$ rpki-client -vvf rpki.apnic.net/member_repository/A91FE107/EE35C4469E6411E59D48FB60C4F9AE02/XmtaBob1a6DA93-zvzGzhWMiCCQ.mft File: XmtaBob1a6DA93-zvzGzhWMiCCQ.mft (raw, json) Hash identifier: s/YKlwhcB/nFlUAxUUPD5sPoyXvS8n1c3WBk502s3n4= Subject key identifier: 77:D6:14:02:D1:29:E2:57:97:3C:DD:BA:19:C3:F3:6D:CA:F8:7A:09 Authority key identifier: 5E:6B:5A:06:86:F5:6B:A0:C0:F7:7F:B3:BF:31:B3:85:63:22:08:24 Certificate issuer: /CN=A91FE107/serialNumber=5E6B5A0686F56BA0C0F77FB3BF31B38563220824 Certificate serial: 2283 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XmtaBob1a6DA93-zvzGzhWMiCCQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FE107/EE35C4469E6411E59D48FB60C4F9AE02/XmtaBob1a6DA93-zvzGzhWMiCCQ.mft Manifest number: 226A Signing time: Fri 22 Nov 2024 15:52:15 +0000 Manifest this update: Fri 22 Nov 2024 15:52:14 +0000 Manifest next update: Fri 29 Nov 2024 15:52:14 +0000 Files and hashes: 1: XmtaBob1a6DA93-zvzGzhWMiCCQ.crl (hash: ah8jJasLy0Dntexcrujn1nl0RnZw6zwkXwJELvXqiHc=) 2: 44C007B0A0D611EDA2603C4EC4F9AE02.roa (hash: 0vCf/xwV9KMenpxoQYxOfrnjClEJSXbTz5F/3QVeMUQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FE107/EE35C4469E6411E59D48FB60C4F9AE02/XmtaBob1a6DA93-zvzGzhWMiCCQ.crl rsync://rpki.apnic.net/member_repository/A91FE107/EE35C4469E6411E59D48FB60C4F9AE02/XmtaBob1a6DA93-zvzGzhWMiCCQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XmtaBob1a6DA93-zvzGzhWMiCCQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 15:52:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8835 (0x2283) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FE107/serialNumber=5E6B5A0686F56BA0C0F77FB3BF31B38563220824 Validity Not Before: Nov 22 15:52:14 2024 GMT Not After : Nov 29 15:52:14 2024 GMT Subject: CN=6740a8ae-5834 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:f5:64:29:c0:27:0b:9e:44:2d:e6:ab:41:76: 0c:74:3d:22:c9:b2:95:01:49:ae:0a:74:81:73:ec: be:68:40:4d:3b:fa:5f:99:7a:fb:d0:6e:d2:ab:3b: 6b:ac:b0:0c:c4:fd:7d:84:b3:80:26:fd:b1:be:33: b5:23:b6:b2:b0:bd:6f:b5:1b:66:b7:90:db:79:ce: fc:59:e0:84:0e:35:62:e8:c6:d3:de:23:33:b9:da: e5:aa:04:1c:d7:2d:a5:e7:f0:65:0d:d5:0f:6d:db: 6c:2a:19:a9:04:2c:0d:80:53:09:66:31:7d:cb:67: ef:fb:0c:15:5d:d8:d7:cb:a6:03:1a:46:ef:0d:a0: b5:0c:20:c4:3c:fe:a9:fe:12:74:3a:46:9c:f3:c0: 95:18:b5:7d:5f:5f:57:0e:61:db:8e:2d:8c:1f:c0: ae:d2:9f:67:ee:02:30:93:61:90:58:c7:98:36:d6: de:e6:c0:d1:07:99:4a:a7:25:c5:10:0d:45:e6:65: 52:4c:92:eb:57:cc:8a:15:1a:a0:d8:d4:81:4c:29: 0c:e8:5c:c6:14:d1:96:cd:b1:83:b2:13:f9:fd:60: a3:ad:f2:ec:a9:38:0e:31:ca:59:69:5b:3c:28:dc: 67:c9:9b:57:a2:9e:5b:1c:58:41:ce:5b:26:e0:9d: 5f:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:D6:14:02:D1:29:E2:57:97:3C:DD:BA:19:C3:F3:6D:CA:F8:7A:09 X509v3 Authority Key Identifier: keyid:5E:6B:5A:06:86:F5:6B:A0:C0:F7:7F:B3:BF:31:B3:85:63:22:08:24 