$ rpki-client -vvf rpki.apnic.net/member_repository/A9167D07/D74AE2741BA911E8A8F57865C4F9AE02/A3uPBfSQLZ2otCTDk0CGXz2smyY.mft File: A3uPBfSQLZ2otCTDk0CGXz2smyY.mft (raw, json) Hash identifier: FSYIxOlUKhKSyjFDNqH+1m2LP2W0t8+54GxVwa/Dq/U= Subject key identifier: F0:AB:98:82:CD:90:10:8B:6B:A9:25:29:34:4C:59:96:48:79:7B:DB Authority key identifier: 03:7B:8F:05:F4:90:2D:9D:A8:B4:24:C3:93:40:86:5F:3D:AC:9B:26 Certificate issuer: /CN=A9167D07/serialNumber=037B8F05F4902D9DA8B424C39340865F3DAC9B26 Certificate serial: 15CA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A3uPBfSQLZ2otCTDk0CGXz2smyY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9167D07/D74AE2741BA911E8A8F57865C4F9AE02/A3uPBfSQLZ2otCTDk0CGXz2smyY.mft Manifest number: 15B5 Signing time: Fri 22 Nov 2024 16:48:38 +0000 Manifest this update: Fri 22 Nov 2024 16:48:38 +0000 Manifest next update: Fri 29 Nov 2024 16:48:38 +0000 Files and hashes: 1: A3uPBfSQLZ2otCTDk0CGXz2smyY.crl (hash: V6s7Zar7xrlTA+2CZBfatq6EhAbfksFODOVh2hh1q1A=) 2: EFE8CDF6C8D111EE95249F25C4F9AE02.roa (hash: tFtn/VHQEvDcsoWqBX4q0RUPrGxjEwECyPDacA7Txlo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9167D07/D74AE2741BA911E8A8F57865C4F9AE02/A3uPBfSQLZ2otCTDk0CGXz2smyY.crl rsync://rpki.apnic.net/member_repository/A9167D07/D74AE2741BA911E8A8F57865C4F9AE02/A3uPBfSQLZ2otCTDk0CGXz2smyY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A3uPBfSQLZ2otCTDk0CGXz2smyY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 16:48:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5578 (0x15ca) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9167D07/serialNumber=037B8F05F4902D9DA8B424C39340865F3DAC9B26 Validity Not Before: Nov 22 16:48:38 2024 GMT Not After : Nov 29 16:48:38 2024 GMT Subject: CN=6740b5e6-0f4a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:e8:3d:81:84:58:5e:38:65:6d:97:0c:5d:af: df:a7:fe:7c:51:a4:5c:c9:93:67:c0:e5:16:49:a6: e6:26:d8:9c:23:ef:2e:32:d9:47:15:c3:c3:2a:6e: c5:d7:cd:7e:b1:43:3f:13:38:94:7e:c9:04:e9:ea: e7:1c:dd:aa:01:ab:e8:28:a2:dc:ed:36:66:da:0d: c6:4a:89:00:86:86:11:4f:2c:37:7c:40:31:52:61: 51:7e:60:5f:d6:8d:e0:62:5e:86:15:85:cd:e4:54: 9d:cc:97:0b:d3:62:67:7c:74:43:7b:a2:af:b0:43: 10:5d:f2:f2:a1:e5:13:bc:71:2b:c9:b4:63:dc:c5: 1e:b2:36:fc:ed:cd:f1:09:43:be:97:b5:56:f6:01: 5d:23:90:a6:96:e3:df:e4:07:55:34:73:5a:88:69: e5:5e:d2:9a:90:f7:5a:88:4a:70:c5:e1:f1:49:98: 0d:a2:10:84:f0:21:3c:fb:ed:ec:1b:b0:05:52:b3: 4f:6e:f9:44:da:1d:9b:56:60:6e:87:85:21:40:68: a5:08:32:d8:c6:11:81:bb:bc:1b:52:d5:12:7e:d6: f0:e1:dd:03:42:41:8a:81:6b:09:07:22:e5:1e:3a: 70:ac:19:78:6a:c7:f2:47:1b:b8:a7:fb:43:c1:a7: d4:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:AB:98:82:CD:90:10:8B:6B:A9:25:29:34:4C:59:96:48:79:7B:DB X509v3 Authority Key Identifier: keyid:03:7B:8F:05:F4:90:2D:9D:A8:B4:24:C3:93:40:86:5F:3D:AC:9B:26 