$ rpki-client -vvf rpki.apnic.net/member_repository/A91A5CC3/6416D83814C011EE96EA5421C4F9AE02/3lWjaa7ZGGmMLWPDLvYb28WYBZY.mft File: 3lWjaa7ZGGmMLWPDLvYb28WYBZY.mft (raw, json) Hash identifier: dyeBuJY3/rbEYK22XL63o+AbhGUhkbq0o4OL/g01j8I= Subject key identifier: E5:B0:34:F6:47:3E:89:C2:81:CB:3A:5A:C9:80:4F:87:F3:9A:21:9C Authority key identifier: DE:55:A3:69:AE:D9:18:69:8C:2D:63:C3:2E:F6:1B:DB:C5:98:05:96 Certificate issuer: /CN=A91A5CC3/serialNumber=DE55A369AED918698C2D63C32EF61BDBC5980596 Certificate serial: 010A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3lWjaa7ZGGmMLWPDLvYb28WYBZY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A5CC3/6416D83814C011EE96EA5421C4F9AE02/3lWjaa7ZGGmMLWPDLvYb28WYBZY.mft Manifest number: 0108 Signing time: Sat 23 Nov 2024 03:10:11 +0000 Manifest this update: Sat 23 Nov 2024 03:10:10 +0000 Manifest next update: Sat 30 Nov 2024 03:10:10 +0000 Files and hashes: 1: 3lWjaa7ZGGmMLWPDLvYb28WYBZY.crl (hash: M1WAuS2IeD9MexTP+rQMxkIRYF7NkgLJz7q9lMeztgw=) 2: F287261014C311EE89C2C021C4F9AE02.roa (hash: h2JTkH5cDdzaWjiM7lCs6Ni3E0awofcV4Wu5xaJdDqI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A5CC3/6416D83814C011EE96EA5421C4F9AE02/3lWjaa7ZGGmMLWPDLvYb28WYBZY.crl rsync://rpki.apnic.net/member_repository/A91A5CC3/6416D83814C011EE96EA5421C4F9AE02/3lWjaa7ZGGmMLWPDLvYb28WYBZY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3lWjaa7ZGGmMLWPDLvYb28WYBZY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 266 (0x10a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A5CC3/serialNumber=DE55A369AED918698C2D63C32EF61BDBC5980596 Validity Not Before: Nov 23 03:10:10 2024 GMT Not After : Nov 30 03:10:10 2024 GMT Subject: CN=67414793-b988 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:3e:0d:0f:a7:40:0e:e7:1c:70:4d:68:ec:b4: f7:09:f2:99:fc:39:45:7d:40:84:c5:0e:c3:52:e3: 6e:5f:83:fb:85:8e:1b:3e:16:aa:1b:d1:97:35:ba: c0:63:dc:8c:1d:a8:d7:21:f6:17:3a:e8:f7:bb:24: c1:c9:eb:6a:77:3d:3f:91:a5:04:9b:fd:eb:4e:c5: e0:ed:4f:f1:25:9f:cc:d5:b1:f5:4d:5b:17:54:76: 54:cb:d0:8b:2a:4a:4d:c2:f4:9e:91:65:23:f7:15: d5:87:fa:b9:25:b6:13:19:61:57:30:83:20:91:23: 29:a1:45:20:a0:59:01:8f:51:ea:9c:33:03:29:20: 74:3f:d7:54:9e:dc:cb:19:b9:38:65:9b:58:49:6f: 9b:1c:94:9a:69:ca:bc:7b:80:3d:44:0e:70:ba:e6: 93:59:02:15:be:1a:6c:1e:a6:a5:db:cb:c7:aa:3d: e0:5a:42:f7:b8:b9:e5:20:32:89:3c:c6:b1:af:e0: 7b:85:d0:a8:f5:e4:9a:2a:be:aa:c8:2c:af:c4:dc: 0c:a3:6d:83:10:8a:5a:28:53:98:55:bb:3a:1b:85: b9:cf:a5:29:ed:0e:12:ed:70:eb:c4:d1:03:70:2b: 86:45:5e:b9:b0:e8:2e:d7:f7:1c:1d:36:13:46:44: d9:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:B0:34:F6:47:3E:89:C2:81:CB:3A:5A:C9:80:4F:87:F3:9A:21:9C X509v3 Authority Key Identifier: keyid:DE:55:A3:69:AE:D9:18:69:8C:2D:63:C3:2E:F6:1B:DB:C5:98:05:96 