$ rpki-client -vvf rpki.apnic.net/member_repository/A919C233/1FDAFD6243E611E8BC415F65C4F9AE02/28IYSbtMFwTSMZPEG3DGaxqWVi8.mft File: 28IYSbtMFwTSMZPEG3DGaxqWVi8.mft (raw, json) Hash identifier: vn+R9cDPxWozDl8DImifT4Wtz/1eg7Iw8u5GfKs4v2Q= Subject key identifier: 1D:F7:11:1F:D2:B7:5A:4A:FE:8F:D9:79:AB:07:F0:FE:22:2C:FE:D0 Authority key identifier: DB:C2:18:49:BB:4C:17:04:D2:31:93:C4:1B:70:C6:6B:1A:96:56:2F Certificate issuer: /CN=A919C233/serialNumber=DBC21849BB4C1704D23193C41B70C66B1A96562F Certificate serial: 14D9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/28IYSbtMFwTSMZPEG3DGaxqWVi8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919C233/1FDAFD6243E611E8BC415F65C4F9AE02/28IYSbtMFwTSMZPEG3DGaxqWVi8.mft Manifest number: 14D0 Signing time: Fri 22 Nov 2024 16:50:39 +0000 Manifest this update: Fri 22 Nov 2024 16:50:38 +0000 Manifest next update: Fri 29 Nov 2024 16:50:38 +0000 Files and hashes: 1: 28IYSbtMFwTSMZPEG3DGaxqWVi8.crl (hash: /HF5eo2s4JGzjuXgvmC55DdfmaBrG+FH7T4Del/+NpA=) 2: C355C10243E611E8843B4E66C4F9AE02.roa (hash: H1/wMzuuXXUoNuPK1c3O8xbMg0+A7svPlNNuYm9uqvk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919C233/1FDAFD6243E611E8BC415F65C4F9AE02/28IYSbtMFwTSMZPEG3DGaxqWVi8.crl rsync://rpki.apnic.net/member_repository/A919C233/1FDAFD6243E611E8BC415F65C4F9AE02/28IYSbtMFwTSMZPEG3DGaxqWVi8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/28IYSbtMFwTSMZPEG3DGaxqWVi8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 16:50:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5337 (0x14d9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919C233/serialNumber=DBC21849BB4C1704D23193C41B70C66B1A96562F Validity Not Before: Nov 22 16:50:38 2024 GMT Not After : Nov 29 16:50:38 2024 GMT Subject: CN=6740b65f-4316 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:54:b1:d2:8f:26:b9:92:06:39:37:45:32:6f: 46:08:1f:81:f1:4a:94:b1:dd:8b:56:dd:70:80:38: 86:f4:ee:70:b6:30:ef:15:52:13:23:22:ee:68:87: 95:a1:c1:3a:3b:7b:7e:7f:d1:dd:a2:3a:74:a8:aa: 77:02:cd:bc:4e:49:e3:8e:a0:88:e4:0e:42:63:1a: 8c:a0:34:80:29:c9:b1:d0:94:5e:c8:67:90:e0:c1: 2c:d6:41:8d:ad:89:f9:42:27:2e:7e:a2:aa:18:b1: 07:10:13:9d:35:dd:cb:dd:59:dd:48:54:54:4f:4c: cc:c2:26:09:2b:19:00:01:dd:17:5b:ea:73:25:5d: 10:a7:9d:a5:89:bb:a1:46:90:53:1f:29:1c:f4:e6: 6a:fe:1f:42:3a:0c:c7:5c:82:73:0c:99:70:5e:dc: 5f:0f:64:39:a9:e7:9b:5d:8d:30:6e:e2:f0:1f:a3: 5a:df:53:4b:2e:22:34:0c:30:55:69:6a:61:6f:a8: ec:1a:b1:4f:34:d1:a6:51:11:5f:6f:41:e6:1b:d3: 23:26:85:90:92:f5:b7:dc:55:40:43:24:18:b1:e0: a5:09:f4:c0:8c:63:c7:02:ff:d5:18:02:9e:01:9a: 45:f9:23:45:ed:80:56:02:7b:2e:f0:fc:66:05:38: 62:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:F7:11:1F:D2:B7:5A:4A:FE:8F:D9:79:AB:07:F0:FE:22:2C:FE:D0 X509v3 Authority Key Identifier: