$ rpki-client -vvf rpki.apnic.net/member_repository/A91317CB/CB73F7864AB311E8AD4D1E28C4F9AE02/3Fys5yJTQlYHBjKHYfkTyTZJius.mft File: 3Fys5yJTQlYHBjKHYfkTyTZJius.mft (raw, json) Hash identifier: 3NhxvHo/Q3MEJGXm+yAaFywg69yumMltF0tWCnlERTA= Subject key identifier: BB:3F:AA:22:15:2B:F1:4D:32:53:6D:66:7B:4F:27:FD:E2:E8:64:12 Authority key identifier: DC:5C:AC:E7:22:53:42:56:07:06:32:87:61:F9:13:C9:36:49:8A:EB Certificate issuer: /CN=A91317CB/serialNumber=DC5CACE7225342560706328761F913C936498AEB Certificate serial: 14B3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3Fys5yJTQlYHBjKHYfkTyTZJius.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91317CB/CB73F7864AB311E8AD4D1E28C4F9AE02/3Fys5yJTQlYHBjKHYfkTyTZJius.mft Manifest number: 14AC Signing time: Fri 22 Nov 2024 16:51:32 +0000 Manifest this update: Fri 22 Nov 2024 16:51:32 +0000 Manifest next update: Fri 29 Nov 2024 16:51:32 +0000 Files and hashes: 1: 3Fys5yJTQlYHBjKHYfkTyTZJius.crl (hash: BSNQJqn2lVJgZAIRzEGXwtkaPvjq4YawTxA8NYm+1Aw=) 2: CBA65F7C4AB411E887FB7E29C4F9AE02.roa (hash: q+1s6n0nvvvzY2lsXHxfSdzsEmNaz8tOfMeKBxpnQYI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91317CB/CB73F7864AB311E8AD4D1E28C4F9AE02/3Fys5yJTQlYHBjKHYfkTyTZJius.crl rsync://rpki.apnic.net/member_repository/A91317CB/CB73F7864AB311E8AD4D1E28C4F9AE02/3Fys5yJTQlYHBjKHYfkTyTZJius.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3Fys5yJTQlYHBjKHYfkTyTZJius.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 16:30:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5299 (0x14b3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91317CB/serialNumber=DC5CACE7225342560706328761F913C936498AEB Validity Not Before: Nov 22 16:51:32 2024 GMT Not After : Nov 29 16:51:32 2024 GMT Subject: CN=6740b694-7345 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:ee:99:66:29:ac:8f:b5:f7:55:4d:74:ea:44: 3c:e3:3d:ee:9b:75:85:19:a4:be:da:c0:9c:af:f7: a7:bf:99:d3:92:41:7c:42:33:49:e6:9b:a7:d5:eb: d2:02:77:f8:9c:4f:d3:03:fc:25:f6:4e:92:86:f8: 50:8f:2a:90:24:c5:a5:1b:b8:98:40:97:d2:21:64: 17:31:05:a6:2d:ce:aa:5b:e8:5c:fb:a1:ac:ee:a8: 97:9d:fe:3c:48:be:92:0c:6b:5a:9f:19:a5:50:aa: 2c:70:74:57:c4:5e:8b:6e:50:b5:ac:42:af:e2:a8: 11:77:a1:23:c6:06:ca:25:a6:0d:07:ce:9b:4b:b0: 16:aa:9c:31:32:ea:f0:b1:ab:76:fa:de:52:61:ba: 3b:fe:13:94:b7:78:92:4a:4a:f7:f4:da:72:86:19: 28:0a:a7:c0:65:3f:d6:f2:5b:75:65:1a:e2:b3:00: 7c:99:76:da:90:48:2a:a0:9a:51:ce:b1:d1:f5:11: 7a:91:44:85:b8:74:31:45:b4:eb:e0:25:43:7d:bd: b1:fc:f9:ca:68:a2:df:a2:02:f8:3f:c2:39:fe:18: d2:0e:2c:eb:54:bf:9b:ba:ca:48:4a:8c:15:81:08: 18:4b:a5:fc:c1:51:83:bf:88:87:e7:bc:76:c8:29: 02:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:3F:AA:22:15:2B:F1:4D:32:53:6D:66:7B:4F:27:FD:E2:E8:64:12 X509v3 Authority Key Identifier: keyid:DC:5C:AC:E7:22:53:42:56:07:06:32:87:61:F9:13:C9:36:49:8A:EB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91317CB/CB73F7864AB311E8AD4D1E28C4F9AE02/3Fys5yJTQlYHBjKHYfkTyTZJius.