$ rpki-client -vvf rpki.apnic.net/member_repository/A91DE4AC/3441D2D06C6E11ECB233FB61C4F9AE02/PusZaI0z1iGZTls9nkbsqqUJ9CM.mft File: PusZaI0z1iGZTls9nkbsqqUJ9CM.mft (raw, json) Hash identifier: wKXdfsP5CRsPDqqiOPCThMKt77N3IsR3RmBTE2TzARo= Subject key identifier: D3:39:80:74:90:A3:6E:33:76:0B:FB:9C:C6:FB:03:4A:B5:3F:9D:2E Authority key identifier: 3E:EB:19:68:8D:33:D6:21:99:4E:5B:3D:9E:46:EC:AA:A5:09:F4:23 Certificate issuer: /CN=A91DE4AC/serialNumber=3EEB19688D33D621994E5B3D9E46ECAAA509F423 Certificate serial: 03B6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PusZaI0z1iGZTls9nkbsqqUJ9CM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DE4AC/3441D2D06C6E11ECB233FB61C4F9AE02/PusZaI0z1iGZTls9nkbsqqUJ9CM.mft Manifest number: 03B2 Signing time: Sat 23 Nov 2024 00:16:42 +0000 Manifest this update: Sat 23 Nov 2024 00:16:41 +0000 Manifest next update: Sat 30 Nov 2024 00:16:41 +0000 Files and hashes: 1: PusZaI0z1iGZTls9nkbsqqUJ9CM.crl (hash: b3c6x9B0aQOtCdXaqsBqAJGi4AX0YbH4kEpQsCOSvLg=) 2: 0716B2646C7111EC8C5E6967C4F9AE02.roa (hash: JlDX2tzJlcNE/I1lTDSMx1j1rQwlB5jz3lhUPSy9RC0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DE4AC/3441D2D06C6E11ECB233FB61C4F9AE02/PusZaI0z1iGZTls9nkbsqqUJ9CM.crl rsync://rpki.apnic.net/member_repository/A91DE4AC/3441D2D06C6E11ECB233FB61C4F9AE02/PusZaI0z1iGZTls9nkbsqqUJ9CM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PusZaI0z1iGZTls9nkbsqqUJ9CM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 950 (0x3b6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DE4AC/serialNumber=3EEB19688D33D621994E5B3D9E46ECAAA509F423 Validity Not Before: Nov 23 00:16:41 2024 GMT Not After : Nov 30 00:16:41 2024 GMT Subject: CN=67411ee9-c231 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:35:20:b3:fc:b8:16:97:56:9b:86:76:c2:22: 25:1c:89:7b:51:2d:aa:2a:1a:ab:2f:91:a0:2a:82: b8:ff:9e:ad:9f:c8:d9:5c:17:bb:5f:15:94:19:05: cf:39:14:4d:e8:9f:54:bc:04:67:f0:7b:f3:d9:da: 48:b0:81:84:76:86:4d:5a:cd:da:0e:12:90:6e:5b: c7:a1:51:9a:d5:b0:a9:ce:f0:20:e0:08:ac:cd:29: 5a:e2:ae:48:ec:2f:d7:16:54:37:b1:b1:bb:69:a7: 02:1d:99:a4:59:9c:b4:7a:a5:75:b9:d5:e6:41:82: f8:39:5d:76:e5:7c:09:1b:ed:61:40:f8:53:87:9d: 86:f8:6d:32:ba:85:75:a0:41:be:34:1d:b6:f7:34: 4c:4b:ed:3a:3c:5a:d0:7f:ee:09:ac:2d:b1:02:58: 7a:ac:15:f2:42:8c:a7:7c:2f:04:ec:70:e2:f4:46: a7:4c:5b:3b:2e:9c:e9:62:40:90:82:43:6f:72:4b: 0a:4b:35:03:42:1d:68:45:ed:7c:48:da:3b:af:58: dd:d3:69:3f:67:84:d6:06:25:7f:0e:93:10:bc:11: c2:b6:57:93:0b:a1:17:f3:cb:71:b1:0c:ea:14:c2: c9:00:1a:f8:8c:86:8d:b4:67:c8:f7:27:fe:11:47: 92:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:39:80:74:90:A3:6E:33:76:0B:FB:9C:C6:FB:03:4A:B5:3F:9D:2E X509v3 Authority Key Identifier: keyid:3E:EB:19:68:8D:33:D6:21:99:4E:5B:3D:9E:46:EC:AA:A5:09:F4:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DE4AC/3441D2D06C6E11ECB233FB61C4F9AE02/PusZaI0z1iGZTls9nkbsqqUJ9CM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PusZaI0z1iGZTls9nkbsqqUJ9CM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DE4AC/3441D2D06C6E11ECB233FB61C4F9AE02/PusZaI0z1iGZTls9nkbsqqUJ9CM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 00:fe:86:65:d5:aa:e4:91:d8:33:7b:20:1a:28:8b:70:8e:fc: b2:1e:4d:38:e5:bd:75:ff:39:cb:88:61:e4:9f:ed:34:ce:44: 4c:68:8a:11:71:03:63:03:88:80:2d:7a:56:f6:ad:65:3e:06: 3a:35:ac:2e:f0:d6:40:72:78:64:46:c4:41:57:f2:84:8c:a6: 6b:f4:20:0e:4d:8e:f7:35:e7:89:4a:c5:10:5e:8f:6e:9e:be: eb:78:9c:85:4f:2e:05:29:94:b4:ad:3a:ca:d7:01:83:ce:01: bf:72:2a:59:4a:f4:89:96:d3:10:09:4d:25:eb:69:6e:a4:51: 16:6d:35:40:67:f9:86:6b:e2:af:95:86:63:98:fe:bf:c4:52: de:61:fe:c5:eb:ac:2a:c2:f6:ce:eb:29:26:3f:42:53:05:2c: 22:0a:eb:e8:e4:e2:2a:fb:8c:04:65:68:4d:de:be:18:0d:c9: ef:f5:32:2c:2a:32:6e:ae:0f:e7:ec:23:4d:54:8f:93:09:34: f6:37:28:6a:e2:7c:6a:c8:be:65:3d:60:28:a8:5d:08:18:31: 34:fb:7a:82:3b:91:f0:ee:c7:a9:3b:00:4e:dd:ad:24:7e:dd: 23:4c:63:13:94:cd:79:23:d2:59:37:f2:71:d2:c3:b5:bb:f3: b6:00:d3:70 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA7YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REU0QUMxMTAvBgNVBAUTKDNFRUIxOTY4OEQzM0Q2MjE5OTRFNUIzRDlFNDZFQ0FB QTUwOUY0MjMwHhcNMjQxMTIzMDAxNjQxWhcNMjQxMTMwMDAxNjQxWjAYMRYwFAYD VQQDEw02NzQxMWVlOS1jMjMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyTUgs/y4FpdWm4Z2wiIlHIl7US2qKhqrL5GgKoK4/56tn8jZXBe7XxWUGQXP ORRN6J9UvARn8Hvz2dpIsIGEdoZNWs3aDhKQblvHoVGa1bCpzvAg4AiszSla4q5I 7C/XFlQ3sbG7aacCHZmkWZy0eqV1udXmQYL4OV125XwJG+1hQPhTh52G+G0yuoV1 oEG+NB229zRMS+06PFrQf+4JrC2xAlh6rBXyQoynfC8E7HDi9EanTFs7LpzpYkCQ gkNvcksKSzUDQh1oRe18SNo7r1jd02k/Z4TWBiV/DpMQvBHCtleTC6EX88txsQzq FMLJABr4jIaNtGfI9yf+EUeSMwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNM5gHSQ o24zdgv7nMb7A0q1P50uMB8GA1UdIwQYMBaAFD7rGWiNM9YhmU5bPZ5G7KqlCfQj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERTRBQy8zNDQxRDJEMDZD NkUxMUVDQjIzM0ZCNjFDNEY5QUUwMi9QdXNaYUkwejFpR1pUbHM5bmtic3FxVUo5 Q00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1B1c1phSTB6MWlHWlRsczlua2JzcXFVSjlDTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RTRBQy8zNDQxRDJEMDZDNkUxMUVDQjIzM0ZCNjFDNEY5QUUwMi9QdXNaYUkwejFp R1pUbHM5bmtic3FxVUo5Q00ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAA/oZl1arkkdgzeyAaKItwjvyyHk045b11/znLiGHkn+00zkRMaIoR cQNjA4iALXpW9q1lPgY6Nawu8NZAcnhkRsRBV/KEjKZr9CAOTY73NeeJSsUQXo9u nr7reJyFTy4FKZS0rTrK1wGDzgG/cipZSvSJltMQCU0l62lupFEWbTVAZ/mGa+Kv lYZjmP6/xFLeYf7F66wqwvbO6ykmP0JTBSwiCuvo5OIq+4wEZWhN3r4YDcnv9TIs KjJurg/n7CNNVI+TCTT2Nyhq4nxqyL5lPWAoqF0IGDE0+3qCO5Hw7sepOwBO3a0k ft0jTGMTlM15I9JZN/Jx0sO1u/O2ANNw -----END CERTIFICATE-----Generated at Sat Nov 23 02:33:48 2024 by rpki-client on console-fra.rpki-client.org