$ rpki-client -vvf rpki.apnic.net/member_repository/A91A7C68/423986F6972111EDA2E02251C4F9AE02/D2JqMmTW_szL_rLZmx2_iv_sOzQ.mft File: D2JqMmTW_szL_rLZmx2_iv_sOzQ.mft (raw, json) Hash identifier: jjYwqqtgAHlmLQDhaHjqhTyqEXpLibiznVKWz9vxKS0= Subject key identifier: 2C:B1:70:14:FE:C8:9F:8D:7D:F6:8A:B0:31:42:66:B5:26:B7:72:60 Authority key identifier: 0F:62:6A:32:64:D6:FE:CC:CB:FE:B2:D9:9B:1D:BF:8A:FF:EC:3B:34 Certificate issuer: /CN=A91A7C68/serialNumber=0F626A3264D6FECCCBFEB2D99B1DBF8AFFEC3B34 Certificate serial: 0172 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D2JqMmTW_szL_rLZmx2_iv_sOzQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A7C68/423986F6972111EDA2E02251C4F9AE02/D2JqMmTW_szL_rLZmx2_iv_sOzQ.mft Manifest number: 0166 Signing time: Sat 23 Nov 2024 02:25:13 +0000 Manifest this update: Sat 23 Nov 2024 02:25:12 +0000 Manifest next update: Sat 30 Nov 2024 02:25:12 +0000 Files and hashes: 1: D2JqMmTW_szL_rLZmx2_iv_sOzQ.crl (hash: I3PDw7VUpH3LFMqrz0of/adv+qMqbkubFsOntB2gCkI=) 2: BC72661A972911ED8CBCA476C4F9AE02.roa (hash: yk9nPTjP4U1qVXizgEWQziK8OtxwSvu99sQkiIJG/k4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A7C68/423986F6972111EDA2E02251C4F9AE02/D2JqMmTW_szL_rLZmx2_iv_sOzQ.crl rsync://rpki.apnic.net/member_repository/A91A7C68/423986F6972111EDA2E02251C4F9AE02/D2JqMmTW_szL_rLZmx2_iv_sOzQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D2JqMmTW_szL_rLZmx2_iv_sOzQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:25:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 370 (0x172) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A7C68/serialNumber=0F626A3264D6FECCCBFEB2D99B1DBF8AFFEC3B34 Validity Not Before: Nov 23 02:25:12 2024 GMT Not After : Nov 30 02:25:12 2024 GMT Subject: CN=67413d08-386e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:2c:05:1b:61:2a:fc:2c:b8:f5:aa:4b:ac:e3: 3c:0c:46:b7:be:90:b4:46:2a:f4:35:bb:9b:2c:73: dc:ca:87:c3:75:4e:35:02:b3:c8:b2:e9:45:72:b3: 93:e3:e6:36:72:ba:2f:cf:c7:6f:fe:81:0e:5d:c0: 31:26:df:e7:40:85:49:67:e2:63:de:61:f7:47:6f: 31:a0:9f:a6:af:92:85:2a:df:4e:38:bc:b0:94:a8: f6:7b:6f:a9:00:b9:ee:61:f8:82:22:cd:9a:cd:50: 98:a9:a9:cc:8f:33:1a:cf:db:81:d0:f7:7c:57:01: 9a:67:f0:af:ed:8a:63:97:ff:95:80:a5:33:43:54: 3b:78:12:2c:46:38:92:7d:96:f0:ea:a9:dd:63:11: 63:20:f3:6b:62:54:ef:1e:c5:bb:03:22:aa:d2:dc: 51:cd:84:c8:0c:9d:72:a3:66:9d:50:45:e5:ba:c1: 73:d8:ad:d1:ac:55:58:c5:de:3c:49:00:75:68:a6: de:3b:4d:29:f3:29:eb:4d:11:37:a3:5a:06:8a:a4: 1d:e2:43:2e:6c:8a:a9:e2:6b:ec:f9:f0:df:bd:28: 5a:53:71:43:a8:d8:ba:a4:4f:76:6d:65:04:49:37: c3:10:b7:95:f8:9a:5d:65:1d:18:23:cd:4f:a0:99: a8:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:B1:70:14:FE:C8:9F:8D:7D:F6:8A:B0:31:42:66:B5:26:B7:72:60 X509v3 Authority Key Identifier: