$ rpki-client -vvf rpki.apnic.net/member_repository/A91E3C76/B4992D52345811EFB42F9D37C4F9AE02/XwIkjJxclPFTxZ9Wdyxf2n-Ncec.mft File: XwIkjJxclPFTxZ9Wdyxf2n-Ncec.mft (raw, json) Hash identifier: slxviyr/4NruFmwEkFIYeg9U/39n363zTjcDZTxvBfs= Subject key identifier: 20:E3:E6:DD:A0:EB:3D:1A:1D:29:33:E8:9D:2E:4D:4B:27:1B:E3:0B Authority key identifier: 5F:02:24:8C:9C:5C:94:F1:53:C5:9F:56:77:2C:5F:DA:7F:8D:71:E7 Certificate issuer: /CN=A91E3C76/serialNumber=5F02248C9C5C94F153C59F56772C5FDA7F8D71E7 Certificate serial: 2E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XwIkjJxclPFTxZ9Wdyxf2n-Ncec.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E3C76/B4992D52345811EFB42F9D37C4F9AE02/XwIkjJxclPFTxZ9Wdyxf2n-Ncec.mft Manifest number: 2C Signing time: Sun 15 Sep 2024 10:09:20 +0000 Manifest this update: Sun 15 Sep 2024 10:09:20 +0000 Manifest next update: Sun 22 Sep 2024 10:09:20 +0000 Files and hashes: 1: XwIkjJxclPFTxZ9Wdyxf2n-Ncec.crl (hash: 263rriJ7eTvke+/Ck1p19caWjZLpUQG+DPIClWiVLBA=) 2: 41F5CF98345911EFB9E92739C4F9AE02.roa (hash: HWKoHZe7CLuc4iJ8hAxu/nwRzoDNyvIr4mOVi37eN7M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E3C76/B4992D52345811EFB42F9D37C4F9AE02/XwIkjJxclPFTxZ9Wdyxf2n-Ncec.crl rsync://rpki.apnic.net/member_repository/A91E3C76/B4992D52345811EFB42F9D37C4F9AE02/XwIkjJxclPFTxZ9Wdyxf2n-Ncec.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XwIkjJxclPFTxZ9Wdyxf2n-Ncec.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 22 Sep 2024 02:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 46 (0x2e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E3C76/serialNumber=5F02248C9C5C94F153C59F56772C5FDA7F8D71E7 Validity Not Before: Sep 15 10:09:20 2024 GMT Not After : Sep 22 10:09:20 2024 GMT Subject: CN=66e6b250-5cd5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:85:6e:0a:c2:a7:59:cc:8c:6c:56:89:8a:6c: bb:56:a2:da:79:6b:8c:26:0e:ae:b7:4a:2f:6b:2c: 5c:37:a3:21:cc:47:26:7e:f8:73:42:81:6a:98:98: 11:4c:44:ea:92:af:44:05:cb:62:4b:5e:65:8b:31: 26:31:ae:e5:3c:7c:e6:e2:06:5a:76:ae:c4:e6:be: 3c:59:fd:9b:aa:49:b8:9b:98:eb:3e:e0:b0:bc:fb: 35:6a:34:25:a1:ec:7e:27:07:b2:10:8f:d9:da:59: ea:0b:ed:ff:54:0b:76:8c:99:46:d4:8b:c9:48:b6: e0:2e:d4:9e:e3:77:a6:46:df:a0:7a:e2:88:ba:2b: d8:d6:9b:fe:7a:96:48:0f:e7:da:4a:58:b7:f8:40: ad:eb:10:24:01:25:53:fb:c9:06:2d:d4:4b:1b:b0: 62:a7:d3:53:69:df:80:a4:1f:2b:3d:50:fb:c9:c2: fd:5f:cb:8c:73:d2:4f:a0:9e:d5:0b:1b:87:66:67: 3a:53:34:91:19:a3:5c:c1:8d:fb:80:65:8a:f1:03: 96:8f:60:12:c5:51:51:84:cc:e2:0b:b2:4a:c4:f4: 90:8d:d4:ec:01:51:89:d6:4e:be:33:2a:86:e4:82: f7:77:70:33:e9:a3:b1:60:cf:09:8c:93:06:cb:9e: ef:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:E3:E6:DD:A0:EB:3D:1A:1D:29:33:E8:9D:2E:4D:4B:27:1B:E3:0B X509v3 Authority Key Identifier: keyid:5F:02:24:8C:9C:5C:94:F1:53:C5:9F:56:77:2C:5F:DA:7F:8D:71:E7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E3C76/B4992D52345811EFB42F9D37C4F9AE02/XwIkjJxclPFTxZ9Wdyxf2n-Ncec.