$ rpki-client -vvf rpki.apnic.net/member_repository/A91E3C76/B4992D52345811EFB42F9D37C4F9AE02/XwIkjJxclPFTxZ9Wdyxf2n-Ncec.mft File: XwIkjJxclPFTxZ9Wdyxf2n-Ncec.mft (raw, json) Hash identifier: XPHQET1id4uMKS0Ti73eNdgNTzSOARZPZF35YixqbhU= Subject key identifier: 53:AE:15:75:F7:3D:2F:97:B7:1C:91:B5:3E:77:0A:6D:5E:B0:70:6F Authority key identifier: 5F:02:24:8C:9C:5C:94:F1:53:C5:9F:56:77:2C:5F:DA:7F:8D:71:E7 Certificate issuer: /CN=A91E3C76/serialNumber=5F02248C9C5C94F153C59F56772C5FDA7F8D71E7 Certificate serial: 50 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XwIkjJxclPFTxZ9Wdyxf2n-Ncec.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E3C76/B4992D52345811EFB42F9D37C4F9AE02/XwIkjJxclPFTxZ9Wdyxf2n-Ncec.mft Manifest number: 4E Signing time: Thu 21 Nov 2024 05:20:37 +0000 Manifest this update: Thu 21 Nov 2024 05:20:37 +0000 Manifest next update: Thu 28 Nov 2024 05:20:37 +0000 Files and hashes: 1: XwIkjJxclPFTxZ9Wdyxf2n-Ncec.crl (hash: 9PLe7JvzfLTi0TlcrIXTnd7lprsLRe+leNXMDQqouqU=) 2: 41F5CF98345911EFB9E92739C4F9AE02.roa (hash: HWKoHZe7CLuc4iJ8hAxu/nwRzoDNyvIr4mOVi37eN7M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E3C76/B4992D52345811EFB42F9D37C4F9AE02/XwIkjJxclPFTxZ9Wdyxf2n-Ncec.crl rsync://rpki.apnic.net/member_repository/A91E3C76/B4992D52345811EFB42F9D37C4F9AE02/XwIkjJxclPFTxZ9Wdyxf2n-Ncec.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XwIkjJxclPFTxZ9Wdyxf2n-Ncec.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 05:18:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 80 (0x50) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E3C76/serialNumber=5F02248C9C5C94F153C59F56772C5FDA7F8D71E7 Validity Not Before: Nov 21 05:20:37 2024 GMT Not After : Nov 28 05:20:37 2024 GMT Subject: CN=673ec325-81ae Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:f9:40:4e:b0:0b:d6:0d:29:dc:e5:75:f8:4b: 35:ff:73:62:32:89:d1:9c:cd:17:d7:9a:40:d7:62: a2:6d:6b:9e:0f:23:ee:f8:8b:e3:13:6f:4e:9a:a0: a3:8e:d7:8f:2e:2b:c0:be:ba:be:83:b3:b3:d2:81: 04:fd:e6:17:5e:50:7f:6f:66:aa:c5:1c:9f:88:ef: f7:c4:1d:9d:bd:bd:e5:84:66:02:b6:0a:3c:20:2b: d1:4b:a5:25:33:33:d4:d7:d1:c9:4c:99:7a:da:c5: 02:53:e0:b5:e1:fa:b3:13:8d:66:55:eb:73:5b:fd: b5:ff:84:00:63:2a:8f:db:3b:97:b2:b1:e4:25:c8: ae:c8:c5:d3:77:0e:65:d8:99:e3:1c:2d:83:64:d8: e6:3b:27:bb:b7:48:6c:46:b6:45:36:9d:14:9a:3b: 09:11:43:48:ff:0e:c1:e2:e6:bd:44:a0:a9:cd:48: 78:5d:46:6c:58:a8:72:a6:61:66:ca:60:64:9c:ee: 6a:e4:55:a7:ab:47:94:e6:20:fd:f3:41:6f:c3:57: 29:29:89:1e:da:08:6d:48:9a:5f:e4:34:83:e8:a9: 4e:80:85:9d:72:01:bf:48:9d:fe:9d:51:a8:44:a7: 0d:e3:d6:1b:d9:97:c8:c1:26:54:1a:f3:bb:de:35: 26:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:AE:15:75:F7:3D:2F:97:B7:1C:91:B5:3E:77:0A:6D:5E:B0:70:6F X509v3 Authority Key Identifier: keyid:5F:02:24:8C:9C:5C:94:F1:53:C5:9F:56:77:2C:5F:DA:7F:8D:71:E7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E3C76/B4992D52345811EFB42F9D37C4F9AE02/XwIkjJxclPFTxZ9Wdyxf2n-Ncec.