$ rpki-client -vvf rpki.apnic.net/member_repository/A91E5D61/0C6A0C9E1D7911E2879E38C508B02CD2/XlEJvjS4HAy74OQ1mneBpGJLn80.mft File: XlEJvjS4HAy74OQ1mneBpGJLn80.mft (raw, json) Hash identifier: eW+SwmopwqI7TsYiBmuF1wKVfg31L9cOmlANywZ/Q9k= Subject key identifier: B1:E4:F3:DB:D3:66:8F:7A:48:3D:28:4A:8F:10:BB:E7:A0:4A:D3:D0 Authority key identifier: 5E:51:09:BE:34:B8:1C:0C:BB:E0:E4:35:9A:77:81:A4:62:4B:9F:CD Certificate issuer: /CN=A91E5D61/serialNumber=5E5109BE34B81C0CBBE0E4359A7781A4624B9FCD Certificate serial: 125A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XlEJvjS4HAy74OQ1mneBpGJLn80.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E5D61/0C6A0C9E1D7911E2879E38C508B02CD2/XlEJvjS4HAy74OQ1mneBpGJLn80.mft Manifest number: 46BC Signing time: Wed 20 Nov 2024 14:20:53 +0000 Manifest this update: Wed 20 Nov 2024 14:20:52 +0000 Manifest next update: Wed 27 Nov 2024 14:20:52 +0000 Files and hashes: 1: XlEJvjS4HAy74OQ1mneBpGJLn80.crl (hash: 1Ug3Tc27lfSET0eNYGct4cn5VeGDLg0oUSVQmJNe6Vo=) 2: C5FA430E179711EDB9008D18C4F9AE02.roa (hash: GHnN7IPBztwTSkz/5T1Pzn2mpFjuZRSGTdYW2a+IpUM=) 3: 12300E80ECD911EEB21F7B7FC4F9AE02.roa (hash: idks1lefYLO6nPenvXoGS0zMdLXoYOwMfOiIKkDlkB8=) 4: 792023A8E0DD11EE86DB926AC4F9AE02.roa (hash: gZAAhBS7lDX/ARKaEp+quX+YnSdkN0XwL2ShlYH1ilM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E5D61/0C6A0C9E1D7911E2879E38C508B02CD2/XlEJvjS4HAy74OQ1mneBpGJLn80.crl rsync://rpki.apnic.net/member_repository/A91E5D61/0C6A0C9E1D7911E2879E38C508B02CD2/XlEJvjS4HAy74OQ1mneBpGJLn80.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XlEJvjS4HAy74OQ1mneBpGJLn80.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 14:20:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4698 (0x125a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5D61/serialNumber=5E5109BE34B81C0CBBE0E4359A7781A4624B9FCD Validity Not Before: Nov 20 14:20:52 2024 GMT Not After : Nov 27 14:20:52 2024 GMT Subject: CN=673df045-31d6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:66:19:a9:c5:b9:3e:19:25:f0:b7:d2:d1:4b: c1:90:f9:a6:3e:e6:41:d2:e2:43:27:f6:ad:d6:a7: 5f:96:f1:a5:77:88:86:eb:1a:ea:34:4e:7b:28:b3: af:c1:5e:39:4a:b1:a1:8a:e0:75:91:12:30:1c:46: 63:ef:52:9f:67:0f:b0:ae:40:a0:17:ca:07:d7:db: 56:da:81:79:c7:34:8b:3a:ea:14:dd:15:11:2f:c0: cd:66:6e:2d:57:14:6d:24:5c:d8:7e:93:f6:5b:7d: d6:28:45:52:70:93:65:d5:e1:dc:06:1c:ca:cf:b6: 80:ab:54:b9:8d:0b:e2:48:f6:f8:0e:88:2e:42:04: 52:ba:e1:b8:ae:a1:6d:ba:b9:92:66:08:1d:ac:3d: 01:5c:c8:a6:fd:fd:60:08:ff:0e:c4:cf:ea:68:6e: c5:a8:b3:11:00:fe:7c:2f:23:c7:c0:0a:a7:a5:54: 77:84:26:fd:66:57:64:dd:85:c8:32:5d:68:e5:14: ec:9c:22:70:af:13:0d:78:b2:a8:a8:60:76:5a:8e: 50:bf:b0:6e:5e:97:ae:7d:85:24:10:47:20:c6:67: e7:aa:4d:9f:ef:d2:d8:25:53:65:f4:43:bb:97:ff: 4a:a0:d2:c5:46:6d:66:3a:b1:ce:78:e0:06:c9:c4: 64:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:E4:F3:DB:D3:66:8F:7A:48:3D:28:4A:8F:10:BB:E7:A0:4A:D3:D0 X509v3 Authority Key Identifier: keyid:5E:51:09:BE:34:B8:1C:0C:BB:E0:E4:35:9A:77:81:A4:62:4B:9F:CD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E5D61/0C6A0C9E1D7911E2879E38C508B02CD2/XlEJvjS4HAy74OQ1mneBpGJLn80.