$ rpki-client -vvf rpki.apnic.net/member_repository/A91E46A5/0231C154006B11EA97C1BD5FC4F9AE02/su3iAzROnKc1AcVRQvmugWCeiYc.mft File: su3iAzROnKc1AcVRQvmugWCeiYc.mft (raw, json) Hash identifier: cvu7jzUEeYYc1lsqVYuNbQ1/Nclf6kEwV2uufoH7e6k= Subject key identifier: 18:E9:E5:E9:F3:F0:EF:4A:BF:4A:62:DF:96:9F:11:AE:95:D3:F2:D9 Authority key identifier: B2:ED:E2:03:34:4E:9C:A7:35:01:C5:51:42:F9:AE:81:60:9E:89:87 Certificate issuer: /CN=A91E46A5/serialNumber=B2EDE203344E9CA73501C55142F9AE81609E8987 Certificate serial: 0C0E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/su3iAzROnKc1AcVRQvmugWCeiYc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E46A5/0231C154006B11EA97C1BD5FC4F9AE02/su3iAzROnKc1AcVRQvmugWCeiYc.mft Manifest number: 0C02 Signing time: Fri 22 Nov 2024 18:19:51 +0000 Manifest this update: Fri 22 Nov 2024 18:19:51 +0000 Manifest next update: Fri 29 Nov 2024 18:19:51 +0000 Files and hashes: 1: su3iAzROnKc1AcVRQvmugWCeiYc.crl (hash: xYcoctsGGSMZtcxaCre0DVGDfpesmDpZuEUtMNLW2kU=) 2: CE094B08006B11EAA2719060C4F9AE02.roa (hash: dOJZkUEaHGDxq3KseNGr6t2j+y9rL6m4ZpTIrBzFXZg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E46A5/0231C154006B11EA97C1BD5FC4F9AE02/su3iAzROnKc1AcVRQvmugWCeiYc.crl rsync://rpki.apnic.net/member_repository/A91E46A5/0231C154006B11EA97C1BD5FC4F9AE02/su3iAzROnKc1AcVRQvmugWCeiYc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/su3iAzROnKc1AcVRQvmugWCeiYc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 18:19:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3086 (0xc0e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E46A5/serialNumber=B2EDE203344E9CA73501C55142F9AE81609E8987 Validity Not Before: Nov 22 18:19:51 2024 GMT Not After : Nov 29 18:19:51 2024 GMT Subject: CN=6740cb47-2d66 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:31:72:9a:83:08:eb:09:01:bb:29:7d:3a:82: b4:33:c1:12:c3:1f:32:f8:46:64:8d:8a:0f:14:04: b0:ec:c6:08:46:61:07:5c:9a:24:7f:9e:20:fa:70: c9:9b:e6:72:37:78:90:b5:b1:ad:af:9c:3d:2f:74: fa:cc:4b:df:26:72:e8:b3:e8:77:13:d2:69:e3:0a: 1f:89:07:f5:63:e1:30:16:61:52:05:a3:6e:05:d4: fc:d7:bb:bb:17:5b:2b:b6:47:9a:39:8b:7a:53:b7: d4:86:3b:ef:1c:b3:3a:4f:c4:5e:28:4d:3c:1d:6f: 51:75:66:25:07:01:f6:fe:58:60:2e:41:af:b1:12: 9c:de:fe:06:9c:70:22:10:b4:87:99:c6:18:18:a1: 3f:78:8e:a7:a8:28:a1:10:a9:b8:36:83:4b:76:f1: d5:08:3e:3d:82:e4:a4:bf:1a:f6:69:f6:34:f1:0e: 9e:4f:48:33:d8:43:30:a5:d6:23:3b:68:0c:34:e2: 7b:1f:93:e5:06:3d:80:ee:ef:0f:e7:c8:94:2f:cd: 31:b6:b6:15:fd:1c:2f:30:89:ad:f1:47:60:12:69: b0:07:00:83:7c:cc:5a:e0:a8:e7:b0:f2:08:ae:f0: 7a:b4:9e:43:7d:ea:68:a7:cf:26:f5:d8:e8:fa:ec: 6c:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:E9:E5:E9:F3:F0:EF:4A:BF:4A:62:DF:96:9F:11:AE:95:D3:F2:D9 X509v3 Authority Key Identifier: keyid:B2:ED:E2:03:34:4E:9C:A7:35:01:C5:51:42:F9:AE:81:60:9E:89:87 