$ rpki-client -vvf rpki.apnic.net/member_repository/A9195F7B/A131B394BB3911EEA655417EC4F9AE02/iQsd7-iNWRlrzHtlJoxi6G5U1G0.mft File: iQsd7-iNWRlrzHtlJoxi6G5U1G0.mft (raw, json) Hash identifier: h/Oo1hD8YwXpSXX90hqJdrivBvn69T7ecCTkHDaGLv0= Subject key identifier: F0:E5:B2:B3:66:41:6B:66:3A:1A:91:98:B8:1F:37:6F:9A:D8:80:9B Authority key identifier: 89:0B:1D:EF:E8:8D:59:19:6B:CC:7B:65:26:8C:62:E8:6E:54:D4:6D Certificate issuer: /CN=A9195F7B/serialNumber=890B1DEFE88D59196BCC7B65268C62E86E54D46D Certificate serial: B5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iQsd7-iNWRlrzHtlJoxi6G5U1G0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9195F7B/A131B394BB3911EEA655417EC4F9AE02/iQsd7-iNWRlrzHtlJoxi6G5U1G0.mft Manifest number: A9 Signing time: Thu 21 Nov 2024 04:28:31 +0000 Manifest this update: Thu 21 Nov 2024 04:28:30 +0000 Manifest next update: Thu 28 Nov 2024 04:28:30 +0000 Files and hashes: 1: iQsd7-iNWRlrzHtlJoxi6G5U1G0.crl (hash: aLSpylf8CTGSVDBjSohIabOSMGRLMAPtzKRTa3wYj54=) 2: 87662556555511EF88D9F680C4F9AE02.roa (hash: F2zRfngIy1XKfWbRP4qGhGAXZ04rgb/bhy6u2J8p1xM=) 3: F406C3F26AE311EF82D7860FC4F9AE02.roa (hash: u+nDAmTsN9U/qRK2Mim5xbq4P4OFqXQ2M9J0CfEiZDU=) 4: D7FEF354562111EFA7B3F00AC4F9AE02.roa (hash: MRsE6FySGursbE9bMMfyMXoRUt/2zkb9g3aNfB/OTgo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9195F7B/A131B394BB3911EEA655417EC4F9AE02/iQsd7-iNWRlrzHtlJoxi6G5U1G0.crl rsync://rpki.apnic.net/member_repository/A9195F7B/A131B394BB3911EEA655417EC4F9AE02/iQsd7-iNWRlrzHtlJoxi6G5U1G0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iQsd7-iNWRlrzHtlJoxi6G5U1G0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 04:28:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 181 (0xb5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9195F7B/serialNumber=890B1DEFE88D59196BCC7B65268C62E86E54D46D Validity Not Before: Nov 21 04:28:30 2024 GMT Not After : Nov 28 04:28:30 2024 GMT Subject: CN=673eb6ef-a969 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:03:0b:6f:c5:7c:2e:f8:5c:a4:f1:a1:b8:8f: 0e:f4:bf:c3:49:09:27:52:0f:83:ca:23:59:a7:73: b5:7e:1b:d5:9c:61:fa:77:88:08:a1:3c:4f:ff:3f: 6b:a6:77:f9:c8:54:2c:49:93:4d:f3:99:0a:d4:49: fc:5a:b7:55:6e:63:9c:4a:35:af:53:1d:da:bb:cb: 3a:3c:6c:ed:aa:5d:aa:f8:70:d9:9a:92:93:e0:7a: 40:a3:c1:55:e8:49:1e:13:7e:89:4f:88:04:b9:a0: c6:d9:93:4a:b6:5e:e7:63:75:81:9d:13:2b:45:87: 1b:b1:a9:84:33:67:80:3a:3e:ea:41:77:65:19:fd: 8e:d5:f6:2b:77:56:0d:c0:23:53:33:ce:33:53:42: 10:25:55:22:5f:4b:60:d4:38:3f:70:67:38:fc:70: 77:a6:c7:49:f2:ec:9f:a9:8c:0a:c6:d2:4d:b2:e3: 84:f1:f1:f1:70:17:88:f9:04:c9:d5:a0:e1:a7:67: df:81:3f:a2:35:ba:b1:20:22:3f:d0:7e:16:1f:5e: 75:bc:7a:39:fb:82:1d:cc:bf:47:4e:40:04:13:18: 65:b2:a5:f9:83:73:d6:52:14:2e:9d:de:a2:20:bc: a5:b7:2c:2a:31:8b:58:e5:d1:7d:28:5a:90:38:40: dd:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:E5:B2:B3:66:41:6B:66:3A:1A:91:98:B8:1F:37:6F:9A:D8:80:9B X509v3 Authority