$ rpki-client -vvf rpki.apnic.net/member_repository/A91DB8D9/8B0023769A0211EC8B817785C4F9AE02/Xs7vXyjy82UFPfuM780W4cPehK4.mft File: Xs7vXyjy82UFPfuM780W4cPehK4.mft (raw, json) Hash identifier: +4Ac4c1lN7WDpUAjSqVn9Hsk3ljY13Dr73kGq5XdnX0= Subject key identifier: 62:A2:3F:EB:69:FD:71:57:E3:A2:AD:99:DA:F9:41:71:5D:C4:52:9D Authority key identifier: 5E:CE:EF:5F:28:F2:F3:65:05:3D:FB:8C:EF:CD:16:E1:C3:DE:84:AE Certificate issuer: /CN=A91DB8D9/serialNumber=5ECEEF5F28F2F365053DFB8CEFCD16E1C3DE84AE Certificate serial: 0346 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Xs7vXyjy82UFPfuM780W4cPehK4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DB8D9/8B0023769A0211EC8B817785C4F9AE02/Xs7vXyjy82UFPfuM780W4cPehK4.mft Manifest number: 0340 Signing time: Thu 21 Nov 2024 00:36:29 +0000 Manifest this update: Thu 21 Nov 2024 00:36:29 +0000 Manifest next update: Thu 28 Nov 2024 00:36:29 +0000 Files and hashes: 1: Xs7vXyjy82UFPfuM780W4cPehK4.crl (hash: LjGteZu1WgrjUpJvTWYREnF52geRsLnRpiQ9rplzH8I=) 2: F31E86967B2311EF93801A72C4F9AE02.roa (hash: BEOqbF1TGcTRTm0s2SIEOuWAgReYPdYwd9z1Tb5qS/E=) 3: 7E044E58A06B11ECBF29B644C4F9AE02.roa (hash: GU0rz8UZFYHn2t9WQ+hsu8X7VuJP0c0476L85iweLMc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DB8D9/8B0023769A0211EC8B817785C4F9AE02/Xs7vXyjy82UFPfuM780W4cPehK4.crl rsync://rpki.apnic.net/member_repository/A91DB8D9/8B0023769A0211EC8B817785C4F9AE02/Xs7vXyjy82UFPfuM780W4cPehK4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Xs7vXyjy82UFPfuM780W4cPehK4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:33:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 838 (0x346) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DB8D9/serialNumber=5ECEEF5F28F2F365053DFB8CEFCD16E1C3DE84AE Validity Not Before: Nov 21 00:36:29 2024 GMT Not After : Nov 28 00:36:29 2024 GMT Subject: CN=673e808d-5ec7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:09:48:6a:ef:9c:9a:aa:10:ed:52:f9:86:e3: 25:39:50:e0:12:53:72:c5:59:3f:6d:6c:50:20:18: c4:46:85:71:1e:a3:ab:8d:c9:fc:8b:e1:e7:ed:9d: ad:26:e1:64:aa:04:fb:9f:5d:68:cc:b0:f8:1c:af: 3b:7c:8d:99:ea:51:fc:31:6f:36:ec:93:fb:b0:40: 14:a8:11:e2:83:41:8b:be:ee:73:92:fa:f4:13:14: e6:b8:d0:62:df:dc:23:1f:21:a4:97:fc:df:4a:c8: 3b:62:10:44:1e:f8:0e:54:8d:37:ad:68:e1:65:14: 91:c2:cc:13:63:04:3b:92:e7:cc:d8:ca:d4:59:bf: fe:3e:17:de:b3:01:64:4a:de:44:01:b8:91:59:9c: c9:ec:1e:8f:df:74:06:15:0b:ea:b0:4d:52:50:07: 3e:0c:df:14:19:f8:e7:a0:ea:29:e1:91:2e:a5:b8: 6e:72:bf:81:8c:c4:22:98:d3:74:8c:2c:51:82:c3: 7e:33:ed:9d:7e:d5:d2:e6:ff:c8:47:fe:52:b0:e5: 63:9c:4b:30:bd:08:0c:62:24:f4:3b:93:23:f0:d6: 98:b9:b0:78:b7:82:fb:53:b9:c9:53:fd:c6:de:da: c3:e8:6d:9b:9a:3d:8c:09:ac:a5:ff:31:8a:78:a7: 4a:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:A2:3F:EB:69:FD:71:57:E3:A2:AD:99:DA:F9:41:71:5D:C4:52:9D X509v3 Authority Key Identifier: keyid:5E:CE:EF:5F:28:F2:F3:65:05:3D:FB:8C:EF:CD:16:E1:C3:DE:84:AE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DB8D9/8B0023769A0211EC8B817785C4F9AE02/Xs7vXyjy82UFPfuM780W4cPehK4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Xs7vXyjy82UFPfuM780W4cPehK4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DB8D9/8B0023769A0211EC8B817785C4F9AE02/Xs7vXyjy82UFPfuM780W4cPehK4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 12:9a:fa:ff:19:8b:e1:7d:c1:c7:da:68:7b:6a:ab:9d:91:4d: 2c:39:76:89:d3:0a:07:45:99:26:e0:4f:52:6d:25:27:21:5d: ed:17:6d:3b:ff:ab:38:e8:1f:4e:79:76:57:a9:9f:99:4c:36: 5c:bd:26:a2:9f:0e:ca:2e:df:c0:63:83:70:e9:eb:70:18:b5: cd:03:ef:eb:ad:58:95:9b:3a:e2:69:b2:64:1e:32:0f:e4:7c: d0:65:79:a1:55:08:e6:29:08:43:69:b5:59:0d:44:48:77:22: 13:0e:24:80:da:a7:37:14:f7:f8:9d:e8:47:17:99:05:85:30: 1a:86:f9:bf:cb:f9:63:0b:e3:32:1b:8b:bd:8e:11:f9:80:9c: 3c:c5:e1:b4:d7:a6:d7:31:57:13:4a:cf:94:62:23:bc:dc:ae: eb:88:cc:fb:b9:0a:b0:cf:c4:09:57:ea:5e:49:b7:f2:41:40: 02:17:93:a8:af:bf:3f:90:1c:49:5c:12:80:d9:22:fd:0e:69: 62:7c:93:64:a7:0f:47:9b:ac:e1:32:84:04:bc:97:8a:d4:01: 82:ee:f6:ab:49:47:c6:4c:18:b2:47:16:37:e4:21:4b:8a:4d: 1d:6d:05:4c:56:39:76:67:04:a6:da:66:0b:fd:6d:e0:93:a2: 2d:39:48:8e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA0YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REI4RDkxMTAvBgNVBAUTKDVFQ0VFRjVGMjhGMkYzNjUwNTNERkI4Q0VGQ0QxNkUx QzNERTg0QUUwHhcNMjQxMTIxMDAzNjI5WhcNMjQxMTI4MDAzNjI5WjAYMRYwFAYD VQQDEw02NzNlODA4ZC01ZWM3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzglIau+cmqoQ7VL5huMlOVDgElNyxVk/bWxQIBjERoVxHqOrjcn8i+Hn7Z2t JuFkqgT7n11ozLD4HK87fI2Z6lH8MW827JP7sEAUqBHig0GLvu5zkvr0ExTmuNBi 39wjHyGkl/zfSsg7YhBEHvgOVI03rWjhZRSRwswTYwQ7kufM2MrUWb/+PhfeswFk St5EAbiRWZzJ7B6P33QGFQvqsE1SUAc+DN8UGfjnoOop4ZEupbhucr+BjMQimNN0 jCxRgsN+M+2dftXS5v/IR/5SsOVjnEswvQgMYiT0O5Mj8NaYubB4t4L7U7nJU/3G 3trD6G2bmj2MCayl/zGKeKdKVwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGKiP+tp /XFX46Ktmdr5QXFdxFKdMB8GA1UdIwQYMBaAFF7O718o8vNlBT37jO/NFuHD3oSu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQjhEOS84QjAwMjM3NjlB MDIxMUVDOEI4MTc3ODVDNEY5QUUwMi9Yczd2WHlqeTgyVUZQZnVNNzgwVzRjUGVo SzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hzN3ZYeWp5ODJVRlBmdU03ODBXNGNQZWhLNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QjhEOS84QjAwMjM3NjlBMDIxMUVDOEI4MTc3ODVDNEY5QUUwMi9Yczd2WHlqeTgy VUZQZnVNNzgwVzRjUGVoSzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQASmvr/GYvhfcHH2mh7aqudkU0sOXaJ0woHRZkm4E9SbSUnIV3tF207 /6s46B9OeXZXqZ+ZTDZcvSainw7KLt/AY4Nw6etwGLXNA+/rrViVmzriabJkHjIP 5HzQZXmhVQjmKQhDabVZDURIdyITDiSA2qc3FPf4nehHF5kFhTAahvm/y/ljC+My G4u9jhH5gJw8xeG016bXMVcTSs+UYiO83K7riMz7uQqwz8QJV+peSbfyQUACF5Oo r78/kBxJXBKA2SL9DmlifJNkpw9Hm6zhMoQEvJeK1AGC7varSUfGTBiyRxY35CFL ik0dbQVMVjl2ZwSm2mYL/W3gk6ItOUiO -----END CERTIFICATE-----Generated at Thu Nov 21 01:31:59 2024 by rpki-client on console-fra.rpki-client.org