$ rpki-client -vvf rpki.apnic.net/member_repository/A915EA46/DBDA2CC49C1111EF92FBA97CC4F9AE02/rCjcKlVLTjOaOZyWQrTOAmio37A.mft File: rCjcKlVLTjOaOZyWQrTOAmio37A.mft (raw, json) Hash identifier: 4UCTrRwmTvrCNSoBifVvzdaMvOg0FnK+EENMjOq/37E= Subject key identifier: D7:BA:78:FA:E9:44:C5:0A:4F:82:0E:19:45:AD:B6:8B:10:F5:B0:D5 Authority key identifier: AC:28:DC:2A:55:4B:4E:33:9A:39:9C:96:42:B4:CE:02:68:A8:DF:B0 Certificate issuer: /CN=A915EA46/serialNumber=AC28DC2A554B4E339A399C9642B4CE0268A8DFB0 Certificate serial: 0C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rCjcKlVLTjOaOZyWQrTOAmio37A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915EA46/DBDA2CC49C1111EF92FBA97CC4F9AE02/rCjcKlVLTjOaOZyWQrTOAmio37A.mft Manifest number: 0B Signing time: Sat 23 Nov 2024 06:03:33 +0000 Manifest this update: Sat 23 Nov 2024 06:03:33 +0000 Manifest next update: Sat 30 Nov 2024 06:03:33 +0000 Files and hashes: 1: rCjcKlVLTjOaOZyWQrTOAmio37A.crl (hash: GBKku2zfXQlnfXKFlDUbUu4qq63aqdW4RP7CEKMGUE0=) 2: A1E99A4E9C1211EFB233147EC4F9AE02.roa (hash: 3ye2avJW3DGdXLpGllemApGuBs5Hg/Dy3+TFvLk8rE8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915EA46/DBDA2CC49C1111EF92FBA97CC4F9AE02/rCjcKlVLTjOaOZyWQrTOAmio37A.crl rsync://rpki.apnic.net/member_repository/A915EA46/DBDA2CC49C1111EF92FBA97CC4F9AE02/rCjcKlVLTjOaOZyWQrTOAmio37A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rCjcKlVLTjOaOZyWQrTOAmio37A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12 (0xc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915EA46/serialNumber=AC28DC2A554B4E339A399C9642B4CE0268A8DFB0 Validity Not Before: Nov 23 06:03:33 2024 GMT Not After : Nov 30 06:03:33 2024 GMT Subject: CN=67417035-5972 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:ed:22:f8:e1:6c:54:77:23:96:f6:58:53:11: 7b:d7:f8:5e:2a:55:3f:ce:67:87:80:f5:bc:a3:92: f4:6c:71:95:e1:db:7e:d6:d6:f8:0a:77:68:38:b0: 51:c2:6f:58:82:ab:f7:f8:4d:e7:1e:fc:f4:5e:8e: 78:87:df:c9:36:f9:8c:41:4a:80:6b:86:13:d3:69: c5:dd:9f:45:3e:c9:68:fe:a3:49:8e:28:a6:29:6c: b9:cc:39:40:e4:82:a3:07:20:9f:a3:33:34:f7:82: 57:d0:f1:c3:6f:dd:45:43:22:a6:fa:c8:34:9d:e6: 77:c6:26:75:dd:ee:c8:72:40:92:7d:bc:b2:7c:c0: 28:13:1f:55:5a:9b:6b:92:82:03:c7:70:10:38:fd: 8c:93:cc:ea:e8:48:e2:4e:a6:cb:17:9d:46:ba:ac: 84:7f:5d:12:9f:f7:07:66:e3:3d:1c:87:84:c5:04: 50:ce:1e:84:c1:f6:5f:66:06:1d:c2:6c:e3:e4:9b: b8:e7:bc:a6:ab:08:27:b7:79:71:2a:66:a5:f8:3a: 1b:0e:9a:54:8e:d8:e6:6e:ec:39:49:7b:c4:8e:cf: 91:7d:ee:80:c3:b1:7e:56:f2:53:1d:14:4a:60:cf: 38:0a:f3:a7:4c:7e:9f:4a:ab:42:9c:be:99:06:b8: cd:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:BA:78:FA:E9:44:C5:0A:4F:82:0E:19:45:AD:B6:8B:10:F5:B0:D5 X509v3 Authority Key Identifier: keyid:AC:28:DC:2A:55:4B:4E:33:9A:39:9C:96:42:B4:CE:02:68:A8:DF:B0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915EA46/DBDA2CC49C1111EF92FBA97CC4F9AE02/rCjcKlVLTjOaOZyWQrTOAmio37A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rCjcKlVLTjOaOZyWQrTOAmio37A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915EA46/DBDA2CC49C1111EF92FBA97CC4F9AE02/rCjcKlVLTjOaOZyWQrTOAmio37A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 26:6b:02:6c:32:77:2c:7c:be:99:0b:c3:d2:d2:95:be:c2:b8: f0:d5:18:af:81:91:1a:fb:d0:e0:ab:1f:21:83:4b:ac:47:67: df:cf:3f:d0:24:5f:fc:bb:c4:d2:55:a4:5d:6e:d3:d7:e8:77: fa:cc:3f:8b:bf:0b:a4:54:6a:f7:c2:87:74:39:ea:a6:ef:39: d5:5a:88:7d:5c:56:1d:ea:fa:3b:5f:2d:e0:fd:1f:e5:ea:19: a2:aa:c5:4b:95:09:01:55:e3:73:78:f6:1f:19:5a:cc:09:f4: 97:c0:30:12:51:2f:55:f5:46:19:24:0a:cc:f8:76:c0:75:3b: 83:10:2d:8d:af:df:49:05:27:9e:de:cb:c7:89:d3:2e:0a:b5: b0:a2:a8:c0:67:30:0a:db:a1:50:18:2c:68:fd:28:81:4a:9e: 07:9d:96:c8:52:5c:d2:8c:30:65:fc:01:d4:8f:3f:c5:c4:f1: 6a:70:9f:fe:5e:74:e2:9e:43:ec:a0:5e:e7:dc:48:87:51:bc: c9:4a:d4:33:77:9d:53:64:25:44:d9:1e:87:dd:c1:1d:d4:c7: b1:47:ed:9f:1c:1a:11:ed:c9:98:52:c9:47:29:9b:c1:94:16: f0:50:9b:3b:02:f1:c2:5c:fa:f0:a3:23:1d:7e:4e:c0:2a:8c: b9:9e:ec:a7 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBDDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1 RUE0NjExMC8GA1UEBRMoQUMyOERDMkE1NTRCNEUzMzlBMzk5Qzk2NDJCNENFMDI2 OEE4REZCMDAeFw0yNDExMjMwNjAzMzNaFw0yNDExMzAwNjAzMzNaMBgxFjAUBgNV BAMTDTY3NDE3MDM1LTU5NzIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDF7SL44WxUdyOW9lhTEXvX+F4qVT/OZ4eA9byjkvRscZXh237W1vgKd2g4sFHC b1iCq/f4Tece/PRejniH38k2+YxBSoBrhhPTacXdn0U+yWj+o0mOKKYpbLnMOUDk gqMHIJ+jMzT3glfQ8cNv3UVDIqb6yDSd5nfGJnXd7shyQJJ9vLJ8wCgTH1Vam2uS ggPHcBA4/YyTzOroSOJOpssXnUa6rIR/XRKf9wdm4z0ch4TFBFDOHoTB9l9mBh3C bOPkm7jnvKarCCe3eXEqZqX4OhsOmlSO2OZu7DlJe8SOz5F97oDDsX5W8lMdFEpg zzgK86dMfp9Kq0KcvpkGuM3HAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU17p4+ulE xQpPgg4ZRa22ixD1sNUwHwYDVR0jBBgwFoAUrCjcKlVLTjOaOZyWQrTOAmio37Aw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTVFQTQ2L0RCREEyQ0M0OUMx MTExRUY5MkZCQTk3Q0M0RjlBRTAyL3JDamNLbFZMVGpPYU9aeVdRclRPQW1pbzM3 QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvckNqY0tsVkxUak9hT1p5V1FyVE9BbWlvMzdBLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTVF QTQ2L0RCREEyQ0M0OUMxMTExRUY5MkZCQTk3Q0M0RjlBRTAyL3JDamNLbFZMVGpP YU9aeVdRclRPQW1pbzM3QS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBACZrAmwydyx8vpkLw9LSlb7CuPDVGK+BkRr70OCrHyGDS6xHZ9/PP9Ak X/y7xNJVpF1u09fod/rMP4u/C6RUavfCh3Q56qbvOdVaiH1cVh3q+jtfLeD9H+Xq GaKqxUuVCQFV43N49h8ZWswJ9JfAMBJRL1X1RhkkCsz4dsB1O4MQLY2v30kFJ57e y8eJ0y4KtbCiqMBnMArboVAYLGj9KIFKngedlshSXNKMMGX8AdSPP8XE8Wpwn/5e dOKeQ+ygXufcSIdRvMlK1DN3nVNkJUTZHofdwR3Ux7FH7Z8cGhHtyZhSyUcpm8GU FvBQmzsC8cJc+vCjIx1+TsAqjLme7Kc= -----END CERTIFICATE-----Generated at Sat Nov 23 07:45:03 2024 by rpki-client on console-ams.rpki-client.org