$ rpki-client -vvf rpki.apnic.net/member_repository/A915518E/A796E90AAE0211E9B37D8967C4F9AE02/3fikyb7AEE4WzOMhqWWpLGYURTA.mft File: 3fikyb7AEE4WzOMhqWWpLGYURTA.mft (raw, json) Hash identifier: 87egPv/D9JZbft1L9KAXHCTjSxS98FT8ONUTdqAovNk= Subject key identifier: 56:6B:BB:E0:70:49:92:55:CA:A2:A0:BD:54:CA:1B:97:13:96:E5:6C Authority key identifier: DD:F8:A4:C9:BE:C0:10:4E:16:CC:E3:21:A9:65:A9:2C:66:14:45:30 Certificate issuer: /CN=A915518E/serialNumber=DDF8A4C9BEC0104E16CCE321A965A92C66144530 Certificate serial: 0DA8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3fikyb7AEE4WzOMhqWWpLGYURTA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915518E/A796E90AAE0211E9B37D8967C4F9AE02/3fikyb7AEE4WzOMhqWWpLGYURTA.mft Manifest number: 0D9E Signing time: Fri 22 Nov 2024 17:52:08 +0000 Manifest this update: Fri 22 Nov 2024 17:52:07 +0000 Manifest next update: Fri 29 Nov 2024 17:52:07 +0000 Files and hashes: 1: 3fikyb7AEE4WzOMhqWWpLGYURTA.crl (hash: UTQZUxK7/cQDoDypJeWI2Vks5Yc0b9bVM9Ph31dXb2c=) 2: 215FAD42B98611E9A053044FC4F9AE02.roa (hash: 1jbkg9LW6RgDfHIeGNZI/aPYd/3lSxoGjvv7ph3A8oA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915518E/A796E90AAE0211E9B37D8967C4F9AE02/3fikyb7AEE4WzOMhqWWpLGYURTA.crl rsync://rpki.apnic.net/member_repository/A915518E/A796E90AAE0211E9B37D8967C4F9AE02/3fikyb7AEE4WzOMhqWWpLGYURTA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3fikyb7AEE4WzOMhqWWpLGYURTA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 17:52:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3496 (0xda8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915518E/serialNumber=DDF8A4C9BEC0104E16CCE321A965A92C66144530 Validity Not Before: Nov 22 17:52:07 2024 GMT Not After : Nov 29 17:52:07 2024 GMT Subject: CN=6740c4c7-60d3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:92:c9:6e:3b:b5:b8:bb:0b:dc:96:d8:36:64:d7: e7:e8:51:51:f3:fb:16:f1:37:cc:cb:f2:c5:0f:34: 47:03:d6:25:bf:b0:27:a9:62:4f:82:c1:bc:fb:ed: 26:66:20:e3:61:f1:e1:5d:e5:35:31:fa:ae:79:af: a5:9c:2f:4e:76:da:52:b8:ab:68:69:76:e6:03:72: 94:ff:7e:fb:0a:79:fd:e3:3e:10:78:4a:7a:24:4a: e7:de:3f:48:b0:83:fa:94:10:1f:d5:a0:df:70:94: eb:80:15:ff:7d:61:0d:66:98:e7:a8:03:c5:aa:a5: 6b:4e:b5:5d:7b:29:ce:30:7a:12:bc:a5:47:1b:c6: 99:7a:76:7a:98:16:6c:7e:bf:61:e9:36:95:6b:d4: 9c:8e:33:15:c0:a2:e1:0c:5b:40:50:23:0b:d7:6b: 35:e7:ed:46:0b:25:3f:9d:69:71:54:ed:e4:de:7a: 32:ec:d0:aa:55:7b:84:dd:5b:f9:10:61:4e:52:9a: 07:f6:e3:e1:51:0d:dd:41:0a:49:3a:a7:0d:bd:77: ef:fe:5c:e3:c0:08:3b:d9:a4:d2:9f:e6:e6:58:03: e1:10:50:b5:1c:ec:cc:3f:dc:5d:85:e6:f6:40:6b: 39:58:22:43:3c:30:66:f6:ad:c5:99:20:89:fd:27: cd:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:6B:BB:E0:70:49:92:55:CA:A2:A0:BD:54:CA:1B:97:13:96:E5:6C X509v3 Authority Key Identifier: keyid:DD:F8:A4:C9:BE:C0:10:4E:16:CC:E3:21:A9:65:A9:2C:66:14:45:30 