$ rpki-client -vvf rpki.apnic.net/member_repository/A917CABB/07675F1E0F6911EAA9D52650C4F9AE02/3FejmXtffOj7ybTZiz1F1jMHcRg.mft File: 3FejmXtffOj7ybTZiz1F1jMHcRg.mft (raw, json) Hash identifier: oU3q27OlXnPbcoKSgRzA/eIMweENjcl67WYGQOUQWxU= Subject key identifier: 48:56:1F:D7:41:29:23:D9:C1:9C:C0:19:57:D1:41:66:2E:98:6A:82 Authority key identifier: DC:57:A3:99:7B:5F:7C:E8:FB:C9:B4:D9:8B:3D:45:D6:33:07:71:18 Certificate issuer: /CN=A917CABB/serialNumber=DC57A3997B5F7CE8FBC9B4D98B3D45D633077118 Certificate serial: 0BB9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3FejmXtffOj7ybTZiz1F1jMHcRg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917CABB/07675F1E0F6911EAA9D52650C4F9AE02/3FejmXtffOj7ybTZiz1F1jMHcRg.mft Manifest number: 0BB2 Signing time: Fri 22 Nov 2024 18:40:23 +0000 Manifest this update: Fri 22 Nov 2024 18:40:23 +0000 Manifest next update: Fri 29 Nov 2024 18:40:23 +0000 Files and hashes: 1: 3FejmXtffOj7ybTZiz1F1jMHcRg.crl (hash: /q96LUfhmwlicXA+uaUWJgSmFy1XbCWjGydnMn8m+CA=) 2: 17BA5658D1FA11EDA0A31C2FC4F9AE02.roa (hash: H306zJ6w0u++pxJwnmCEZeb1MJYQzvBqunxs7beIBF4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917CABB/07675F1E0F6911EAA9D52650C4F9AE02/3FejmXtffOj7ybTZiz1F1jMHcRg.crl rsync://rpki.apnic.net/member_repository/A917CABB/07675F1E0F6911EAA9D52650C4F9AE02/3FejmXtffOj7ybTZiz1F1jMHcRg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3FejmXtffOj7ybTZiz1F1jMHcRg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 18:40:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3001 (0xbb9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917CABB/serialNumber=DC57A3997B5F7CE8FBC9B4D98B3D45D633077118 Validity Not Before: Nov 22 18:40:23 2024 GMT Not After : Nov 29 18:40:23 2024 GMT Subject: CN=6740d017-8916 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:9a:e9:32:fa:6d:6c:84:6e:2f:ff:33:60:29: a0:06:14:2d:7f:c2:64:a3:0e:fc:1c:80:7e:8c:a5: 78:dc:25:2f:d0:f1:6f:be:7f:96:16:2c:50:ee:56: 32:41:fe:89:a8:bc:69:de:2e:3e:ad:11:51:47:00: 4a:ef:85:e4:7a:d7:3a:ee:55:09:6a:93:be:fe:99: 8b:0e:d6:cd:ed:de:e2:71:87:c3:aa:52:20:fe:9c: 36:16:cd:e4:6f:e5:17:cc:3f:03:f2:53:9d:ec:6b: b8:e2:8f:38:94:d7:cc:dd:ac:b1:b2:df:c7:3d:4a: 7f:81:7a:08:f6:a6:fc:e8:52:27:b4:4d:da:ab:eb: 82:60:0f:1e:9d:d5:19:0e:90:d2:c6:10:37:c3:99: 50:35:9f:75:ae:a9:0d:fe:5f:36:7a:fc:b0:60:ce: ce:3f:32:58:21:bb:95:93:1b:0e:6b:44:1a:1f:7a: 82:26:b5:d5:d7:0a:96:0e:6e:f5:7a:1c:eb:d8:86: 6d:c4:eb:81:64:59:11:ca:e4:e8:ae:8d:08:30:db: 13:62:6b:ed:4b:32:71:f4:01:3a:58:04:db:c7:72: e3:cc:ea:24:64:29:34:fe:7d:02:03:57:da:a1:59: 2d:82:18:ed:1e:69:11:57:b1:a5:48:3c:3f:08:74: 3a:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:56:1F:D7:41:29:23:D9:C1:9C:C0:19:57:D1:41:66:2E:98:6A:82 X509v3 Authority Key Identifier: keyid:DC:57:A3:99:7B:5F:7C:E8:FB:C9:B4:D9:8B:3D:45:D6:33:07:71:18 