$ rpki-client -vvf rpki.apnic.net/member_repository/A91394E7/F4CFD1DAAC7311EF87FC554CC4F9AE02/iR7Yuqwsc70TrcqhoWqvANIkqHc.mft File: iR7Yuqwsc70TrcqhoWqvANIkqHc.mft (raw, json) Hash identifier: 4B6HN8qIDULiHMs5X+QQ4Nt7DqomaGvFjhYBjr3iTMw= Subject key identifier: 59:14:D4:5B:97:C5:4D:6F:38:5B:2B:F9:EA:10:89:71:04:20:A3:D0 Authority key identifier: 89:1E:D8:BA:AC:2C:73:BD:13:AD:CA:A1:A1:6A:AF:00:D2:24:A8:77 Certificate issuer: /CN=A91394E7/serialNumber=891ED8BAAC2C73BD13ADCAA1A16AAF00D224A877 Certificate serial: 15 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iR7Yuqwsc70TrcqhoWqvANIkqHc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91394E7/F4CFD1DAAC7311EF87FC554CC4F9AE02/iR7Yuqwsc70TrcqhoWqvANIkqHc.mft Manifest number: 13 Signing time: Wed 25 Dec 2024 06:07:28 +0000 Manifest this update: Wed 25 Dec 2024 06:07:28 +0000 Manifest next update: Wed 01 Jan 2025 06:07:28 +0000 Files and hashes: 1: iR7Yuqwsc70TrcqhoWqvANIkqHc.crl (hash: qkrB6wkhBltxxabXvEKF54VAZBIHq/8LsCO350nkDi8=) 2: F7078BC4B73511EF8537DE81C4F9AE02.roa (hash: e90+mjyZj2zuwbEyBzLynR/xbGV19fXGWIy1lxomBoA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91394E7/F4CFD1DAAC7311EF87FC554CC4F9AE02/iR7Yuqwsc70TrcqhoWqvANIkqHc.crl rsync://rpki.apnic.net/member_repository/A91394E7/F4CFD1DAAC7311EF87FC554CC4F9AE02/iR7Yuqwsc70TrcqhoWqvANIkqHc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iR7Yuqwsc70TrcqhoWqvANIkqHc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Jan 2025 02:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 21 (0x15) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91394E7/serialNumber=891ED8BAAC2C73BD13ADCAA1A16AAF00D224A877 Validity Not Before: Dec 25 06:07:28 2024 GMT Not After : Jan 1 06:07:28 2025 GMT Subject: CN=676ba120-a8e9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:b6:01:02:ba:92:5d:b6:75:e4:0f:ad:49:bb: 21:b7:9a:b3:3a:1e:b3:bb:2e:3f:95:a4:84:95:80: b9:51:84:a7:52:75:aa:b0:88:b3:2e:23:c9:42:7f: d7:74:03:89:8f:17:88:c1:29:a8:ce:c4:c5:c0:6d: ea:b3:90:5b:2e:37:22:25:17:17:9b:0e:9e:0b:82: 1a:d0:a8:8b:71:e1:df:f7:93:08:24:74:45:83:15: 03:91:c3:33:a9:5c:5e:80:96:ae:68:6b:d3:08:a1: 6f:ec:cf:5b:6d:19:dc:c4:ef:76:b2:2c:36:28:e9: 93:b8:36:93:ef:41:e3:05:53:1c:31:4a:92:86:be: 0f:5d:de:a9:cb:58:0d:e1:f2:73:04:0d:b2:f9:65: 4f:b9:5a:d6:f9:77:2c:f9:69:5b:73:7b:47:68:f4: e1:eb:2d:8f:8a:7c:d5:ec:0c:2d:d9:04:33:f6:61: 59:61:33:46:7f:51:2f:57:04:e1:46:64:29:da:96: 6f:1b:49:b1:ab:30:aa:27:01:86:61:19:07:11:15: ab:b5:d3:8a:60:7e:8a:f4:74:77:8e:36:42:77:bb: be:19:8c:a2:ca:35:ec:f1:87:dc:5e:73:c5:d2:84: 5f:92:5a:aa:50:6f:fd:aa:39:bf:86:ec:59:cc:34: 42:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:14:D4:5B:97:C5:4D:6F:38:5B:2B:F9:EA:10:89:71:04:20:A3:D0 X509v3 Authority Key Identifier: keyid:89:1E:D8:BA:AC:2C:73:BD:13:AD:CA:A1:A1:6A:AF:00:D2:24:A8:77 