$ rpki-client -vvf rpki.apnic.net/member_repository/A91EA409/F944E3CC9CAB11EFAB595516C4F9AE02/IWTdWaYV1fLjOT5yCYpzrYaOeNo.mft File: IWTdWaYV1fLjOT5yCYpzrYaOeNo.mft (raw, json) Hash identifier: 8A6QiG7K6+uwRXH3QHlE7Nu8QpHGkU7WAazgSQzV/hQ= Subject key identifier: 85:2F:46:66:A7:FE:44:93:9F:E9:BE:4F:0C:32:4C:12:8E:BB:81:78 Authority key identifier: 21:64:DD:59:A6:15:D5:F2:E3:39:3E:72:09:8A:73:AD:86:8E:78:DA Certificate issuer: /CN=A91EA409/serialNumber=2164DD59A615D5F2E3393E72098A73AD868E78DA Certificate serial: 0F Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IWTdWaYV1fLjOT5yCYpzrYaOeNo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EA409/F944E3CC9CAB11EFAB595516C4F9AE02/IWTdWaYV1fLjOT5yCYpzrYaOeNo.mft Manifest number: 0D Signing time: Sat 23 Nov 2024 06:03:58 +0000 Manifest this update: Sat 23 Nov 2024 06:03:58 +0000 Manifest next update: Sat 30 Nov 2024 06:03:58 +0000 Files and hashes: 1: IWTdWaYV1fLjOT5yCYpzrYaOeNo.crl (hash: FIMNbsY1siIBZ+gQXvcEr6liCguLRJKW1hXGjrdIinw=) 2: E9F177B89D9C11EFA9526A6CC4F9AE02.roa (hash: /L7H1H9bfON5bqOj4q1pWVjciM/BYtStadHGVAVA9LE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EA409/F944E3CC9CAB11EFAB595516C4F9AE02/IWTdWaYV1fLjOT5yCYpzrYaOeNo.crl rsync://rpki.apnic.net/member_repository/A91EA409/F944E3CC9CAB11EFAB595516C4F9AE02/IWTdWaYV1fLjOT5yCYpzrYaOeNo.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IWTdWaYV1fLjOT5yCYpzrYaOeNo.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 15 (0xf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EA409/serialNumber=2164DD59A615D5F2E3393E72098A73AD868E78DA Validity Not Before: Nov 23 06:03:58 2024 GMT Not After : Nov 30 06:03:58 2024 GMT Subject: CN=6741704e-6eec Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:37:c5:ee:3f:dd:d6:08:b7:51:e4:5e:2c:87: e3:50:96:e6:e0:4f:da:b7:2f:e7:2c:8a:97:5c:06: 91:97:ec:81:d6:45:74:4f:a1:34:d1:fc:71:05:f3: 69:8e:b9:d8:f8:92:f6:06:55:3c:d5:ba:f8:49:6f: c6:41:9d:bc:f8:e2:32:d9:da:fd:8b:8a:21:ed:9a: 85:bf:cb:c5:70:7f:2b:45:c4:70:4b:b1:8c:32:fb: 93:13:34:f2:18:9e:88:1f:6d:b9:b7:80:a6:10:b9: b9:19:b0:57:5f:fb:8c:0e:38:9d:47:d5:b7:8b:93: 01:26:07:5a:fc:af:c5:3d:26:e0:5c:cf:56:74:ed: 2f:fe:20:5e:63:0a:6f:9c:e4:ea:bf:28:ac:86:16: 70:d5:fa:7a:ab:6b:16:e7:38:c0:ed:e8:14:20:1b: 72:0d:da:de:12:9a:d3:55:e4:89:94:32:64:5f:c2: 00:14:7c:65:83:f7:6d:90:7f:23:cf:af:95:08:bd: 6e:34:65:d1:0c:ea:b9:e6:0a:dd:34:d5:b2:9c:f8: 53:66:5f:9a:ff:eb:8e:cb:fa:d4:02:57:1f:be:af: b8:b3:02:58:ed:22:aa:0c:48:42:63:28:b6:26:49: 60:0d:88:2a:80:27:8a:ec:34:f6:77:29:58:6a:19: e7:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:2F:46:66:A7:FE:44:93:9F:E9:BE:4F:0C:32:4C:12:8E:BB:81:78 X509v3 Authority Key Identifier: keyid:21:64:DD:59:A6:15:D5:F2:E3:39:3E:72:09:8A:73:AD:86:8E:78:DA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EA409/F944E3CC9CAB11EFAB595516C4F9AE02/IWTdWaYV1fLjOT5yCYpzrYaOeNo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IWTdWaYV1fLjOT5yCYpzrYaOeNo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EA409/F944E3CC9CAB11EFAB595516C4F9AE02/IWTdWaYV1fLjOT5yCYpzrYaOeNo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2e:f4:74:7b:27:3a:e9:b9:25:6c:32:d9:03:b3:c0:ef:33:fa: 32:0a:55:c7:ca:89:a1:ac:44:e4:7b:a0:9a:c7:b5:96:74:09: 45:62:95:7c:e8:17:99:e8:53:90:b8:20:3a:e9:19:ca:f9:cc: cf:3d:1c:79:65:aa:ad:3f:ee:61:32:36:22:92:9c:ef:9c:4b: ef:96:b1:37:eb:a7:30:81:e3:4a:f8:c6:8f:c1:3a:08:73:57: 9a:18:e6:9d:be:7d:b2:0a:76:04:6d:9b:98:d7:61:ad:5e:1d: b8:52:82:ce:56:84:e7:68:93:f9:1b:cf:21:cf:29:94:2a:b3: 34:40:02:3d:8a:6a:7d:c0:7e:ff:38:04:b1:f9:69:51:71:a3: a9:70:4e:e9:79:a5:4f:12:84:44:0c:ce:29:64:46:5a:77:89: b4:c6:23:d0:96:ff:b1:73:c8:07:dc:27:fc:4b:01:33:d8:bb: 85:16:77:d5:b3:fd:94:0a:0c:06:27:3b:25:89:8f:a6:c2:8c: 78:c9:77:41:ab:c6:67:81:5f:6a:94:70:50:85:96:73:4c:55: 38:95:3e:6f:4a:b3:b8:16:5d:98:ac:16:ac:f5:d6:49:79:eb: d1:95:da:d6:1c:49:34:53:aa:4c:56:6e:01:dd:ad:6b:80:06: 81:1b:7d:c2 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBDzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF QTQwOTExMC8GA1UEBRMoMjE2NERENTlBNjE1RDVGMkUzMzkzRTcyMDk4QTczQUQ4 NjhFNzhEQTAeFw0yNDExMjMwNjAzNThaFw0yNDExMzAwNjAzNThaMBgxFjAUBgNV BAMTDTY3NDE3MDRlLTZlZWMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDKN8XuP93WCLdR5F4sh+NQlubgT9q3L+csipdcBpGX7IHWRXRPoTTR/HEF82mO udj4kvYGVTzVuvhJb8ZBnbz44jLZ2v2LiiHtmoW/y8VwfytFxHBLsYwy+5MTNPIY nogfbbm3gKYQubkZsFdf+4wOOJ1H1beLkwEmB1r8r8U9JuBcz1Z07S/+IF5jCm+c 5Oq/KKyGFnDV+nqraxbnOMDt6BQgG3IN2t4SmtNV5ImUMmRfwgAUfGWD922QfyPP r5UIvW40ZdEM6rnmCt001bKc+FNmX5r/647L+tQCVx++r7izAljtIqoMSEJjKLYm SWANiCqAJ4rsNPZ3KVhqGecBAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUhS9GZqf+ RJOf6b5PDDJMEo67gXgwHwYDVR0jBBgwFoAUIWTdWaYV1fLjOT5yCYpzrYaOeNow DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUVBNDA5L0Y5NDRFM0NDOUNB QjExRUZBQjU5NTUxNkM0RjlBRTAyL0lXVGRXYVlWMWZMak9UNXlDWXB6cllhT2VO by5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvSVdUZFdhWVYxZkxqT1Q1eUNZcHpyWWFPZU5vLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUVB NDA5L0Y5NDRFM0NDOUNBQjExRUZBQjU5NTUxNkM0RjlBRTAyL0lXVGRXYVlWMWZM ak9UNXlDWXB6cllhT2VOby5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAC70dHsnOum5JWwy2QOzwO8z+jIKVcfKiaGsROR7oJrHtZZ0CUVilXzo F5noU5C4IDrpGcr5zM89HHllqq0/7mEyNiKSnO+cS++WsTfrpzCB40r4xo/BOghz V5oY5p2+fbIKdgRtm5jXYa1eHbhSgs5WhOdok/kbzyHPKZQqszRAAj2Kan3Afv84 BLH5aVFxo6lwTul5pU8ShEQMzilkRlp3ibTGI9CW/7FzyAfcJ/xLATPYu4UWd9Wz /ZQKDAYnOyWJj6bCjHjJd0GrxmeBX2qUcFCFlnNMVTiVPm9Ks7gWXZisFqz11kl5 69GV2tYcSTRTqkxWbgHdrWuABoEbfcI= -----END CERTIFICATE-----Generated at Sat Nov 23 07:45:05 2024 by rpki-client on console-ams.rpki-client.org