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915518E/A796E90AAE0211E9B37D8967C4F9AE02/3fikyb7AEE4WzOMhqWWpLGYURTA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3fikyb7AEE4WzOMhqWWpLGYURTA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915518E/A796E90AAE0211E9B37D8967C4F9AE02/3fikyb7AEE4WzOMhqWWpLGYURTA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ca:08:a4:ee:1c:c9:c3:3e:75:cb:95:2e:bb:a1:da:bc:af:81: 0a:f0:c4:74:41:b3:e0:42:f6:8c:8b:e6:8e:41:72:04:00:93: 50:98:f1:fb:2e:76:84:7c:e8:3c:58:59:19:6b:d3:2c:82:fa: bc:b7:73:5b:21:bd:56:1b:d6:99:55:b4:8a:44:c8:05:5e:d2: 48:7a:bc:48:c7:30:a7:b5:2d:c4:b9:31:76:6d:f8:bd:a5:c4: 01:63:ab:41:6d:d3:fd:8f:e1:fe:98:52:aa:f9:09:b6:d3:a2: d6:52:3c:9b:3e:61:16:38:12:ff:eb:8e:96:ff:97:c7:5d:25: 99:3d:cf:64:05:47:6d:c3:d8:83:e1:7e:de:a6:4c:83:38:d5: b2:8c:44:d1:f0:6f:39:67:b6:ff:b2:ff:cc:ba:b3:ce:68:09: 40:da:ac:4c:05:06:2b:ce:dc:d9:7e:7a:62:ce:b5:8a:97:c7: 9a:15:d8:69:65:4a:f6:6d:d6:25:b8:ab:c4:e9:30:80:9a:39: 60:e5:76:e8:e9:de:41:ef:9c:4f:a8:0f:56:35:d8:26:b4:df: 23:57:62:ce:9d:75:d2:c5:31:f2:f6:1f:a2:3e:94:bd:ac:eb: c1:ab:fa:ac:21:f6:60:08:c5:74:73:43:c8:75:e4:15:3a:12: 42:24:37:8c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDagwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTUxOEUxMTAvBgNVBAUTKERERjhBNEM5QkVDMDEwNEUxNkNDRTMyMUE5NjVBOTJD NjYxNDQ1MzAwHhcNMjQxMTIyMTc1MjA3WhcNMjQxMTI5MTc1MjA3WjAYMRYwFAYD VQQDEw02NzQwYzRjNy02MGQzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAksluO7W4uwvcltg2ZNfn6FFR8/sW8TfMy/LFDzRHA9Ylv7AnqWJPgsG8++0m ZiDjYfHhXeU1Mfquea+lnC9OdtpSuKtoaXbmA3KU/377Cnn94z4QeEp6JErn3j9I sIP6lBAf1aDfcJTrgBX/fWENZpjnqAPFqqVrTrVdeynOMHoSvKVHG8aZenZ6mBZs fr9h6TaVa9ScjjMVwKLhDFtAUCML12s15+1GCyU/nWlxVO3k3noy7NCqVXuE3Vv5 EGFOUpoH9uPhUQ3dQQpJOqcNvXfv/lzjwAg72aTSn+bmWAPhEFC1HOzMP9xdheb2 QGs5WCJDPDBm9q3FmSCJ/SfNWwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFZru+Bw SZJVyqKgvVTKG5cTluVsMB8GA1UdIwQYMBaAFN34pMm+wBBOFszjIallqSxmFEUw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NTE4RS9BNzk2RTkwQUFF MDIxMUU5QjM3RDg5NjdDNEY5QUUwMi8zZmlreWI3QUVFNFd6T01ocVdXcExHWVVS VEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNmaWt5YjdBRUU0V3pPTWhxV1dwTEdZVVJUQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NTE4RS9BNzk2RTkwQUFFMDIxMUU5QjM3RDg5NjdDNEY5QUUwMi8zZmlreWI3QUVF NFd6T01ocVdXcExHWVVSVEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDKCKTuHMnDPnXLlS67odq8r4EK8MR0QbPgQvaMi+aOQXIEAJNQmPH7 LnaEfOg8WFkZa9Msgvq8t3NbIb1WG9aZVbSKRMgFXtJIerxIxzCntS3EuTF2bfi9 pcQBY6tBbdP9j+H+mFKq+Qm206LWUjybPmEWOBL/646W/5fHXSWZPc9kBUdtw9iD 4X7epkyDONWyjETR8G85Z7b/sv/MurPOaAlA2qxMBQYrztzZfnpizrWKl8eaFdhp ZUr2bdYluKvE6TCAmjlg5Xbo6d5B75xPqA9WNdgmtN8jV2LOnXXSxTHy9h+iPpS9 rOvBq/qsIfZgCMV0c0PIdeQVOhJCJDeM -----END CERTIFICATE-----Generated at Fri Nov 22 19:50:03 2024 by rpki-client on console-ams.rpki-client.org