keyid:DB:C2:18:49:BB:4C:17:04:D2:31:93:C4:1B:70:C6:6B:1A:96:56:2F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919C233/1FDAFD6243E611E8BC415F65C4F9AE02/28IYSbtMFwTSMZPEG3DGaxqWVi8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/28IYSbtMFwTSMZPEG3DGaxqWVi8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919C233/1FDAFD6243E611E8BC415F65C4F9AE02/28IYSbtMFwTSMZPEG3DGaxqWVi8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b1:9f:8c:60:de:ca:5e:f8:7c:23:8b:fe:06:d8:0c:d7:b0:0c: 7f:5b:bd:bb:df:37:91:35:0a:4e:1d:bc:8f:bc:df:8a:58:f3: 68:b9:87:60:c5:4b:f3:64:f0:5e:97:f8:9a:9d:fb:af:35:39: 6e:1e:e7:a1:3e:83:95:d3:8e:f7:25:6b:70:94:e8:81:24:14: c3:57:d3:0f:19:3d:b2:f7:6c:8a:b1:98:ec:a6:ce:08:96:6f: 31:89:aa:0f:b0:b5:91:43:1b:8b:b6:42:e5:f4:5e:44:1f:2c: 2d:64:0f:e7:6c:e2:4c:6b:3d:3d:9e:21:ea:b0:5f:ea:33:2f: 1d:71:74:2b:cb:ab:07:02:3c:97:9b:cb:29:b4:1e:0e:ca:78: a7:55:0d:bc:27:3e:02:47:59:4f:c0:a6:e9:b5:0f:54:80:e3: f1:73:b9:3b:d6:d7:c6:00:37:37:06:52:ca:d8:da:cc:f0:14: 08:ba:69:75:7d:e9:23:a7:1a:d4:0c:7f:74:b7:77:1a:ad:12: 4a:be:f9:ad:31:19:e4:a9:46:60:2b:18:24:d0:0c:80:59:88: ff:10:51:0e:3e:ad:16:0b:b4:2d:7a:e8:17:e6:cc:52:92:68: 1d:da:76:a9:be:d7:40:00:fa:73:5e:42:06:6d:b6:33:0b:86: ef:e2:ea:5f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFNkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUMyMzMxMTAvBgNVBAUTKERCQzIxODQ5QkI0QzE3MDREMjMxOTNDNDFCNzBDNjZC MUE5NjU2MkYwHhcNMjQxMTIyMTY1MDM4WhcNMjQxMTI5MTY1MDM4WjAYMRYwFAYD VQQDEw02NzQwYjY1Zi00MzE2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxlSx0o8muZIGOTdFMm9GCB+B8UqUsd2LVt1wgDiG9O5wtjDvFVITIyLuaIeV ocE6O3t+f9Hdojp0qKp3As28TknjjqCI5A5CYxqMoDSAKcmx0JReyGeQ4MEs1kGN rYn5QicufqKqGLEHEBOdNd3L3VndSFRUT0zMwiYJKxkAAd0XW+pzJV0Qp52libuh RpBTHykc9OZq/h9COgzHXIJzDJlwXtxfD2Q5qeebXY0wbuLwH6Na31NLLiI0DDBV aWphb6jsGrFPNNGmURFfb0HmG9MjJoWQkvW33FVAQyQYseClCfTAjGPHAv/VGAKe AZpF+SNF7YBWAnsu8PxmBThiIQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB33ER/S t1pK/o/ZeasH8P4iLP7QMB8GA1UdIwQYMBaAFNvCGEm7TBcE0jGTxBtwxmsallYv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QzIzMy8xRkRBRkQ2MjQz RTYxMUU4QkM0MTVGNjVDNEY5QUUwMi8yOElZU2J0TUZ3VFNNWlBFRzNER2F4cVdW aTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzI4SVlTYnRNRndUU01aUEVHM0RHYXhxV1ZpOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 QzIzMy8xRkRBRkQ2MjQzRTYxMUU4QkM0MTVGNjVDNEY5QUUwMi8yOElZU2J0TUZ3 VFNNWlBFRzNER2F4cVdWaTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCxn4xg3spe+Hwji/4G2AzXsAx/W7273zeRNQpOHbyPvN+KWPNouYdg xUvzZPBel/ianfuvNTluHuehPoOV0473JWtwlOiBJBTDV9MPGT2y92yKsZjsps4I lm8xiaoPsLWRQxuLtkLl9F5EHywtZA/nbOJMaz09niHqsF/qMy8dcXQry6sHAjyX m8sptB4OyninVQ28Jz4CR1lPwKbptQ9UgOPxc7k71tfGADc3BlLK2NrM8BQIuml1 fekjpxrUDH90t3carRJKvvmtMRnkqUZgKxgk0AyAWYj/EFEOPq0WC7QteugX5sxS kmgd2napvtdAAPpzXkIGbbYzC4bv4upf -----END CERTIFICATE-----Generated at Fri Nov 22 19:50:13 2024 by rpki-client on console-ams.rpki-client.org