$ rpki-client -vvf rpki.apnic.net/member_repository/A915BE00/3D0B212AF4FD11EBA52CE211C4F9AE02/gO0g9_wH3gyfPBuOKunNP85u2yE.mft File: gO0g9_wH3gyfPBuOKunNP85u2yE.mft (raw, json) Hash identifier: V5oPHCN/2j/BnJRuI3id6ni74LcU4ZyeVCVH9VudXE4= Subject key identifier: DD:45:85:51:6C:96:9D:DB:60:8D:6D:B2:A7:C0:18:8E:C9:83:76:2B Authority key identifier: 80:ED:20:F7:FC:07:DE:0C:9F:3C:1B:8E:2A:E9:CD:3F:CE:6E:DB:21 Certificate issuer: /CN=A915BE00/serialNumber=80ED20F7FC07DE0C9F3C1B8E2AE9CD3FCE6EDB21 Certificate serial: 04E4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gO0g9_wH3gyfPBuOKunNP85u2yE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915BE00/3D0B212AF4FD11EBA52CE211C4F9AE02/gO0g9_wH3gyfPBuOKunNP85u2yE.mft Manifest number: 04DF Signing time: Fri 22 Nov 2024 23:18:25 +0000 Manifest this update: Fri 22 Nov 2024 23:18:24 +0000 Manifest next update: Fri 29 Nov 2024 23:18:24 +0000 Files and hashes: 1: gO0g9_wH3gyfPBuOKunNP85u2yE.crl (hash: c78jKfZO+7iCavwonnBlv7IYj/ow3vfzLMKeiW4wJW4=) 2: 8B656418F50011EBBF60EA16C4F9AE02.roa (hash: IIm1yA8njoUcBWRxCoDaEZk7LCuRfNfjy2yV4TDOftg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915BE00/3D0B212AF4FD11EBA52CE211C4F9AE02/gO0g9_wH3gyfPBuOKunNP85u2yE.crl rsync://rpki.apnic.net/member_repository/A915BE00/3D0B212AF4FD11EBA52CE211C4F9AE02/gO0g9_wH3gyfPBuOKunNP85u2yE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gO0g9_wH3gyfPBuOKunNP85u2yE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1252 (0x4e4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915BE00/serialNumber=80ED20F7FC07DE0C9F3C1B8E2AE9CD3FCE6EDB21 Validity Not Before: Nov 22 23:18:24 2024 GMT Not After : Nov 29 23:18:24 2024 GMT Subject: CN=67411141-73cc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:40:bc:f1:6b:48:8c:92:1e:9e:17:80:73:c0: d3:e3:bb:de:10:ad:7d:7a:df:d6:2b:66:a7:5e:c6: d9:67:90:f3:7a:1a:b1:45:43:bb:dd:e7:a7:bc:f9: aa:f3:c8:5d:21:5e:b5:8d:89:38:30:cc:73:a3:46: f8:7e:49:43:1d:73:85:c4:50:49:d7:c1:40:14:c6: 60:ae:02:bb:bc:e1:e6:54:3f:39:fa:40:7b:4b:56: 61:3b:12:1d:82:0b:52:3b:01:aa:36:8c:13:d3:f8: ea:95:46:71:76:a8:6f:eb:30:37:8c:cc:8a:df:6e: b5:7d:31:c4:0a:40:56:c7:21:db:63:19:fa:99:53: fb:59:15:ea:f7:36:65:60:5e:60:a6:e4:13:fe:31: 90:f0:d5:e2:ff:26:37:c9:8c:ad:54:33:ed:d6:18: a1:71:ce:e7:18:d7:a1:04:53:b1:2e:68:36:e4:20: ad:05:d7:68:5b:88:9b:68:ee:5b:3e:94:c0:b0:18: 00:b5:25:6a:79:c2:cf:5a:68:26:b7:93:bf:b1:28: 10:e5:df:ac:da:c0:ce:2e:20:1c:33:d2:86:d2:f8: 76:3a:0d:8e:96:3c:d8:13:ef:6f:b7:f2:c2:81:46: 66:81:b7:6a:1a:ec:b4:26:f5:a6:26:c0:42:ef:40: b1:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:45:85:51:6C:96:9D:DB:60:8D:6D:B2:A7:C0:18:8E:C9:83:76:2B X509v3 Authority Key Identifier: keyid:80:ED:20:F7:FC:07:DE:0C:9F:3C:1B:8E:2A:E9:CD:3F:CE:6E:DB:21 