$ rpki-client -vvf rpki.apnic.net/member_repository/A91BBCAF/0F61886A6B3211EE9B522053C4F9AE02/J7LmYpFIIhNrCWLbtbpEfCU_Uhs.mft File: J7LmYpFIIhNrCWLbtbpEfCU_Uhs.mft (raw, json) Hash identifier: yXII1xhHY4fwrpVXcfJ9F9I93eK25gM/Yu7xOr+LvO0= Subject key identifier: F0:93:DC:8D:BA:BD:BE:F3:EE:31:B7:46:DA:A6:13:7C:18:05:D1:F1 Authority key identifier: 27:B2:E6:62:91:48:22:13:6B:09:62:DB:B5:BA:44:7C:25:3F:52:1B Certificate issuer: /CN=A91BBCAF/serialNumber=27B2E662914822136B0962DBB5BA447C253F521B Certificate serial: D9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/J7LmYpFIIhNrCWLbtbpEfCU_Uhs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BBCAF/0F61886A6B3211EE9B522053C4F9AE02/J7LmYpFIIhNrCWLbtbpEfCU_Uhs.mft Manifest number: D5 Signing time: Sat 23 Nov 2024 03:46:23 +0000 Manifest this update: Sat 23 Nov 2024 03:46:22 +0000 Manifest next update: Sat 30 Nov 2024 03:46:22 +0000 Files and hashes: 1: J7LmYpFIIhNrCWLbtbpEfCU_Uhs.crl (hash: jVJxkwiwn8JH/rbfX98WcecxHStZsQ3FW4KxC7RXPQo=) 2: D2FA5DBE6C1E11EEBB9EAB7AC4F9AE02.roa (hash: VxCtnEbF2p63KawOX+Ec2pPAYcngxsY5VpNi8SAFc50=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BBCAF/0F61886A6B3211EE9B522053C4F9AE02/J7LmYpFIIhNrCWLbtbpEfCU_Uhs.crl rsync://rpki.apnic.net/member_repository/A91BBCAF/0F61886A6B3211EE9B522053C4F9AE02/J7LmYpFIIhNrCWLbtbpEfCU_Uhs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/J7LmYpFIIhNrCWLbtbpEfCU_Uhs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 217 (0xd9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BBCAF/serialNumber=27B2E662914822136B0962DBB5BA447C253F521B Validity Not Before: Nov 23 03:46:22 2024 GMT Not After : Nov 30 03:46:22 2024 GMT Subject: CN=6741500e-b896 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:7e:81:03:38:9e:83:00:15:c2:8c:39:e7:ec: 26:62:7e:db:3d:ef:4c:5e:28:7b:06:0b:30:03:58: 19:b1:d0:7b:42:02:05:7c:b0:6b:5d:dc:3e:11:c0: a7:1b:ed:f3:63:47:6f:4d:68:37:93:41:32:4b:b5: 4c:a9:94:65:52:84:5e:df:33:fc:90:be:70:3c:53: 0c:99:14:43:4a:e5:8b:f5:16:bf:23:0b:4e:cf:fa: a7:25:31:29:33:65:fd:8e:44:6a:99:3d:6f:15:c4: 12:5a:07:90:f9:eb:6a:d8:fd:11:d6:c8:57:b7:3b: f3:d8:9a:08:e1:c9:74:16:db:dc:41:de:3f:61:49: 54:c2:1a:db:29:e7:f2:db:02:cb:10:7d:38:ad:96: 12:e8:a2:16:e5:80:11:ff:c0:14:1d:b0:3b:c4:a3: 74:44:96:58:fb:09:3a:f2:95:5f:41:8b:75:6d:b3: b7:9b:fe:0d:33:24:54:00:39:8c:b4:a8:83:c5:44: 9c:07:b4:fa:dd:55:c7:e3:44:67:a9:7c:e5:9a:c8: 09:49:90:f5:a9:a9:52:4f:f6:b1:3e:ad:91:6f:28: 70:75:c2:8a:da:6b:80:23:86:0f:65:70:da:63:e4: 65:13:d0:14:23:31:73:9a:6a:4d:91:7d:34:40:68: 64:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:93:DC:8D:BA:BD:BE:F3:EE:31:B7:46:DA:A6:13:7C:18:05:D1:F1 X509v3 Authority Key Identifier: keyid:27:B2:E6:62:91:48:22:13:6B:09:62:DB:B5:BA:44:7C:25:3F:52:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BBCAF/0F61886A6B3211EE9B522053C4F9AE02/J7LmYpFIIhNrCWLbtbpEfCU_Uhs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/J7LmYpFIIhNrCWLbtbpEfCU_Uhs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BBCAF/0F61886A6B3211EE9B522053C4F9AE02/J7LmYpFIIhNrCWLbtbpEfCU_Uhs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 32:28:45:6e:54:9b:2b:b1:42:1b:f4:74:0a:34:05:8e:dc:22: 10:25:d9:06:61:f4:53:7f:b2:43:f8:6e:26:a5:b3:c2:b0:b9: 3f:79:98:38:48:b5:dc:6a:93:ee:26:98:df:7a:25:e4:e8:38: c9:85:22:29:8f:29:71:94:11:f7:45:5b:8d:7a:cf:5f:21:b5: da:38:8f:bd:c3:30:a9:13:97:a1:b5:60:7a:93:7c:87:23:83: a5:de:6c:55:0a:a0:5a:84:c5:13:85:52:9b:6a:6e:08:51:bf: 50:a0:84:65:f6:63:66:94:2b:2d:f6:38:94:cd:02:a8:a4:4f: 7b:e2:e6:31:3e:51:55:af:f7:f1:d0:e9:87:05:65:0f:d9:7a: 39:06:df:ad:61:2e:43:02:f6:15:1d:d7:c1:c3:92:2e:ac:76: d4:52:27:db:33:c5:39:ef:f7:30:cc:89:80:e6:50:ec:6c:2a: 87:60:fb:7a:6d:28:d7:df:65:34:13:5a:63:4f:71:ac:ab:7f: ca:87:33:2e:a9:46:e6:62:4d:a6:9f:98:28:23:a1:e5:77:94: ee:ef:c0:70:56:80:8a:e4:5f:e0:98:58:bb:7a:1a:90:cf:d9: a6:f4:80:64:99:2f:ff:53:54:75:7a:03:46:23:de:6c:0a:58: a5:13:b5:8a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICANkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkJDQUYxMTAvBgNVBAUTKDI3QjJFNjYyOTE0ODIyMTM2QjA5NjJEQkI1QkE0NDdD MjUzRjUyMUIwHhcNMjQxMTIzMDM0NjIyWhcNMjQxMTMwMDM0NjIyWjAYMRYwFAYD VQQDEw02NzQxNTAwZS1iODk2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqn6BAziegwAVwow55+wmYn7bPe9MXih7BgswA1gZsdB7QgIFfLBrXdw+EcCn G+3zY0dvTWg3k0EyS7VMqZRlUoRe3zP8kL5wPFMMmRRDSuWL9Ra/IwtOz/qnJTEp M2X9jkRqmT1vFcQSWgeQ+etq2P0R1shXtzvz2JoI4cl0FtvcQd4/YUlUwhrbKefy 2wLLEH04rZYS6KIW5YAR/8AUHbA7xKN0RJZY+wk68pVfQYt1bbO3m/4NMyRUADmM tKiDxUScB7T63VXH40RnqXzlmsgJSZD1qalST/axPq2RbyhwdcKK2muAI4YPZXDa Y+RlE9AUIzFzmmpNkX00QGhkXQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPCT3I26 vb7z7jG3RtqmE3wYBdHxMB8GA1UdIwQYMBaAFCey5mKRSCITawli27W6RHwlP1Ib MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQkNBRi8wRjYxODg2QTZC MzIxMUVFOUI1MjIwNTNDNEY5QUUwMi9KN0xtWXBGSUloTnJDV0xidGJwRWZDVV9V aHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0o3TG1ZcEZJSWhOckNXTGJ0YnBFZkNVX1Vocy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QkNBRi8wRjYxODg2QTZCMzIxMUVFOUI1MjIwNTNDNEY5QUUwMi9KN0xtWXBGSUlo TnJDV0xidGJwRWZDVV9VaHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAyKEVuVJsrsUIb9HQKNAWO3CIQJdkGYfRTf7JD+G4mpbPCsLk/eZg4 SLXcapPuJpjfeiXk6DjJhSIpjylxlBH3RVuNes9fIbXaOI+9wzCpE5ehtWB6k3yH I4Ol3mxVCqBahMUThVKbam4IUb9QoIRl9mNmlCst9jiUzQKopE974uYxPlFVr/fx 0OmHBWUP2Xo5Bt+tYS5DAvYVHdfBw5IurHbUUifbM8U57/cwzImA5lDsbCqHYPt6 bSjX32U0E1pjT3Gsq3/KhzMuqUbmYk2mn5goI6Hld5Tu78BwVoCK5F/gmFi7ehqQ z9mm9IBkmS//U1R1egNGI95sClilE7WK -----END CERTIFICATE-----Generated at Sat Nov 23 05:02:56 2024 by rpki-client on console-fra.rpki-client.org