$ rpki-client -vvf rpki.apnic.net/member_repository/A913CB5F/005E59ACC09211EC8044C164C4F9AE02/8CpdEC9_M7JhEbSih0L3ui8empk.mft File: 8CpdEC9_M7JhEbSih0L3ui8empk.mft (raw, json) Hash identifier: WLiKEoxPGAh0Dc8JGxnuBycXToL6Kc2i7JwSuqupIbM= Subject key identifier: E7:91:47:97:F2:91:11:CF:1F:D6:D0:55:00:C4:F4:F3:38:34:37:1C Authority key identifier: F0:2A:5D:10:2F:7F:33:B2:61:11:B4:A2:87:42:F7:BA:2F:1E:9A:99 Certificate issuer: /CN=A913CB5F/serialNumber=F02A5D102F7F33B26111B4A28742F7BA2F1E9A99 Certificate serial: 02E0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8CpdEC9_M7JhEbSih0L3ui8empk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913CB5F/005E59ACC09211EC8044C164C4F9AE02/8CpdEC9_M7JhEbSih0L3ui8empk.mft Manifest number: 02DC Signing time: Sat 23 Nov 2024 00:54:07 +0000 Manifest this update: Sat 23 Nov 2024 00:54:07 +0000 Manifest next update: Sat 30 Nov 2024 00:54:07 +0000 Files and hashes: 1: 8CpdEC9_M7JhEbSih0L3ui8empk.crl (hash: dQ+zcEbFB6/eR+b31O23j4sc1C2AKW3bec2FzF7U83U=) 2: 688AF35CC09511EC8CFFDB10C4F9AE02.roa (hash: 1WkNyyyiFt1FW+4vq2oaXotjB9v8sAKNGelCyY+t8Uc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913CB5F/005E59ACC09211EC8044C164C4F9AE02/8CpdEC9_M7JhEbSih0L3ui8empk.crl rsync://rpki.apnic.net/member_repository/A913CB5F/005E59ACC09211EC8044C164C4F9AE02/8CpdEC9_M7JhEbSih0L3ui8empk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8CpdEC9_M7JhEbSih0L3ui8empk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 00:54:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 736 (0x2e0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913CB5F/serialNumber=F02A5D102F7F33B26111B4A28742F7BA2F1E9A99 Validity Not Before: Nov 23 00:54:07 2024 GMT Not After : Nov 30 00:54:07 2024 GMT Subject: CN=674127af-efaf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:73:82:e3:a2:60:59:dd:33:5e:80:2a:e4:d2: 9b:69:23:91:53:78:7d:76:d5:12:d3:f5:c7:85:93: 47:fc:df:2f:2a:84:32:27:2d:92:8b:d4:4c:22:c6: c3:7c:10:52:13:68:4a:78:ba:92:4e:38:e1:b6:67: 5d:46:f7:b2:68:cd:09:59:db:2e:75:5b:b5:03:9c: 41:32:b2:46:75:a6:e1:14:8e:fc:b8:e9:f4:82:b2: 45:19:1e:e9:ae:55:7e:96:65:6c:e5:b2:cb:85:dc: aa:64:86:09:93:d1:df:3e:10:29:38:d3:ba:28:16: 44:6f:18:18:2b:20:c2:d1:44:51:36:f0:b2:e5:b2: 00:54:88:a7:c3:3d:5e:12:72:03:42:93:2c:97:4a: 6b:7c:d2:59:c4:27:99:64:ed:7f:91:4d:b4:23:62: 1a:92:12:e3:81:bd:9f:f9:77:3c:e5:22:76:4a:e0: b9:24:ae:22:1e:34:2e:65:6c:c4:92:d3:e1:db:fb: 12:a9:48:fa:85:7b:e6:d3:87:19:c1:c9:72:38:64: c2:27:67:3f:9b:d4:86:66:87:11:7c:9a:62:d0:94: 1c:9c:e4:41:ca:1d:61:de:51:f8:65:67:04:c5:ff: ef:48:fb:f8:f6:c1:da:e4:22:76:63:01:56:19:fb: 98:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:91:47:97:F2:91:11:CF:1F:D6:D0:55:00:C4:F4:F3:38:34:37:1C X509v3 Authority Key Identifier: keyid:F0:2A:5D:10:2F:7F:33:B2:61:11:B4:A2:87:42:F7:BA:2F:1E:9A:99 