$ rpki-client -vvf rpki.apnic.net/member_repository/A917A17B/85395D6E06D311EABA5D5A49C4F9AE02/g3GOntShsiknnjylVdRNbh_KjMU.mft File: g3GOntShsiknnjylVdRNbh_KjMU.mft (raw, json) Hash identifier: fbLua7AT95wIK8Ky+nY1QZgfGqyXiRwaH0y5V2uFuqc= Subject key identifier: 3C:23:78:2C:B1:3A:3C:8F:9F:D5:2C:38:75:D3:67:D1:B3:CF:C9:97 Authority key identifier: 83:71:8E:9E:D4:A1:B2:29:27:9E:3C:A5:55:D4:4D:6E:1F:CA:8C:C5 Certificate issuer: /CN=A917A17B/serialNumber=83718E9ED4A1B229279E3CA555D44D6E1FCA8CC5 Certificate serial: 0BEC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g3GOntShsiknnjylVdRNbh_KjMU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917A17B/85395D6E06D311EABA5D5A49C4F9AE02/g3GOntShsiknnjylVdRNbh_KjMU.mft Manifest number: 0BE2 Signing time: Fri 22 Nov 2024 18:29:48 +0000 Manifest this update: Fri 22 Nov 2024 18:29:48 +0000 Manifest next update: Fri 29 Nov 2024 18:29:48 +0000 Files and hashes: 1: g3GOntShsiknnjylVdRNbh_KjMU.crl (hash: UyLWEYaZhIyaoytcAcAVgu5cRva1MLo91/PxUEdc/Mc=) 2: A473C9A008F311EE98719810C4F9AE02.roa (hash: XJVLx8NnT51CedP11E2S/7EWqPqU5YY70j5sKBFjL+M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917A17B/85395D6E06D311EABA5D5A49C4F9AE02/g3GOntShsiknnjylVdRNbh_KjMU.crl rsync://rpki.apnic.net/member_repository/A917A17B/85395D6E06D311EABA5D5A49C4F9AE02/g3GOntShsiknnjylVdRNbh_KjMU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g3GOntShsiknnjylVdRNbh_KjMU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 18:29:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3052 (0xbec) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917A17B/serialNumber=83718E9ED4A1B229279E3CA555D44D6E1FCA8CC5 Validity Not Before: Nov 22 18:29:48 2024 GMT Not After : Nov 29 18:29:48 2024 GMT Subject: CN=6740cd9c-fbf1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:4b:f2:5f:15:ec:23:03:eb:6f:fc:b6:ec:2b: 8b:bb:34:e4:06:90:8d:2c:a9:0a:e9:7f:02:7a:04: 12:08:c4:fd:9a:bf:8c:4f:91:8c:0f:fd:ec:0e:11: de:fd:93:dc:23:ff:6f:59:6f:51:08:96:d3:a5:7b: 0c:25:f6:ba:7b:b5:03:41:be:ab:29:de:4e:d3:a9: a4:df:71:b9:07:14:e9:fc:04:5b:7e:c6:be:db:df: 8f:f8:37:77:73:44:3d:de:08:75:3c:a9:b4:68:c4: c2:89:be:d6:1e:3e:ea:18:ed:53:7c:cb:82:e9:71: 4b:92:5c:5f:6c:c9:a5:d0:c8:a8:36:29:d0:37:5f: 60:74:12:cc:03:36:5c:31:9a:b0:a6:60:6c:01:86: a1:00:c3:36:86:73:b0:16:6e:03:dc:38:32:fa:1c: 39:da:6d:6f:97:f2:3e:db:63:5d:d9:29:2d:53:9e: 45:d3:0f:8b:62:c5:34:f6:b6:18:64:dc:6e:50:8f: 2c:04:c5:f6:5a:bb:2f:df:14:6a:cb:ed:f0:bb:24: 6f:e5:cc:56:2d:b6:35:47:df:9b:c1:89:68:30:a0: 00:49:28:bd:6c:da:ba:86:da:ca:38:f9:c7:97:eb: 63:49:64:44:99:a1:3a:96:d1:ad:21:d7:73:83:6f: dd:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:23:78:2C:B1:3A:3C:8F:9F:D5:2C:38:75:D3:67:D1:B3:CF:C9:97 X509v3 Authority Key Identifier: keyid:83:71:8E:9E:D4:A1:B2:29:27:9E:3C:A5:55:D4:4D:6E:1F:CA:8C:C5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917A17B/85395D6E06D311EABA5D5A49C4F9AE02/g3GOntShsiknnjylVdRNbh_KjMU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g3GOntShsiknnjylVdRNbh_KjMU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917A17B/85395D6E06D311EABA5D5A49C4F9AE02/g3GOntShsiknnjylVdRNbh_KjMU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 48:27:0f:bd:a3:fc:55:c9:68:36:65:38:fe:54:bd:16:9c:76: 44:4d:1b:66:14:f0:77:8d:d7:67:1c:29:24:36:5a:41:91:c0: 4b:9b:de:7c:df:a6:47:85:60:9d:0f:ca:e8:8f:35:20:eb:0f: d3:8e:a1:35:cd:ac:63:77:0a:98:c4:5c:21:88:60:ff:5c:76: 8c:18:58:f4:35:82:7f:0d:23:a3:fe:b8:58:ee:61:cf:2b:35: fe:d5:f0:e2:78:50:16:4a:0c:9a:ec:38:c8:ea:b3:c7:4d:4c: b7:12:f9:aa:19:e0:ce:14:1b:27:85:d9:f7:9e:24:43:c8:92: a3:8f:e4:5e:1a:0e:a4:dc:29:d5:bd:58:a3:27:4d:cd:2d:49: d7:ba:ce:0b:2b:98:bc:0d:4e:f8:c3:ec:fc:55:30:bd:f1:02: f2:04:8b:87:c2:74:a4:3c:cb:46:be:aa:d2:23:6e:91:3d:3f: 09:4e:93:4e:eb:5e:a7:d2:b4:9f:81:22:da:44:4f:d4:4a:8f: 2f:c2:18:e4:f0:df:2a:a6:77:23:0c:c4:78:b4:97:cb:98:60: 89:b4:ae:05:f8:a1:0a:ff:d4:96:fb:c7:38:5d:ea:30:c2:ab: 1a:ee:12:03:d1:75:f8:20:85:6d:ab:a7:08:3b:80:ae:84:1c: c6:31:6b:92 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC+wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0ExN0IxMTAvBgNVBAUTKDgzNzE4RTlFRDRBMUIyMjkyNzlFM0NBNTU1RDQ0RDZF MUZDQThDQzUwHhcNMjQxMTIyMTgyOTQ4WhcNMjQxMTI5MTgyOTQ4WjAYMRYwFAYD VQQDEw02NzQwY2Q5Yy1mYmYxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyUvyXxXsIwPrb/y27CuLuzTkBpCNLKkK6X8CegQSCMT9mr+MT5GMD/3sDhHe /ZPcI/9vWW9RCJbTpXsMJfa6e7UDQb6rKd5O06mk33G5BxTp/ARbfsa+29+P+Dd3 c0Q93gh1PKm0aMTCib7WHj7qGO1TfMuC6XFLklxfbMml0MioNinQN19gdBLMAzZc MZqwpmBsAYahAMM2hnOwFm4D3Dgy+hw52m1vl/I+22Nd2SktU55F0w+LYsU09rYY ZNxuUI8sBMX2Wrsv3xRqy+3wuyRv5cxWLbY1R9+bwYloMKAASSi9bNq6htrKOPnH l+tjSWREmaE6ltGtIddzg2/dMwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDwjeCyx OjyPn9UsOHXTZ9Gzz8mXMB8GA1UdIwQYMBaAFINxjp7UobIpJ548pVXUTW4fyozF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QTE3Qi84NTM5NUQ2RTA2 RDMxMUVBQkE1RDVBNDlDNEY5QUUwMi9nM0dPbnRTaHNpa25uanlsVmRSTmJoX0tq TVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2czR09udFNoc2lrbm5qeWxWZFJOYmhfS2pNVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QTE3Qi84NTM5NUQ2RTA2RDMxMUVBQkE1RDVBNDlDNEY5QUUwMi9nM0dPbnRTaHNp a25uanlsVmRSTmJoX0tqTVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBIJw+9o/xVyWg2ZTj+VL0WnHZETRtmFPB3jddnHCkkNlpBkcBLm958 36ZHhWCdD8rojzUg6w/TjqE1zaxjdwqYxFwhiGD/XHaMGFj0NYJ/DSOj/rhY7mHP KzX+1fDieFAWSgya7DjI6rPHTUy3EvmqGeDOFBsnhdn3niRDyJKjj+ReGg6k3CnV vVijJ03NLUnXus4LK5i8DU74w+z8VTC98QLyBIuHwnSkPMtGvqrSI26RPT8JTpNO 616n0rSfgSLaRE/USo8vwhjk8N8qpncjDMR4tJfLmGCJtK4F+KEK/9SW+8c4Xeow wqsa7hID0XX4IIVtq6cIO4CuhBzGMWuS -----END CERTIFICATE-----Generated at Fri Nov 22 19:50:05 2024 by rpki-client on console-ams.rpki-client.org