$ rpki-client -vvf rpki.apnic.net/member_repository/A91D318A/F5B5CA8087E611EE97E6C746C4F9AE02/XPVbiKZp3H6CEV-AYGnzyTzmXLU.mft File: XPVbiKZp3H6CEV-AYGnzyTzmXLU.mft (raw, json) Hash identifier: luK/v0nsIAikvDCjgL9PRrt/BtnhDn+G/91jqW21zQY= Subject key identifier: 84:1E:77:09:71:17:50:67:7D:4E:4C:68:7E:22:CD:1D:FF:AD:A0:7E Authority key identifier: 5C:F5:5B:88:A6:69:DC:7E:82:11:5F:80:60:69:F3:C9:3C:E6:5C:B5 Certificate issuer: /CN=A91D318A/serialNumber=5CF55B88A669DC7E82115F806069F3C93CE65CB5 Certificate serial: BC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XPVbiKZp3H6CEV-AYGnzyTzmXLU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D318A/F5B5CA8087E611EE97E6C746C4F9AE02/XPVbiKZp3H6CEV-AYGnzyTzmXLU.mft Manifest number: BC Signing time: Sat 23 Nov 2024 03:58:43 +0000 Manifest this update: Sat 23 Nov 2024 03:58:43 +0000 Manifest next update: Sat 30 Nov 2024 03:58:43 +0000 Files and hashes: 1: XPVbiKZp3H6CEV-AYGnzyTzmXLU.crl (hash: wyvwzxlASAN9IQNddD9SVOGCPRbjNiw3K2anbSjWl18=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D318A/F5B5CA8087E611EE97E6C746C4F9AE02/XPVbiKZp3H6CEV-AYGnzyTzmXLU.crl rsync://rpki.apnic.net/member_repository/A91D318A/F5B5CA8087E611EE97E6C746C4F9AE02/XPVbiKZp3H6CEV-AYGnzyTzmXLU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XPVbiKZp3H6CEV-AYGnzyTzmXLU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 188 (0xbc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D318A/serialNumber=5CF55B88A669DC7E82115F806069F3C93CE65CB5 Validity Not Before: Nov 23 03:58:43 2024 GMT Not After : Nov 30 03:58:43 2024 GMT Subject: CN=674152f3-50d0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:a1:e6:37:63:a3:b5:2c:53:49:65:cc:fc:42: b2:05:46:d2:37:af:1d:d2:fa:14:e6:b3:bd:8d:81: 89:56:54:e5:cb:5b:fa:33:33:11:10:8d:5f:24:3f: 5c:5e:c4:c6:99:32:b7:96:25:18:3a:85:df:f3:e4: 75:0b:a3:05:48:46:80:14:ed:48:07:bc:39:2e:bd: 7c:3a:f7:66:8a:81:90:8b:b2:5d:02:02:e0:53:9a: 93:1d:e0:11:b7:57:92:38:bd:bb:47:95:14:55:75: 2f:d0:66:e3:5b:61:b9:7e:e7:a7:ed:63:2e:7a:97: 0c:f5:1d:88:2a:c0:e6:6c:3b:60:4f:9d:bf:36:b2: b9:5a:8f:51:11:ee:d1:2a:6e:fa:55:93:5b:64:f8: ab:b5:da:5d:69:3b:14:f0:f3:b6:69:1e:61:f5:c6: e7:c0:c6:73:8c:07:a4:19:ff:eb:3e:7a:a8:a7:62: 8e:b4:f0:72:76:b5:36:cb:e4:fa:3a:6b:a5:db:aa: 9d:ff:80:90:7b:cd:ce:5b:b0:be:7e:9c:e2:33:80: da:c0:ef:e8:3f:fb:7b:0c:01:55:c9:e7:ec:d9:09: 3f:6e:41:16:fc:a3:d1:05:2e:19:0d:ef:b8:ca:23: 68:fa:a3:c0:d5:13:76:59:0f:14:dd:99:e8:93:0e: b3:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:1E:77:09:71:17:50:67:7D:4E:4C:68:7E:22:CD:1D:FF:AD:A0:7E X509v3 Authority Key Identifier: keyid:5C:F5:5B:88:A6:69:DC:7E:82:11:5F:80:60:69:F3:C9:3C:E6:5C:B5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D318A/F5B5CA8087E611EE97E6C746C4F9AE02/XPVbiKZp3H6CEV-AYGnzyTzmXLU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XPVbiKZp3H6CEV-AYGnzyTzmXLU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D318A/F5B5CA8087E611EE97E6C746C4F9AE02/XPVbiKZp3H6CEV-AYGnzyTzmXLU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 80:e3:35:df:ac:1e:25:fb:43:49:4a:60:62:e8:47:0b:07:06: 9c:e2:e7:16:aa:e9:93:b8:20:4c:08:25:52:c5:08:2b:67:c3: bd:dc:e4:d4:16:9b:53:fe:c0:1e:de:29:36:61:4e:45:b3:cc: e1:c9:1f:31:a3:e9:88:da:2a:a6:78:ec:7f:92:a9:b7:e2:0e: a4:c0:4d:2f:83:41:a0:eb:38:15:21:fb:01:63:1b:69:32:42: e3:93:1c:fa:91:f3:2b:ff:ce:01:a1:9a:65:0d:2d:39:19:a8: c4:a3:2f:32:56:00:63:8a:5e:5e:b1:f3:34:61:cd:9a:2a:39: 5a:d2:10:eb:cd:5e:21:c6:95:90:46:54:89:2f:b7:06:bc:01: c1:81:3b:c0:9f:c9:15:b1:d0:0e:97:2c:9b:d1:80:60:90:a1: b6:a0:6b:5b:14:7c:30:07:9d:0e:0a:cf:df:8e:c4:37:eb:f4: 74:ce:e5:2f:eb:0b:ab:b9:71:f7:e1:ca:99:09:1a:ec:27:a6: b7:ba:5e:52:66:c7:63:90:e4:48:a1:52:69:46:da:5a:53:bc: f9:c5:f1:b5:60:9f:bd:5f:c7:78:53:e1:e0:fa:c7:f6:13:ab: 49:80:cd:35:02:ac:6b:93:00:37:07:9d:65:c8:23:01:ef:22: 2d:20:07:45 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICALwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDMxOEExMTAvBgNVBAUTKDVDRjU1Qjg4QTY2OURDN0U4MjExNUY4MDYwNjlGM0M5 M0NFNjVDQjUwHhcNMjQxMTIzMDM1ODQzWhcNMjQxMTMwMDM1ODQzWjAYMRYwFAYD VQQDEw02NzQxNTJmMy01MGQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvKHmN2OjtSxTSWXM/EKyBUbSN68d0voU5rO9jYGJVlTly1v6MzMREI1fJD9c XsTGmTK3liUYOoXf8+R1C6MFSEaAFO1IB7w5Lr18OvdmioGQi7JdAgLgU5qTHeAR t1eSOL27R5UUVXUv0GbjW2G5fuen7WMuepcM9R2IKsDmbDtgT52/NrK5Wo9REe7R Km76VZNbZPirtdpdaTsU8PO2aR5h9cbnwMZzjAekGf/rPnqop2KOtPBydrU2y+T6 Omul26qd/4CQe83OW7C+fpziM4DawO/oP/t7DAFVyefs2Qk/bkEW/KPRBS4ZDe+4 yiNo+qPA1RN2WQ8U3Znokw6zVwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIQedwlx F1BnfU5MaH4izR3/raB+MB8GA1UdIwQYMBaAFFz1W4imadx+ghFfgGBp88k85ly1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMzE4QS9GNUI1Q0E4MDg3 RTYxMUVFOTdFNkM3NDZDNEY5QUUwMi9YUFZiaUtacDNINkNFVi1BWUduenlUem1Y TFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hQVmJpS1pwM0g2Q0VWLUFZR256eVR6bVhMVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MzE4QS9GNUI1Q0E4MDg3RTYxMUVFOTdFNkM3NDZDNEY5QUUwMi9YUFZiaUtacDNI NkNFVi1BWUduenlUem1YTFUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCA4zXfrB4l+0NJSmBi6EcLBwac4ucWqumTuCBMCCVSxQgrZ8O93OTU FptT/sAe3ik2YU5Fs8zhyR8xo+mI2iqmeOx/kqm34g6kwE0vg0Gg6zgVIfsBYxtp MkLjkxz6kfMr/84BoZplDS05GajEoy8yVgBjil5esfM0Yc2aKjla0hDrzV4hxpWQ RlSJL7cGvAHBgTvAn8kVsdAOlyyb0YBgkKG2oGtbFHwwB50OCs/fjsQ36/R0zuUv 6wuruXH34cqZCRrsJ6a3ul5SZsdjkORIoVJpRtpaU7z5xfG1YJ+9X8d4U+Hg+sf2 E6tJgM01AqxrkwA3B51lyCMB7yItIAdF -----END CERTIFICATE-----Generated at Sat Nov 23 06:13:24 2024 by rpki-client on console-ams.rpki-client.org