$ rpki-client -vvf rpki.apnic.net/member_repository/A9139D93/CCBAAADAD6A911EEACD31668C4F9AE02/jMU6mSl_HMCgv73r8k4TKw2EHHY.mft File: jMU6mSl_HMCgv73r8k4TKw2EHHY.mft (raw, json) Hash identifier: I1XJ1Vg5R6oSNR83y9dWNrVA9tWgq0m+K4qxYxGN8Gc= Subject key identifier: 2D:0E:51:45:D1:8E:A0:3E:25:99:DA:49:9D:25:C3:E8:4B:97:30:1A Authority key identifier: 8C:C5:3A:99:29:7F:1C:C0:A0:BF:BD:EB:F2:4E:13:2B:0D:84:1C:76 Certificate issuer: /CN=A9139D93/serialNumber=8CC53A99297F1CC0A0BFBDEBF24E132B0D841C76 Certificate serial: 8C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jMU6mSl_HMCgv73r8k4TKw2EHHY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9139D93/CCBAAADAD6A911EEACD31668C4F9AE02/jMU6mSl_HMCgv73r8k4TKw2EHHY.mft Manifest number: 8A Signing time: Sat 23 Nov 2024 04:35:13 +0000 Manifest this update: Sat 23 Nov 2024 04:35:13 +0000 Manifest next update: Sat 30 Nov 2024 04:35:13 +0000 Files and hashes: 1: jMU6mSl_HMCgv73r8k4TKw2EHHY.crl (hash: fK0nHs1ATTVYFiQJUfj6oPU04i6QaUf/IWwVYKiiCZg=) 2: E614FEEED6AF11EEAB03B528C4F9AE02.roa (hash: T5x6SlXjPX7mxME3pbp1iBlGxmK0O/jrZnmPz8dQ2E0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9139D93/CCBAAADAD6A911EEACD31668C4F9AE02/jMU6mSl_HMCgv73r8k4TKw2EHHY.crl rsync://rpki.apnic.net/member_repository/A9139D93/CCBAAADAD6A911EEACD31668C4F9AE02/jMU6mSl_HMCgv73r8k4TKw2EHHY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jMU6mSl_HMCgv73r8k4TKw2EHHY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 140 (0x8c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9139D93/serialNumber=8CC53A99297F1CC0A0BFBDEBF24E132B0D841C76 Validity Not Before: Nov 23 04:35:13 2024 GMT Not After : Nov 30 04:35:13 2024 GMT Subject: CN=67415b81-2ab6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:05:de:84:95:74:af:dc:f5:ef:30:e5:15:c5: c5:93:3a:eb:ac:e7:53:8b:96:56:93:ef:0a:fb:89: 89:01:f2:30:06:75:cb:66:7d:1a:51:63:4b:a0:53: f0:03:75:da:f3:4b:08:2c:6a:48:b4:3f:83:ad:f1: e0:eb:63:3f:d3:07:2b:df:86:a8:9e:f7:85:bb:1e: f0:97:e2:47:14:75:d8:28:ce:14:34:7c:cd:32:37: ad:65:4e:d4:5f:8d:32:f1:09:2a:2a:a5:b5:f6:2d: d4:f8:62:af:35:e2:2e:94:b0:24:29:f6:a7:bc:4e: c1:33:b0:17:36:1a:ae:ff:45:e5:6b:38:61:89:91: 41:9e:03:83:d0:a8:76:15:9d:4d:a8:55:30:78:74: 31:47:f7:28:f8:9a:37:82:2e:74:71:4b:86:1b:bd: ed:85:0a:a3:13:53:98:fa:29:61:01:00:84:2d:64: 55:91:3a:39:90:c2:ce:d9:9d:5b:8d:c1:47:aa:4f: cc:54:bf:57:d8:03:cc:10:63:b5:24:db:a0:3f:bd: fe:37:e8:3d:1d:be:bb:6a:1c:9f:af:34:fe:3f:0f: a5:23:e2:f4:0f:b3:e1:dc:55:75:14:93:16:00:88: 6d:a8:74:2e:d7:60:36:f4:d4:6a:25:4c:b3:be:0e: 73:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:0E:51:45:D1:8E:A0:3E:25:99:DA:49:9D:25:C3:E8:4B:97:30:1A X509v3 Authority Key Identifier: keyid:8C:C5:3A:99:29:7F:1C:C0:A0:BF:BD:EB:F2:4E:13:2B:0D:84:1C:76 