$ rpki-client -vvf rpki.apnic.net/member_repository/A911CA78/028F58FE16D911EE9F175315C4F9AE02/PnIyBI3L0sabqyJbikIhYEbBiyU.mft File: PnIyBI3L0sabqyJbikIhYEbBiyU.mft (raw, json) Hash identifier: r9uMjILu97nkH2h+Bq4Bdm0gdPCMqBhHRUKlFnmuZaY= Subject key identifier: 84:F9:52:CA:83:F7:24:84:B2:1E:AD:9F:D4:7D:DA:43:C3:E2:08:AC Authority key identifier: 3E:72:32:04:8D:CB:D2:C6:9B:AB:22:5B:8A:42:21:60:46:C1:8B:25 Certificate issuer: /CN=A911CA78/serialNumber=3E7232048DCBD2C69BAB225B8A42216046C18B25 Certificate serial: 011F Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PnIyBI3L0sabqyJbikIhYEbBiyU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911CA78/028F58FE16D911EE9F175315C4F9AE02/PnIyBI3L0sabqyJbikIhYEbBiyU.mft Manifest number: 011B Signing time: Sun 24 Nov 2024 18:55:33 +0000 Manifest this update: Sun 24 Nov 2024 18:55:32 +0000 Manifest next update: Sun 01 Dec 2024 18:55:32 +0000 Files and hashes: 1: PnIyBI3L0sabqyJbikIhYEbBiyU.crl (hash: gPp/BmDksVCEIMoWziCClC6ZMRHb+AcJg3mE5kCudIU=) 2: 1ABB6C4E17DB11EE92B1C26FC4F9AE02.roa (hash: jx7hnJAbOWXi06R8EaUqGVH9j+g4HwGKu5sUmUZqpVQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911CA78/028F58FE16D911EE9F175315C4F9AE02/PnIyBI3L0sabqyJbikIhYEbBiyU.crl rsync://rpki.apnic.net/member_repository/A911CA78/028F58FE16D911EE9F175315C4F9AE02/PnIyBI3L0sabqyJbikIhYEbBiyU.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PnIyBI3L0sabqyJbikIhYEbBiyU.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Dec 2024 17:11:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 287 (0x11f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911CA78/serialNumber=3E7232048DCBD2C69BAB225B8A42216046C18B25 Validity Not Before: Nov 24 18:55:32 2024 GMT Not After : Dec 1 18:55:32 2024 GMT Subject: CN=674376a5-51de Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:1e:82:a5:5e:51:58:08:1e:d1:d4:46:27:c9: a1:f5:78:bc:21:6c:0e:0c:16:44:6d:dc:2f:a2:cc: 85:26:50:fe:57:f2:fd:d5:82:2e:6e:07:ef:d5:28: 69:2e:ef:06:18:0e:1d:74:c5:a7:4a:a3:50:10:c0: 1c:0d:fc:ad:8d:0b:36:2e:dc:e3:93:ba:a1:8a:94: 55:61:5a:0e:2f:13:69:3e:ba:c0:98:3a:94:6f:e1: 5f:41:b5:83:d1:df:a4:75:a1:4b:bc:d8:24:68:d4: 99:c7:e2:55:5f:63:b3:7b:af:3a:f2:5a:dd:9f:31: 31:e0:81:1b:5c:29:01:61:ce:f4:b8:c3:b4:3f:ba: 2f:82:d9:13:30:e9:74:f8:cc:3a:bf:d3:a4:1a:11: 7b:f1:d3:34:45:60:9a:9a:48:00:90:99:9b:65:0a: e6:53:82:c2:db:ca:7a:c1:5d:4e:e3:a7:b1:9e:2b: ec:7b:14:4a:ad:45:7c:4c:f6:4f:da:8d:4e:f9:5b: 33:72:e1:1a:e6:fc:03:a7:b4:e6:fd:8b:35:c0:df: de:39:c9:c2:c2:be:c4:f5:05:78:ca:d9:3d:17:22: e7:d2:9a:47:ba:21:2f:2e:4d:41:06:88:4d:a5:a1: 45:38:34:35:47:83:22:2b:ee:72:fc:90:83:3b:95: ec:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:F9:52:CA:83:F7:24:84:B2:1E:AD:9F:D4:7D:DA:43:C3:E2:08:AC X509v3 Authority Key Identifier: keyid:3E:72:32:04:8D:CB:D2:C6:9B:AB:22:5B:8A:42:21:60:46:C1:8B:25 