$ rpki-client -vvf rpki.apnic.net/member_repository/A918E20E/23AAD98E1FC811EA84594F5EC4F9AE02/r2oY2zoHHvGMylvos1Qz31RPD7I.mft File: r2oY2zoHHvGMylvos1Qz31RPD7I.mft (raw, json) Hash identifier: zboAvuPaVZlqeI3fqzjpyYKZyc344wR2DE+TBdttNI4= Subject key identifier: E8:3D:E4:E9:04:15:8E:6E:FE:4A:85:D3:98:1B:BE:78:15:32:8F:C5 Authority key identifier: AF:6A:18:DB:3A:07:1E:F1:8C:CA:5B:E8:B3:54:33:DF:54:4F:0F:B2 Certificate issuer: /CN=A918E20E/serialNumber=AF6A18DB3A071EF18CCA5BE8B35433DF544F0FB2 Certificate serial: 0B5D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r2oY2zoHHvGMylvos1Qz31RPD7I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918E20E/23AAD98E1FC811EA84594F5EC4F9AE02/r2oY2zoHHvGMylvos1Qz31RPD7I.mft Manifest number: 0B57 Signing time: Fri 22 Nov 2024 18:53:44 +0000 Manifest this update: Fri 22 Nov 2024 18:53:44 +0000 Manifest next update: Fri 29 Nov 2024 18:53:44 +0000 Files and hashes: 1: r2oY2zoHHvGMylvos1Qz31RPD7I.crl (hash: 5orfcFLe3Or7hVDTDeiWa4wGwjOwp6kd0bWnTFr4G8Q=) 2: BFA3B5F81FC911EA8CF04E61C4F9AE02.roa (hash: tRDPOuysTM3j6RUChVc/lZ1Ir+BGvYj0vPYVhGcTQNo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918E20E/23AAD98E1FC811EA84594F5EC4F9AE02/r2oY2zoHHvGMylvos1Qz31RPD7I.crl rsync://rpki.apnic.net/member_repository/A918E20E/23AAD98E1FC811EA84594F5EC4F9AE02/r2oY2zoHHvGMylvos1Qz31RPD7I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r2oY2zoHHvGMylvos1Qz31RPD7I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 18:50:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2909 (0xb5d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918E20E/serialNumber=AF6A18DB3A071EF18CCA5BE8B35433DF544F0FB2 Validity Not Before: Nov 22 18:53:44 2024 GMT Not After : Nov 29 18:53:44 2024 GMT Subject: CN=6740d338-a042 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:f7:f0:86:c2:13:5e:39:8c:dd:ef:cd:d3:44: 1e:8f:97:83:cb:32:c5:22:e8:16:16:cc:3e:a0:60: a8:c0:64:21:f3:48:47:50:27:cc:6d:97:3f:02:45: d0:eb:92:e3:8d:7a:c3:46:6d:cd:28:09:a0:3f:f6: f9:15:d1:a9:d3:71:a7:53:9e:8b:c9:c2:91:26:41: fe:39:9f:6a:6c:b5:6c:18:f9:96:73:49:55:f3:80: c9:34:d6:35:fe:c8:2d:81:7b:db:97:a0:42:e5:4b: a6:54:38:d4:7b:f1:cd:8d:36:c9:46:b4:3c:c3:f2: ae:fc:1a:dd:77:1f:bb:de:5c:bd:af:37:a1:80:18: 8d:86:18:4b:c5:f7:8c:06:4b:8f:4a:20:24:bc:80: 68:83:01:2f:bb:dc:a8:4b:5e:d9:4a:56:4d:50:0f: 7d:f9:f0:ce:20:77:54:e4:07:d3:0b:0d:da:2a:66: 3a:61:cb:48:94:81:f9:5c:32:87:b1:5b:fd:4a:e8: de:3c:ef:9f:4e:7a:25:f9:77:cf:89:40:a9:47:9c: 41:49:f6:bf:87:ad:cf:0d:c4:b6:b1:35:10:61:6c: 98:52:35:fb:72:58:a3:a9:8c:cc:ea:87:1d:04:68: f8:7f:a9:d4:6c:56:6b:f6:e5:ac:4f:6f:6d:77:96: 87:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:3D:E4:E9:04:15:8E:6E:FE:4A:85:D3:98:1B:BE:78:15:32:8F:C5 X509v3 Authority Key Identifier: keyid:AF:6A:18:DB:3A:07:1E:F1:8C:CA:5B:E8:B3:54:33:DF:54:4F:0F:B2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918E20E/23AAD98E1FC811EA84594F5EC4F9AE02/r2oY2zoHHvGMylvos1Qz31RPD7I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r2oY2zoHHvGMylvos1Qz31RPD7I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918E20E/23AAD98E1FC811EA84594F5EC4F9AE02/r2oY2zoHHvGMylvos1Qz31RPD7I.