$ rpki-client -vvf rpki.apnic.net/member_repository/A91E8AF2/5732C838844C11EEB1F2CA29C4F9AE02/fNlYoAf08OVuSo0kV2aIYiurciE.mft File: fNlYoAf08OVuSo0kV2aIYiurciE.mft (raw, json) Hash identifier: envpZA1fc8mTkc8M34EW2ouiQCjOI/fG3+3IdLZJqBM= Subject key identifier: F9:10:53:3D:B7:A6:F3:E6:48:26:84:F0:C3:7D:0E:38:A8:D6:25:07 Authority key identifier: 7C:D9:58:A0:07:F4:F0:E5:6E:4A:8D:24:57:66:88:62:2B:AB:72:21 Certificate issuer: /CN=A91E8AF2/serialNumber=7CD958A007F4F0E56E4A8D24576688622BAB7221 Certificate serial: C8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fNlYoAf08OVuSo0kV2aIYiurciE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E8AF2/5732C838844C11EEB1F2CA29C4F9AE02/fNlYoAf08OVuSo0kV2aIYiurciE.mft Manifest number: C4 Signing time: Sat 23 Nov 2024 03:57:45 +0000 Manifest this update: Sat 23 Nov 2024 03:57:45 +0000 Manifest next update: Sat 30 Nov 2024 03:57:45 +0000 Files and hashes: 1: fNlYoAf08OVuSo0kV2aIYiurciE.crl (hash: bMRZ84MZMY9gJkV4h+SqDhnKCfxMIVKZfSk2qgD5amc=) 2: E7021416B54B11EE86895416C4F9AE02.roa (hash: vzHahXAFIekcStIbFKvBTMDftL9nSsfmNUK1qbKIERQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E8AF2/5732C838844C11EEB1F2CA29C4F9AE02/fNlYoAf08OVuSo0kV2aIYiurciE.crl rsync://rpki.apnic.net/member_repository/A91E8AF2/5732C838844C11EEB1F2CA29C4F9AE02/fNlYoAf08OVuSo0kV2aIYiurciE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fNlYoAf08OVuSo0kV2aIYiurciE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 200 (0xc8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E8AF2/serialNumber=7CD958A007F4F0E56E4A8D24576688622BAB7221 Validity Not Before: Nov 23 03:57:45 2024 GMT Not After : Nov 30 03:57:45 2024 GMT Subject: CN=674152b9-45bd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:1c:90:be:b8:64:5a:4b:ff:03:39:4d:f2:1f: 5e:7c:67:ce:e1:55:4d:c7:19:00:78:75:ca:8a:35: 2f:2a:2d:c4:d8:5f:bb:93:93:e9:19:62:81:76:fd: 23:8a:03:52:e6:87:64:13:80:98:76:82:9d:fc:87: f5:38:0e:79:86:75:a0:5d:32:1f:a3:d6:59:bb:46: f1:43:8e:a9:07:78:79:3c:95:db:31:c5:c6:c8:40: 6a:6a:de:56:f5:e6:33:c8:35:39:fd:c0:8f:5d:5e: e4:20:a9:d1:d9:35:83:7f:94:ee:cd:75:11:aa:42: d7:4a:4e:9d:26:0d:8f:11:59:a6:2f:6a:bf:b5:e1: c6:f0:89:5e:40:ed:3c:dd:db:9d:95:c4:27:a8:31: b7:6b:99:f3:32:10:21:50:ab:03:21:63:64:2f:03: 2f:12:af:89:8f:6c:37:3b:11:dc:18:a0:0e:86:16: fa:cd:bb:f3:50:70:66:11:da:c6:1a:fc:1a:97:c8: 97:46:27:12:27:7f:33:3f:e4:0f:33:2c:51:0b:e7: 1d:51:69:21:e6:f1:54:2c:34:de:fc:ce:bc:29:e6: 40:ec:2c:ac:95:3f:13:d9:a5:3d:b5:a3:e0:ce:19: 98:b3:4d:83:15:ee:2c:5e:49:5f:3a:3d:2e:d2:8a: b8:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:10:53:3D:B7:A6:F3:E6:48:26:84:F0:C3:7D:0E:38:A8:D6:25:07 X509v3 Authority Key Identifier: keyid:7C:D9:58:A0:07:F4:F0:E5:6E:4A:8D:24:57:66:88:62:2B:AB:72:21 