$ rpki-client -vvf rpki.apnic.net/member_repository/A911393B/67D08BA8628C11EE9565B569C4F9AE02/IcuqoETeGlZkRp9Bi80Id7ITlzo.mft File: IcuqoETeGlZkRp9Bi80Id7ITlzo.mft (raw, json) Hash identifier: 7N3X+KR7hCQVit8mURqetvdph9K3wsaDE/iviM3bcE0= Subject key identifier: 21:99:9D:AC:AC:3F:BB:17:1E:25:17:C4:85:F9:13:13:88:59:CF:94 Authority key identifier: 21:CB:AA:A0:44:DE:1A:56:64:46:9F:41:8B:CD:08:77:B2:13:97:3A Certificate issuer: /CN=A911393B/serialNumber=21CBAAA044DE1A5664469F418BCD0877B213973A Certificate serial: D5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IcuqoETeGlZkRp9Bi80Id7ITlzo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911393B/67D08BA8628C11EE9565B569C4F9AE02/IcuqoETeGlZkRp9Bi80Id7ITlzo.mft Manifest number: D4 Signing time: Sat 23 Nov 2024 03:42:53 +0000 Manifest this update: Sat 23 Nov 2024 03:42:52 +0000 Manifest next update: Sat 30 Nov 2024 03:42:52 +0000 Files and hashes: 1: IcuqoETeGlZkRp9Bi80Id7ITlzo.crl (hash: zDeWGHL5C1t15FybMkM9EF3VKKqafRKq6zBdZD1py1o=) 2: 6538D178628E11EEBF375134C4F9AE02.roa (hash: Pw/x/vys3i7BCNdlrQIbToItEZqfAmbAqkABXFykZto=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911393B/67D08BA8628C11EE9565B569C4F9AE02/IcuqoETeGlZkRp9Bi80Id7ITlzo.crl rsync://rpki.apnic.net/member_repository/A911393B/67D08BA8628C11EE9565B569C4F9AE02/IcuqoETeGlZkRp9Bi80Id7ITlzo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IcuqoETeGlZkRp9Bi80Id7ITlzo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 213 (0xd5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911393B/serialNumber=21CBAAA044DE1A5664469F418BCD0877B213973A Validity Not Before: Nov 23 03:42:52 2024 GMT Not After : Nov 30 03:42:52 2024 GMT Subject: CN=67414f3c-3aa8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:4e:41:24:1d:e0:10:e6:30:25:21:ad:62:0b: f3:92:09:f3:57:65:cc:20:8d:cd:24:ab:d2:ec:ff: c2:09:14:07:7a:95:cc:f6:b7:98:22:4e:cb:13:ce: dc:e0:8f:0f:3e:6f:bd:cd:24:fc:8c:a3:14:76:c5: ad:e7:55:03:9d:27:25:19:7a:9b:39:34:56:80:fb: bf:77:8d:f6:39:60:bb:b1:49:39:65:ac:0e:59:ee: 01:89:b8:5e:6a:62:d5:6f:e6:a5:37:4f:05:90:f3: 74:ed:47:e7:5e:5e:e9:70:89:e2:60:70:19:d2:9e: 77:ae:54:57:90:cc:10:bc:8b:40:f3:14:65:2d:4e: c3:2f:a2:37:ca:aa:8f:3d:48:37:33:af:60:76:f1: 58:4d:ec:01:13:1c:be:bc:c5:98:49:ba:3f:95:f9: cb:85:0d:f9:5a:ac:32:69:df:0a:ba:05:be:a4:7b: 99:fb:27:89:fc:48:63:3e:96:45:30:6a:a0:78:8f: cf:5e:90:67:30:57:ad:53:82:ac:17:d3:7c:5e:bc: 49:9e:8a:a8:e2:b8:a1:84:6d:3e:98:8e:a5:36:a8: f4:1e:4f:ed:93:76:87:4b:09:0f:d1:ed:38:4c:31: 75:5f:5c:b2:be:b2:97:22:12:8e:6d:f4:90:21:a6: 9a:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:99:9D:AC:AC:3F:BB:17:1E:25:17:C4:85:F9:13:13:88:59:CF:94 X509v3 Authority Key Identifier: keyid:21:CB:AA:A0:44:DE:1A:56:64:46:9F:41:8B:CD:08:77:B2:13:97:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911393B/67D08BA8628C11EE9565B569C4F9AE02/IcuqoETeGlZkRp9Bi80Id7ITlzo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IcuqoETeGlZkRp9Bi80Id7ITlzo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911393B/67D08BA8628C11EE9565B569C4F9AE02/IcuqoETeGlZkRp9Bi80Id7ITlzo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bb:8e:cf:c0:77:ba:42:b7:f8:2b:2a:9b:11:9d:92:04:af:40: b1:66:88:e1:09:6d:e8:c9:80:b6:90:c6:9e:56:ba:eb:05:35: 4a:69:93:56:dc:19:b5:c5:33:cb:cb:f8:ea:2e:b1:d8:3a:e9: 81:b5:b4:c6:ad:9f:df:4a:d9:a6:3c:84:fa:2f:14:59:a0:ec: 57:92:30:95:98:5d:5b:5d:1f:a4:b9:e1:28:94:24:f0:27:be: ca:20:2c:97:7c:0a:90:32:ce:1b:0b:1b:6c:2f:f9:12:04:bc: 0e:86:03:8e:b0:ef:f1:df:e0:98:e3:f7:3a:70:15:25:27:9f: f4:b6:63:a8:56:50:d0:02:7e:4b:4e:6d:69:02:2b:dc:43:c2: 44:e3:dd:75:b4:7e:e8:8e:03:8e:da:26:f0:62:8c:16:7f:d2: 01:7b:82:6f:24:47:85:1e:56:82:58:d4:1e:6a:6f:83:7d:ec: 05:38:a6:a6:45:7c:84:64:7d:02:0a:9c:67:80:db:81:11:29: 0f:8a:df:08:c6:0c:2e:ca:73:f5:c7:dd:54:36:32:1b:2b:68: 32:20:6c:fe:66:76:5e:a4:9f:4e:93:c5:84:e3:79:06:f0:a7: a5:e6:a2:98:b3:f0:4e:9d:9a:d3:31:1f:06:51:35:91:81:9a: 21:03:2e:d5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICANUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTM5M0IxMTAvBgNVBAUTKDIxQ0JBQUEwNDRERTFBNTY2NDQ2OUY0MThCQ0QwODc3 QjIxMzk3M0EwHhcNMjQxMTIzMDM0MjUyWhcNMjQxMTMwMDM0MjUyWjAYMRYwFAYD VQQDEw02NzQxNGYzYy0zYWE4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtE5BJB3gEOYwJSGtYgvzkgnzV2XMII3NJKvS7P/CCRQHepXM9reYIk7LE87c 4I8PPm+9zST8jKMUdsWt51UDnSclGXqbOTRWgPu/d432OWC7sUk5ZawOWe4Bibhe amLVb+alN08FkPN07UfnXl7pcIniYHAZ0p53rlRXkMwQvItA8xRlLU7DL6I3yqqP PUg3M69gdvFYTewBExy+vMWYSbo/lfnLhQ35Wqwyad8KugW+pHuZ+yeJ/EhjPpZF MGqgeI/PXpBnMFetU4KsF9N8XrxJnoqo4rihhG0+mI6lNqj0Hk/tk3aHSwkP0e04 TDF1X1yyvrKXIhKObfSQIaaacQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCGZnays P7sXHiUXxIX5ExOIWc+UMB8GA1UdIwQYMBaAFCHLqqBE3hpWZEafQYvNCHeyE5c6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMzkzQi82N0QwOEJBODYy OEMxMUVFOTU2NUI1NjlDNEY5QUUwMi9JY3Vxb0VUZUdsWmtScDlCaTgwSWQ3SVRs em8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ljdXFvRVRlR2xaa1JwOUJpODBJZDdJVGx6by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MzkzQi82N0QwOEJBODYyOEMxMUVFOTU2NUI1NjlDNEY5QUUwMi9JY3Vxb0VUZUds WmtScDlCaTgwSWQ3SVRsem8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC7js/Ad7pCt/grKpsRnZIEr0CxZojhCW3oyYC2kMaeVrrrBTVKaZNW 3Bm1xTPLy/jqLrHYOumBtbTGrZ/fStmmPIT6LxRZoOxXkjCVmF1bXR+kueEolCTw J77KICyXfAqQMs4bCxtsL/kSBLwOhgOOsO/x3+CY4/c6cBUlJ5/0tmOoVlDQAn5L Tm1pAivcQ8JE4911tH7ojgOO2ibwYowWf9IBe4JvJEeFHlaCWNQeam+DfewFOKam RXyEZH0CCpxngNuBESkPit8IxgwuynP1x91UNjIbK2gyIGz+ZnZepJ9Ok8WE43kG 8Kel5qKYs/BOnZrTMR8GUTWRgZohAy7V -----END CERTIFICATE-----Generated at Sat Nov 23 06:13:00 2024 by rpki-client on console-ams.rpki-client.org