$ rpki-client -vvf rpki.apnic.net/member_repository/A9146A72/4F56C01C779D11EEBB49E269C4F9AE02/-1uWlTzNsR6SaDs-tbekV0lLJfA.mft File: -1uWlTzNsR6SaDs-tbekV0lLJfA.mft (raw, json) Hash identifier: C5niVYgsd/GsUT+LsF6EnniXTSUObRGpo4KvIsxr+t4= Subject key identifier: 8B:BD:76:DE:3E:54:61:E3:37:3E:C1:E6:5E:0B:78:13:02:96:73:D4 Authority key identifier: FB:5B:96:95:3C:CD:B1:1E:92:68:3B:3E:B5:B7:A4:57:49:4B:25:F0 Certificate issuer: /CN=A9146A72/serialNumber=FB5B96953CCDB11E92683B3EB5B7A457494B25F0 Certificate serial: CF Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/-1uWlTzNsR6SaDs-tbekV0lLJfA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9146A72/4F56C01C779D11EEBB49E269C4F9AE02/-1uWlTzNsR6SaDs-tbekV0lLJfA.mft Manifest number: CD Signing time: Sun 24 Nov 2024 15:27:12 +0000 Manifest this update: Sun 24 Nov 2024 15:27:11 +0000 Manifest next update: Sun 01 Dec 2024 15:27:11 +0000 Files and hashes: 1: -1uWlTzNsR6SaDs-tbekV0lLJfA.crl (hash: DFFclLUPZQd0uG8QjdqqZDt2twJ8NwySH4+eg7N0E50=) 2: 67B0ACBC8E5011EE95DFC141C4F9AE02.roa (hash: 4RQI+EFj/mJJo3iDsYdl0ustKcpifsqTMWOHIgjxyFk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9146A72/4F56C01C779D11EEBB49E269C4F9AE02/-1uWlTzNsR6SaDs-tbekV0lLJfA.crl rsync://rpki.apnic.net/member_repository/A9146A72/4F56C01C779D11EEBB49E269C4F9AE02/-1uWlTzNsR6SaDs-tbekV0lLJfA.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/-1uWlTzNsR6SaDs-tbekV0lLJfA.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Dec 2024 15:27:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 207 (0xcf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9146A72/serialNumber=FB5B96953CCDB11E92683B3EB5B7A457494B25F0 Validity Not Before: Nov 24 15:27:11 2024 GMT Not After : Dec 1 15:27:11 2024 GMT Subject: CN=674345d0-001e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:4f:d3:c4:fc:45:46:92:cb:7f:6f:66:9e:17: 02:f7:b6:ef:b8:e7:d5:3a:94:a3:a1:b2:93:fa:d8: b3:f7:19:71:62:cd:f6:40:af:a5:ba:5d:e5:e0:4a: 2c:38:2b:f1:96:ad:90:f9:77:aa:78:b4:2a:f2:57: bf:90:db:4c:49:27:04:81:8c:b9:27:f5:3b:42:b4: c5:83:3e:97:bb:2c:3f:1e:1d:e7:67:93:18:0c:e6: be:4a:e7:28:23:39:ad:73:c4:ea:e2:e2:ac:ea:c5: 94:09:71:b5:74:f0:fc:b9:44:ed:01:32:89:67:65: 49:63:38:1b:59:5e:7e:f4:6e:96:83:74:fe:6a:ca: d1:dc:e0:b7:ec:6d:34:22:48:38:85:1f:39:ab:5d: d5:2f:50:73:dc:a9:73:72:49:04:a4:07:74:fd:7e: 45:bf:bb:9e:c5:57:64:a9:09:be:97:70:66:b8:c3: 0d:1d:84:44:f7:06:98:89:e4:61:0f:5c:e9:c6:b8: 13:ba:08:1e:02:bc:22:46:21:bc:b4:bd:b0:67:4c: c1:1c:09:d9:3e:fb:13:a5:83:54:88:ed:b0:17:74: 00:52:9c:ed:e7:0f:40:c6:de:0b:f1:0f:1e:aa:be: cd:19:d8:5d:3c:15:36:d3:32:16:0a:8a:1c:da:9f: 6f:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:BD:76:DE:3E:54:61:E3:37:3E:C1:E6:5E:0B:78:13:02:96:73:D4 X509v3 Authority Key Identifier: keyid:FB:5B:96:95:3C:CD:B1:1E:92:68:3B:3E:B5:B7:A4:57:49:4B:25:F0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9146A72/4F56C01C779D11EEBB49E269C4F9AE02/-1uWlTzNsR6SaDs-tbekV0lLJfA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/-1uWlTzNsR6SaDs-tbekV0lLJfA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9146A72/4F56C01C779D11EEBB49E269C4F9AE02/-1uWlTzNsR6SaDs-tbekV0lLJfA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ad:eb:c8:21:40:1d:5d:4d:66:42:97:2b:1f:64:3a:b0:10:cf: f7:90:a5:5b:7b:6f:0d:d8:98:c1:a9:74:6f:02:8a:86:8e:9f: 30:a7:51:e1:1c:22:1d:54:99:ee:06:12:a4:24:2e:19:6a:a9: 10:7f:20:4b:40:32:ff:3d:13:64:97:fe:53:38:9c:e3:69:93: 6c:07:eb:b3:d6:63:5d:1e:47:1b:88:3a:c3:fb:63:7d:90:b5: d1:d7:22:b7:35:93:93:b2:7b:aa:19:76:9d:e1:01:b3:46:77: a5:ab:e7:70:47:88:72:2d:d8:c2:06:79:a4:27:fc:8d:ab:9b: 6a:89:a3:88:21:bd:ac:e2:d9:72:a9:d2:e1:dc:e3:8a:5a:ab: 95:94:b5:d1:8a:e8:54:60:db:7a:9d:3f:9e:a6:17:7c:d2:58: 86:bb:12:f1:7b:17:a1:7c:3b:96:85:f4:3d:95:63:6d:8f:c4: 66:8d:f9:2c:c9:2c:42:27:be:2d:14:43:ea:c7:72:20:40:cd: c4:a8:d9:5e:0e:cc:2d:b6:4c:86:0b:80:d9:a2:ec:8d:af:16: ea:d6:3b:f9:d2:6a:e9:6d:7c:72:dd:8a:41:0e:b2:91:d9:36: b2:8d:34:15:cb:64:df:9e:10:1b:8e:1d:fa:0e:d5:bd:35:37: 33:0b:6a:14 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAM8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDZBNzIxMTAvBgNVBAUTKEZCNUI5Njk1M0NDREIxMUU5MjY4M0IzRUI1QjdBNDU3 NDk0QjI1RjAwHhcNMjQxMTI0MTUyNzExWhcNMjQxMjAxMTUyNzExWjAYMRYwFAYD VQQDEw02NzQzNDVkMC0wMDFlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt0/TxPxFRpLLf29mnhcC97bvuOfVOpSjobKT+tiz9xlxYs32QK+lul3l4Eos OCvxlq2Q+XeqeLQq8le/kNtMSScEgYy5J/U7QrTFgz6Xuyw/Hh3nZ5MYDOa+Suco Izmtc8Tq4uKs6sWUCXG1dPD8uUTtATKJZ2VJYzgbWV5+9G6Wg3T+asrR3OC37G00 Ikg4hR85q13VL1Bz3KlzckkEpAd0/X5Fv7uexVdkqQm+l3BmuMMNHYRE9waYieRh D1zpxrgTuggeArwiRiG8tL2wZ0zBHAnZPvsTpYNUiO2wF3QAUpzt5w9Axt4L8Q8e qr7NGdhdPBU20zIWCooc2p9vjwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIu9dt4+ VGHjNz7B5l4LeBMClnPUMB8GA1UdIwQYMBaAFPtblpU8zbEekmg7PrW3pFdJSyXw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NkE3Mi80RjU2QzAxQzc3 OUQxMUVFQkI0OUUyNjlDNEY5QUUwMi8tMXVXbFR6TnNSNlNhRHMtdGJla1YwbExK ZkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLy0xdVdsVHpOc1I2U2FEcy10YmVrVjBsTEpmQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NkE3Mi80RjU2QzAxQzc3OUQxMUVFQkI0OUUyNjlDNEY5QUUwMi8tMXVXbFR6TnNS NlNhRHMtdGJla1YwbExKZkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCt68ghQB1dTWZClysfZDqwEM/3kKVbe28N2JjBqXRvAoqGjp8wp1Hh HCIdVJnuBhKkJC4ZaqkQfyBLQDL/PRNkl/5TOJzjaZNsB+uz1mNdHkcbiDrD+2N9 kLXR1yK3NZOTsnuqGXad4QGzRnelq+dwR4hyLdjCBnmkJ/yNq5tqiaOIIb2s4tly qdLh3OOKWquVlLXRiuhUYNt6nT+ephd80liGuxLxexehfDuWhfQ9lWNtj8Rmjfks ySxCJ74tFEPqx3IgQM3EqNleDswttkyGC4DZouyNrxbq1jv50mrpbXxy3YpBDrKR 2TayjTQVy2TfnhAbjh36DtW9NTczC2oU -----END CERTIFICATE-----Generated at Sun Nov 24 17:20:01 2024 by rpki-client on console-fra.rpki-client.org