$ rpki-client -vvf rpki.apnic.net/member_repository/A914D0E3/AA9859F88C7E11EF8E92E71BC4F9AE02/4OgIMGWV_mjV8oGpYq9t9R6G-TI.mft File: 4OgIMGWV_mjV8oGpYq9t9R6G-TI.mft (raw, json) Hash identifier: VxcEHGCNDEpQM2wZ+FlYXYS8YKQzDLeHk2J4TBsYaL8= Subject key identifier: B1:95:96:5E:DA:32:15:75:7F:75:8C:9B:A0:D3:D0:CA:07:88:6E:AA Authority key identifier: E0:E8:08:30:65:95:FE:68:D5:F2:81:A9:62:AF:6D:F5:1E:86:F9:32 Certificate issuer: /CN=A914D0E3/serialNumber=E0E808306595FE68D5F281A962AF6DF51E86F932 Certificate serial: 16 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/4OgIMGWV_mjV8oGpYq9t9R6G-TI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914D0E3/AA9859F88C7E11EF8E92E71BC4F9AE02/4OgIMGWV_mjV8oGpYq9t9R6G-TI.mft Manifest number: 15 Signing time: Thu 21 Nov 2024 06:04:52 +0000 Manifest this update: Thu 21 Nov 2024 06:04:52 +0000 Manifest next update: Thu 28 Nov 2024 06:04:52 +0000 Files and hashes: 1: 4OgIMGWV_mjV8oGpYq9t9R6G-TI.crl (hash: 8+Lx2e03WHfT3Hq+2hY5czO+mLTy73hsXVlKy/mrLMI=) 2: 793E79A68D1811EF92E90C51C4F9AE02.roa (hash: zVqTt6tzc+Il4GxP87PklggXFLaDGzjtaeUtoZhSM8Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914D0E3/AA9859F88C7E11EF8E92E71BC4F9AE02/4OgIMGWV_mjV8oGpYq9t9R6G-TI.crl rsync://rpki.apnic.net/member_repository/A914D0E3/AA9859F88C7E11EF8E92E71BC4F9AE02/4OgIMGWV_mjV8oGpYq9t9R6G-TI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/4OgIMGWV_mjV8oGpYq9t9R6G-TI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 02:50:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 22 (0x16) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914D0E3/serialNumber=E0E808306595FE68D5F281A962AF6DF51E86F932 Validity Not Before: Nov 21 06:04:52 2024 GMT Not After : Nov 28 06:04:52 2024 GMT Subject: CN=673ecd84-4f31 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:5f:20:62:98:86:79:99:5c:ca:ac:e7:9e:34: 61:ad:73:cc:9c:06:37:45:e1:74:3c:80:0e:b0:ae: fb:7b:ea:bb:0a:21:53:bb:7f:06:0f:99:04:f9:eb: 98:db:5c:84:37:b3:00:a7:26:40:c8:e1:d6:76:7c: 9f:5a:20:24:dd:88:a8:90:d3:c3:3d:33:ce:1b:56: ef:7e:00:43:f9:3a:f1:d8:76:80:19:68:e5:69:ed: 31:b5:df:4b:d2:0c:5b:96:66:61:0e:39:6b:95:90: 80:35:80:6e:6b:00:64:ba:1f:d6:a5:9e:6f:06:54: ff:4f:d8:d7:bd:7f:ef:6c:8d:af:c7:92:9f:68:d7: 2e:40:a2:16:67:ae:70:b7:3c:c2:52:e9:79:c6:34: 87:97:37:7e:61:d9:a6:37:7a:71:a6:6c:ac:ce:2a: 76:09:b7:95:dc:04:76:32:ef:e3:5e:73:54:ce:3e: 42:24:92:2d:3f:39:92:aa:cc:ee:8f:28:f7:55:d4: 72:64:a2:7b:9d:70:62:9f:63:cb:0e:62:2f:2d:5f: ab:aa:a3:0e:b6:1a:9e:88:b9:e9:2b:1e:3e:ad:6a: 34:d0:0e:d2:ba:1d:61:4f:27:99:02:f5:28:ed:d9: 3e:71:8e:aa:e0:ed:e0:bd:51:38:dc:a6:14:8f:e5: a7:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:95:96:5E:DA:32:15:75:7F:75:8C:9B:A0:D3:D0:CA:07:88:6E:AA X509v3 Authority Key Identifier: keyid:E0:E8:08:30:65:95:FE:68:D5:F2:81:A9:62:AF:6D:F5:1E:86:F9:32 