$ rpki-client -vvf rpki.apnic.net/member_repository/A91FD088/44BA7CA2FD9D11EAA04EB87DC4F9AE02/xbajYOSK75Kf3CcpbR1S9b9umRY.mft File: xbajYOSK75Kf3CcpbR1S9b9umRY.mft (raw, json) Hash identifier: 0bSOnVHfoFQErfFCPkbRBJ5jwsuoCjQXkRa4FSeQrqw= Subject key identifier: 3C:F4:6E:76:A8:EC:F8:F5:31:BC:05:29:6C:48:B4:39:CF:2A:A2:E0 Authority key identifier: C5:B6:A3:60:E4:8A:EF:92:9F:DC:27:29:6D:1D:52:F5:BF:6E:99:16 Certificate issuer: /CN=A91FD088/serialNumber=C5B6A360E48AEF929FDC27296D1D52F5BF6E9916 Certificate serial: 0759 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xbajYOSK75Kf3CcpbR1S9b9umRY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FD088/44BA7CA2FD9D11EAA04EB87DC4F9AE02/xbajYOSK75Kf3CcpbR1S9b9umRY.mft Manifest number: 0753 Signing time: Fri 22 Nov 2024 21:04:15 +0000 Manifest this update: Fri 22 Nov 2024 21:04:14 +0000 Manifest next update: Fri 29 Nov 2024 21:04:14 +0000 Files and hashes: 1: xbajYOSK75Kf3CcpbR1S9b9umRY.crl (hash: +inS15RoFAh/DzSzeKKlZqhtQzzv90xXmEZ3aNtCWHU=) 2: 423EA4CC039B11EBB3C1465CC4F9AE02.roa (hash: +Lakmeku8+RHZ+2Qos9KTETrdWjDpNHkpVECvcnNXC4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FD088/44BA7CA2FD9D11EAA04EB87DC4F9AE02/xbajYOSK75Kf3CcpbR1S9b9umRY.crl rsync://rpki.apnic.net/member_repository/A91FD088/44BA7CA2FD9D11EAA04EB87DC4F9AE02/xbajYOSK75Kf3CcpbR1S9b9umRY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xbajYOSK75Kf3CcpbR1S9b9umRY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1881 (0x759) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FD088/serialNumber=C5B6A360E48AEF929FDC27296D1D52F5BF6E9916 Validity Not Before: Nov 22 21:04:14 2024 GMT Not After : Nov 29 21:04:14 2024 GMT Subject: CN=6740f1cf-a7ba Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:76:47:0c:4c:06:15:c2:6f:e1:a7:f6:7f:84: 7e:31:43:cd:99:8e:c3:69:30:fe:dd:a5:a3:f4:34: e5:5b:f1:62:f8:94:e4:99:f3:d6:69:4d:4d:f8:48: c6:42:0d:b9:ad:7b:dd:15:35:98:fa:0f:56:1c:e8: 29:8c:cb:12:f1:7b:bf:41:eb:67:d1:37:b4:2c:ef: 31:e4:19:67:d5:88:ac:df:1f:1b:5f:a7:f2:8c:8b: e4:3e:3b:d5:45:68:05:69:c0:61:8e:9f:81:28:e6: f9:7a:04:a2:30:b6:9d:f0:2f:ee:c1:f4:58:54:34: 52:37:fa:40:1e:21:03:56:8e:b7:a1:a5:18:3a:ca: cd:14:42:6b:d2:5b:03:8c:d9:b1:cb:36:75:2c:b8: 8d:c9:7c:03:14:c0:3a:05:95:45:37:26:bc:d8:f7: 98:6b:3a:ee:68:5b:7f:72:37:d3:cf:91:d2:af:a4: 9c:13:0d:af:f6:1c:6f:e0:ae:ae:95:8e:b5:e0:07: de:e5:1c:34:dd:d6:28:5d:45:65:a6:d6:72:f0:67: 28:ff:b8:31:d1:75:78:6c:07:41:d7:f8:25:0b:7f: 28:f7:c4:89:8b:3a:c6:b2:fe:fd:37:b0:0c:c1:be: 5a:1f:07:17:c1:ed:63:be:f7:d0:8d:6c:bd:d2:94: dd:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:F4:6E:76:A8:EC:F8:F5:31:BC:05:29:6C:48:B4:39:CF:2A:A2:E0 X509v3 Authority Key Identifier: keyid:C5:B6:A3:60:E4:8A:EF:92:9F:DC:27:29:6D:1D:52:F5:BF:6E:99:16 