$ rpki-client -vvf rpki.apnic.net/member_repository/A919A909/209EDDCE2A3311EFBE9AA859C4F9AE02/kI2z-bdG9SC7uahMhT9pJsFeub0.mft File: kI2z-bdG9SC7uahMhT9pJsFeub0.mft (raw, json) Hash identifier: 9AqcBz3Slav239jfcRsoEQxyjtvLSOaOpNpskc2PCZc= Subject key identifier: 47:33:20:46:6F:1D:D5:29:60:AC:7B:92:67:67:39:D4:6F:92:2A:24 Authority key identifier: 90:8D:B3:F9:B7:46:F5:20:BB:B9:A8:4C:85:3F:69:26:C1:5E:B9:BD Certificate issuer: /CN=A919A909/serialNumber=908DB3F9B746F520BBB9A84C853F6926C15EB9BD Certificate serial: 5A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kI2z-bdG9SC7uahMhT9pJsFeub0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919A909/209EDDCE2A3311EFBE9AA859C4F9AE02/kI2z-bdG9SC7uahMhT9pJsFeub0.mft Manifest number: 58 Signing time: Mon 25 Nov 2024 05:06:35 +0000 Manifest this update: Mon 25 Nov 2024 05:06:35 +0000 Manifest next update: Mon 02 Dec 2024 05:06:35 +0000 Files and hashes: 1: kI2z-bdG9SC7uahMhT9pJsFeub0.crl (hash: wBJMa0I6jvS/PwcN4AovkYDjp7hFvwy/x9GHm84SbSU=) 2: 879152E62E4811EF929FE162C4F9AE02.roa (hash: 1IspOhl6gwbhdZvL5rloqYpEEE+IPoe5ali+fyL8EWw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919A909/209EDDCE2A3311EFBE9AA859C4F9AE02/kI2z-bdG9SC7uahMhT9pJsFeub0.crl rsync://rpki.apnic.net/member_repository/A919A909/209EDDCE2A3311EFBE9AA859C4F9AE02/kI2z-bdG9SC7uahMhT9pJsFeub0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kI2z-bdG9SC7uahMhT9pJsFeub0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 02 Dec 2024 04:55:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 90 (0x5a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919A909/serialNumber=908DB3F9B746F520BBB9A84C853F6926C15EB9BD Validity Not Before: Nov 25 05:06:35 2024 GMT Not After : Dec 2 05:06:35 2024 GMT Subject: CN=674405db-21f4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:29:ff:d7:66:2e:aa:ed:9e:cb:e1:92:2e:47: f3:1b:33:74:1b:f4:32:82:e5:c0:85:26:1b:4c:67: 15:b6:12:d4:98:dc:17:10:24:8c:34:a0:45:e3:23: 88:d6:7f:4c:71:74:18:79:6d:6a:3e:9b:1e:68:a3: 93:fc:0d:3b:30:5d:ce:f8:00:d0:ba:f7:b0:ee:a9: 85:3e:a8:67:0f:8b:cc:8b:32:c9:89:6e:f5:0f:50: 7e:05:f5:d8:c9:e4:df:ff:76:ce:e9:ff:92:a4:52: ed:67:89:78:2f:26:0b:08:6d:81:e9:7c:4a:68:17: 75:34:e7:0a:22:0c:89:2c:13:d9:cf:6e:97:2f:3c: fe:ab:96:4d:bd:2e:3f:23:ee:dc:f9:f3:67:53:6f: e8:c8:ec:a6:b8:00:b9:6f:94:fb:04:79:a9:14:f2: de:68:03:3f:0c:08:ca:1e:d5:0a:f4:aa:2c:13:fb: c4:f4:04:d0:33:d6:2f:46:cd:4c:e3:49:67:6e:bb: 5e:59:de:cb:0e:06:b4:5d:69:53:bd:6d:5d:ac:7e: 82:8e:34:70:6c:da:6b:b1:97:d2:70:86:e0:40:02: 17:f7:29:11:c1:57:d8:e1:87:d6:ed:cf:f8:26:b7: 2e:9e:c7:ca:53:27:2c:06:ef:9b:71:b4:f1:f2:53: f4:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:33:20:46:6F:1D:D5:29:60:AC:7B:92:67:67:39:D4:6F:92:2A:24 X509v3 Authority Key Identifier: