$ rpki-client -vvf rpki.apnic.net/member_repository/A91F4CFA/1C2FAB2E305911EBB835C130C4F9AE02/XozcAfwJtFN0mgHuUjmzXt4kvmw.mft File: XozcAfwJtFN0mgHuUjmzXt4kvmw.mft (raw, json) Hash identifier: sr1wWJ+TgFg2o76jb303T0lVAVplUOqn8xAlOyZn5Pg= Subject key identifier: D2:CE:21:6A:21:49:28:71:59:73:D9:5B:8A:57:19:BB:50:62:5F:65 Authority key identifier: 5E:8C:DC:01:FC:09:B4:53:74:9A:01:EE:52:39:B3:5E:DE:24:BE:6C Certificate issuer: /CN=A91F4CFA/serialNumber=5E8CDC01FC09B453749A01EE5239B35EDE24BE6C Certificate serial: 06D7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XozcAfwJtFN0mgHuUjmzXt4kvmw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F4CFA/1C2FAB2E305911EBB835C130C4F9AE02/XozcAfwJtFN0mgHuUjmzXt4kvmw.mft Manifest number: 06D2 Signing time: Fri 22 Nov 2024 21:38:36 +0000 Manifest this update: Fri 22 Nov 2024 21:38:35 +0000 Manifest next update: Fri 29 Nov 2024 21:38:35 +0000 Files and hashes: 1: XozcAfwJtFN0mgHuUjmzXt4kvmw.crl (hash: 2YaRvN3nZgTObGXtowzm3Qk9coFJ3VbbVSEOmP1fJ54=) 2: A5D573E4305A11EB921D6332C4F9AE02.roa (hash: K6694ItlfbumtbL39COqWlYQugZFNwdV2Wxv0zsctho=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F4CFA/1C2FAB2E305911EBB835C130C4F9AE02/XozcAfwJtFN0mgHuUjmzXt4kvmw.crl rsync://rpki.apnic.net/member_repository/A91F4CFA/1C2FAB2E305911EBB835C130C4F9AE02/XozcAfwJtFN0mgHuUjmzXt4kvmw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XozcAfwJtFN0mgHuUjmzXt4kvmw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1751 (0x6d7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F4CFA/serialNumber=5E8CDC01FC09B453749A01EE5239B35EDE24BE6C Validity Not Before: Nov 22 21:38:35 2024 GMT Not After : Nov 29 21:38:35 2024 GMT Subject: CN=6740f9dc-2b89 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:65:2c:66:3e:63:e3:05:81:32:fb:3c:87:cd: d6:52:92:7e:9f:15:6f:65:ca:6c:ab:45:42:da:6d: 49:12:de:20:d2:0e:d6:d5:07:13:81:07:f6:ee:3b: 60:01:00:a9:51:78:ed:31:10:0b:a8:b6:2e:5a:80: c9:76:ec:16:e3:1c:51:80:76:a1:17:04:1f:ae:a7: a4:8e:82:9c:ae:80:14:60:82:c6:2b:30:51:a9:9b: 96:f5:52:8a:49:87:cb:53:2f:bf:a0:11:36:7e:fc: e1:5d:a6:9c:46:93:bb:bb:57:66:65:13:69:4a:06: 90:86:dc:0a:1a:39:83:23:8f:9e:5a:cc:0a:af:02: 6c:15:08:52:b2:bd:d3:29:4c:2e:71:65:87:eb:90: f5:ae:6f:ab:e4:6c:c3:d2:68:3a:71:45:00:40:c0: 25:be:ae:bf:71:c4:43:4a:b6:a1:ae:2d:b4:01:5e: 81:00:80:cc:ed:db:5c:1c:46:b4:1f:ab:22:85:74: bb:5e:bd:68:ed:0c:58:43:ee:a5:b2:f6:31:cd:c0: a9:9f:d4:e6:b1:09:ab:ff:3f:81:ad:8d:25:83:bd: d2:03:27:5a:28:a8:bc:f3:4c:29:a8:06:7c:c1:b2: 81:e1:63:87:13:fb:74:ac:ef:90:8f:06:a2:a1:32: e2:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:CE:21:6A:21:49:28:71:59:73:D9:5B:8A:57:19:BB:50:62:5F:65 X509v3 Authority Key Identifier: keyid:5E:8C:DC:01:FC:09:B4:53:74:9A:01:EE:52:39:B3:5E:DE:24:BE:6C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F4CFA/1C2FAB2E305911EBB835C130C4F9AE02/XozcAfwJtFN0mgHuUjmzXt4kvmw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XozcAfwJtFN0mgHuUjmzXt4kvmw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F4CFA/1C2FAB2E305911EBB835C130C4F9AE02/XozcAfwJtFN0mgHuUjmzXt4kvmw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 67:36:fa:c1:49:a3:ec:0b:68:8b:b1:d3:ca:5a:e0:f9:0b:5d: bd:c3:3e:05:65:24:47:35:f2:28:b9:31:43:76:2d:6c:c8:ea: 5d:11:4d:01:6a:c6:68:76:c7:b5:7b:67:ec:fc:8e:74:8c:fb: 0e:4e:6e:7a:52:24:00:b9:9b:ef:61:41:02:4a:c0:b3:4c:35: ea:6f:cb:41:fc:d6:04:75:3c:9a:a8:4f:c1:2f:a4:04:00:4c: 39:9f:38:f6:c5:60:6e:3a:1c:84:79:6b:73:04:2a:0f:1b:0d: d8:ff:54:c6:9c:5c:1d:e2:1b:4a:d1:e6:4a:a5:21:f0:b2:d9: e5:f6:e0:e8:a8:66:76:0d:f2:10:93:97:de:5f:bb:4b:b0:67: a3:67:98:ad:4c:70:d5:e6:1d:1a:a9:64:f3:27:ae:cf:f0:bc: dc:3c:b6:83:56:8e:b4:73:dd:01:d1:c0:65:0f:9d:28:f3:c1: 5a:c1:96:77:fc:88:a0:a3:8e:27:da:7b:45:06:a8:22:67:5d: af:f3:69:e5:36:97:43:29:16:19:5f:2f:21:d3:4e:68:55:b0: 7a:81:0c:47:4c:55:18:33:6d:bd:a7:56:9e:f6:ae:71:b8:2f: fd:e5:8a:91:21:a5:b6:96:0b:c8:06:eb:cf:f8:c9:ed:ec:64: 5d:e9:79:3a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBtcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjRDRkExMTAvBgNVBAUTKDVFOENEQzAxRkMwOUI0NTM3NDlBMDFFRTUyMzlCMzVF REUyNEJFNkMwHhcNMjQxMTIyMjEzODM1WhcNMjQxMTI5MjEzODM1WjAYMRYwFAYD VQQDEw02NzQwZjlkYy0yYjg5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsWUsZj5j4wWBMvs8h83WUpJ+nxVvZcpsq0VC2m1JEt4g0g7W1QcTgQf27jtg AQCpUXjtMRALqLYuWoDJduwW4xxRgHahFwQfrqekjoKcroAUYILGKzBRqZuW9VKK SYfLUy+/oBE2fvzhXaacRpO7u1dmZRNpSgaQhtwKGjmDI4+eWswKrwJsFQhSsr3T KUwucWWH65D1rm+r5GzD0mg6cUUAQMAlvq6/ccRDSrahri20AV6BAIDM7dtcHEa0 H6sihXS7Xr1o7QxYQ+6lsvYxzcCpn9TmsQmr/z+BrY0lg73SAydaKKi880wpqAZ8 wbKB4WOHE/t0rO+QjwaioTLi2wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNLOIWoh SShxWXPZW4pXGbtQYl9lMB8GA1UdIwQYMBaAFF6M3AH8CbRTdJoB7lI5s17eJL5s MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNENGQS8xQzJGQUIyRTMw NTkxMUVCQjgzNUMxMzBDNEY5QUUwMi9Yb3pjQWZ3SnRGTjBtZ0h1VWptelh0NGt2 bXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hvemNBZndKdEZOMG1nSHVVam16WHQ0a3Ztdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NENGQS8xQzJGQUIyRTMwNTkxMUVCQjgzNUMxMzBDNEY5QUUwMi9Yb3pjQWZ3SnRG TjBtZ0h1VWptelh0NGt2bXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBnNvrBSaPsC2iLsdPKWuD5C129wz4FZSRHNfIouTFDdi1syOpdEU0B asZodse1e2fs/I50jPsOTm56UiQAuZvvYUECSsCzTDXqb8tB/NYEdTyaqE/BL6QE AEw5nzj2xWBuOhyEeWtzBCoPGw3Y/1TGnFwd4htK0eZKpSHwstnl9uDoqGZ2DfIQ k5feX7tLsGejZ5itTHDV5h0aqWTzJ67P8LzcPLaDVo60c90B0cBlD50o88FawZZ3 /Iigo44n2ntFBqgiZ12v82nlNpdDKRYZXy8h005oVbB6gQxHTFUYM229p1ae9q5x uC/95YqRIaW2lgvIBuvP+Mnt7GRd6Xk6 -----END CERTIFICATE-----Generated at Sat Nov 23 00:08:53 2024 by rpki-client on console-ams.rpki-client.org