$ rpki-client -vvf rpki.apnic.net/member_repository/A919ACF6/349783EEDB8611EA8559425EC4F9AE02/o1EXGLQporBD5kW_sWUO5nd-QXI.mft File: o1EXGLQporBD5kW_sWUO5nd-QXI.mft (raw, json) Hash identifier: xwgihD16EXIOPiEWzpYjbaN/SbWfsdkguq3sc3KO5ig= Subject key identifier: E7:61:06:2F:6A:74:B5:3E:09:9D:2F:19:6D:A0:60:40:37:8E:26:07 Authority key identifier: A3:51:17:18:B4:29:A2:B0:43:E6:45:BF:B1:65:0E:E6:77:7E:41:72 Certificate issuer: /CN=A919ACF6/serialNumber=A3511718B429A2B043E645BFB1650EE6777E4172 Certificate serial: 07AE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o1EXGLQporBD5kW_sWUO5nd-QXI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919ACF6/349783EEDB8611EA8559425EC4F9AE02/o1EXGLQporBD5kW_sWUO5nd-QXI.mft Manifest number: 07A7 Signing time: Fri 22 Nov 2024 20:45:34 +0000 Manifest this update: Fri 22 Nov 2024 20:45:33 +0000 Manifest next update: Fri 29 Nov 2024 20:45:33 +0000 Files and hashes: 1: o1EXGLQporBD5kW_sWUO5nd-QXI.crl (hash: CTCHvejSzGgd18Urvvu+w5ZZSfSjmwd3GosMe2U8nQw=) 2: F48207E6DB8711EAA446B360C4F9AE02.roa (hash: wGBFb60F2aF0B9pOX18btxm9jl1WJHVfOK5kaTJxavY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919ACF6/349783EEDB8611EA8559425EC4F9AE02/o1EXGLQporBD5kW_sWUO5nd-QXI.crl rsync://rpki.apnic.net/member_repository/A919ACF6/349783EEDB8611EA8559425EC4F9AE02/o1EXGLQporBD5kW_sWUO5nd-QXI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o1EXGLQporBD5kW_sWUO5nd-QXI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1966 (0x7ae) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919ACF6/serialNumber=A3511718B429A2B043E645BFB1650EE6777E4172 Validity Not Before: Nov 22 20:45:33 2024 GMT Not After : Nov 29 20:45:33 2024 GMT Subject: CN=6740ed6d-6038 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:b9:8d:88:0b:7e:8b:44:d2:72:a5:26:29:86: 2b:84:40:6f:bf:3b:69:91:26:47:d0:f1:36:30:ae: ac:09:74:bf:b5:c3:33:c9:f2:81:73:8d:c2:2a:50: a7:98:c7:37:46:70:98:ad:0e:39:6d:b5:35:5d:7f: 3e:89:cc:54:6a:b2:10:25:ca:5d:7f:a4:3b:30:87: c2:a3:d3:fa:c2:7d:b8:74:f0:d1:f1:aa:b2:82:27: 3a:ad:90:dc:b2:51:9a:8f:c0:56:5b:b0:f5:13:d8: 22:d6:62:b6:02:94:3f:f4:b3:67:bf:20:3e:7b:11: e5:d8:56:92:78:ed:d0:92:93:7a:f5:ff:2a:74:ca: 09:c4:61:d7:2f:1d:b6:6d:e6:8a:0c:ea:0a:b8:ef: 45:8c:8b:94:f5:72:10:a1:c3:e6:5f:d3:04:d2:bf: 7a:b4:1b:4f:3a:75:1f:2a:a5:9f:e6:e7:25:da:09: 8f:c3:a4:81:bb:41:94:c5:81:e0:80:9c:7a:43:62: bd:c9:54:4b:d1:b5:8e:cf:dc:bb:d4:ac:15:0d:e4: 43:16:03:8a:9c:8a:ea:c4:8b:31:ca:25:c5:d4:46: b5:30:cf:e6:66:7d:03:58:ea:94:74:bf:fa:46:e1: 94:f9:1a:96:4c:42:18:e0:3a:84:c5:3c:bd:f2:2c: 22:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:61:06:2F:6A:74:B5:3E:09:9D:2F:19:6D:A0:60:40:37:8E:26:07 X509v3 Authority Key Identifier: keyid:A3:51:17:18:B4:29:A2:B0:43:E6:45:BF:B1:65:0E:E6:77:7E:41:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919ACF6/349783EEDB8611EA8559425EC4F9AE02/o1EXGLQporBD5kW_sWUO5nd-QXI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o1EXGLQporBD5kW_sWUO5nd-QXI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919ACF6/349783EEDB8611EA8559425EC4F9AE02/o1EXGLQporBD5kW_sWUO5nd-QXI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 70:45:4b:88:0c:38:ca:d2:45:c0:a7:10:f0:bf:5f:09:8e:7a: b3:ad:c0:d8:7e:7c:d7:01:a3:31:54:84:ad:b6:58:7f:d8:3b: 72:d5:12:d6:f0:cc:07:91:b5:ff:9d:3b:56:85:02:27:1a:fe: 51:3f:bc:33:3f:e1:a9:f7:c0:b9:eb:b3:88:13:e8:f8:53:cc: 7a:11:30:b4:54:f8:19:55:4a:b3:f4:47:ac:52:0f:a3:fd:59: 40:17:14:08:ed:f7:b8:b5:eb:73:32:de:cf:7f:ee:35:2b:4d: a5:1e:f3:89:50:39:ee:c9:75:82:33:16:10:e1:db:e6:42:45: 07:a1:a1:a8:52:9d:cf:c0:a7:d5:a8:a8:62:03:81:77:be:f6: 5a:01:10:fe:2a:2b:11:03:89:d6:3b:4b:25:c0:b7:02:f3:59: 2b:94:be:a5:5a:09:27:d4:4e:3b:ac:8b:2e:4c:63:ca:af:a7: f8:9e:6a:c3:48:5f:19:2a:ec:dd:4f:08:e3:75:dc:fd:c6:c1: 61:61:5e:aa:7c:89:3d:2f:0c:d7:80:88:4b:d5:06:46:d1:c2: a2:3a:a7:76:8d:1c:89:16:c5:d2:ad:f8:88:c8:ae:2f:8f:bc: 56:c5:09:65:b6:f0:09:58:35:5b:8c:77:0c:ec:2a:f4:a6:ec: 13:8c:08:6f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB64wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUFDRjYxMTAvBgNVBAUTKEEzNTExNzE4QjQyOUEyQjA0M0U2NDVCRkIxNjUwRUU2 Nzc3RTQxNzIwHhcNMjQxMTIyMjA0NTMzWhcNMjQxMTI5MjA0NTMzWjAYMRYwFAYD VQQDEw02NzQwZWQ2ZC02MDM4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs7mNiAt+i0TScqUmKYYrhEBvvztpkSZH0PE2MK6sCXS/tcMzyfKBc43CKlCn mMc3RnCYrQ45bbU1XX8+icxUarIQJcpdf6Q7MIfCo9P6wn24dPDR8aqygic6rZDc slGaj8BWW7D1E9gi1mK2ApQ/9LNnvyA+exHl2FaSeO3QkpN69f8qdMoJxGHXLx22 beaKDOoKuO9FjIuU9XIQocPmX9ME0r96tBtPOnUfKqWf5ucl2gmPw6SBu0GUxYHg gJx6Q2K9yVRL0bWOz9y71KwVDeRDFgOKnIrqxIsxyiXF1Ea1MM/mZn0DWOqUdL/6 RuGU+RqWTEIY4DqExTy98iwi5QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOdhBi9q dLU+CZ0vGW2gYEA3jiYHMB8GA1UdIwQYMBaAFKNRFxi0KaKwQ+ZFv7FlDuZ3fkFy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QUNGNi8zNDk3ODNFRURC ODYxMUVBODU1OTQyNUVDNEY5QUUwMi9vMUVYR0xRcG9yQkQ1a1dfc1dVTzVuZC1R WEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL28xRVhHTFFwb3JCRDVrV19zV1VPNW5kLVFYSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 QUNGNi8zNDk3ODNFRURCODYxMUVBODU1OTQyNUVDNEY5QUUwMi9vMUVYR0xRcG9y QkQ1a1dfc1dVTzVuZC1RWEkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBwRUuIDDjK0kXApxDwv18JjnqzrcDYfnzXAaMxVISttlh/2Dty1RLW 8MwHkbX/nTtWhQInGv5RP7wzP+Gp98C567OIE+j4U8x6ETC0VPgZVUqz9EesUg+j /VlAFxQI7fe4tetzMt7Pf+41K02lHvOJUDnuyXWCMxYQ4dvmQkUHoaGoUp3PwKfV qKhiA4F3vvZaARD+KisRA4nWO0slwLcC81krlL6lWgkn1E47rIsuTGPKr6f4nmrD SF8ZKuzdTwjjddz9xsFhYV6qfIk9LwzXgIhL1QZG0cKiOqd2jRyJFsXSrfiIyK4v j7xWxQlltvAJWDVbjHcM7Cr0puwTjAhv -----END CERTIFICATE-----Generated at Fri Nov 22 22:24:10 2024 by rpki-client on console-fra.rpki-client.org