEQJbRXUpRC4bL8=) 3: 00E626A4A57611EF98285E5FC4F9AE02.roa (hash: ebTeaPrWBlAg+bHK7CkBFu5kiy7GaQn9QlJ0VdT4JzQ=) 4: 98BE8828663D11EE8CBBAE7CC4F9AE02.roa (hash: qOQvPOfqQOexW3Sxvhsqmm5W1KEN72YTFSt5Z0QktXg=) 5: 99341DD6663D11EE8CBBAE7CC4F9AE02.roa (hash: pidH+xtb8OXyN3SlmzLiBUdr0SQho8QbaXQpLP6w5rQ=) 6: 678C24C0663F11EEBD955D43C4F9AE02.roa (hash: LMxslHx0hj+eRPegweO/Q77RiY35syFR40MU3J+sT8s=) 7: 9830B6D8663D11EE8CBBAE7CC4F9AE02.roa (hash: Wa8VD0lmDOwdth5KoUIOfMLBdB57aoMl1cYAfCOjMXs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C9E82/EA7E5FA6636F11EE97C74B5CC4F9AE02/XnKqfVsdVjLl0z_scvp0M_Sc4po.crl rsync://rpki.apnic.net/member_repository/A91C9E82/EA7E5FA6636F11EE97C74B5CC4F9AE02/XnKqfVsdVjLl0z_scvp0M_Sc4po.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XnKqfVsdVjLl0z_scvp0M_Sc4po.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 03:46:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 267 (0x10b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C9E82/serialNumber=5E72AA7D5B1D5632E5D33FEC72FA7433F49CE29A Validity Not Before: Nov 21 03:46:47 2024 GMT Not After : Nov 28 03:46:47 2024 GMT Subject: CN=673ead27-7729 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:9d:c4:69:bf:dc:25:a2:29:20:90:0c:02:85: b6:18:e3:e4:3a:cd:be:ea:fa:ff:b1:7f:85:8b:2d: 79:d3:89:1e:02:b1:8a:27:69:1f:44:00:a7:5c:6d: 83:c0:af:c9:6d:df:72:e4:c0:02:e0:e9:0b:a4:fb: 84:d9:bf:b3:d4:bd:00:d8:a3:90:1a:51:df:72:56: 06:66:df:52:b7:ab:6e:18:49:d0:3b:a9:fd:2d:90: 9a:29:af:f7:d6:5b:28:ec:21:01:aa:f6:dd:35:4b: 42:01:59:58:4b:4c:3f:f9:46:b9:71:af:b0:3d:ec: 61:46:e4:94:12:ef:ee:39:09:65:48:21:7d:ed:8c: da:e7:8c:46:37:3e:d6:2e:4d:b0:13:ab:c6:9b:69: 7b:8e:51:64:45:32:28:f2:de:3b:8c:bc:e8:a6:94: 29:c9:d7:31:b2:4d:67:0c:b4:ed:19:55:bb:ff:3a: 8b:ba:63:06:74:a6:7f:db:28:3d:9e:f1:7f:d0:b1: 96:42:a9:69:25:54:6b:e4:7e:24:cf:8c:38:5e:64: 01:b7:24:81:02:b3:c5:ab:0f:75:c2:c1:d0:76:8a: 83:3b:51:4a:24:6d:4e:4d:95:3e:21:66:ef:95:e3: d6:ba:bf:48:de:a9:20:09:75:f8:9d:e8:45:a0:28: 27:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:63:A3:FC:A7:D0:C6:22:FF:E1:BE:7E:AF:2E:19:E1:B4:7A:C7:86 X509v3 Authority Key Identifier: keyid:5E:72:AA:7D:5B:1D:56:32:E5:D3:3F:EC:72:FA:74:33:F4:9C:E2:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C9E82/EA7E5FA6636F11EE97C74B5CC4F9AE02/XnKqfVsdVjLl0z_scvp0M_Sc4po.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XnKqfVsdVjLl0z_scvp0M_Sc4po.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C9E82/EA7E5FA6636F11EE97C74B5CC4F9AE02/XnKqfVsdVjLl0z_scvp0M_Sc4po.