$ rpki-client -vvf rpki.apnic.net/member_repository/A91F147C/7E0F587201E911EDAF8BDE30C4F9AE02/7aOF1FcjseHfKXP2K10jovv9JoY.mft File: 7aOF1FcjseHfKXP2K10jovv9JoY.mft (raw, json) Hash identifier: W4taA21Coe3b2PkRoGChE2wBEbSKejVPfJTAmV+KMRE= Subject key identifier: B1:86:DA:D0:30:00:7C:D8:A7:45:47:A3:E7:D8:75:39:E6:C3:4A:7B Authority key identifier: ED:A3:85:D4:57:23:B1:E1:DF:29:73:F6:2B:5D:23:A2:FB:FD:26:86 Certificate issuer: /CN=A91F147C/serialNumber=EDA385D45723B1E1DF2973F62B5D23A2FBFD2686 Certificate serial: 0252 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7aOF1FcjseHfKXP2K10jovv9JoY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F147C/7E0F587201E911EDAF8BDE30C4F9AE02/7aOF1FcjseHfKXP2K10jovv9JoY.mft Manifest number: 0243 Signing time: Thu 21 Nov 2024 01:23:21 +0000 Manifest this update: Thu 21 Nov 2024 01:23:21 +0000 Manifest next update: Thu 28 Nov 2024 01:23:21 +0000 Files and hashes: 1: 7aOF1FcjseHfKXP2K10jovv9JoY.crl (hash: Sg4WRL/fvSioEKkVXNzN7vkUperzQmIBsmCDvm9hpO8=) 2: E4F8A0BA47ED11EF8A746168C4F9AE02.roa (hash: rCllvSopoGz8aDfU9lvXSKhRHbkj+3Ed22RiWwBDqfc=) 3: B2FE8B7A90E911EF93A2CE59C4F9AE02.roa (hash: WarlwyPZa6+KTn9IviJVET/FHc62uIFcyC2ylkk8TYg=) 4: D756B35890E911EFBF47235AC4F9AE02.roa (hash: sXl+dZ0cNnIJUOouChkb/SBhcvOd/zmcJtMgC+yiUzY=) 5: 3E42D72470C211EF8E1C1A53C4F9AE02.roa (hash: r2jQWbLR0w5DwwYuRKtZMoZhI+H3o0efOqmfSGoH/9I=) 6: FBE1E73689E311EF9021CE0CC4F9AE02.roa (hash: 455DCGiIcAmYhveApDA31/VkiMOYSAFDxNYnnGbSEJY=) 7: 1C7AC7FE4B0711EFBB12B717C4F9AE02.roa (hash: lOUpDRjlxbgUApviuBIHPbtPtdQ0a+j/Lmf0E0RCirU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F147C/7E0F587201E911EDAF8BDE30C4F9AE02/7aOF1FcjseHfKXP2K10jovv9JoY.crl rsync://rpki.apnic.net/member_repository/A91F147C/7E0F587201E911EDAF8BDE30C4F9AE02/7aOF1FcjseHfKXP2K10jovv9JoY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7aOF1FcjseHfKXP2K10jovv9JoY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:33:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 594 (0x252) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F147C/serialNumber=EDA385D45723B1E1DF2973F62B5D23A2FBFD2686 Validity Not Before: Nov 21 01:23:21 2024 GMT Not After : Nov 28 01:23:21 2024 GMT Subject: CN=673e8b89-a743 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:14:48:90:f2:af:07:c7:46:8d:26:a5:34:c2: 22:15:16:68:df:db:e4:f0:aa:64:d6:7e:b8:c4:7e: cb:1e:d5:09:ca:b5:a1:bf:95:22:27:3a:e4:2a:92: 16:87:f0:87:ea:f6:61:39:45:14:f5:c0:95:98:23: 71:73:fd:00:17:bf:00:76:73:7f:2e:bd:f9:c7:ba: 4f:12:bf:81:de:59:16:03:cf:d0:a3:1a:a4:65:8a: 3e:91:75:90:66:e9:3e:2a:3d:30:98:49:87:44:47: cb:60:36:a2:6a:70:49:39:f3:be:d2:5c:31:f2:58: bc:2f:a8:f6:33:6e:77:da:4a:1f:e8:35:1e:e7:90: e6:24:d9:50:61:a9:b2:74:22:2b:df:0b:25:5b:5a: f5:a2:41:d2:a8:cf:cc:9a:fd:48:17:f9:fb:29:11: 7c:b2:f1:a4:23:0b:ca:a0:98:d5:92:a1:c6:e0:64: 17:f5:f8:04:a3:90:cb:09:f0:77:2a:83:02:49:e9: d8:d0:16:c6:35:8e:f6:b8:ef:42:02:e8:ea:61:ff: 77:04:9f:7b:2f:e6:91:4a:a6:af:03:04:ae:1c:dc: 17:47:3a:ba:d1:1c:a5:1e:37:5f:d9:79:52:2f:53: b7:52:2b:b4:3e:a9:62:d2:4c:39:3c:dd:bf:90:af: 37:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:86:DA:D0:30:00:7C:D8:A7:45:47:A3:E7:D8:75:39:E6:C3:4A:7B X509v3 Authority Key Identifier: keyid:ED:A3:85:D4:57:23:B1:E1:DF:29:73:F6:2B:5D:23:A2:FB:FD:26:86 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F147C/7E0F587201E911EDAF8BDE30C4F9AE02/7aOF1FcjseHfKXP2K10jovv9JoY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7aOF1FcjseHfKXP2K10jovv9JoY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F147C/7E0F587201E911EDAF8BDE30C4F9AE02/7aOF1FcjseHfKXP2K10jovv9JoY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 17:45:15:fe:c6:3b:8c:81:f4:d8:b8:e1:e0:f1:d2:e8:00:17: 58:90:18:bd:a9:c7:2b:4e:b4:fc:bc:a1:1a:07:ff:57:a9:73: 53:f8:f8:4f:e3:f0:da:87:16:d4:93:a1:77:82:53:c5:c0:d2: f3:11:bd:fe:ec:25:e0:1a:31:1c:fe:b2:76:71:48:33:0d:7a: 08:4c:6e:8c:72:bf:13:45:c7:a7:e2:24:e5:54:4c:e8:8a:20: d8:bf:ba:e5:dd:e7:a3:ee:0a:e9:34:5e:23:3b:a7:74:b5:e9: 9d:4d:3d:71:48:bd:ba:02:fc:8c:da:79:27:b6:81:3b:e7:f2: 29:6b:2b:1c:ff:7c:73:5a:ef:0c:2c:13:08:b4:ea:2a:26:c8: 0a:66:4d:e2:aa:03:fe:cc:da:1e:5f:da:f9:89:d1:bc:2b:27: 46:86:67:52:6b:a5:55:51:f3:ac:63:6b:7c:3d:1c:c8:97:44: 4f:87:c8:e8:2e:51:b5:41:cf:06:74:be:fc:c9:d7:89:08:07: 4c:e2:19:1a:f0:68:96:50:f0:75:8f:87:68:51:ef:8a:72:eb: 06:f1:9c:c3:13:8d:c9:0a:72:8b:9e:da:b2:08:9c:3a:b2:ad: c4:cf:e9:9b:4d:27:3e:6a:31:b4:d9:2c:f1:df:2e:e5:30:7c: d8:e9:57:7c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAlIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjE0N0MxMTAvBgNVBAUTKEVEQTM4NUQ0NTcyM0IxRTFERjI5NzNGNjJCNUQyM0Ey RkJGRDI2ODYwHhcNMjQxMTIxMDEyMzIxWhcNMjQxMTI4MDEyMzIxWjAYMRYwFAYD VQQDEw02NzNlOGI4OS1hNzQzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuxRIkPKvB8dGjSalNMIiFRZo39vk8Kpk1n64xH7LHtUJyrWhv5UiJzrkKpIW h/CH6vZhOUUU9cCVmCNxc/0AF78AdnN/Lr35x7pPEr+B3lkWA8/QoxqkZYo+kXWQ Zuk+Kj0wmEmHREfLYDaianBJOfO+0lwx8li8L6j2M2532kof6DUe55DmJNlQYamy dCIr3wslW1r1okHSqM/Mmv1IF/n7KRF8svGkIwvKoJjVkqHG4GQX9fgEo5DLCfB3 KoMCSenY0BbGNY72uO9CAujqYf93BJ97L+aRSqavAwSuHNwXRzq60RylHjdf2XlS L1O3Uiu0Pqli0kw5PN2/kK83MwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLGG2tAw AHzYp0VHo+fYdTnmw0p7MB8GA1UdIwQYMBaAFO2jhdRXI7Hh3ylz9itdI6L7/SaG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMTQ3Qy83RTBGNTg3MjAx RTkxMUVEQUY4QkRFMzBDNEY5QUUwMi83YU9GMUZjanNlSGZLWFAySzEwam92djlK b1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzdhT0YxRmNqc2VIZktYUDJLMTBqb3Z2OUpvWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MTQ3Qy83RTBGNTg3MjAxRTkxMUVEQUY4QkRFMzBDNEY5QUUwMi83YU9GMUZjanNl SGZLWFAySzEwam92djlKb1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAXRRX+xjuMgfTYuOHg8dLoABdYkBi9qccrTrT8vKEaB/9XqXNT+PhP 4/DahxbUk6F3glPFwNLzEb3+7CXgGjEc/rJ2cUgzDXoITG6Mcr8TRcen4iTlVEzo iiDYv7rl3eej7grpNF4jO6d0temdTT1xSL26AvyM2nkntoE75/Ipaysc/3xzWu8M LBMItOoqJsgKZk3iqgP+zNoeX9r5idG8KydGhmdSa6VVUfOsY2t8PRzIl0RPh8jo LlG1Qc8GdL78ydeJCAdM4hka8GiWUPB1j4doUe+KcusG8ZzDE43JCnKLntqyCJw6 sq3Ez+mbTSc+ajG02Szx3y7lMHzY6Vd8 -----END CERTIFICATE-----Generated at Thu Nov 21 03:21:56 2024 by rpki-client on console-ams.rpki-client.org