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 72:fa:c8:5a:1c:90:21:7f:24:30:49:59:5e:e9:c5:a0:63:23: bd:74:0c:aa:34:4e:ff:c7:2c:f4:2c:2f:73:82:2b:d7:03:c9: a6:54:da:6b:7a:c7:6a:43:9d:8a:fc:a3:d4:62:98:7a:a4:92: 86:0d:db:5b:4c:2c:41:40:87:75:82:75:66:d5:7f:7f:a4:13: dd:c2:44:3b:86:28:1f:c0:4e:4a:7f:62:d0:be:38:90:b8:31: 8a:13:db:ab:30:4c:46:f0:38:31:a9:a3:d3:22:64:7d:e3:66: 6f:7e:38:89:83:21:aa:58:ba:bc:72:72:c6:fe:ec:8a:a9:1a: 27:4c:1f:c7:44:3c:aa:89:77:b1:1b:4e:97:03:9b:da:1d:b7: 4a:67:c0:78:b0:61:c6:f7:af:c2:b5:7c:2e:b5:9e:49:c6:77: b5:d4:ee:6a:3d:4c:83:fc:97:38:6f:ab:52:dd:7e:b3:44:71: e2:c3:48:2e:c2:b3:ed:9b:aa:98:03:ab:81:af:21:7b:df:8e: 79:57:2b:a7:69:59:bd:f9:63:9a:5d:4a:bc:5b:09:f7:a0:db: 16:45:66:4e:aa:7e:b5:cf:e9:d8:4d:5d:38:ce:9f:d7:ac:3e: b0:f9:35:f8:ad:ab:72:0c:a8:39:f3:ce:6f:89:69:38:31:21: 8d:75:72:1b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC10wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEUyMEUxMTAvBgNVBAUTKEFGNkExOERCM0EwNzFFRjE4Q0NBNUJFOEIzNTQzM0RG NTQ0RjBGQjIwHhcNMjQxMTIyMTg1MzQ0WhcNMjQxMTI5MTg1MzQ0WjAYMRYwFAYD VQQDEw02NzQwZDMzOC1hMDQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx/fwhsITXjmM3e/N00Qej5eDyzLFIugWFsw+oGCowGQh80hHUCfMbZc/AkXQ 65LjjXrDRm3NKAmgP/b5FdGp03GnU56LycKRJkH+OZ9qbLVsGPmWc0lV84DJNNY1 /sgtgXvbl6BC5UumVDjUe/HNjTbJRrQ8w/Ku/Brddx+73ly9rzehgBiNhhhLxfeM BkuPSiAkvIBogwEvu9yoS17ZSlZNUA99+fDOIHdU5AfTCw3aKmY6YctIlIH5XDKH sVv9SujePO+fTnol+XfPiUCpR5xBSfa/h63PDcS2sTUQYWyYUjX7clijqYzM6ocd BGj4f6nUbFZr9uWsT29td5aHRQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOg95OkE FY5u/kqF05gbvngVMo/FMB8GA1UdIwQYMBaAFK9qGNs6Bx7xjMpb6LNUM99UTw+y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RTIwRS8yM0FBRDk4RTFG QzgxMUVBODQ1OTRGNUVDNEY5QUUwMi9yMm9ZMnpvSEh2R015bHZvczFRejMxUlBE N0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3Iyb1kyem9ISHZHTXlsdm9zMVF6MzFSUEQ3SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RTIwRS8yM0FBRDk4RTFGQzgxMUVBODQ1OTRGNUVDNEY5QUUwMi9yMm9ZMnpvSEh2 R015bHZvczFRejMxUlBEN0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBy+shaHJAhfyQwSVle6cWgYyO9dAyqNE7/xyz0LC9zgivXA8mmVNpr esdqQ52K/KPUYph6pJKGDdtbTCxBQId1gnVm1X9/pBPdwkQ7higfwE5Kf2LQvjiQ uDGKE9urMExG8DgxqaPTImR942ZvfjiJgyGqWLq8cnLG/uyKqRonTB/HRDyqiXex G06XA5vaHbdKZ8B4sGHG96/CtXwutZ5Jxne11O5qPUyD/Jc4b6tS3X6zRHHiw0gu wrPtm6qYA6uBryF73455VyunaVm9+WOaXUq8Wwn3oNsWRWZOqn61z+nYTV04zp/X rD6w+TX4ratyDKg5885viWk4MSGNdXIb -----END CERTIFICATE-----Generated at Fri Nov 22 19:45:00 2024 by rpki-client on console-fra.rpki-client.org