$ rpki-client -vvf rpki.apnic.net/member_repository/A91E7BD4/4E87A46A86B111EBB8BE217CC4F9AE02/XcAwMzGJiu_bheTZFABriTdr7-E.mft File: XcAwMzGJiu_bheTZFABriTdr7-E.mft (raw, json) Hash identifier: Wkvx2Z+hUr2vPaC5U0Aip7p3jbyw0TosqTHt1waf3mc= Subject key identifier: A1:EE:7E:CE:04:5F:71:76:99:49:16:9B:1A:02:9B:43:21:36:D0:81 Authority key identifier: 5D:C0:30:33:31:89:8A:EF:DB:85:E4:D9:14:00:6B:89:37:6B:EF:E1 Certificate issuer: /CN=A91E7BD4/serialNumber=5DC0303331898AEFDB85E4D914006B89376BEFE1 Certificate serial: 0605 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XcAwMzGJiu_bheTZFABriTdr7-E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E7BD4/4E87A46A86B111EBB8BE217CC4F9AE02/XcAwMzGJiu_bheTZFABriTdr7-E.mft Manifest number: 05FC Signing time: Fri 22 Nov 2024 22:21:40 +0000 Manifest this update: Fri 22 Nov 2024 22:21:39 +0000 Manifest next update: Fri 29 Nov 2024 22:21:39 +0000 Files and hashes: 1: XcAwMzGJiu_bheTZFABriTdr7-E.crl (hash: RsTare3/q+wOQxDRfkQEvh0LbOM4wOOvi/j8m2+x4H0=) 2: 81E3F4ACBBDA11ED8FDB4E45C4F9AE02.roa (hash: zRXwtVciA3XUq61vGPC3fC7y/rZPmZqFfk9/8k9uEj4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E7BD4/4E87A46A86B111EBB8BE217CC4F9AE02/XcAwMzGJiu_bheTZFABriTdr7-E.crl rsync://rpki.apnic.net/member_repository/A91E7BD4/4E87A46A86B111EBB8BE217CC4F9AE02/XcAwMzGJiu_bheTZFABriTdr7-E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XcAwMzGJiu_bheTZFABriTdr7-E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1541 (0x605) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E7BD4/serialNumber=5DC0303331898AEFDB85E4D914006B89376BEFE1 Validity Not Before: Nov 22 22:21:39 2024 GMT Not After : Nov 29 22:21:39 2024 GMT Subject: CN=674103f4-19c2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:c9:48:c5:77:68:fe:2f:9d:93:77:37:c3:35: 99:93:43:40:c5:ec:f0:cf:7a:73:12:ec:9a:03:51: 62:a9:cb:d6:9f:1f:49:ca:25:ac:00:e6:a5:43:e2: 8b:09:b1:1d:d7:43:e4:ba:79:78:52:3d:79:ec:5b: 48:ed:06:63:24:4e:39:bd:78:f2:70:9a:f8:83:1d: 48:b7:ae:18:d5:60:f4:32:19:a0:ff:96:53:22:50: 85:e3:8e:ad:60:bb:63:de:88:11:26:5e:f4:7b:37: 25:d9:af:94:c2:f2:65:b2:e5:80:43:63:e5:f7:7a: f1:44:2d:76:9b:8b:96:e1:1a:0d:be:57:91:a3:f2: ce:f0:c7:0b:1b:48:62:9e:39:83:a7:3c:2c:fe:84: 7d:b0:3e:15:83:0e:c2:c7:93:46:15:44:72:c4:8b: 9d:ec:5b:d4:55:2d:f7:9a:12:57:ca:6f:3a:eb:1e: 62:e0:32:a8:36:51:67:24:89:d1:9d:96:6a:20:3d: 2f:64:f8:a8:1f:68:a0:ad:e9:d0:08:16:d7:c8:30: 9e:ca:f2:ca:a7:bc:6e:0a:56:bb:ca:f6:19:a9:42: 5b:8e:72:7a:66:3e:08:1c:af:32:30:a7:98:ed:b0: 43:d7:90:28:91:91:d0:fe:67:83:59:34:50:58:b1: 4e:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:EE:7E:CE:04:5F:71:76:99:49:16:9B:1A:02:9B:43:21:36:D0:81 X509v3 Authority Key Identifier: keyid:5D:C0:30:33:31:89:8A:EF:DB:85:E4:D9:14:00:6B:89:37:6B:EF:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E7BD4/4E87A46A86B111EBB8BE217CC4F9AE02/XcAwMzGJiu_bheTZFABriTdr7-E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XcAwMzGJiu_bheTZFABriTdr7-E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E7BD4/4E87A46A86B111EBB8BE217CC4F9AE02/XcAwMzGJiu_bheTZFABriTdr7-E.