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XlEJvjS4HAy74OQ1mneBpGJLn80.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E5D61/0C6A0C9E1D7911E2879E38C508B02CD2/XlEJvjS4HAy74OQ1mneBpGJLn80.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 47:73:e6:a4:fa:7d:26:53:86:14:60:8f:24:b2:46:70:9d:78: 74:70:ff:bf:b7:8a:bc:8f:cf:20:de:68:cc:8c:8a:98:d6:53: bc:e3:ec:5f:dd:92:09:34:c4:71:1e:d3:bf:e0:23:81:a0:8e: d2:f1:4d:2c:3e:c6:2c:2c:1d:89:71:a1:cd:9d:5d:09:24:1d: 20:d2:73:43:7f:dd:0a:42:fd:83:0d:6a:ac:e5:d2:51:fe:57: 74:8d:bd:61:db:c9:ca:b9:31:da:30:e9:d2:26:12:8a:e9:ac: ba:d6:0d:05:5a:6c:d4:ad:15:b2:17:26:bf:41:ee:d4:86:d0: 5a:d5:1e:e9:bd:a4:2a:39:5f:b2:98:7b:1c:da:31:31:f8:49: 7a:15:f8:0a:f1:74:e9:6d:1d:9b:27:04:a3:64:f6:6d:f8:3b: 34:a8:2c:94:8e:1a:49:35:56:40:08:0a:7a:1f:98:f6:fa:7c: 5a:5b:f1:0e:de:50:2c:69:5f:8d:22:a1:0b:67:e6:53:c2:65: 7d:82:b9:eb:82:4e:ac:63:d8:ee:59:77:ad:71:7c:43:8a:7f: 2b:63:88:2f:2c:c8:42:7f:3e:4c:b3:9f:4c:bc:f6:ed:03:92: ca:20:24:63:68:30:66:75:71:e2:6f:06:12:9f:21:69:85:31: f0:0d:47:99 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICElowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTVENjExMTAvBgNVBAUTKDVFNTEwOUJFMzRCODFDMENCQkUwRTQzNTlBNzc4MUE0 NjI0QjlGQ0QwHhcNMjQxMTIwMTQyMDUyWhcNMjQxMTI3MTQyMDUyWjAYMRYwFAYD VQQDEw02NzNkZjA0NS0zMWQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuGYZqcW5Phkl8LfS0UvBkPmmPuZB0uJDJ/at1qdflvGld4iG6xrqNE57KLOv wV45SrGhiuB1kRIwHEZj71KfZw+wrkCgF8oH19tW2oF5xzSLOuoU3RURL8DNZm4t VxRtJFzYfpP2W33WKEVScJNl1eHcBhzKz7aAq1S5jQviSPb4DoguQgRSuuG4rqFt urmSZggdrD0BXMim/f1gCP8OxM/qaG7FqLMRAP58LyPHwAqnpVR3hCb9Zldk3YXI Ml1o5RTsnCJwrxMNeLKoqGB2Wo5Qv7BuXpeufYUkEEcgxmfnqk2f79LYJVNl9EO7 l/9KoNLFRm1mOrHOeOAGycRkIQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLHk89vT Zo96SD0oSo8Qu+egStPQMB8GA1UdIwQYMBaAFF5RCb40uBwMu+DkNZp3gaRiS5/N MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNUQ2MS8wQzZBMEM5RTFE NzkxMUUyODc5RTM4QzUwOEIwMkNEMi9YbEVKdmpTNEhBeTc0T1ExbW5lQnBHSkxu ODAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hsRUp2alM0SEF5NzRPUTFtbmVCcEdKTG44MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NUQ2MS8wQzZBMEM5RTFENzkxMUUyODc5RTM4QzUwOEIwMkNEMi9YbEVKdmpTNEhB eTc0T1ExbW5lQnBHSkxuODAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBHc+ak+n0mU4YUYI8kskZwnXh0cP+/t4q8j88g3mjMjIqY1lO84+xf 3ZIJNMRxHtO/4COBoI7S8U0sPsYsLB2JcaHNnV0JJB0g0nNDf90KQv2DDWqs5dJR /ld0jb1h28nKuTHaMOnSJhKK6ay61g0FWmzUrRWyFya/Qe7UhtBa1R7pvaQqOV+y mHsc2jEx+El6FfgK8XTpbR2bJwSjZPZt+Ds0qCyUjhpJNVZACAp6H5j2+nxaW/EO 3lAsaV+NIqELZ+ZTwmV9grnrgk6sY9juWXetcXxDin8rY4gvLMhCfz5Ms59MvPbt A5LKICRjaDBmdXHibwYSnyFphTHwDUeZ -----END CERTIFICATE-----Generated at Wed Nov 20 16:00:19 2024 by rpki-client on console-ams.rpki-client.org