$ rpki-client -vvf rpki.apnic.net/member_repository/A91689B7/B1E54AB856A211EDB4A1B225C4F9AE02/iCJHhVdMHyPKnEOe2PVTiPamjOI.mft File: iCJHhVdMHyPKnEOe2PVTiPamjOI.mft (raw, json) Hash identifier: PYGX787VOEZPD+j8jSgMaRL25cbgozz/+QbcEL6k52U= Subject key identifier: 32:6D:8B:AF:29:8A:E3:BF:C0:15:2C:25:CA:7C:F0:C3:B2:B8:9B:66 Authority key identifier: 88:22:47:85:57:4C:1F:23:CA:9C:43:9E:D8:F5:53:88:F6:A6:8C:E2 Certificate issuer: /CN=A91689B7/serialNumber=88224785574C1F23CA9C439ED8F55388F6A68CE2 Certificate serial: 018D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iCJHhVdMHyPKnEOe2PVTiPamjOI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91689B7/B1E54AB856A211EDB4A1B225C4F9AE02/iCJHhVdMHyPKnEOe2PVTiPamjOI.mft Manifest number: 0188 Signing time: Sat 23 Nov 2024 01:59:38 +0000 Manifest this update: Sat 23 Nov 2024 01:59:38 +0000 Manifest next update: Sat 30 Nov 2024 01:59:38 +0000 Files and hashes: 1: iCJHhVdMHyPKnEOe2PVTiPamjOI.crl (hash: NxBO6R9kzYHADF+fgHhjtLoGSRuU14VBJAuHprucqV8=) 2: 2455276E39B311EEA6DFE66BC4F9AE02.roa (hash: knqc7THQRsHZbyl0QP6DMcWGNM0bKvX1iDSiB2h5rO4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91689B7/B1E54AB856A211EDB4A1B225C4F9AE02/iCJHhVdMHyPKnEOe2PVTiPamjOI.crl rsync://rpki.apnic.net/member_repository/A91689B7/B1E54AB856A211EDB4A1B225C4F9AE02/iCJHhVdMHyPKnEOe2PVTiPamjOI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iCJHhVdMHyPKnEOe2PVTiPamjOI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 01:59:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 397 (0x18d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91689B7/serialNumber=88224785574C1F23CA9C439ED8F55388F6A68CE2 Validity Not Before: Nov 23 01:59:38 2024 GMT Not After : Nov 30 01:59:38 2024 GMT Subject: CN=6741370a-f92d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:38:91:17:34:76:05:a0:0d:ea:81:93:3c:98: 1b:68:63:89:8b:19:11:59:2b:09:45:71:1d:13:81: dc:72:32:52:7c:6f:1b:8b:7a:f4:64:c4:a0:b6:3d: cb:16:b0:e2:11:86:c8:8e:c5:db:26:30:a2:c1:4f: 21:e8:2e:53:41:66:0a:07:13:4f:20:c3:0a:50:85: 4e:b6:b6:c3:e1:e3:08:d6:b9:d5:30:a9:03:f1:9a: 77:e7:0d:9c:81:47:4a:5d:02:87:8c:85:21:d0:7a: 7d:23:ed:7f:ff:5d:43:b7:1e:df:9d:f7:33:f8:26: 9d:74:12:ee:bd:75:e1:50:df:c8:f2:8b:75:92:d2: 0b:9e:0c:73:d3:86:52:2a:57:1d:25:ba:75:2c:39: e2:4d:58:0d:16:44:23:81:5d:80:ba:63:66:0a:8f: ef:a6:6e:1e:cd:f6:46:7b:a5:12:60:f7:e3:1f:fd: 93:31:49:59:34:d4:24:01:75:42:67:11:13:e6:c2: bc:63:2e:bf:c1:66:b4:52:98:42:53:ff:ba:3b:38: d6:89:00:38:0a:f0:db:32:3f:04:17:c8:cb:a4:69: b2:e8:a9:fc:70:d1:ec:61:9a:48:82:45:31:8e:4c: 8c:50:2c:cb:16:23:b6:04:5c:c8:eb:04:48:33:17: b9:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:6D:8B:AF:29:8A:E3:BF:C0:15:2C:25:CA:7C:F0:C3:B2:B8:9B:66 X509v3 Authority Key Identifier: keyid:88:22:47:85:57:4C:1F:23:CA:9C:43:9E:D8:F5:53:88:F6:A6:8C:E2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91689B7/B1E54AB856A211EDB4A1B225C4F9AE02/iCJHhVdMHyPKnEOe2PVTiPamjOI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iCJHhVdMHyPKnEOe2PVTiPamjOI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91689B7/B1E54AB856A211EDB4A1B225C4F9AE02/iCJHhVdMHyPKnEOe2PVTiPamjOI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 28:25:2f:9d:09:78:ff:ab:19:aa:9f:fe:b1:6e:86:dd:42:ab: 09:a7:fb:71:e9:71:3a:3b:47:bc:53:3f:67:ca:87:6f:24:cb: ba:71:f7:98:cb:d4:88:dd:a4:87:bf:90:87:eb:f9:bd:0b:88: 3e:47:c9:b1:16:a0:01:56:40:e2:72:88:8b:bd:a7:c3:ba:71: 9f:99:d7:52:72:83:1e:d1:b2:28:cc:d7:83:50:7c:70:83:95: 45:6e:a4:f8:39:a6:b3:84:5c:02:d4:ed:12:7d:b6:0e:88:cc: 9e:b5:f4:e7:77:6e:8e:93:87:1c:8a:58:d0:c6:e9:96:8f:bb: 67:e1:e5:62:b0:33:c1:ae:8f:85:9d:63:0e:b2:72:9d:de:70: 0b:02:fc:c9:af:6a:a0:77:49:3a:d3:fe:2f:f5:09:40:62:f4: 64:da:b6:d6:44:18:e0:a5:b5:f0:1c:c3:a3:ad:ec:88:86:de: 7c:85:9c:41:41:ee:27:28:fe:96:6d:8c:82:71:96:3e:82:cf: bd:41:f9:44:e8:f5:13:e4:4a:2f:05:bf:af:b1:16:8e:9f:24: d0:4f:93:84:b0:c3:3a:68:9a:20:37:66:c5:55:41:6b:da:a3: ba:27:c0:5b:c8:61:58:49:60:d3:34:ca:68:63:ad:80:8f:5b: 1f:cf:a2:a2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAY0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Njg5QjcxMTAvBgNVBAUTKDg4MjI0Nzg1NTc0QzFGMjNDQTlDNDM5RUQ4RjU1Mzg4 RjZBNjhDRTIwHhcNMjQxMTIzMDE1OTM4WhcNMjQxMTMwMDE1OTM4WjAYMRYwFAYD VQQDEw02NzQxMzcwYS1mOTJkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzziRFzR2BaAN6oGTPJgbaGOJixkRWSsJRXEdE4HccjJSfG8bi3r0ZMSgtj3L FrDiEYbIjsXbJjCiwU8h6C5TQWYKBxNPIMMKUIVOtrbD4eMI1rnVMKkD8Zp35w2c gUdKXQKHjIUh0Hp9I+1//11Dtx7fnfcz+CaddBLuvXXhUN/I8ot1ktILngxz04ZS KlcdJbp1LDniTVgNFkQjgV2AumNmCo/vpm4ezfZGe6USYPfjH/2TMUlZNNQkAXVC ZxET5sK8Yy6/wWa0UphCU/+6OzjWiQA4CvDbMj8EF8jLpGmy6Kn8cNHsYZpIgkUx jkyMUCzLFiO2BFzI6wRIMxe55wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDJti68p iuO/wBUsJcp88MOyuJtmMB8GA1UdIwQYMBaAFIgiR4VXTB8jypxDntj1U4j2pozi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2ODlCNy9CMUU1NEFCODU2 QTIxMUVEQjRBMUIyMjVDNEY5QUUwMi9pQ0pIaFZkTUh5UEtuRU9lMlBWVGlQYW1q T0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lDSkhoVmRNSHlQS25FT2UyUFZUaVBhbWpPSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 ODlCNy9CMUU1NEFCODU2QTIxMUVEQjRBMUIyMjVDNEY5QUUwMi9pQ0pIaFZkTUh5 UEtuRU9lMlBWVGlQYW1qT0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAoJS+dCXj/qxmqn/6xbobdQqsJp/tx6XE6O0e8Uz9nyodvJMu6cfeY y9SI3aSHv5CH6/m9C4g+R8mxFqABVkDicoiLvafDunGfmddScoMe0bIozNeDUHxw g5VFbqT4OaazhFwC1O0SfbYOiMyetfTnd26Ok4cciljQxumWj7tn4eVisDPBro+F nWMOsnKd3nALAvzJr2qgd0k60/4v9QlAYvRk2rbWRBjgpbXwHMOjreyIht58hZxB Qe4nKP6WbYyCcZY+gs+9QflE6PUT5EovBb+vsRaOnyTQT5OEsMM6aJogN2bFVUFr 2qO6J8BbyGFYSWDTNMpoY62Aj1sfz6Ki -----END CERTIFICATE-----Generated at Sat Nov 23 03:58:40 2024 by rpki-client on console-ams.rpki-client.org