$ rpki-client -vvf rpki.apnic.net/member_repository/A918D0E6/D8ADD9423F3711EAA786434BC4F9AE02/dQWoa19PqlBUPSSMbwhUxQWu3A8.mft File: dQWoa19PqlBUPSSMbwhUxQWu3A8.mft (raw, json) Hash identifier: /Ye4tRQUt4Vxn8AcB/ER7BY/ZQT/myBtN4dJHEDrDNI= Subject key identifier: 60:E2:9F:7A:E2:93:FE:56:46:3E:E3:D4:DC:3D:06:01:A6:36:CB:20 Authority key identifier: 75:05:A8:6B:5F:4F:AA:50:54:3D:24:8C:6F:08:54:C5:05:AE:DC:0F Certificate issuer: /CN=A918D0E6/serialNumber=7505A86B5F4FAA50543D248C6F0854C505AEDC0F Certificate serial: 0AD4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dQWoa19PqlBUPSSMbwhUxQWu3A8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918D0E6/D8ADD9423F3711EAA786434BC4F9AE02/dQWoa19PqlBUPSSMbwhUxQWu3A8.mft Manifest number: 0AC6 Signing time: Fri 22 Nov 2024 19:12:21 +0000 Manifest this update: Fri 22 Nov 2024 19:12:21 +0000 Manifest next update: Fri 29 Nov 2024 19:12:21 +0000 Files and hashes: 1: dQWoa19PqlBUPSSMbwhUxQWu3A8.crl (hash: 2pksfqIU2vhTpfnGBo4I2+jYSrHCkb67y9TNxd7rT8U=) 2: 4B1D295E9EA211EB901A9532C4F9AE02.roa (hash: /xWesDsMi1pD+tn1de40Hq3CgHdzNliJuaUvah0mIOk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918D0E6/D8ADD9423F3711EAA786434BC4F9AE02/dQWoa19PqlBUPSSMbwhUxQWu3A8.crl rsync://rpki.apnic.net/member_repository/A918D0E6/D8ADD9423F3711EAA786434BC4F9AE02/dQWoa19PqlBUPSSMbwhUxQWu3A8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dQWoa19PqlBUPSSMbwhUxQWu3A8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 19:12:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2772 (0xad4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918D0E6/serialNumber=7505A86B5F4FAA50543D248C6F0854C505AEDC0F Validity Not Before: Nov 22 19:12:21 2024 GMT Not After : Nov 29 19:12:21 2024 GMT Subject: CN=6740d795-fa85 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:bd:2c:75:2e:32:ca:2e:48:6a:2b:8f:f0:96: 7d:d3:f9:d4:cd:16:f7:ee:5a:e3:47:c2:53:ec:a6: 96:9f:c5:2f:82:79:3b:7e:99:bc:7a:a5:9f:5a:2d: 95:a6:db:88:f3:99:7d:7d:84:ef:e1:00:76:eb:d2: d2:21:54:77:c7:b2:ac:1a:cf:ef:23:11:b4:66:6d: e7:9a:68:a6:fe:e2:8e:ea:cd:d7:a9:54:2e:6b:60: 7c:c1:f4:11:de:78:5b:57:cf:2f:38:2a:c7:04:c2: 6a:0b:73:81:df:fd:7f:0f:13:18:a3:ea:c7:06:c3: 5d:62:fe:f8:88:94:0c:71:04:b4:06:f5:ad:f2:2c: c4:9b:0b:94:4c:f1:12:34:ba:00:bd:40:b4:d1:4f: f1:90:96:3e:c7:c4:52:a2:ae:09:6c:1a:0b:ce:0b: 51:9c:f9:0e:d8:d8:43:52:2e:fc:60:b6:d7:4f:57: 8e:23:10:7f:d5:79:1a:f9:f2:ac:16:dc:5a:cb:1f: 00:ca:12:4b:d9:25:fd:67:7c:90:24:f2:65:55:91: 9e:a2:86:14:18:8c:10:22:37:86:08:dd:25:06:d6: c1:93:97:7e:f6:30:4b:f8:9e:6a:24:06:80:56:b4: d5:19:06:bd:fa:d4:ba:a6:48:ea:39:bc:b1:8b:5a: 84:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:E2:9F:7A:E2:93:FE:56:46:3E:E3:D4:DC:3D:06:01:A6:36:CB:20 X509v3 Authority Key Identifier: