$ rpki-client -vvf rpki.apnic.net/member_repository/A91508C4/532FDCDC3E1111EBAE00216CC4F9AE02/rSHpWiYaLoAl4zypVIJcFHCzt6M.mft File: rSHpWiYaLoAl4zypVIJcFHCzt6M.mft (raw, json) Hash identifier: wYiGRoq4grz/8N87gCA4fqbKv4mn7jnsPKWqgMjZRS4= Subject key identifier: C9:ED:29:21:69:D2:5F:E2:A5:F8:E0:9F:58:7D:3F:00:2B:2B:9E:6B Authority key identifier: AD:21:E9:5A:26:1A:2E:80:25:E3:3C:A9:54:82:5C:14:70:B3:B7:A3 Certificate issuer: /CN=A91508C4/serialNumber=AD21E95A261A2E8025E33CA954825C1470B3B7A3 Certificate serial: 06B1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rSHpWiYaLoAl4zypVIJcFHCzt6M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91508C4/532FDCDC3E1111EBAE00216CC4F9AE02/rSHpWiYaLoAl4zypVIJcFHCzt6M.mft Manifest number: 06AD Signing time: Fri 22 Nov 2024 21:44:38 +0000 Manifest this update: Fri 22 Nov 2024 21:44:38 +0000 Manifest next update: Fri 29 Nov 2024 21:44:38 +0000 Files and hashes: 1: rSHpWiYaLoAl4zypVIJcFHCzt6M.crl (hash: 80id77qd9Jn69zdUOW1clcaI8vxGYcu9T6vhZ6NkvCo=) 2: B855A21C3E1211EB8D23EB6CC4F9AE02.roa (hash: HDKYcqzQ1+KeIp+18/aWUGSKGmZ8AfbGEy7O86H1f4s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91508C4/532FDCDC3E1111EBAE00216CC4F9AE02/rSHpWiYaLoAl4zypVIJcFHCzt6M.crl rsync://rpki.apnic.net/member_repository/A91508C4/532FDCDC3E1111EBAE00216CC4F9AE02/rSHpWiYaLoAl4zypVIJcFHCzt6M.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rSHpWiYaLoAl4zypVIJcFHCzt6M.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1713 (0x6b1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91508C4/serialNumber=AD21E95A261A2E8025E33CA954825C1470B3B7A3 Validity Not Before: Nov 22 21:44:38 2024 GMT Not After : Nov 29 21:44:38 2024 GMT Subject: CN=6740fb46-5d69 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:31:c6:51:61:17:8d:37:3c:97:04:29:96:c6: 18:07:c6:c1:9e:60:94:c7:f1:14:b2:3a:77:30:9c: 23:3c:8c:e2:68:7b:9f:4d:06:41:a8:35:36:e4:96: d5:2e:29:20:67:50:df:17:7c:3f:d8:2f:4e:35:fa: c6:b9:d0:95:3c:80:46:8a:b7:39:5f:c5:fa:87:b1: 9b:58:93:21:24:78:fc:d8:5b:20:7a:41:12:ea:9d: 3b:cf:08:e6:c5:b0:54:28:c7:53:31:de:bf:9e:34: 87:30:7f:2d:9c:e1:52:2d:a9:13:0d:9d:d3:4d:85: 99:ca:16:81:6e:3e:2c:d5:50:cf:d6:f3:87:ff:7b: f8:bd:eb:3b:57:59:4c:d9:02:0e:fe:8a:b0:ca:30: be:3a:6d:74:40:c2:7a:ba:93:fa:47:bf:a9:d4:79: d4:12:6f:ea:b4:f4:80:e1:83:ee:1c:c7:82:6e:c4: 49:f2:98:be:ad:12:9b:ea:42:44:0a:81:f7:c9:cf: b4:e3:33:49:61:b7:6d:15:7d:f7:1c:e9:0e:ad:74: 36:ad:53:b1:1e:09:c7:fb:04:0b:61:3c:8a:49:06: cf:7b:5d:67:89:50:ee:2b:50:82:bd:2f:58:2e:41: 6c:a0:24:05:2a:e0:bb:8b:f5:dc:f9:1a:68:94:22: 53:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:ED:29:21:69:D2:5F:E2:A5:F8:E0:9F:58:7D:3F:00:2B:2B:9E:6B X509v3 Authority Key Identifier: keyid:AD:21:E9:5A:26:1A:2E:80:25:E3:3C:A9:54:82:5C:14:70:B3:B7:A3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91508C4/532FDCDC3E1111EBAE00216CC4F9AE02/rSHpWiYaLoAl4zypVIJcFHCzt6M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rSHpWiYaLoAl4zypVIJcFHCzt6M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91508C4/532FDCDC3E1111EBAE00216CC4F9AE02/rSHpWiYaLoAl4zypVIJcFHCzt6M.