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FD088/44BA7CA2FD9D11EAA04EB87DC4F9AE02/xbajYOSK75Kf3CcpbR1S9b9umRY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xbajYOSK75Kf3CcpbR1S9b9umRY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FD088/44BA7CA2FD9D11EAA04EB87DC4F9AE02/xbajYOSK75Kf3CcpbR1S9b9umRY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 16:28:73:df:0e:dc:9a:7b:6a:cb:31:ec:69:e2:f7:00:e1:d4: 44:32:9f:85:22:b8:ae:75:dd:66:b7:8f:62:3a:bb:d0:1d:2f: 50:34:71:62:b7:32:e3:e5:1d:50:87:22:4e:e7:72:4d:cb:a6: 26:db:57:0a:b6:e5:37:d2:f2:27:9a:4b:f3:82:ca:be:ad:cc: 6c:c7:51:ba:48:88:12:f8:95:8c:b3:b5:59:68:f2:f1:04:d7: 3d:59:ff:6f:6a:12:ef:2b:33:58:09:0d:3a:b2:6d:f0:76:ad: 5e:ca:85:84:d5:11:09:b7:3c:8e:22:a7:cc:2f:e8:dd:da:d5: f9:e3:00:13:6b:06:64:39:4d:87:57:ad:38:95:ea:ba:8e:95: 32:a8:2a:b9:8e:b4:c9:59:b9:47:c2:11:a4:ce:af:a2:21:16: 13:6e:21:0d:1e:56:6f:e1:9f:b9:08:78:1b:f9:e9:a2:eb:a1: bf:7d:57:06:d6:cc:8a:9c:1a:ce:89:22:b0:59:9a:61:12:7f: 1c:e8:a8:16:1e:a4:05:1c:e3:6a:50:e3:ad:1e:d8:df:56:40: 7b:fc:6b:67:28:ed:ec:86:83:58:6d:42:42:1f:8d:54:b4:4d: 50:09:0d:b5:c7:75:24:40:90:f1:34:34:eb:36:06:17:07:3c: 5b:3c:0c:f7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB1kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkQwODgxMTAvBgNVBAUTKEM1QjZBMzYwRTQ4QUVGOTI5RkRDMjcyOTZEMUQ1MkY1 QkY2RTk5MTYwHhcNMjQxMTIyMjEwNDE0WhcNMjQxMTI5MjEwNDE0WjAYMRYwFAYD VQQDEw02NzQwZjFjZi1hN2JhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4nZHDEwGFcJv4af2f4R+MUPNmY7DaTD+3aWj9DTlW/Fi+JTkmfPWaU1N+EjG Qg25rXvdFTWY+g9WHOgpjMsS8Xu/Qetn0Te0LO8x5Bln1Yis3x8bX6fyjIvkPjvV RWgFacBhjp+BKOb5egSiMLad8C/uwfRYVDRSN/pAHiEDVo63oaUYOsrNFEJr0lsD jNmxyzZ1LLiNyXwDFMA6BZVFNya82PeYazruaFt/cjfTz5HSr6ScEw2v9hxv4K6u lY614Afe5Rw03dYoXUVlptZy8Gco/7gx0XV4bAdB1/glC38o98SJizrGsv79N7AM wb5aHwcXwe1jvvfQjWy90pTd5QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDz0bnao 7Pj1MbwFKWxItDnPKqLgMB8GA1UdIwQYMBaAFMW2o2Dkiu+Sn9wnKW0dUvW/bpkW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRDA4OC80NEJBN0NBMkZE OUQxMUVBQTA0RUI4N0RDNEY5QUUwMi94YmFqWU9TSzc1S2YzQ2NwYlIxUzliOXVt UlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hiYWpZT1NLNzVLZjNDY3BiUjFTOWI5dW1SWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG RDA4OC80NEJBN0NBMkZEOUQxMUVBQTA0RUI4N0RDNEY5QUUwMi94YmFqWU9TSzc1 S2YzQ2NwYlIxUzliOXVtUlkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAWKHPfDtyae2rLMexp4vcA4dREMp+FIriudd1mt49iOrvQHS9QNHFi tzLj5R1QhyJO53JNy6Ym21cKtuU30vInmkvzgsq+rcxsx1G6SIgS+JWMs7VZaPLx BNc9Wf9vahLvKzNYCQ06sm3wdq1eyoWE1REJtzyOIqfML+jd2tX54wATawZkOU2H V604leq6jpUyqCq5jrTJWblHwhGkzq+iIRYTbiENHlZv4Z+5CHgb+emi66G/fVcG 1syKnBrOiSKwWZphEn8c6KgWHqQFHONqUOOtHtjfVkB7/GtnKO3shoNYbUJCH41U tE1QCQ21x3UkQJDxNDTrNgYXBzxbPAz3 -----END CERTIFICATE-----Generated at Fri Nov 22 22:24:15 2024 by rpki-client on console-fra.rpki-client.org