$ rpki-client -vvf rpki.apnic.net/member_repository/A91719F1/695F93FE21EE11EDB4C8BD6CC4F9AE02/2QhMrcO-yMIAxalrcu2v1KAOrug.mft File: 2QhMrcO-yMIAxalrcu2v1KAOrug.mft (raw, json) Hash identifier: 8YBhYk+CWPv1S53S1Di4c/s9UFrCZU8qCiFygangTwg= Subject key identifier: 49:CA:3D:F5:A3:43:95:BE:94:02:2A:E3:7E:45:DD:C3:F3:73:B1:E7 Authority key identifier: D9:08:4C:AD:C3:BE:C8:C2:00:C5:A9:6B:72:ED:AF:D4:A0:0E:AE:E8 Certificate issuer: /CN=A91719F1/serialNumber=D9084CADC3BEC8C200C5A96B72EDAFD4A00EAEE8 Certificate serial: 01EA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2QhMrcO-yMIAxalrcu2v1KAOrug.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91719F1/695F93FE21EE11EDB4C8BD6CC4F9AE02/2QhMrcO-yMIAxalrcu2v1KAOrug.mft Manifest number: 01E4 Signing time: Thu 21 Nov 2024 01:40:59 +0000 Manifest this update: Thu 21 Nov 2024 01:40:59 +0000 Manifest next update: Thu 28 Nov 2024 01:40:59 +0000 Files and hashes: 1: 2QhMrcO-yMIAxalrcu2v1KAOrug.crl (hash: 7iYfv880sXlG89RiYSjtsTDEd7zRhVmuB+kVbS1+FcA=) 2: 00724F9621F111ED93774B6EC4F9AE02.roa (hash: kHZ83uQd4P0Aq4GdrhXsgOSk69yPjkOBgA9w2SOMuKk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91719F1/695F93FE21EE11EDB4C8BD6CC4F9AE02/2QhMrcO-yMIAxalrcu2v1KAOrug.crl rsync://rpki.apnic.net/member_repository/A91719F1/695F93FE21EE11EDB4C8BD6CC4F9AE02/2QhMrcO-yMIAxalrcu2v1KAOrug.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2QhMrcO-yMIAxalrcu2v1KAOrug.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:33:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 490 (0x1ea) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91719F1/serialNumber=D9084CADC3BEC8C200C5A96B72EDAFD4A00EAEE8 Validity Not Before: Nov 21 01:40:59 2024 GMT Not After : Nov 28 01:40:59 2024 GMT Subject: CN=673e8fab-dbef Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:94:dc:ad:78:da:6e:b7:d4:34:3d:6a:b8:0e: e0:ef:08:9e:b5:3b:d9:34:f5:7c:53:e7:37:12:64: 58:9a:ce:36:f8:7d:97:5f:b3:41:15:bb:9d:2e:ec: d2:95:8d:87:43:9f:e4:bb:a9:84:b1:dc:39:03:f0: e4:41:e9:00:01:a6:c6:ad:46:26:40:e3:31:b1:25: a1:05:3f:33:4c:11:d8:5d:ba:e4:a5:58:ff:07:50: d1:0e:4b:55:87:49:49:f2:8f:49:7a:d3:b9:23:7b: e4:bf:87:b7:f8:f9:3a:f4:7e:a5:66:20:65:f2:28: d9:0f:74:7d:18:c5:6c:88:c7:49:1c:75:9a:50:5a: 0e:80:37:9e:ad:ef:11:11:12:42:3e:e0:ce:28:fb: 86:de:a4:fc:74:13:69:9a:97:45:45:38:df:24:4a: 1f:32:8f:34:98:7c:11:75:08:80:88:62:9e:6e:9b: a1:a9:28:ff:6d:ee:a7:66:ff:d8:f0:43:a0:02:34: 38:cc:e5:c5:7e:e2:7e:e4:21:62:f1:0e:f5:b4:78: f4:26:6f:17:f4:d8:12:93:96:75:cd:99:ac:a6:3b: b2:38:10:0a:49:58:cc:81:e6:02:37:07:77:d5:fd: ef:bd:d0:af:e7:1d:df:e9:12:cf:86:01:cc:91:40: a9:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:CA:3D:F5:A3:43:95:BE:94:02:2A:E3:7E:45:DD:C3:F3:73:B1:E7 X509v3 Authority Key Identifier: keyid:D9:08:4C:AD:C3:BE:C8:C2:00:C5:A9:6B:72:ED:AF:D4:A0:0E:AE:E8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91719F1/695F93FE21EE11EDB4C8BD6CC4F9AE02/2QhMrcO-yMIAxalrcu2v1KAOrug.