$ rpki-client -vvf rpki.apnic.net/member_repository/A91D824A/4ADF33FC5B9A11EF8307F540C4F9AE02/XHIqJhQciPfNQPObN0raf7wfmx8.mft File: XHIqJhQciPfNQPObN0raf7wfmx8.mft (raw, json) Hash identifier: mpaqZe5TZ232ymqM/v5bzUqJ9f75ea6TFF2mvBAOolY= Subject key identifier: 06:AB:D0:68:75:DC:6C:00:B0:A1:FA:4B:0F:32:78:7A:2E:04:9F:B9 Authority key identifier: 5C:72:2A:26:14:1C:88:F7:CD:40:F3:9B:37:4A:DA:7F:BC:1F:9B:1F Certificate issuer: /CN=A91D824A/serialNumber=5C722A26141C88F7CD40F39B374ADA7FBC1F9B1F Certificate serial: 37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XHIqJhQciPfNQPObN0raf7wfmx8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D824A/4ADF33FC5B9A11EF8307F540C4F9AE02/XHIqJhQciPfNQPObN0raf7wfmx8.mft Manifest number: 35 Signing time: Thu 21 Nov 2024 05:38:31 +0000 Manifest this update: Thu 21 Nov 2024 05:38:31 +0000 Manifest next update: Thu 28 Nov 2024 05:38:31 +0000 Files and hashes: 1: XHIqJhQciPfNQPObN0raf7wfmx8.crl (hash: Z1mkZV6nu0roWpGsVhMMAQ7zzBXm2CHUF8gnGBDQQWw=) 2: AA5F20585B9A11EFBB8CB141C4F9AE02.roa (hash: ecxjqjNdTq+EP2ECpqRdRKRjGTmFLrzhQxbK9x8LpmM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D824A/4ADF33FC5B9A11EF8307F540C4F9AE02/XHIqJhQciPfNQPObN0raf7wfmx8.crl rsync://rpki.apnic.net/member_repository/A91D824A/4ADF33FC5B9A11EF8307F540C4F9AE02/XHIqJhQciPfNQPObN0raf7wfmx8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XHIqJhQciPfNQPObN0raf7wfmx8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 05:18:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 55 (0x37) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D824A/serialNumber=5C722A26141C88F7CD40F39B374ADA7FBC1F9B1F Validity Not Before: Nov 21 05:38:31 2024 GMT Not After : Nov 28 05:38:31 2024 GMT Subject: CN=673ec757-347b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:53:15:d3:5a:0a:8d:06:3d:55:ac:af:de:3e: 88:9c:33:39:2d:c3:89:ce:90:8d:a0:18:9c:b1:c3: 6d:18:09:eb:a4:c0:bc:65:13:64:c1:76:65:b1:20: b2:fe:cf:a8:97:3f:ce:2b:75:d8:47:02:38:37:0e: a1:f9:14:16:f7:d2:bb:54:e0:01:1e:ef:b4:49:08: db:6f:78:6c:2f:5e:84:08:c5:79:9c:76:16:2f:b3: a7:c1:8f:7d:cd:e6:2e:79:d5:21:e7:67:cc:eb:d6: 20:cb:f5:96:48:e9:da:ad:75:ae:2e:2d:14:53:c9: 1c:da:fd:77:df:5a:8e:5b:2b:12:03:c9:69:b2:44: 99:82:75:5e:11:66:1c:8f:4c:27:d5:f7:90:6b:da: fd:bf:f9:cc:72:4d:b6:21:69:e3:02:4b:9a:26:bd: 0b:c6:6f:77:c2:7d:12:5c:f9:02:f8:48:5a:32:a6: 27:c4:5c:b8:53:bc:f8:ba:89:ff:ac:76:67:a2:17: 80:e7:e7:5f:36:cb:85:10:72:78:d2:ce:e3:eb:4c: 63:2a:e8:d1:14:5c:30:53:af:b7:69:55:6e:2c:74: bf:41:8e:ff:44:41:07:43:9c:c8:64:fd:ac:81:dd: f5:18:e8:19:48:57:f6:60:b4:7f:8e:d1:d0:d1:7e: 39:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:AB:D0:68:75:DC:6C:00:B0:A1:FA:4B:0F:32:78:7A:2E:04:9F:B9 X509v3 Authority Key Identifier: keyid:5C:72:2A:26:14:1C:88:F7:CD:40:F3:9B:37:4A:DA:7F:BC:1F:9B:1F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D824A/4ADF33FC5B9A11EF8307F540C4F9AE02/XHIqJhQciPfNQPObN0raf7wfmx8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XHIqJhQciPfNQPObN0raf7wfmx8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D824A/4ADF33FC5B9A11EF8307F540C4F9AE02/XHIqJhQciPfNQPObN0raf7wfmx8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 00:87:39:ba:68:41:c1:cb:b4:a8:f2:ac:e3:c0:15:6e:c9:88: 18:48:6d:53:37:93:d5:6f:c6:22:46:ae:1a:3f:d4:de:93:44: ab:db:bb:94:cc:86:f5:db:6c:43:df:10:0c:27:a4:d0:10:44: 81:77:95:cc:47:dc:f6:51:c4:d4:41:3a:85:d2:6f:e5:fb:9f: 2e:97:2d:4c:66:64:0d:f2:7f:bf:b6:31:0e:2f:93:ce:f2:1d: 8e:46:4e:3c:43:37:6b:53:dd:92:b2:6c:12:7f:ef:3c:69:19: 26:cb:f1:c8:14:0f:f1:5d:33:9c:59:1a:0b:6a:4d:de:3c:21: 1b:0b:03:f2:28:09:9e:b9:c8:2a:70:80:a6:db:26:4a:02:27: 45:17:b2:4a:68:6f:b4:a1:fd:fb:58:68:f0:dd:92:50:a6:36: 73:78:24:b1:b9:53:cf:8e:36:40:33:59:7a:18:af:2e:7f:08: 31:94:c9:cc:b1:e9:e1:46:4e:50:65:a4:06:84:29:dd:da:6d: 9f:67:00:8a:8d:66:4e:8a:a0:de:93:19:8f:4d:ff:6d:77:61: 73:91:9d:f8:da:53:a1:34:bf:65:89:f7:45:93:9c:00:9f:c4: 53:fb:a2:a4:1a:0f:d2:70:5d:7e:9a:20:66:5c:74:72:f8:06: d5:6c:7b:5c -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBNzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE ODI0QTExMC8GA1UEBRMoNUM3MjJBMjYxNDFDODhGN0NENDBGMzlCMzc0QURBN0ZC QzFGOUIxRjAeFw0yNDExMjEwNTM4MzFaFw0yNDExMjgwNTM4MzFaMBgxFjAUBgNV BAMTDTY3M2VjNzU3LTM0N2IwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDSUxXTWgqNBj1VrK/ePoicMzktw4nOkI2gGJyxw20YCeukwLxlE2TBdmWxILL+ z6iXP84rddhHAjg3DqH5FBb30rtU4AEe77RJCNtveGwvXoQIxXmcdhYvs6fBj33N 5i551SHnZ8zr1iDL9ZZI6dqtda4uLRRTyRza/XffWo5bKxIDyWmyRJmCdV4RZhyP TCfV95Br2v2/+cxyTbYhaeMCS5omvQvGb3fCfRJc+QL4SFoypifEXLhTvPi6if+s dmeiF4Dn5182y4UQcnjSzuPrTGMq6NEUXDBTr7dpVW4sdL9Bjv9EQQdDnMhk/ayB 3fUY6BlIV/ZgtH+O0dDRfjlVAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUBqvQaHXc bACwofpLDzJ4ei4En7kwHwYDVR0jBBgwFoAUXHIqJhQciPfNQPObN0raf7wfmx8w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQ4MjRBLzRBREYzM0ZDNUI5 QTExRUY4MzA3RjU0MEM0RjlBRTAyL1hISXFKaFFjaVBmTlFQT2JOMHJhZjd3Zm14 OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvWEhJcUpoUWNpUGZOUVBPYk4wcmFmN3dmbXg4LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQ4 MjRBLzRBREYzM0ZDNUI5QTExRUY4MzA3RjU0MEM0RjlBRTAyL1hISXFKaFFjaVBm TlFQT2JOMHJhZjd3Zm14OC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAACHObpoQcHLtKjyrOPAFW7JiBhIbVM3k9VvxiJGrho/1N6TRKvbu5TM hvXbbEPfEAwnpNAQRIF3lcxH3PZRxNRBOoXSb+X7ny6XLUxmZA3yf7+2MQ4vk87y HY5GTjxDN2tT3ZKybBJ/7zxpGSbL8cgUD/FdM5xZGgtqTd48IRsLA/IoCZ65yCpw gKbbJkoCJ0UXskpob7Sh/ftYaPDdklCmNnN4JLG5U8+ONkAzWXoYry5/CDGUycyx 6eFGTlBlpAaEKd3abZ9nAIqNZk6KoN6TGY9N/213YXORnfjaU6E0v2WJ90WTnACf xFP7oqQaD9JwXX6aIGZcdHL4BtVse1w= -----END CERTIFICATE-----Generated at Thu Nov 21 07:40:39 2024 by rpki-client on console-ams.rpki-client.org