$ rpki-client -vvf rpki.apnic.net/member_repository/A918C255/BE62DC9E232F11E7A54B4266C4F9AE02/C7BDH1UIA338kvd-BrSK7JVR9ls.mft File: C7BDH1UIA338kvd-BrSK7JVR9ls.mft (raw, json) Hash identifier: VrYDP9LJDBIbAzMkSbkL6NVPoP8l5Z+Brn09CGVzKP4= Subject key identifier: 2A:5D:8F:DD:5F:26:8A:CC:74:92:59:EA:3B:EB:A4:3E:A4:16:56:04 Authority key identifier: 0B:B0:43:1F:55:08:03:7D:FC:92:F7:7E:06:B4:8A:EC:95:51:F6:5B Certificate issuer: /CN=A918C255/serialNumber=0BB0431F5508037DFC92F77E06B48AEC9551F65B Certificate serial: 1A93 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C7BDH1UIA338kvd-BrSK7JVR9ls.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918C255/BE62DC9E232F11E7A54B4266C4F9AE02/C7BDH1UIA338kvd-BrSK7JVR9ls.mft Manifest number: 1A8C Signing time: Fri 22 Nov 2024 16:19:56 +0000 Manifest this update: Fri 22 Nov 2024 16:19:55 +0000 Manifest next update: Fri 29 Nov 2024 16:19:55 +0000 Files and hashes: 1: C7BDH1UIA338kvd-BrSK7JVR9ls.crl (hash: K+UaRvuPooMtkMohznp+GQO5k+/LyUHbtA4lSbRlPlM=) 2: 8E810FBCD46E11E9B37C0539C4F9AE02.roa (hash: /62jKiDxw2Oukb67ZNvZbycxbr1ec0Y/2pAmP4Kn+R8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918C255/BE62DC9E232F11E7A54B4266C4F9AE02/C7BDH1UIA338kvd-BrSK7JVR9ls.crl rsync://rpki.apnic.net/member_repository/A918C255/BE62DC9E232F11E7A54B4266C4F9AE02/C7BDH1UIA338kvd-BrSK7JVR9ls.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C7BDH1UIA338kvd-BrSK7JVR9ls.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 16:19:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6803 (0x1a93) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918C255/serialNumber=0BB0431F5508037DFC92F77E06B48AEC9551F65B Validity Not Before: Nov 22 16:19:55 2024 GMT Not After : Nov 29 16:19:55 2024 GMT Subject: CN=6740af2c-5145 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:dc:e1:52:e3:10:58:62:83:bb:40:dc:27:32: e4:f6:26:a9:ca:e4:9d:58:d9:b5:56:fb:c4:06:99: ec:5d:a7:4a:df:e7:a2:06:0b:31:2e:69:b4:99:cb: 79:29:32:45:09:85:37:77:dd:6d:7c:78:e8:ae:6c: fd:94:98:40:2b:5b:e7:db:16:57:d3:d9:20:d3:b6: 7b:fb:dd:c1:84:0a:79:35:92:80:a5:1d:97:28:aa: 62:18:5f:88:af:3a:a2:3c:68:1a:ab:ca:79:4c:8c: 62:a8:36:3f:5b:24:73:e7:5d:4d:1c:50:28:5d:93: 76:8c:10:e1:b3:e3:65:b9:d2:cc:8f:62:17:a3:78: 83:79:5d:2f:06:b6:77:53:96:f5:99:1f:33:72:ce: 51:82:59:f2:2b:e6:a9:3c:2f:64:0d:1a:bb:dc:9f: 94:d9:03:79:75:ee:55:24:7f:b0:be:bc:3d:54:4c: 1c:96:47:8a:32:38:d4:bd:71:32:0f:2e:b0:5e:2b: 97:36:e9:ee:1a:f5:fd:b7:64:97:72:46:02:b8:85: 02:97:2a:e1:5d:9c:ef:e3:7c:af:25:45:5f:a0:73: 65:f0:3f:6d:07:ef:56:58:0d:60:7f:f1:e7:04:93: f0:13:88:c7:93:eb:a0:ce:03:a1:1d:93:0d:a7:f3: d5:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:5D:8F:DD:5F:26:8A:CC:74:92:59:EA:3B:EB:A4:3E:A4:16:56:04 X509v3 Authority Key Identifier: keyid:0B:B0:43:1F:55:08:03:7D:FC:92:F7:7E:06:B4:8A:EC:95:51:F6:5B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918C255/BE62DC9E232F11E7A54B4266C4F9AE02/C7BDH1UIA338kvd-BrSK7JVR9ls.