$ rpki-client -vvf rpki.apnic.net/member_repository/A91D5240/27DDE7D89B7D11EDB3C33F5DC4F9AE02/XYnzqvmxOgelsmTy3rpk1cUAZRw.mft File: XYnzqvmxOgelsmTy3rpk1cUAZRw.mft (raw, json) Hash identifier: OtVbLrLe47OH+mYGqMoO77d+Ai8L8f6aprkcm+KLCzw= Subject key identifier: 2B:60:6A:A6:92:99:7B:66:6D:04:BF:70:70:48:2F:CD:4A:8F:95:FA Authority key identifier: 5D:89:F3:AA:F9:B1:3A:07:A5:B2:64:F2:DE:BA:64:D5:C5:00:65:1C Certificate issuer: /CN=A91D5240/serialNumber=5D89F3AAF9B13A07A5B264F2DEBA64D5C500651C Certificate serial: 0163 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XYnzqvmxOgelsmTy3rpk1cUAZRw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D5240/27DDE7D89B7D11EDB3C33F5DC4F9AE02/XYnzqvmxOgelsmTy3rpk1cUAZRw.mft Manifest number: 015B Signing time: Thu 21 Nov 2024 02:27:34 +0000 Manifest this update: Thu 21 Nov 2024 02:27:34 +0000 Manifest next update: Thu 28 Nov 2024 02:27:33 +0000 Files and hashes: 1: XYnzqvmxOgelsmTy3rpk1cUAZRw.crl (hash: pCJH+dqIf799KRYGNiriMF9piC1pbKgf676478xP1zg=) 2: 9EA7B7D8A63911ED874E6630C4F9AE02.roa (hash: J9lQZhRy8nlJurek/6TmeBBfcqfbhz3LFug7IIYnNuk=) 3: 5DCE1A1AA63C11ED9306165AC4F9AE02.roa (hash: G7v93sM93gzZ4BgWqisV58Q1qgwmrLJ0bo2fkE0d3wQ=) 4: 9FBA5FCCA63911ED874E6630C4F9AE02.roa (hash: Ta/ZWvPosDSPnLIBb0P0lxVE7uAqrQxU6Y7zoCnFQ8w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D5240/27DDE7D89B7D11EDB3C33F5DC4F9AE02/XYnzqvmxOgelsmTy3rpk1cUAZRw.crl rsync://rpki.apnic.net/member_repository/A91D5240/27DDE7D89B7D11EDB3C33F5DC4F9AE02/XYnzqvmxOgelsmTy3rpk1cUAZRw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XYnzqvmxOgelsmTy3rpk1cUAZRw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:33:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 355 (0x163) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D5240/serialNumber=5D89F3AAF9B13A07A5B264F2DEBA64D5C500651C Validity Not Before: Nov 21 02:27:34 2024 GMT Not After : Nov 28 02:27:33 2024 GMT Subject: CN=673e9a96-f9f7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:f5:c2:65:f5:24:3e:df:c2:cf:36:5c:19:a7: 35:24:f3:68:c1:c6:fd:1c:fe:c2:2d:de:dc:cc:66: 4d:b9:cd:0c:5b:87:cc:07:69:63:9d:c6:06:0d:f3: e9:0e:88:66:3b:d4:a6:16:a4:12:ac:11:87:5b:68: 7c:27:7f:ca:16:a2:c5:15:6b:c5:74:e7:b7:23:ce: 3b:d9:99:34:6f:59:a8:c9:b0:41:d2:ef:06:1e:88: 52:98:13:81:b6:a3:a0:6f:6d:98:f0:2f:51:e3:59: d1:85:18:99:15:2a:38:39:b5:8e:7a:ac:db:1c:5d: f1:ef:42:1e:60:d4:52:8b:7b:00:7b:87:9a:20:5e: 41:05:27:7f:79:d4:a2:a6:3f:94:d1:16:c9:7c:f2: 85:bf:65:6c:f8:de:36:9f:a1:bf:c3:cf:ae:33:60: 6a:d2:b9:dd:3d:d7:55:16:28:9a:d1:35:60:f6:90: 07:d4:ea:4a:87:f8:b1:48:46:0f:6d:83:6c:b5:f3: 12:8a:7c:84:1b:78:48:f9:70:e8:77:cb:a4:72:cf: 8b:a1:c8:d1:2f:b8:86:05:aa:db:00:20:3e:da:56: a5:a5:05:9e:f4:8f:cc:eb:db:3a:57:ce:e5:f0:e0: 52:ae:70:f5:f7:2d:a8:ec:f1:06:fc:e2:b6:0b:cb: 36:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:60:6A:A6:92:99:7B:66:6D:04:BF:70:70:48:2F:CD:4A:8F:95:FA X509v3 Authority