$ rpki-client -vvf rpki.apnic.net/member_repository/A917ADD1/D006C0DE37EE11EE98DF3666C4F9AE02/dlKiL8JQ-qrjqywMKv3QTjBH5Qc.mft File: dlKiL8JQ-qrjqywMKv3QTjBH5Qc.mft (raw, json) Hash identifier: aUfc3RzW2l+5ftiVIL0h05PTN040tmOHNXEcFSYAkSA= Subject key identifier: B4:5B:D6:12:C1:99:84:DF:5F:E5:6E:AA:7A:61:8B:96:C1:65:F0:74 Authority key identifier: 76:52:A2:2F:C2:50:FA:AA:E3:AB:2C:0C:2A:FD:D0:4E:30:47:E5:07 Certificate issuer: /CN=A917ADD1/serialNumber=7652A22FC250FAAAE3AB2C0C2AFDD04E3047E507 Certificate serial: F4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dlKiL8JQ-qrjqywMKv3QTjBH5Qc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917ADD1/D006C0DE37EE11EE98DF3666C4F9AE02/dlKiL8JQ-qrjqywMKv3QTjBH5Qc.mft Manifest number: F2 Signing time: Sat 23 Nov 2024 03:24:58 +0000 Manifest this update: Sat 23 Nov 2024 03:24:57 +0000 Manifest next update: Sat 30 Nov 2024 03:24:57 +0000 Files and hashes: 1: dlKiL8JQ-qrjqywMKv3QTjBH5Qc.crl (hash: PPrNxRUDWIXyyHDXW95Wv51wW3zPxC7ZQ/QWPS3u2Ag=) 2: 8D0C1E0E37EF11EE82AF270BC4F9AE02.roa (hash: YBS7N1V85GEsKAdkA8SgTeGUq7xGqu6t+13xBrFpNlo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917ADD1/D006C0DE37EE11EE98DF3666C4F9AE02/dlKiL8JQ-qrjqywMKv3QTjBH5Qc.crl rsync://rpki.apnic.net/member_repository/A917ADD1/D006C0DE37EE11EE98DF3666C4F9AE02/dlKiL8JQ-qrjqywMKv3QTjBH5Qc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dlKiL8JQ-qrjqywMKv3QTjBH5Qc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 244 (0xf4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917ADD1/serialNumber=7652A22FC250FAAAE3AB2C0C2AFDD04E3047E507 Validity Not Before: Nov 23 03:24:57 2024 GMT Not After : Nov 30 03:24:57 2024 GMT Subject: CN=67414b09-ab41 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:15:cc:35:ef:9e:cc:b0:73:5c:9b:12:76:c5: af:39:a6:36:5f:f8:cc:8a:06:31:ec:fc:bf:c0:42: 0f:ff:b5:44:6b:38:33:97:0e:be:f1:85:1a:d8:b1: 62:3d:38:2a:47:7f:a2:bd:c8:2e:3c:8e:85:67:3f: 47:52:6a:61:8b:a9:a3:67:43:3e:29:e4:8d:03:6c: 6e:02:bc:29:fe:84:c8:4f:6b:42:90:5a:4e:18:97: d7:a6:49:66:ae:47:cd:04:1d:69:cb:42:98:c8:ca: d6:35:70:4a:ae:e9:76:5b:93:cb:69:ff:a4:78:f0: dd:97:b9:f6:9d:a4:d5:b9:b5:4f:e0:70:b8:97:a7: 3c:65:24:0d:84:28:c6:c3:56:6b:2f:a8:8e:e4:ee: 20:70:81:14:bb:2f:dd:45:7b:6b:af:f2:93:3d:ab: 09:02:d5:67:5d:68:f8:23:24:0c:50:5e:7c:de:90: a6:86:13:e5:8c:b0:50:fb:19:8a:bb:4c:22:89:5a: db:5d:be:be:65:83:fb:86:25:3c:d2:3a:f8:ec:84: c3:bd:6f:1c:9b:93:50:68:f4:cb:16:b4:da:0f:ac: df:3e:0e:91:b6:f9:46:47:92:4a:03:13:c2:1c:c4: 27:a6:86:48:11:06:dc:c1:fa:e2:64:b7:d1:e7:70: 27:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:5B:D6:12:C1:99:84:DF:5F:E5:6E:AA:7A:61:8B:96:C1:65:F0:74 X509v3 Authority Key Identifier: keyid:76:52:A2:2F:C2:50:FA:AA:E3:AB:2C:0C:2A:FD:D0:4E:30:47:E5:07 