$ rpki-client -vvf rpki.apnic.net/member_repository/A91DA2D5/5F861EE6B89A11E3B4AC7E785911EA32/PByHc0fugnKWNq8POjddORCQ-SE.mft File: PByHc0fugnKWNq8POjddORCQ-SE.mft (raw, json) Hash identifier: 2Z3QpoX00Xs71zHxj/cg7/MAZcYgjrEIjch86/C2iq8= Subject key identifier: 41:AF:E7:5C:97:10:4E:3A:E3:6E:43:38:C8:88:8E:C7:E4:42:7D:6D Authority key identifier: 3C:1C:87:73:47:EE:82:72:96:36:AF:0F:3A:37:5D:39:10:90:F9:21 Certificate issuer: /CN=A91DA2D5/serialNumber=3C1C877347EE82729636AF0F3A375D391090F921 Certificate serial: 2C71 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PByHc0fugnKWNq8POjddORCQ-SE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DA2D5/5F861EE6B89A11E3B4AC7E785911EA32/PByHc0fugnKWNq8POjddORCQ-SE.mft Manifest number: 2C44 Signing time: Fri 22 Nov 2024 15:33:47 +0000 Manifest this update: Fri 22 Nov 2024 15:33:46 +0000 Manifest next update: Fri 29 Nov 2024 15:33:46 +0000 Files and hashes: 1: PByHc0fugnKWNq8POjddORCQ-SE.crl (hash: NktBivw99kNjy75/FpdSViJ+N4TktN+17MTlyFkUDiI=) 2: 5728551C6E9611EF8FEC9C1BC4F9AE02.roa (hash: rd1Y32xkoeiGOMGm6/GALVzy5u2L42RHVTq0ym4rGxc=) 3: 14820EDE248611EEB600357DC4F9AE02.roa (hash: pfSrv7ABwA9/SpzKbTS+fYCpaS8uDOGjDIZI4jVwlaM=) 4: 5F2A9412249D11EEBA491E2FC4F9AE02.roa (hash: fdcKKCiRBEYyImdCm83ma4epg2M7G+PRuOZRYkLBGGM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DA2D5/5F861EE6B89A11E3B4AC7E785911EA32/PByHc0fugnKWNq8POjddORCQ-SE.crl rsync://rpki.apnic.net/member_repository/A91DA2D5/5F861EE6B89A11E3B4AC7E785911EA32/PByHc0fugnKWNq8POjddORCQ-SE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PByHc0fugnKWNq8POjddORCQ-SE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 15:22:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11377 (0x2c71) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DA2D5/serialNumber=3C1C877347EE82729636AF0F3A375D391090F921 Validity Not Before: Nov 22 15:33:46 2024 GMT Not After : Nov 29 15:33:46 2024 GMT Subject: CN=6740a45b-0389 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:fc:2f:11:e1:1b:96:5d:88:63:e4:1d:0d:3f: bc:72:0b:eb:ab:69:2e:15:09:70:fb:d1:aa:cf:ea: f2:bc:6f:c5:1c:e8:d7:4d:54:ca:34:a8:b8:87:89: 4c:59:e1:fc:d5:61:f8:83:fc:15:67:d0:9d:09:e3: e8:57:d6:5c:6f:1c:7e:54:82:29:bf:aa:9e:35:98: b9:f9:5e:9e:0c:bd:79:9a:1c:da:f6:66:34:f1:f6: 30:34:25:f1:67:c3:af:98:6d:40:fd:f9:10:7d:fc: 97:53:55:80:eb:e0:3b:d8:a8:82:58:51:3c:eb:ef: 78:17:6a:58:4f:f8:70:26:a2:77:21:11:be:a6:18: 12:ab:99:d1:ea:1b:c6:70:d9:2b:55:97:ab:26:71: 56:31:6d:13:81:6e:38:a7:48:3a:e7:45:34:53:9d: 96:8a:92:bb:aa:91:a5:be:24:ad:78:da:9b:14:62: 49:da:31:1f:fd:e9:37:d8:c5:53:77:e2:ba:b1:20: 94:77:e5:0f:37:7c:6b:7f:d0:6f:0a:a9:cf:da:7b: 36:7d:58:20:51:3f:ae:9a:9d:90:ef:a4:16:0c:48: cc:ce:aa:12:22:e8:f2:12:29:4c:3a:86:8c:dc:91: 56:a4:de:c6:28:16:e1:12:b1:75:30:34:c3:c5:80: 75:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:AF:E7:5C:97:10:4E:3A:E3:6E:43:38:C8:88:8E:C7:E4:42:7D:6D X509v3 Authority