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9139D93/CCBAAADAD6A911EEACD31668C4F9AE02/jMU6mSl_HMCgv73r8k4TKw2EHHY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jMU6mSl_HMCgv73r8k4TKw2EHHY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9139D93/CCBAAADAD6A911EEACD31668C4F9AE02/jMU6mSl_HMCgv73r8k4TKw2EHHY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 45:88:b1:cb:46:96:ad:25:eb:df:a7:aa:6b:08:f9:32:33:5e: c8:0a:17:97:82:3f:11:50:dd:54:f2:7b:a0:5a:d5:df:3e:f3: c7:ba:5c:61:f7:14:b8:3f:05:e7:eb:56:3a:23:f0:b0:24:ae: 0d:a9:9e:ad:a8:f5:62:65:87:c6:37:91:ee:14:db:aa:ce:23: eb:8d:88:40:88:83:c4:a4:c7:ed:41:fc:72:c7:b5:65:14:df: b1:89:67:64:79:fa:5e:89:0f:2e:f6:36:5a:30:12:81:a7:33: cd:af:d5:d7:ad:c7:24:9c:a3:dd:69:db:4b:24:9f:09:61:2a: 4e:c3:c1:11:78:06:7b:fa:5c:df:54:a1:74:77:53:d3:a1:65: 59:98:21:c6:de:b0:e2:dc:24:a6:38:9b:e5:ef:dc:72:3b:78: 6a:05:b1:b3:8e:ec:8e:5b:b1:eb:a4:5e:31:0b:e1:d7:d3:b5: cc:de:08:62:c6:49:4d:a4:85:aa:96:dd:75:06:41:1b:c5:93: d8:59:d0:30:23:70:b2:e6:e3:f2:22:54:b7:1b:7b:5f:e2:7b: 9f:ce:c0:b0:b8:b8:8e:c4:fc:1b:96:b4:c6:dc:c0:cc:58:8b: 04:15:74:52:73:03:6e:2f:68:e2:3a:13:ab:e3:9a:f5:55:fa: 36:ac:c4:11 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzlEOTMxMTAvBgNVBAUTKDhDQzUzQTk5Mjk3RjFDQzBBMEJGQkRFQkYyNEUxMzJC MEQ4NDFDNzYwHhcNMjQxMTIzMDQzNTEzWhcNMjQxMTMwMDQzNTEzWjAYMRYwFAYD VQQDEw02NzQxNWI4MS0yYWI2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoQXehJV0r9z17zDlFcXFkzrrrOdTi5ZWk+8K+4mJAfIwBnXLZn0aUWNLoFPw A3Xa80sILGpItD+DrfHg62M/0wcr34aonveFux7wl+JHFHXYKM4UNHzNMjetZU7U X40y8QkqKqW19i3U+GKvNeIulLAkKfanvE7BM7AXNhqu/0XlazhhiZFBngOD0Kh2 FZ1NqFUweHQxR/co+Jo3gi50cUuGG73thQqjE1OY+ilhAQCELWRVkTo5kMLO2Z1b jcFHqk/MVL9X2APMEGO1JNugP73+N+g9Hb67ahyfrzT+Pw+lI+L0D7Ph3FV1FJMW AIhtqHQu12A29NRqJUyzvg5z/wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFC0OUUXR jqA+JZnaSZ0lw+hLlzAaMB8GA1UdIwQYMBaAFIzFOpkpfxzAoL+96/JOEysNhBx2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzOUQ5My9DQ0JBQUFEQUQ2 QTkxMUVFQUNEMzE2NjhDNEY5QUUwMi9qTVU2bVNsX0hNQ2d2NzNyOGs0VEt3MkVI SFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2pNVTZtU2xfSE1DZ3Y3M3I4azRUS3cyRUhIWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz OUQ5My9DQ0JBQUFEQUQ2QTkxMUVFQUNEMzE2NjhDNEY5QUUwMi9qTVU2bVNsX0hN Q2d2NzNyOGs0VEt3MkVISFkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBFiLHLRpatJevfp6prCPkyM17ICheXgj8RUN1U8nugWtXfPvPHulxh 9xS4PwXn61Y6I/CwJK4NqZ6tqPViZYfGN5HuFNuqziPrjYhAiIPEpMftQfxyx7Vl FN+xiWdkefpeiQ8u9jZaMBKBpzPNr9XXrccknKPdadtLJJ8JYSpOw8EReAZ7+lzf VKF0d1PToWVZmCHG3rDi3CSmOJvl79xyO3hqBbGzjuyOW7HrpF4xC+HX07XM3ghi xklNpIWqlt11BkEbxZPYWdAwI3Cy5uPyIlS3G3tf4nufzsCwuLiOxPwblrTG3MDM WIsEFXRScwNuL2jiOhOr45r1Vfo2rMQR -----END CERTIFICATE-----Generated at Sat Nov 23 06:21:24 2024 by rpki-client on console-fra.rpki-client.org