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3Fys5yJTQlYHBjKHYfkTyTZJius.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91317CB/CB73F7864AB311E8AD4D1E28C4F9AE02/3Fys5yJTQlYHBjKHYfkTyTZJius.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ab:20:d6:b2:e1:ff:6e:af:7e:e6:46:09:b9:45:84:76:ab:81: 5c:d5:90:28:4e:0e:5b:24:11:35:02:b8:7e:9d:02:3e:b8:8e: fd:1b:5d:9d:27:3f:25:08:96:44:85:53:b6:e3:b0:e5:f3:c9: b6:6e:36:40:4d:a1:82:d0:4d:af:5f:0c:38:c0:9e:ee:bc:58: 37:d7:35:fa:20:a9:df:1d:dd:7e:19:c6:0e:72:43:bc:de:62: 33:7f:52:9d:e9:80:41:dd:23:0b:29:dc:9a:8b:7c:41:1b:2a: df:07:81:fd:20:31:37:0b:f8:12:88:c6:cc:b9:73:e2:4b:47: 2e:5d:ef:3c:eb:21:e4:3d:3d:fd:5a:cf:e5:d5:1b:b3:9d:90: a7:b8:c5:77:d7:3d:d3:5e:29:9f:a3:2b:bc:50:22:51:01:fe: 1a:26:4e:65:c9:a6:b0:93:d8:8d:21:4c:05:84:99:15:96:16: 71:e6:a2:24:3b:8c:fe:50:60:ac:aa:98:e9:0d:77:c7:37:9d: 30:fc:98:04:f5:c8:42:bf:20:0b:dd:43:6e:32:43:2e:0b:f5: 8c:90:9a:5a:17:67:c3:c6:12:d3:1a:bd:62:87:c3:f0:05:64: e2:b7:ed:5e:ef:72:76:44:4b:6a:bc:75:58:99:9f:59:bc:04: 95:f6:33:ba -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFLMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzE3Q0IxMTAvBgNVBAUTKERDNUNBQ0U3MjI1MzQyNTYwNzA2MzI4NzYxRjkxM0M5 MzY0OThBRUIwHhcNMjQxMTIyMTY1MTMyWhcNMjQxMTI5MTY1MTMyWjAYMRYwFAYD VQQDEw02NzQwYjY5NC03MzQ1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1O6ZZimsj7X3VU106kQ84z3um3WFGaS+2sCcr/env5nTkkF8QjNJ5pun1evS Anf4nE/TA/wl9k6ShvhQjyqQJMWlG7iYQJfSIWQXMQWmLc6qW+hc+6Gs7qiXnf48 SL6SDGtanxmlUKoscHRXxF6LblC1rEKv4qgRd6EjxgbKJaYNB86bS7AWqpwxMurw sat2+t5SYbo7/hOUt3iSSkr39NpyhhkoCqfAZT/W8lt1ZRriswB8mXbakEgqoJpR zrHR9RF6kUSFuHQxRbTr4CVDfb2x/PnKaKLfogL4P8I5/hjSDizrVL+buspISowV gQgYS6X8wVGDv4iH57x2yCkCZQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLs/qiIV K/FNMlNtZntPJ/3i6GQSMB8GA1UdIwQYMBaAFNxcrOciU0JWBwYyh2H5E8k2SYrr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMTdDQi9DQjczRjc4NjRB QjMxMUU4QUQ0RDFFMjhDNEY5QUUwMi8zRnlzNXlKVFFsWUhCaktIWWZrVHlUWkpp dXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNGeXM1eUpUUWxZSEJqS0hZZmtUeVRaSml1cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MTdDQi9DQjczRjc4NjRBQjMxMUU4QUQ0RDFFMjhDNEY5QUUwMi8zRnlzNXlKVFFs WUhCaktIWWZrVHlUWkppdXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCrINay4f9ur37mRgm5RYR2q4Fc1ZAoTg5bJBE1Arh+nQI+uI79G12d Jz8lCJZEhVO247Dl88m2bjZATaGC0E2vXww4wJ7uvFg31zX6IKnfHd1+GcYOckO8 3mIzf1Kd6YBB3SMLKdyai3xBGyrfB4H9IDE3C/gSiMbMuXPiS0cuXe886yHkPT39 Ws/l1RuznZCnuMV31z3TXimfoyu8UCJRAf4aJk5lyaawk9iNIUwFhJkVlhZx5qIk O4z+UGCsqpjpDXfHN50w/JgE9chCvyAL3UNuMkMuC/WMkJpaF2fDxhLTGr1ih8Pw BWTit+1e73J2REtqvHVYmZ9ZvASV9jO6 -----END CERTIFICATE-----Generated at Fri Nov 22 17:55:40 2024 by rpki-client on console-fra.rpki-client.org