$ rpki-client -vvf rpki.apnic.net/member_repository/A9154961/FEBBFA801BE211EDAF17A558C4F9AE02/M7DVaJUEg2wR6ezdDRGcBY0_dgs.mft File: M7DVaJUEg2wR6ezdDRGcBY0_dgs.mft (raw, json) Hash identifier: qKAK6KWnnSjOHN+mfjRci+5DIURgj/GwGoVPoJ9rFMo= Subject key identifier: 75:D3:D6:D9:47:01:B2:E8:BE:17:85:FE:B0:C6:78:E0:63:EA:DF:9D Authority key identifier: 33:B0:D5:68:95:04:83:6C:11:E9:EC:DD:0D:11:9C:05:8D:3F:76:0B Certificate issuer: /CN=A9154961/serialNumber=33B0D5689504836C11E9ECDD0D119C058D3F760B Certificate serial: 01FB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/M7DVaJUEg2wR6ezdDRGcBY0_dgs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9154961/FEBBFA801BE211EDAF17A558C4F9AE02/M7DVaJUEg2wR6ezdDRGcBY0_dgs.mft Manifest number: 01F5 Signing time: Sat 23 Nov 2024 01:39:17 +0000 Manifest this update: Sat 23 Nov 2024 01:39:16 +0000 Manifest next update: Sat 30 Nov 2024 01:39:16 +0000 Files and hashes: 1: M7DVaJUEg2wR6ezdDRGcBY0_dgs.crl (hash: +PBHOXP0ralqAwuhgrsuvIh+M8pn/HlSWwh0YIzwIrQ=) 2: 7359F5C43A4A11ED9B8FF35AC4F9AE02.roa (hash: RW7mrI/X8sf61J1ueh+btyO6BZUeqCysdCPEaUN7lpY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9154961/FEBBFA801BE211EDAF17A558C4F9AE02/M7DVaJUEg2wR6ezdDRGcBY0_dgs.crl rsync://rpki.apnic.net/member_repository/A9154961/FEBBFA801BE211EDAF17A558C4F9AE02/M7DVaJUEg2wR6ezdDRGcBY0_dgs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/M7DVaJUEg2wR6ezdDRGcBY0_dgs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 01:39:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 507 (0x1fb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9154961/serialNumber=33B0D5689504836C11E9ECDD0D119C058D3F760B Validity Not Before: Nov 23 01:39:16 2024 GMT Not After : Nov 30 01:39:16 2024 GMT Subject: CN=67413244-c98c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:43:83:56:38:c1:2d:f0:7c:76:89:fd:e2:3a: 76:10:80:e5:dd:9c:c8:77:fc:17:1d:45:93:c0:90: 2a:2e:9e:a2:31:85:48:4b:18:da:f4:ab:c5:bb:5d: b5:c9:fd:a7:31:11:70:ec:bc:9e:e7:1f:c5:18:e8: 7b:52:6b:a1:69:6f:3f:1b:bb:8a:74:43:93:54:54: 84:99:b2:0b:d6:41:ad:c3:cb:9a:48:43:1b:27:13: 62:75:0e:4a:a0:9a:55:f6:46:91:70:16:e8:bd:e5: 57:48:68:6c:65:e4:f6:ab:8f:4f:59:84:5a:a3:a5: 31:f9:50:50:63:2a:89:fb:6f:19:a7:e6:0a:70:5a: a6:98:e0:85:0c:9e:c7:05:70:ac:46:75:83:f0:e9: 13:f8:93:b9:8e:74:e2:77:3f:0d:56:bc:ca:f1:44: 9d:14:69:c9:5e:67:1c:16:8d:6a:6b:f0:31:bf:d3: 6d:a0:2e:17:42:19:5f:7f:be:74:81:b8:72:b6:61: 6b:b7:7b:7d:ab:11:30:0a:81:f3:45:8e:ef:c0:8c: 7e:bc:2e:38:69:f9:b2:ab:c6:2d:4e:9a:66:58:b2: dd:e2:f4:5b:01:b7:50:39:20:b5:bb:cd:63:a0:ea: 29:98:0e:67:8f:09:64:a2:39:ef:61:28:05:9b:ec: 9b:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:D3:D6:D9:47:01:B2:E8:BE:17:85:FE:B0:C6:78:E0:63:EA:DF:9D X509v3 Authority Key Identifier: keyid:33:B0:D5:68:95:04:83:6C:11:E9:EC:DD:0D:11:9C:05:8D:3F:76:0B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9154961/FEBBFA801BE211EDAF17A558C4F9AE02/M7DVaJUEg2wR6ezdDRGcBY0_dgs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/M7DVaJUEg2wR6ezdDRGcBY0_dgs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9154961/FEBBFA801BE211EDAF17A558C4F9AE02/M7DVaJUEg2wR6ezdDRGcBY0_dgs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 62:e8:4e:f3:a9:cc:13:15:bf:66:de:2f:63:a9:44:43:d3:8e: 0b:e6:13:a1:6f:f4:4f:d1:17:07:61:c9:51:61:22:3c:20:dd: 8b:dd:12:6b:8a:d0:23:70:83:5d:05:1a:4b:f0:99:e7:bb:cc: 40:57:05:97:cd:6b:01:2f:01:db:32:b2:25:d9:dc:82:3c:59: e9:0e:ce:f0:2f:ec:f6:cd:d6:4d:47:c1:1f:73:d3:2b:4c:da: 4c:ee:27:4a:a4:63:81:2d:86:96:48:bf:64:d0:13:21:3c:33: 7c:ee:04:11:a8:f9:3c:28:0b:f6:ab:12:a6:33:26:e5:0d:54: 34:9b:ed:34:46:c6:ea:e9:bc:b1:ed:43:af:d6:1a:83:0d:21: 38:61:03:09:c5:c6:13:99:ed:84:7c:0f:92:a5:d9:82:6a:ac: 41:90:d2:89:f5:b7:8e:8e:64:2c:5d:6e:3f:71:74:dd:87:ec: 2f:72:98:3f:36:30:3f:84:e2:53:b4:c3:ac:7e:5f:a7:b1:a7: b2:0b:30:42:df:9f:86:92:d9:44:bb:a2:9e:80:f3:85:29:65: e7:5f:6d:2b:fc:3a:d9:6d:09:88:8e:ae:a0:cf:cc:c0:4e:b7: 39:b6:7e:16:29:5a:e7:c2:06:44:7f:c4:9c:1d:37:3d:75:85: 01:80:5a:de -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAfswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTQ5NjExMTAvBgNVBAUTKDMzQjBENTY4OTUwNDgzNkMxMUU5RUNERDBEMTE5QzA1 OEQzRjc2MEIwHhcNMjQxMTIzMDEzOTE2WhcNMjQxMTMwMDEzOTE2WjAYMRYwFAYD VQQDEw02NzQxMzI0NC1jOThjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAm0ODVjjBLfB8don94jp2EIDl3ZzId/wXHUWTwJAqLp6iMYVISxja9KvFu121 yf2nMRFw7Lye5x/FGOh7UmuhaW8/G7uKdEOTVFSEmbIL1kGtw8uaSEMbJxNidQ5K oJpV9kaRcBboveVXSGhsZeT2q49PWYRao6Ux+VBQYyqJ+28Zp+YKcFqmmOCFDJ7H BXCsRnWD8OkT+JO5jnTidz8NVrzK8USdFGnJXmccFo1qa/Axv9NtoC4XQhlff750 gbhytmFrt3t9qxEwCoHzRY7vwIx+vC44afmyq8YtTppmWLLd4vRbAbdQOSC1u81j oOopmA5njwlkojnvYSgFm+ybMQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHXT1tlH AbLovheF/rDGeOBj6t+dMB8GA1UdIwQYMBaAFDOw1WiVBINsEens3Q0RnAWNP3YL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NDk2MS9GRUJCRkE4MDFC RTIxMUVEQUYxN0E1NThDNEY5QUUwMi9NN0RWYUpVRWcyd1I2ZXpkRFJHY0JZMF9k Z3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL003RFZhSlVFZzJ3UjZlemREUkdjQlkwX2Rncy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NDk2MS9GRUJCRkE4MDFCRTIxMUVEQUYxN0E1NThDNEY5QUUwMi9NN0RWYUpVRWcy d1I2ZXpkRFJHY0JZMF9kZ3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBi6E7zqcwTFb9m3i9jqURD044L5hOhb/RP0RcHYclRYSI8IN2L3RJr itAjcINdBRpL8Jnnu8xAVwWXzWsBLwHbMrIl2dyCPFnpDs7wL+z2zdZNR8Efc9Mr TNpM7idKpGOBLYaWSL9k0BMhPDN87gQRqPk8KAv2qxKmMyblDVQ0m+00Rsbq6byx 7UOv1hqDDSE4YQMJxcYTme2EfA+SpdmCaqxBkNKJ9beOjmQsXW4/cXTdh+wvcpg/ NjA/hOJTtMOsfl+nsaeyCzBC35+GktlEu6KegPOFKWXnX20r/DrZbQmIjq6gz8zA Trc5tn4WKVrnwgZEf8ScHTc9dYUBgFre -----END CERTIFICATE-----Generated at Sat Nov 23 03:58:39 2024 by rpki-client on console-ams.rpki-client.org