$ rpki-client -vvf rpki.apnic.net/member_repository/A91F87BB/9DF0DFBE7DE911ECBEA08E0FC4F9AE02/sxnfFFXYouFJjNxdSRVpgxxa_aE.mft File: sxnfFFXYouFJjNxdSRVpgxxa_aE.mft (raw, json) Hash identifier: IXqc0aOV/xj1D640TeVUNTPuPGoquXvWB6PNLW2/0kg= Subject key identifier: 0C:1F:79:2F:AD:DF:C4:88:21:75:6D:36:8B:5D:17:1D:51:4A:41:B8 Authority key identifier: B3:19:DF:14:55:D8:A2:E1:49:8C:DC:5D:49:15:69:83:1C:5A:FD:A1 Certificate issuer: /CN=A91F87BB/serialNumber=B319DF1455D8A2E1498CDC5D491569831C5AFDA1 Certificate serial: 0398 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sxnfFFXYouFJjNxdSRVpgxxa_aE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F87BB/9DF0DFBE7DE911ECBEA08E0FC4F9AE02/sxnfFFXYouFJjNxdSRVpgxxa_aE.mft Manifest number: 038E Signing time: Sat 23 Nov 2024 00:22:42 +0000 Manifest this update: Sat 23 Nov 2024 00:22:42 +0000 Manifest next update: Sat 30 Nov 2024 00:22:42 +0000 Files and hashes: 1: sxnfFFXYouFJjNxdSRVpgxxa_aE.crl (hash: MS3umVjxs4/tdWUkrxz8T98044T1hXyJui6mW07nejo=) 2: 88B3F0026E9F11EEB03D9582C4F9AE02.roa (hash: XwKeJLskTB6Imr0S9o23k/3GveOx7qAiEQDWVAowUlY=) 3: DDCB6B02D9D311EEBB3BDF10C4F9AE02.roa (hash: fa+qO5xpgOgt/uE45uXILHD+EmZJYo5mycKYiXut9tM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F87BB/9DF0DFBE7DE911ECBEA08E0FC4F9AE02/sxnfFFXYouFJjNxdSRVpgxxa_aE.crl rsync://rpki.apnic.net/member_repository/A91F87BB/9DF0DFBE7DE911ECBEA08E0FC4F9AE02/sxnfFFXYouFJjNxdSRVpgxxa_aE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sxnfFFXYouFJjNxdSRVpgxxa_aE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 920 (0x398) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F87BB/serialNumber=B319DF1455D8A2E1498CDC5D491569831C5AFDA1 Validity Not Before: Nov 23 00:22:42 2024 GMT Not After : Nov 30 00:22:42 2024 GMT Subject: CN=67412052-f53f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:38:cf:fd:16:88:d1:fa:16:d5:19:e6:74:aa: db:ff:b5:bd:85:91:fb:18:c9:b6:88:0d:12:7e:31: fc:38:6a:48:ba:be:68:84:20:e1:53:4f:89:36:5a: ac:01:bb:4c:25:ad:ff:a4:c0:0f:fa:b3:15:4f:66: 90:ce:4e:af:b2:40:66:16:22:8c:12:4a:14:99:6f: 37:07:b5:c3:fd:7b:aa:dc:aa:45:75:a3:45:8a:2b: 0f:7c:5a:ab:17:9e:90:cd:99:d6:23:2e:a5:a6:ba: df:85:55:ab:15:b3:5e:99:69:31:80:51:d0:a0:1b: a2:21:56:4b:88:74:03:f9:0a:43:4b:8c:c1:4f:f9: 35:7a:a8:1d:df:86:3e:30:d2:54:2c:48:7f:a3:4c: 9a:68:f4:f3:1e:9e:da:98:a9:ec:25:17:47:f0:70: da:e4:92:27:df:a5:be:4a:05:76:64:63:ba:35:b5: 43:f3:e6:e8:bb:ca:28:4a:4a:3b:da:b1:47:91:0e: 90:6a:81:78:f1:9f:bd:3b:28:29:17:20:9a:ae:8d: 50:22:50:5b:94:2a:e7:b3:8f:b4:18:cd:e4:e3:c4: a2:80:4c:a1:5a:02:92:dc:34:a4:5c:46:3e:b1:ea: 2e:bc:ef:5e:1c:f3:b3:db:fa:f1:0a:08:b7:e8:a0: 8c:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:1F:79:2F:AD:DF:C4:88:21:75:6D:36:8B:5D:17:1D:51:4A:41:B8 X509v3 Authority Key Identifier: