$ rpki-client -vvf rpki.apnic.net/member_repository/A91E3D04/7A17FE8EADD911E9B7409A72C4F9AE02/38I-PZBdDoNoEhlZbQgimmlPrxM.mft File: 38I-PZBdDoNoEhlZbQgimmlPrxM.mft (raw, json) Hash identifier: yvxDq1e9L75ZGfGQGvwrv4+/iSMSH4Zbv4wXscm/cFA= Subject key identifier: D7:0F:7A:8A:65:68:92:B6:2B:A2:DA:20:AB:3D:2A:7C:42:5F:C6:9F Authority key identifier: DF:C2:3E:3D:90:5D:0E:83:68:12:19:59:6D:08:22:9A:69:4F:AF:13 Certificate issuer: /CN=A91E3D04/serialNumber=DFC23E3D905D0E83681219596D08229A694FAF13 Certificate serial: 0DC1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/38I-PZBdDoNoEhlZbQgimmlPrxM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E3D04/7A17FE8EADD911E9B7409A72C4F9AE02/38I-PZBdDoNoEhlZbQgimmlPrxM.mft Manifest number: 0DA9 Signing time: Fri 22 Nov 2024 17:52:00 +0000 Manifest this update: Fri 22 Nov 2024 17:51:59 +0000 Manifest next update: Fri 29 Nov 2024 17:51:59 +0000 Files and hashes: 1: 38I-PZBdDoNoEhlZbQgimmlPrxM.crl (hash: j9lDWOgwGRsWZJ21ldRGYkVoVmlFL7l0a6HOqz3UiqM=) 2: 10E6D9CAB55C11ECA9565039C4F9AE02.roa (hash: 6DLxtAbKI0TdBhmj3SbmREK/S1JyCj5OlF8tz2zn8hE=) 3: AB52C51AB96B11ECB44AC533C4F9AE02.roa (hash: BFItKdByLIEkXoft9kFeiVrhIrvjybyyrxXKRRvzUHA=) 4: AC641C88B96B11ECB44AC533C4F9AE02.roa (hash: TrGSIyh6C09xmAUxJKHOBcNW39FMNadQbNfVuEP5YqU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E3D04/7A17FE8EADD911E9B7409A72C4F9AE02/38I-PZBdDoNoEhlZbQgimmlPrxM.crl rsync://rpki.apnic.net/member_repository/A91E3D04/7A17FE8EADD911E9B7409A72C4F9AE02/38I-PZBdDoNoEhlZbQgimmlPrxM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/38I-PZBdDoNoEhlZbQgimmlPrxM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 17:51:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3521 (0xdc1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E3D04/serialNumber=DFC23E3D905D0E83681219596D08229A694FAF13 Validity Not Before: Nov 22 17:51:59 2024 GMT Not After : Nov 29 17:51:59 2024 GMT Subject: CN=6740c4bf-173c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:ae:3a:31:56:7c:61:53:af:07:7b:de:df:41: 7d:90:0c:3d:51:ce:af:e8:36:e4:a9:f4:fb:89:0e: ac:45:14:66:5d:20:53:32:c5:67:b4:89:28:20:e9: c0:b1:b4:66:d8:9b:89:bc:91:db:c2:06:e7:de:4a: b0:32:ac:3a:6e:63:13:35:a9:4b:cf:86:3a:29:79: 6f:a0:b6:55:21:b9:75:8e:b4:16:22:c4:7e:9b:81: e8:e8:85:ac:41:9b:c0:c6:5f:0e:77:ce:94:d3:09: 11:f3:fa:ce:d4:68:ea:55:a7:6c:44:84:51:a4:85: 69:71:c1:43:b3:12:a6:74:94:ad:39:83:85:77:41: 15:1b:58:1c:6f:cc:4f:ca:99:0d:c8:5e:74:d5:0a: 78:85:55:7a:b9:75:78:52:fd:e2:73:dc:8b:a6:b6: 46:c4:9f:70:cb:74:54:38:a3:cc:a5:c8:19:0a:d1: 7e:a2:0f:2a:76:28:e9:e5:0f:21:a3:b5:96:33:a9: 6c:46:f0:c2:5c:a0:0a:16:b6:2a:d6:1c:c6:3d:9c: c4:18:42:5e:cb:9c:eb:58:a8:e5:b9:79:df:7e:cc: 8b:a0:3e:51:63:64:d7:cb:c6:b0:61:42:5f:4e:80: 93:6e:02:c9:2e:6f:a7:84:e3:92:02:34:52:c2:b7: fe:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:0F:7A:8A:65:68:92:B6:2B:A2:DA:20:AB:3D:2A:7C:42:5F:C6:9F X509v3 Authority Key