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91394E7/F4CFD1DAAC7311EF87FC554CC4F9AE02/iR7Yuqwsc70TrcqhoWqvANIkqHc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iR7Yuqwsc70TrcqhoWqvANIkqHc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91394E7/F4CFD1DAAC7311EF87FC554CC4F9AE02/iR7Yuqwsc70TrcqhoWqvANIkqHc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 89:2d:19:37:b8:f8:81:ee:ee:f7:0b:5a:46:e2:72:4f:5c:8c: 53:2c:45:79:e6:ef:9d:26:e8:f1:e5:c2:81:e2:44:3e:c9:2d: 63:60:f8:5d:0e:5b:65:8e:a2:d2:74:0c:27:79:ec:93:1f:3e: 56:99:3d:83:d0:42:6f:35:1b:4b:ef:0f:6a:fe:57:a8:a3:b1: 2c:76:55:6b:c5:5d:e2:be:c2:d3:af:ee:4e:49:a6:2e:56:5d: db:a6:95:6e:9a:ab:b0:63:b4:87:57:f1:e2:17:5e:9f:b5:84: c0:94:ae:5a:5d:33:ca:55:d0:e9:73:cb:4b:34:28:80:dc:1b: 8e:aa:6b:ee:b6:d1:fb:97:29:f1:41:89:c3:ed:7e:9a:fe:ee: 44:94:12:db:76:b1:35:17:c0:8b:67:e6:00:0f:72:59:2e:57: da:36:33:25:e8:ac:82:6a:ff:8e:d2:73:8c:e5:4c:11:e7:94: f1:ce:9b:15:69:9f:2a:c8:b4:37:27:e3:c7:14:bf:06:dd:78: d8:73:d2:8f:30:cc:37:08:dc:89:bf:a8:be:f2:0d:fd:79:cf: 3f:c9:e0:5f:27:b8:3a:8e:13:3c:fa:5b:ea:46:d8:02:91:4d: 12:54:00:49:1a:4b:df:7f:2d:9a:aa:a8:07:74:4f:bd:38:65: ae:6a:53:1d -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBFTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEz OTRFNzExMC8GA1UEBRMoODkxRUQ4QkFBQzJDNzNCRDEzQURDQUExQTE2QUFGMDBE MjI0QTg3NzAeFw0yNDEyMjUwNjA3MjhaFw0yNTAxMDEwNjA3MjhaMBgxFjAUBgNV BAMTDTY3NmJhMTIwLWE4ZTkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDdtgECupJdtnXkD61JuyG3mrM6HrO7Lj+VpISVgLlRhKdSdaqwiLMuI8lCf9d0 A4mPF4jBKajOxMXAbeqzkFsuNyIlFxebDp4LghrQqItx4d/3kwgkdEWDFQORwzOp XF6Alq5oa9MIoW/sz1ttGdzE73ayLDYo6ZO4NpPvQeMFUxwxSpKGvg9d3qnLWA3h 8nMEDbL5ZU+5Wtb5dyz5aVtze0do9OHrLY+KfNXsDC3ZBDP2YVlhM0Z/US9XBOFG ZCnalm8bSbGrMKonAYZhGQcRFau104pgfor0dHeONkJ3u74ZjKLKNezxh9xec8XS hF+SWqpQb/2qOb+G7FnMNEIZAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUWRTUW5fF TW84Wyv56hCJcQQgo9AwHwYDVR0jBBgwFoAUiR7Yuqwsc70TrcqhoWqvANIkqHcw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTM5NEU3L0Y0Q0ZEMURBQUM3 MzExRUY4N0ZDNTU0Q0M0RjlBRTAyL2lSN1l1cXdzYzcwVHJjcWhvV3F2QU5Ja3FI Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvaVI3WXVxd3NjNzBUcmNxaG9XcXZBTklrcUhjLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTM5 NEU3L0Y0Q0ZEMURBQUM3MzExRUY4N0ZDNTU0Q0M0RjlBRTAyL2lSN1l1cXdzYzcw VHJjcWhvV3F2QU5Ja3FIYy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAIktGTe4+IHu7vcLWkbick9cjFMsRXnm750m6PHlwoHiRD7JLWNg+F0O W2WOotJ0DCd57JMfPlaZPYPQQm81G0vvD2r+V6ijsSx2VWvFXeK+wtOv7k5Jpi5W XdumlW6aq7BjtIdX8eIXXp+1hMCUrlpdM8pV0Olzy0s0KIDcG46qa+620fuXKfFB icPtfpr+7kSUEtt2sTUXwItn5gAPclkuV9o2MyXorIJq/47Sc4zlTBHnlPHOmxVp nyrItDcn48cUvwbdeNhz0o8wzDcI3Im/qL7yDf15zz/J4F8nuDqOEzz6W+pG2AKR TRJUAEkaS99/LZqqqAd0T704Za5qUx0= -----END CERTIFICATE-----Generated at Wed Dec 25 08:01:10 2024 by rpki-client on console-fra.rpki-client.org