$ rpki-client -vvf rpki.apnic.net/member_repository/A91E9F89/5BE74878C69E11EA9BF8A33CC4F9AE02/XzB-YnSsOeVOmYZtq7hcLJ79FrE.mft File: XzB-YnSsOeVOmYZtq7hcLJ79FrE.mft (raw, json) Hash identifier: PGNd0HC0wzfRVKZLmzuyy/uvcsgYX/OJKSEgCN9+DuE= Subject key identifier: A1:BA:DC:85:08:DE:34:8C:36:00:26:2A:54:67:7D:88:EB:D0:30:AB Authority key identifier: 5F:30:7E:62:74:AC:39:E5:4E:99:86:6D:AB:B8:5C:2C:9E:FD:16:B1 Certificate issuer: /CN=A91E9F89/serialNumber=5F307E6274AC39E54E99866DABB85C2C9EFD16B1 Certificate serial: 0808 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XzB-YnSsOeVOmYZtq7hcLJ79FrE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E9F89/5BE74878C69E11EA9BF8A33CC4F9AE02/XzB-YnSsOeVOmYZtq7hcLJ79FrE.mft Manifest number: 0802 Signing time: Fri 22 Nov 2024 20:36:40 +0000 Manifest this update: Fri 22 Nov 2024 20:36:40 +0000 Manifest next update: Fri 29 Nov 2024 20:36:40 +0000 Files and hashes: 1: XzB-YnSsOeVOmYZtq7hcLJ79FrE.crl (hash: R9liBqRoVStQ70aFHqW5SYR5ZesWrJ4x35bTaVBkYic=) 2: 05B67AF8C6A011EAA70D183FC4F9AE02.roa (hash: 04/HwV26/Fx1bZoGuRdSyRLiYV06aFK5mycaJ+/tqsU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E9F89/5BE74878C69E11EA9BF8A33CC4F9AE02/XzB-YnSsOeVOmYZtq7hcLJ79FrE.crl rsync://rpki.apnic.net/member_repository/A91E9F89/5BE74878C69E11EA9BF8A33CC4F9AE02/XzB-YnSsOeVOmYZtq7hcLJ79FrE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XzB-YnSsOeVOmYZtq7hcLJ79FrE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:36:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2056 (0x808) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E9F89/serialNumber=5F307E6274AC39E54E99866DABB85C2C9EFD16B1 Validity Not Before: Nov 22 20:36:40 2024 GMT Not After : Nov 29 20:36:40 2024 GMT Subject: CN=6740eb58-eb43 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:e2:1f:27:26:3c:5a:c3:8a:08:88:ae:e2:19: d2:80:5d:c8:e9:d5:7d:a2:73:92:3a:04:c4:82:ad: 7a:76:c7:53:c6:37:9d:59:36:e8:ae:2f:c2:f8:e4: ec:8d:a9:b1:ae:da:19:bf:8c:0c:69:d8:6f:49:ba: 9c:3c:a6:8b:c8:a0:62:5f:8e:7c:d8:55:cb:e6:b4: dd:72:a8:39:da:be:c7:8a:ca:be:34:31:aa:23:a4: 9c:48:22:f3:51:a9:37:8d:cd:58:c9:14:19:6d:27: a4:d2:15:3c:94:ad:ef:15:13:d4:1a:72:bd:38:e9: 62:94:99:05:a7:4e:32:c2:f4:07:ef:40:0b:2a:e4: ae:9d:2f:97:13:ab:93:eb:fd:08:f8:58:4c:4a:ff: c2:cd:48:85:18:72:b5:10:f6:db:73:cb:a1:fe:d5: 2f:3f:0e:c9:16:34:ad:27:6b:87:99:ae:95:d3:3e: b1:5d:37:70:df:f2:ed:78:4d:a4:d1:38:84:0e:8d: 68:09:69:52:69:e7:fd:b7:53:9c:57:03:0c:4c:3a: 2d:51:c1:7b:50:7e:a9:cb:ad:ae:cf:4a:78:27:50: fb:64:bc:88:5c:13:0c:1d:42:da:4b:f8:95:c6:21: 81:91:89:1a:43:b7:4c:ef:f1:6a:d0:eb:9e:99:6e: a3:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:BA:DC:85:08:DE:34:8C:36:00:26:2A:54:67:7D:88:EB:D0:30:AB X509v3 Authority Key Identifier: keyid:5F:30:7E:62:74:AC:39:E5:4E:99:86:6D:AB:B8:5C:2C:9E:FD:16:B1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E9F89/5BE74878C69E11EA9BF8A33CC4F9AE02/XzB-YnSsOeVOmYZtq7hcLJ79FrE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XzB-YnSsOeVOmYZtq7hcLJ79FrE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E9F89/5BE74878C69E11EA9BF8A33CC4F9AE02/XzB-YnSsOeVOmYZtq7hcLJ79FrE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9a:c4:f0:8b:a9:ca:bd:56:20:5c:4c:09:e1:fa:1e:80:c1:78: fb:9b:2f:63:f2:8c:fe:f7:3d:95:9c:a1:51:0b:c0:c8:d4:5b: 76:ad:27:6a:5d:65:bf:a4:c3:40:b1:4f:d3:77:70:fc:77:cb: 58:02:b3:18:f8:44:4c:62:d3:14:57:aa:71:39:66:b1:f4:a1: b7:fb:3b:49:bf:64:c0:cb:da:57:6e:3c:b7:be:5e:0e:25:92: 86:91:bc:0a:f4:44:d5:4e:38:71:df:85:db:d2:67:7c:ca:93: fd:40:55:8b:bf:4e:71:cb:ef:e9:71:e9:63:c7:8c:bf:7e:86: 0d:9e:bc:d7:db:d4:5e:ed:84:d1:4e:74:b9:ea:96:b3:60:56: 7a:3a:77:d3:51:fb:86:c9:c4:89:b4:ee:28:eb:f2:30:6a:de: 26:bf:50:d0:c4:5f:31:53:5f:e7:df:3e:74:3b:41:dc:07:e2: 2d:61:e4:54:5d:3f:0e:e0:e9:11:63:03:c5:03:39:56:9d:44: a0:5a:aa:0e:92:65:a1:f1:55:1d:a4:a6:61:f2:9b:6a:08:4a: 2a:ad:8f:ab:77:60:74:fc:cb:8e:e5:d2:d5:b9:51:ad:12:d7: cf:f0:76:93:5b:f9:c0:90:7b:ee:15:20:ec:9a:67:90:27:6d: 72:04:54:b0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCAgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTlGODkxMTAvBgNVBAUTKDVGMzA3RTYyNzRBQzM5RTU0RTk5ODY2REFCQjg1QzJD OUVGRDE2QjEwHhcNMjQxMTIyMjAzNjQwWhcNMjQxMTI5MjAzNjQwWjAYMRYwFAYD VQQDEw02NzQwZWI1OC1lYjQzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq+IfJyY8WsOKCIiu4hnSgF3I6dV9onOSOgTEgq16dsdTxjedWTbori/C+OTs jamxrtoZv4wMadhvSbqcPKaLyKBiX4582FXL5rTdcqg52r7Hisq+NDGqI6ScSCLz Uak3jc1YyRQZbSek0hU8lK3vFRPUGnK9OOlilJkFp04ywvQH70ALKuSunS+XE6uT 6/0I+FhMSv/CzUiFGHK1EPbbc8uh/tUvPw7JFjStJ2uHma6V0z6xXTdw3/LteE2k 0TiEDo1oCWlSaef9t1OcVwMMTDotUcF7UH6py62uz0p4J1D7ZLyIXBMMHULaS/iV xiGBkYkaQ7dM7/Fq0OuemW6jQQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKG63IUI 3jSMNgAmKlRnfYjr0DCrMB8GA1UdIwQYMBaAFF8wfmJ0rDnlTpmGbau4XCye/Rax MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOUY4OS81QkU3NDg3OEM2 OUUxMUVBOUJGOEEzM0NDNEY5QUUwMi9YekItWW5Tc09lVk9tWVp0cTdoY0xKNzlG ckUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1h6Qi1ZblNzT2VWT21ZWnRxN2hjTEo3OUZyRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF OUY4OS81QkU3NDg3OEM2OUUxMUVBOUJGOEEzM0NDNEY5QUUwMi9YekItWW5Tc09l Vk9tWVp0cTdoY0xKNzlGckUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCaxPCLqcq9ViBcTAnh+h6AwXj7my9j8oz+9z2VnKFRC8DI1Ft2rSdq XWW/pMNAsU/Td3D8d8tYArMY+ERMYtMUV6pxOWax9KG3+ztJv2TAy9pXbjy3vl4O JZKGkbwK9ETVTjhx34Xb0md8ypP9QFWLv05xy+/pceljx4y/foYNnrzX29Re7YTR TnS56pazYFZ6OnfTUfuGycSJtO4o6/Iwat4mv1DQxF8xU1/n3z50O0HcB+ItYeRU XT8O4OkRYwPFAzlWnUSgWqoOkmWh8VUdpKZh8ptqCEoqrY+rd2B0/MuO5dLVuVGt EtfP8HaTW/nAkHvuFSDsmmeQJ21yBFSw -----END CERTIFICATE-----Generated at Fri Nov 22 22:24:14 2024 by rpki-client on console-fra.rpki-client.org