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 20:1d:5d:2d:08:0c:f0:34:ba:c9:69:2a:0e:75:df:7b:7e:e1: 9f:95:04:88:91:3f:40:0c:3d:ba:4a:58:99:5b:99:6b:f0:22: 66:3f:92:db:77:6a:a8:9e:04:96:d7:cb:7a:c5:03:ce:6a:4b: 4f:ec:52:af:8b:6d:2a:dd:84:ef:d2:c6:c1:de:13:83:af:44: 8e:cf:88:13:97:8c:c3:dc:44:33:5c:fc:07:cf:18:36:ce:b3: 24:ad:d0:45:73:f9:1e:56:ed:a7:56:be:64:c8:34:0a:49:60: 30:96:a3:8c:90:5e:31:89:b6:5d:ea:3b:bb:22:f3:a7:c5:94: 85:e1:f1:cb:75:2a:b6:c6:cd:1d:53:57:44:e4:0d:1c:33:84: 5f:ef:81:fb:df:ef:02:3c:88:8b:a1:2a:d0:81:fd:0a:76:5f: 68:53:1f:35:2c:fe:41:7e:5a:5d:02:00:f6:27:37:b7:d8:c0: a8:56:72:75:3f:ac:7c:6c:95:03:63:38:76:86:4b:75:4b:f5: fc:19:32:ec:51:5e:e1:8f:b3:a9:33:80:c1:d6:76:02:b1:48: 92:6e:24:e3:9b:70:2d:37:0a:89:f8:f3:95:95:1a:f8:ba:2b: fa:76:97:83:d1:d9:d3:ca:86:bd:1a:d6:f7:9c:9c:04:2c:0c: 3d:ab:30:14 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBrEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTA4QzQxMTAvBgNVBAUTKEFEMjFFOTVBMjYxQTJFODAyNUUzM0NBOTU0ODI1QzE0 NzBCM0I3QTMwHhcNMjQxMTIyMjE0NDM4WhcNMjQxMTI5MjE0NDM4WjAYMRYwFAYD VQQDEw02NzQwZmI0Ni01ZDY5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtDHGUWEXjTc8lwQplsYYB8bBnmCUx/EUsjp3MJwjPIziaHufTQZBqDU25JbV LikgZ1DfF3w/2C9ONfrGudCVPIBGirc5X8X6h7GbWJMhJHj82FsgekES6p07zwjm xbBUKMdTMd6/njSHMH8tnOFSLakTDZ3TTYWZyhaBbj4s1VDP1vOH/3v4ves7V1lM 2QIO/oqwyjC+Om10QMJ6upP6R7+p1HnUEm/qtPSA4YPuHMeCbsRJ8pi+rRKb6kJE CoH3yc+04zNJYbdtFX33HOkOrXQ2rVOxHgnH+wQLYTyKSQbPe11niVDuK1CCvS9Y LkFsoCQFKuC7i/Xc+RpolCJTlQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMntKSFp 0l/ipfjgn1h9PwArK55rMB8GA1UdIwQYMBaAFK0h6VomGi6AJeM8qVSCXBRws7ej MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MDhDNC81MzJGRENEQzNF MTExMUVCQUUwMDIxNkNDNEY5QUUwMi9yU0hwV2lZYUxvQWw0enlwVklKY0ZIQ3p0 Nk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JTSHBXaVlhTG9BbDR6eXBWSUpjRkhDenQ2TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MDhDNC81MzJGRENEQzNFMTExMUVCQUUwMDIxNkNDNEY5QUUwMi9yU0hwV2lZYUxv QWw0enlwVklKY0ZIQ3p0Nk0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAgHV0tCAzwNLrJaSoOdd97fuGflQSIkT9ADD26SliZW5lr8CJmP5Lb d2qongSW18t6xQPOaktP7FKvi20q3YTv0sbB3hODr0SOz4gTl4zD3EQzXPwHzxg2 zrMkrdBFc/keVu2nVr5kyDQKSWAwlqOMkF4xibZd6ju7IvOnxZSF4fHLdSq2xs0d U1dE5A0cM4Rf74H73+8CPIiLoSrQgf0Kdl9oUx81LP5BflpdAgD2Jze32MCoVnJ1 P6x8bJUDYzh2hkt1S/X8GTLsUV7hj7OpM4DB1nYCsUiSbiTjm3AtNwqJ+POVlRr4 uiv6dpeD0dnTyoa9Gtb3nJwELAw9qzAU -----END CERTIFICATE-----Generated at Sat Nov 23 00:08:39 2024 by rpki-client on console-ams.rpki-client.org