$ rpki-client -vvf rpki.apnic.net/member_repository/A91B02A2/EFD2158477EB11EE93B68B3AC4F9AE02/b814Gaj5P69A0OOH8htG6E3p1ws.mft File: b814Gaj5P69A0OOH8htG6E3p1ws.mft (raw, json) Hash identifier: t31upFFiMTWkwaMdW9nu0DO0GLmAQPYhevk+JEfaCpw= Subject key identifier: BF:32:02:E9:6D:9C:1F:86:11:EA:C0:A8:1E:CD:A9:40:25:2F:8A:35 Authority key identifier: 6F:CD:78:19:A8:F9:3F:AF:40:D0:E3:87:F2:1B:46:E8:4D:E9:D7:0B Certificate issuer: /CN=A91B02A2/serialNumber=6FCD7819A8F93FAF40D0E387F21B46E84DE9D70B Certificate serial: C9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b814Gaj5P69A0OOH8htG6E3p1ws.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B02A2/EFD2158477EB11EE93B68B3AC4F9AE02/b814Gaj5P69A0OOH8htG6E3p1ws.mft Manifest number: C7 Signing time: Thu 21 Nov 2024 03:58:33 +0000 Manifest this update: Thu 21 Nov 2024 03:58:32 +0000 Manifest next update: Thu 28 Nov 2024 03:58:32 +0000 Files and hashes: 1: b814Gaj5P69A0OOH8htG6E3p1ws.crl (hash: bfIP5Qin9+mp1AfnscEJOczM2Fi9WdvU74lkmabrUPU=) 2: 5D98833C77EC11EEA06F373BC4F9AE02.roa (hash: PTNlCaFqxgAXX8dh1a7LSvNmOXF/4erL00o7/e/JlJk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B02A2/EFD2158477EB11EE93B68B3AC4F9AE02/b814Gaj5P69A0OOH8htG6E3p1ws.crl rsync://rpki.apnic.net/member_repository/A91B02A2/EFD2158477EB11EE93B68B3AC4F9AE02/b814Gaj5P69A0OOH8htG6E3p1ws.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b814Gaj5P69A0OOH8htG6E3p1ws.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 03:58:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 201 (0xc9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B02A2/serialNumber=6FCD7819A8F93FAF40D0E387F21B46E84DE9D70B Validity Not Before: Nov 21 03:58:32 2024 GMT Not After : Nov 28 03:58:32 2024 GMT Subject: CN=673eafe8-9ad0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:31:d5:71:a7:52:1e:ae:b7:e3:3d:3e:ef:22: ef:b2:ff:1b:7e:5b:01:07:dc:52:68:a5:2a:8c:b5: 36:6d:80:1a:3d:ae:98:d6:aa:9a:f2:b4:16:78:19: fe:f1:af:3b:23:42:99:34:bd:e7:03:d8:dc:af:65: 44:29:f8:26:1d:08:ce:d4:75:42:2a:92:74:31:64: e9:8e:65:f3:dd:19:9f:dc:a4:1d:8d:28:8f:90:93: 2f:73:4e:e7:f7:f7:b7:32:e1:54:75:4a:21:08:f6: ab:f4:b6:37:d9:e0:c1:ab:4f:23:49:4e:d5:0e:8a: 89:00:ee:91:9d:95:73:9f:95:5e:26:73:e4:83:c4: 74:f2:26:ea:b1:c6:82:ed:42:91:a6:c0:c0:3e:99: ca:38:5a:f9:25:15:2f:f6:23:bf:e9:ac:5b:97:e3: de:49:34:1f:b7:b4:38:97:48:86:9f:dd:6a:04:48: c6:23:c9:76:c5:b2:3f:5d:6c:87:48:de:5f:5b:da: 34:8e:0a:42:12:39:f4:fa:6b:1a:af:f6:8a:25:06: 5f:52:1b:14:55:7e:03:e0:85:85:95:4f:f7:fe:58: 73:0f:c4:1e:d4:44:37:28:82:61:87:1f:ad:0e:31: 9a:ce:9f:7c:bc:75:c1:90:8e:15:0f:e9:f5:58:49: b9:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:32:02:E9:6D:9C:1F:86:11:EA:C0:A8:1E:CD:A9:40:25:2F:8A:35 X509v3 Authority Key Identifier: keyid:6F:CD:78:19:A8:F9:3F:AF:40:D0:E3:87:F2:1B:46:E8:4D:E9:D7:0B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B02A2/EFD2158477EB11EE93B68B3AC4F9AE02/b814Gaj5P69A0OOH8htG6E3p1ws.