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C7BDH1UIA338kvd-BrSK7JVR9ls.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918C255/BE62DC9E232F11E7A54B4266C4F9AE02/C7BDH1UIA338kvd-BrSK7JVR9ls.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 21:25:1e:e4:f9:5c:4c:66:02:b9:f1:91:45:b3:df:f0:d4:e9: a5:e8:9d:fc:73:c8:37:b0:a4:ba:54:19:91:2d:0d:77:42:b8: 54:f7:f9:51:d9:3a:56:e2:d3:9d:0d:38:b7:7d:f0:25:2a:ff: f1:72:16:65:c4:3c:fc:b0:6f:b8:7d:81:98:2c:f1:c3:c8:be: 88:ca:d2:e2:1c:3e:c7:5e:33:4b:c3:5c:28:8b:a3:69:da:f1: 33:ea:b7:21:09:8b:16:7c:ae:3b:56:13:76:62:d5:1a:c3:08: 4e:c5:03:5f:f1:cd:e9:96:5f:30:c3:f1:4d:28:77:1a:a7:26: 48:c4:33:bc:20:a1:fe:f7:a5:e8:ff:52:df:99:75:5c:c9:b5: e9:e7:b3:b6:a9:88:15:09:f7:ed:5d:df:ea:c5:3b:5e:5d:ee: 0d:50:0d:5a:ef:6d:ef:cc:98:92:69:fd:c3:da:e0:68:41:dc: 58:06:54:71:fd:48:87:d0:68:32:16:78:52:a8:91:af:72:fa: 0d:ec:d0:01:53:c9:54:24:32:ce:81:6a:36:69:81:c8:30:93: 9f:da:67:8e:9d:a1:3e:25:d6:d2:48:03:16:53:d8:9a:4e:a5: 4f:c0:dd:51:12:9f:f7:e4:06:9e:1b:a8:36:40:8f:7c:21:a0: 07:61:d5:55 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICGpMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEMyNTUxMTAvBgNVBAUTKDBCQjA0MzFGNTUwODAzN0RGQzkyRjc3RTA2QjQ4QUVD OTU1MUY2NUIwHhcNMjQxMTIyMTYxOTU1WhcNMjQxMTI5MTYxOTU1WjAYMRYwFAYD VQQDEw02NzQwYWYyYy01MTQ1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxdzhUuMQWGKDu0DcJzLk9iapyuSdWNm1VvvEBpnsXadK3+eiBgsxLmm0mct5 KTJFCYU3d91tfHjormz9lJhAK1vn2xZX09kg07Z7+93BhAp5NZKApR2XKKpiGF+I rzqiPGgaq8p5TIxiqDY/WyRz511NHFAoXZN2jBDhs+NludLMj2IXo3iDeV0vBrZ3 U5b1mR8zcs5RglnyK+apPC9kDRq73J+U2QN5de5VJH+wvrw9VEwclkeKMjjUvXEy Dy6wXiuXNunuGvX9t2SXckYCuIUClyrhXZzv43yvJUVfoHNl8D9tB+9WWA1gf/Hn BJPwE4jHk+ugzgOhHZMNp/PVTQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCpdj91f JorMdJJZ6jvrpD6kFlYEMB8GA1UdIwQYMBaAFAuwQx9VCAN9/JL3fga0iuyVUfZb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QzI1NS9CRTYyREM5RTIz MkYxMUU3QTU0QjQyNjZDNEY5QUUwMi9DN0JESDFVSUEzMzhrdmQtQnJTSzdKVlI5 bHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0M3QkRIMVVJQTMzOGt2ZC1CclNLN0pWUjlscy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 QzI1NS9CRTYyREM5RTIzMkYxMUU3QTU0QjQyNjZDNEY5QUUwMi9DN0JESDFVSUEz MzhrdmQtQnJTSzdKVlI5bHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAhJR7k+VxMZgK58ZFFs9/w1Oml6J38c8g3sKS6VBmRLQ13QrhU9/lR 2TpW4tOdDTi3ffAlKv/xchZlxDz8sG+4fYGYLPHDyL6IytLiHD7HXjNLw1woi6Np 2vEz6rchCYsWfK47VhN2YtUawwhOxQNf8c3pll8ww/FNKHcapyZIxDO8IKH+96Xo /1LfmXVcybXp57O2qYgVCfftXd/qxTteXe4NUA1a723vzJiSaf3D2uBoQdxYBlRx /UiH0GgyFnhSqJGvcvoN7NABU8lUJDLOgWo2aYHIMJOf2meOnaE+JdbSSAMWU9ia TqVPwN1REp/35AaeG6g2QI98IaAHYdVV -----END CERTIFICATE-----Generated at Fri Nov 22 19:50:07 2024 by rpki-client on console-ams.rpki-client.org