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9c:f8:5d:8f:96:db:ae:f9:e5:d6:36:73:1d:f6:07:e6:68:06: 4c:9e:52:e9:6e:18:34:a4:17:9b:50:25:78:11:21:f7:1c:d0: cd:2f:c9:ca:79:d3:68:ea:94:86:9f:03:97:ca:02:8f:d1:a5: 6c:87:0c:ba:54:5f:1f:3c:4f:10:6f:0e:7c:1c:71:62:db:27: 8a:7e:89:b1:ac:66:32:98:2b:62:81:20:ac:0e:bc:72:1e:31: da:46:57:a9:e6:f3:66:39:98:b2:ba:e5:6a:84:2c:0a:a8:a1: d7:5f:a7:52:9c:8e:59:40:2b:f3:4c:40:a7:30:01:6d:d0:58: 2c:4b:08:93:a2:8f:3f:41:e1:58:80:ba:bb:be:55:5d:72:5e: 89:27:6e:f6:21:b7:36:d2:5d:7b:30:e5:49:27:23:57:db:57: 14:53:df:a9:d0:8a:1d:b6:5f:89:f2:6b:2f:63:03:45:2f:56: 37:2e:57:d2:7b:7c:75:87:2d:b5:60:85:5a:10:dc:5f:7c:3a: 4e:f1:d1:ef:b6:c6:97:e9:2b:89:0d:a4:34:88:4c:26:29:bc: 7a:6b:30:2c:2b:76:12:7e:69:54:a1:e3:75:9c:b0:3a:a8:9f: 23:6a:f9:76:5c:e4:4d:1e:e3:2e:cc:a1:88:4d:c1:72:be:b3: a8:8b:e9:73 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzlFODIxMTAvBgNVBAUTKDVFNzJBQTdENUIxRDU2MzJFNUQzM0ZFQzcyRkE3NDMz RjQ5Q0UyOUEwHhcNMjQxMTIxMDM0NjQ3WhcNMjQxMTI4MDM0NjQ3WjAYMRYwFAYD VQQDEw02NzNlYWQyNy03NzI5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyJ3Eab/cJaIpIJAMAoW2GOPkOs2+6vr/sX+Fiy1504keArGKJ2kfRACnXG2D wK/Jbd9y5MAC4OkLpPuE2b+z1L0A2KOQGlHfclYGZt9St6tuGEnQO6n9LZCaKa/3 1lso7CEBqvbdNUtCAVlYS0w/+Ua5ca+wPexhRuSUEu/uOQllSCF97Yza54xGNz7W Lk2wE6vGm2l7jlFkRTIo8t47jLzoppQpydcxsk1nDLTtGVW7/zqLumMGdKZ/2yg9 nvF/0LGWQqlpJVRr5H4kz4w4XmQBtySBArPFqw91wsHQdoqDO1FKJG1OTZU+IWbv lePWur9I3qkgCXX4nehFoCgnXwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLBjo/yn 0MYi/+G+fq8uGeG0eseGMB8GA1UdIwQYMBaAFF5yqn1bHVYy5dM/7HL6dDP0nOKa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOUU4Mi9FQTdFNUZBNjYz NkYxMUVFOTdDNzRCNUNDNEY5QUUwMi9YbktxZlZzZFZqTGwwel9zY3ZwME1fU2M0 cG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1huS3FmVnNkVmpMbDB6X3NjdnAwTV9TYzRwby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD OUU4Mi9FQTdFNUZBNjYzNkYxMUVFOTdDNzRCNUNDNEY5QUUwMi9YbktxZlZzZFZq TGwwel9zY3ZwME1fU2M0cG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCc+F2Pltuu+eXWNnMd9gfmaAZMnlLpbhg0pBebUCV4ESH3HNDNL8nK edNo6pSGnwOXygKP0aVshwy6VF8fPE8Qbw58HHFi2yeKfomxrGYymCtigSCsDrxy HjHaRlep5vNmOZiyuuVqhCwKqKHXX6dSnI5ZQCvzTECnMAFt0FgsSwiToo8/QeFY gLq7vlVdcl6JJ272Ibc20l17MOVJJyNX21cUU9+p0Iodtl+J8msvYwNFL1Y3LlfS e3x1hy21YIVaENxffDpO8dHvtsaX6SuJDaQ0iEwmKbx6azAsK3YSfmlUoeN1nLA6 qJ8javl2XORNHuMuzKGITcFyvrOoi+lz -----END CERTIFICATE-----Generated at Thu Nov 21 05:06:04 2024 by rpki-client on console-fra.rpki-client.org