$ rpki-client -vvf rpki.apnic.net/member_repository/A91EBFAE/ED32440A290911E593BFC626C4F9AE02/xlPvd7GdEIz1xZrhgB8CADq1Xu0.mft File: xlPvd7GdEIz1xZrhgB8CADq1Xu0.mft (raw, json) Hash identifier: QCGp0xr+MnxrmeecpVO9ylLTAxyM/BLQ/vXmOwc88vc= Subject key identifier: D3:0C:EC:80:8B:35:17:14:7B:6B:0C:86:81:41:2F:40:83:D8:25:4E Authority key identifier: C6:53:EF:77:B1:9D:10:8C:F5:C5:9A:E1:80:1F:02:00:3A:B5:5E:ED Certificate issuer: /CN=A91EBFAE/serialNumber=C653EF77B19D108CF5C59AE1801F02003AB55EED Certificate serial: 24A6 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xlPvd7GdEIz1xZrhgB8CADq1Xu0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EBFAE/ED32440A290911E593BFC626C4F9AE02/xlPvd7GdEIz1xZrhgB8CADq1Xu0.mft Manifest number: 24A6 Signing time: Wed 20 Nov 2024 14:32:58 +0000 Manifest this update: Wed 20 Nov 2024 14:32:58 +0000 Manifest next update: Wed 27 Nov 2024 14:32:58 +0000 Files and hashes: 1: xlPvd7GdEIz1xZrhgB8CADq1Xu0.crl (hash: ICQjvs9vWg+s43Q8bDEgzG3o2DBbBxhCGqzohdBVwOw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EBFAE/ED32440A290911E593BFC626C4F9AE02/xlPvd7GdEIz1xZrhgB8CADq1Xu0.crl rsync://rpki.apnic.net/member_repository/A91EBFAE/ED32440A290911E593BFC626C4F9AE02/xlPvd7GdEIz1xZrhgB8CADq1Xu0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xlPvd7GdEIz1xZrhgB8CADq1Xu0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 14:32:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9382 (0x24a6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EBFAE/serialNumber=C653EF77B19D108CF5C59AE1801F02003AB55EED Validity Not Before: Nov 20 14:32:58 2024 GMT Not After : Nov 27 14:32:58 2024 GMT Subject: CN=673df31a-d88d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:42:32:de:d7:c7:9f:40:b1:99:fa:e6:d4:c8: 5b:dc:d3:70:69:3a:ff:d7:e0:09:01:80:cd:e8:e2: 63:3a:8e:bf:f9:de:62:ca:b2:d0:ec:64:93:b0:a4: f8:35:f1:37:50:34:a8:64:47:e8:ae:e9:45:fa:3f: 2c:f5:19:1b:a8:0e:7b:41:0a:92:91:77:c7:65:b7: ad:61:1f:7c:5c:89:6d:ad:c3:55:fb:62:55:28:c0: 26:da:84:76:62:bf:cc:d8:46:5f:78:0d:48:fe:51: 2b:e8:f3:90:16:21:3a:a4:8d:c3:cc:8d:2d:34:57: 86:dd:1f:97:07:23:94:7e:db:96:bc:af:3a:99:20: cc:fc:e7:21:37:35:3c:b9:88:14:06:31:0f:20:1c: 57:b3:8f:3d:25:57:ea:fa:5d:ed:81:9c:b5:4c:d3: e9:9d:e5:cd:6c:01:d5:64:a1:9f:7b:6f:fb:a1:8d: a1:0d:8d:76:96:76:99:84:de:6c:6c:14:16:0f:c9: 97:05:bc:e4:83:c5:e4:69:de:72:db:f6:29:eb:a7: 55:95:30:c9:0e:c9:ae:80:3e:10:0a:52:31:62:90: 37:57:45:66:82:6e:bf:b2:5b:7f:30:d0:1c:a2:09: 78:c5:bb:5e:53:74:74:d9:0e:a4:ed:c2:76:67:08: 12:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:0C:EC:80:8B:35:17:14:7B:6B:0C:86:81:41:2F:40:83:D8:25:4E X509v3 Authority Key Identifier: keyid:C6:53:EF:77:B1:9D:10:8C:F5:C5:9A:E1:80:1F:02:00:3A:B5:5E:ED