$ rpki-client -vvf rpki.apnic.net/member_repository/A91F4E89/C533D7242AF411EAA48F1541C4F9AE02/Df2AHulmIu0X31XXqqZMce_5t70.mft File: Df2AHulmIu0X31XXqqZMce_5t70.mft (raw, json) Hash identifier: JtxoohC7/QkXHo/jZn0qWavzAJtSYEi4uZIN3FJlFHI= Subject key identifier: 9F:E8:F2:86:95:7C:51:4C:C8:C6:37:33:14:21:76:AF:89:86:FF:91 Authority key identifier: 0D:FD:80:1E:E9:66:22:ED:17:DF:55:D7:AA:A6:4C:71:EF:F9:B7:BD Certificate issuer: /CN=A91F4E89/serialNumber=0DFD801EE96622ED17DF55D7AAA64C71EFF9B7BD Certificate serial: 0B21 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Df2AHulmIu0X31XXqqZMce_5t70.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F4E89/C533D7242AF411EAA48F1541C4F9AE02/Df2AHulmIu0X31XXqqZMce_5t70.mft Manifest number: 0B1C Signing time: Fri 22 Nov 2024 19:00:32 +0000 Manifest this update: Fri 22 Nov 2024 19:00:32 +0000 Manifest next update: Fri 29 Nov 2024 19:00:32 +0000 Files and hashes: 1: Df2AHulmIu0X31XXqqZMce_5t70.crl (hash: Fq3bgeaAgZ9h0hA2jxw9ISPA3pEClY6qKxd6RzpkNCg=) 2: 72F52C962AF511EA8C989441C4F9AE02.roa (hash: mNsfVlUdSNKkq52L+MBYvDx8ykV4jZ5oquFR9uSMYKo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F4E89/C533D7242AF411EAA48F1541C4F9AE02/Df2AHulmIu0X31XXqqZMce_5t70.crl rsync://rpki.apnic.net/member_repository/A91F4E89/C533D7242AF411EAA48F1541C4F9AE02/Df2AHulmIu0X31XXqqZMce_5t70.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Df2AHulmIu0X31XXqqZMce_5t70.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 18:50:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2849 (0xb21) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F4E89/serialNumber=0DFD801EE96622ED17DF55D7AAA64C71EFF9B7BD Validity Not Before: Nov 22 19:00:32 2024 GMT Not After : Nov 29 19:00:32 2024 GMT Subject: CN=6740d4d0-8f53 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:db:4e:0b:34:8e:ff:f2:d3:87:b6:f9:f9:e7: 2c:03:90:d8:7a:ba:36:e5:41:1d:0c:d8:72:08:e8: 33:07:99:41:13:6e:0e:5d:68:37:23:aa:e9:c1:03: 24:5f:52:07:e2:ce:b6:49:c7:82:7f:40:95:2e:be: 03:c2:7a:48:47:e9:77:50:9b:0d:42:11:df:e1:da: 4f:d9:16:f4:c8:3c:71:23:a4:d4:9b:05:4c:5c:1a: 1f:cc:88:b8:cf:72:13:1e:e8:21:9b:8f:7d:ff:cf: b0:69:b2:10:cc:50:50:2b:0e:af:c7:7d:3c:3c:e9: df:ed:96:fb:5b:c9:bf:ab:a6:eb:69:c4:30:67:75: e1:57:28:62:ad:22:ab:70:78:dc:d2:4b:a6:55:ac: 23:a3:5e:c0:40:17:10:f1:e5:a1:57:6b:e5:80:48: eb:70:57:21:d7:48:57:79:1f:b9:2d:9d:7d:19:15: 61:bb:1f:20:f9:19:07:65:30:5d:a4:2e:b8:ec:1d: 32:84:af:ff:08:39:6b:6c:b5:fa:69:4e:2c:ba:5a: 82:97:ba:11:c8:30:d7:46:70:d3:2c:8a:25:33:b4: 54:44:9c:ae:71:7d:f2:25:e4:d3:37:b5:ca:37:36: 8c:ee:51:67:41:69:24:e0:4e:72:88:7d:64:b5:54: 7e:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9F:E8:F2:86:95:7C:51:4C:C8:C6:37:33:14:21:76:AF:89:86:FF:91 X509v3 Authority Key Identifier: keyid:0D:FD:80:1E:E9:66:22:ED:17:DF:55:D7:AA:A6:4C:71:EF:F9:B7:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F4E89/C533D7242AF411EAA48F1541C4F9AE02/Df2AHulmIu0X31XXqqZMce_5t70.