$ rpki-client -vvf rpki.apnic.net/member_repository/A91D0C14/8F3399966BFB11EF84632635C4F9AE02/xhVwDXyIi-a6dQrezZTYhkaC42E.mft File: xhVwDXyIi-a6dQrezZTYhkaC42E.mft (raw, json) Hash identifier: 0x5Y2UqGqsmgYMUnZhWZcQjlhcaTvhIX1ZySypaJr0I= Subject key identifier: 03:8D:02:2D:C1:97:87:E1:63:23:1F:D2:76:1C:4A:65:BC:39:FA:7F Authority key identifier: C6:15:70:0D:7C:88:8B:E6:BA:75:0A:DE:CD:94:D8:86:46:82:E3:61 Certificate issuer: /CN=A91D0C14/serialNumber=C615700D7C888BE6BA750ADECD94D8864682E361 Certificate serial: 29 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xhVwDXyIi-a6dQrezZTYhkaC42E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D0C14/8F3399966BFB11EF84632635C4F9AE02/xhVwDXyIi-a6dQrezZTYhkaC42E.mft Manifest number: 29 Signing time: Thu 21 Nov 2024 01:57:34 +0000 Manifest this update: Thu 21 Nov 2024 01:57:34 +0000 Manifest next update: Thu 28 Nov 2024 01:57:33 +0000 Files and hashes: 1: xhVwDXyIi-a6dQrezZTYhkaC42E.crl (hash: KwiaP1GXtNUrsfL0ypE9lNXWUKfTLUZE2+bqgsnx344=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D0C14/8F3399966BFB11EF84632635C4F9AE02/xhVwDXyIi-a6dQrezZTYhkaC42E.crl rsync://rpki.apnic.net/member_repository/A91D0C14/8F3399966BFB11EF84632635C4F9AE02/xhVwDXyIi-a6dQrezZTYhkaC42E.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xhVwDXyIi-a6dQrezZTYhkaC42E.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 19:45:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 41 (0x29) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D0C14/serialNumber=C615700D7C888BE6BA750ADECD94D8864682E361 Validity Not Before: Nov 21 01:57:34 2024 GMT Not After : Nov 28 01:57:33 2024 GMT Subject: CN=673e938e-b4ba Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:f5:8c:3c:73:97:ef:b7:fc:ce:aa:8d:f5:e5: 4e:d2:f7:8e:da:44:24:51:df:ad:10:dd:40:42:25: 89:90:31:b7:16:93:ea:67:6c:ec:f1:e0:41:2c:f9: a8:fa:a8:38:c7:f5:27:7d:7b:1a:98:13:33:bc:a2: 98:bb:a4:5d:c3:d9:5c:70:15:90:6b:dc:f3:35:36: 1c:01:58:c6:40:a3:17:db:b4:1d:f3:61:12:f3:e7: 01:43:59:3d:1b:2f:83:d8:ad:c7:90:52:fd:a1:cf: 28:e7:26:75:c8:f0:5c:25:1c:ee:5b:9d:55:c4:39: 69:84:cc:cb:b0:7e:76:72:df:c3:27:6d:f6:4a:6a: 9f:eb:e1:be:2a:97:5c:82:95:4d:bf:80:f8:95:85: c2:f0:7c:a2:38:b8:e3:de:94:3d:7c:58:25:3a:e4: b6:d9:0a:6f:cf:5c:da:e8:3a:0f:60:bf:7c:53:24: 9f:75:74:e5:83:88:d5:b1:11:66:48:2b:82:18:94: c7:b6:9b:17:34:09:ef:1f:e4:70:5c:62:17:31:d1: 7c:7d:dc:8f:6d:8c:cc:eb:f2:b7:4a:50:03:d8:76: f1:7a:95:9c:da:89:20:ed:af:76:16:c4:a4:88:19: 6d:c3:36:6e:be:20:44:eb:ae:ce:96:65:db:9f:81: a3:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:8D:02:2D:C1:97:87:E1:63:23:1F:D2:76:1C:4A:65:BC:39:FA:7F X509v3 Authority Key Identifier: keyid:C6:15:70:0D:7C:88:8B:E6:BA:75:0A:DE:CD:94:D8:86:46:82:E3:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D0C14/8F3399966BFB11EF84632635C4F9AE02/xhVwDXyIi-a6dQrezZTYhkaC42E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xhVwDXyIi-a6dQrezZTYhkaC42E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D0C14/8F3399966BFB11EF84632635C4F9AE02/xhVwDXyIi-a6dQrezZTYhkaC42E.