$ rpki-client -vvf rpki.apnic.net/member_repository/A91D6792/DBF1C77221ED11ECBE9C9A1CC4F9AE02/8XiofFRzBDe6WfqpzhhP-HkP5PE.mft File: 8XiofFRzBDe6WfqpzhhP-HkP5PE.mft (raw, json) Hash identifier: 1MlZnAZpakIAkBNficvwln0ymAOSPYda8E2kd4EKwQA= Subject key identifier: E7:F3:D1:D3:32:44:CE:95:14:DB:2F:83:15:BE:8D:D8:DE:54:00:01 Authority key identifier: F1:78:A8:7C:54:73:04:37:BA:59:FA:A9:CE:18:4F:F8:79:0F:E4:F1 Certificate issuer: /CN=A91D6792/serialNumber=F178A87C54730437BA59FAA9CE184FF8790FE4F1 Certificate serial: 0478 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8XiofFRzBDe6WfqpzhhP-HkP5PE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D6792/DBF1C77221ED11ECBE9C9A1CC4F9AE02/8XiofFRzBDe6WfqpzhhP-HkP5PE.mft Manifest number: 0473 Signing time: Sun 24 Nov 2024 23:28:44 +0000 Manifest this update: Sun 24 Nov 2024 23:28:43 +0000 Manifest next update: Sun 01 Dec 2024 23:28:43 +0000 Files and hashes: 1: 8XiofFRzBDe6WfqpzhhP-HkP5PE.crl (hash: wUZQWcRCdHJWWRHSQo7RbIs9BD0V8AI406luFboEgNA=) 2: CB89040A73EA11EC8A823312C4F9AE02.roa (hash: 6pWGQwdhpFKj5uyRVvtM8M7iiAHBMFerXsGqI0l0KTo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D6792/DBF1C77221ED11ECBE9C9A1CC4F9AE02/8XiofFRzBDe6WfqpzhhP-HkP5PE.crl rsync://rpki.apnic.net/member_repository/A91D6792/DBF1C77221ED11ECBE9C9A1CC4F9AE02/8XiofFRzBDe6WfqpzhhP-HkP5PE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8XiofFRzBDe6WfqpzhhP-HkP5PE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Dec 2024 23:28:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1144 (0x478) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D6792/serialNumber=F178A87C54730437BA59FAA9CE184FF8790FE4F1 Validity Not Before: Nov 24 23:28:43 2024 GMT Not After : Dec 1 23:28:43 2024 GMT Subject: CN=6743b6ac-53f4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:82:24:2b:07:c8:fa:65:ae:d5:c8:49:6e:42: df:27:b4:b2:59:48:5f:27:30:f1:22:ae:77:89:5c: da:3f:64:ff:ea:f0:10:8a:1e:a2:b1:b8:bd:ba:77: e7:b9:ac:80:a9:ef:1d:32:7d:16:16:8b:97:9c:ee: 67:45:d7:6a:97:68:f7:cc:9d:1b:bf:cb:3d:f4:9c: 83:57:95:4f:ed:cd:62:4e:e0:c5:b6:fe:ac:95:c6: 8d:62:40:aa:ec:1e:46:d0:d7:0d:9c:6f:0c:db:5a: 12:01:79:4e:29:90:83:5e:a3:1e:48:86:c0:60:fa: 47:f6:16:d9:c4:11:61:32:c4:99:12:0e:58:70:70: ae:14:7b:99:53:3c:58:f6:30:e7:c1:d8:1a:0f:53: 86:44:df:18:23:3f:75:21:41:b2:b1:9d:4a:fe:78: 3f:02:03:00:24:d2:92:6b:f6:97:56:bd:94:10:28: 25:23:ce:f7:53:fc:ac:a5:6a:85:b8:4a:af:fe:8f: 03:b1:02:3b:9d:47:98:31:23:26:d3:cb:11:25:b3: 2d:a3:dd:22:ec:72:d5:c2:14:9d:6c:f4:1d:12:e1: 30:fa:1d:3d:bc:a7:d6:21:4d:5e:90:83:9e:11:18: e0:e7:97:a3:52:c4:19:a2:c4:49:6f:71:05:24:3c: a0:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:F3:D1:D3:32:44:CE:95:14:DB:2F:83:15:BE:8D:D8:DE:54:00:01 X509v3 Authority Key Identifier: keyid:F1:78:A8:7C:54:73:04:37:BA:59:FA:A9:CE:18:4F:F8:79:0F:E4:F1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D6792/DBF1C77221ED11ECBE9C9A1CC4F9AE02/8XiofFRzBDe6WfqpzhhP-HkP5PE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8XiofFRzBDe6WfqpzhhP-HkP5PE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D6792/DBF1C77221ED11ECBE9C9A1CC4F9AE02/8XiofFRzBDe6WfqpzhhP-HkP5PE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 51:b4:2f:4b:48:0f:2b:d4:33:83:71:af:dd:60:33:8d:ba:61: e8:cf:50:07:84:00:de:fa:c1:07:2a:69:c4:ff:bb:47:11:cb: 0f:8c:b9:e4:04:39:83:4e:8a:c9:58:40:8f:3f:dd:84:ce:5f: 38:46:86:d0:1d:5f:49:22:52:c2:76:17:cc:cd:8b:40:e0:95: ed:6d:5c:61:1d:cf:af:ce:89:21:a1:25:ca:58:7e:a3:c8:80: e7:dc:9a:0b:49:e2:b1:1f:ae:33:70:3a:30:12:9c:0f:f6:25: bd:48:70:59:1a:f7:52:5a:47:ff:d9:97:a4:6f:25:52:1a:56: 03:c7:c1:71:e2:94:31:f8:46:a2:e2:4c:f4:03:68:ae:20:bd: 05:66:d3:fe:0e:35:6a:cd:db:7a:16:f0:b4:f9:02:c5:80:05: b7:2d:cb:7e:6d:22:d0:40:53:61:6f:5d:73:2d:78:7f:60:cf: a8:07:52:39:08:d0:d1:fd:11:7a:64:6e:c1:2e:d5:32:7d:d9: c7:e4:eb:2d:b0:a2:25:1f:0a:9b:26:1c:42:c6:41:4a:00:7c: 50:54:5c:22:ee:1c:d9:0b:1c:df:48:89:5d:e5:a1:39:c9:77: 95:82:55:de:6b:54:33:b0:32:84:c0:42:05:f3:d1:bf:f4:d4: 19:8d:ed:3c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBHgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDY3OTIxMTAvBgNVBAUTKEYxNzhBODdDNTQ3MzA0MzdCQTU5RkFBOUNFMTg0RkY4 NzkwRkU0RjEwHhcNMjQxMTI0MjMyODQzWhcNMjQxMjAxMjMyODQzWjAYMRYwFAYD VQQDEw02NzQzYjZhYy01M2Y0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt4IkKwfI+mWu1chJbkLfJ7SyWUhfJzDxIq53iVzaP2T/6vAQih6isbi9unfn uayAqe8dMn0WFouXnO5nRddql2j3zJ0bv8s99JyDV5VP7c1iTuDFtv6slcaNYkCq 7B5G0NcNnG8M21oSAXlOKZCDXqMeSIbAYPpH9hbZxBFhMsSZEg5YcHCuFHuZUzxY 9jDnwdgaD1OGRN8YIz91IUGysZ1K/ng/AgMAJNKSa/aXVr2UECglI873U/yspWqF uEqv/o8DsQI7nUeYMSMm08sRJbMto90i7HLVwhSdbPQdEuEw+h09vKfWIU1ekIOe ERjg55ejUsQZosRJb3EFJDyggQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOfz0dMy RM6VFNsvgxW+jdjeVAABMB8GA1UdIwQYMBaAFPF4qHxUcwQ3uln6qc4YT/h5D+Tx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENjc5Mi9EQkYxQzc3MjIx RUQxMUVDQkU5QzlBMUNDNEY5QUUwMi84WGlvZkZSekJEZTZXZnFwemhoUC1Ia1A1 UEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzhYaW9mRlJ6QkRlNldmcXB6aGhQLUhrUDVQRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE Njc5Mi9EQkYxQzc3MjIxRUQxMUVDQkU5QzlBMUNDNEY5QUUwMi84WGlvZkZSekJE ZTZXZnFwemhoUC1Ia1A1UEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBRtC9LSA8r1DODca/dYDONumHoz1AHhADe+sEHKmnE/7tHEcsPjLnk BDmDTorJWECPP92Ezl84RobQHV9JIlLCdhfMzYtA4JXtbVxhHc+vzokhoSXKWH6j yIDn3JoLSeKxH64zcDowEpwP9iW9SHBZGvdSWkf/2ZekbyVSGlYDx8Fx4pQx+Eai 4kz0A2iuIL0FZtP+DjVqzdt6FvC0+QLFgAW3Lct+bSLQQFNhb11zLXh/YM+oB1I5 CNDR/RF6ZG7BLtUyfdnH5OstsKIlHwqbJhxCxkFKAHxQVFwi7hzZCxzfSIld5aE5 yXeVglXea1QzsDKEwEIF89G/9NQZje08 -----END CERTIFICATE-----Generated at Mon Nov 25 01:15:33 2024 by rpki-client on console-fra.rpki-client.org