$ rpki-client -vvf rpki.apnic.net/member_repository/A913B7B2/40665008416F11EAB5C7CA65C4F9AE02/CZJdtntKud9gBue9K8HY7cjMfhk.mft File: CZJdtntKud9gBue9K8HY7cjMfhk.mft (raw, json) Hash identifier: K0lU/l3YDdp+GXqEDXIcJe+OgTllPWvQS1J6OC2yAzM= Subject key identifier: EE:78:38:30:C1:10:6B:B8:D6:03:53:10:F0:79:FA:91:7F:ED:1E:AB Authority key identifier: 09:92:5D:B6:7B:4A:B9:DF:60:06:E7:BD:2B:C1:D8:ED:C8:CC:7E:19 Certificate issuer: /CN=A913B7B2/serialNumber=09925DB67B4AB9DF6006E7BD2BC1D8EDC8CC7E19 Certificate serial: 0ABC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CZJdtntKud9gBue9K8HY7cjMfhk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913B7B2/40665008416F11EAB5C7CA65C4F9AE02/CZJdtntKud9gBue9K8HY7cjMfhk.mft Manifest number: 0AAD Signing time: Fri 22 Nov 2024 19:14:07 +0000 Manifest this update: Fri 22 Nov 2024 19:14:07 +0000 Manifest next update: Fri 29 Nov 2024 19:14:07 +0000 Files and hashes: 1: CZJdtntKud9gBue9K8HY7cjMfhk.crl (hash: xWzIzJboZytethHsMFHm555IBtYcfHsGhMvBq7GQvbE=) 2: 6808E6322F1C11EDA3E29B09C4F9AE02.roa (hash: aEndoa3mlV2G5lXUvKZV7m0E7ZroFHeShuJNQqr4i/I=) 3: 6932258C2F1C11EDA3E29B09C4F9AE02.roa (hash: X2hY9dLSEi0KLChyX6EN8ewtqBNd6x6WyrUR2WYRH4A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913B7B2/40665008416F11EAB5C7CA65C4F9AE02/CZJdtntKud9gBue9K8HY7cjMfhk.crl rsync://rpki.apnic.net/member_repository/A913B7B2/40665008416F11EAB5C7CA65C4F9AE02/CZJdtntKud9gBue9K8HY7cjMfhk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CZJdtntKud9gBue9K8HY7cjMfhk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 19:14:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2748 (0xabc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913B7B2/serialNumber=09925DB67B4AB9DF6006E7BD2BC1D8EDC8CC7E19 Validity Not Before: Nov 22 19:14:07 2024 GMT Not After : Nov 29 19:14:07 2024 GMT Subject: CN=6740d7ff-2307 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:fe:52:4f:52:09:8c:b2:b4:ed:b8:71:29:ad: bf:d7:fc:55:56:96:b7:23:8f:a0:d8:74:cc:68:3d: 7d:fe:00:59:c1:89:3a:9e:ce:4a:ea:a5:7d:c8:65: 26:1e:20:f1:95:ae:ed:76:b2:1a:32:f1:a5:6a:79: 54:cf:91:2c:29:c1:a8:57:24:66:da:8a:c2:63:30: f2:09:22:42:7a:29:86:09:17:74:85:7b:23:a5:2e: 86:d2:fe:ed:10:c1:b3:c5:bf:c1:8d:15:87:a6:12: c9:9b:42:56:17:dd:14:63:5b:83:39:5f:94:f3:06: 3a:58:f5:b3:7a:8d:39:43:32:8e:16:48:a7:b5:19: 44:58:95:44:76:17:ab:1d:51:b0:2f:94:a3:ed:07: e4:37:ac:bc:ab:79:5f:8d:cc:b4:7f:81:8e:0c:6b: 45:b3:b9:da:f5:96:34:d6:f9:74:bc:06:14:d0:2a: ce:7f:00:58:91:8e:3c:27:1d:9c:bc:6d:e4:7b:65: b1:2d:ae:80:88:e9:2d:14:a1:24:ea:f1:e8:71:e1: bf:93:ff:93:0b:97:4c:b5:94:94:06:06:5b:77:e1: 28:07:c0:8a:d3:24:09:2e:c3:17:8d:33:d6:68:fd: 79:14:17:9b:d4:37:cc:a2:37:99:c6:49:bf:1f:f4: f9:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:78:38:30:C1:10:6B:B8:D6:03:53:10:F0:79:FA:91:7F:ED:1E:AB X509v3 Authority Key Identifier: keyid:09:92:5D:B6:7B:4A:B9:DF:60:06:E7:BD:2B:C1:D8:ED:C8:CC:7E:19 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913B7B2/40665008416F11EAB5C7CA65C4F9AE02/CZJdtntKud9gBue9K8HY7cjMfhk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CZJdtntKud9gBue9K8HY7cjMfhk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913B7B2/40665008416F11EAB5C7CA65C4F9AE02/CZJdtntKud9gBue9K8HY7cjMfhk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 81:55:a2:e9:b2:6c:3e:c2:bb:03:81:1c:15:e4:01:c1:df:63: ae:a7:a8:cd:87:c7:eb:2a:36:0c:7b:3b:22:8a:ca:9d:6b:a9: ac:bf:f1:83:a6:98:cf:8c:9a:61:ca:c9:72:2c:f9:b1:23:0e: 25:3c:3e:ca:2b:70:92:64:5d:83:cc:af:49:93:f6:91:7d:fb: 82:36:61:27:95:43:fb:be:7d:42:0a:5e:f7:33:3a:d0:40:78: a8:d6:2b:bb:4c:33:d1:6a:2b:fb:73:84:20:00:5f:41:ad:5f: 9d:e7:92:e3:47:f0:9d:f5:7c:3f:0f:ff:65:38:01:10:89:10: 90:67:20:5f:50:f1:78:0d:e0:67:e0:e1:87:76:cc:76:1e:21: 43:f4:37:56:ab:2f:03:1a:d2:83:49:7e:e3:73:f3:04:5b:9a: 9e:73:cd:83:56:fb:70:25:e8:8a:95:96:43:ed:1d:55:2a:e1: bd:45:34:6b:43:48:cd:0f:cd:7e:3c:cc:a3:06:f8:71:ce:8b: 28:1c:8b:b9:78:5f:87:39:a1:1f:ed:45:f7:8c:2b:b4:b4:1a: d2:91:f1:9a:fd:6f:6a:a8:80:ea:86:6c:92:f6:49:fd:13:60: 2a:01:22:f6:6a:29:52:89:c6:55:98:b0:5f:c2:61:9f:df:51: a2:86:5d:7d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCrwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0I3QjIxMTAvBgNVBAUTKDA5OTI1REI2N0I0QUI5REY2MDA2RTdCRDJCQzFEOEVE QzhDQzdFMTkwHhcNMjQxMTIyMTkxNDA3WhcNMjQxMTI5MTkxNDA3WjAYMRYwFAYD VQQDEw02NzQwZDdmZi0yMzA3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8f5ST1IJjLK07bhxKa2/1/xVVpa3I4+g2HTMaD19/gBZwYk6ns5K6qV9yGUm HiDxla7tdrIaMvGlanlUz5EsKcGoVyRm2orCYzDyCSJCeimGCRd0hXsjpS6G0v7t EMGzxb/BjRWHphLJm0JWF90UY1uDOV+U8wY6WPWzeo05QzKOFkintRlEWJVEdher HVGwL5Sj7QfkN6y8q3lfjcy0f4GODGtFs7na9ZY01vl0vAYU0CrOfwBYkY48Jx2c vG3ke2WxLa6AiOktFKEk6vHoceG/k/+TC5dMtZSUBgZbd+EoB8CK0yQJLsMXjTPW aP15FBeb1DfMojeZxkm/H/T5LQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFO54ODDB EGu41gNTEPB5+pF/7R6rMB8GA1UdIwQYMBaAFAmSXbZ7SrnfYAbnvSvB2O3IzH4Z MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQjdCMi80MDY2NTAwODQx NkYxMUVBQjVDN0NBNjVDNEY5QUUwMi9DWkpkdG50S3VkOWdCdWU5SzhIWTdjak1m aGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NaSmR0bnRLdWQ5Z0J1ZTlLOEhZN2NqTWZoay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz QjdCMi80MDY2NTAwODQxNkYxMUVBQjVDN0NBNjVDNEY5QUUwMi9DWkpkdG50S3Vk OWdCdWU5SzhIWTdjak1maGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCBVaLpsmw+wrsDgRwV5AHB32Oup6jNh8frKjYMezsiisqda6msv/GD ppjPjJphyslyLPmxIw4lPD7KK3CSZF2DzK9Jk/aRffuCNmEnlUP7vn1CCl73MzrQ QHio1iu7TDPRaiv7c4QgAF9BrV+d55LjR/Cd9Xw/D/9lOAEQiRCQZyBfUPF4DeBn 4OGHdsx2HiFD9DdWqy8DGtKDSX7jc/MEW5qec82DVvtwJeiKlZZD7R1VKuG9RTRr Q0jND81+PMyjBvhxzosoHIu5eF+HOaEf7UX3jCu0tBrSkfGa/W9qqIDqhmyS9kn9 E2AqASL2ailSicZVmLBfwmGf31Gihl19 -----END CERTIFICATE-----Generated at Fri Nov 22 22:14:24 2024 by rpki-client on console-ams.rpki-client.org