$ rpki-client -vvf rpki.apnic.net/member_repository/A91D53AC/03168C4E1D9711E28B6C008008B02CD2/S3Z_4wTU8n9REYZLp0O5R5zhSns.mft File: S3Z_4wTU8n9REYZLp0O5R5zhSns.mft (raw, json) Hash identifier: 7CzRmyURGoOtr40G8h1DI0TICAo8o4lQLBN4fqPCawA= Subject key identifier: 62:F2:50:C1:CD:D5:16:E6:EA:23:B6:44:D6:9D:B8:46:8E:16:99:C6 Authority key identifier: 4B:76:7F:E3:04:D4:F2:7F:51:11:86:4B:A7:43:B9:47:9C:E1:4A:7B Certificate issuer: /CN=A91D53AC/serialNumber=4B767FE304D4F27F5111864BA743B9479CE14A7B Certificate serial: 3429 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S3Z_4wTU8n9REYZLp0O5R5zhSns.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D53AC/03168C4E1D9711E28B6C008008B02CD2/S3Z_4wTU8n9REYZLp0O5R5zhSns.mft Manifest number: 3427 Signing time: Sun 24 Nov 2024 14:49:48 +0000 Manifest this update: Sun 24 Nov 2024 14:49:48 +0000 Manifest next update: Sun 01 Dec 2024 14:49:48 +0000 Files and hashes: 1: S3Z_4wTU8n9REYZLp0O5R5zhSns.crl (hash: aEIyIF2LCElmJPvL5yOKpYDehXjJxwgxoiUC+F/Lg/k=) 2: 0C9FD154619611EEADD97F70C4F9AE02.roa (hash: 5RTwQK79dFx5zdcsgItHRlxaRrTF/t48B9CGcpBmd1c=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D53AC/03168C4E1D9711E28B6C008008B02CD2/S3Z_4wTU8n9REYZLp0O5R5zhSns.crl rsync://rpki.apnic.net/member_repository/A91D53AC/03168C4E1D9711E28B6C008008B02CD2/S3Z_4wTU8n9REYZLp0O5R5zhSns.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S3Z_4wTU8n9REYZLp0O5R5zhSns.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Dec 2024 14:49:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13353 (0x3429) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D53AC/serialNumber=4B767FE304D4F27F5111864BA743B9479CE14A7B Validity Not Before: Nov 24 14:49:48 2024 GMT Not After : Dec 1 14:49:48 2024 GMT Subject: CN=67433d0c-bc41 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:32:b5:d4:6e:d6:38:e2:9e:f3:3e:10:3a:6e: 1f:e2:80:bc:8e:28:00:65:6b:c7:2f:1b:33:95:83: ec:4e:fc:f8:9a:ec:ae:95:b9:af:c8:4b:1a:f5:04: 95:2d:c1:28:d5:ff:24:46:43:ca:cb:e5:4b:b1:8c: fe:28:7b:e6:bc:c0:b9:07:76:92:07:cd:c2:34:e0: 27:bb:46:8b:6c:a8:81:19:b8:b7:4b:c2:fb:94:ce: d3:0d:6c:47:5a:e2:3f:d6:82:90:01:21:a6:1c:f8: 39:21:fe:88:10:c2:56:4b:89:84:89:f7:c0:42:0b: 40:46:6f:03:0d:c3:b3:10:5c:26:1d:b3:e6:8c:8b: ba:da:13:76:f6:33:86:13:94:2a:3d:fc:e5:65:42: 2e:f3:99:ac:88:77:fa:58:de:6c:aa:77:57:10:13: 3f:f3:1c:fb:3b:78:94:3e:7a:72:be:61:05:65:b9: 18:01:42:c7:81:3b:3b:ab:fd:6f:49:6b:97:75:a3: 3e:f5:6c:bc:d1:98:26:28:ad:b6:5b:71:67:79:a3: b9:b8:70:ad:0a:9f:d7:c5:a3:40:f9:1d:8f:d3:92: 1d:e4:4e:e7:2d:e2:62:9a:4a:03:df:f4:e7:fa:12: 54:83:74:e6:08:83:99:6d:81:98:b6:13:0a:54:79: f1:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:F2:50:C1:CD:D5:16:E6:EA:23:B6:44:D6:9D:B8:46:8E:16:99:C6 X509v3 Authority Key Identifier: keyid:4B:76:7F:E3:04:D4:F2:7F:51:11:86:4B:A7:43:B9:47:9C:E1:4A:7B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D53AC/03168C4E1D9711E28B6C008008B02CD2/S3Z_4wTU8n9REYZLp0O5R5zhSns.