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5b:a6:cb:b4:43:f2:af:c4:e6:4e:af:a4:bc:b4:19:19:c7:5a: 31:9b:6b:c2:73:3d:2d:65:93:bd:6b:bc:f8:47:ff:7d:a7:7f: 27:01:dd:e1:2e:d8:bf:b5:e8:95:92:e9:40:67:f0:96:0c:ed: 72:40:e5:9e:20:06:ee:6e:f4:5e:ed:fd:14:f3:18:48:b8:62: 09:5f:7d:04:7a:4a:59:e2:b7:a0:40:5c:ea:65:d2:5c:67:93: ce:ad:35:a4:aa:79:0b:fe:7f:56:3d:80:50:45:5c:6c:7f:1d: 26:aa:b6:90:2c:cf:0f:c4:10:89:b5:c5:63:0f:f4:3d:60:af: aa:26:8e:3d:b5:14:9d:80:40:e1:11:6d:ec:02:bf:4e:5e:9d: b6:9a:55:8b:95:11:6f:d4:0d:79:3a:e3:45:fa:eb:bc:06:b3: 73:c7:a8:d4:b5:62:b4:fc:20:5b:c4:52:7c:55:b8:dc:a3:d5: d3:98:9d:18:d9:8b:76:b2:7e:cb:f7:86:e1:02:d1:91:8c:97: 87:e3:c4:b8:2c:ee:c9:2c:74:c1:63:be:ce:52:79:cf:02:b5: 7e:cf:5f:3d:19:73:5e:75:84:75:f9:51:df:9a:8b:ce:5c:1a: a2:8c:3f:c6:5d:4a:b0:62:77:cb:18:70:de:ce:39:35:23:ea: d7:0b:43:78 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBgUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTdCRDQxMTAvBgNVBAUTKDVEQzAzMDMzMzE4OThBRUZEQjg1RTREOTE0MDA2Qjg5 Mzc2QkVGRTEwHhcNMjQxMTIyMjIyMTM5WhcNMjQxMTI5MjIyMTM5WjAYMRYwFAYD VQQDEw02NzQxMDNmNC0xOWMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAm8lIxXdo/i+dk3c3wzWZk0NAxezwz3pzEuyaA1FiqcvWnx9JyiWsAOalQ+KL CbEd10Pkunl4Uj157FtI7QZjJE45vXjycJr4gx1It64Y1WD0Mhmg/5ZTIlCF446t YLtj3ogRJl70ezcl2a+UwvJlsuWAQ2Pl93rxRC12m4uW4RoNvleRo/LO8McLG0hi njmDpzws/oR9sD4Vgw7Cx5NGFURyxIud7FvUVS33mhJXym866x5i4DKoNlFnJInR nZZqID0vZPioH2igrenQCBbXyDCeyvLKp7xuCla7yvYZqUJbjnJ6Zj4IHK8yMKeY 7bBD15AokZHQ/meDWTRQWLFOiQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKHufs4E X3F2mUkWmxoCm0MhNtCBMB8GA1UdIwQYMBaAFF3AMDMxiYrv24Xk2RQAa4k3a+/h MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFN0JENC80RTg3QTQ2QTg2 QjExMUVCQjhCRTIxN0NDNEY5QUUwMi9YY0F3TXpHSml1X2JoZVRaRkFCcmlUZHI3 LUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hjQXdNekdKaXVfYmhlVFpGQUJyaVRkcjctRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF N0JENC80RTg3QTQ2QTg2QjExMUVCQjhCRTIxN0NDNEY5QUUwMi9YY0F3TXpHSml1 X2JoZVRaRkFCcmlUZHI3LUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBbpsu0Q/KvxOZOr6S8tBkZx1oxm2vCcz0tZZO9a7z4R/99p38nAd3h Lti/teiVkulAZ/CWDO1yQOWeIAbubvRe7f0U8xhIuGIJX30EekpZ4regQFzqZdJc Z5POrTWkqnkL/n9WPYBQRVxsfx0mqraQLM8PxBCJtcVjD/Q9YK+qJo49tRSdgEDh EW3sAr9OXp22mlWLlRFv1A15OuNF+uu8BrNzx6jUtWK0/CBbxFJ8Vbjco9XTmJ0Y 2Yt2sn7L94bhAtGRjJeH48S4LO7JLHTBY77OUnnPArV+z189GXNedYR1+VHfmovO XBqijD/GXUqwYnfLGHDezjk1I+rXC0N4 -----END CERTIFICATE-----Generated at Fri Nov 22 23:39:36 2024 by rpki-client on console-fra.rpki-client.org