$ rpki-client -vvf rpki.apnic.net/member_repository/A9153CE9/0AB1D396F51511EB9EFE0750C4F9AE02/4JlhFVCKOtWZFdurzLaW26C0zHI.mft File: 4JlhFVCKOtWZFdurzLaW26C0zHI.mft (raw, json) Hash identifier: AnhyzuP/i6JIC+mCelNl2LZstee44TDnaBK0tquI5kw= Subject key identifier: F8:B6:DA:2B:56:08:F3:2C:C3:B1:28:D9:62:68:1B:BF:C1:28:C2:9D Authority key identifier: E0:99:61:15:50:8A:3A:D5:99:15:DB:AB:CC:B6:96:DB:A0:B4:CC:72 Certificate issuer: /CN=A9153CE9/serialNumber=E0996115508A3AD59915DBABCCB696DBA0B4CC72 Certificate serial: 0506 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4JlhFVCKOtWZFdurzLaW26C0zHI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9153CE9/0AB1D396F51511EB9EFE0750C4F9AE02/4JlhFVCKOtWZFdurzLaW26C0zHI.mft Manifest number: 04ED Signing time: Wed 20 Nov 2024 23:18:18 +0000 Manifest this update: Wed 20 Nov 2024 23:18:18 +0000 Manifest next update: Wed 27 Nov 2024 23:18:18 +0000 Files and hashes: 1: 4JlhFVCKOtWZFdurzLaW26C0zHI.crl (hash: 7y/sSS/OHP4VXc6O6LOHvDKGKh8Jx4zeGjgNZb5cKPY=) 2: 03C7AA80F01111ED9C345840C4F9AE02.roa (hash: u79Hnx6TKughx759y7oB0XTzh+SXCGts+3SmY7J4BHA=) 3: 04E8D402F01111ED9C345840C4F9AE02.roa (hash: CjdsXTUy+isb7EE/vMnKhUnuE4GByGKOizEWWpwP7V4=) 4: F650791EF01411ED9210D060C4F9AE02.roa (hash: uGEX/6sdmRDn3m6JrmG5MWev3SeBdI1njDXZ5dmhNaU=) 5: CB6ED7B2645011EE9EAE117BC4F9AE02.roa (hash: KhBxtsrwI7mwIGHdAYV+BbQ+uvV0n4p4eR3lvYMPW+c=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9153CE9/0AB1D396F51511EB9EFE0750C4F9AE02/4JlhFVCKOtWZFdurzLaW26C0zHI.crl rsync://rpki.apnic.net/member_repository/A9153CE9/0AB1D396F51511EB9EFE0750C4F9AE02/4JlhFVCKOtWZFdurzLaW26C0zHI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4JlhFVCKOtWZFdurzLaW26C0zHI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:33:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1286 (0x506) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9153CE9/serialNumber=E0996115508A3AD59915DBABCCB696DBA0B4CC72 Validity Not Before: Nov 20 23:18:18 2024 GMT Not After : Nov 27 23:18:18 2024 GMT Subject: CN=673e6e3a-04aa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:4a:98:41:1e:3c:77:32:36:6c:66:2c:c4:30: 14:0b:4b:c4:3d:2f:e9:98:a4:c6:63:0e:02:76:0a: a6:94:37:e2:18:c1:c0:a7:ec:f3:2a:a8:2a:38:b8: 6d:23:35:28:ac:1f:9f:fe:45:0c:a3:3c:d0:24:fe: 78:2a:76:a3:ac:a3:b4:40:6b:2b:aa:de:97:fb:78: bd:a3:fa:b8:a0:da:c1:f4:ea:7a:98:b3:cf:84:9b: 41:a0:fc:62:2c:c6:4f:c0:1c:d6:ef:ef:75:f3:97: 8c:77:49:70:7f:c9:fd:67:ca:9e:c8:01:73:fc:1d: 01:15:4b:0a:07:4b:b9:50:ad:7c:a0:b9:4f:3d:ad: 7e:b4:dd:d9:b4:2f:c2:ba:66:aa:ae:32:b5:a0:50: a1:6d:28:8a:5a:d8:0d:5e:5d:e6:16:e1:0d:db:07: 7a:b6:5a:57:6a:e1:f7:22:d5:c1:d0:3a:97:7d:ba: ff:19:a4:93:10:49:a8:f9:8b:d3:8a:3a:be:b5:e0: 2c:1d:88:6c:29:28:75:9e:cc:b8:9f:c5:c3:70:2a: 6c:6a:1c:08:91:60:54:e4:00:c1:66:74:40:18:bc: 12:63:da:ba:7c:4b:ba:f2:74:5c:dd:b6:6e:f4:12: 7e:f6:71:08:e3:0b:25:35:65:47:5c:a5:14:7f:84: dd:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:B6:DA:2B:56:08:F3:2C:C3:B1:28:D9:62:68:1B:BF:C1:28:C2:9D