$ rpki-client -vvf rpki.apnic.net/member_repository/A91850AD/60EBE1AC643411EF842FC620C4F9AE02/D2tHILCjVyLYXzRG79R0C9NBg04.mft File: D2tHILCjVyLYXzRG79R0C9NBg04.mft (raw, json) Hash identifier: 6WGKOKTQIWsQtuu/Mi6qJxQ9NAWi9z+8qM5o0w9ssBQ= Subject key identifier: FF:93:C9:B5:42:41:FC:03:D4:09:1A:C3:7C:56:FB:87:B4:FD:BB:50 Authority key identifier: 0F:6B:47:20:B0:A3:57:22:D8:5F:34:46:EF:D4:74:0B:D3:41:83:4E Certificate issuer: /CN=A91850AD/serialNumber=0F6B4720B0A35722D85F3446EFD4740BD341834E Certificate serial: 20 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/D2tHILCjVyLYXzRG79R0C9NBg04.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91850AD/60EBE1AC643411EF842FC620C4F9AE02/D2tHILCjVyLYXzRG79R0C9NBg04.mft Manifest number: 1F Signing time: Wed 23 Oct 2024 06:32:08 +0000 Manifest this update: Wed 23 Oct 2024 06:32:08 +0000 Manifest next update: Wed 30 Oct 2024 06:32:07 +0000 Files and hashes: 1: D2tHILCjVyLYXzRG79R0C9NBg04.crl (hash: qY5eubT7AbJpQRcGA0luCgfZDWADgOgy8RksAQYEco8=) 2: CD1FB5C2643611EFA2C41948C4F9AE02.roa (hash: 2LzL+Qzx3p8kIBRv0QRWzi2huUwOzt6OF9O+pNxeoDc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91850AD/60EBE1AC643411EF842FC620C4F9AE02/D2tHILCjVyLYXzRG79R0C9NBg04.crl rsync://rpki.apnic.net/member_repository/A91850AD/60EBE1AC643411EF842FC620C4F9AE02/D2tHILCjVyLYXzRG79R0C9NBg04.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/D2tHILCjVyLYXzRG79R0C9NBg04.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 30 Oct 2024 02:50:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 32 (0x20) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91850AD/serialNumber=0F6B4720B0A35722D85F3446EFD4740BD341834E Validity Not Before: Oct 23 06:32:08 2024 GMT Not After : Oct 30 06:32:07 2024 GMT Subject: CN=67189868-6376 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:75:1c:d0:f9:7a:c1:8b:6d:9b:14:71:e3:66: a4:d2:70:92:cc:ea:a7:f7:0c:ce:5a:72:fe:b8:b7: 90:ff:44:cb:3a:e0:10:d9:6c:0a:8d:b0:1e:b9:aa: ba:04:3d:9d:e2:75:5b:3b:dd:d6:96:76:1a:ed:06: 2a:af:1e:16:26:ae:b6:ce:82:2a:23:c2:79:ee:05: 19:c7:2e:d1:b5:c4:ad:3a:a0:f4:c3:40:49:1e:05: a8:98:5c:2b:f7:bd:e2:e8:ab:c7:ac:69:10:df:5b: 50:ee:0b:8e:d7:ec:74:af:1d:e5:90:fd:b2:35:6f: c5:bf:90:8b:5e:83:35:c2:6a:d4:76:d9:16:98:5e: 55:55:1d:c8:86:54:d5:21:56:5b:9c:65:7e:f3:6c: f0:6d:b5:5e:91:f3:ae:9f:d7:f2:c1:3e:0b:5f:54: eb:04:71:c0:3d:37:fe:15:f4:be:1c:cc:78:54:3a: 20:cc:c7:e4:3f:c3:33:84:7b:43:fb:1d:37:bb:09: 70:2e:83:90:04:73:83:f8:1b:f8:d0:a2:53:0f:e8: 4e:1e:3c:42:ac:fd:4b:18:b5:fb:86:fb:a1:69:d4: 57:4a:42:e0:26:52:77:6d:3c:97:83:4c:7e:7d:37: 4c:5e:ba:c0:85:13:21:42:ed:8f:d1:80:ed:04:f4: 37:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:93:C9:B5:42:41:FC:03:D4:09:1A:C3:7C:56:FB:87:B4:FD:BB:50 X509v3 Authority Key Identifier: keyid:0F:6B:47:20:B0:A3:57:22:D8:5F:34:46:EF:D4:74:0B:D3:41:83:4E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91850AD/60EBE1AC643411EF842FC620C4F9AE02/D2tHILCjVyLYXzRG79R0C9NBg04.