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917CABB/07675F1E0F6911EAA9D52650C4F9AE02/3FejmXtffOj7ybTZiz1F1jMHcRg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3FejmXtffOj7ybTZiz1F1jMHcRg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917CABB/07675F1E0F6911EAA9D52650C4F9AE02/3FejmXtffOj7ybTZiz1F1jMHcRg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 39:ca:56:fe:8d:51:8f:be:bd:0b:ab:9e:30:03:57:07:10:03: eb:92:f3:bb:5f:a4:48:0a:af:b0:b7:5a:02:d5:e5:b5:ba:e4: d9:aa:63:2b:b2:4a:bc:35:d5:d5:7c:cb:de:22:85:3c:cd:40: a8:05:6b:cd:d7:3f:e5:5f:d3:f0:58:6d:a4:81:82:ad:7e:78: 4e:64:3d:3e:e4:ae:bc:b1:d2:e9:ce:3b:c2:06:92:95:ba:cb: 44:0d:cd:be:9d:f1:25:35:cc:28:d1:a6:78:1e:b1:3f:0c:36: 73:53:5f:d6:21:7f:d1:b3:ca:35:cb:98:d0:04:d3:c6:e1:47: 7e:bf:88:3f:be:02:00:ed:86:83:c8:0b:48:14:fb:27:9e:18: 4f:fb:e0:cd:9f:6a:e3:e2:01:de:ad:98:08:84:4b:c9:a4:99: 3e:50:68:67:8e:10:ec:bf:5f:80:47:a9:8d:22:5c:de:6f:84: 20:94:d3:f0:29:99:d2:41:76:79:e6:f9:ba:8a:5f:f7:31:5e: 9d:72:94:91:37:a2:4b:01:fe:a4:05:66:eb:9a:7b:c3:52:74: 90:47:93:96:70:4a:7c:d4:62:32:57:7b:a9:ff:a4:78:d6:51: e6:b7:a2:ce:ef:29:fa:86:66:6d:b1:81:b3:ba:c8:7d:bb:9d: 6d:4f:9e:cd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC7kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0NBQkIxMTAvBgNVBAUTKERDNTdBMzk5N0I1RjdDRThGQkM5QjREOThCM0Q0NUQ2 MzMwNzcxMTgwHhcNMjQxMTIyMTg0MDIzWhcNMjQxMTI5MTg0MDIzWjAYMRYwFAYD VQQDEw02NzQwZDAxNy04OTE2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzprpMvptbIRuL/8zYCmgBhQtf8Jkow78HIB+jKV43CUv0PFvvn+WFixQ7lYy Qf6JqLxp3i4+rRFRRwBK74Xketc67lUJapO+/pmLDtbN7d7icYfDqlIg/pw2Fs3k b+UXzD8D8lOd7Gu44o84lNfM3ayxst/HPUp/gXoI9qb86FIntE3aq+uCYA8endUZ DpDSxhA3w5lQNZ91rqkN/l82evywYM7OPzJYIbuVkxsOa0QaH3qCJrXV1wqWDm71 ehzr2IZtxOuBZFkRyuToro0IMNsTYmvtSzJx9AE6WATbx3LjzOokZCk0/n0CA1fa oVktghjtHmkRV7GlSDw/CHQ6bQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEhWH9dB KSPZwZzAGVfRQWYumGqCMB8GA1UdIwQYMBaAFNxXo5l7X3zo+8m02Ys9RdYzB3EY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3Q0FCQi8wNzY3NUYxRTBG NjkxMUVBQTlENTI2NTBDNEY5QUUwMi8zRmVqbVh0ZmZPajd5YlRaaXoxRjFqTUhj UmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNGZWptWHRmZk9qN3liVFppejFGMWpNSGNSZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 Q0FCQi8wNzY3NUYxRTBGNjkxMUVBQTlENTI2NTBDNEY5QUUwMi8zRmVqbVh0ZmZP ajd5YlRaaXoxRjFqTUhjUmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA5ylb+jVGPvr0Lq54wA1cHEAPrkvO7X6RICq+wt1oC1eW1uuTZqmMr skq8NdXVfMveIoU8zUCoBWvN1z/lX9PwWG2kgYKtfnhOZD0+5K68sdLpzjvCBpKV ustEDc2+nfElNcwo0aZ4HrE/DDZzU1/WIX/Rs8o1y5jQBNPG4Ud+v4g/vgIA7YaD yAtIFPsnnhhP++DNn2rj4gHerZgIhEvJpJk+UGhnjhDsv1+AR6mNIlzeb4QglNPw KZnSQXZ55vm6il/3MV6dcpSRN6JLAf6kBWbrmnvDUnSQR5OWcEp81GIyV3up/6R4 1lHmt6LO7yn6hmZtsYGzush9u51tT57N -----END CERTIFICATE-----Generated at Fri Nov 22 19:44:59 2024 by rpki-client on console-fra.rpki-client.org