$ rpki-client -vvf rpki.apnic.net/member_repository/A91E4DFA/845984CE1A8511ECA76AEA3AC4F9AE02/IHitW73x1MW5cLvik02aNV2zHOg.mft File: IHitW73x1MW5cLvik02aNV2zHOg.mft (raw, json) Hash identifier: GY/E9T8l+iCtl7VD+uT4mVNnmTNiUbb0dDj7otIUvUQ= Subject key identifier: DE:7F:2E:34:06:58:51:E1:EF:B4:19:2A:91:49:90:93:B7:F3:E0:D7 Authority key identifier: 20:78:AD:5B:BD:F1:D4:C5:B9:70:BB:E2:93:4D:9A:35:5D:B3:1C:E8 Certificate issuer: /CN=A91E4DFA/serialNumber=2078AD5BBDF1D4C5B970BBE2934D9A355DB31CE8 Certificate serial: 048A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IHitW73x1MW5cLvik02aNV2zHOg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E4DFA/845984CE1A8511ECA76AEA3AC4F9AE02/IHitW73x1MW5cLvik02aNV2zHOg.mft Manifest number: 0484 Signing time: Fri 22 Nov 2024 23:36:14 +0000 Manifest this update: Fri 22 Nov 2024 23:36:13 +0000 Manifest next update: Fri 29 Nov 2024 23:36:13 +0000 Files and hashes: 1: IHitW73x1MW5cLvik02aNV2zHOg.crl (hash: hQdP5wFwbmoAaZIUcccpYAqD0er0EANZbKTQqb8Dbb4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E4DFA/845984CE1A8511ECA76AEA3AC4F9AE02/IHitW73x1MW5cLvik02aNV2zHOg.crl rsync://rpki.apnic.net/member_repository/A91E4DFA/845984CE1A8511ECA76AEA3AC4F9AE02/IHitW73x1MW5cLvik02aNV2zHOg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IHitW73x1MW5cLvik02aNV2zHOg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1162 (0x48a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E4DFA/serialNumber=2078AD5BBDF1D4C5B970BBE2934D9A355DB31CE8 Validity Not Before: Nov 22 23:36:13 2024 GMT Not After : Nov 29 23:36:13 2024 GMT Subject: CN=6741156e-c232 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:b1:38:d7:8d:5d:b9:c2:6b:4e:4c:c6:20:a8: 97:07:76:dc:e6:ef:50:c0:13:ad:b4:98:f6:04:8b: 94:67:80:8a:a1:96:ec:22:f8:ad:3b:39:35:b6:f9: 89:a1:6e:85:41:e5:67:87:d3:57:a1:3a:39:5e:0e: a8:37:8b:9c:70:a5:a4:de:ad:13:da:78:6b:dc:13: bc:4a:24:b8:8b:11:78:91:d0:40:23:c7:5b:39:f7: 80:33:4c:dd:cd:d1:b3:75:b1:b7:06:b6:48:e9:69: 74:10:cc:7d:46:58:94:52:ad:8c:72:e4:c3:12:db: 63:63:89:c2:e1:7a:f6:ec:3b:d2:08:c8:6e:91:16: b5:79:7a:06:74:55:be:70:57:e8:d3:fe:68:73:d0: be:cd:9c:a6:ae:ce:e7:ac:55:3d:5c:9a:f8:dd:d2: 5d:b3:9f:48:c4:a0:71:8b:da:8e:11:8b:ef:71:de: 47:f8:0f:29:89:38:d3:f4:e2:cf:df:f9:75:2f:59: de:b4:e5:3a:07:0d:66:1e:67:10:56:fb:df:62:ea: fc:ea:53:ae:ce:58:3a:3c:95:b2:ad:98:96:9f:82: 89:22:84:ea:56:a0:eb:ae:76:7e:2c:dd:d6:9e:3b: 52:b0:dd:17:05:1a:85:62:14:17:3e:e9:f6:11:aa: 3f:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:7F:2E:34:06:58:51:E1:EF:B4:19:2A:91:49:90:93:B7:F3:E0:D7 X509v3 Authority Key Identifier: keyid:20:78:AD:5B:BD:F1:D4:C5:B9:70:BB:E2:93:4D:9A:35:5D:B3:1C:E8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E4DFA/845984CE1A8511ECA76AEA3AC4F9AE02/IHitW73x1MW5cLvik02aNV2zHOg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IHitW73x1MW5cLvik02aNV2zHOg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E4DFA/845984CE1A8511ECA76AEA3AC4F9AE02/IHitW73x1MW5cLvik02aNV2zHOg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 02:59:b6:50:6d:45:34:85:42:8f:78:b8:92:f2:a4:d9:f9:40: 69:8a:0c:b6:a3:6c:6e:f7:14:03:f3:39:5d:02:76:f3:ba:49: 62:37:51:f6:10:e8:e4:e8:f1:f7:7b:61:d9:c2:95:77:45:6d: 97:3e:09:a7:e0:45:0f:58:0c:e0:8f:b2:4a:41:ca:bb:75:24: 83:8e:45:79:67:b9:cf:1e:8c:71:bc:35:2b:41:6e:2f:b8:ea: 02:ed:c2:4a:d9:ed:4b:03:5c:5b:f3:6c:ee:67:30:22:0d:58: 20:93:c9:35:f5:fc:0a:23:71:05:87:cd:7b:77:83:a5:c7:16: a0:b2:75:1f:99:90:7b:c7:87:a5:ef:9c:28:10:82:3b:66:c3: af:bb:d4:1b:dd:30:23:81:07:6b:dc:bf:a8:40:55:28:62:0b: 26:40:21:6c:b5:a6:f4:6e:26:0e:4f:51:e1:a8:a5:a4:21:4c: ba:f8:aa:d4:63:36:0a:33:2f:fa:be:f2:5d:0c:59:3c:27:04: 73:c2:2f:39:a7:0e:0c:d7:ca:04:9c:f1:83:f6:e8:7d:5e:2c: 4e:7b:cd:ee:5a:61:61:c2:f5:06:48:6f:73:a8:74:27:0d:75: 50:9d:4a:61:49:4f:b1:7e:0d:80:f4:19:ce:8d:35:c5:0a:b9: 98:c1:61:90 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBIowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTRERkExMTAvBgNVBAUTKDIwNzhBRDVCQkRGMUQ0QzVCOTcwQkJFMjkzNEQ5QTM1 NURCMzFDRTgwHhcNMjQxMTIyMjMzNjEzWhcNMjQxMTI5MjMzNjEzWjAYMRYwFAYD VQQDEw02NzQxMTU2ZS1jMjMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0bE4141ducJrTkzGIKiXB3bc5u9QwBOttJj2BIuUZ4CKoZbsIvitOzk1tvmJ oW6FQeVnh9NXoTo5Xg6oN4uccKWk3q0T2nhr3BO8SiS4ixF4kdBAI8dbOfeAM0zd zdGzdbG3BrZI6Wl0EMx9RliUUq2McuTDEttjY4nC4Xr27DvSCMhukRa1eXoGdFW+ cFfo0/5oc9C+zZymrs7nrFU9XJr43dJds59IxKBxi9qOEYvvcd5H+A8piTjT9OLP 3/l1L1netOU6Bw1mHmcQVvvfYur86lOuzlg6PJWyrZiWn4KJIoTqVqDrrnZ+LN3W njtSsN0XBRqFYhQXPun2Eao/xQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFN5/LjQG WFHh77QZKpFJkJO38+DXMB8GA1UdIwQYMBaAFCB4rVu98dTFuXC74pNNmjVdsxzo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNERGQS84NDU5ODRDRTFB ODUxMUVDQTc2QUVBM0FDNEY5QUUwMi9JSGl0VzczeDFNVzVjTHZpazAyYU5WMnpI T2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lIaXRXNzN4MU1XNWNMdmlrMDJhTlYyekhPZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NERGQS84NDU5ODRDRTFBODUxMUVDQTc2QUVBM0FDNEY5QUUwMi9JSGl0VzczeDFN VzVjTHZpazAyYU5WMnpIT2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQACWbZQbUU0hUKPeLiS8qTZ+UBpigy2o2xu9xQD8zldAnbzukliN1H2 EOjk6PH3e2HZwpV3RW2XPgmn4EUPWAzgj7JKQcq7dSSDjkV5Z7nPHoxxvDUrQW4v uOoC7cJK2e1LA1xb82zuZzAiDVggk8k19fwKI3EFh817d4OlxxagsnUfmZB7x4el 75woEII7ZsOvu9Qb3TAjgQdr3L+oQFUoYgsmQCFstab0biYOT1HhqKWkIUy6+KrU YzYKMy/6vvJdDFk8JwRzwi85pw4M18oEnPGD9uh9XixOe83uWmFhwvUGSG9zqHQn DXVQnUphSU+xfg2A9BnOjTXFCrmYwWGQ -----END CERTIFICATE-----Generated at Sat Nov 23 00:49:38 2024 by rpki-client on console-fra.rpki-client.org