$ rpki-client -vvf rpki.apnic.net/member_repository/A9196D9E/77BB984C7D6111EEB463C85AC4F9AE02/PS2TrIsQhlgX2adMyBoDDX010HQ.mft File: PS2TrIsQhlgX2adMyBoDDX010HQ.mft (raw, json) Hash identifier: pBEEQTpweoY82mouDs2KIXxqIWzWTQi40RYR1IUjido= Subject key identifier: 37:7A:03:04:4C:C0:C2:14:27:87:AD:23:0F:86:ED:86:53:35:01:97 Authority key identifier: 3D:2D:93:AC:8B:10:86:58:17:D9:A7:4C:C8:1A:03:0D:7D:35:D0:74 Certificate issuer: /CN=A9196D9E/serialNumber=3D2D93AC8B10865817D9A74CC81A030D7D35D074 Certificate serial: C3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PS2TrIsQhlgX2adMyBoDDX010HQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9196D9E/77BB984C7D6111EEB463C85AC4F9AE02/PS2TrIsQhlgX2adMyBoDDX010HQ.mft Manifest number: C3 Signing time: Sat 23 Nov 2024 03:54:40 +0000 Manifest this update: Sat 23 Nov 2024 03:54:40 +0000 Manifest next update: Sat 30 Nov 2024 03:54:40 +0000 Files and hashes: 1: PS2TrIsQhlgX2adMyBoDDX010HQ.crl (hash: HXHhLxC7MaZMCbO7TDeLtAFWazotEWaSN7jgDhm3bsw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9196D9E/77BB984C7D6111EEB463C85AC4F9AE02/PS2TrIsQhlgX2adMyBoDDX010HQ.crl rsync://rpki.apnic.net/member_repository/A9196D9E/77BB984C7D6111EEB463C85AC4F9AE02/PS2TrIsQhlgX2adMyBoDDX010HQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PS2TrIsQhlgX2adMyBoDDX010HQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 195 (0xc3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9196D9E/serialNumber=3D2D93AC8B10865817D9A74CC81A030D7D35D074 Validity Not Before: Nov 23 03:54:40 2024 GMT Not After : Nov 30 03:54:40 2024 GMT Subject: CN=67415200-b3b0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:48:67:6d:9a:56:71:d8:fa:31:0d:5f:54:d2: 23:74:58:4e:63:2e:ac:ae:0e:f5:53:54:60:f6:c5: 42:e7:90:32:96:36:38:93:ed:76:5a:15:62:35:66: 28:2d:8e:ab:87:6a:41:b8:a4:26:45:24:2c:53:ac: a5:33:ce:90:a8:a8:f1:77:e3:1f:73:ed:c2:cf:0f: 1d:a2:67:da:99:f3:de:a6:f7:a6:67:c6:cc:69:3e: 81:6b:1c:06:90:56:4b:04:c9:92:01:52:27:f2:1e: d0:36:30:21:b9:e7:ce:a8:0d:11:91:ff:a0:5c:72: 2c:cd:76:97:5b:74:83:52:bb:62:b9:37:19:5b:90: fa:6b:70:4f:05:1a:3b:d0:35:f0:de:a7:78:4d:b1: 4a:be:61:6a:92:a1:dd:5b:92:ab:64:4e:71:8a:82: 72:61:85:62:85:f6:8b:46:19:54:a7:d6:6d:75:e0: cd:5f:c8:f6:50:f5:83:bc:54:72:c2:ae:c1:b8:53: 68:04:fe:de:0d:24:a8:8e:6a:19:fe:13:fc:cb:82: 5c:c6:84:16:cf:54:f4:92:00:49:da:04:33:32:71: 42:88:7e:c1:d7:03:be:d6:d3:0b:07:e1:40:e4:0e: 19:6d:ce:bb:03:ed:bb:cb:11:dd:83:46:42:5b:e2: 66:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:7A:03:04:4C:C0:C2:14:27:87:AD:23:0F:86:ED:86:53:35:01:97 X509v3 Authority Key Identifier: keyid:3D:2D:93:AC:8B:10:86:58:17:D9:A7:4C:C8:1A:03:0D:7D:35:D0:74 