$ rpki-client -vvf rpki.apnic.net/member_repository/A917AFE7/F8B65374291211EC8631B854C4F9AE02/3MB6nY_-N43drzzQ5Bqe9v3TFI8.mft File: 3MB6nY_-N43drzzQ5Bqe9v3TFI8.mft (raw, json) Hash identifier: Je2cKp3hqC5AszWDEP5h5pt3uhM8zxZQVtjyctIxfjw= Subject key identifier: 14:30:6D:3A:2C:1F:A2:33:B0:D6:34:2E:8C:7D:49:9A:41:98:77:DE Authority key identifier: DC:C0:7A:9D:8F:FE:37:8D:DD:AF:3C:D0:E4:1A:9E:F6:FD:D3:14:8F Certificate issuer: /CN=A917AFE7/serialNumber=DCC07A9D8FFE378DDDAF3CD0E41A9EF6FDD3148F Certificate serial: 0466 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3MB6nY_-N43drzzQ5Bqe9v3TFI8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917AFE7/F8B65374291211EC8631B854C4F9AE02/3MB6nY_-N43drzzQ5Bqe9v3TFI8.mft Manifest number: 0461 Signing time: Fri 22 Nov 2024 23:42:08 +0000 Manifest this update: Fri 22 Nov 2024 23:42:07 +0000 Manifest next update: Fri 29 Nov 2024 23:42:07 +0000 Files and hashes: 1: 3MB6nY_-N43drzzQ5Bqe9v3TFI8.crl (hash: Wf5JPJ5N2yBOUIW2lGOKfXtw5P0DdEWroR6N5LNJPMA=) 2: D3D1604C2B6711EC8CD1C61FC4F9AE02.roa (hash: FY6mKfRkayQzRckcSJnAaWBwktUHix8YTyWPw31OktI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917AFE7/F8B65374291211EC8631B854C4F9AE02/3MB6nY_-N43drzzQ5Bqe9v3TFI8.crl rsync://rpki.apnic.net/member_repository/A917AFE7/F8B65374291211EC8631B854C4F9AE02/3MB6nY_-N43drzzQ5Bqe9v3TFI8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3MB6nY_-N43drzzQ5Bqe9v3TFI8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1126 (0x466) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917AFE7/serialNumber=DCC07A9D8FFE378DDDAF3CD0E41A9EF6FDD3148F Validity Not Before: Nov 22 23:42:07 2024 GMT Not After : Nov 29 23:42:07 2024 GMT Subject: CN=674116cf-0a2c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:73:1c:7b:e4:79:ab:95:e8:69:23:a3:bd:af: 85:dd:80:78:f3:a8:2d:b8:f1:d7:54:cb:1c:47:f0: 99:4b:35:c7:06:4c:f4:c1:39:a5:b0:69:8c:e0:17: fc:b9:5a:f0:0a:9e:b4:cd:6b:56:7d:17:0c:5a:08: 53:15:d8:01:9d:b0:59:bc:58:d3:e7:36:b8:30:ae: f4:51:d7:1c:d2:c2:ce:74:43:f3:35:b8:2f:67:5a: 99:dd:a9:fe:06:4b:65:86:05:89:07:8b:90:55:8e: f6:1f:a9:cc:ea:39:e6:32:99:ba:7c:dd:46:e8:2d: 3e:0d:66:87:48:14:e8:80:f6:b4:1b:eb:ed:60:31: dc:b2:ce:3a:b3:01:67:d8:0e:ca:8a:8c:ad:d9:09: 16:a9:1a:b9:55:f9:57:e2:b7:4a:4c:c3:45:77:5a: 60:02:15:c2:4f:12:16:cf:6e:61:43:0f:de:20:84: 6f:74:35:b3:18:f8:8c:2f:7c:16:a4:01:08:7e:38: 13:70:e3:b3:36:e4:43:c7:dc:5e:57:ad:b7:cb:1c: 87:2a:75:c7:dd:7e:4a:19:85:b1:bf:bf:d9:8d:56: f3:2b:d2:cc:33:4c:06:e6:f7:93:5e:fc:93:e7:54: 77:c5:d7:a9:b3:cc:01:46:4f:bb:a7:9e:95:af:d9: 30:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:30:6D:3A:2C:1F:A2:33:B0:D6:34:2E:8C:7D:49:9A:41:98:77:DE X509v3 Authority Key Identifier: keyid:DC:C0:7A:9D:8F:FE:37:8D:DD:AF:3C:D0:E4:1A:9E:F6:FD:D3:14:8F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917AFE7/F8B65374291211EC8631B854C4F9AE02/3MB6nY_-N43drzzQ5Bqe9v3TFI8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3MB6nY_-N43drzzQ5Bqe9v3TFI8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917AFE7/F8B65374291211EC8631B854C4F9AE02/3MB6nY_-N43drzzQ5Bqe9v3TFI8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 24:14:35:1e:87:99:e4:41:ae:ea:06:74:05:e6:2e:af:cf:26: dd:2b:84:38:ad:68:cf:78:d7:e5:6c:99:7a:0e:b8:e8:3b:42: b1:52:d1:54:b3:cf:eb:f4:dc:ee:75:8c:23:d2:17:c3:73:78: 23:d4:a4:d8:59:e8:9e:40:71:08:ad:fe:91:83:93:bc:a5:24: eb:37:b5:84:ca:10:5f:fd:57:32:b9:72:a8:78:45:b6:60:c8: 67:da:3f:88:2c:75:6a:a9:ed:80:d7:8c:aa:de:15:5d:e5:c8: 53:8e:42:a6:e3:0e:55:80:73:8c:56:9f:ae:21:85:31:cb:cb: b2:bd:52:e2:a9:1c:93:b0:d2:b7:a5:e8:98:3d:88:4c:e5:6a: 82:9d:08:a2:e0:0e:2b:28:a4:46:bd:0b:c8:69:46:5f:ca:ec: 85:09:89:bc:72:00:d6:9a:45:97:ea:f5:31:e5:f0:26:57:4b: 99:1b:1b:08:dc:9a:4b:ba:9b:c2:65:b9:84:85:61:81:2c:da: b3:a9:55:4e:79:59:89:0b:5a:34:1f:7b:d5:75:c4:c8:96:82: 81:ad:4d:cb:a5:66:6d:13:e4:e3:3f:0a:b0:33:2d:b4:a6:e0: e6:8b:ea:6e:68:a7:c1:ad:14:29:6d:3a:e5:e6:45:0a:64:3b: 4c:46:fb:6f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBGYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0FGRTcxMTAvBgNVBAUTKERDQzA3QTlEOEZGRTM3OEREREFGM0NEMEU0MUE5RUY2 RkREMzE0OEYwHhcNMjQxMTIyMjM0MjA3WhcNMjQxMTI5MjM0MjA3WjAYMRYwFAYD VQQDEw02NzQxMTZjZi0wYTJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3XMce+R5q5XoaSOjva+F3YB486gtuPHXVMscR/CZSzXHBkz0wTmlsGmM4Bf8 uVrwCp60zWtWfRcMWghTFdgBnbBZvFjT5za4MK70Udcc0sLOdEPzNbgvZ1qZ3an+ BktlhgWJB4uQVY72H6nM6jnmMpm6fN1G6C0+DWaHSBTogPa0G+vtYDHcss46swFn 2A7Kioyt2QkWqRq5VflX4rdKTMNFd1pgAhXCTxIWz25hQw/eIIRvdDWzGPiML3wW pAEIfjgTcOOzNuRDx9xeV623yxyHKnXH3X5KGYWxv7/ZjVbzK9LMM0wG5veTXvyT 51R3xdeps8wBRk+7p56Vr9kwZwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBQwbTos H6IzsNY0Lox9SZpBmHfeMB8GA1UdIwQYMBaAFNzAep2P/jeN3a880OQanvb90xSP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QUZFNy9GOEI2NTM3NDI5 MTIxMUVDODYzMUI4NTRDNEY5QUUwMi8zTUI2bllfLU40M2RyenpRNUJxZTl2M1RG STguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNNQjZuWV8tTjQzZHJ6elE1QnFlOXYzVEZJOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QUZFNy9GOEI2NTM3NDI5MTIxMUVDODYzMUI4NTRDNEY5QUUwMi8zTUI2bllfLU40 M2RyenpRNUJxZTl2M1RGSTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAkFDUeh5nkQa7qBnQF5i6vzybdK4Q4rWjPeNflbJl6DrjoO0KxUtFU s8/r9NzudYwj0hfDc3gj1KTYWeieQHEIrf6Rg5O8pSTrN7WEyhBf/VcyuXKoeEW2 YMhn2j+ILHVqqe2A14yq3hVd5chTjkKm4w5VgHOMVp+uIYUxy8uyvVLiqRyTsNK3 peiYPYhM5WqCnQii4A4rKKRGvQvIaUZfyuyFCYm8cgDWmkWX6vUx5fAmV0uZGxsI 3JpLupvCZbmEhWGBLNqzqVVOeVmJC1o0H3vVdcTIloKBrU3LpWZtE+TjPwqwMy20 puDmi+puaKfBrRQpbTrl5kUKZDtMRvtv -----END CERTIFICATE-----Generated at Sat Nov 23 01:27:23 2024 by rpki-client on console-ams.rpki-client.org