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 36:1f:8d:41:6a:11:b6:85:d4:03:6c:2d:c7:d0:ca:79:e6:f2: 3f:40:6a:d4:3d:06:26:80:20:04:33:e2:0e:a2:fa:c3:09:2f: 88:cc:e4:5f:9b:cb:49:aa:26:a5:9c:c8:66:b5:28:1e:2e:f0: 91:d0:b6:34:75:7c:3b:2c:d0:a5:ca:be:bb:00:4d:68:09:6a: 89:8f:73:cb:db:ff:62:8a:31:65:33:b6:e4:93:dc:54:f5:0f: c8:c6:63:3a:8c:9f:8e:21:cc:0a:34:59:c9:31:bb:c8:62:c8: 43:1e:00:17:e0:24:a4:d2:c0:a6:a3:58:9b:0e:ba:15:ee:ad: 57:aa:da:f7:a6:d3:92:ec:58:6f:b0:17:9e:1b:88:13:24:1c: c4:0b:1d:27:95:7d:95:89:68:33:08:fa:2a:59:71:e7:d0:c2: fb:a0:3e:7e:72:17:d5:60:a2:af:ae:5d:25:86:67:ec:a3:f4: bc:4d:59:45:56:e2:22:38:1e:44:ce:28:f1:cb:3a:f5:af:5b: 34:17:87:52:b2:39:dd:49:0e:f2:bb:f4:9d:1c:c3:1b:e5:16: 88:50:52:84:19:02:1d:15:49:ae:f6:18:55:ea:eb:1b:69:4f: 74:3e:a5:af:9c:01:ab:7d:b7:61:e5:9d:3e:84:91:fe:77:87: 7a:f1:42:92 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBKTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE MEMxNDExMC8GA1UEBRMoQzYxNTcwMEQ3Qzg4OEJFNkJBNzUwQURFQ0Q5NEQ4ODY0 NjgyRTM2MTAeFw0yNDExMjEwMTU3MzRaFw0yNDExMjgwMTU3MzNaMBgxFjAUBgNV BAMTDTY3M2U5MzhlLWI0YmEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDq9Yw8c5fvt/zOqo315U7S947aRCRR360Q3UBCJYmQMbcWk+pnbOzx4EEs+aj6 qDjH9Sd9exqYEzO8opi7pF3D2VxwFZBr3PM1NhwBWMZAoxfbtB3zYRLz5wFDWT0b L4PYrceQUv2hzyjnJnXI8FwlHO5bnVXEOWmEzMuwfnZy38MnbfZKap/r4b4ql1yC lU2/gPiVhcLwfKI4uOPelD18WCU65LbZCm/PXNroOg9gv3xTJJ91dOWDiNWxEWZI K4IYlMe2mxc0Ce8f5HBcYhcx0Xx93I9tjMzr8rdKUAPYdvF6lZzaiSDtr3YWxKSI GW3DNm6+IETrrs6WZdufgaM9AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUA40CLcGX h+FjIx/SdhxKZbw5+n8wHwYDVR0jBBgwFoAUxhVwDXyIi+a6dQrezZTYhkaC42Ew DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQwQzE0LzhGMzM5OTk2NkJG QjExRUY4NDYzMjYzNUM0RjlBRTAyL3hoVndEWHlJaS1hNmRRcmV6WlRZaGthQzQy RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIveGhWd0RYeUlpLWE2ZFFyZXpaVFloa2FDNDJFLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQw QzE0LzhGMzM5OTk2NkJGQjExRUY4NDYzMjYzNUM0RjlBRTAyL3hoVndEWHlJaS1h NmRRcmV6WlRZaGthQzQyRS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBADYfjUFqEbaF1ANsLcfQynnm8j9AatQ9BiaAIAQz4g6i+sMJL4jM5F+b y0mqJqWcyGa1KB4u8JHQtjR1fDss0KXKvrsATWgJaomPc8vb/2KKMWUztuST3FT1 D8jGYzqMn44hzAo0Wckxu8hiyEMeABfgJKTSwKajWJsOuhXurVeq2vem05LsWG+w F54biBMkHMQLHSeVfZWJaDMI+ipZcefQwvugPn5yF9Vgoq+uXSWGZ+yj9LxNWUVW 4iI4HkTOKPHLOvWvWzQXh1KyOd1JDvK79J0cwxvlFohQUoQZAh0VSa72GFXq6xtp T3Q+pa+cAat9t2HlnT6Ekf53h3rxQpI= -----END CERTIFICATE-----Generated at Thu Nov 21 03:12:05 2024 by rpki-client on console-fra.rpki-client.org