$ rpki-client -vvf rpki.apnic.net/member_repository/A91B569E/2525C7C84D2511EDA6DDD22EC4F9AE02/3Lg5MZ_VLq2fy5d4KYT9H9RJLBc.mft File: 3Lg5MZ_VLq2fy5d4KYT9H9RJLBc.mft (raw, json) Hash identifier: Hj8asms9FUHcO3CmVYOig8o3HQSLzqGljy6diV8ivF0= Subject key identifier: FC:EA:92:BC:66:65:9B:B3:4E:B3:5E:82:39:E2:12:B0:9E:E5:7E:50 Authority key identifier: DC:B8:39:31:9F:D5:2E:AD:9F:CB:97:78:29:84:FD:1F:D4:49:2C:17 Certificate issuer: /CN=A91B569E/serialNumber=DCB839319FD52EAD9FCB97782984FD1FD4492C17 Certificate serial: 018E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3Lg5MZ_VLq2fy5d4KYT9H9RJLBc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B569E/2525C7C84D2511EDA6DDD22EC4F9AE02/3Lg5MZ_VLq2fy5d4KYT9H9RJLBc.mft Manifest number: 018B Signing time: Sat 23 Nov 2024 01:55:41 +0000 Manifest this update: Sat 23 Nov 2024 01:55:41 +0000 Manifest next update: Sat 30 Nov 2024 01:55:41 +0000 Files and hashes: 1: 3Lg5MZ_VLq2fy5d4KYT9H9RJLBc.crl (hash: sug5ZnYxuDOjBavIDGKo38HTTXjoG5jzv9NznRp98Vk=) 2: B6C2A6FE4D2711ED8D49D62FC4F9AE02.roa (hash: cGKzPRi4qpFTDp9AsYpCH0KUskozh5GY9aPuYwuAisU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B569E/2525C7C84D2511EDA6DDD22EC4F9AE02/3Lg5MZ_VLq2fy5d4KYT9H9RJLBc.crl rsync://rpki.apnic.net/member_repository/A91B569E/2525C7C84D2511EDA6DDD22EC4F9AE02/3Lg5MZ_VLq2fy5d4KYT9H9RJLBc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3Lg5MZ_VLq2fy5d4KYT9H9RJLBc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 01:55:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 398 (0x18e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B569E/serialNumber=DCB839319FD52EAD9FCB97782984FD1FD4492C17 Validity Not Before: Nov 23 01:55:41 2024 GMT Not After : Nov 30 01:55:41 2024 GMT Subject: CN=6741361d-a984 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:54:91:51:9d:46:b4:b5:ef:76:7e:d5:35:d3: fb:7f:7c:6c:cf:61:7d:c5:fc:1a:8e:9c:93:a3:a5: 7c:db:12:22:6f:44:68:92:67:89:28:fd:79:da:9b: e8:15:14:16:4b:0a:54:15:c3:15:8b:da:3f:e7:30: 52:69:42:25:a5:12:d8:aa:fe:1a:ec:6c:56:f2:43: e2:7f:f2:7c:0f:1b:96:55:10:d7:5d:a0:4f:8f:5f: 0e:3b:2b:ed:d8:29:1c:04:75:68:9f:7d:5d:84:da: 40:09:d7:ab:da:2f:de:c1:d6:8a:18:e6:5a:6d:fd: 04:86:e9:8b:84:46:20:98:4b:5c:7f:50:06:e5:81: a3:64:de:b1:00:03:03:4b:ef:af:17:ba:ba:36:65: 97:06:39:49:dd:65:31:54:a1:c5:74:2c:db:95:ec: e1:44:5d:fe:bc:b3:44:8f:a4:09:22:2e:89:35:6b: 2b:b4:9e:76:0d:b8:0e:39:b7:76:48:70:b3:cd:3d: 6e:4e:45:39:af:d3:c8:29:16:3c:19:56:c1:f0:31: de:c0:f2:d6:b4:9f:e6:a2:77:0b:7f:00:9b:f0:08: 4b:b5:7a:bf:50:f3:23:72:ef:be:70:bc:4b:88:a7: 26:79:1c:b2:68:93:67:85:9a:a8:8d:46:8c:43:03: 8a:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:EA:92:BC:66:65:9B:B3:4E:B3:5E:82:39:E2:12:B0:9E:E5:7E:50 X509v3 Authority Key Identifier: keyid:DC:B8:39:31:9F:D5:2E:AD:9F:CB:97:78:29:84:FD:1F:D4:49:2C:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B569E/2525C7C84D2511EDA6DDD22EC4F9AE02/3Lg5MZ_VLq2fy5d4KYT9H9RJLBc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3Lg5MZ_VLq2fy5d4KYT9H9RJLBc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B569E/2525C7C84D2511EDA6DDD22EC4F9AE02/3Lg5MZ_VLq2fy5d4KYT9H9RJLBc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8d:88:d7:3b:8d:4b:7d:b2:09:68:33:3d:6e:f1:08:09:dc:74: 8a:38:67:bc:fa:c3:95:07:cc:87:5b:ba:77:33:84:b1:ac:19: 8f:bb:be:7a:46:7d:c6:89:9e:86:b8:8a:2d:40:9b:75:c2:e2: 46:59:4d:2c:67:11:2c:89:07:13:4f:a7:00:83:ff:d5:18:5a: 7d:88:e4:ce:2f:fa:44:10:6b:43:9b:7b:38:57:eb:d6:df:b8: ca:87:38:f5:ac:d7:bb:0c:53:60:b5:5a:fc:69:64:c3:65:ad: cf:ec:4a:db:da:6b:8a:e1:11:9d:5f:80:b8:19:df:ec:e0:90: 33:ad:55:a2:64:53:e7:8c:5e:aa:21:ec:0e:75:dd:b1:5f:a2: 00:cf:9c:15:60:e4:f1:8a:4e:c6:d8:6e:f3:ff:84:4a:3c:fa: a7:c5:29:be:2a:11:9f:e3:2e:c7:92:ee:5a:90:99:a0:66:b8: 63:ca:fb:a5:a9:08:e4:cf:3f:89:cb:6e:b7:3e:c2:50:4d:d7: aa:29:29:4b:53:da:48:88:db:17:53:3c:1c:b9:32:e3:60:50: 7c:f8:c4:85:75:4e:ab:d9:82:6b:e1:e8:4c:a9:3b:14:0b:72: 18:52:71:18:00:55:1a:46:10:5e:c5:ee:64:a7:bc:89:8e:a9: 23:82:81:ac -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAY4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjU2OUUxMTAvBgNVBAUTKERDQjgzOTMxOUZENTJFQUQ5RkNCOTc3ODI5ODRGRDFG RDQ0OTJDMTcwHhcNMjQxMTIzMDE1NTQxWhcNMjQxMTMwMDE1NTQxWjAYMRYwFAYD VQQDEw02NzQxMzYxZC1hOTg0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq1SRUZ1GtLXvdn7VNdP7f3xsz2F9xfwajpyTo6V82xIib0RokmeJKP152pvo FRQWSwpUFcMVi9o/5zBSaUIlpRLYqv4a7GxW8kPif/J8DxuWVRDXXaBPj18OOyvt 2CkcBHVon31dhNpACder2i/ewdaKGOZabf0EhumLhEYgmEtcf1AG5YGjZN6xAAMD S++vF7q6NmWXBjlJ3WUxVKHFdCzblezhRF3+vLNEj6QJIi6JNWsrtJ52DbgOObd2 SHCzzT1uTkU5r9PIKRY8GVbB8DHewPLWtJ/moncLfwCb8AhLtXq/UPMjcu++cLxL iKcmeRyyaJNnhZqojUaMQwOKZQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPzqkrxm ZZuzTrNegjniErCe5X5QMB8GA1UdIwQYMBaAFNy4OTGf1S6tn8uXeCmE/R/USSwX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNTY5RS8yNTI1QzdDODRE MjUxMUVEQTZEREQyMkVDNEY5QUUwMi8zTGc1TVpfVkxxMmZ5NWQ0S1lUOUg5UkpM QmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNMZzVNWl9WTHEyZnk1ZDRLWVQ5SDlSSkxCYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NTY5RS8yNTI1QzdDODREMjUxMUVEQTZEREQyMkVDNEY5QUUwMi8zTGc1TVpfVkxx MmZ5NWQ0S1lUOUg5UkpMQmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCNiNc7jUt9sgloMz1u8QgJ3HSKOGe8+sOVB8yHW7p3M4SxrBmPu756 Rn3GiZ6GuIotQJt1wuJGWU0sZxEsiQcTT6cAg//VGFp9iOTOL/pEEGtDm3s4V+vW 37jKhzj1rNe7DFNgtVr8aWTDZa3P7Erb2muK4RGdX4C4Gd/s4JAzrVWiZFPnjF6q IewOdd2xX6IAz5wVYOTxik7G2G7z/4RKPPqnxSm+KhGf4y7Hku5akJmgZrhjyvul qQjkzz+Jy263PsJQTdeqKSlLU9pIiNsXUzwcuTLjYFB8+MSFdU6r2YJr4ehMqTsU C3IYUnEYAFUaRhBexe5kp7yJjqkjgoGs -----END CERTIFICATE-----Generated at Sat Nov 23 03:58:48 2024 by rpki-client on console-ams.rpki-client.org