$ rpki-client -vvf rpki.apnic.net/member_repository/A919D1D9/6A39A0DEC33811E98048FB7DC4F9AE02/qAw2f5IilG-YuDa86PbQA2SIHHw.mft File: qAw2f5IilG-YuDa86PbQA2SIHHw.mft (raw, json) Hash identifier: ug8vFawGbA+hTZMFZCHGwn8nt2JhjKtkk48Lt6xsHxI= Subject key identifier: AB:E2:11:DA:27:F3:B7:67:52:CF:8C:DC:55:B3:EE:BD:3B:F9:03:53 Authority key identifier: A8:0C:36:7F:92:22:94:6F:98:B8:36:BC:E8:F6:D0:03:64:88:1C:7C Certificate issuer: /CN=A919D1D9/serialNumber=A80C367F9222946F98B836BCE8F6D00364881C7C Certificate serial: 0D72 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qAw2f5IilG-YuDa86PbQA2SIHHw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919D1D9/6A39A0DEC33811E98048FB7DC4F9AE02/qAw2f5IilG-YuDa86PbQA2SIHHw.mft Manifest number: 0D51 Signing time: Fri 22 Nov 2024 17:57:14 +0000 Manifest this update: Fri 22 Nov 2024 17:57:13 +0000 Manifest next update: Fri 29 Nov 2024 17:57:13 +0000 Files and hashes: 1: qAw2f5IilG-YuDa86PbQA2SIHHw.crl (hash: SWzyWsPv7nEVrgEFWMbl8i0W74xo274zQGxqc0XuJpI=) 2: C2ED1EEE617111EBBC678459C4F9AE02.roa (hash: fGrUYT1O2dItK4fIwYgIfLvCsJmlCIF/jYJCGwsc26A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919D1D9/6A39A0DEC33811E98048FB7DC4F9AE02/qAw2f5IilG-YuDa86PbQA2SIHHw.crl rsync://rpki.apnic.net/member_repository/A919D1D9/6A39A0DEC33811E98048FB7DC4F9AE02/qAw2f5IilG-YuDa86PbQA2SIHHw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qAw2f5IilG-YuDa86PbQA2SIHHw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 17:57:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3442 (0xd72) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919D1D9/serialNumber=A80C367F9222946F98B836BCE8F6D00364881C7C Validity Not Before: Nov 22 17:57:13 2024 GMT Not After : Nov 29 17:57:13 2024 GMT Subject: CN=6740c5f9-4a2e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:3c:52:52:f8:7a:ae:9d:54:cc:27:81:de:7a: e8:f7:0f:a7:d9:57:62:26:9c:75:75:fe:60:a5:10: 7a:d1:fb:99:60:57:ad:ca:3d:d4:2c:66:77:c1:55: 45:0c:57:4e:96:26:23:c7:29:7b:21:34:70:00:61: 49:59:a2:d4:8f:5b:93:6f:54:81:df:62:34:91:5b: 10:dd:a8:ec:e0:ff:ff:5b:b8:22:bc:dd:56:d0:aa: ff:79:3e:42:99:de:75:38:ae:8e:50:6e:37:87:45: 83:52:f5:7f:9c:f9:72:ca:0b:67:dd:c0:e4:23:eb: 90:ab:68:76:18:bc:53:5a:d8:09:33:16:7b:20:94: b8:d5:d3:94:64:ff:7c:4a:6a:06:30:88:23:c7:b5: d4:27:03:49:ed:c9:37:d4:62:26:8b:47:a8:73:b1: db:41:1d:d9:27:52:61:c0:b6:5f:97:0f:88:fe:26: b9:06:f1:84:a7:19:f6:05:d3:fb:5a:6f:ca:57:85: df:4e:31:5d:01:8a:33:00:e1:c1:53:a5:5b:b5:ff: 18:dd:76:c2:df:60:e3:f4:5f:09:6b:9d:8e:d6:6c: b9:75:59:ac:1e:51:21:e5:15:9f:3b:2b:d7:1f:39: 65:70:f2:09:7d:16:20:e4:f6:c8:88:39:b8:cc:d7: 70:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:E2:11:DA:27:F3:B7:67:52:CF:8C:DC:55:B3:EE:BD:3B:F9:03:53 X509v3 Authority Key Identifier: keyid:A8:0C:36:7F:92:22:94:6F:98:B8:36:BC:E8:F6:D0:03:64:88:1C:7C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919D1D9/6A39A0DEC33811E98048FB7DC4F9AE02/qAw2f5IilG-YuDa86PbQA2SIHHw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qAw2f5IilG-YuDa86PbQA2SIHHw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919D1D9/6A39A0DEC33811E98048FB7DC4F9AE02/qAw2f5IilG-YuDa86PbQA2SIHHw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5e:b2:80:90:a4:88:d5:2e:f0:8e:96:8f:e7:df:02:4f:a8:58: ad:19:5d:33:c8:35:ad:6b:23:81:11:ca:81:b0:8a:cd:75:f0: a4:6a:41:71:01:da:93:07:d7:6f:54:37:d0:af:81:5a:f9:5c: 22:dc:69:af:58:cc:cd:37:5e:3c:5f:06:89:13:0a:65:cd:a3: b0:f7:41:9e:08:db:63:62:5f:f1:ea:24:e0:bd:d1:ce:69:02: 2b:f6:2e:16:3d:2d:1a:72:06:a1:aa:f0:ba:30:69:ee:41:08: 4c:74:fe:87:1e:1c:5e:62:a7:d6:0e:c9:9e:0c:e1:98:8c:42: d6:72:c3:1e:e7:97:98:25:a1:cc:b6:e0:43:df:1e:62:ab:c1: 51:60:42:05:84:7f:7f:06:d1:7a:dd:46:31:7d:ce:a5:13:0f: 8a:08:d0:3c:97:4e:ff:2d:8d:65:c6:73:58:1b:b4:43:57:3d: b8:0d:a9:e9:13:7a:8a:ae:b0:fe:74:60:dd:59:4b:99:60:16: 9f:61:15:a5:40:b0:4c:fd:cc:fc:61:95:aa:11:32:a4:f8:c6: 05:e4:85:9d:4c:cf:20:b0:65:dc:0b:ed:4e:84:7f:86:58:04: ed:6b:d0:05:a3:c8:3a:87:c4:22:73:a8:17:7e:c2:f2:6d:27: 11:5b:70:80 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDXIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUQxRDkxMTAvBgNVBAUTKEE4MEMzNjdGOTIyMjk0NkY5OEI4MzZCQ0U4RjZEMDAz NjQ4ODFDN0MwHhcNMjQxMTIyMTc1NzEzWhcNMjQxMTI5MTc1NzEzWjAYMRYwFAYD VQQDEw02NzQwYzVmOS00YTJlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApzxSUvh6rp1UzCeB3nro9w+n2VdiJpx1df5gpRB60fuZYFetyj3ULGZ3wVVF DFdOliYjxyl7ITRwAGFJWaLUj1uTb1SB32I0kVsQ3ajs4P//W7givN1W0Kr/eT5C md51OK6OUG43h0WDUvV/nPlyygtn3cDkI+uQq2h2GLxTWtgJMxZ7IJS41dOUZP98 SmoGMIgjx7XUJwNJ7ck31GImi0eoc7HbQR3ZJ1JhwLZflw+I/ia5BvGEpxn2BdP7 Wm/KV4XfTjFdAYozAOHBU6Vbtf8Y3XbC32Dj9F8Ja52O1my5dVmsHlEh5RWfOyvX HzllcPIJfRYg5PbIiDm4zNdwqQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKviEdon 87dnUs+M3FWz7r07+QNTMB8GA1UdIwQYMBaAFKgMNn+SIpRvmLg2vOj20ANkiBx8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RDFEOS82QTM5QTBERUMz MzgxMUU5ODA0OEZCN0RDNEY5QUUwMi9xQXcyZjVJaWxHLVl1RGE4NlBiUUEyU0lI SHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3FBdzJmNUlpbEctWXVEYTg2UGJRQTJTSUhIdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RDFEOS82QTM5QTBERUMzMzgxMUU5ODA0OEZCN0RDNEY5QUUwMi9xQXcyZjVJaWxH LVl1RGE4NlBiUUEyU0lISHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBesoCQpIjVLvCOlo/n3wJPqFitGV0zyDWtayOBEcqBsIrNdfCkakFx AdqTB9dvVDfQr4Fa+Vwi3GmvWMzNN148XwaJEwplzaOw90GeCNtjYl/x6iTgvdHO aQIr9i4WPS0acgahqvC6MGnuQQhMdP6HHhxeYqfWDsmeDOGYjELWcsMe55eYJaHM tuBD3x5iq8FRYEIFhH9/BtF63UYxfc6lEw+KCNA8l07/LY1lxnNYG7RDVz24Danp E3qKrrD+dGDdWUuZYBafYRWlQLBM/cz8YZWqETKk+MYF5IWdTM8gsGXcC+1OhH+G WATta9AFo8g6h8Qic6gXfsLybScRW3CA -----END CERTIFICATE-----Generated at Fri Nov 22 19:45:01 2024 by rpki-client on console-fra.rpki-client.org