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9196D9E/77BB984C7D6111EEB463C85AC4F9AE02/PS2TrIsQhlgX2adMyBoDDX010HQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PS2TrIsQhlgX2adMyBoDDX010HQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9196D9E/77BB984C7D6111EEB463C85AC4F9AE02/PS2TrIsQhlgX2adMyBoDDX010HQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5b:da:29:2c:8e:d7:9f:b7:10:d5:f8:f3:d4:1f:e4:1f:9b:e2: 13:c4:56:5e:3c:2e:cd:9d:05:cd:87:ed:da:58:6a:83:10:1d: 30:21:49:82:07:48:7b:86:37:c5:4a:bc:14:10:14:c1:90:ce: 24:20:c7:b9:19:81:bb:75:52:2c:60:95:15:0d:27:66:4a:54: d2:b7:fe:96:96:e8:98:5a:79:4f:a8:05:e5:2d:44:3b:32:41: 8d:c7:60:ca:c4:8d:91:98:84:fc:3d:a7:7d:79:9f:a3:c5:48: d2:ac:78:47:e4:c7:ca:a2:6f:5e:25:d8:a3:db:83:37:71:47: 14:df:4f:5e:8b:19:f6:7d:89:c4:ec:0a:74:fc:31:f3:a7:12: e7:a7:49:cf:16:60:ac:d6:ed:4e:13:61:3a:c8:49:71:45:a8: 61:12:a6:56:da:d7:a8:d7:70:ca:16:87:6f:83:f4:99:24:3c: 08:2e:07:78:8a:fe:5e:33:28:20:0b:5c:13:30:a2:a5:62:8e: bd:df:25:40:14:b9:97:b1:a6:64:b1:7c:6f:5c:d5:b9:99:d7: 3d:21:20:52:db:fc:14:16:6e:7d:c5:98:ae:c3:d3:5b:5d:be: 08:46:0c:bf:38:f1:2e:cd:8b:95:d1:cb:4c:04:d3:dd:99:50: ae:3e:42:0c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAMMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTZEOUUxMTAvBgNVBAUTKDNEMkQ5M0FDOEIxMDg2NTgxN0Q5QTc0Q0M4MUEwMzBE N0QzNUQwNzQwHhcNMjQxMTIzMDM1NDQwWhcNMjQxMTMwMDM1NDQwWjAYMRYwFAYD VQQDEw02NzQxNTIwMC1iM2IwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA20hnbZpWcdj6MQ1fVNIjdFhOYy6srg71U1Rg9sVC55AyljY4k+12WhViNWYo LY6rh2pBuKQmRSQsU6ylM86QqKjxd+Mfc+3Czw8domfamfPepvemZ8bMaT6BaxwG kFZLBMmSAVIn8h7QNjAhuefOqA0Rkf+gXHIszXaXW3SDUrtiuTcZW5D6a3BPBRo7 0DXw3qd4TbFKvmFqkqHdW5KrZE5xioJyYYVihfaLRhlUp9ZtdeDNX8j2UPWDvFRy wq7BuFNoBP7eDSSojmoZ/hP8y4JcxoQWz1T0kgBJ2gQzMnFCiH7B1wO+1tMLB+FA 5A4Zbc67A+27yxHdg0ZCW+JmMwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDd6AwRM wMIUJ4etIw+G7YZTNQGXMB8GA1UdIwQYMBaAFD0tk6yLEIZYF9mnTMgaAw19NdB0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NkQ5RS83N0JCOTg0QzdE NjExMUVFQjQ2M0M4NUFDNEY5QUUwMi9QUzJUcklzUWhsZ1gyYWRNeUJvRERYMDEw SFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BTMlRySXNRaGxnWDJhZE15Qm9ERFgwMTBIUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NkQ5RS83N0JCOTg0QzdENjExMUVFQjQ2M0M4NUFDNEY5QUUwMi9QUzJUcklzUWhs Z1gyYWRNeUJvRERYMDEwSFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBb2iksjteftxDV+PPUH+Qfm+ITxFZePC7NnQXNh+3aWGqDEB0wIUmC B0h7hjfFSrwUEBTBkM4kIMe5GYG7dVIsYJUVDSdmSlTSt/6WluiYWnlPqAXlLUQ7 MkGNx2DKxI2RmIT8Pad9eZ+jxUjSrHhH5MfKom9eJdij24M3cUcU309eixn2fYnE 7Ap0/DHzpxLnp0nPFmCs1u1OE2E6yElxRahhEqZW2teo13DKFodvg/SZJDwILgd4 iv5eMyggC1wTMKKlYo693yVAFLmXsaZksXxvXNW5mdc9ISBS2/wUFm59xZiuw9Nb Xb4IRgy/OPEuzYuV0ctMBNPdmVCuPkIM -----END CERTIFICATE-----Generated at Sat Nov 23 05:02:53 2024 by rpki-client on console-fra.rpki-client.org