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E8AF2/5732C838844C11EEB1F2CA29C4F9AE02/fNlYoAf08OVuSo0kV2aIYiurciE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fNlYoAf08OVuSo0kV2aIYiurciE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E8AF2/5732C838844C11EEB1F2CA29C4F9AE02/fNlYoAf08OVuSo0kV2aIYiurciE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a4:b0:06:cf:9b:cf:b3:1f:eb:f5:d1:39:d9:17:4a:46:2d:e3: c8:f3:be:2d:94:2f:17:91:03:22:50:af:b6:4d:0a:09:ac:04: 53:e5:6d:0d:bb:4b:a6:19:fc:f4:a3:b4:21:e0:77:bf:8c:39: 59:8f:52:c9:65:41:d6:ba:f8:6f:fa:b9:c5:bb:c5:3b:b0:57: 98:aa:7a:18:1f:15:84:7d:4e:0a:b6:fe:8c:18:61:9b:eb:9b: e5:ac:23:39:4f:ab:e6:5b:16:b1:f4:c6:0d:3a:9b:4d:a0:9a: c1:f5:1b:2d:3d:6a:1b:9d:29:88:68:05:37:3b:94:85:80:26: 9b:4c:d1:7b:f9:9d:27:34:e5:de:24:0a:30:b7:98:59:a3:87: 9c:e6:0d:5f:4b:22:c7:e1:92:53:d3:52:07:7e:67:e9:65:8e: c4:d8:85:6f:d5:c4:84:8c:cd:c6:6b:63:b1:3b:e7:12:9b:c9: cc:f3:29:38:93:b8:b1:98:9f:77:7e:eb:3e:6f:13:ae:c8:26: 9b:61:72:4e:af:5c:75:c9:b6:47:57:7b:7c:2e:84:fa:a0:53: d2:d3:c0:9d:01:07:39:e8:ec:4f:06:31:e1:38:ea:44:86:b8: 95:66:25:e4:1a:d9:52:a3:21:58:15:c5:75:04:8c:8b:90:8c: 10:49:e0:10 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAMgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RThBRjIxMTAvBgNVBAUTKDdDRDk1OEEwMDdGNEYwRTU2RTRBOEQyNDU3NjY4ODYy MkJBQjcyMjEwHhcNMjQxMTIzMDM1NzQ1WhcNMjQxMTMwMDM1NzQ1WjAYMRYwFAYD VQQDEw02NzQxNTJiOS00NWJkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApxyQvrhkWkv/AzlN8h9efGfO4VVNxxkAeHXKijUvKi3E2F+7k5PpGWKBdv0j igNS5odkE4CYdoKd/If1OA55hnWgXTIfo9ZZu0bxQ46pB3h5PJXbMcXGyEBqat5W 9eYzyDU5/cCPXV7kIKnR2TWDf5TuzXURqkLXSk6dJg2PEVmmL2q/teHG8IleQO08 3dudlcQnqDG3a5nzMhAhUKsDIWNkLwMvEq+Jj2w3OxHcGKAOhhb6zbvzUHBmEdrG Gvwal8iXRicSJ38zP+QPMyxRC+cdUWkh5vFULDTe/M68KeZA7CyslT8T2aU9taPg zhmYs02DFe4sXklfOj0u0oq4JwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPkQUz23 pvPmSCaE8MN9Djio1iUHMB8GA1UdIwQYMBaAFHzZWKAH9PDlbkqNJFdmiGIrq3Ih MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOEFGMi81NzMyQzgzODg0 NEMxMUVFQjFGMkNBMjlDNEY5QUUwMi9mTmxZb0FmMDhPVnVTbzBrVjJhSVlpdXJj aUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2ZObFlvQWYwOE9WdVNvMGtWMmFJWWl1cmNpRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF OEFGMi81NzMyQzgzODg0NEMxMUVFQjFGMkNBMjlDNEY5QUUwMi9mTmxZb0FmMDhP VnVTbzBrVjJhSVlpdXJjaUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCksAbPm8+zH+v10TnZF0pGLePI874tlC8XkQMiUK+2TQoJrART5W0N u0umGfz0o7Qh4He/jDlZj1LJZUHWuvhv+rnFu8U7sFeYqnoYHxWEfU4Ktv6MGGGb 65vlrCM5T6vmWxax9MYNOptNoJrB9RstPWobnSmIaAU3O5SFgCabTNF7+Z0nNOXe JAowt5hZo4ec5g1fSyLH4ZJT01IHfmfpZY7E2IVv1cSEjM3Ga2OxO+cSm8nM8yk4 k7ixmJ93fus+bxOuyCabYXJOr1x1ybZHV3t8LoT6oFPS08CdAQc56OxPBjHhOOpE hriVZiXkGtlSoyFYFcV1BIyLkIwQSeAQ -----END CERTIFICATE-----Generated at Sat Nov 23 06:13:26 2024 by rpki-client on console-ams.rpki-client.org