$ rpki-client -vvf rpki.apnic.net/member_repository/A91F0D86/68E7978A6CBD11EEB846F379C4F9AE02/X1zijATRbpUODrzVlVVCSD05VtA.mft File: X1zijATRbpUODrzVlVVCSD05VtA.mft (raw, json) Hash identifier: t96H+UWEF986aTrS75XyhMAYxTZFwxO++DcnmTC46WM= Subject key identifier: 2B:57:C2:DE:44:F4:37:77:1E:EC:F9:E7:9B:AB:10:B5:1B:F2:78:EF Authority key identifier: 5F:5C:E2:8C:04:D1:6E:95:0E:0E:BC:D5:95:55:42:48:3D:39:56:D0 Certificate issuer: /CN=A91F0D86/serialNumber=5F5CE28C04D16E950E0EBCD5955542483D3956D0 Certificate serial: D4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X1zijATRbpUODrzVlVVCSD05VtA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F0D86/68E7978A6CBD11EEB846F379C4F9AE02/X1zijATRbpUODrzVlVVCSD05VtA.mft Manifest number: D1 Signing time: Sat 23 Nov 2024 03:46:50 +0000 Manifest this update: Sat 23 Nov 2024 03:46:49 +0000 Manifest next update: Sat 30 Nov 2024 03:46:49 +0000 Files and hashes: 1: X1zijATRbpUODrzVlVVCSD05VtA.crl (hash: WgmkzvUfaqIPoOStMvv4hsg8C08KT8Hw85HAxiL5Sws=) 2: B7E86E0C6D8711EEB912BD62C4F9AE02.roa (hash: 1i4x5btwBoyVs/bOkBs3utfiU+YxigrlqpfcPAr0jaw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F0D86/68E7978A6CBD11EEB846F379C4F9AE02/X1zijATRbpUODrzVlVVCSD05VtA.crl rsync://rpki.apnic.net/member_repository/A91F0D86/68E7978A6CBD11EEB846F379C4F9AE02/X1zijATRbpUODrzVlVVCSD05VtA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X1zijATRbpUODrzVlVVCSD05VtA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 212 (0xd4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F0D86/serialNumber=5F5CE28C04D16E950E0EBCD5955542483D3956D0 Validity Not Before: Nov 23 03:46:49 2024 GMT Not After : Nov 30 03:46:49 2024 GMT Subject: CN=6741502a-8a7b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:d7:6a:6a:70:2a:03:a9:a5:a9:4a:56:07:6e: e4:30:79:2d:ba:6a:67:6f:38:b9:88:cc:00:b5:50: 4b:51:37:6e:ae:4a:6f:d8:4e:09:a9:47:df:ef:92: c9:59:14:4b:8f:fe:a3:14:ee:fa:7a:98:11:2b:7c: ee:b6:f0:30:5e:03:3b:f3:ab:17:67:e7:58:97:f9: 47:32:c8:b7:4d:3d:ec:c1:76:45:a4:44:45:42:21: ff:69:6c:18:49:f6:11:9e:50:00:0d:cb:4e:9a:78: 49:09:bc:47:95:6b:a8:b1:20:54:dc:9f:2c:18:54: 4d:82:0f:d9:30:77:79:eb:6d:1b:f2:e9:9d:30:8f: 64:32:bc:87:65:37:cb:dd:3c:45:5e:0c:e1:1a:ac: 9f:50:25:8c:1a:35:94:fe:51:d0:5c:70:ba:b0:32: f9:16:f1:c3:c6:9c:45:f7:2c:db:81:9b:a0:5c:04: a0:12:af:53:46:ac:7a:51:06:f5:28:78:5f:75:0c: 6b:c2:cb:dc:b0:71:66:79:a4:55:97:f2:8f:cb:eb: a9:63:37:d6:fc:29:e3:8b:9e:df:16:6b:9e:dc:68: c4:34:de:fb:2a:83:ee:c0:60:37:46:8c:98:bf:23: 8b:f4:66:63:e2:aa:d6:64:1e:9f:66:02:05:0d:8d: 81:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:57:C2:DE:44:F4:37:77:1E:EC:F9:E7:9B:AB:10:B5:1B:F2:78:EF X509v3 Authority Key Identifier: keyid:5F:5C:E2:8C:04:D1:6E:95:0E:0E:BC:D5:95:55:42:48:3D:39:56:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F0D86/68E7978A6CBD11EEB846F379C4F9AE02/X1zijATRbpUODrzVlVVCSD05VtA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X1zijATRbpUODrzVlVVCSD05VtA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F0D86/68E7978A6CBD11EEB846F379C4F9AE02/X1zijATRbpUODrzVlVVCSD05VtA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 99:5f:e8:db:b1:bc:26:9a:9c:26:8e:8e:dc:df:07:15:d2:44: 67:c3:f8:0c:3c:f6:dc:cf:e6:cd:b7:6d:05:c7:3b:f2:95:3a: f8:cb:9b:59:06:9b:c4:91:71:ca:4b:4d:70:21:18:45:ea:03: 8d:64:26:0c:17:d7:62:b9:a3:18:f4:46:02:92:f9:33:a3:38: cf:fd:25:68:7a:51:62:1e:23:19:dc:5a:25:91:37:68:6b:a2: 23:8c:7d:34:6b:a9:9a:f9:ed:39:fb:b7:65:71:e6:cd:d9:2f: b9:71:3d:68:be:9e:41:3d:e9:97:16:75:2a:12:91:06:ce:18: 4f:ea:a4:ec:ab:2c:d5:fc:c7:66:86:70:c3:47:a9:da:6e:73: 41:1d:f4:ef:66:53:67:91:a8:84:04:d1:84:ef:0c:7c:1a:3b: db:06:e3:d0:9f:15:df:5f:cd:23:ce:98:83:69:9c:d6:fc:f4: 3e:ca:78:03:74:1b:5a:8f:fb:18:63:85:a7:cb:2d:b8:d5:a9: c3:92:23:0d:8f:f0:e9:9f:fe:e7:6b:20:b5:77:fb:7b:ed:82: ec:1d:ef:8c:2b:eb:71:4c:28:7a:ee:1f:a1:0b:f8:39:55:2a: 8e:5b:16:a2:a6:3e:db:f1:d4:c7:43:35:bc:1e:1e:69:af:50: 36:de:7e:0f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICANQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjBEODYxMTAvBgNVBAUTKDVGNUNFMjhDMDREMTZFOTUwRTBFQkNENTk1NTU0MjQ4 M0QzOTU2RDAwHhcNMjQxMTIzMDM0NjQ5WhcNMjQxMTMwMDM0NjQ5WjAYMRYwFAYD VQQDEw02NzQxNTAyYS04YTdiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlddqanAqA6mlqUpWB27kMHktumpnbzi5iMwAtVBLUTdurkpv2E4JqUff75LJ WRRLj/6jFO76epgRK3zutvAwXgM786sXZ+dYl/lHMsi3TT3swXZFpERFQiH/aWwY SfYRnlAADctOmnhJCbxHlWuosSBU3J8sGFRNgg/ZMHd5620b8umdMI9kMryHZTfL 3TxFXgzhGqyfUCWMGjWU/lHQXHC6sDL5FvHDxpxF9yzbgZugXASgEq9TRqx6UQb1 KHhfdQxrwsvcsHFmeaRVl/KPy+upYzfW/Cnji57fFmue3GjENN77KoPuwGA3RoyY vyOL9GZj4qrWZB6fZgIFDY2BqQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCtXwt5E 9Dd3Huz555urELUb8njvMB8GA1UdIwQYMBaAFF9c4owE0W6VDg681ZVVQkg9OVbQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMEQ4Ni82OEU3OTc4QTZD QkQxMUVFQjg0NkYzNzlDNEY5QUUwMi9YMXppakFUUmJwVU9EcnpWbFZWQ1NEMDVW dEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1gxemlqQVRSYnBVT0RyelZsVlZDU0QwNVZ0QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MEQ4Ni82OEU3OTc4QTZDQkQxMUVFQjg0NkYzNzlDNEY5QUUwMi9YMXppakFUUmJw VU9EcnpWbFZWQ1NEMDVWdEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCZX+jbsbwmmpwmjo7c3wcV0kRnw/gMPPbcz+bNt20FxzvylTr4y5tZ BpvEkXHKS01wIRhF6gONZCYMF9diuaMY9EYCkvkzozjP/SVoelFiHiMZ3FolkTdo a6IjjH00a6ma+e05+7dlcebN2S+5cT1ovp5BPemXFnUqEpEGzhhP6qTsqyzV/Mdm hnDDR6nabnNBHfTvZlNnkaiEBNGE7wx8GjvbBuPQnxXfX80jzpiDaZzW/PQ+yngD dBtaj/sYY4Wnyy241anDkiMNj/Dpn/7nayC1d/t77YLsHe+MK+txTCh67h+hC/g5 VSqOWxaipj7b8dTHQzW8Hh5pr1A23n4P -----END CERTIFICATE-----Generated at Sat Nov 23 05:03:00 2024 by rpki-client on console-fra.rpki-client.org