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Df2AHulmIu0X31XXqqZMce_5t70.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F4E89/C533D7242AF411EAA48F1541C4F9AE02/Df2AHulmIu0X31XXqqZMce_5t70.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 86:86:22:69:48:8e:99:95:1c:19:37:a1:f1:c5:7a:35:b6:c8: ea:21:78:72:e1:c7:b9:a2:e9:38:3f:f7:a2:2f:82:f3:54:2e: 3f:51:75:10:ce:b2:80:1b:a3:f2:c9:c2:29:11:d0:cb:e1:5a: 56:17:06:cf:04:52:d6:4a:b6:f1:df:41:cb:72:4d:12:e3:06: 3f:26:75:35:bf:c9:6b:b4:71:2b:86:91:06:ee:7f:e5:4a:57: 16:0e:27:a9:5d:cf:15:bb:d5:4c:ed:be:e0:da:81:9b:0b:89: 93:77:67:d3:65:d7:0b:97:f9:79:98:76:7e:80:4e:2b:3d:d4: 06:79:d5:5a:e0:74:55:0d:ee:0a:96:21:2c:59:59:9b:c6:c4: 14:18:73:e6:bf:48:7a:a8:cd:61:42:5e:a7:a0:09:7a:33:8d: 47:a7:a0:f2:10:9e:9a:8f:0f:05:ba:12:ab:ec:57:83:9a:b5: f3:41:08:42:5e:f1:90:3d:2b:db:62:7e:46:6f:f2:bc:e8:f4: 4d:7b:61:0a:c8:48:5c:9a:f2:e4:e4:6b:0f:16:59:55:ea:6e: f3:e3:77:49:0d:e7:bc:b7:ce:85:db:84:e9:6a:db:08:01:1c: 23:2f:a9:8f:d6:04:c5:15:81:27:60:02:2a:8c:45:41:3b:79: da:de:e3:a4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCyEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjRFODkxMTAvBgNVBAUTKDBERkQ4MDFFRTk2NjIyRUQxN0RGNTVEN0FBQTY0Qzcx RUZGOUI3QkQwHhcNMjQxMTIyMTkwMDMyWhcNMjQxMTI5MTkwMDMyWjAYMRYwFAYD VQQDEw02NzQwZDRkMC04ZjUzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsdtOCzSO//LTh7b5+ecsA5DYero25UEdDNhyCOgzB5lBE24OXWg3I6rpwQMk X1IH4s62SceCf0CVLr4DwnpIR+l3UJsNQhHf4dpP2Rb0yDxxI6TUmwVMXBofzIi4 z3ITHughm499/8+wabIQzFBQKw6vx308POnf7Zb7W8m/q6bracQwZ3XhVyhirSKr cHjc0kumVawjo17AQBcQ8eWhV2vlgEjrcFch10hXeR+5LZ19GRVhux8g+RkHZTBd pC647B0yhK//CDlrbLX6aU4sulqCl7oRyDDXRnDTLIolM7RURJyucX3yJeTTN7XK NzaM7lFnQWkk4E5yiH1ktVR+sQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJ/o8oaV fFFMyMY3MxQhdq+Jhv+RMB8GA1UdIwQYMBaAFA39gB7pZiLtF99V16qmTHHv+be9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNEU4OS9DNTMzRDcyNDJB RjQxMUVBQTQ4RjE1NDFDNEY5QUUwMi9EZjJBSHVsbUl1MFgzMVhYcXFaTWNlXzV0 NzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0RmMkFIdWxtSXUwWDMxWFhxcVpNY2VfNXQ3MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NEU4OS9DNTMzRDcyNDJBRjQxMUVBQTQ4RjE1NDFDNEY5QUUwMi9EZjJBSHVsbUl1 MFgzMVhYcXFaTWNlXzV0NzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCGhiJpSI6ZlRwZN6HxxXo1tsjqIXhy4ce5ouk4P/eiL4LzVC4/UXUQ zrKAG6PyycIpEdDL4VpWFwbPBFLWSrbx30HLck0S4wY/JnU1v8lrtHErhpEG7n/l SlcWDiepXc8Vu9VM7b7g2oGbC4mTd2fTZdcLl/l5mHZ+gE4rPdQGedVa4HRVDe4K liEsWVmbxsQUGHPmv0h6qM1hQl6noAl6M41Hp6DyEJ6ajw8FuhKr7FeDmrXzQQhC XvGQPSvbYn5Gb/K86PRNe2EKyEhcmvLk5GsPFllV6m7z43dJDee8t86F24TpatsI ARwjL6mP1gTFFYEnYAIqjEVBO3na3uOk -----END CERTIFICATE-----Generated at Fri Nov 22 19:45:05 2024 by rpki-client on console-fra.rpki-client.org