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913CB5F/005E59ACC09211EC8044C164C4F9AE02/8CpdEC9_M7JhEbSih0L3ui8empk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8CpdEC9_M7JhEbSih0L3ui8empk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913CB5F/005E59ACC09211EC8044C164C4F9AE02/8CpdEC9_M7JhEbSih0L3ui8empk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 43:a2:b0:26:53:5a:3c:c9:98:db:03:31:86:d5:df:70:4a:bc: ca:e6:cf:e8:37:10:79:6a:52:f1:17:5f:5a:d4:9b:b8:3f:47: 18:ef:5d:cc:45:76:36:b4:ce:f8:60:9c:65:01:be:bf:93:08: 0c:d4:45:dd:a7:ec:0d:39:d4:af:62:d3:37:22:50:2f:d2:c6: 25:01:67:0b:e3:a0:0a:70:62:ae:3e:93:1e:aa:92:d0:80:ec: c8:aa:c5:4f:34:2c:ef:7a:f0:ab:f4:55:95:6a:e0:33:10:1f: 68:9c:de:a5:24:85:89:82:ba:10:f9:75:24:40:19:21:ce:84: 07:2c:df:25:fa:5f:b1:66:5e:04:3f:f9:69:59:8f:ba:32:e0: 9a:dc:3c:ed:a6:ed:8f:7d:dd:43:34:a3:32:12:9b:c6:11:d2: 73:05:7d:74:b4:1d:1c:a4:fb:16:a1:ca:b4:bd:94:e7:4a:bf: 93:90:c5:f9:e4:40:bd:85:4b:3f:34:4f:7b:db:31:1b:a0:46: 65:cb:e2:d9:18:d0:23:63:51:9e:b5:85:69:f4:89:36:53:c1: 77:fd:e0:fa:f4:b5:d3:4a:e8:3f:ae:e9:4c:df:75:f6:c8:72: 11:b8:ac:d4:6d:a7:61:6d:10:d4:76:d6:8e:83:b7:f6:22:04: 14:fd:39:b2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAuAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0NCNUYxMTAvBgNVBAUTKEYwMkE1RDEwMkY3RjMzQjI2MTExQjRBMjg3NDJGN0JB MkYxRTlBOTkwHhcNMjQxMTIzMDA1NDA3WhcNMjQxMTMwMDA1NDA3WjAYMRYwFAYD VQQDEw02NzQxMjdhZi1lZmFmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2HOC46JgWd0zXoAq5NKbaSORU3h9dtUS0/XHhZNH/N8vKoQyJy2Si9RMIsbD fBBSE2hKeLqSTjjhtmddRveyaM0JWdsudVu1A5xBMrJGdabhFI78uOn0grJFGR7p rlV+lmVs5bLLhdyqZIYJk9HfPhApONO6KBZEbxgYKyDC0URRNvCy5bIAVIinwz1e EnIDQpMsl0prfNJZxCeZZO1/kU20I2IakhLjgb2f+Xc85SJ2SuC5JK4iHjQuZWzE ktPh2/sSqUj6hXvm04cZwclyOGTCJ2c/m9SGZocRfJpi0JQcnORByh1h3lH4ZWcE xf/vSPv49sHa5CJ2YwFWGfuY4QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOeRR5fy kRHPH9bQVQDE9PM4NDccMB8GA1UdIwQYMBaAFPAqXRAvfzOyYRG0oodC97ovHpqZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQ0I1Ri8wMDVFNTlBQ0Mw OTIxMUVDODA0NEMxNjRDNEY5QUUwMi84Q3BkRUM5X003SmhFYlNpaDBMM3VpOGVt cGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzhDcGRFQzlfTTdKaEViU2loMEwzdWk4ZW1way5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz Q0I1Ri8wMDVFNTlBQ0MwOTIxMUVDODA0NEMxNjRDNEY5QUUwMi84Q3BkRUM5X003 SmhFYlNpaDBMM3VpOGVtcGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBDorAmU1o8yZjbAzGG1d9wSrzK5s/oNxB5alLxF19a1Ju4P0cY713M RXY2tM74YJxlAb6/kwgM1EXdp+wNOdSvYtM3IlAv0sYlAWcL46AKcGKuPpMeqpLQ gOzIqsVPNCzvevCr9FWVauAzEB9onN6lJIWJgroQ+XUkQBkhzoQHLN8l+l+xZl4E P/lpWY+6MuCa3Dztpu2Pfd1DNKMyEpvGEdJzBX10tB0cpPsWocq0vZTnSr+TkMX5 5EC9hUs/NE972zEboEZly+LZGNAjY1GetYVp9Ik2U8F3/eD69LXTSug/rulM33X2 yHIRuKzUbadhbRDUdtaOg7f2IgQU/Tmy -----END CERTIFICATE-----Generated at Sat Nov 23 03:58:37 2024 by rpki-client on console-ams.rpki-client.org