$ rpki-client -vvf rpki.apnic.net/member_repository/A91C3A74/753D71EE3AB511E7B8609F1CC4F9AE02/jhH8tOi9Y9J7hOstUmcMoXT5xDw.mft File: jhH8tOi9Y9J7hOstUmcMoXT5xDw.mft (raw, json) Hash identifier: hN8PM8B6OxnNpdKtZI4RcJgWlOo19qLwvjwrLLES0no= Subject key identifier: DB:6C:1A:D0:21:34:69:DF:CA:1C:D1:E8:54:F9:FA:82:37:DE:22:25 Authority key identifier: 8E:11:FC:B4:E8:BD:63:D2:7B:84:EB:2D:52:67:0C:A1:74:F9:C4:3C Certificate issuer: /CN=A91C3A74/serialNumber=8E11FCB4E8BD63D27B84EB2D52670CA174F9C43C Certificate serial: 1A21 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/jhH8tOi9Y9J7hOstUmcMoXT5xDw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C3A74/753D71EE3AB511E7B8609F1CC4F9AE02/jhH8tOi9Y9J7hOstUmcMoXT5xDw.mft Manifest number: 1A1B Signing time: Fri 22 Nov 2024 15:43:58 +0000 Manifest this update: Fri 22 Nov 2024 15:43:57 +0000 Manifest next update: Fri 29 Nov 2024 15:43:57 +0000 Files and hashes: 1: jhH8tOi9Y9J7hOstUmcMoXT5xDw.crl (hash: 0nV4LePtDMQk2KtnGJJFVXWGqUD9Pu0WMiQtlX27CiY=) 2: AFA37450139811EA807F1A26C4F9AE02.roa (hash: l6ozucYTFKjn39HEiVgGalsJ6EF9CCKenjj1DUfT/Ak=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C3A74/753D71EE3AB511E7B8609F1CC4F9AE02/jhH8tOi9Y9J7hOstUmcMoXT5xDw.crl rsync://rpki.apnic.net/member_repository/A91C3A74/753D71EE3AB511E7B8609F1CC4F9AE02/jhH8tOi9Y9J7hOstUmcMoXT5xDw.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/jhH8tOi9Y9J7hOstUmcMoXT5xDw.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 14:50:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6689 (0x1a21) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C3A74/serialNumber=8E11FCB4E8BD63D27B84EB2D52670CA174F9C43C Validity Not Before: Nov 22 15:43:57 2024 GMT Not After : Nov 29 15:43:57 2024 GMT Subject: CN=6740a6bd-9504 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:aa:75:d9:04:c9:30:ef:c4:72:16:61:b5:9e: b3:b6:3f:84:8d:f7:61:3c:1e:9e:8f:d8:c6:34:39: 56:da:8c:39:92:9e:c0:83:11:e8:bb:46:fe:1b:a6: a0:8e:e2:ff:63:00:ff:a6:80:56:20:be:db:69:4b: 68:25:a3:86:9d:fc:d3:e7:eb:16:bb:8f:ea:b3:a1: 68:06:2b:a4:12:c9:28:b7:81:de:1d:77:6e:8b:65: 84:ef:f3:a9:96:91:dd:b0:40:d2:33:0e:e0:02:a4: 65:61:8f:e5:7a:4d:61:78:88:e0:f5:a0:54:d1:62: 10:c0:e9:24:6f:82:83:a8:45:df:5f:a7:e1:f7:d0: 26:ec:e4:fc:f7:1b:a5:76:fe:fb:5e:c8:ed:38:05: fc:e3:5d:b8:3b:d7:52:36:c6:0a:e3:d8:e9:55:e0: 5c:db:53:84:bc:47:0d:db:4a:cd:a9:c5:ee:fc:f3: f4:0e:2f:17:09:86:d8:fc:cf:71:64:dd:55:6c:68: f5:bd:48:13:28:2b:0b:0c:64:48:a6:cf:2b:e1:d1: c4:97:5a:7f:42:ff:b1:2c:c5:09:1f:49:cd:b6:cb: b3:e6:b9:00:f5:b4:a8:a5:8a:52:4e:6a:53:ea:0b: 00:db:a9:66:59:2b:dd:72:36:b7:3d:27:45:9a:db: 47:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:6C:1A:D0:21:34:69:DF:CA:1C:D1:E8:54:F9:FA:82:37:DE:22:25 X509v3 Authority Key Identifier: keyid:8E:11:FC:B4:E8:BD:63:D2:7B:84:EB:2D:52:67:0C:A1:74:F9:C4:3C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C3A74/753D71EE3AB511E7B8609F1CC4F9AE02/jhH8tOi9Y9J7hOstUmcMoXT5xDw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/jhH8tOi9Y9J7hOstUmcMoXT5xDw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C3A74/753D71EE3AB511E7B8609F1CC4F9AE02/jhH8tOi9Y9J7hOstUmcMoXT5xDw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 67:71:86:45:79:c8:f9:ae:a3:18:77:e0:1b:d1:71:77:0c:69: bb:5d:f6:cb:bd:33:b8:d0:f5:8e:ae:33:f5:6b:53:e2:33:76: 2a:8b:17:46:1c:9b:21:fc:42:9d:24:23:84:aa:58:57:c0:dd: 1c:16:8b:69:c9:89:ce:7c:33:c3:e9:30:9a:56:59:9b:bf:84: 92:49:66:25:16:72:39:5f:dd:75:04:bc:99:14:6e:c7:c3:e5: a3:4d:c8:e8:81:95:88:57:db:1a:36:2a:7d:38:5e:95:0f:34: 16:c2:da:6e:7a:bd:83:fd:ac:a7:48:48:53:27:2a:8a:77:73: 9e:df:d4:7f:40:d1:7b:84:d6:8d:3f:81:28:a1:6a:a9:4c:be: 08:78:f9:54:74:88:db:46:04:2f:ec:95:e5:66:00:3d:7c:fd: fc:f3:b5:77:d6:f0:0e:f4:d6:2c:80:bb:ff:fe:b5:d4:d2:48: 93:b8:59:ae:3d:be:ef:9d:62:a8:94:7a:03:4b:6c:ea:3f:56: d4:04:30:52:f2:7c:71:15:27:7b:a6:0c:09:0d:47:97:0a:e9: 26:4b:7d:45:3c:ac:30:48:52:4e:a2:2b:67:65:1a:b5:61:37: a6:64:a9:d1:ae:a9:26:a9:c0:35:b9:cd:e2:54:7f:df:53:01: f0:0f:ef:55 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICGiEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzNBNzQxMTAvBgNVBAUTKDhFMTFGQ0I0RThCRDYzRDI3Qjg0RUIyRDUyNjcwQ0Ex NzRGOUM0M0MwHhcNMjQxMTIyMTU0MzU3WhcNMjQxMTI5MTU0MzU3WjAYMRYwFAYD VQQDEw02NzQwYTZiZC05NTA0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5ap12QTJMO/EchZhtZ6ztj+EjfdhPB6ej9jGNDlW2ow5kp7AgxHou0b+G6ag juL/YwD/poBWIL7baUtoJaOGnfzT5+sWu4/qs6FoBiukEskot4HeHXdui2WE7/Op lpHdsEDSMw7gAqRlYY/lek1heIjg9aBU0WIQwOkkb4KDqEXfX6fh99Am7OT89xul dv77XsjtOAX84124O9dSNsYK49jpVeBc21OEvEcN20rNqcXu/PP0Di8XCYbY/M9x ZN1VbGj1vUgTKCsLDGRIps8r4dHEl1p/Qv+xLMUJH0nNtsuz5rkA9bSopYpSTmpT 6gsA26lmWSvdcja3PSdFmttHBQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNtsGtAh NGnfyhzR6FT5+oI33iIlMB8GA1UdIwQYMBaAFI4R/LTovWPSe4TrLVJnDKF0+cQ8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDM0E3NC83NTNENzFFRTNB QjUxMUU3Qjg2MDlGMUNDNEY5QUUwMi9qaEg4dE9pOVk5SjdoT3N0VW1jTW9YVDV4 RHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL2poSDh0T2k5WTlKN2hPc3RVbWNNb1hUNXhEdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD M0E3NC83NTNENzFFRTNBQjUxMUU3Qjg2MDlGMUNDNEY5QUUwMi9qaEg4dE9pOVk5 SjdoT3N0VW1jTW9YVDV4RHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBncYZFecj5rqMYd+Ab0XF3DGm7XfbLvTO40PWOrjP1a1PiM3YqixdG HJsh/EKdJCOEqlhXwN0cFotpyYnOfDPD6TCaVlmbv4SSSWYlFnI5X911BLyZFG7H w+WjTcjogZWIV9saNip9OF6VDzQWwtpuer2D/aynSEhTJyqKd3Oe39R/QNF7hNaN P4EooWqpTL4IePlUdIjbRgQv7JXlZgA9fP3887V31vAO9NYsgLv//rXU0kiTuFmu Pb7vnWKolHoDS2zqP1bUBDBS8nxxFSd7pgwJDUeXCukmS31FPKwwSFJOoitnZRq1 YTemZKnRrqkmqcA1uc3iVH/fUwHwD+9V -----END CERTIFICATE-----Generated at Fri Nov 22 16:50:03 2024 by rpki-client on console-ams.rpki-client.org