Key Identifier: keyid:5D:89:F3:AA:F9:B1:3A:07:A5:B2:64:F2:DE:BA:64:D5:C5:00:65:1C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D5240/27DDE7D89B7D11EDB3C33F5DC4F9AE02/XYnzqvmxOgelsmTy3rpk1cUAZRw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XYnzqvmxOgelsmTy3rpk1cUAZRw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D5240/27DDE7D89B7D11EDB3C33F5DC4F9AE02/XYnzqvmxOgelsmTy3rpk1cUAZRw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6a:6b:3a:6d:bb:e0:a6:d2:1d:78:60:f7:0e:47:f7:da:af:f5: 6b:ea:d6:f5:f9:79:6e:d2:7a:92:44:23:01:64:53:04:c0:25: 16:84:64:19:81:06:1d:51:c1:f2:45:62:21:93:7a:3b:51:9d: b7:0b:39:9b:07:23:ff:b5:3e:79:58:b1:47:f8:bc:f2:92:4d: 43:be:04:a0:35:d3:2a:c1:48:7b:32:37:8f:38:12:af:09:56: c3:80:0c:17:e8:92:2e:5b:46:c6:d0:2d:be:6b:65:70:f9:ec: be:ae:5f:5f:6b:e7:7d:73:3f:6b:2b:8e:5b:27:a1:8b:a1:dd: 33:9a:94:db:cf:55:70:6f:cf:df:9c:c4:51:5c:cd:cb:a0:79: 0b:38:f4:78:52:a4:60:b4:38:2a:0d:39:19:f1:bc:df:5e:af: 70:9a:cd:5e:80:64:67:ca:a7:c3:16:91:01:f5:de:76:a9:57: d0:ba:a5:9a:31:f5:10:11:46:68:4e:8d:d1:b9:99:84:e4:f0: b0:91:3d:1c:3c:b5:23:a4:75:7f:1e:96:8d:91:17:9b:75:7d: 96:b9:25:4e:f8:bf:19:74:14:05:f7:4d:9d:a1:3a:14:07:7f: 36:6d:81:33:33:4e:21:c8:5e:d9:fa:96:b2:6a:10:21:ed:e6: 72:b0:17:4e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAWMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDUyNDAxMTAvBgNVBAUTKDVEODlGM0FBRjlCMTNBMDdBNUIyNjRGMkRFQkE2NEQ1 QzUwMDY1MUMwHhcNMjQxMTIxMDIyNzM0WhcNMjQxMTI4MDIyNzMzWjAYMRYwFAYD VQQDEw02NzNlOWE5Ni1mOWY3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmPXCZfUkPt/CzzZcGac1JPNowcb9HP7CLd7czGZNuc0MW4fMB2ljncYGDfPp DohmO9SmFqQSrBGHW2h8J3/KFqLFFWvFdOe3I8472Zk0b1moybBB0u8GHohSmBOB tqOgb22Y8C9R41nRhRiZFSo4ObWOeqzbHF3x70IeYNRSi3sAe4eaIF5BBSd/edSi pj+U0RbJfPKFv2Vs+N42n6G/w8+uM2Bq0rndPddVFiia0TVg9pAH1OpKh/ixSEYP bYNstfMSinyEG3hI+XDod8ukcs+LocjRL7iGBarbACA+2lalpQWe9I/M69s6V87l 8OBSrnD19y2o7PEG/OK2C8s2UwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCtgaqaS mXtmbQS/cHBIL81Kj5X6MB8GA1UdIwQYMBaAFF2J86r5sToHpbJk8t66ZNXFAGUc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENTI0MC8yN0RERTdEODlC N0QxMUVEQjNDMzNGNURDNEY5QUUwMi9YWW56cXZteE9nZWxzbVR5M3JwazFjVUFa UncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hZbnpxdm14T2dlbHNtVHkzcnBrMWNVQVpSdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NTI0MC8yN0RERTdEODlCN0QxMUVEQjNDMzNGNURDNEY5QUUwMi9YWW56cXZteE9n ZWxzbVR5M3JwazFjVUFaUncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBqazptu+Cm0h14YPcOR/far/Vr6tb1+Xlu0nqSRCMBZFMEwCUWhGQZ gQYdUcHyRWIhk3o7UZ23CzmbByP/tT55WLFH+Lzykk1DvgSgNdMqwUh7MjePOBKv CVbDgAwX6JIuW0bG0C2+a2Vw+ey+rl9fa+d9cz9rK45bJ6GLod0zmpTbz1Vwb8/f nMRRXM3LoHkLOPR4UqRgtDgqDTkZ8bzfXq9wms1egGRnyqfDFpEB9d52qVfQuqWa MfUQEUZoTo3RuZmE5PCwkT0cPLUjpHV/HpaNkRebdX2WuSVO+L8ZdBQF902doToU B382bYEzM04hyF7Z+payahAh7eZysBdO -----END CERTIFICATE-----Generated at Thu Nov 21 03:12:06 2024 by rpki-client on console-fra.rpki-client.org