$ rpki-client -vvf rpki.apnic.net/member_repository/A917FACB/1C946AF2B46511EF9BFBAA67C4F9AE02/QC0dC9kfQ4Aseg1wc2GIvroKCBI.mft File: QC0dC9kfQ4Aseg1wc2GIvroKCBI.mft (raw, json) Hash identifier: fSXNzqd5pMv+NAD0B6DN4qcIjHB+Bkx1Cs0nqLOhIdg= Subject key identifier: A9:03:73:B8:10:A8:28:E2:FD:BA:67:0A:08:65:D1:FF:FE:DE:10:7B Authority key identifier: 40:2D:1D:0B:D9:1F:43:80:2C:7A:0D:70:73:61:88:BE:BA:0A:08:12 Certificate issuer: /CN=A917FACB/serialNumber=402D1D0BD91F43802C7A0D70736188BEBA0A0812 Certificate serial: 0D Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QC0dC9kfQ4Aseg1wc2GIvroKCBI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917FACB/1C946AF2B46511EF9BFBAA67C4F9AE02/QC0dC9kfQ4Aseg1wc2GIvroKCBI.mft Manifest number: 0C Signing time: Fri 27 Dec 2024 06:13:44 +0000 Manifest this update: Fri 27 Dec 2024 06:13:44 +0000 Manifest next update: Fri 03 Jan 2025 06:13:44 +0000 Files and hashes: 1: QC0dC9kfQ4Aseg1wc2GIvroKCBI.crl (hash: fEMftgMKKY51eHLWRRhnqWqBu1QbUFJnAHuQZCfc/2w=) 2: 817FDF1EB46511EF86BEAC6BC4F9AE02.roa (hash: 3X4IEvNoArraBKAuq5CyT+VKjti9XVZccQ9OUFJ9p8E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917FACB/1C946AF2B46511EF9BFBAA67C4F9AE02/QC0dC9kfQ4Aseg1wc2GIvroKCBI.crl rsync://rpki.apnic.net/member_repository/A917FACB/1C946AF2B46511EF9BFBAA67C4F9AE02/QC0dC9kfQ4Aseg1wc2GIvroKCBI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QC0dC9kfQ4Aseg1wc2GIvroKCBI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 Jan 2025 05:51:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13 (0xd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917FACB/serialNumber=402D1D0BD91F43802C7A0D70736188BEBA0A0812 Validity Not Before: Dec 27 06:13:44 2024 GMT Not After : Jan 3 06:13:44 2025 GMT Subject: CN=676e4598-62e6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:4e:ad:a0:12:b5:08:0b:98:d3:3a:21:0b:94: f3:81:9a:40:24:68:6b:4f:41:07:a6:86:24:1c:78: f3:d7:fa:b0:7f:a4:f7:80:2c:09:c6:dc:de:a6:66: 24:38:36:83:2e:c7:66:00:15:70:ce:fb:c6:33:82: 7d:2b:1f:4c:e9:a4:20:0b:8b:f3:5d:93:f7:13:e8: c2:6b:16:d4:35:41:f7:47:60:5d:7a:c9:c7:15:b8: 16:49:b4:5b:16:82:90:c2:c9:e5:17:69:30:1e:73: dc:68:03:2b:b0:5b:8b:55:2d:8e:d8:2d:18:37:31: b3:5e:de:a3:1b:06:55:f7:3d:e3:8c:cb:f9:fb:c5: 73:91:b5:4b:5e:04:46:90:1d:5b:e7:b3:14:36:0a: 96:9c:e4:ee:43:2c:90:c6:24:96:04:b0:52:e2:be: 3f:a2:a7:3c:ed:19:df:67:4b:b2:2d:8e:ee:41:93: 2e:d6:fe:b8:91:a2:d4:84:61:b5:eb:d2:95:3b:47: 6f:b9:79:a6:af:79:97:4e:69:3b:6c:e6:78:ba:2b: 34:7b:09:92:64:af:47:f0:a1:99:9f:fd:a4:29:42: 34:80:5d:c6:3d:e0:57:74:8e:e8:4b:31:e7:7d:1a: b3:04:96:fb:94:17:09:31:02:e3:99:b3:9e:8a:69: ed:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:03:73:B8:10:A8:28:E2:FD:BA:67:0A:08:65:D1:FF:FE:DE:10:7B X509v3 Authority Key Identifier: keyid:40:2D:1D:0B:D9:1F:43:80:2C:7A:0D:70:73:61:88:BE:BA:0A:08:12 