$ rpki-client -vvf rpki.apnic.net/member_repository/A9155501/2688E30268DF11EF83089E0BC4F9AE02/madm1M-kWp-eN3glBJixJ2jEHho.mft File: madm1M-kWp-eN3glBJixJ2jEHho.mft (raw, json) Hash identifier: H1DSS4FqeyFfJUchT+3kOvGa1X+PBT5aEaCH9b0LfRE= Subject key identifier: 8D:D0:6B:7E:E4:59:38:3B:04:65:4D:0A:6E:6B:96:89:E4:E3:CA:DE Authority key identifier: 99:A7:66:D4:CF:A4:5A:9F:9E:37:78:25:04:98:B1:27:68:C4:1E:1A Certificate issuer: /CN=A9155501/serialNumber=99A766D4CFA45A9F9E3778250498B12768C41E1A Certificate serial: 31 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/madm1M-kWp-eN3glBJixJ2jEHho.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9155501/2688E30268DF11EF83089E0BC4F9AE02/madm1M-kWp-eN3glBJixJ2jEHho.mft Manifest number: 2F Signing time: Sat 23 Nov 2024 05:38:15 +0000 Manifest this update: Sat 23 Nov 2024 05:38:14 +0000 Manifest next update: Sat 30 Nov 2024 05:38:14 +0000 Files and hashes: 1: madm1M-kWp-eN3glBJixJ2jEHho.crl (hash: tFRgg/lqAdyT3jR4KCZZ9P6pUI6+CMwmqLaBiJSwvMc=) 2: 4DD8750E69A611EF84A27584C4F9AE02.roa (hash: nmm+UaDTVZk1W14gJbVOSNyGWuVq3wHsOrXGhKoBHSk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9155501/2688E30268DF11EF83089E0BC4F9AE02/madm1M-kWp-eN3glBJixJ2jEHho.crl rsync://rpki.apnic.net/member_repository/A9155501/2688E30268DF11EF83089E0BC4F9AE02/madm1M-kWp-eN3glBJixJ2jEHho.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/madm1M-kWp-eN3glBJixJ2jEHho.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 49 (0x31) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9155501/serialNumber=99A766D4CFA45A9F9E3778250498B12768C41E1A Validity Not Before: Nov 23 05:38:14 2024 GMT Not After : Nov 30 05:38:14 2024 GMT Subject: CN=67416a47-d627 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:7b:af:d7:06:40:fe:85:a9:fa:d2:f2:94:ac: 9d:14:ee:11:a4:a0:45:13:47:c0:5c:e9:bb:23:34: 65:69:50:28:d7:16:a8:81:a7:93:13:a9:77:b3:1f: 4a:c0:99:bb:53:48:f0:a8:d8:19:c8:d9:90:20:7d: 22:1c:77:96:8d:b0:8e:fb:63:01:ce:9b:25:81:70: 60:76:73:fc:5b:84:f0:51:5e:fa:50:1a:4e:48:f3: f7:92:d8:b8:9b:bd:1d:3b:58:61:fb:fe:79:29:97: 7e:8f:c3:3d:b6:03:a0:e2:54:ea:39:0b:9b:da:cb: 7c:9d:2e:08:e8:50:52:bd:fb:24:fa:c8:71:37:62: 0b:0a:47:30:24:72:0a:6e:1f:25:10:e5:eb:f3:5b: 3b:c7:b7:ad:76:d1:0b:76:b9:6f:df:b8:99:b7:ae: 9a:06:52:58:f9:0f:b0:0f:db:66:25:7b:37:2d:9b: fc:8f:6a:bf:e6:43:33:7c:f1:c4:2b:b8:ae:5c:8e: 5d:bb:00:58:7a:a2:68:20:db:35:38:89:e9:4d:86: 14:66:6e:99:73:b2:54:25:fd:16:82:a5:2c:0c:3e: a7:28:91:dd:79:b1:59:07:2f:d8:78:62:a6:dc:93: 30:e6:ae:80:a0:8a:ad:95:49:41:38:5c:48:90:cf: ee:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:D0:6B:7E:E4:59:38:3B:04:65:4D:0A:6E:6B:96:89:E4:E3:CA:DE X509v3 Authority Key Identifier: keyid:99:A7:66:D4:CF:A4:5A:9F:9E:37:78:25:04:98:B1:27:68:C4:1E:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9155501/2688E30268DF11EF83089E0BC4F9AE02/madm1M-kWp-eN3glBJixJ2jEHho.