Key Identifier: keyid:89:0B:1D:EF:E8:8D:59:19:6B:CC:7B:65:26:8C:62:E8:6E:54:D4:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9195F7B/A131B394BB3911EEA655417EC4F9AE02/iQsd7-iNWRlrzHtlJoxi6G5U1G0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iQsd7-iNWRlrzHtlJoxi6G5U1G0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9195F7B/A131B394BB3911EEA655417EC4F9AE02/iQsd7-iNWRlrzHtlJoxi6G5U1G0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0e:99:60:8f:90:41:0e:dd:16:11:7c:a7:89:61:19:dc:f2:16: b7:94:84:7a:f6:df:21:3d:d3:1f:e0:41:ad:51:85:c5:e7:55: 44:b3:32:e4:3e:cf:0e:ee:e3:95:98:a6:95:c8:eb:77:2d:d0: a4:8f:18:50:13:ab:09:f4:33:3a:2c:27:85:a8:dd:28:f6:67: 2d:86:f8:5e:c1:8c:68:62:a3:0a:a7:03:e7:3e:4b:7e:5d:2a: e1:11:65:9b:78:12:88:b2:7c:ce:65:53:6c:65:08:d0:1d:b2: 2a:21:2c:95:89:c6:c1:0a:27:da:20:23:ae:c5:6c:45:23:f6: 03:0b:9b:07:73:19:51:f2:81:fa:3e:79:8a:50:1e:0e:a7:3d: 3f:40:59:d1:b6:45:1f:68:97:a0:7e:72:66:53:9e:e2:92:aa: 16:2b:a3:c8:20:8d:2f:3b:ab:d4:93:39:4e:0a:f8:0e:48:93: 53:72:9d:3f:4a:92:0d:30:46:53:3a:ee:5d:fa:95:34:2f:5b: c8:b6:8b:47:81:0d:c7:1e:bc:76:c6:a8:0d:70:6a:40:e3:a9: cc:a2:1b:28:88:e7:91:c4:1a:60:3c:0f:d9:5f:34:6a:1e:9d: 66:39:fa:ac:4b:f3:2c:13:1f:3d:e7:37:6e:4a:b5:9a:6b:77: 35:5e:1a:c0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICALUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTVGN0IxMTAvBgNVBAUTKDg5MEIxREVGRTg4RDU5MTk2QkNDN0I2NTI2OEM2MkU4 NkU1NEQ0NkQwHhcNMjQxMTIxMDQyODMwWhcNMjQxMTI4MDQyODMwWjAYMRYwFAYD VQQDEw02NzNlYjZlZi1hOTY5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8QMLb8V8LvhcpPGhuI8O9L/DSQknUg+DyiNZp3O1fhvVnGH6d4gIoTxP/z9r pnf5yFQsSZNN85kK1En8WrdVbmOcSjWvUx3au8s6PGztql2q+HDZmpKT4HpAo8FV 6EkeE36JT4gEuaDG2ZNKtl7nY3WBnRMrRYcbsamEM2eAOj7qQXdlGf2O1fYrd1YN wCNTM84zU0IQJVUiX0tg1Dg/cGc4/HB3psdJ8uyfqYwKxtJNsuOE8fHxcBeI+QTJ 1aDhp2ffgT+iNbqxICI/0H4WH151vHo5+4IdzL9HTkAEExhlsqX5g3PWUhQund6i ILyltywqMYtY5dF9KFqQOEDdkwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPDlsrNm QWtmOhqRmLgfN2+a2ICbMB8GA1UdIwQYMBaAFIkLHe/ojVkZa8x7ZSaMYuhuVNRt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NUY3Qi9BMTMxQjM5NEJC MzkxMUVFQTY1NTQxN0VDNEY5QUUwMi9pUXNkNy1pTldSbHJ6SHRsSm94aTZHNVUx RzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lRc2Q3LWlOV1JscnpIdGxKb3hpNkc1VTFHMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NUY3Qi9BMTMxQjM5NEJCMzkxMUVFQTY1NTQxN0VDNEY5QUUwMi9pUXNkNy1pTldS bHJ6SHRsSm94aTZHNVUxRzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAOmWCPkEEO3RYRfKeJYRnc8ha3lIR69t8hPdMf4EGtUYXF51VEszLk Ps8O7uOVmKaVyOt3LdCkjxhQE6sJ9DM6LCeFqN0o9mcthvhewYxoYqMKpwPnPkt+ XSrhEWWbeBKIsnzOZVNsZQjQHbIqISyVicbBCifaICOuxWxFI/YDC5sHcxlR8oH6 PnmKUB4Opz0/QFnRtkUfaJegfnJmU57ikqoWK6PIII0vO6vUkzlOCvgOSJNTcp0/ SpINMEZTOu5d+pU0L1vItotHgQ3HHrx2xqgNcGpA46nMohsoiOeRxBpgPA/ZXzRq Hp1mOfqsS/MsEx895zduSrWaa3c1XhrA -----END CERTIFICATE-----Generated at Thu Nov 21 05:37:13 2024 by rpki-client on console-ams.rpki-client.org