keyid:0F:62:6A:32:64:D6:FE:CC:CB:FE:B2:D9:9B:1D:BF:8A:FF:EC:3B:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A7C68/423986F6972111EDA2E02251C4F9AE02/D2JqMmTW_szL_rLZmx2_iv_sOzQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D2JqMmTW_szL_rLZmx2_iv_sOzQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A7C68/423986F6972111EDA2E02251C4F9AE02/D2JqMmTW_szL_rLZmx2_iv_sOzQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 59:5e:0b:cb:ad:bd:1f:b3:7a:95:0d:6c:ed:f0:0f:1c:9c:d0: ea:b8:90:a1:74:71:cc:3d:c8:b5:74:6d:05:d6:33:59:5f:fc: 00:74:0d:81:88:70:9b:b8:f6:4c:66:fe:f0:bb:20:09:34:26: 98:eb:83:05:ba:99:c1:a4:7e:41:28:ad:8b:56:6e:a4:73:5a: 29:70:e9:1d:f6:67:af:ba:31:28:5f:33:8a:3d:53:f3:6b:05: 98:7c:c8:55:57:67:8b:38:65:ed:bb:cf:69:85:a5:0e:7d:63: 05:2b:67:a2:4c:e9:6d:79:b3:e3:24:66:d1:32:da:ba:c7:2d: a3:42:39:fa:11:0f:fd:1b:e7:55:f4:de:eb:65:69:57:0a:ee: 03:69:9f:ad:13:d5:6a:bf:a5:60:ae:8b:c5:24:34:b7:a8:68: ba:55:98:a3:74:c2:3b:ba:e2:fd:d8:36:f5:d2:49:cf:32:87: 06:2b:6e:1e:cf:07:22:b6:13:6b:cf:2a:02:45:85:70:a7:4c: a2:da:bd:2a:71:9a:e1:de:42:00:fb:be:32:4d:c5:df:c4:f7: b3:d4:1f:0d:4e:30:a8:14:f7:01:4a:2a:fe:08:d7:b1:a8:f0: 5a:80:30:36:bf:a3:33:66:e5:9d:80:4c:8d:ee:75:e2:2a:8e: 53:63:ac:70 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAXIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTdDNjgxMTAvBgNVBAUTKDBGNjI2QTMyNjRENkZFQ0NDQkZFQjJEOTlCMURCRjhB RkZFQzNCMzQwHhcNMjQxMTIzMDIyNTEyWhcNMjQxMTMwMDIyNTEyWjAYMRYwFAYD VQQDEw02NzQxM2QwOC0zODZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvCwFG2Eq/Cy49apLrOM8DEa3vpC0Rir0NbubLHPcyofDdU41ArPIsulFcrOT 4+Y2crovz8dv/oEOXcAxJt/nQIVJZ+Jj3mH3R28xoJ+mr5KFKt9OOLywlKj2e2+p ALnuYfiCIs2azVCYqanMjzMaz9uB0Pd8VwGaZ/Cv7Ypjl/+VgKUzQ1Q7eBIsRjiS fZbw6qndYxFjIPNrYlTvHsW7AyKq0txRzYTIDJ1yo2adUEXlusFz2K3RrFVYxd48 SQB1aKbeO00p8ynrTRE3o1oGiqQd4kMubIqp4mvs+fDfvShaU3FDqNi6pE92bWUE STfDELeV+JpdZR0YI81PoJmomwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCyxcBT+ yJ+NffaKsDFCZrUmt3JgMB8GA1UdIwQYMBaAFA9iajJk1v7My/6y2Zsdv4r/7Ds0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBN0M2OC80MjM5ODZGNjk3 MjExMUVEQTJFMDIyNTFDNEY5QUUwMi9EMkpxTW1UV19zekxfckxabXgyX2l2X3NP elEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0QySnFNbVRXX3N6TF9yTFpteDJfaXZfc096US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB N0M2OC80MjM5ODZGNjk3MjExMUVEQTJFMDIyNTFDNEY5QUUwMi9EMkpxTW1UV19z ekxfckxabXgyX2l2X3NPelEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBZXgvLrb0fs3qVDWzt8A8cnNDquJChdHHMPci1dG0F1jNZX/wAdA2B iHCbuPZMZv7wuyAJNCaY64MFupnBpH5BKK2LVm6kc1opcOkd9mevujEoXzOKPVPz awWYfMhVV2eLOGXtu89phaUOfWMFK2eiTOltebPjJGbRMtq6xy2jQjn6EQ/9G+dV 9N7rZWlXCu4DaZ+tE9Vqv6VgrovFJDS3qGi6VZijdMI7uuL92Db10knPMocGK24e zwcithNrzyoCRYVwp0yi2r0qcZrh3kIA+74yTcXfxPez1B8NTjCoFPcBSir+CNex qPBagDA2v6MzZuWdgEyN7nXiKo5TY6xw -----END CERTIFICATE-----Generated at Sat Nov 23 05:02:54 2024 by rpki-client on console-fra.rpki-client.org