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915BE00/3D0B212AF4FD11EBA52CE211C4F9AE02/gO0g9_wH3gyfPBuOKunNP85u2yE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gO0g9_wH3gyfPBuOKunNP85u2yE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915BE00/3D0B212AF4FD11EBA52CE211C4F9AE02/gO0g9_wH3gyfPBuOKunNP85u2yE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 40:2f:9c:71:3a:22:07:58:ac:58:56:72:57:bb:be:18:31:2b: 75:c1:db:b4:71:7e:6d:46:45:e0:a2:a9:7a:04:46:cc:99:2a: 98:62:36:be:bd:62:cc:0e:3d:ed:21:51:64:93:61:1b:5d:70: 09:f4:eb:47:0c:05:dc:8f:a4:97:5b:44:d6:a5:c2:31:01:b8: 4f:d3:24:d9:42:3a:ee:07:35:d6:1c:81:e2:29:04:78:7b:c6: 31:e2:8d:32:f9:2f:89:1d:53:29:55:e2:0d:50:3e:0f:d8:ec: 0f:39:cb:8f:d8:8f:c1:81:60:8c:f3:1e:83:1d:4b:c2:f8:a5: 0b:08:67:42:11:b9:4b:82:02:1d:29:f6:30:11:91:db:be:b8: 6d:dd:9d:bd:99:ae:e9:39:d3:c6:38:84:c0:ac:de:72:0e:83: 35:d1:b0:b7:24:f5:08:65:01:5f:92:f9:e2:a2:80:f7:1c:86: 59:fd:26:18:0e:75:90:5f:4b:94:b4:c1:75:12:9a:31:ca:66: c4:7b:8e:f6:6f:54:ad:0b:f9:f9:2a:19:f7:8d:bb:e8:a2:73: 3d:25:4b:11:76:cf:86:bd:61:f2:cc:7c:71:3f:d2:05:27:55: 66:59:dc:36:82:3b:8e:7f:d9:dc:4c:c7:a9:49:7b:93:c0:3f: 0d:3f:ef:d2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBOQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUJFMDAxMTAvBgNVBAUTKDgwRUQyMEY3RkMwN0RFMEM5RjNDMUI4RTJBRTlDRDNG Q0U2RURCMjEwHhcNMjQxMTIyMjMxODI0WhcNMjQxMTI5MjMxODI0WjAYMRYwFAYD VQQDEw02NzQxMTE0MS03M2NjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr0C88WtIjJIenheAc8DT47veEK19et/WK2anXsbZZ5DzehqxRUO73eenvPmq 88hdIV61jYk4MMxzo0b4fklDHXOFxFBJ18FAFMZgrgK7vOHmVD85+kB7S1ZhOxId ggtSOwGqNowT0/jqlUZxdqhv6zA3jMyK3261fTHECkBWxyHbYxn6mVP7WRXq9zZl YF5gpuQT/jGQ8NXi/yY3yYytVDPt1hihcc7nGNehBFOxLmg25CCtBddoW4ibaO5b PpTAsBgAtSVqecLPWmgmt5O/sSgQ5d+s2sDOLiAcM9KG0vh2Og2OljzYE+9vt/LC gUZmgbdqGuy0JvWmJsBC70CxtQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFN1FhVFs lp3bYI1tsqfAGI7Jg3YrMB8GA1UdIwQYMBaAFIDtIPf8B94MnzwbjirpzT/Obtsh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QkUwMC8zRDBCMjEyQUY0 RkQxMUVCQTUyQ0UyMTFDNEY5QUUwMi9nTzBnOV93SDNneWZQQnVPS3VuTlA4NXUy eUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dPMGc5X3dIM2d5ZlBCdU9LdW5OUDg1dTJ5RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 QkUwMC8zRDBCMjEyQUY0RkQxMUVCQTUyQ0UyMTFDNEY5QUUwMi9nTzBnOV93SDNn eWZQQnVPS3VuTlA4NXUyeUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBAL5xxOiIHWKxYVnJXu74YMSt1wdu0cX5tRkXgoql6BEbMmSqYYja+ vWLMDj3tIVFkk2EbXXAJ9OtHDAXcj6SXW0TWpcIxAbhP0yTZQjruBzXWHIHiKQR4 e8Yx4o0y+S+JHVMpVeINUD4P2OwPOcuP2I/BgWCM8x6DHUvC+KULCGdCEblLggId KfYwEZHbvrht3Z29ma7pOdPGOITArN5yDoM10bC3JPUIZQFfkvniooD3HIZZ/SYY DnWQX0uUtMF1EpoxymbEe472b1StC/n5Khn3jbvoonM9JUsRds+GvWHyzHxxP9IF J1VmWdw2gjuOf9ncTMepSXuTwD8NP+/S -----END CERTIFICATE-----Generated at Sat Nov 23 01:27:22 2024 by rpki-client on console-ams.rpki-client.org