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XwIkjJxclPFTxZ9Wdyxf2n-Ncec.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E3C76/B4992D52345811EFB42F9D37C4F9AE02/XwIkjJxclPFTxZ9Wdyxf2n-Ncec.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3f:97:bc:33:d6:55:8f:c1:08:9c:89:43:5b:23:ac:a5:9e:a1: c6:ce:6f:71:1e:84:4a:4e:18:d6:62:67:15:d9:4f:91:57:64: 8a:39:18:52:fc:17:f3:15:e4:26:69:3b:3d:06:49:5c:65:ea: 5a:40:61:11:8b:23:50:39:26:d2:12:f3:f6:d7:1a:26:b0:4b: db:9e:c5:06:56:03:e7:79:c4:c8:d6:2e:22:34:c6:ca:5d:4d: 37:9c:57:33:67:f8:43:5a:9d:e8:80:dc:28:42:f2:29:a1:9b: b3:c8:3b:f6:c1:71:b2:4a:cd:ab:fe:e4:68:7f:6c:de:4d:dd: 5a:d5:06:cd:32:bb:1c:8c:fe:91:ed:3d:b1:8f:19:f3:54:89: 92:15:f2:c7:26:d8:45:82:6d:4e:9a:ff:bb:ca:e9:65:3b:66: 97:63:79:a6:6b:57:6c:95:e4:c6:61:c6:03:af:81:e6:5c:9b: 3a:55:a5:87:27:fb:74:0c:09:bc:93:f9:36:e3:9a:e5:ba:80: bf:56:33:0f:a9:e9:d4:0c:c0:79:23:7e:e9:5b:a0:42:1c:49: 30:e0:0d:ba:dc:f3:f9:ef:79:75:d8:91:0a:19:37:55:75:5b: 64:78:14:19:36:22:19:07:71:91:da:02:56:6a:14:ba:9d:81: f4:f5:89:f2 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBLjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF M0M3NjExMC8GA1UEBRMoNUYwMjI0OEM5QzVDOTRGMTUzQzU5RjU2NzcyQzVGREE3 RjhENzFFNzAeFw0yNDA5MTUxMDA5MjBaFw0yNDA5MjIxMDA5MjBaMBgxFjAUBgNV BAMTDTY2ZTZiMjUwLTVjZDUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCthW4KwqdZzIxsVomKbLtWotp5a4wmDq63Si9rLFw3oyHMRyZ++HNCgWqYmBFM ROqSr0QFy2JLXmWLMSYxruU8fObiBlp2rsTmvjxZ/ZuqSbibmOs+4LC8+zVqNCWh 7H4nB7IQj9naWeoL7f9UC3aMmUbUi8lItuAu1J7jd6ZG36B64oi6K9jWm/56lkgP 59pKWLf4QK3rECQBJVP7yQYt1EsbsGKn01Np34CkHys9UPvJwv1fy4xz0k+gntUL G4dmZzpTNJEZo1zBjfuAZYrxA5aPYBLFUVGEzOILskrE9JCN1OwBUYnWTr4zKobk gvd3cDPpo7FgzwmMkwbLnu8vAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUIOPm3aDr PRodKTPonS5NSycb4wswHwYDVR0jBBgwFoAUXwIkjJxclPFTxZ9Wdyxf2n+Ncecw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUUzQzc2L0I0OTkyRDUyMzQ1 ODExRUZCNDJGOUQzN0M0RjlBRTAyL1h3SWtqSnhjbFBGVHhaOVdkeXhmMm4tTmNl Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvWHdJa2pKeGNsUEZUeFo5V2R5eGYybi1OY2VjLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUUz Qzc2L0I0OTkyRDUyMzQ1ODExRUZCNDJGOUQzN0M0RjlBRTAyL1h3SWtqSnhjbFBG VHhaOVdkeXhmMm4tTmNlYy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAD+XvDPWVY/BCJyJQ1sjrKWeocbOb3EehEpOGNZiZxXZT5FXZIo5GFL8 F/MV5CZpOz0GSVxl6lpAYRGLI1A5JtIS8/bXGiawS9uexQZWA+d5xMjWLiI0xspd TTecVzNn+ENaneiA3ChC8imhm7PIO/bBcbJKzav+5Gh/bN5N3VrVBs0yuxyM/pHt PbGPGfNUiZIV8scm2EWCbU6a/7vK6WU7ZpdjeaZrV2yV5MZhxgOvgeZcmzpVpYcn +3QMCbyT+TbjmuW6gL9WMw+p6dQMwHkjfulboEIcSTDgDbrc8/nveXXYkQoZN1V1 W2R4FBk2IhkHcZHaAlZqFLqdgfT1ifI= -----END CERTIFICATE-----Generated at Sun Sep 15 13:42:45 2024 by rpki-client on console-fra.rpki-client.org