$ rpki-client -vvf rpki.apnic.net/member_repository/A91F81D3/0A8459F4523511EA9A0CB273C4F9AE02/XpnXCH3VTqLn519cgIcHE4Posp4.mft File: XpnXCH3VTqLn519cgIcHE4Posp4.mft (raw, json) Hash identifier: 72ngzQX1fBwGTvRrSgRAL751JaW+LppFRBKjzArSLM4= Subject key identifier: 41:BF:E9:62:B8:F6:32:2D:84:82:13:B3:47:0C:22:D3:E5:54:27:BB Authority key identifier: 5E:99:D7:08:7D:D5:4E:A2:E7:E7:5F:5C:80:87:07:13:83:E8:B2:9E Certificate issuer: /CN=A91F81D3/serialNumber=5E99D7087DD54EA2E7E75F5C8087071383E8B29E Certificate serial: 0A79 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XpnXCH3VTqLn519cgIcHE4Posp4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F81D3/0A8459F4523511EA9A0CB273C4F9AE02/XpnXCH3VTqLn519cgIcHE4Posp4.mft Manifest number: 0A5F Signing time: Wed 20 Nov 2024 19:24:57 +0000 Manifest this update: Wed 20 Nov 2024 19:24:57 +0000 Manifest next update: Wed 27 Nov 2024 19:24:57 +0000 Files and hashes: 1: XpnXCH3VTqLn519cgIcHE4Posp4.crl (hash: snzl3xm2rBLjDMmEk01ZSv6Mz3n62V6TmcOxqnRwJJE=) 2: 79BBD5780A3511EB93ACB11CC4F9AE02.roa (hash: p3Evu360d8sJaOIhPj+V+IcCcGPKVkKX45bmHYZFDuU=) 3: FA07C7FAC3E711ED97AAC038C4F9AE02.roa (hash: kdcQORxOazOv3d/psZbVYLp347mdF2gbZSdta1IYMGM=) 4: B27D5318C3D411ED97604930C4F9AE02.roa (hash: ozVhElbEnt1VdNVmiBrCNy8Ch9GY08iOB8Xrths/F/E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F81D3/0A8459F4523511EA9A0CB273C4F9AE02/XpnXCH3VTqLn519cgIcHE4Posp4.crl rsync://rpki.apnic.net/member_repository/A91F81D3/0A8459F4523511EA9A0CB273C4F9AE02/XpnXCH3VTqLn519cgIcHE4Posp4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XpnXCH3VTqLn519cgIcHE4Posp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 19:24:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2681 (0xa79) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F81D3/serialNumber=5E99D7087DD54EA2E7E75F5C8087071383E8B29E Validity Not Before: Nov 20 19:24:57 2024 GMT Not After : Nov 27 19:24:57 2024 GMT Subject: CN=673e3789-1a50 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:3e:6f:85:b1:42:c7:25:5e:4b:6b:48:13:dd: 28:8d:cf:a7:7c:b7:b8:c0:50:d6:98:60:0c:63:e9: 47:13:60:f7:88:b2:bf:4d:83:68:55:2f:8d:0c:6b: ff:90:e2:d2:2a:1f:c1:89:b6:68:33:a5:b3:1f:39: fa:c8:5c:7b:ec:42:3b:16:32:a2:91:64:66:f3:d8: a8:7c:03:04:c3:0c:a8:c6:c0:dc:f7:48:60:48:04: 16:30:7e:79:cf:97:a1:a4:a8:d3:10:d6:56:0f:a9: 12:4e:4f:5b:07:d3:66:83:ce:5f:34:d8:49:df:6c: 8b:3e:30:c5:9c:e9:db:e5:79:4c:35:09:c9:d0:8c: 00:ca:d0:90:12:7e:5b:ab:e6:2d:6a:84:eb:cf:73: 85:37:5b:63:c5:c1:c8:74:27:0e:8e:8f:d1:27:b0: 54:44:8c:ed:0a:e1:92:fd:16:bd:76:cf:5f:1f:57: 9c:f0:2b:c0:14:67:66:27:c9:f9:bf:bc:de:14:f8: 34:ad:c8:de:8b:ab:c6:45:49:a0:17:5b:e6:17:96: d0:1b:99:50:e5:d8:0d:88:8b:1b:ab:9b:8d:2b:27: 09:dc:d7:bf:1c:89:10:50:74:5a:fd:5c:3a:0d:1d: 1d:8a:8c:3b:e6:c8:e3:f1:c1:e0:05:b1:3b:d0:6f: 9a:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:BF:E9:62:B8:F6:32:2D:84:82:13:B3:47:0C:22:D3:E5:54:27:BB X509v3 Authority