$ rpki-client -vvf rpki.apnic.net/member_repository/A914E488/F88698CA240511EDB987B823C4F9AE02/kDo4Q2eaCxBdykhcPWSPPREnL7c.mft File: kDo4Q2eaCxBdykhcPWSPPREnL7c.mft (raw, json) Hash identifier: xr8MFZBvsSnah7bNyRf9tMWxV6/8moMRR7I+HTmsWGk= Subject key identifier: 48:A0:28:A3:D2:EA:BF:79:AD:B4:76:63:37:30:22:49:3E:CB:54:38 Authority key identifier: 90:3A:38:43:67:9A:0B:10:5D:CA:48:5C:3D:64:8F:3D:11:27:2F:B7 Certificate issuer: /CN=A914E488/serialNumber=903A3843679A0B105DCA485C3D648F3D11272FB7 Certificate serial: 01E1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kDo4Q2eaCxBdykhcPWSPPREnL7c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914E488/F88698CA240511EDB987B823C4F9AE02/kDo4Q2eaCxBdykhcPWSPPREnL7c.mft Manifest number: 01DE Signing time: Sat 23 Nov 2024 01:41:32 +0000 Manifest this update: Sat 23 Nov 2024 01:41:32 +0000 Manifest next update: Sat 30 Nov 2024 01:41:32 +0000 Files and hashes: 1: kDo4Q2eaCxBdykhcPWSPPREnL7c.crl (hash: VPBrGeGVa/C9t2NrV1nSsEDkhET+DbtM7RwNe/vyiHE=) 2: 606EB6AE240911EDBFA59C27C4F9AE02.roa (hash: 0UV0yRwSr/VzYmy257JD3ubhqkS2cDn4vJ8Zt4cfw48=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914E488/F88698CA240511EDB987B823C4F9AE02/kDo4Q2eaCxBdykhcPWSPPREnL7c.crl rsync://rpki.apnic.net/member_repository/A914E488/F88698CA240511EDB987B823C4F9AE02/kDo4Q2eaCxBdykhcPWSPPREnL7c.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kDo4Q2eaCxBdykhcPWSPPREnL7c.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 481 (0x1e1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914E488/serialNumber=903A3843679A0B105DCA485C3D648F3D11272FB7 Validity Not Before: Nov 23 01:41:32 2024 GMT Not After : Nov 30 01:41:32 2024 GMT Subject: CN=674132cc-cb5e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:8d:82:5d:87:d2:fa:29:9b:3c:0a:22:eb:63: b5:47:c8:8b:5b:f0:7b:4d:e4:95:bb:ce:e3:35:01: 60:c5:e1:87:29:33:19:cb:10:8f:f9:dc:61:a5:c0: 4e:d7:77:14:74:31:95:33:a3:cf:c2:49:44:f0:b1: b5:60:bf:b1:c2:8e:e2:56:0f:27:48:46:ca:88:1d: 40:8f:2b:c3:41:30:c4:00:17:d5:bf:d6:31:52:77: e3:e1:52:6e:31:09:89:ad:ac:6a:f7:aa:8c:84:e5: d5:45:f9:db:d9:9e:b4:4a:56:74:6c:e2:1d:da:15: 2a:49:fc:12:a3:c1:bd:f6:a7:ee:3c:8a:a5:da:ae: 57:91:84:a3:ae:86:a5:f7:e6:b4:4b:a4:8f:aa:d2: 25:f7:17:70:c7:b9:28:26:9f:4a:0b:99:44:d7:8e: aa:ff:87:96:4e:bd:80:a4:fc:86:8f:d3:3f:a0:5e: a4:c4:78:03:c5:37:60:e8:9a:83:77:0d:e4:6b:cf: c3:36:ae:6d:ae:b9:d9:c1:a6:5c:c6:15:dd:cd:31: 25:75:54:76:fd:fc:71:db:91:05:ab:d4:3c:e5:7e: 3d:79:71:27:ca:f5:b7:26:ea:f3:f5:ae:6a:7e:ff: 21:79:87:d8:53:b0:67:3e:5d:e0:e5:59:3b:f9:25: 97:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:A0:28:A3:D2:EA:BF:79:AD:B4:76:63:37:30:22:49:3E:CB:54:38 X509v3 Authority Key Identifier: keyid:90:3A:38:43:67:9A:0B:10:5D:CA:48:5C:3D:64:8F:3D:11:27:2F:B7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914E488/F88698CA240511EDB987B823C4F9AE02/kDo4Q2eaCxBdykhcPWSPPREnL7c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kDo4Q2eaCxBdykhcPWSPPREnL7c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914E488/F88698CA240511EDB987B823C4F9AE02/kDo4Q2eaCxBdykhcPWSPPREnL7c.