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2QhMrcO-yMIAxalrcu2v1KAOrug.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91719F1/695F93FE21EE11EDB4C8BD6CC4F9AE02/2QhMrcO-yMIAxalrcu2v1KAOrug.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 57:bc:c4:4a:6a:a4:a4:66:df:42:fb:80:10:b4:4b:b8:d8:fc: 4d:fa:14:8c:43:71:04:1f:44:8e:4c:23:db:26:9f:a7:2a:68: 87:f7:1a:f9:33:b3:55:7b:99:c2:34:db:de:0d:4a:52:91:35: 06:a5:6f:7a:1f:5e:f3:88:6c:da:52:5d:40:5d:9d:84:60:d6: af:51:2f:25:ec:62:5c:8b:7f:ea:28:9a:91:c5:3b:34:49:58: 69:ec:79:f5:3a:54:20:44:42:1b:c9:e6:e4:0e:b2:7c:f4:af: b0:4c:a6:fa:69:b5:71:a1:f4:f4:e7:df:7a:0f:10:3f:0e:60: 27:93:23:10:17:f6:08:85:bc:bf:25:30:df:74:d8:bf:1e:a8: 73:be:bb:32:17:3f:d9:35:e2:ab:ca:b0:8e:f7:95:8f:7d:de: f8:75:a4:7d:ac:3b:35:1b:a2:e7:54:06:6b:04:16:82:68:a1: c5:c8:25:91:62:76:7e:59:fd:a2:5d:b8:f7:b1:1f:a2:1c:80: b0:8b:02:c8:cb:3e:d3:27:47:c5:69:79:4a:39:8e:c9:38:ec: b4:8b:54:c4:a2:bb:45:ef:6d:21:9d:12:a6:0d:c4:b4:b6:4a: c0:18:01:5a:a2:87:58:80:66:bb:6f:ff:46:0a:67:75:a8:0b: 86:b4:b0:e9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAeowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzE5RjExMTAvBgNVBAUTKEQ5MDg0Q0FEQzNCRUM4QzIwMEM1QTk2QjcyRURBRkQ0 QTAwRUFFRTgwHhcNMjQxMTIxMDE0MDU5WhcNMjQxMTI4MDE0MDU5WjAYMRYwFAYD VQQDEw02NzNlOGZhYi1kYmVmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxJTcrXjabrfUND1quA7g7wietTvZNPV8U+c3EmRYms42+H2XX7NBFbudLuzS lY2HQ5/ku6mEsdw5A/DkQekAAabGrUYmQOMxsSWhBT8zTBHYXbrkpVj/B1DRDktV h0lJ8o9JetO5I3vkv4e3+Pk69H6lZiBl8ijZD3R9GMVsiMdJHHWaUFoOgDeere8R ERJCPuDOKPuG3qT8dBNpmpdFRTjfJEofMo80mHwRdQiAiGKebpuhqSj/be6nZv/Y 8EOgAjQ4zOXFfuJ+5CFi8Q71tHj0Jm8X9NgSk5Z1zZmspjuyOBAKSVjMgeYCNwd3 1f3vvdCv5x3f6RLPhgHMkUCpawIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEnKPfWj Q5W+lAIq435F3cPzc7HnMB8GA1UdIwQYMBaAFNkITK3DvsjCAMWpa3Ltr9SgDq7o MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MTlGMS82OTVGOTNGRTIx RUUxMUVEQjRDOEJENkNDNEY5QUUwMi8yUWhNcmNPLXlNSUF4YWxyY3UydjFLQU9y dWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJRaE1yY08teU1JQXhhbHJjdTJ2MUtBT3J1Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MTlGMS82OTVGOTNGRTIxRUUxMUVEQjRDOEJENkNDNEY5QUUwMi8yUWhNcmNPLXlN SUF4YWxyY3UydjFLQU9ydWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBXvMRKaqSkZt9C+4AQtEu42PxN+hSMQ3EEH0SOTCPbJp+nKmiH9xr5 M7NVe5nCNNveDUpSkTUGpW96H17ziGzaUl1AXZ2EYNavUS8l7GJci3/qKJqRxTs0 SVhp7Hn1OlQgREIbyebkDrJ89K+wTKb6abVxofT05996DxA/DmAnkyMQF/YIhby/ JTDfdNi/HqhzvrsyFz/ZNeKryrCO95WPfd74daR9rDs1G6LnVAZrBBaCaKHFyCWR YnZ+Wf2iXbj3sR+iHICwiwLIyz7TJ0fFaXlKOY7JOOy0i1TEortF720hnRKmDcS0 tkrAGAFaoodYgGa7b/9GCmd1qAuGtLDp -----END CERTIFICATE-----Generated at Thu Nov 21 03:11:58 2024 by rpki-client on console-fra.rpki-client.org