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A5CC3/6416D83814C011EE96EA5421C4F9AE02/3lWjaa7ZGGmMLWPDLvYb28WYBZY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3lWjaa7ZGGmMLWPDLvYb28WYBZY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A5CC3/6416D83814C011EE96EA5421C4F9AE02/3lWjaa7ZGGmMLWPDLvYb28WYBZY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0d:01:02:1d:9f:bc:56:3c:af:ce:e7:2d:2f:d0:a7:42:10:89: 6a:81:c1:73:44:c0:bd:e7:55:cf:74:40:0e:66:2a:e9:fd:09: 2a:43:db:09:56:a9:84:4a:b4:7e:ea:21:90:65:4d:40:7d:7b: bd:a3:4a:00:98:72:69:dc:77:44:d4:d5:14:97:da:60:14:c6: c6:9a:cf:eb:d9:3a:42:86:6f:33:13:97:91:64:00:a1:bb:d2: 05:2a:9a:96:38:76:98:7e:8d:e6:99:09:96:8f:7c:b4:5a:91: 4d:d9:2d:7c:ce:c3:98:8b:f7:a1:2d:61:2f:51:46:e8:9c:c4: 12:98:1a:4e:fa:95:b6:c2:e7:9f:5c:14:3e:88:24:14:19:93: d8:db:46:85:51:13:53:fe:ea:0d:3b:b7:c1:4a:34:35:22:63: ee:7d:ae:8b:83:d8:42:45:dc:2a:35:2f:47:59:07:b3:2a:de: 6a:57:4b:42:93:a1:3d:fc:5c:c7:62:14:1f:77:4b:fa:5e:ed: eb:cd:e3:e6:41:17:28:ba:f8:04:15:da:b9:1e:77:d8:ca:f0: 9a:14:00:04:68:68:5c:87:50:47:1e:91:d6:86:38:4c:53:76: d7:b1:fa:36:aa:15:1c:44:0d:19:29:d8:37:9b:ec:6a:af:58: 6f:f3:b5:5b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTVDQzMxMTAvBgNVBAUTKERFNTVBMzY5QUVEOTE4Njk4QzJENjNDMzJFRjYxQkRC QzU5ODA1OTYwHhcNMjQxMTIzMDMxMDEwWhcNMjQxMTMwMDMxMDEwWjAYMRYwFAYD VQQDEw02NzQxNDc5My1iOTg4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsj4ND6dADucccE1o7LT3CfKZ/DlFfUCExQ7DUuNuX4P7hY4bPhaqG9GXNbrA Y9yMHajXIfYXOuj3uyTByetqdz0/kaUEm/3rTsXg7U/xJZ/M1bH1TVsXVHZUy9CL KkpNwvSekWUj9xXVh/q5JbYTGWFXMIMgkSMpoUUgoFkBj1HqnDMDKSB0P9dUntzL Gbk4ZZtYSW+bHJSaacq8e4A9RA5wuuaTWQIVvhpsHqal28vHqj3gWkL3uLnlIDKJ PMaxr+B7hdCo9eSaKr6qyCyvxNwMo22DEIpaKFOYVbs6G4W5z6Up7Q4S7XDrxNED cCuGRV65sOgu1/ccHTYTRkTZkwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOWwNPZH PonCgcs6WsmAT4fzmiGcMB8GA1UdIwQYMBaAFN5Vo2mu2RhpjC1jwy72G9vFmAWW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNUNDMy82NDE2RDgzODE0 QzAxMUVFOTZFQTU0MjFDNEY5QUUwMi8zbFdqYWE3WkdHbU1MV1BETHZZYjI4V1lC WlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNsV2phYTdaR0dtTUxXUERMdlliMjhXWUJaWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NUNDMy82NDE2RDgzODE0QzAxMUVFOTZFQTU0MjFDNEY5QUUwMi8zbFdqYWE3WkdH bU1MV1BETHZZYjI4V1lCWlkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQANAQIdn7xWPK/O5y0v0KdCEIlqgcFzRMC951XPdEAOZirp/QkqQ9sJ VqmESrR+6iGQZU1AfXu9o0oAmHJp3HdE1NUUl9pgFMbGms/r2TpChm8zE5eRZACh u9IFKpqWOHaYfo3mmQmWj3y0WpFN2S18zsOYi/ehLWEvUUbonMQSmBpO+pW2wuef XBQ+iCQUGZPY20aFURNT/uoNO7fBSjQ1ImPufa6Lg9hCRdwqNS9HWQezKt5qV0tC k6E9/FzHYhQfd0v6Xu3rzePmQRcouvgEFdq5HnfYyvCaFAAEaGhch1BHHpHWhjhM U3bXsfo2qhUcRA0ZKdg3m+xqr1hv87Vb -----END CERTIFICATE-----Generated at Sat Nov 23 05:02:54 2024 by rpki-client on console-fra.rpki-client.org