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a8:05:05:76:5c:db:e6:94:26:bf:aa:c4:a4:b7:19:a5:4c:36: 99:d1:41:5a:10:0c:4d:29:5a:59:3c:ce:7f:aa:3e:94:fa:ca: df:f6:62:58:5a:1d:03:8f:07:eb:d3:30:33:8d:cb:62:4b:3d: 35:c1:6a:d1:e9:6a:9d:55:37:ef:6c:13:ac:f6:2a:67:20:2b: 7b:42:dc:03:56:b3:26:90:68:92:f8:e6:c6:7b:3c:9e:f1:9a: c9:4e:db:52:13:8b:14:03:6a:8e:93:8c:e9:53:5a:25:4f:05: 28:59:3a:51:85:b7:a8:41:29:d5:d8:f5:4c:1d:4c:99:88:5c: 3a:a3:a7:51:dd:96:d7:c4:64:4a:f4:e6:52:7e:e3:60:3f:e7: 27:ce:2c:83:1a:fa:09:c0:c6:31:3b:48:9c:e1:33:31:c0:34: 43:a0:b7:75:36:94:2e:c8:72:6b:a3:2f:68:2b:6b:8b:a5:72: ef:8c:41:c7:e7:e3:ea:fa:e7:a8:35:85:9e:49:e8:b8:db:5b: 80:d1:1c:fc:49:fd:96:70:5e:ee:61:86:17:71:b7:fb:6a:89: e6:fe:c9:14:98:9b:8b:26:86:b5:2c:ee:ee:a5:fc:93:52:1b: cb:c3:7e:11:1e:fc:2f:39:37:24:e0:bf:4b:cd:c4:50:2a:19: b4:76:5e:0c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAeEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEU0ODgxMTAvBgNVBAUTKDkwM0EzODQzNjc5QTBCMTA1RENBNDg1QzNENjQ4RjNE MTEyNzJGQjcwHhcNMjQxMTIzMDE0MTMyWhcNMjQxMTMwMDE0MTMyWjAYMRYwFAYD VQQDEw02NzQxMzJjYy1jYjVlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5o2CXYfS+imbPAoi62O1R8iLW/B7TeSVu87jNQFgxeGHKTMZyxCP+dxhpcBO 13cUdDGVM6PPwklE8LG1YL+xwo7iVg8nSEbKiB1AjyvDQTDEABfVv9YxUnfj4VJu MQmJraxq96qMhOXVRfnb2Z60SlZ0bOId2hUqSfwSo8G99qfuPIql2q5XkYSjroal 9+a0S6SPqtIl9xdwx7koJp9KC5lE146q/4eWTr2ApPyGj9M/oF6kxHgDxTdg6JqD dw3ka8/DNq5trrnZwaZcxhXdzTEldVR2/fxx25EFq9Q85X49eXEnyvW3Jurz9a5q fv8heYfYU7BnPl3g5Vk7+SWXEQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEigKKPS 6r95rbR2YzcwIkk+y1Q4MB8GA1UdIwQYMBaAFJA6OENnmgsQXcpIXD1kjz0RJy+3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RTQ4OC9GODg2OThDQTI0 MDUxMUVEQjk4N0I4MjNDNEY5QUUwMi9rRG80UTJlYUN4QmR5a2hjUFdTUFBSRW5M N2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tEbzRRMmVhQ3hCZHlraGNQV1NQUFJFbkw3Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RTQ4OC9GODg2OThDQTI0MDUxMUVEQjk4N0I4MjNDNEY5QUUwMi9rRG80UTJlYUN4 QmR5a2hjUFdTUFBSRW5MN2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCoBQV2XNvmlCa/qsSktxmlTDaZ0UFaEAxNKVpZPM5/qj6U+srf9mJY Wh0Djwfr0zAzjctiSz01wWrR6WqdVTfvbBOs9ipnICt7QtwDVrMmkGiS+ObGezye 8ZrJTttSE4sUA2qOk4zpU1olTwUoWTpRhbeoQSnV2PVMHUyZiFw6o6dR3ZbXxGRK 9OZSfuNgP+cnziyDGvoJwMYxO0ic4TMxwDRDoLd1NpQuyHJroy9oK2uLpXLvjEHH 5+Pq+ueoNYWeSei421uA0Rz8Sf2WcF7uYYYXcbf7aonm/skUmJuLJoa1LO7upfyT UhvLw34RHvwvOTck4L9LzcRQKhm0dl4M -----END CERTIFICATE-----Generated at Sat Nov 23 02:33:36 2024 by rpki-client on console-fra.rpki-client.org