Key Identifier: keyid:5E:99:D7:08:7D:D5:4E:A2:E7:E7:5F:5C:80:87:07:13:83:E8:B2:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F81D3/0A8459F4523511EA9A0CB273C4F9AE02/XpnXCH3VTqLn519cgIcHE4Posp4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XpnXCH3VTqLn519cgIcHE4Posp4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F81D3/0A8459F4523511EA9A0CB273C4F9AE02/XpnXCH3VTqLn519cgIcHE4Posp4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a3:b7:47:95:7d:0c:d1:c4:0a:16:39:74:67:37:1f:09:35:e5: bf:a6:97:35:95:2f:44:71:b6:fb:b0:0b:5f:90:29:5e:fb:65: 03:de:b8:4d:2c:0b:43:30:c2:68:92:1b:d6:aa:96:9d:1f:a6: 72:08:d6:eb:cd:11:5e:7c:05:20:36:6e:4f:f8:bb:0b:7c:9f: df:66:5e:f7:e4:b6:31:30:5d:de:7a:f1:95:f8:e3:57:84:35: bf:10:b4:51:03:66:7b:b5:6d:b4:75:dd:91:0d:88:96:cf:ac: fe:8a:13:8f:93:a3:aa:af:5d:a5:5a:0d:6d:76:09:50:1d:4e: db:70:89:cc:37:00:91:c1:db:02:06:e1:a2:14:a4:8b:48:b5: a0:83:c5:4e:c7:fd:45:ce:d3:77:d3:17:40:0c:fc:21:97:99: 91:1c:56:bf:8f:78:2a:0a:ae:29:4b:14:42:80:47:08:5f:ae: 38:85:4f:84:d1:54:fa:eb:b0:28:bf:18:c4:09:e0:f7:84:ac: fe:2b:f5:89:5b:d8:c5:2c:a5:17:d2:da:2a:79:01:c5:b8:09: 59:c5:1f:d0:65:75:db:74:3c:dd:a1:a4:ef:bb:b4:c8:59:2f: 8b:cf:73:94:3a:76:b8:10:dd:9f:04:6c:72:a2:bc:12:b1:07: 0a:ca:76:65 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCnkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjgxRDMxMTAvBgNVBAUTKDVFOTlENzA4N0RENTRFQTJFN0U3NUY1QzgwODcwNzEz ODNFOEIyOUUwHhcNMjQxMTIwMTkyNDU3WhcNMjQxMTI3MTkyNDU3WjAYMRYwFAYD VQQDEw02NzNlMzc4OS0xYTUwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxj5vhbFCxyVeS2tIE90ojc+nfLe4wFDWmGAMY+lHE2D3iLK/TYNoVS+NDGv/ kOLSKh/BibZoM6WzHzn6yFx77EI7FjKikWRm89iofAMEwwyoxsDc90hgSAQWMH55 z5ehpKjTENZWD6kSTk9bB9Nmg85fNNhJ32yLPjDFnOnb5XlMNQnJ0IwAytCQEn5b q+YtaoTrz3OFN1tjxcHIdCcOjo/RJ7BURIztCuGS/Ra9ds9fH1ec8CvAFGdmJ8n5 v7zeFPg0rcjei6vGRUmgF1vmF5bQG5lQ5dgNiIsbq5uNKycJ3Ne/HIkQUHRa/Vw6 DR0diow75sjj8cHgBbE70G+alQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEG/6WK4 9jIthIITs0cMItPlVCe7MB8GA1UdIwQYMBaAFF6Z1wh91U6i5+dfXICHBxOD6LKe MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGODFEMy8wQTg0NTlGNDUy MzUxMUVBOUEwQ0IyNzNDNEY5QUUwMi9YcG5YQ0gzVlRxTG41MTljZ0ljSEU0UG9z cDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hwblhDSDNWVHFMbjUxOWNnSWNIRTRQb3NwNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG ODFEMy8wQTg0NTlGNDUyMzUxMUVBOUEwQ0IyNzNDNEY5QUUwMi9YcG5YQ0gzVlRx TG41MTljZ0ljSEU0UG9zcDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCjt0eVfQzRxAoWOXRnNx8JNeW/ppc1lS9Ecbb7sAtfkCle+2UD3rhN LAtDMMJokhvWqpadH6ZyCNbrzRFefAUgNm5P+LsLfJ/fZl735LYxMF3eevGV+ONX hDW/ELRRA2Z7tW20dd2RDYiWz6z+ihOPk6Oqr12lWg1tdglQHU7bcInMNwCRwdsC BuGiFKSLSLWgg8VOx/1FztN30xdADPwhl5mRHFa/j3gqCq4pSxRCgEcIX644hU+E 0VT667AovxjECeD3hKz+K/WJW9jFLKUX0toqeQHFuAlZxR/QZXXbdDzdoaTvu7TI WS+Lz3OUOna4EN2fBGxyorwSsQcKynZl -----END CERTIFICATE-----Generated at Wed Nov 20 21:35:05 2024 by rpki-client on console-ams.rpki-client.org