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E46A5/0231C154006B11EA97C1BD5FC4F9AE02/su3iAzROnKc1AcVRQvmugWCeiYc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/su3iAzROnKc1AcVRQvmugWCeiYc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E46A5/0231C154006B11EA97C1BD5FC4F9AE02/su3iAzROnKc1AcVRQvmugWCeiYc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 47:86:a9:9b:e2:27:29:b1:f9:55:a8:7d:15:91:90:f8:2d:c0: 09:97:46:02:cc:05:1d:41:71:e1:52:bd:2b:db:3f:ea:ba:06: 82:1a:9e:40:15:2e:f3:b1:36:60:0a:41:2f:de:09:eb:ab:17: 8e:e5:8e:69:f4:43:a4:66:7f:8b:7f:24:fb:18:e3:d2:1c:07: 1a:25:46:23:84:57:d6:73:e8:eb:cd:af:34:0d:ad:9f:27:8f: e7:99:89:4d:c3:20:48:03:7a:7f:f8:61:a0:c3:f2:15:68:4b: 79:4c:f0:1a:00:ec:7b:6f:37:3b:4e:e8:85:29:92:33:f4:09: e9:05:68:a3:6d:c8:ce:18:c0:fa:0e:dd:30:93:9b:7e:5c:70: a0:ba:a2:24:32:ca:f0:df:67:13:65:15:12:5a:eb:24:89:12: 8c:c3:c2:d4:c6:ae:e5:5f:0e:e7:7a:0e:9d:76:34:3c:b9:7b: bb:5d:d9:0e:b6:82:c2:e1:31:0d:b4:5c:40:d1:93:3c:00:db: 16:59:88:83:05:0f:1f:37:d8:6c:28:da:fb:2d:7f:47:07:92: e4:8a:f2:40:01:6f:e4:a2:1f:45:1d:e5:fe:b7:ab:dd:64:95: 7c:4c:0a:8b:5b:eb:09:6e:8d:ff:b0:2a:ea:09:31:ab:bb:90: 54:cb:4d:1f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDA4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTQ2QTUxMTAvBgNVBAUTKEIyRURFMjAzMzQ0RTlDQTczNTAxQzU1MTQyRjlBRTgx NjA5RTg5ODcwHhcNMjQxMTIyMTgxOTUxWhcNMjQxMTI5MTgxOTUxWjAYMRYwFAYD VQQDEw02NzQwY2I0Ny0yZDY2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuTFymoMI6wkBuyl9OoK0M8ESwx8y+EZkjYoPFASw7MYIRmEHXJokf54g+nDJ m+ZyN3iQtbGtr5w9L3T6zEvfJnLos+h3E9Jp4wofiQf1Y+EwFmFSBaNuBdT817u7 F1srtkeaOYt6U7fUhjvvHLM6T8ReKE08HW9RdWYlBwH2/lhgLkGvsRKc3v4GnHAi ELSHmcYYGKE/eI6nqCihEKm4NoNLdvHVCD49guSkvxr2afY08Q6eT0gz2EMwpdYj O2gMNOJ7H5PlBj2A7u8P58iUL80xtrYV/RwvMImt8UdgEmmwBwCDfMxa4KjnsPII rvB6tJ5Dfepop88m9djo+uxsUQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBjp5enz 8O9Kv0pi35afEa6V0/LZMB8GA1UdIwQYMBaAFLLt4gM0TpynNQHFUUL5roFgnomH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNDZBNS8wMjMxQzE1NDAw NkIxMUVBOTdDMUJENUZDNEY5QUUwMi9zdTNpQXpST25LYzFBY1ZSUXZtdWdXQ2Vp WWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3N1M2lBelJPbktjMUFjVlJRdm11Z1dDZWlZYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NDZBNS8wMjMxQzE1NDAwNkIxMUVBOTdDMUJENUZDNEY5QUUwMi9zdTNpQXpST25L YzFBY1ZSUXZtdWdXQ2VpWWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBHhqmb4icpsflVqH0VkZD4LcAJl0YCzAUdQXHhUr0r2z/qugaCGp5A FS7zsTZgCkEv3gnrqxeO5Y5p9EOkZn+LfyT7GOPSHAcaJUYjhFfWc+jrza80Da2f J4/nmYlNwyBIA3p/+GGgw/IVaEt5TPAaAOx7bzc7TuiFKZIz9AnpBWijbcjOGMD6 Dt0wk5t+XHCguqIkMsrw32cTZRUSWuskiRKMw8LUxq7lXw7neg6ddjQ8uXu7XdkO toLC4TENtFxA0ZM8ANsWWYiDBQ8fN9hsKNr7LX9HB5LkivJAAW/koh9FHeX+t6vd ZJV8TAqLW+sJbo3/sCrqCTGru5BUy00f -----END CERTIFICATE-----Generated at Fri Nov 22 19:50:19 2024 by rpki-client on console-ams.rpki-client.org