$ rpki-client -vvf rpki.apnic.net/member_repository/A91B31CB/F44CCF7E89F011EFAD26B97AC4F9AE02/3-Ss3KCmIkNlS9IJNoIFeOktJSQ.mft File: 3-Ss3KCmIkNlS9IJNoIFeOktJSQ.mft (raw, json) Hash identifier: tcNMeKrdfNVRRaq7YnVtQVgsd2lM5oi5pAlCvG18t2M= Subject key identifier: 5A:50:53:22:60:B4:DE:3D:D1:97:97:5E:A3:E9:E5:F3:B7:C1:B5:81 Authority key identifier: DF:E4:AC:DC:A0:A6:22:43:65:4B:D2:09:36:82:05:78:E9:2D:25:24 Certificate issuer: /CN=A91B31CB/serialNumber=DFE4ACDCA0A62243654BD20936820578E92D2524 Certificate serial: 18 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3-Ss3KCmIkNlS9IJNoIFeOktJSQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B31CB/F44CCF7E89F011EFAD26B97AC4F9AE02/3-Ss3KCmIkNlS9IJNoIFeOktJSQ.mft Manifest number: 17 Signing time: Sat 23 Nov 2024 05:54:00 +0000 Manifest this update: Sat 23 Nov 2024 05:54:00 +0000 Manifest next update: Sat 30 Nov 2024 05:54:00 +0000 Files and hashes: 1: 3-Ss3KCmIkNlS9IJNoIFeOktJSQ.crl (hash: WFTfDWjbkZlwb2b41EfO7tZ+PV3KymAGPiUhUJD56ZA=) 2: 67030B7889F111EFB3186A7BC4F9AE02.roa (hash: mvhi+IiloRrqCatLOZAFHngd1MYdVM4fTREmQVB/RXo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B31CB/F44CCF7E89F011EFAD26B97AC4F9AE02/3-Ss3KCmIkNlS9IJNoIFeOktJSQ.crl rsync://rpki.apnic.net/member_repository/A91B31CB/F44CCF7E89F011EFAD26B97AC4F9AE02/3-Ss3KCmIkNlS9IJNoIFeOktJSQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3-Ss3KCmIkNlS9IJNoIFeOktJSQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24 (0x18) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B31CB/serialNumber=DFE4ACDCA0A62243654BD20936820578E92D2524 Validity Not Before: Nov 23 05:54:00 2024 GMT Not After : Nov 30 05:54:00 2024 GMT Subject: CN=67416df8-1bb4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:9c:70:66:af:78:c6:6a:a3:fd:76:f1:fa:37: c4:bb:fc:c8:0b:16:23:a0:3a:73:5f:ae:83:47:28: 5e:26:d0:ae:4b:cb:18:7a:bf:32:78:5b:86:5b:bf: ae:9f:be:1a:4b:9a:69:9a:37:91:74:df:e1:24:f1: 71:7d:91:96:ce:fa:d4:50:f4:8c:d8:f6:7d:39:36: d8:b0:6e:ee:59:f5:26:23:c9:00:4a:92:5e:ff:6f: bc:83:a5:36:50:09:2d:a8:54:ad:43:16:78:d1:19: 43:68:98:23:4c:fa:1c:bc:c9:fa:73:f1:a8:5d:67: 78:a5:d5:c4:fa:c1:80:6c:ee:94:11:87:88:f8:80: ad:6a:41:b4:05:a7:65:aa:ab:6a:06:09:60:55:8a: ab:f7:9e:57:e8:09:8c:3c:df:34:47:45:15:94:54: b5:29:a2:2a:2d:d4:66:34:6b:3d:c3:6f:11:f4:1d: 74:09:dd:86:1d:c7:07:01:f8:06:3f:7a:8a:e9:8c: eb:be:23:b1:45:66:b1:a3:03:cf:5a:66:34:f6:0a: e5:e7:0b:75:17:3b:a3:26:3b:cf:47:e9:a8:fb:ea: f5:e6:84:09:6d:ac:0e:a4:98:b2:32:ef:53:f1:e0: a6:7b:e3:0c:d4:3c:ff:6b:fd:ff:47:09:60:28:27: d6:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:50:53:22:60:B4:DE:3D:D1:97:97:5E:A3:E9:E5:F3:B7:C1:B5:81 X509v3 Authority Key Identifier: keyid:DF:E4:AC:DC:A0:A6:22:43:65:4B:D2:09:36:82:05:78:E9:2D:25:24 