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/madm1M-kWp-eN3glBJixJ2jEHho.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9155501/2688E30268DF11EF83089E0BC4F9AE02/madm1M-kWp-eN3glBJixJ2jEHho.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7f:e9:e3:6a:53:9f:e3:f0:7e:e5:12:db:59:44:46:76:61:6e: af:6f:26:f6:33:bc:1a:f9:de:da:e7:a5:44:22:f4:35:3b:32: d8:12:6d:7e:f0:f4:80:dd:d7:0d:cc:70:4a:eb:c7:32:fb:b1: 12:6c:84:01:29:29:3b:1a:76:21:4d:52:1a:c9:c3:cc:f0:ea: 66:55:99:90:99:d6:28:bf:74:95:ad:19:2a:49:a8:1b:1f:77: 67:d7:14:4c:6a:e7:ac:57:a8:46:e8:c5:21:e1:89:1d:93:11: e6:d6:1d:db:c7:fc:7c:70:62:50:aa:25:ba:d5:93:e1:f7:96: e6:b3:86:f3:db:e9:29:93:a9:82:f2:a9:0c:17:24:b0:2d:fc: f0:ec:f3:38:aa:ec:22:00:80:62:17:d3:de:09:98:d1:db:36: fa:f5:1a:db:cd:70:54:a8:b1:9d:43:78:91:0e:b6:8a:2e:02: 5e:e9:fd:46:bb:89:ee:54:70:1d:bd:15:6c:90:25:88:c5:f4: d3:1c:82:d6:20:93:8c:2c:3a:66:a8:6b:e0:af:e0:64:83:5f: d3:76:41:29:f8:cb:fe:07:59:66:5c:dc:0d:98:3a:0e:00:9a: 83:e0:ae:d6:6f:88:c4:bc:d4:12:8e:54:d5:ad:c7:1b:bf:48: 6b:af:fc:3b -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBMTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1 NTUwMTExMC8GA1UEBRMoOTlBNzY2RDRDRkE0NUE5RjlFMzc3ODI1MDQ5OEIxMjc2 OEM0MUUxQTAeFw0yNDExMjMwNTM4MTRaFw0yNDExMzAwNTM4MTRaMBgxFjAUBgNV BAMTDTY3NDE2YTQ3LWQ2MjcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCje6/XBkD+han60vKUrJ0U7hGkoEUTR8Bc6bsjNGVpUCjXFqiBp5MTqXezH0rA mbtTSPCo2BnI2ZAgfSIcd5aNsI77YwHOmyWBcGB2c/xbhPBRXvpQGk5I8/eS2Lib vR07WGH7/nkpl36Pwz22A6DiVOo5C5vay3ydLgjoUFK9+yT6yHE3YgsKRzAkcgpu HyUQ5evzWzvHt6120Qt2uW/fuJm3rpoGUlj5D7AP22Ylezctm/yPar/mQzN88cQr uK5cjl27AFh6omgg2zU4ielNhhRmbplzslQl/RaCpSwMPqcokd15sVkHL9h4Yqbc kzDmroCgiq2VSUE4XEiQz+7xAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUjdBrfuRZ ODsEZU0KbmuWieTjyt4wHwYDVR0jBBgwFoAUmadm1M+kWp+eN3glBJixJ2jEHhow DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTU1NTAxLzI2ODhFMzAyNjhE RjExRUY4MzA4OUUwQkM0RjlBRTAyL21hZG0xTS1rV3AtZU4zZ2xCSml4SjJqRUho by5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvbWFkbTFNLWtXcC1lTjNnbEJKaXhKMmpFSGhvLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTU1 NTAxLzI2ODhFMzAyNjhERjExRUY4MzA4OUUwQkM0RjlBRTAyL21hZG0xTS1rV3At ZU4zZ2xCSml4SjJqRUhoby5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAH/p42pTn+PwfuUS21lERnZhbq9vJvYzvBr53trnpUQi9DU7MtgSbX7w 9IDd1w3McErrxzL7sRJshAEpKTsadiFNUhrJw8zw6mZVmZCZ1ii/dJWtGSpJqBsf d2fXFExq56xXqEboxSHhiR2TEebWHdvH/HxwYlCqJbrVk+H3luazhvPb6SmTqYLy qQwXJLAt/PDs8ziq7CIAgGIX094JmNHbNvr1GtvNcFSosZ1DeJEOtoouAl7p/Ua7 ie5UcB29FWyQJYjF9NMcgtYgk4wsOmaoa+Cv4GSDX9N2QSn4y/4HWWZc3A2YOg4A moPgrtZviMS81BKOVNWtxxu/SGuv/Ds= -----END CERTIFICATE-----Generated at Sat Nov 23 06:21:25 2024 by rpki-client on console-fra.rpki-client.org