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S3Z_4wTU8n9REYZLp0O5R5zhSns.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D53AC/03168C4E1D9711E28B6C008008B02CD2/S3Z_4wTU8n9REYZLp0O5R5zhSns.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a4:e6:a1:73:23:21:6c:33:20:82:8b:f4:f9:33:b8:41:fe:8d: 07:3c:5d:5e:67:3f:7d:25:71:9f:cf:7b:ad:d3:d7:c0:03:59: 50:5f:0c:82:e1:ef:87:7b:da:57:08:5a:47:02:c2:e8:c6:07: 90:d5:86:96:a7:c8:5c:ea:b6:fe:2c:67:db:7b:a0:a6:12:5d: 1b:12:6c:0c:06:b7:2e:44:52:29:00:91:16:00:bf:a5:63:53: e9:86:46:c3:f5:74:57:15:aa:dc:0f:27:aa:02:00:3e:50:35: 61:d4:5c:f9:70:20:22:bd:ea:31:f6:f1:88:52:56:13:77:19: 35:dd:a1:3f:73:b5:b8:59:31:17:46:3a:98:2d:4e:45:cc:70: 0d:f7:bd:06:6a:49:df:13:81:c0:60:87:9e:35:2b:55:a0:80: 5c:68:43:41:82:55:17:2c:b1:e9:b8:2b:db:51:5f:17:48:00: b1:d5:af:d5:b0:17:60:72:9b:a6:52:e3:da:70:63:00:fd:12: 46:2d:5d:51:1f:84:92:27:a3:8c:99:b0:82:15:99:4a:06:da: b8:bd:b1:25:f4:6a:3f:69:35:aa:a0:30:93:18:80:44:f4:5d: 35:c9:22:b4:c4:44:38:cf:b8:d2:f8:36:66:04:41:9a:06:39: 4a:3c:70:aa -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNCkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDUzQUMxMTAvBgNVBAUTKDRCNzY3RkUzMDRENEYyN0Y1MTExODY0QkE3NDNCOTQ3 OUNFMTRBN0IwHhcNMjQxMTI0MTQ0OTQ4WhcNMjQxMjAxMTQ0OTQ4WjAYMRYwFAYD VQQDEw02NzQzM2QwYy1iYzQxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApzK11G7WOOKe8z4QOm4f4oC8jigAZWvHLxszlYPsTvz4muyulbmvyEsa9QSV LcEo1f8kRkPKy+VLsYz+KHvmvMC5B3aSB83CNOAnu0aLbKiBGbi3S8L7lM7TDWxH WuI/1oKQASGmHPg5If6IEMJWS4mEiffAQgtARm8DDcOzEFwmHbPmjIu62hN29jOG E5QqPfzlZUIu85msiHf6WN5sqndXEBM/8xz7O3iUPnpyvmEFZbkYAULHgTs7q/1v SWuXdaM+9Wy80ZgmKK22W3FneaO5uHCtCp/XxaNA+R2P05Id5E7nLeJimkoD3/Tn +hJUg3TmCIOZbYGYthMKVHnxAwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGLyUMHN 1Rbm6iO2RNaduEaOFpnGMB8GA1UdIwQYMBaAFEt2f+ME1PJ/URGGS6dDuUec4Up7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENTNBQy8wMzE2OEM0RTFE OTcxMUUyOEI2QzAwODAwOEIwMkNEMi9TM1pfNHdUVThuOVJFWVpMcDBPNVI1emhT bnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1MzWl80d1RVOG45UkVZWkxwME81UjV6aFNucy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NTNBQy8wMzE2OEM0RTFEOTcxMUUyOEI2QzAwODAwOEIwMkNEMi9TM1pfNHdUVThu OVJFWVpMcDBPNVI1emhTbnMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCk5qFzIyFsMyCCi/T5M7hB/o0HPF1eZz99JXGfz3ut09fAA1lQXwyC 4e+He9pXCFpHAsLoxgeQ1YaWp8hc6rb+LGfbe6CmEl0bEmwMBrcuRFIpAJEWAL+l Y1PphkbD9XRXFarcDyeqAgA+UDVh1Fz5cCAiveox9vGIUlYTdxk13aE/c7W4WTEX RjqYLU5FzHAN970GaknfE4HAYIeeNStVoIBcaENBglUXLLHpuCvbUV8XSACx1a/V sBdgcpumUuPacGMA/RJGLV1RH4SSJ6OMmbCCFZlKBtq4vbEl9Go/aTWqoDCTGIBE 9F01ySK0xEQ4z7jS+DZmBEGaBjlKPHCq -----END CERTIFICATE-----Generated at Sun Nov 24 17:20:52 2024 by rpki-client on console-fra.rpki-client.org