X509v3 Authority Key Identifier: keyid:E0:99:61:15:50:8A:3A:D5:99:15:DB:AB:CC:B6:96:DB:A0:B4:CC:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9153CE9/0AB1D396F51511EB9EFE0750C4F9AE02/4JlhFVCKOtWZFdurzLaW26C0zHI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4JlhFVCKOtWZFdurzLaW26C0zHI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9153CE9/0AB1D396F51511EB9EFE0750C4F9AE02/4JlhFVCKOtWZFdurzLaW26C0zHI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 98:c1:46:a2:71:c0:ee:c5:1d:26:5e:7e:84:63:52:82:53:88: 97:24:df:80:fa:65:83:5f:f6:ad:cc:a0:f6:46:63:bf:4a:00: 4a:19:53:ab:04:b4:9c:7a:8f:aa:f2:3b:97:f0:3e:6a:39:dc: 8f:bb:c8:2a:3a:de:70:22:ec:73:5c:ff:79:36:00:44:4f:e7: f0:c4:5a:01:d1:e6:b8:6b:9a:a1:d3:8b:69:a6:01:2e:f6:d7: 3c:90:fe:df:da:ca:c7:32:e8:79:cb:0a:3b:11:06:19:0b:c8: 30:6b:1f:c2:a0:23:a4:17:48:1e:61:aa:ac:aa:f1:cf:87:26: bc:e9:14:70:a9:5d:cf:5f:1c:e8:b9:a1:4b:86:88:cc:d8:ee: 63:5f:77:3d:fe:0e:76:6e:9f:ed:91:f0:90:23:8d:c9:32:b0: be:85:f8:43:b1:0b:c0:3d:5c:4c:a0:ba:ee:f3:71:5b:fd:2e: a9:51:7e:d7:be:70:ff:de:81:26:e2:2b:90:8b:58:92:b4:10: 78:7d:b3:f9:68:bb:35:8e:32:d7:5d:ed:37:9e:c1:bf:84:41: af:db:47:30:cf:50:c2:7f:38:03:3b:9d:ad:1c:a0:46:38:2e: 3f:c7:ca:ac:00:9e:fb:7a:c6:f1:94:62:94:a0:65:b7:18:c0: 95:d4:cd:a1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBQYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTNDRTkxMTAvBgNVBAUTKEUwOTk2MTE1NTA4QTNBRDU5OTE1REJBQkNDQjY5NkRC QTBCNENDNzIwHhcNMjQxMTIwMjMxODE4WhcNMjQxMTI3MjMxODE4WjAYMRYwFAYD VQQDEw02NzNlNmUzYS0wNGFhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy0qYQR48dzI2bGYsxDAUC0vEPS/pmKTGYw4CdgqmlDfiGMHAp+zzKqgqOLht IzUorB+f/kUMozzQJP54KnajrKO0QGsrqt6X+3i9o/q4oNrB9Op6mLPPhJtBoPxi LMZPwBzW7+9185eMd0lwf8n9Z8qeyAFz/B0BFUsKB0u5UK18oLlPPa1+tN3ZtC/C umaqrjK1oFChbSiKWtgNXl3mFuEN2wd6tlpXauH3ItXB0DqXfbr/GaSTEEmo+YvT ijq+teAsHYhsKSh1nsy4n8XDcCpsahwIkWBU5ADBZnRAGLwSY9q6fEu68nRc3bZu 9BJ+9nEI4wslNWVHXKUUf4TdoQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPi22itW CPMsw7Eo2WJoG7/BKMKdMB8GA1UdIwQYMBaAFOCZYRVQijrVmRXbq8y2ltugtMxy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1M0NFOS8wQUIxRDM5NkY1 MTUxMUVCOUVGRTA3NTBDNEY5QUUwMi80SmxoRlZDS090V1pGZHVyekxhVzI2QzB6 SEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRKbGhGVkNLT3RXWkZkdXJ6TGFXMjZDMHpISS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 M0NFOS8wQUIxRDM5NkY1MTUxMUVCOUVGRTA3NTBDNEY5QUUwMi80SmxoRlZDS090 V1pGZHVyekxhVzI2QzB6SEkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCYwUaiccDuxR0mXn6EY1KCU4iXJN+A+mWDX/atzKD2RmO/SgBKGVOr BLSceo+q8juX8D5qOdyPu8gqOt5wIuxzXP95NgBET+fwxFoB0ea4a5qh04tppgEu 9tc8kP7f2srHMuh5ywo7EQYZC8gwax/CoCOkF0geYaqsqvHPhya86RRwqV3PXxzo uaFLhojM2O5jX3c9/g52bp/tkfCQI43JMrC+hfhDsQvAPVxMoLru83Fb/S6pUX7X vnD/3oEm4iuQi1iStBB4fbP5aLs1jjLXXe03nsG/hEGv20cwz1DCfzgDO52tHKBG OC4/x8qsAJ77esbxlGKUoGW3GMCV1M2h -----END CERTIFICATE-----Generated at Thu Nov 21 01:25:58 2024 by rpki-client on console-ams.rpki-client.org