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XwIkjJxclPFTxZ9Wdyxf2n-Ncec.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E3C76/B4992D52345811EFB42F9D37C4F9AE02/XwIkjJxclPFTxZ9Wdyxf2n-Ncec.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ce:42:a4:ad:81:8a:80:f5:c4:c4:d9:73:80:23:0e:0b:d9:1e: d0:12:9d:01:4a:69:31:c2:0f:4e:34:ac:ed:25:00:60:23:16: ca:5c:b6:e1:7f:9d:a5:58:e4:a0:95:6e:11:f1:88:60:41:3e: e0:fc:ee:c4:75:03:a9:8a:4b:cd:80:19:9c:f4:39:bc:1e:be: 0f:bc:9d:aa:ac:68:36:2c:aa:19:e1:fc:c0:60:b1:b3:d6:3d: 4c:19:6c:3e:aa:f5:5b:2c:3a:59:1f:55:13:93:92:0b:23:14: 3f:a0:cc:84:59:83:41:48:70:f1:75:a8:b9:be:bf:92:40:05: ad:bb:e5:54:6d:e1:d4:3d:53:61:18:36:66:a8:fe:60:22:52: 29:ae:1f:a0:2e:d8:f3:ed:b2:cc:35:52:5d:31:19:76:17:d5: 6d:da:ac:9e:a8:a0:e0:25:cb:15:c6:6f:78:a5:87:57:02:24: 28:4b:dc:90:e1:60:13:e6:a6:c0:7d:0e:ef:f0:8d:c9:e6:e2: 5a:c4:12:7b:6b:ce:d7:75:34:bb:0f:8f:ee:cc:f8:02:1a:60: 39:7d:09:7e:ed:50:79:ea:9a:a0:8e:77:2f:43:49:db:39:57: ac:dd:dc:45:43:08:b4:68:7c:48:6b:6e:e6:13:4a:14:21:87: 90:c1:c4:fd -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBUDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF M0M3NjExMC8GA1UEBRMoNUYwMjI0OEM5QzVDOTRGMTUzQzU5RjU2NzcyQzVGREE3 RjhENzFFNzAeFw0yNDExMjEwNTIwMzdaFw0yNDExMjgwNTIwMzdaMBgxFjAUBgNV BAMTDTY3M2VjMzI1LTgxYWUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC0+UBOsAvWDSnc5XX4SzX/c2IyidGczRfXmkDXYqJta54PI+74i+MTb06aoKOO 148uK8C+ur6Ds7PSgQT95hdeUH9vZqrFHJ+I7/fEHZ29veWEZgK2CjwgK9FLpSUz M9TX0clMmXraxQJT4LXh+rMTjWZV63Nb/bX/hABjKo/bO5eyseQlyK7IxdN3DmXY meMcLYNk2OY7J7u3SGxGtkU2nRSaOwkRQ0j/DsHi5r1EoKnNSHhdRmxYqHKmYWbK YGSc7mrkVaerR5TmIP3zQW/DVykpiR7aCG1Iml/kNIPoqU6AhZ1yAb9Inf6dUahE pw3j1hvZl8jBJlQa87veNSalAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUU64Vdfc9 L5e3HJG1PncKbV6wcG8wHwYDVR0jBBgwFoAUXwIkjJxclPFTxZ9Wdyxf2n+Ncecw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUUzQzc2L0I0OTkyRDUyMzQ1 ODExRUZCNDJGOUQzN0M0RjlBRTAyL1h3SWtqSnhjbFBGVHhaOVdkeXhmMm4tTmNl Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvWHdJa2pKeGNsUEZUeFo5V2R5eGYybi1OY2VjLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUUz Qzc2L0I0OTkyRDUyMzQ1ODExRUZCNDJGOUQzN0M0RjlBRTAyL1h3SWtqSnhjbFBG VHhaOVdkeXhmMm4tTmNlYy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAM5CpK2BioD1xMTZc4AjDgvZHtASnQFKaTHCD040rO0lAGAjFspctuF/ naVY5KCVbhHxiGBBPuD87sR1A6mKS82AGZz0Obwevg+8naqsaDYsqhnh/MBgsbPW PUwZbD6q9VssOlkfVROTkgsjFD+gzIRZg0FIcPF1qLm+v5JABa275VRt4dQ9U2EY Nmao/mAiUimuH6Au2PPtssw1Ul0xGXYX1W3arJ6ooOAlyxXGb3ilh1cCJChL3JDh YBPmpsB9Du/wjcnm4lrEEntrztd1NLsPj+7M+AIaYDl9CX7tUHnqmqCOdy9DSds5 V6zd3EVDCLRofEhrbuYTShQhh5DBxP0= -----END CERTIFICATE-----Generated at Thu Nov 21 07:40:39 2024 by rpki-client on console-ams.rpki-client.org