X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EBFAE/ED32440A290911E593BFC626C4F9AE02/xlPvd7GdEIz1xZrhgB8CADq1Xu0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xlPvd7GdEIz1xZrhgB8CADq1Xu0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EBFAE/ED32440A290911E593BFC626C4F9AE02/xlPvd7GdEIz1xZrhgB8CADq1Xu0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2f:f8:36:eb:ff:e6:a3:16:d5:76:84:99:84:85:4d:d5:ef:84: 5a:d8:53:39:61:79:23:8a:5f:1c:eb:d6:b8:c7:d8:23:34:4d: c1:fb:af:f8:37:33:ff:15:d8:e7:07:34:15:9a:87:64:20:66: 6f:20:82:a1:b6:a6:01:14:10:cf:8a:ff:c6:9a:c5:72:fc:77: 7a:08:5a:6a:19:5f:20:41:e4:76:ea:ac:ff:5e:85:f3:7d:91: 2d:c3:cc:d9:4d:6a:2e:a4:e7:ee:ce:c6:a4:8c:79:6a:1f:43: 04:e3:fa:5f:ba:60:66:77:44:77:be:ac:ea:d8:1f:db:80:58: 8c:38:c0:e4:19:ab:f1:49:41:88:45:ef:c7:90:9f:37:2d:27: 8a:da:71:6b:c7:0f:ef:dd:46:73:9e:a8:e6:fc:13:49:73:ae: 0f:35:96:2e:3c:67:6f:af:81:d6:84:85:c3:ab:4f:4a:56:5c: 29:0a:d3:82:90:d2:48:e2:0a:8e:ab:28:2e:2e:0e:a1:08:18: 85:45:4c:89:be:42:ce:5f:52:18:24:b0:4c:9f:2c:1c:30:98: 7f:74:ca:7f:6b:77:29:4b:91:8a:99:02:28:97:39:66:91:c6: 5e:37:09:17:0c:9a:0f:1d:b4:6a:f0:3e:9e:8d:87:d3:94:3d: 97:50:5b:f3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICJKYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUJGQUUxMTAvBgNVBAUTKEM2NTNFRjc3QjE5RDEwOENGNUM1OUFFMTgwMUYwMjAw M0FCNTVFRUQwHhcNMjQxMTIwMTQzMjU4WhcNMjQxMTI3MTQzMjU4WjAYMRYwFAYD VQQDEw02NzNkZjMxYS1kODhkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyEIy3tfHn0Cxmfrm1Mhb3NNwaTr/1+AJAYDN6OJjOo6/+d5iyrLQ7GSTsKT4 NfE3UDSoZEforulF+j8s9RkbqA57QQqSkXfHZbetYR98XIltrcNV+2JVKMAm2oR2 Yr/M2EZfeA1I/lEr6POQFiE6pI3DzI0tNFeG3R+XByOUftuWvK86mSDM/OchNzU8 uYgUBjEPIBxXs489JVfq+l3tgZy1TNPpneXNbAHVZKGfe2/7oY2hDY12lnaZhN5s bBQWD8mXBbzkg8Xkad5y2/Yp66dVlTDJDsmugD4QClIxYpA3V0Vmgm6/slt/MNAc ogl4xbteU3R02Q6k7cJ2ZwgSXQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNMM7ICL NRcUe2sMhoFBL0CD2CVOMB8GA1UdIwQYMBaAFMZT73exnRCM9cWa4YAfAgA6tV7t MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQkZBRS9FRDMyNDQwQTI5 MDkxMUU1OTNCRkM2MjZDNEY5QUUwMi94bFB2ZDdHZEVJejF4WnJoZ0I4Q0FEcTFY dTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3hsUHZkN0dkRUl6MXhacmhnQjhDQURxMVh1MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QkZBRS9FRDMyNDQwQTI5MDkxMUU1OTNCRkM2MjZDNEY5QUUwMi94bFB2ZDdHZEVJ ejF4WnJoZ0I4Q0FEcTFYdTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAv+Dbr/+ajFtV2hJmEhU3V74Ra2FM5YXkjil8c69a4x9gjNE3B+6/4 NzP/FdjnBzQVmodkIGZvIIKhtqYBFBDPiv/GmsVy/Hd6CFpqGV8gQeR26qz/XoXz fZEtw8zZTWoupOfuzsakjHlqH0ME4/pfumBmd0R3vqzq2B/bgFiMOMDkGavxSUGI Re/HkJ83LSeK2nFrxw/v3UZznqjm/BNJc64PNZYuPGdvr4HWhIXDq09KVlwpCtOC kNJI4gqOqyguLg6hCBiFRUyJvkLOX1IYJLBMnywcMJh/dMp/a3cpS5GKmQIolzlm kcZeNwkXDJoPHbRq8D6ejYfTlD2XUFvz -----END CERTIFICATE-----Generated at Wed Nov 20 16:00:20 2024 by rpki-client on console-ams.rpki-client.org