Identifier: keyid:DF:C2:3E:3D:90:5D:0E:83:68:12:19:59:6D:08:22:9A:69:4F:AF:13 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E3D04/7A17FE8EADD911E9B7409A72C4F9AE02/38I-PZBdDoNoEhlZbQgimmlPrxM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/38I-PZBdDoNoEhlZbQgimmlPrxM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E3D04/7A17FE8EADD911E9B7409A72C4F9AE02/38I-PZBdDoNoEhlZbQgimmlPrxM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1c:e6:e7:2f:35:f3:37:a3:15:c3:5f:2a:58:ed:cd:8d:c2:8c: 9e:ee:5c:74:48:f4:d9:d4:c5:c3:81:6c:29:6c:4a:6d:27:36: f3:f1:ae:97:19:44:6b:fc:53:cf:85:c3:86:95:17:de:8c:d6: 7f:09:0b:42:40:55:50:5a:1e:75:d0:6b:b4:3b:e4:97:ff:c9: 42:45:42:af:c2:1a:2f:31:96:b1:7a:b0:2b:32:21:2e:fb:fd: 4f:aa:95:25:cc:8c:ea:6c:37:9f:8d:4a:29:01:92:f5:a2:06: 94:cb:53:a9:b4:7a:30:e7:dd:77:d5:4a:02:74:35:fa:e1:c4: a9:36:a1:4a:1e:7f:d2:86:54:9b:06:e4:9e:f0:f2:3c:a2:9a: 55:ad:6f:79:40:21:15:47:72:c5:4a:dd:c3:9d:14:50:81:25: 6d:00:c1:3b:0a:7e:36:89:18:fc:89:bf:f4:b9:f4:ca:f0:93: 6d:fe:d8:53:59:df:68:d0:73:d9:df:5a:93:72:7e:12:2d:f9: b7:0d:6c:63:4a:c7:25:d9:88:88:a6:31:c5:b2:31:f7:71:3d: 54:56:fe:31:9c:48:77:57:57:fe:4c:ff:a1:db:cb:c2:9d:c9: 30:b3:dc:8e:37:4b:ab:94:68:18:c7:ba:41:1f:d1:e9:f8:a2: 68:81:0f:68 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDcEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTNEMDQxMTAvBgNVBAUTKERGQzIzRTNEOTA1RDBFODM2ODEyMTk1OTZEMDgyMjlB Njk0RkFGMTMwHhcNMjQxMTIyMTc1MTU5WhcNMjQxMTI5MTc1MTU5WjAYMRYwFAYD VQQDEw02NzQwYzRiZi0xNzNjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1646MVZ8YVOvB3ve30F9kAw9Uc6v6DbkqfT7iQ6sRRRmXSBTMsVntIkoIOnA sbRm2JuJvJHbwgbn3kqwMqw6bmMTNalLz4Y6KXlvoLZVIbl1jrQWIsR+m4Ho6IWs QZvAxl8Od86U0wkR8/rO1GjqVadsRIRRpIVpccFDsxKmdJStOYOFd0EVG1gcb8xP ypkNyF501Qp4hVV6uXV4Uv3ic9yLprZGxJ9wy3RUOKPMpcgZCtF+og8qdijp5Q8h o7WWM6lsRvDCXKAKFrYq1hzGPZzEGEJey5zrWKjluXnffsyLoD5RY2TXy8awYUJf ToCTbgLJLm+nhOOSAjRSwrf+8wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNcPeopl aJK2K6LaIKs9KnxCX8afMB8GA1UdIwQYMBaAFN/CPj2QXQ6DaBIZWW0IIpppT68T MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFM0QwNC83QTE3RkU4RUFE RDkxMUU5Qjc0MDlBNzJDNEY5QUUwMi8zOEktUFpCZERvTm9FaGxaYlFnaW1tbFBy eE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzM4SS1QWkJkRG9Ob0VobFpiUWdpbW1sUHJ4TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF M0QwNC83QTE3RkU4RUFERDkxMUU5Qjc0MDlBNzJDNEY5QUUwMi8zOEktUFpCZERv Tm9FaGxaYlFnaW1tbFByeE0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAc5ucvNfM3oxXDXypY7c2Nwoye7lx0SPTZ1MXDgWwpbEptJzbz8a6X GURr/FPPhcOGlRfejNZ/CQtCQFVQWh510Gu0O+SX/8lCRUKvwhovMZaxerArMiEu +/1PqpUlzIzqbDefjUopAZL1ogaUy1OptHow59131UoCdDX64cSpNqFKHn/ShlSb BuSe8PI8oppVrW95QCEVR3LFSt3DnRRQgSVtAME7Cn42iRj8ib/0ufTK8JNt/thT Wd9o0HPZ31qTcn4SLfm3DWxjSscl2YiIpjHFsjH3cT1UVv4xnEh3V1f+TP+h28vC nckws9yON0urlGgYx7pBH9Hp+KJogQ9o -----END CERTIFICATE-----Generated at Fri Nov 22 19:45:04 2024 by rpki-client on console-fra.rpki-client.org