$ rpki-client -vvf rpki.apnic.net/member_repository/A915EA8F/E3A35BB4242811ED8FD24C86C4F9AE02/LOCE4B2sa01jSTjXbOraWWNVvVM.mft File: LOCE4B2sa01jSTjXbOraWWNVvVM.mft (raw, json) Hash identifier: l2dfXPe03lUGeZLXfVYJfw7lzGKsXGDAa/h3Q4sN6i8= Subject key identifier: 64:05:1C:5B:35:86:34:E6:42:FA:78:6E:B6:60:B1:B8:C1:ED:45:98 Authority key identifier: 2C:E0:84:E0:1D:AC:6B:4D:63:49:38:D7:6C:EA:DA:59:63:55:BD:53 Certificate issuer: /CN=A915EA8F/serialNumber=2CE084E01DAC6B4D634938D76CEADA596355BD53 Certificate serial: 01E0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LOCE4B2sa01jSTjXbOraWWNVvVM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915EA8F/E3A35BB4242811ED8FD24C86C4F9AE02/LOCE4B2sa01jSTjXbOraWWNVvVM.mft Manifest number: 01DD Signing time: Sat 23 Nov 2024 01:42:00 +0000 Manifest this update: Sat 23 Nov 2024 01:41:59 +0000 Manifest next update: Sat 30 Nov 2024 01:41:59 +0000 Files and hashes: 1: LOCE4B2sa01jSTjXbOraWWNVvVM.crl (hash: qhYFjPnmoEgLZL8E2+ns+vXbzR6+SfXScWzbJLh9iOs=) 2: 028640A8242B11ED9547B486C4F9AE02.roa (hash: DITeel3omkt/jAmQ2Y46ZSrzxcvWz4LWzu2U9pUQbEA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915EA8F/E3A35BB4242811ED8FD24C86C4F9AE02/LOCE4B2sa01jSTjXbOraWWNVvVM.crl rsync://rpki.apnic.net/member_repository/A915EA8F/E3A35BB4242811ED8FD24C86C4F9AE02/LOCE4B2sa01jSTjXbOraWWNVvVM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LOCE4B2sa01jSTjXbOraWWNVvVM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 480 (0x1e0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915EA8F/serialNumber=2CE084E01DAC6B4D634938D76CEADA596355BD53 Validity Not Before: Nov 23 01:41:59 2024 GMT Not After : Nov 30 01:41:59 2024 GMT Subject: CN=674132e7-f11d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:9c:b5:db:74:c8:d8:f2:2d:ab:cb:24:b7:a5: ef:6a:cc:48:d0:2c:6c:f0:f7:10:b6:47:99:35:9f: a1:b4:ce:b6:7b:76:03:4e:1b:d4:66:74:22:8f:a2: 0b:af:f7:2e:4a:98:4c:da:57:5a:19:f7:7f:da:dc: 72:06:e0:9d:63:4c:8e:d7:ab:1c:f6:31:6c:12:22: a3:63:73:76:99:40:b0:d3:80:a4:17:14:3e:a7:92: 7b:48:47:d4:cd:40:8c:00:8c:10:a2:05:db:49:80: 7f:d3:6a:7e:38:35:61:47:58:20:3b:29:50:1a:33: 07:bf:a2:83:32:9e:65:89:f0:90:70:8a:cb:d8:b2: 55:17:fa:57:d3:ea:a9:79:11:03:d7:f7:4a:a5:e3: ce:83:97:8e:0f:4f:2e:2c:eb:1b:81:76:c5:ac:27: 3d:01:cd:1e:22:09:9d:b0:75:f5:fa:7b:78:37:79: a0:93:d0:a1:14:4d:37:23:2f:c1:a7:b0:59:40:89: be:0e:a4:01:80:c2:70:e4:b6:76:c1:25:5a:92:eb: b0:9a:0a:b8:02:dc:91:a5:8c:79:b1:8c:46:4d:a9: f2:4e:b6:5b:64:71:ea:0f:95:15:b6:81:1f:78:4b: 86:5e:8a:83:cb:34:b4:db:49:82:53:89:f8:e1:3a: a3:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:05:1C:5B:35:86:34:E6:42:FA:78:6E:B6:60:B1:B8:C1:ED:45:98 X509v3 Authority Key Identifier: keyid:2C:E0:84:E0:1D:AC:6B:4D:63:49:38:D7:6C:EA:DA:59:63:55:BD:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915EA8F/E3A35BB4242811ED8FD24C86C4F9AE02/LOCE4B2sa01jSTjXbOraWWNVvVM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LOCE4B2sa01jSTjXbOraWWNVvVM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915EA8F/E3A35BB4242811ED8FD24C86C4F9AE02/LOCE4B2sa01jSTjXbOraWWNVvVM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8f:32:52:50:d1:6d:64:06:54:27:d6:94:12:21:4b:c2:41:82: f2:e6:a7:23:d4:ea:00:a7:2b:ad:a8:d6:d9:f5:bf:d6:3e:ff: c6:49:4a:27:f6:c7:0b:ad:9e:42:4b:06:85:25:4b:48:bb:30: de:20:76:ea:0b:18:df:e1:45:6c:db:ee:6f:96:78:85:cb:b5: 91:7b:07:f0:91:80:87:30:dc:a5:31:36:1a:16:8a:e9:d2:49: cb:1b:16:aa:3a:bc:a1:3f:04:b9:7f:0a:42:46:d3:db:92:53: 92:5e:c8:40:9b:d8:27:b4:08:ea:0f:d5:3a:ff:30:f8:b8:ba: e1:33:b5:a5:25:06:b7:8b:8b:57:86:6c:a8:77:5d:ff:42:18: 6f:53:d9:16:c0:7c:38:bf:b8:e1:03:a7:e3:24:22:d2:ec:29: 4e:15:27:60:9d:0a:5a:c6:90:49:66:f4:22:07:22:13:f8:a2: 17:fb:14:70:d3:7a:f9:5c:e0:47:43:7d:d5:d1:79:de:6b:9a: 6c:56:0b:f6:dc:e7:3a:7d:18:76:16:53:42:bb:4a:20:31:16: f4:5d:85:e9:0d:71:e7:b2:aa:df:a7:25:9f:f9:ef:0b:d4:3a: 88:79:bc:46:65:90:d4:6c:69:a8:69:7d:8f:90:d6:52:e5:c4: 0d:51:57:a0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAeAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUVBOEYxMTAvBgNVBAUTKDJDRTA4NEUwMURBQzZCNEQ2MzQ5MzhENzZDRUFEQTU5 NjM1NUJENTMwHhcNMjQxMTIzMDE0MTU5WhcNMjQxMTMwMDE0MTU5WjAYMRYwFAYD VQQDEw02NzQxMzJlNy1mMTFkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvZy123TI2PItq8skt6XvasxI0Cxs8PcQtkeZNZ+htM62e3YDThvUZnQij6IL r/cuSphM2ldaGfd/2txyBuCdY0yO16sc9jFsEiKjY3N2mUCw04CkFxQ+p5J7SEfU zUCMAIwQogXbSYB/02p+ODVhR1ggOylQGjMHv6KDMp5lifCQcIrL2LJVF/pX0+qp eRED1/dKpePOg5eOD08uLOsbgXbFrCc9Ac0eIgmdsHX1+nt4N3mgk9ChFE03Iy/B p7BZQIm+DqQBgMJw5LZ2wSVakuuwmgq4AtyRpYx5sYxGTanyTrZbZHHqD5UVtoEf eEuGXoqDyzS020mCU4n44TqjJwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGQFHFs1 hjTmQvp4brZgsbjB7UWYMB8GA1UdIwQYMBaAFCzghOAdrGtNY0k412zq2lljVb1T MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RUE4Ri9FM0EzNUJCNDI0 MjgxMUVEOEZEMjRDODZDNEY5QUUwMi9MT0NFNEIyc2EwMWpTVGpYYk9yYVdXTlZ2 Vk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xPQ0U0QjJzYTAxalNUalhiT3JhV1dOVnZWTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 RUE4Ri9FM0EzNUJCNDI0MjgxMUVEOEZEMjRDODZDNEY5QUUwMi9MT0NFNEIyc2Ew MWpTVGpYYk9yYVdXTlZ2Vk0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCPMlJQ0W1kBlQn1pQSIUvCQYLy5qcj1OoApyutqNbZ9b/WPv/GSUon 9scLrZ5CSwaFJUtIuzDeIHbqCxjf4UVs2+5vlniFy7WRewfwkYCHMNylMTYaForp 0knLGxaqOryhPwS5fwpCRtPbklOSXshAm9gntAjqD9U6/zD4uLrhM7WlJQa3i4tX hmyod13/QhhvU9kWwHw4v7jhA6fjJCLS7ClOFSdgnQpaxpBJZvQiByIT+KIX+xRw 03r5XOBHQ33V0Xnea5psVgv23Oc6fRh2FlNCu0ogMRb0XYXpDXHnsqrfpyWf+e8L 1DqIebxGZZDUbGmoaX2PkNZS5cQNUVeg -----END CERTIFICATE-----Generated at Sat Nov 23 02:33:37 2024 by rpki-client on console-fra.rpki-client.org