$ rpki-client -vvf rpki.apnic.net/member_repository/A91D0C14/8F3399966BFB11EF84632635C4F9AE02/xhVwDXyIi-a6dQrezZTYhkaC42E.mft File: xhVwDXyIi-a6dQrezZTYhkaC42E.mft (raw, json) Hash identifier: 9Jl/8qr2HUNt7y5T5o+d+aHZ9ErbdEmtb0gwWGGAF2M= Subject key identifier: 0D:17:31:08:40:7F:CD:20:4B:CA:D7:9E:87:DB:48:7E:3C:4D:5C:7F Authority key identifier: C6:15:70:0D:7C:88:8B:E6:BA:75:0A:DE:CD:94:D8:86:46:82:E3:61 Certificate issuer: /CN=A91D0C14/serialNumber=C615700D7C888BE6BA750ADECD94D8864682E361 Certificate serial: 1A Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xhVwDXyIi-a6dQrezZTYhkaC42E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D0C14/8F3399966BFB11EF84632635C4F9AE02/xhVwDXyIi-a6dQrezZTYhkaC42E.mft Manifest number: 1A Signing time: Wed 23 Oct 2024 02:30:47 +0000 Manifest this update: Wed 23 Oct 2024 02:30:46 +0000 Manifest next update: Wed 30 Oct 2024 02:30:46 +0000 Files and hashes: 1: xhVwDXyIi-a6dQrezZTYhkaC42E.crl (hash: JQ5dz339+Z338NQXfMFW7IHtIEPDiUEPIbx2Dy3dHBo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D0C14/8F3399966BFB11EF84632635C4F9AE02/xhVwDXyIi-a6dQrezZTYhkaC42E.crl rsync://rpki.apnic.net/member_repository/A91D0C14/8F3399966BFB11EF84632635C4F9AE02/xhVwDXyIi-a6dQrezZTYhkaC42E.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xhVwDXyIi-a6dQrezZTYhkaC42E.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 30 Oct 2024 02:30:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 26 (0x1a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D0C14/serialNumber=C615700D7C888BE6BA750ADECD94D8864682E361 Validity Not Before: Oct 23 02:30:46 2024 GMT Not After : Oct 30 02:30:46 2024 GMT Subject: CN=67185fd7-e9cf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:0f:c0:1a:ff:a5:1a:be:82:6f:e1:fe:42:ac: b9:e3:9f:85:2b:7a:13:a3:79:e4:e2:34:f9:f7:f9: 97:33:ce:46:3d:47:d8:43:7c:96:41:6e:65:6f:39: 68:3f:e2:ba:9f:cc:b1:0c:e5:d9:20:bd:28:9d:6f: 9b:b9:90:9e:f2:e6:07:4c:d3:d5:30:1f:ae:ef:e6: f5:fd:48:25:6d:18:42:69:55:ef:b9:f2:eb:a1:76: 2d:64:80:3d:ba:af:b7:33:f9:0e:51:3b:29:6a:1d: f6:d9:69:a4:f8:c3:bb:4c:95:0a:79:95:fd:9d:a6: 05:4b:e2:0c:09:de:7f:a9:26:15:39:d5:f1:a4:b5: 0d:2b:cc:36:61:e0:d6:c7:e0:da:cc:27:82:25:17: c5:e1:6d:20:5b:fa:db:8e:2e:1a:fc:4a:64:37:1c: d6:6d:0d:78:ba:4b:de:ed:5b:77:bf:58:f6:6a:c5: 72:81:39:67:df:11:b1:d0:d8:98:4d:14:34:5e:33: a5:33:03:5b:08:b3:28:60:98:03:fd:cf:91:6d:ea: 17:ad:87:f8:bf:65:58:90:56:e1:68:e6:48:15:a8: 73:85:6a:e4:8c:c9:a6:b1:63:24:37:d3:43:31:49: f5:88:01:cd:a4:50:dd:40:a6:40:7d:99:3f:71:30: b0:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:17:31:08:40:7F:CD:20:4B:CA:D7:9E:87:DB:48:7E:3C:4D:5C:7F X509v3 Authority Key Identifier: keyid:C6:15:70:0D:7C:88:8B:E6:BA:75:0A:DE:CD:94:D8:86:46:82:E3:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D0C14/8F3399966BFB11EF84632635C4F9AE02/xhVwDXyIi-a6dQrezZTYhkaC42E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xhVwDXyIi-a6dQrezZTYhkaC42E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D0C14/8F3399966BFB11EF84632635C4F9AE02/xhVwDXyIi-a6dQrezZTYhkaC42E.