Key Identifier: keyid:3C:1C:87:73:47:EE:82:72:96:36:AF:0F:3A:37:5D:39:10:90:F9:21 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DA2D5/5F861EE6B89A11E3B4AC7E785911EA32/PByHc0fugnKWNq8POjddORCQ-SE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PByHc0fugnKWNq8POjddORCQ-SE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DA2D5/5F861EE6B89A11E3B4AC7E785911EA32/PByHc0fugnKWNq8POjddORCQ-SE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 26:19:f4:d0:c3:f6:33:69:95:ff:9e:da:2a:27:b8:71:e4:d8: ea:be:ed:49:18:98:57:20:87:50:d8:de:40:62:a8:d1:66:d6: 2c:f6:69:ca:e9:6f:33:b4:bc:88:ec:f2:84:3e:d4:3e:e3:80: f2:4e:5c:ea:c8:4f:ee:c5:e3:0f:f9:cd:ba:b6:fc:35:db:55: 14:23:75:33:eb:8e:7b:86:57:78:eb:f8:6d:c3:9d:13:b9:f5: eb:7c:9a:69:90:86:27:84:b6:50:99:33:f1:8b:96:ac:c4:1f: fa:5e:3c:cf:b5:13:02:b9:09:f2:c4:f5:91:83:63:8a:0b:04: 22:c3:6f:e8:11:fa:1d:b5:f1:d7:7c:30:26:c1:77:24:9d:1c: 89:3f:0a:1c:76:96:ad:c6:a7:21:e5:ef:83:7b:fc:b1:f7:31: a1:58:17:f3:77:76:04:08:3f:d9:69:59:cf:ff:b5:1a:56:48: 53:6d:fa:5c:15:c1:5f:73:9b:15:39:ab:56:48:42:2f:76:d8: c6:77:c6:e4:7c:ba:5f:df:15:31:b4:04:8c:45:d3:01:57:ec: 8b:d7:59:8d:22:e3:a2:97:62:59:44:a1:8b:62:5c:73:2c:f4: df:ff:e7:d5:0e:67:9b:d9:88:2c:4e:66:3e:cf:4f:09:be:74: 2c:f3:3e:49 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICLHEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REEyRDUxMTAvBgNVBAUTKDNDMUM4NzczNDdFRTgyNzI5NjM2QUYwRjNBMzc1RDM5 MTA5MEY5MjEwHhcNMjQxMTIyMTUzMzQ2WhcNMjQxMTI5MTUzMzQ2WjAYMRYwFAYD VQQDEw02NzQwYTQ1Yi0wMzg5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyPwvEeEbll2IY+QdDT+8cgvrq2kuFQlw+9Gqz+ryvG/FHOjXTVTKNKi4h4lM WeH81WH4g/wVZ9CdCePoV9Zcbxx+VIIpv6qeNZi5+V6eDL15mhza9mY08fYwNCXx Z8OvmG1A/fkQffyXU1WA6+A72KiCWFE86+94F2pYT/hwJqJ3IRG+phgSq5nR6hvG cNkrVZerJnFWMW0TgW44p0g650U0U52WipK7qpGlviSteNqbFGJJ2jEf/ek32MVT d+K6sSCUd+UPN3xrf9BvCqnP2ns2fVggUT+ump2Q76QWDEjMzqoSIujyEilMOoaM 3JFWpN7GKBbhErF1MDTDxYB1TQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEGv51yX EE46425DOMiIjsfkQn1tMB8GA1UdIwQYMBaAFDwch3NH7oJyljavDzo3XTkQkPkh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQTJENS81Rjg2MUVFNkI4 OUExMUUzQjRBQzdFNzg1OTExRUEzMi9QQnlIYzBmdWduS1dOcThQT2pkZE9SQ1Et U0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BCeUhjMGZ1Z25LV05xOFBPamRkT1JDUS1TRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QTJENS81Rjg2MUVFNkI4OUExMUUzQjRBQzdFNzg1OTExRUEzMi9QQnlIYzBmdWdu S1dOcThQT2pkZE9SQ1EtU0UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAmGfTQw/YzaZX/ntoqJ7hx5Njqvu1JGJhXIIdQ2N5AYqjRZtYs9mnK 6W8ztLyI7PKEPtQ+44DyTlzqyE/uxeMP+c26tvw121UUI3Uz6457hld46/htw50T ufXrfJppkIYnhLZQmTPxi5asxB/6XjzPtRMCuQnyxPWRg2OKCwQiw2/oEfodtfHX fDAmwXcknRyJPwocdpatxqch5e+De/yx9zGhWBfzd3YECD/ZaVnP/7UaVkhTbfpc FcFfc5sVOatWSEIvdtjGd8bkfLpf3xUxtASMRdMBV+yL11mNIuOil2JZRKGLYlxz LPTf/+fVDmeb2YgsTmY+z08JvnQs8z5J -----END CERTIFICATE-----Generated at Fri Nov 22 16:50:04 2024 by rpki-client on console-ams.rpki-client.org