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9167D07/D74AE2741BA911E8A8F57865C4F9AE02/A3uPBfSQLZ2otCTDk0CGXz2smyY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A3uPBfSQLZ2otCTDk0CGXz2smyY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9167D07/D74AE2741BA911E8A8F57865C4F9AE02/A3uPBfSQLZ2otCTDk0CGXz2smyY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 05:ab:94:5b:76:bf:f1:85:1e:ed:03:ca:9a:10:b3:ff:5a:0f: c8:9f:ed:76:ce:3b:e1:04:dc:5c:52:f4:c2:44:8c:6c:ee:7b: 2b:7e:0c:38:40:d4:1e:30:68:47:f6:77:9d:73:f2:86:5d:af: 2e:2f:13:67:a8:30:fd:e1:e9:0f:31:82:b7:0e:0b:85:bc:5d: b3:36:0e:7f:a5:d1:61:a0:24:c8:84:8e:86:00:06:92:0e:37: ef:91:c5:d6:a3:d6:42:e2:7d:6d:fe:78:40:69:56:17:50:fa: 2d:80:f7:6c:b0:2e:96:1d:c5:56:63:fb:0e:90:a3:01:8d:7b: 3a:b4:d6:e5:ff:22:42:5e:be:bf:ee:62:47:2a:59:c6:0d:d3: db:3f:28:42:89:0b:5c:31:11:de:12:17:20:c1:c9:57:28:9a: 33:49:f2:1b:42:bd:f6:7a:4a:07:fc:d3:73:36:22:4d:c9:b7: 3c:52:e7:8d:ca:8d:c0:b8:5e:3e:93:b9:1f:0a:95:ae:cc:cf: 2b:c5:b3:05:c6:14:dd:bd:ad:3a:67:76:be:85:7e:5d:34:da: 11:72:6a:90:eb:6b:4c:36:34:f3:b8:e6:02:86:0d:a3:88:3d: 0d:af:5e:0e:a9:9f:e3:dd:da:cd:57:e9:42:67:94:b3:13:68: b7:cb:22:48 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFcowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjdEMDcxMTAvBgNVBAUTKDAzN0I4RjA1RjQ5MDJEOURBOEI0MjRDMzkzNDA4NjVG M0RBQzlCMjYwHhcNMjQxMTIyMTY0ODM4WhcNMjQxMTI5MTY0ODM4WjAYMRYwFAYD VQQDEw02NzQwYjVlNi0wZjRhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzOg9gYRYXjhlbZcMXa/fp/58UaRcyZNnwOUWSabmJticI+8uMtlHFcPDKm7F 181+sUM/EziUfskE6ernHN2qAavoKKLc7TZm2g3GSokAhoYRTyw3fEAxUmFRfmBf 1o3gYl6GFYXN5FSdzJcL02JnfHRDe6KvsEMQXfLyoeUTvHErybRj3MUesjb87c3x CUO+l7VW9gFdI5CmluPf5AdVNHNaiGnlXtKakPdaiEpwxeHxSZgNohCE8CE8++3s G7AFUrNPbvlE2h2bVmBuh4UhQGilCDLYxhGBu7wbUtUSftbw4d0DQkGKgWsJByLl HjpwrBl4asfyRxu4p/tDwafULwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPCrmILN kBCLa6klKTRMWZZIeXvbMB8GA1UdIwQYMBaAFAN7jwX0kC2dqLQkw5NAhl89rJsm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2N0QwNy9ENzRBRTI3NDFC QTkxMUU4QThGNTc4NjVDNEY5QUUwMi9BM3VQQmZTUUxaMm90Q1REazBDR1h6MnNt eVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0EzdVBCZlNRTFoyb3RDVERrMENHWHoyc215WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 N0QwNy9ENzRBRTI3NDFCQTkxMUU4QThGNTc4NjVDNEY5QUUwMi9BM3VQQmZTUUxa Mm90Q1REazBDR1h6MnNteVkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAFq5Rbdr/xhR7tA8qaELP/Wg/In+12zjvhBNxcUvTCRIxs7nsrfgw4 QNQeMGhH9nedc/KGXa8uLxNnqDD94ekPMYK3DguFvF2zNg5/pdFhoCTIhI6GAAaS DjfvkcXWo9ZC4n1t/nhAaVYXUPotgPdssC6WHcVWY/sOkKMBjXs6tNbl/yJCXr6/ 7mJHKlnGDdPbPyhCiQtcMRHeEhcgwclXKJozSfIbQr32ekoH/NNzNiJNybc8UueN yo3AuF4+k7kfCpWuzM8rxbMFxhTdva06Z3a+hX5dNNoRcmqQ62tMNjTzuOYChg2j iD0Nr14OqZ/j3drNV+lCZ5SzE2i3yyJI -----END CERTIFICATE-----Generated at Fri Nov 22 19:50:04 2024 by rpki-client on console-ams.rpki-client.org