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a8:5a:06:9c:98:e9:8c:3b:9b:27:49:b1:31:4b:c7:5c:7a:a8: 0b:67:f8:fb:3f:3e:e8:d1:79:4c:52:4a:88:16:29:c6:d3:4c: 22:5f:ee:43:d0:c2:32:ad:5c:fe:d8:d6:06:48:0c:c1:dc:07: db:05:5f:f2:41:8c:ce:a2:fe:04:16:d0:3f:8a:c8:2a:fa:f7: a7:c6:38:90:78:ba:06:af:77:ee:4f:ec:93:e8:da:f6:e4:ba: 7d:88:c2:d9:20:5e:86:c7:d6:73:60:d7:ca:40:ad:36:5c:b7: c7:d2:ed:98:76:23:8b:43:16:81:9c:53:c8:a0:18:ef:fa:43: 3b:6e:d5:02:a1:a6:de:c1:f1:e0:bc:a1:0c:63:e6:19:8c:5f: 48:ba:ca:a5:b7:21:b3:15:7b:66:67:af:ab:25:52:41:5d:49: e0:2d:0c:84:f4:25:eb:88:d0:0d:17:4d:02:0b:34:17:1b:2c: bd:91:2a:47:96:ab:26:c9:98:f8:65:4c:4b:85:0d:eb:78:5c: 36:83:bf:93:14:ca:a9:e1:24:07:72:98:39:a2:c8:da:f3:fe: e6:4c:50:13:4a:49:51:de:6a:0d:82:24:cc:0b:7f:65:1a:f7: ca:2d:70:03:b3:b6:11:55:17:82:26:6f:a2:42:e3:1f:cb:7e: 97:14:29:67 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBGjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE MEMxNDExMC8GA1UEBRMoQzYxNTcwMEQ3Qzg4OEJFNkJBNzUwQURFQ0Q5NEQ4ODY0 NjgyRTM2MTAeFw0yNDEwMjMwMjMwNDZaFw0yNDEwMzAwMjMwNDZaMBgxFjAUBgNV BAMTDTY3MTg1ZmQ3LWU5Y2YwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC5D8Aa/6UavoJv4f5CrLnjn4UrehOjeeTiNPn3+ZczzkY9R9hDfJZBbmVvOWg/ 4rqfzLEM5dkgvSidb5u5kJ7y5gdM09UwH67v5vX9SCVtGEJpVe+58uuhdi1kgD26 r7cz+Q5ROylqHfbZaaT4w7tMlQp5lf2dpgVL4gwJ3n+pJhU51fGktQ0rzDZh4NbH 4NrMJ4IlF8XhbSBb+tuOLhr8SmQ3HNZtDXi6S97tW3e/WPZqxXKBOWffEbHQ2JhN FDReM6UzA1sIsyhgmAP9z5Ft6heth/i/ZViQVuFo5kgVqHOFauSMyaaxYyQ300Mx SfWIAc2kUN1ApkB9mT9xMLBTAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUDRcxCEB/ zSBLyteeh9tIfjxNXH8wHwYDVR0jBBgwFoAUxhVwDXyIi+a6dQrezZTYhkaC42Ew DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQwQzE0LzhGMzM5OTk2NkJG QjExRUY4NDYzMjYzNUM0RjlBRTAyL3hoVndEWHlJaS1hNmRRcmV6WlRZaGthQzQy RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIveGhWd0RYeUlpLWE2ZFFyZXpaVFloa2FDNDJFLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQw QzE0LzhGMzM5OTk2NkJGQjExRUY4NDYzMjYzNUM0RjlBRTAyL3hoVndEWHlJaS1h NmRRcmV6WlRZaGthQzQyRS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAKhaBpyY6Yw7mydJsTFLx1x6qAtn+Ps/PujReUxSSogWKcbTTCJf7kPQ wjKtXP7Y1gZIDMHcB9sFX/JBjM6i/gQW0D+KyCr696fGOJB4ugavd+5P7JPo2vbk un2IwtkgXobH1nNg18pArTZct8fS7Zh2I4tDFoGcU8igGO/6Qztu1QKhpt7B8eC8 oQxj5hmMX0i6yqW3IbMVe2Znr6slUkFdSeAtDIT0JeuI0A0XTQILNBcbLL2RKkeW qybJmPhlTEuFDet4XDaDv5MUyqnhJAdymDmiyNrz/uZMUBNKSVHeag2CJMwLf2Ua 98otcAOzthFVF4Imb6JC4x/LfpcUKWc= -----END CERTIFICATE-----Generated at Wed Oct 23 04:41:48 2024 by rpki-client on console-ams.rpki-client.org