$ rpki-client -vvf rpki.apnic.net/member_repository/A91319EA/D26C4128F8E811EC8B577271C4F9AE02/fT3bIK_-cUyPNUllHB7oD1VgEbg.mft File: fT3bIK_-cUyPNUllHB7oD1VgEbg.mft (raw, json) Hash identifier: FEtdatLComnCKDyBlX7RKTxhhuFwtjLCLtGbQ+8yiD0= Subject key identifier: 04:D0:CE:B0:E1:54:09:AB:4D:0C:FD:81:B3:2E:24:31:E0:AA:D8:64 Authority key identifier: 7D:3D:DB:20:AF:FE:71:4C:8F:35:49:65:1C:1E:E8:0F:55:60:11:B8 Certificate issuer: /CN=A91319EA/serialNumber=7D3DDB20AFFE714C8F3549651C1EE80F556011B8 Certificate serial: 024E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fT3bIK_-cUyPNUllHB7oD1VgEbg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91319EA/D26C4128F8E811EC8B577271C4F9AE02/fT3bIK_-cUyPNUllHB7oD1VgEbg.mft Manifest number: 024B Signing time: Sat 23 Nov 2024 01:18:33 +0000 Manifest this update: Sat 23 Nov 2024 01:18:32 +0000 Manifest next update: Sat 30 Nov 2024 01:18:32 +0000 Files and hashes: 1: fT3bIK_-cUyPNUllHB7oD1VgEbg.crl (hash: INtfBNiKwpS91HkhR7vQKXJLh/36n1heS3c/tVts1R4=) 2: BFD5E8EAF8EB11EC9C39C677C4F9AE02.roa (hash: 81tZME9FAwzO2UIk/WDugs2sSYBMwRpnwSHq/X3xc/Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91319EA/D26C4128F8E811EC8B577271C4F9AE02/fT3bIK_-cUyPNUllHB7oD1VgEbg.crl rsync://rpki.apnic.net/member_repository/A91319EA/D26C4128F8E811EC8B577271C4F9AE02/fT3bIK_-cUyPNUllHB7oD1VgEbg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fT3bIK_-cUyPNUllHB7oD1VgEbg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 590 (0x24e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91319EA/serialNumber=7D3DDB20AFFE714C8F3549651C1EE80F556011B8 Validity Not Before: Nov 23 01:18:32 2024 GMT Not After : Nov 30 01:18:32 2024 GMT Subject: CN=67412d69-ca79 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:f4:73:23:cf:f9:7d:49:8a:7b:ba:aa:79:4a: 4d:9a:6d:5a:7b:75:c6:a8:d6:4c:a1:43:ba:18:8e: b2:f2:9a:b0:e9:cc:df:34:c2:64:63:0d:a9:39:cd: 0c:4d:0d:77:c5:40:59:87:f8:b4:c2:18:28:43:fd: b2:e5:72:be:15:4a:0e:7c:23:93:d4:40:58:4f:d9: 73:e4:22:77:7c:7a:f1:4c:df:2b:c7:74:bd:ea:62: 25:27:39:ee:65:39:12:8f:c0:41:fa:d3:f6:76:49: 87:1b:82:06:31:47:d7:c3:5f:47:17:ff:93:ef:7c: a6:44:3b:fc:0a:a0:f0:73:e8:da:62:4a:8e:3d:4a: 49:12:b7:b3:fa:26:41:9f:88:99:ce:ac:17:b1:8c: 85:0b:db:82:bb:cb:48:e2:30:22:b2:b6:79:86:55: c1:6a:2c:d6:81:9c:94:6e:88:56:24:2d:bf:3d:c5: b3:22:9d:5d:7c:33:53:17:15:8a:e8:d8:55:5c:7e: 35:10:9a:5c:6b:d0:93:d5:92:f6:49:ef:d3:60:02: 9e:7b:34:33:70:34:b9:98:79:eb:ad:2a:8e:7a:41: 41:30:78:d6:f0:4d:b5:ac:e6:53:71:70:07:36:ee: 0f:75:f5:9c:34:b9:55:ca:bd:5b:c0:a7:08:81:0c: eb:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:D0:CE:B0:E1:54:09:AB:4D:0C:FD:81:B3:2E:24:31:E0:AA:D8:64 X509v3 Authority Key Identifier: keyid:7D:3D:DB:20:AF:FE:71:4C:8F:35:49:65:1C:1E:E8:0F:55:60:11:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91319EA/D26C4128F8E811EC8B577271C4F9AE02/fT3bIK_-cUyPNUllHB7oD1VgEbg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fT3bIK_-cUyPNUllHB7oD1VgEbg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91319EA/D26C4128F8E811EC8B577271C4F9AE02/fT3bIK_-cUyPNUllHB7oD1VgEbg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2f:ba:81:55:44:f3:2b:18:09:83:91:f2:23:19:42:1e:07:7d: 85:52:6b:20:26:27:b6:57:31:a4:6e:1d:60:8e:ca:e2:e2:63: f0:a7:44:57:2f:4a:77:40:53:cc:b1:6c:9b:20:ed:46:03:2f: aa:8d:21:36:82:00:99:8c:fa:b5:c6:87:d7:42:c4:2c:86:a2: bc:34:42:eb:9f:90:5e:94:62:15:10:19:e4:92:8b:39:e0:10: 0b:1e:fa:c3:13:b2:5b:ac:df:58:61:34:27:05:d8:5e:a0:76: 98:8b:53:b7:51:1e:b4:87:3b:31:63:1d:aa:d9:60:9f:05:f3: 24:2f:48:6b:77:b2:03:c7:d1:9a:8c:ee:69:94:c2:13:53:bc: e7:98:99:39:5a:0a:e3:09:8b:52:95:2b:79:a9:b2:43:3d:ff: 52:99:ad:8e:4d:b1:ae:c8:c2:8b:c4:5a:c5:b8:d5:d5:f9:05: 37:d2:7b:58:4e:73:1b:39:ef:74:39:fc:58:19:c4:5e:66:1e: f1:2c:d6:b1:92:99:55:37:5a:4e:01:fe:3e:60:0d:31:fb:01: e6:3c:db:28:bc:7c:3d:3a:10:85:7f:97:de:66:6e:c0:b4:17: 1a:96:2d:0b:3d:5a:cd:e2:50:63:70:58:01:41:66:5b:99:b1: 83:f4:b7:51 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAk4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzE5RUExMTAvBgNVBAUTKDdEM0REQjIwQUZGRTcxNEM4RjM1NDk2NTFDMUVFODBG NTU2MDExQjgwHhcNMjQxMTIzMDExODMyWhcNMjQxMTMwMDExODMyWjAYMRYwFAYD VQQDEw02NzQxMmQ2OS1jYTc5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3PRzI8/5fUmKe7qqeUpNmm1ae3XGqNZMoUO6GI6y8pqw6czfNMJkYw2pOc0M TQ13xUBZh/i0whgoQ/2y5XK+FUoOfCOT1EBYT9lz5CJ3fHrxTN8rx3S96mIlJznu ZTkSj8BB+tP2dkmHG4IGMUfXw19HF/+T73ymRDv8CqDwc+jaYkqOPUpJErez+iZB n4iZzqwXsYyFC9uCu8tI4jAisrZ5hlXBaizWgZyUbohWJC2/PcWzIp1dfDNTFxWK 6NhVXH41EJpca9CT1ZL2Se/TYAKeezQzcDS5mHnrrSqOekFBMHjW8E21rOZTcXAH Nu4PdfWcNLlVyr1bwKcIgQzrmQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFATQzrDh VAmrTQz9gbMuJDHgqthkMB8GA1UdIwQYMBaAFH092yCv/nFMjzVJZRwe6A9VYBG4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMTlFQS9EMjZDNDEyOEY4 RTgxMUVDOEI1NzcyNzFDNEY5QUUwMi9mVDNiSUtfLWNVeVBOVWxsSEI3b0QxVmdF YmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2ZUM2JJS18tY1V5UE5VbGxIQjdvRDFWZ0ViZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MTlFQS9EMjZDNDEyOEY4RTgxMUVDOEI1NzcyNzFDNEY5QUUwMi9mVDNiSUtfLWNV eVBOVWxsSEI3b0QxVmdFYmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAvuoFVRPMrGAmDkfIjGUIeB32FUmsgJie2VzGkbh1gjsri4mPwp0RX L0p3QFPMsWybIO1GAy+qjSE2ggCZjPq1xofXQsQshqK8NELrn5BelGIVEBnkkos5 4BALHvrDE7JbrN9YYTQnBdheoHaYi1O3UR60hzsxYx2q2WCfBfMkL0hrd7IDx9Ga jO5plMITU7znmJk5WgrjCYtSlSt5qbJDPf9Sma2OTbGuyMKLxFrFuNXV+QU30ntY TnMbOe90OfxYGcReZh7xLNaxkplVN1pOAf4+YA0x+wHmPNsovHw9OhCFf5feZm7A tBcali0LPVrN4lBjcFgBQWZbmbGD9LdR -----END CERTIFICATE-----Generated at Sat Nov 23 02:33:33 2024 by rpki-client on console-fra.rpki-client.org