$ rpki-client -vvf rpki.apnic.net/member_repository/A91E9DF8/4B3B881EB6D911EB8F865554C4F9AE02/lQaLswq8fgB_2Dh-TeCoPvqt1HI.mft File: lQaLswq8fgB_2Dh-TeCoPvqt1HI.mft (raw, json) Hash identifier: qof8rTeA0TmxJBk04UdsBrrcYnNmncJloI/D0ezf5SY= Subject key identifier: FB:A3:AD:60:0F:17:4F:9C:73:BC:B5:A1:D5:41:63:89:EF:10:68:DA Authority key identifier: 95:06:8B:B3:0A:BC:7E:00:7F:D8:38:7E:4D:E0:A8:3E:FA:AD:D4:72 Certificate issuer: /CN=A91E9DF8/serialNumber=95068BB30ABC7E007FD8387E4DE0A83EFAADD472 Certificate serial: 0585 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lQaLswq8fgB_2Dh-TeCoPvqt1HI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E9DF8/4B3B881EB6D911EB8F865554C4F9AE02/lQaLswq8fgB_2Dh-TeCoPvqt1HI.mft Manifest number: 057F Signing time: Fri 22 Nov 2024 22:49:33 +0000 Manifest this update: Fri 22 Nov 2024 22:49:33 +0000 Manifest next update: Fri 29 Nov 2024 22:49:33 +0000 Files and hashes: 1: lQaLswq8fgB_2Dh-TeCoPvqt1HI.crl (hash: 6vj394wCPfCXeFnOpxl8dXm3SaMR9zjsipELqLPxKTQ=) 2: A8086732B6DA11EBB7B67954C4F9AE02.roa (hash: ldWjzJ4l8BsIeHREFrvU51ElQcTYEq5MkB9HbZsC/bI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E9DF8/4B3B881EB6D911EB8F865554C4F9AE02/lQaLswq8fgB_2Dh-TeCoPvqt1HI.crl rsync://rpki.apnic.net/member_repository/A91E9DF8/4B3B881EB6D911EB8F865554C4F9AE02/lQaLswq8fgB_2Dh-TeCoPvqt1HI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lQaLswq8fgB_2Dh-TeCoPvqt1HI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1413 (0x585) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E9DF8/serialNumber=95068BB30ABC7E007FD8387E4DE0A83EFAADD472 Validity Not Before: Nov 22 22:49:33 2024 GMT Not After : Nov 29 22:49:33 2024 GMT Subject: CN=67410a7d-99a7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:8a:91:0f:20:f7:b4:95:f1:46:6d:49:25:17: 2d:9c:2b:4a:29:08:a8:95:0d:6c:44:b1:ae:33:f5: 51:46:e2:3e:93:b7:0d:dd:bc:d2:9c:e3:06:9c:a8: 01:69:61:1d:5e:c6:d2:55:40:b8:d4:de:84:41:ee: 64:95:57:40:ab:7b:46:0f:e6:ba:d8:a0:d4:4a:c7: b7:57:8d:aa:7d:c2:7d:40:3d:7e:bc:d2:49:0d:57: 09:75:5a:a5:0b:39:c4:62:7f:e5:2a:bb:4a:58:40: 01:3f:73:1e:a6:5e:c5:d2:73:e6:c0:b7:de:09:e0: ff:e6:5e:20:fd:25:f7:ea:9b:b1:40:aa:8d:3f:0e: 21:f5:e6:74:82:02:dc:ce:85:a4:d4:e0:e8:18:e3: 76:4a:34:ec:d7:5c:ed:64:51:58:39:52:c3:50:a4: 41:ac:6c:3d:72:f8:63:f4:76:5e:2b:fd:fe:96:be: 22:37:10:95:f2:d2:d9:a2:14:1a:59:1a:b8:cd:5b: cf:f5:e9:34:22:a9:b1:6f:31:cb:f0:1a:98:b9:4f: 2e:d6:ce:2f:5b:4d:f9:66:36:05:21:02:5c:d0:33: 68:f9:3e:1b:ea:46:63:e7:a0:fe:19:de:df:52:2f: 36:af:c1:51:f9:28:80:1e:a1:06:60:6b:eb:db:d4: 6f:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:A3:AD:60:0F:17:4F:9C:73:BC:B5:A1:D5:41:63:89:EF:10:68:DA X509v3 Authority Key Identifier: keyid:95:06:8B:B3:0A:BC:7E:00:7F:D8:38:7E:4D:E0:A8:3E:FA:AD:D4:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E9DF8/4B3B881EB6D911EB8F865554C4F9AE02/lQaLswq8fgB_2Dh-TeCoPvqt1HI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lQaLswq8fgB_2Dh-TeCoPvqt1HI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E9DF8/4B3B881EB6D911EB8F865554C4F9AE02/lQaLswq8fgB_2Dh-TeCoPvqt1HI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7d:73:88:fb:c8:c6:0a:37:75:89:c6:c2:cd:91:af:38:98:0b: fa:d5:82:5c:be:73:74:b2:b3:6b:33:af:2c:32:d1:7e:58:ba: b1:6a:6d:d5:24:1a:ea:c8:36:7a:c7:41:d8:f0:d7:55:0a:e8: e9:e6:92:a5:2c:1f:bb:da:fa:f6:c8:02:85:56:e8:a3:5f:a2: b8:b6:f6:1e:ef:94:21:5f:5e:bc:de:7b:d6:88:18:0f:5b:28: bd:76:c0:5c:39:4e:c7:a0:49:ee:4b:c6:52:7e:bf:ed:1a:f3: aa:eb:b5:32:da:77:9c:d4:56:8f:0f:98:cf:59:e1:40:cb:51: ab:23:66:da:71:42:0d:fc:df:0f:8a:5b:95:3e:8a:b1:2f:aa: 88:40:44:11:08:f7:d3:ce:66:ef:a0:48:67:df:64:e9:aa:0e: 3e:da:4e:13:8e:0e:c6:7b:ab:0b:66:18:76:e1:44:54:75:2f: 50:fe:a4:cd:16:45:f3:34:98:41:32:23:4b:66:c0:2a:e5:78: d5:67:d6:38:6a:26:bc:78:fb:39:22:2a:7d:a1:fe:ab:65:ce: e3:b6:1a:f2:fb:f8:9c:97:be:f4:e0:9b:61:74:08:56:36:6d: 3f:93:40:f0:2c:e3:3d:c3:31:84:51:57:21:a6:56:35:60:d1: 22:75:f4:0c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBYUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTlERjgxMTAvBgNVBAUTKDk1MDY4QkIzMEFCQzdFMDA3RkQ4Mzg3RTRERTBBODNF RkFBREQ0NzIwHhcNMjQxMTIyMjI0OTMzWhcNMjQxMTI5MjI0OTMzWjAYMRYwFAYD VQQDEw02NzQxMGE3ZC05OWE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuoqRDyD3tJXxRm1JJRctnCtKKQiolQ1sRLGuM/VRRuI+k7cN3bzSnOMGnKgB aWEdXsbSVUC41N6EQe5klVdAq3tGD+a62KDUSse3V42qfcJ9QD1+vNJJDVcJdVql CznEYn/lKrtKWEABP3Mepl7F0nPmwLfeCeD/5l4g/SX36puxQKqNPw4h9eZ0ggLc zoWk1ODoGON2SjTs11ztZFFYOVLDUKRBrGw9cvhj9HZeK/3+lr4iNxCV8tLZohQa WRq4zVvP9ek0IqmxbzHL8BqYuU8u1s4vW035ZjYFIQJc0DNo+T4b6kZj56D+Gd7f Ui82r8FR+SiAHqEGYGvr29RvkQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPujrWAP F0+cc7y1odVBY4nvEGjaMB8GA1UdIwQYMBaAFJUGi7MKvH4Af9g4fk3gqD76rdRy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOURGOC80QjNCODgxRUI2 RDkxMUVCOEY4NjU1NTRDNEY5QUUwMi9sUWFMc3dxOGZnQl8yRGgtVGVDb1B2cXQx SEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xRYUxzd3E4ZmdCXzJEaC1UZUNvUHZxdDFISS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF OURGOC80QjNCODgxRUI2RDkxMUVCOEY4NjU1NTRDNEY5QUUwMi9sUWFMc3dxOGZn Ql8yRGgtVGVDb1B2cXQxSEkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB9c4j7yMYKN3WJxsLNka84mAv61YJcvnN0srNrM68sMtF+WLqxam3V JBrqyDZ6x0HY8NdVCujp5pKlLB+72vr2yAKFVuijX6K4tvYe75QhX1683nvWiBgP Wyi9dsBcOU7HoEnuS8ZSfr/tGvOq67Uy2nec1FaPD5jPWeFAy1GrI2bacUIN/N8P iluVPoqxL6qIQEQRCPfTzmbvoEhn32Tpqg4+2k4Tjg7Ge6sLZhh24URUdS9Q/qTN FkXzNJhBMiNLZsAq5XjVZ9Y4aia8ePs5Iip9of6rZc7jthry+/icl7704JthdAhW Nm0/k0DwLOM9wzGEUVchplY1YNEidfQM -----END CERTIFICATE-----Generated at Fri Nov 22 23:39:36 2024 by rpki-client on console-fra.rpki-client.org