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911CA78/028F58FE16D911EE9F175315C4F9AE02/PnIyBI3L0sabqyJbikIhYEbBiyU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PnIyBI3L0sabqyJbikIhYEbBiyU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911CA78/028F58FE16D911EE9F175315C4F9AE02/PnIyBI3L0sabqyJbikIhYEbBiyU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 73:79:b5:a3:60:33:80:f6:36:f5:84:8c:76:68:45:10:ad:e4: b0:26:8c:fd:7a:d3:c2:c5:4d:00:ff:5d:a2:e0:d4:13:3f:60: b9:00:80:f8:cd:38:30:e9:6d:32:b6:1c:0c:d8:3c:b0:3a:37: 27:8f:e9:f2:c0:43:7b:e3:5d:61:3a:23:b4:b1:d3:00:20:df: 59:90:70:23:ca:d7:b0:a4:78:05:b0:07:f5:83:2f:13:a0:d0: 25:dc:3d:e5:9d:b8:a9:e4:f3:59:88:33:db:4f:32:e4:6c:bd: 02:ef:b7:d8:d8:69:dd:5c:6a:35:7d:23:68:20:83:57:ac:ec: 1d:e8:dd:85:0e:2e:35:2f:1c:22:e8:fa:cb:c1:88:91:b7:59: 91:fc:37:22:e6:ef:b2:4b:3d:92:18:9a:f5:03:47:34:aa:9e: f9:e6:d1:5b:14:13:c9:0f:43:59:91:95:50:ce:56:29:23:5b: c2:07:c3:38:b3:39:b4:87:da:01:27:4e:87:be:b6:a6:8b:09: c8:3c:37:98:42:9f:75:25:cb:67:a8:8a:fe:25:96:15:0d:2d: b9:ed:69:08:0f:2c:60:12:e7:d6:c8:f6:6a:be:37:a0:2f:ef: 59:ff:b9:3a:af:8f:07:b8:6f:33:f9:36:29:83:15:1c:e7:e4: 09:05:73:e5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAR8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUNBNzgxMTAvBgNVBAUTKDNFNzIzMjA0OERDQkQyQzY5QkFCMjI1QjhBNDIyMTYw NDZDMThCMjUwHhcNMjQxMTI0MTg1NTMyWhcNMjQxMjAxMTg1NTMyWjAYMRYwFAYD VQQDEw02NzQzNzZhNS01MWRlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvB6CpV5RWAge0dRGJ8mh9Xi8IWwODBZEbdwvosyFJlD+V/L91YIubgfv1Shp Lu8GGA4ddMWnSqNQEMAcDfytjQs2Ltzjk7qhipRVYVoOLxNpPrrAmDqUb+FfQbWD 0d+kdaFLvNgkaNSZx+JVX2Oze6868lrdnzEx4IEbXCkBYc70uMO0P7ovgtkTMOl0 +Mw6v9OkGhF78dM0RWCamkgAkJmbZQrmU4LC28p6wV1O46exnivsexRKrUV8TPZP 2o1O+VszcuEa5vwDp7Tm/Ys1wN/eOcnCwr7E9QV4ytk9FyLn0ppHuiEvLk1BBohN paFFODQ1R4MiK+5y/JCDO5Xs/QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIT5UsqD 9ySEsh6tn9R92kPD4gisMB8GA1UdIwQYMBaAFD5yMgSNy9LGm6siW4pCIWBGwYsl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQ0E3OC8wMjhGNThGRTE2 RDkxMUVFOUYxNzUzMTVDNEY5QUUwMi9Qbkl5QkkzTDBzYWJxeUpiaWtJaFlFYkJp eVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1BuSXlCSTNMMHNhYnF5SmJpa0loWUViQml5VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx Q0E3OC8wMjhGNThGRTE2RDkxMUVFOUYxNzUzMTVDNEY5QUUwMi9Qbkl5QkkzTDBz YWJxeUpiaWtJaFlFYkJpeVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBzebWjYDOA9jb1hIx2aEUQreSwJoz9etPCxU0A/12i4NQTP2C5AID4 zTgw6W0ythwM2DywOjcnj+nywEN7411hOiO0sdMAIN9ZkHAjytewpHgFsAf1gy8T oNAl3D3lnbip5PNZiDPbTzLkbL0C77fY2GndXGo1fSNoIINXrOwd6N2FDi41Lxwi 6PrLwYiRt1mR/Dci5u+ySz2SGJr1A0c0qp755tFbFBPJD0NZkZVQzlYpI1vCB8M4 szm0h9oBJ06HvramiwnIPDeYQp91JctnqIr+JZYVDS257WkIDyxgEufWyPZqvjeg L+9Z/7k6r48HuG8z+TYpgxUc5+QJBXPl -----END CERTIFICATE-----Generated at Sun Nov 24 20:09:42 2024 by rpki-client on console-ams.rpki-client.org