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FE107/EE35C4469E6411E59D48FB60C4F9AE02/XmtaBob1a6DA93-zvzGzhWMiCCQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XmtaBob1a6DA93-zvzGzhWMiCCQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FE107/EE35C4469E6411E59D48FB60C4F9AE02/XmtaBob1a6DA93-zvzGzhWMiCCQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8e:e1:f8:1d:12:a8:df:c9:ae:cc:83:f8:54:a5:02:f1:04:46: d6:ad:85:36:8a:bb:9c:9f:6c:54:60:f1:f4:f0:41:75:93:88: 7c:20:36:c6:23:6b:01:b6:4c:64:dd:89:de:e3:e1:f5:cf:b3: ce:29:69:e8:47:ed:d7:08:ff:bd:df:d6:20:41:34:58:49:1d: ab:8a:9e:be:f8:f2:e4:49:c7:e5:62:fe:c1:83:3f:02:f7:8d: 28:d4:16:79:6d:66:93:37:40:97:0c:ba:00:0e:65:d1:93:7b: f1:ee:07:95:6a:e5:c2:40:23:df:f4:35:2b:86:ef:a0:f9:69: b3:86:d5:a9:c2:8e:e6:02:05:ba:e8:2b:a3:b2:8f:ca:ca:dd: 82:1a:a6:3e:5e:b8:10:04:dd:04:4b:d0:4c:17:a2:66:94:e0: f0:cd:fe:34:68:d6:7b:e1:88:8a:35:a2:a1:d3:c6:93:2f:02: 1f:68:41:fd:57:4b:b8:65:4e:8f:2c:00:80:3f:b0:f0:07:f6: 7a:98:f8:50:63:43:b4:f9:bb:10:46:f3:b4:29:c2:fc:dd:02: 95:5d:07:b8:34:bd:01:3f:c4:31:56:43:a2:48:49:08:53:7a: d6:94:93:65:3f:50:15:e0:45:ca:c1:81:c6:cb:aa:08:ae:02: db:00:a2:8e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICIoMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkUxMDcxMTAvBgNVBAUTKDVFNkI1QTA2ODZGNTZCQTBDMEY3N0ZCM0JGMzFCMzg1 NjMyMjA4MjQwHhcNMjQxMTIyMTU1MjE0WhcNMjQxMTI5MTU1MjE0WjAYMRYwFAYD VQQDEw02NzQwYThhZS01ODM0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwPVkKcAnC55ELearQXYMdD0iybKVAUmuCnSBc+y+aEBNO/pfmXr70G7Sqztr rLAMxP19hLOAJv2xvjO1I7aysL1vtRtmt5Dbec78WeCEDjVi6MbT3iMzudrlqgQc 1y2l5/BlDdUPbdtsKhmpBCwNgFMJZjF9y2fv+wwVXdjXy6YDGkbvDaC1DCDEPP6p /hJ0Okac88CVGLV9X19XDmHbji2MH8Cu0p9n7gIwk2GQWMeYNtbe5sDRB5lKpyXF EA1F5mVSTJLrV8yKFRqg2NSBTCkM6FzGFNGWzbGDshP5/WCjrfLsqTgOMcpZaVs8 KNxnyZtXop5bHFhBzlsm4J1fZQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHfWFALR KeJXlzzduhnD823K+HoJMB8GA1UdIwQYMBaAFF5rWgaG9WugwPd/s78xs4VjIggk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRTEwNy9FRTM1QzQ0NjlF NjQxMUU1OUQ0OEZCNjBDNEY5QUUwMi9YbXRhQm9iMWE2REE5My16dnpHemhXTWlD Q1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1htdGFCb2IxYTZEQTkzLXp2ekd6aFdNaUNDUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG RTEwNy9FRTM1QzQ0NjlFNjQxMUU1OUQ0OEZCNjBDNEY5QUUwMi9YbXRhQm9iMWE2 REE5My16dnpHemhXTWlDQ1EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCO4fgdEqjfya7Mg/hUpQLxBEbWrYU2irucn2xUYPH08EF1k4h8IDbG I2sBtkxk3Yne4+H1z7POKWnoR+3XCP+939YgQTRYSR2rip6++PLkScflYv7Bgz8C 940o1BZ5bWaTN0CXDLoADmXRk3vx7geVauXCQCPf9DUrhu+g+WmzhtWpwo7mAgW6 6Cujso/Kyt2CGqY+XrgQBN0ES9BMF6JmlODwzf40aNZ74YiKNaKh08aTLwIfaEH9 V0u4ZU6PLACAP7DwB/Z6mPhQY0O0+bsQRvO0KcL83QKVXQe4NL0BP8QxVkOiSEkI U3rWlJNlP1AV4EXKwYHGy6oIrgLbAKKO -----END CERTIFICATE-----Generated at Fri Nov 22 17:56:23 2024 by rpki-client on console-fra.rpki-client.org