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917FACB/1C946AF2B46511EF9BFBAA67C4F9AE02/QC0dC9kfQ4Aseg1wc2GIvroKCBI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QC0dC9kfQ4Aseg1wc2GIvroKCBI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917FACB/1C946AF2B46511EF9BFBAA67C4F9AE02/QC0dC9kfQ4Aseg1wc2GIvroKCBI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 73:bb:8d:69:12:a5:75:40:40:38:97:6b:97:da:16:63:6b:d1: b5:2a:87:1e:74:9d:43:5c:28:18:23:79:71:ec:4a:66:05:82: 93:5a:60:7c:b1:0c:2e:38:7f:45:d2:04:94:9e:fa:90:58:75: c7:d6:ea:d6:12:de:86:2d:87:4f:60:09:91:35:b5:b5:bc:dd: 7a:50:f1:b8:30:40:3d:92:13:e6:3e:21:a6:63:48:ff:fd:d8: 97:74:15:11:79:26:1a:b3:66:90:b5:ee:1e:4e:cb:30:c9:4c: df:a9:7c:43:ae:93:45:1c:b2:07:4c:95:b7:81:fc:72:e7:7e: 2a:5e:f0:f9:a4:d1:73:bf:93:a1:b5:d0:d3:c3:da:14:33:33: 6f:93:a2:56:01:72:e5:5f:cd:00:91:d4:dd:10:db:ad:ea:b2: 59:00:df:83:08:32:e3:08:ce:b2:8e:0e:d9:18:5e:39:7d:4b: b6:ca:19:1d:66:15:8f:d3:ae:cf:39:ef:6c:85:f1:68:5e:69: ac:3f:f2:fb:f4:31:a7:ba:44:a1:70:63:2a:a5:37:ff:ce:7d: 24:2c:43:1c:62:e1:26:1c:7b:03:c0:08:cf:b1:ee:08:d9:6a: 32:fe:f7:92:9f:08:fd:c3:36:2f:8d:a5:67:8a:36:9c:46:c0: cf:b2:ad:15 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBDTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 RkFDQjExMC8GA1UEBRMoNDAyRDFEMEJEOTFGNDM4MDJDN0EwRDcwNzM2MTg4QkVC QTBBMDgxMjAeFw0yNDEyMjcwNjEzNDRaFw0yNTAxMDMwNjEzNDRaMBgxFjAUBgNV BAMTDTY3NmU0NTk4LTYyZTYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCvTq2gErUIC5jTOiELlPOBmkAkaGtPQQemhiQcePPX+rB/pPeALAnG3N6mZiQ4 NoMux2YAFXDO+8Yzgn0rH0zppCALi/Ndk/cT6MJrFtQ1QfdHYF16yccVuBZJtFsW gpDCyeUXaTAec9xoAyuwW4tVLY7YLRg3MbNe3qMbBlX3PeOMy/n7xXORtUteBEaQ HVvnsxQ2Cpac5O5DLJDGJJYEsFLivj+ipzztGd9nS7Itju5Bky7W/riRotSEYbXr 0pU7R2+5eaaveZdOaTts5ni6KzR7CZJkr0fwoZmf/aQpQjSAXcY94Fd0juhLMed9 GrMElvuUFwkxAuOZs56Kae2BAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUqQNzuBCo KOL9umcKCGXR//7eEHswHwYDVR0jBBgwFoAUQC0dC9kfQ4Aseg1wc2GIvroKCBIw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTdGQUNCLzFDOTQ2QUYyQjQ2 NTExRUY5QkZCQUE2N0M0RjlBRTAyL1FDMGRDOWtmUTRBc2VnMXdjMkdJdnJvS0NC SS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvUUMwZEM5a2ZRNEFzZWcxd2MyR0l2cm9LQ0JJLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTdG QUNCLzFDOTQ2QUYyQjQ2NTExRUY5QkZCQUE2N0M0RjlBRTAyL1FDMGRDOWtmUTRB c2VnMXdjMkdJdnJvS0NCSS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAHO7jWkSpXVAQDiXa5faFmNr0bUqhx50nUNcKBgjeXHsSmYFgpNaYHyx DC44f0XSBJSe+pBYdcfW6tYS3oYth09gCZE1tbW83XpQ8bgwQD2SE+Y+IaZjSP/9 2Jd0FRF5JhqzZpC17h5OyzDJTN+pfEOuk0UcsgdMlbeB/HLnfipe8Pmk0XO/k6G1 0NPD2hQzM2+TolYBcuVfzQCR1N0Q263qslkA34MIMuMIzrKODtkYXjl9S7bKGR1m FY/Trs8572yF8Wheaaw/8vv0Mae6RKFwYyqlN//OfSQsQxxi4SYcewPACM+x7gjZ ajL+95KfCP3DNi+NpWeKNpxGwM+yrRU= -----END CERTIFICATE-----Generated at Fri Dec 27 07:43:25 2024 by rpki-client on console-ams.rpki-client.org