keyid:90:8D:B3:F9:B7:46:F5:20:BB:B9:A8:4C:85:3F:69:26:C1:5E:B9:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919A909/209EDDCE2A3311EFBE9AA859C4F9AE02/kI2z-bdG9SC7uahMhT9pJsFeub0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kI2z-bdG9SC7uahMhT9pJsFeub0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919A909/209EDDCE2A3311EFBE9AA859C4F9AE02/kI2z-bdG9SC7uahMhT9pJsFeub0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 35:d6:7e:95:dc:d0:9c:34:74:cb:06:ad:62:91:24:3c:b3:3e: e8:ee:0e:5f:8e:d9:6d:ae:3b:4c:b8:43:3a:7b:6e:29:f1:ec: f7:0a:67:e4:77:ed:ac:d0:38:b8:8d:b0:be:e8:4c:f7:e5:87: da:29:a6:1a:39:ff:37:76:22:cb:f6:a0:14:2d:e2:68:53:cc: 9e:c0:e3:35:ac:40:07:f7:8b:59:cc:eb:42:f3:09:7a:45:5f: c2:ca:92:c7:45:31:a1:2e:53:db:ec:8f:aa:82:f5:74:3f:3d: 9c:1b:c0:d8:61:03:14:9e:fd:7d:62:b1:66:6f:dd:5b:16:3b: 53:dc:18:a7:b0:40:72:cb:4e:bf:3e:92:c3:73:b6:ba:f9:db: 32:aa:07:e1:54:c5:5c:77:88:2f:d9:95:78:63:4f:aa:bb:96: aa:77:43:d0:e3:91:ab:86:59:d1:a6:4f:e5:17:e0:fb:1f:3b: b0:08:ef:ab:5e:59:7e:85:66:59:7b:e9:d6:40:ae:0f:11:16: 30:c5:c9:1e:c6:9d:9d:12:9f:d1:86:53:5a:7d:32:12:e0:6c: 8a:de:01:1c:de:b6:25:2b:38:d3:60:bd:81:51:c8:9a:bd:14: 12:30:ac:f8:a5:df:7a:06:d6:47:3c:23:98:31:ee:f3:5a:45: e3:3b:ee:6a -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBWjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE5 QTkwOTExMC8GA1UEBRMoOTA4REIzRjlCNzQ2RjUyMEJCQjlBODRDODUzRjY5MjZD MTVFQjlCRDAeFw0yNDExMjUwNTA2MzVaFw0yNDEyMDIwNTA2MzVaMBgxFjAUBgNV BAMTDTY3NDQwNWRiLTIxZjQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDFKf/XZi6q7Z7L4ZIuR/MbM3Qb9DKC5cCFJhtMZxW2EtSY3BcQJIw0oEXjI4jW f0xxdBh5bWo+mx5oo5P8DTswXc74ANC697DuqYU+qGcPi8yLMsmJbvUPUH4F9djJ 5N//ds7p/5KkUu1niXgvJgsIbYHpfEpoF3U05woiDIksE9nPbpcvPP6rlk29Lj8j 7tz582dTb+jI7Ka4ALlvlPsEeakU8t5oAz8MCMoe1Qr0qiwT+8T0BNAz1i9GzUzj SWduu15Z3ssOBrRdaVO9bV2sfoKONHBs2muxl9JwhuBAAhf3KRHBV9jhh9btz/gm ty6ex8pTJywG75txtPHyU/StAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQURzMgRm8d 1SlgrHuSZ2c51G+SKiQwHwYDVR0jBBgwFoAUkI2z+bdG9SC7uahMhT9pJsFeub0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTlBOTA5LzIwOUVERENFMkEz MzExRUZCRTlBQTg1OUM0RjlBRTAyL2tJMnotYmRHOVNDN3VhaE1oVDlwSnNGZXVi MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIva0kyei1iZEc5U0M3dWFoTWhUOXBKc0ZldWIwLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTlB OTA5LzIwOUVERENFMkEzMzExRUZCRTlBQTg1OUM0RjlBRTAyL2tJMnotYmRHOVND N3VhaE1oVDlwSnNGZXViMC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBADXWfpXc0Jw0dMsGrWKRJDyzPujuDl+O2W2uO0y4Qzp7binx7PcKZ+R3 7azQOLiNsL7oTPflh9oppho5/zd2Isv2oBQt4mhTzJ7A4zWsQAf3i1nM60LzCXpF X8LKksdFMaEuU9vsj6qC9XQ/PZwbwNhhAxSe/X1isWZv3VsWO1PcGKewQHLLTr8+ ksNztrr52zKqB+FUxVx3iC/ZlXhjT6q7lqp3Q9DjkauGWdGmT+UX4PsfO7AI76te WX6FZll76dZArg8RFjDFyR7GnZ0Sn9GGU1p9MhLgbIreARzetiUrONNgvYFRyJq9 FBIwrPil33oG1kc8I5gx7vNaReM77mo= -----END CERTIFICATE-----Generated at Mon Nov 25 06:04:13 2024 by rpki-client on console-ams.rpki-client.org