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914D0E3/AA9859F88C7E11EF8E92E71BC4F9AE02/4OgIMGWV_mjV8oGpYq9t9R6G-TI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/4OgIMGWV_mjV8oGpYq9t9R6G-TI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914D0E3/AA9859F88C7E11EF8E92E71BC4F9AE02/4OgIMGWV_mjV8oGpYq9t9R6G-TI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2e:3f:e4:48:c3:42:f1:de:ab:82:35:49:1c:6c:ca:a9:82:2e: 9c:3b:e1:11:4a:53:0e:e5:36:de:d4:bb:36:3f:7d:2a:56:bc: 58:8e:af:4e:31:ea:b4:08:b6:8a:23:7c:8f:4f:1f:8b:c1:94: da:99:9b:c2:e1:f8:a1:75:c3:ee:02:17:21:b1:23:7c:35:90: eb:6d:84:89:dd:93:13:f8:30:20:3c:70:0b:d5:a1:7e:34:3c: 0d:1e:79:76:17:d8:d0:30:06:67:5f:67:53:f8:fb:19:5a:5e: 1c:b6:7b:49:f6:7b:6c:a5:0d:95:b8:90:ba:17:32:a8:97:ad: 6b:f3:3c:11:2b:4c:b8:8d:e0:d0:3e:a0:ba:21:35:ed:4d:91: d0:e7:eb:6b:f1:e6:8d:25:c5:4b:c5:f4:c3:eb:15:85:5b:eb: 7a:35:47:e0:ae:1c:e6:78:b8:ed:a4:b2:23:96:15:52:0e:77: cc:0e:fc:0c:9c:cc:3b:6e:5a:a1:72:e8:7b:4d:e7:33:c3:52: 37:6a:50:1e:97:cc:23:4f:75:5b:5e:fa:d4:bc:64:ec:e8:9b: c6:3f:e2:9a:84:ea:48:0d:d6:38:0e:f2:8d:67:e6:d9:0f:49: a8:2d:88:d3:e9:03:d1:66:90:7f:d2:67:7d:2b:77:6e:d7:54: 79:94:c4:97 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBFjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0 RDBFMzExMC8GA1UEBRMoRTBFODA4MzA2NTk1RkU2OEQ1RjI4MUE5NjJBRjZERjUx RTg2RjkzMjAeFw0yNDExMjEwNjA0NTJaFw0yNDExMjgwNjA0NTJaMBgxFjAUBgNV BAMTDTY3M2VjZDg0LTRmMzEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDqXyBimIZ5mVzKrOeeNGGtc8ycBjdF4XQ8gA6wrvt76rsKIVO7fwYPmQT565jb XIQ3swCnJkDI4dZ2fJ9aICTdiKiQ08M9M84bVu9+AEP5OvHYdoAZaOVp7TG130vS DFuWZmEOOWuVkIA1gG5rAGS6H9alnm8GVP9P2Ne9f+9sja/Hkp9o1y5AohZnrnC3 PMJS6XnGNIeXN35h2aY3enGmbKzOKnYJt5XcBHYy7+Nec1TOPkIkki0/OZKqzO6P KPdV1HJkonudcGKfY8sOYi8tX6uqow62Gp6IuekrHj6tajTQDtK6HWFPJ5kC9Sjt 2T5xjqrg7eC9UTjcphSP5acZAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUsZWWXtoy FXV/dYyboNPQygeIbqowHwYDVR0jBBgwFoAU4OgIMGWV/mjV8oGpYq9t9R6G+TIw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTREMEUzL0FBOTg1OUY4OEM3 RTExRUY4RTkyRTcxQkM0RjlBRTAyLzRPZ0lNR1dWX21qVjhvR3BZcTl0OVI2Ry1U SS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvNE9nSU1HV1ZfbWpWOG9HcFlxOXQ5UjZHLVRJLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTRE MEUzL0FBOTg1OUY4OEM3RTExRUY4RTkyRTcxQkM0RjlBRTAyLzRPZ0lNR1dWX21q VjhvR3BZcTl0OVI2Ry1USS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAC4/5EjDQvHeq4I1SRxsyqmCLpw74RFKUw7lNt7UuzY/fSpWvFiOr04x 6rQItoojfI9PH4vBlNqZm8Lh+KF1w+4CFyGxI3w1kOtthIndkxP4MCA8cAvVoX40 PA0eeXYX2NAwBmdfZ1P4+xlaXhy2e0n2e2ylDZW4kLoXMqiXrWvzPBErTLiN4NA+ oLohNe1NkdDn62vx5o0lxUvF9MPrFYVb63o1R+CuHOZ4uO2ksiOWFVIOd8wO/Ayc zDtuWqFy6HtN5zPDUjdqUB6XzCNPdVte+tS8ZOzom8Y/4pqE6kgN1jgO8o1n5tkP SagtiNPpA9FmkH/SZ30rd27XVHmUxJc= -----END CERTIFICATE-----Generated at Thu Nov 21 06:50:15 2024 by rpki-client on console-fra.rpki-client.org