$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE285/5E1648B684BC11EAA5262263C4F9AE02/X4rzWXP9T6Vj8ztzdlNGghB7yPk.mft File: X4rzWXP9T6Vj8ztzdlNGghB7yPk.mft (raw, json) Hash identifier: LRIOnZb7p2ocGLxLoDmS0QJYAmm3PBOAfrzS47KDxfY= Subject key identifier: 03:58:27:5C:6D:B8:4B:ED:29:94:AF:8A:2B:91:48:73:3B:65:31:34 Authority key identifier: 5F:8A:F3:59:73:FD:4F:A5:63:F3:3B:73:76:53:46:82:10:7B:C8:F9 Certificate issuer: /CN=A91CE285/serialNumber=5F8AF35973FD4FA563F33B7376534682107BC8F9 Certificate serial: 0959 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X4rzWXP9T6Vj8ztzdlNGghB7yPk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE285/5E1648B684BC11EAA5262263C4F9AE02/X4rzWXP9T6Vj8ztzdlNGghB7yPk.mft Manifest number: 0953 Signing time: Fri 22 Nov 2024 19:58:38 +0000 Manifest this update: Fri 22 Nov 2024 19:58:38 +0000 Manifest next update: Fri 29 Nov 2024 19:58:38 +0000 Files and hashes: 1: X4rzWXP9T6Vj8ztzdlNGghB7yPk.crl (hash: nWQqnKkV1O6gugiD1zZiDMO49A3lkmPcq80Gh/08YCo=) 2: E5C4974689CF11EAA39AF441C4F9AE02.roa (hash: FJBYOIrltpRMrNwPrut4yj3xc+CpMT9AOJtC+2kI31Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE285/5E1648B684BC11EAA5262263C4F9AE02/X4rzWXP9T6Vj8ztzdlNGghB7yPk.crl rsync://rpki.apnic.net/member_repository/A91CE285/5E1648B684BC11EAA5262263C4F9AE02/X4rzWXP9T6Vj8ztzdlNGghB7yPk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X4rzWXP9T6Vj8ztzdlNGghB7yPk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 19:56:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2393 (0x959) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE285/serialNumber=5F8AF35973FD4FA563F33B7376534682107BC8F9 Validity Not Before: Nov 22 19:58:38 2024 GMT Not After : Nov 29 19:58:38 2024 GMT Subject: CN=6740e26e-b397 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:eb:04:e6:82:a0:1a:4b:6f:e4:ca:7c:fb:5c: 66:04:05:6e:63:1d:af:d8:41:3b:31:a4:64:98:bd: b3:a9:ce:7a:3a:a6:c9:59:c4:9d:22:9a:fa:ea:ce: 1d:e2:4c:75:bd:2d:be:b8:2d:44:78:94:d3:4b:82: d1:16:4e:06:6f:71:53:35:43:6c:ce:90:71:cc:9a: 9d:a1:98:f8:79:6c:62:1a:84:9a:8f:ed:e7:c1:43: 02:cb:9e:21:2a:c3:6c:de:28:49:34:4c:99:41:aa: b8:06:8a:92:13:25:78:9c:c9:3f:43:d6:ef:8c:aa: 23:57:43:e2:ec:4f:8a:17:5d:60:a8:02:dd:11:49: 88:5e:8e:ec:19:65:87:3b:16:2d:5d:9b:34:b4:c9: 1e:bf:ca:32:8a:16:29:69:d7:da:b8:e1:ba:1c:3a: 9d:e0:c3:be:00:eb:36:b6:97:47:72:ce:6b:f7:60: 49:e1:a5:0f:7c:0f:b4:99:83:da:13:5b:89:9a:d1: 9b:33:ce:0a:08:a5:a5:3c:2c:c7:e4:d2:af:fe:e6: ee:07:6f:05:f3:70:37:7a:4f:87:42:07:97:aa:4e: 32:a1:a1:12:72:93:0e:9e:a9:f4:20:f2:5e:f2:29: f7:56:82:30:22:09:35:fa:77:ea:a0:3d:cf:d1:6a: 55:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:58:27:5C:6D:B8:4B:ED:29:94:AF:8A:2B:91:48:73:3B:65:31:34 X509v3 Authority Key Identifier: keyid:5F:8A:F3:59:73:FD:4F:A5:63:F3:3B:73:76:53:46:82:10:7B:C8:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE285/5E1648B684BC11EAA5262263C4F9AE02/X4rzWXP9T6Vj8ztzdlNGghB7yPk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X4rzWXP9T6Vj8ztzdlNGghB7yPk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE285/5E1648B684BC11EAA5262263C4F9AE02/X4rzWXP9T6Vj8ztzdlNGghB7yPk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 22:39:e8:ab:b8:5a:98:93:c4:2b:d3:4f:e3:89:8d:dc:d2:ea: d7:6f:20:24:a7:fb:8e:11:5a:4f:e1:c0:44:f9:bb:cd:c6:01: 63:e4:67:6c:45:ba:b6:67:e2:3a:72:2d:ec:86:ac:3a:af:f5: bd:90:52:cb:b1:d5:4b:95:b3:76:cb:7a:55:98:11:4b:e1:de: 7d:50:f3:77:f6:b1:bb:43:98:d6:05:bd:6b:d4:d9:4c:c0:de: 73:8e:85:a6:c3:9d:74:14:4f:04:ab:0a:de:65:6f:d6:72:94: 15:9c:f0:9e:63:c3:6d:36:e9:6e:a8:d0:cb:97:7f:05:e6:d7: 89:21:29:81:13:0e:45:96:47:62:9d:95:d2:b5:c9:ff:80:f3: 04:5a:90:28:8a:3a:2f:16:af:cb:74:bc:33:23:9b:33:44:5c: 4d:c4:05:1a:2d:a5:51:17:12:cf:8a:01:e6:55:7d:12:33:df: 87:36:c6:96:c3:16:df:c7:e5:57:e1:7d:b1:09:24:85:ba:d0: b6:10:3f:f3:b8:12:15:bd:1c:01:37:e2:2d:e3:a6:28:85:3c: e4:67:2f:40:a9:17:0a:ac:68:96:1f:3d:68:c7:3b:d3:b1:b0: b3:0d:79:b6:99:45:19:be:88:0b:45:ce:e7:9d:de:61:42:59: 6a:46:da:60 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCVkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0UyODUxMTAvBgNVBAUTKDVGOEFGMzU5NzNGRDRGQTU2M0YzM0I3Mzc2NTM0Njgy MTA3QkM4RjkwHhcNMjQxMTIyMTk1ODM4WhcNMjQxMTI5MTk1ODM4WjAYMRYwFAYD VQQDEw02NzQwZTI2ZS1iMzk3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw+sE5oKgGktv5Mp8+1xmBAVuYx2v2EE7MaRkmL2zqc56OqbJWcSdIpr66s4d 4kx1vS2+uC1EeJTTS4LRFk4Gb3FTNUNszpBxzJqdoZj4eWxiGoSaj+3nwUMCy54h KsNs3ihJNEyZQaq4BoqSEyV4nMk/Q9bvjKojV0Pi7E+KF11gqALdEUmIXo7sGWWH OxYtXZs0tMkev8oyihYpadfauOG6HDqd4MO+AOs2tpdHcs5r92BJ4aUPfA+0mYPa E1uJmtGbM84KCKWlPCzH5NKv/ubuB28F83A3ek+HQgeXqk4yoaEScpMOnqn0IPJe 8in3VoIwIgk1+nfqoD3P0WpVEwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFANYJ1xt uEvtKZSviiuRSHM7ZTE0MB8GA1UdIwQYMBaAFF+K81lz/U+lY/M7c3ZTRoIQe8j5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTI4NS81RTE2NDhCNjg0 QkMxMUVBQTUyNjIyNjNDNEY5QUUwMi9YNHJ6V1hQOVQ2Vmo4enR6ZGxOR2doQjd5 UGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1g0cnpXWFA5VDZWajh6dHpkbE5HZ2hCN3lQay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RTI4NS81RTE2NDhCNjg0QkMxMUVBQTUyNjIyNjNDNEY5QUUwMi9YNHJ6V1hQOVQ2 Vmo4enR6ZGxOR2doQjd5UGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAiOeiruFqYk8Qr00/jiY3c0urXbyAkp/uOEVpP4cBE+bvNxgFj5Gds Rbq2Z+I6ci3shqw6r/W9kFLLsdVLlbN2y3pVmBFL4d59UPN39rG7Q5jWBb1r1NlM wN5zjoWmw510FE8EqwreZW/WcpQVnPCeY8NtNuluqNDLl38F5teJISmBEw5Flkdi nZXStcn/gPMEWpAoijovFq/LdLwzI5szRFxNxAUaLaVRFxLPigHmVX0SM9+HNsaW wxbfx+VX4X2xCSSFutC2ED/zuBIVvRwBN+It46YohTzkZy9AqRcKrGiWHz1oxzvT sbCzDXm2mUUZvogLRc7nnd5hQllqRtpg -----END CERTIFICATE-----Generated at Fri Nov 22 21:05:33 2024 by rpki-client on console-fra.rpki-client.org