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/D2tHILCjVyLYXzRG79R0C9NBg04.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91850AD/60EBE1AC643411EF842FC620C4F9AE02/D2tHILCjVyLYXzRG79R0C9NBg04.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 63:94:f2:c5:1b:1d:d1:7c:28:58:da:17:24:45:1a:af:94:09: c1:a2:49:9b:f7:1b:39:a6:01:78:40:9c:d9:7c:ae:2b:b8:e0: 6a:bb:b9:54:a9:47:ee:de:07:b3:fc:e5:e4:59:bb:e3:00:01: 17:ff:ca:84:b0:20:f3:fe:09:ef:89:ae:48:16:8e:5c:42:a8: 4c:a2:ba:a0:07:09:b9:0f:e6:ad:a6:6c:47:b6:01:d7:ca:29: aa:dc:42:26:be:a9:ac:d3:29:c4:47:4f:ce:12:3c:9b:91:7e: 45:b8:5f:f3:d0:a7:2d:f6:ae:5f:1e:4f:0c:5b:e6:f5:ca:69: 4b:8b:52:49:f6:9f:a5:ad:b2:97:3b:c8:57:59:ef:35:cb:84: 8b:c3:3a:65:fe:ab:2a:66:b9:77:56:40:fa:78:01:96:1e:e4: d5:d5:37:f7:58:b0:4d:27:c5:c3:2d:68:32:51:b1:d2:30:fa: 5d:12:1e:da:1d:6b:bb:f9:25:c7:77:32:26:68:85:1e:4d:85: 45:38:f5:ff:77:ac:28:5e:3f:f4:78:92:fd:17:b5:92:54:8a: e6:3d:ca:6b:8f:88:44:1e:e2:ec:1e:09:e0:e3:55:5f:85:3b: 21:99:d2:4c:e8:43:e5:29:e3:df:5d:e3:df:f2:74:99:58:1d: 72:41:ac:f9 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBIDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE4 NTBBRDExMC8GA1UEBRMoMEY2QjQ3MjBCMEEzNTcyMkQ4NUYzNDQ2RUZENDc0MEJE MzQxODM0RTAeFw0yNDEwMjMwNjMyMDhaFw0yNDEwMzAwNjMyMDdaMBgxFjAUBgNV BAMTDTY3MTg5ODY4LTYzNzYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDxdRzQ+XrBi22bFHHjZqTScJLM6qf3DM5acv64t5D/RMs64BDZbAqNsB65qroE PZ3idVs73daWdhrtBiqvHhYmrrbOgiojwnnuBRnHLtG1xK06oPTDQEkeBaiYXCv3 veLoq8esaRDfW1DuC47X7HSvHeWQ/bI1b8W/kItegzXCatR22RaYXlVVHciGVNUh VlucZX7zbPBttV6R866f1/LBPgtfVOsEccA9N/4V9L4czHhUOiDMx+Q/wzOEe0P7 HTe7CXAug5AEc4P4G/jQolMP6E4ePEKs/UsYtfuG+6Fp1FdKQuAmUndtPJeDTH59 N0xeusCFEyFC7Y/RgO0E9DdBAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU/5PJtUJB /APUCRrDfFb7h7T9u1AwHwYDVR0jBBgwFoAUD2tHILCjVyLYXzRG79R0C9NBg04w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTg1MEFELzYwRUJFMUFDNjQz NDExRUY4NDJGQzYyMEM0RjlBRTAyL0QydEhJTENqVnlMWVh6Ukc3OVIwQzlOQmcw NC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvRDJ0SElMQ2pWeUxZWHpSRzc5UjBDOU5CZzA0LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTg1 MEFELzYwRUJFMUFDNjQzNDExRUY4NDJGQzYyMEM0RjlBRTAyL0QydEhJTENqVnlM WVh6Ukc3OVIwQzlOQmcwNC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAGOU8sUbHdF8KFjaFyRFGq+UCcGiSZv3GzmmAXhAnNl8riu44Gq7uVSp R+7eB7P85eRZu+MAARf/yoSwIPP+Ce+JrkgWjlxCqEyiuqAHCbkP5q2mbEe2AdfK KarcQia+qazTKcRHT84SPJuRfkW4X/PQpy32rl8eTwxb5vXKaUuLUkn2n6Wtspc7 yFdZ7zXLhIvDOmX+qypmuXdWQPp4AZYe5NXVN/dYsE0nxcMtaDJRsdIw+l0SHtod a7v5Jcd3MiZohR5NhUU49f93rCheP/R4kv0XtZJUiuY9ymuPiEQe4uweCeDjVV+F OyGZ0kzoQ+Up499d49/ydJlYHXJBrPk= -----END CERTIFICATE-----Generated at Wed Oct 23 07:45:56 2024 by rpki-client on console-ams.rpki-client.org