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917ADD1/D006C0DE37EE11EE98DF3666C4F9AE02/dlKiL8JQ-qrjqywMKv3QTjBH5Qc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dlKiL8JQ-qrjqywMKv3QTjBH5Qc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917ADD1/D006C0DE37EE11EE98DF3666C4F9AE02/dlKiL8JQ-qrjqywMKv3QTjBH5Qc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 07:64:34:b3:51:41:aa:44:26:33:5d:e9:fb:ea:d2:79:5d:d2: d1:dc:3f:0d:59:3a:5f:87:4d:21:be:0b:bb:ba:db:db:86:ed: 48:f3:59:f3:4e:b9:fd:de:10:54:6a:94:21:e6:c0:73:78:2c: 90:64:59:31:51:64:2b:44:6f:76:1d:b1:57:70:0b:ff:75:2c: e9:be:45:90:cd:28:6a:30:72:46:e1:f4:ad:a3:d2:ad:fb:47: 05:db:d6:7d:1f:63:8d:30:d0:50:09:c0:a8:8d:95:c2:e1:66: e8:89:ff:48:41:77:02:6c:17:d3:c6:87:fa:9b:84:79:86:67: 06:95:c7:77:d9:8a:52:c5:9e:24:e2:f8:13:01:8e:29:20:d2: 37:26:07:23:cd:94:ee:83:56:6e:52:d8:72:d6:1d:c4:b1:59: be:ed:39:1a:98:61:ff:2a:79:c6:71:1e:a6:0a:32:ad:ba:fa: 79:18:80:e4:1c:fd:fe:ee:ad:4b:eb:b1:98:aa:1d:8d:08:0e: 6d:a2:eb:9b:ab:bc:fe:f4:e6:56:18:e8:b2:1f:b0:35:e7:27: d6:4a:c9:74:ec:1c:72:ea:81:77:04:b4:ff:e8:d7:9e:1e:21: 19:01:cf:dd:39:09:36:80:8d:74:4a:ac:02:79:19:81:4c:e1: 74:2a:1e:8f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAPQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0FERDExMTAvBgNVBAUTKDc2NTJBMjJGQzI1MEZBQUFFM0FCMkMwQzJBRkREMDRF MzA0N0U1MDcwHhcNMjQxMTIzMDMyNDU3WhcNMjQxMTMwMDMyNDU3WjAYMRYwFAYD VQQDEw02NzQxNGIwOS1hYjQxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArhXMNe+ezLBzXJsSdsWvOaY2X/jMigYx7Py/wEIP/7VEazgzlw6+8YUa2LFi PTgqR3+ivcguPI6FZz9HUmphi6mjZ0M+KeSNA2xuArwp/oTIT2tCkFpOGJfXpklm rkfNBB1py0KYyMrWNXBKrul2W5PLaf+kePDdl7n2naTVubVP4HC4l6c8ZSQNhCjG w1ZrL6iO5O4gcIEUuy/dRXtrr/KTPasJAtVnXWj4IyQMUF583pCmhhPljLBQ+xmK u0wiiVrbXb6+ZYP7hiU80jr47ITDvW8cm5NQaPTLFrTaD6zfPg6RtvlGR5JKAxPC HMQnpoZIEQbcwfriZLfR53An/wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLRb1hLB mYTfX+Vuqnphi5bBZfB0MB8GA1UdIwQYMBaAFHZSoi/CUPqq46ssDCr90E4wR+UH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QUREMS9EMDA2QzBERTM3 RUUxMUVFOThERjM2NjZDNEY5QUUwMi9kbEtpTDhKUS1xcmpxeXdNS3YzUVRqQkg1 UWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2RsS2lMOEpRLXFyanF5d01LdjNRVGpCSDVRYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QUREMS9EMDA2QzBERTM3RUUxMUVFOThERjM2NjZDNEY5QUUwMi9kbEtpTDhKUS1x cmpxeXdNS3YzUVRqQkg1UWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAHZDSzUUGqRCYzXen76tJ5XdLR3D8NWTpfh00hvgu7utvbhu1I81nz Trn93hBUapQh5sBzeCyQZFkxUWQrRG92HbFXcAv/dSzpvkWQzShqMHJG4fSto9Kt +0cF29Z9H2ONMNBQCcCojZXC4Wboif9IQXcCbBfTxof6m4R5hmcGlcd32YpSxZ4k 4vgTAY4pINI3JgcjzZTug1ZuUthy1h3EsVm+7TkamGH/KnnGcR6mCjKtuvp5GIDk HP3+7q1L67GYqh2NCA5touubq7z+9OZWGOiyH7A15yfWSsl07Bxy6oF3BLT/6Nee HiEZAc/dOQk2gI10SqwCeRmBTOF0Kh6P -----END CERTIFICATE-----Generated at Sat Nov 23 05:02:51 2024 by rpki-client on console-fra.rpki-client.org