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B31CB/F44CCF7E89F011EFAD26B97AC4F9AE02/3-Ss3KCmIkNlS9IJNoIFeOktJSQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3-Ss3KCmIkNlS9IJNoIFeOktJSQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B31CB/F44CCF7E89F011EFAD26B97AC4F9AE02/3-Ss3KCmIkNlS9IJNoIFeOktJSQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b8:f9:f7:66:bb:c8:08:79:4a:6b:a9:07:da:75:50:29:62:41: 5f:22:17:dc:1c:3a:ae:8e:54:38:a5:45:02:34:5f:4a:41:9d: 41:0d:89:08:a3:e4:f2:3e:6b:e5:8b:b0:66:c7:a1:81:6d:46: 71:8f:88:31:90:f9:7a:7f:c5:90:34:d5:80:7b:94:2c:7e:4c: 0b:18:f2:6e:ef:92:89:1f:88:a1:da:b7:bf:13:71:7b:c3:8f: c9:40:a6:7a:11:b3:ad:06:9f:88:04:fa:b9:21:7c:5b:2d:e2: 7e:76:97:d7:e6:07:27:e7:65:84:dd:8c:52:2d:a6:87:61:60: 8d:fa:f1:e3:d1:2f:9e:43:36:d6:80:2d:b3:a2:50:c9:62:60: c9:e3:81:5a:2f:1b:9e:92:8d:3b:c4:80:cd:24:1a:77:5a:9d: 46:96:7c:43:01:8a:ed:fa:0e:e7:d5:9b:bf:d6:ae:ca:64:8e: 7c:16:1c:cf:c6:d6:b1:a3:0e:a1:6d:dd:d7:3e:58:b4:3b:34: 9f:1c:a5:bd:43:30:36:67:68:9c:1f:50:b6:36:ca:72:31:4a: 3b:b3:70:01:a1:e6:11:40:ca:89:12:f3:e6:50:be:e5:9a:6e: ef:fd:3c:3c:3e:fe:45:5d:f5:41:3a:7c:c9:83:e3:34:d5:4b: 8f:c8:82:85 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBGDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC MzFDQjExMC8GA1UEBRMoREZFNEFDRENBMEE2MjI0MzY1NEJEMjA5MzY4MjA1NzhF OTJEMjUyNDAeFw0yNDExMjMwNTU0MDBaFw0yNDExMzAwNTU0MDBaMBgxFjAUBgNV BAMTDTY3NDE2ZGY4LTFiYjQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC/nHBmr3jGaqP9dvH6N8S7/MgLFiOgOnNfroNHKF4m0K5Lyxh6vzJ4W4Zbv66f vhpLmmmaN5F03+Ek8XF9kZbO+tRQ9IzY9n05Ntiwbu5Z9SYjyQBKkl7/b7yDpTZQ CS2oVK1DFnjRGUNomCNM+hy8yfpz8ahdZ3il1cT6wYBs7pQRh4j4gK1qQbQFp2Wq q2oGCWBViqv3nlfoCYw83zRHRRWUVLUpoiot1GY0az3DbxH0HXQJ3YYdxwcB+AY/ eorpjOu+I7FFZrGjA89aZjT2CuXnC3UXO6MmO89H6aj76vXmhAltrA6kmLIy71Px 4KZ74wzUPP9r/f9HCWAoJ9ZVAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUWlBTImC0 3j3Rl5deo+nl87fBtYEwHwYDVR0jBBgwFoAU3+Ss3KCmIkNlS9IJNoIFeOktJSQw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUIzMUNCL0Y0NENDRjdFODlG MDExRUZBRDI2Qjk3QUM0RjlBRTAyLzMtU3MzS0NtSWtObFM5SUpOb0lGZU9rdEpT US5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvMy1TczNLQ21Ja05sUzlJSk5vSUZlT2t0SlNRLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUIz MUNCL0Y0NENDRjdFODlGMDExRUZBRDI2Qjk3QUM0RjlBRTAyLzMtU3MzS0NtSWtO bFM5SUpOb0lGZU9rdEpTUS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBALj592a7yAh5SmupB9p1UCliQV8iF9wcOq6OVDilRQI0X0pBnUENiQij 5PI+a+WLsGbHoYFtRnGPiDGQ+Xp/xZA01YB7lCx+TAsY8m7vkokfiKHat78TcXvD j8lApnoRs60Gn4gE+rkhfFst4n52l9fmByfnZYTdjFItpodhYI368ePRL55DNtaA LbOiUMliYMnjgVovG56SjTvEgM0kGndanUaWfEMBiu36DufVm7/WrspkjnwWHM/G 1rGjDqFt3dc+WLQ7NJ8cpb1DMDZnaJwfULY2ynIxSjuzcAGh5hFAyokS8+ZQvuWa bu/9PDw+/kVd9UE6fMmD4zTVS4/IgoU= -----END CERTIFICATE-----Generated at Sat Nov 23 07:45:04 2024 by rpki-client on console-ams.rpki-client.org