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b814Gaj5P69A0OOH8htG6E3p1ws.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B02A2/EFD2158477EB11EE93B68B3AC4F9AE02/b814Gaj5P69A0OOH8htG6E3p1ws.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9b:1f:97:25:3e:21:21:81:3a:02:92:ec:43:96:92:7c:4b:a5: 73:a3:0c:9d:28:59:1d:35:1d:47:6f:65:ce:9e:ac:17:b2:aa: f0:f9:d5:15:74:df:5b:15:d8:c7:eb:c5:2c:62:35:17:e8:ec: f1:45:4d:de:00:cc:26:8f:dc:f4:06:f4:6f:15:a8:6d:b0:46: f4:40:ab:4e:eb:12:38:ec:c4:ed:68:cb:9d:70:2d:52:67:96: cc:2f:fe:7d:63:01:a2:ad:58:a9:32:6d:86:e4:68:ad:e7:5c: c3:11:b7:d5:63:f8:64:a6:64:8e:37:eb:b3:53:b2:35:cf:d9: 82:16:c3:b4:88:87:d6:1d:71:75:1e:a5:29:19:25:a7:10:97: 6b:29:79:48:75:1e:ed:73:6a:c6:35:7c:74:7d:56:3e:4c:29: 90:a1:91:86:ff:41:bf:52:98:8b:d7:41:bd:75:df:10:63:36: 03:54:ef:32:4a:5b:c7:4f:44:42:84:48:5c:7b:66:17:7b:9e: 16:3f:31:f8:d3:61:30:01:27:0d:27:5f:f6:36:4a:d0:60:be: b1:2d:2e:7e:24:fb:54:24:23:eb:55:9a:c6:ba:b4:fe:4b:22: d1:4a:32:a6:b8:39:d1:bd:e4:72:2e:a8:9c:2a:14:8a:e8:38: 86:ce:71:cc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAMkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjAyQTIxMTAvBgNVBAUTKDZGQ0Q3ODE5QThGOTNGQUY0MEQwRTM4N0YyMUI0NkU4 NERFOUQ3MEIwHhcNMjQxMTIxMDM1ODMyWhcNMjQxMTI4MDM1ODMyWjAYMRYwFAYD VQQDEw02NzNlYWZlOC05YWQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwTHVcadSHq634z0+7yLvsv8bflsBB9xSaKUqjLU2bYAaPa6Y1qqa8rQWeBn+ 8a87I0KZNL3nA9jcr2VEKfgmHQjO1HVCKpJ0MWTpjmXz3Rmf3KQdjSiPkJMvc07n 9/e3MuFUdUohCPar9LY32eDBq08jSU7VDoqJAO6RnZVzn5VeJnPkg8R08ibqscaC 7UKRpsDAPpnKOFr5JRUv9iO/6axbl+PeSTQft7Q4l0iGn91qBEjGI8l2xbI/XWyH SN5fW9o0jgpCEjn0+msar/aKJQZfUhsUVX4D4IWFlU/3/lhzD8Qe1EQ3KIJhhx+t DjGazp98vHXBkI4VD+n1WEm5awIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFL8yAult nB+GEerAqB7NqUAlL4o1MB8GA1UdIwQYMBaAFG/NeBmo+T+vQNDjh/IbRuhN6dcL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMDJBMi9FRkQyMTU4NDc3 RUIxMUVFOTNCNjhCM0FDNEY5QUUwMi9iODE0R2FqNVA2OUEwT09IOGh0RzZFM3Ax d3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2I4MTRHYWo1UDY5QTBPT0g4aHRHNkUzcDF3cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MDJBMi9FRkQyMTU4NDc3RUIxMUVFOTNCNjhCM0FDNEY5QUUwMi9iODE0R2FqNVA2 OUEwT09IOGh0RzZFM3Axd3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCbH5clPiEhgToCkuxDlpJ8S6VzowydKFkdNR1Hb2XOnqwXsqrw+dUV dN9bFdjH68UsYjUX6OzxRU3eAMwmj9z0BvRvFahtsEb0QKtO6xI47MTtaMudcC1S Z5bML/59YwGirVipMm2G5Git51zDEbfVY/hkpmSON+uzU7I1z9mCFsO0iIfWHXF1 HqUpGSWnEJdrKXlIdR7tc2rGNXx0fVY+TCmQoZGG/0G/UpiL10G9dd8QYzYDVO8y SlvHT0RChEhce2YXe54WPzH402EwAScNJ1/2NkrQYL6xLS5+JPtUJCPrVZrGurT+ SyLRSjKmuDnRveRyLqicKhSK6DiGznHM -----END CERTIFICATE-----Generated at Thu Nov 21 05:37:15 2024 by rpki-client on console-ams.rpki-client.org