keyid:B3:19:DF:14:55:D8:A2:E1:49:8C:DC:5D:49:15:69:83:1C:5A:FD:A1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F87BB/9DF0DFBE7DE911ECBEA08E0FC4F9AE02/sxnfFFXYouFJjNxdSRVpgxxa_aE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sxnfFFXYouFJjNxdSRVpgxxa_aE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F87BB/9DF0DFBE7DE911ECBEA08E0FC4F9AE02/sxnfFFXYouFJjNxdSRVpgxxa_aE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 37:79:3a:75:15:7a:5d:fa:3a:15:f8:97:c2:97:56:4f:55:e4: 0a:1e:c1:6a:58:81:e4:86:ab:ea:08:44:e0:f5:b8:06:c5:62: e8:ae:3e:a9:e8:63:9a:08:db:59:dd:4c:39:c3:65:6a:96:8b: 73:f3:c1:07:53:0b:d5:99:16:c9:65:b3:23:b4:ce:1e:fa:62: 32:9d:4d:7b:4a:5e:61:ca:0f:fa:d2:a7:81:39:8e:2a:d9:f8: 73:91:1d:48:f7:5d:5a:80:1c:65:0c:4e:bd:05:e3:35:30:cf: 97:e2:af:70:42:a5:da:71:f4:1c:53:f1:ad:0f:e3:a5:0a:95: 52:b4:4b:8a:0f:94:5c:44:64:f7:3a:40:41:dc:51:83:18:cf: ac:82:da:e7:13:e4:34:df:47:b7:6f:31:87:d2:25:79:8a:8c: 7b:3a:da:fa:b4:a3:51:7a:50:94:bc:89:fc:5c:31:f9:37:0c: 28:d6:b1:33:61:2f:98:7a:ee:51:6b:9f:00:4f:09:8c:f2:ae: d4:2e:8f:08:b2:45:70:69:84:22:73:be:43:27:b1:b4:2a:46: 56:02:54:7e:32:be:78:6f:fd:4e:f9:4b:7b:b1:de:48:f3:1e: b8:93:98:d1:37:43:33:93:1e:55:39:e3:91:2a:c4:49:0d:df: d3:4e:57:01 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA5gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Rjg3QkIxMTAvBgNVBAUTKEIzMTlERjE0NTVEOEEyRTE0OThDREM1RDQ5MTU2OTgz MUM1QUZEQTEwHhcNMjQxMTIzMDAyMjQyWhcNMjQxMTMwMDAyMjQyWjAYMRYwFAYD VQQDEw02NzQxMjA1Mi1mNTNmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuTjP/RaI0foW1RnmdKrb/7W9hZH7GMm2iA0SfjH8OGpIur5ohCDhU0+JNlqs AbtMJa3/pMAP+rMVT2aQzk6vskBmFiKMEkoUmW83B7XD/Xuq3KpFdaNFiisPfFqr F56QzZnWIy6lprrfhVWrFbNemWkxgFHQoBuiIVZLiHQD+QpDS4zBT/k1eqgd34Y+ MNJULEh/o0yaaPTzHp7amKnsJRdH8HDa5JIn36W+SgV2ZGO6NbVD8+bou8ooSko7 2rFHkQ6QaoF48Z+9OygpFyCaro1QIlBblCrns4+0GM3k48SigEyhWgKS3DSkXEY+ seouvO9eHPOz2/rxCgi36KCM+QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAwfeS+t 38SIIXVtNotdFx1RSkG4MB8GA1UdIwQYMBaAFLMZ3xRV2KLhSYzcXUkVaYMcWv2h MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGODdCQi85REYwREZCRTdE RTkxMUVDQkVBMDhFMEZDNEY5QUUwMi9zeG5mRkZYWW91RkpqTnhkU1JWcGd4eGFf YUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3N4bmZGRlhZb3VGSmpOeGRTUlZwZ3h4YV9hRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG ODdCQi85REYwREZCRTdERTkxMUVDQkVBMDhFMEZDNEY5QUUwMi9zeG5mRkZYWW91 RkpqTnhkU1JWcGd4eGFfYUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA3eTp1FXpd+joV+JfCl1ZPVeQKHsFqWIHkhqvqCETg9bgGxWLorj6p 6GOaCNtZ3Uw5w2Vqlotz88EHUwvVmRbJZbMjtM4e+mIynU17Sl5hyg/60qeBOY4q 2fhzkR1I911agBxlDE69BeM1MM+X4q9wQqXacfQcU/GtD+OlCpVStEuKD5RcRGT3 OkBB3FGDGM+sgtrnE+Q030e3bzGH0iV5iox7Otr6tKNRelCUvIn8XDH5Nwwo1rEz YS+Yeu5Ra58ATwmM8q7ULo8IskVwaYQic75DJ7G0KkZWAlR+Mr54b/1O+Ut7sd5I 8x64k5jRN0Mzkx5VOeORKsRJDd/TTlcB -----END CERTIFICATE-----Generated at Sat Nov 23 01:27:30 2024 by rpki-client on console-ams.rpki-client.org