keyid:75:05:A8:6B:5F:4F:AA:50:54:3D:24:8C:6F:08:54:C5:05:AE:DC:0F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918D0E6/D8ADD9423F3711EAA786434BC4F9AE02/dQWoa19PqlBUPSSMbwhUxQWu3A8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dQWoa19PqlBUPSSMbwhUxQWu3A8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918D0E6/D8ADD9423F3711EAA786434BC4F9AE02/dQWoa19PqlBUPSSMbwhUxQWu3A8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 62:af:ef:e4:27:d4:dd:f2:fc:8f:5f:0f:80:bd:b6:65:56:85: 0e:b9:e9:02:3c:2b:71:49:1b:ee:5c:cc:4e:6b:5a:70:b3:48: 1b:28:20:b8:e2:5a:a7:77:26:bc:d1:3f:ad:32:4f:5c:d6:6d: 0c:30:b8:b1:e4:d0:9b:67:cc:c4:60:d3:37:7e:c5:38:e0:c4: e6:12:14:26:97:62:ea:f8:9a:d2:e7:11:cc:f0:68:29:b0:74: 2f:64:a8:6b:64:5b:88:6a:66:23:da:e5:e2:f7:8d:1b:2e:5e: a7:25:cb:5e:09:9e:29:07:14:02:d6:56:e5:35:ac:c6:1e:8c: ca:ca:49:ec:a9:33:99:3b:4d:0a:56:f8:b2:08:fe:02:47:91: e0:b1:e6:29:fb:63:6d:bf:28:74:78:0f:f4:c3:80:63:e0:55: cd:ba:04:6f:28:1d:1c:2a:69:10:b3:c4:22:20:71:4e:61:8c: 48:a4:75:a3:a9:8c:34:bf:53:ec:ce:83:9a:0e:e5:38:3c:a7: e5:5e:5b:07:ba:cd:f9:b6:9f:c6:97:26:b8:61:19:7b:cb:a6: cc:f2:9c:e5:20:23:1d:33:cc:ae:1c:b8:db:9e:c3:28:24:b2: 2f:4b:49:27:15:d7:2d:7f:e0:e5:1a:06:e8:63:bb:6b:da:c2: 1b:25:78:01 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCtQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEQwRTYxMTAvBgNVBAUTKDc1MDVBODZCNUY0RkFBNTA1NDNEMjQ4QzZGMDg1NEM1 MDVBRURDMEYwHhcNMjQxMTIyMTkxMjIxWhcNMjQxMTI5MTkxMjIxWjAYMRYwFAYD VQQDEw02NzQwZDc5NS1mYTg1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsb0sdS4yyi5IaiuP8JZ90/nUzRb37lrjR8JT7KaWn8Uvgnk7fpm8eqWfWi2V ptuI85l9fYTv4QB269LSIVR3x7KsGs/vIxG0Zm3nmmim/uKO6s3XqVQua2B8wfQR 3nhbV88vOCrHBMJqC3OB3/1/DxMYo+rHBsNdYv74iJQMcQS0BvWt8izEmwuUTPES NLoAvUC00U/xkJY+x8RSoq4JbBoLzgtRnPkO2NhDUi78YLbXT1eOIxB/1Xka+fKs Ftxayx8AyhJL2SX9Z3yQJPJlVZGeooYUGIwQIjeGCN0lBtbBk5d+9jBL+J5qJAaA VrTVGQa9+tS6pkjqObyxi1qEOwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGDin3ri k/5WRj7j1Nw9BgGmNssgMB8GA1UdIwQYMBaAFHUFqGtfT6pQVD0kjG8IVMUFrtwP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RDBFNi9EOEFERDk0MjNG MzcxMUVBQTc4NjQzNEJDNEY5QUUwMi9kUVdvYTE5UHFsQlVQU1NNYndoVXhRV3Uz QTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2RRV29hMTlQcWxCVVBTU01id2hVeFFXdTNBOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RDBFNi9EOEFERDk0MjNGMzcxMUVBQTc4NjQzNEJDNEY5QUUwMi9kUVdvYTE5UHFs QlVQU1NNYndoVXhRV3UzQTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBir+/kJ9Td8vyPXw+AvbZlVoUOuekCPCtxSRvuXMxOa1pws0gbKCC4 4lqndya80T+tMk9c1m0MMLix5NCbZ8zEYNM3fsU44MTmEhQml2Lq+JrS5xHM8Ggp sHQvZKhrZFuIamYj2uXi940bLl6nJcteCZ4pBxQC1lblNazGHozKyknsqTOZO00K VviyCP4CR5HgseYp+2Ntvyh0eA/0w4Bj4FXNugRvKB0cKmkQs8QiIHFOYYxIpHWj qYw0v1PszoOaDuU4PKflXlsHus35tp/Glya4YRl7y6bM8pzlICMdM8yuHLjbnsMo JLIvS0knFdctf+DlGgboY7tr2sIbJXgB -----END CERTIFICATE-----Generated at Fri Nov 22 22:14:34 2024 by rpki-client on console-ams.rpki-client.org