$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6BEF/4EA866C4C44211E99477E21FC4F9AE02/gR3hHn7cHBB2BVnus5v9Ztaa6kY.mft File: gR3hHn7cHBB2BVnus5v9Ztaa6kY.mft (raw, json) Hash identifier: Oju53R5P5jc8AQXvpPOgvKDiA2MJaT42VncLs6guOtY= Subject key identifier: 51:0B:83:95:DC:F8:06:D8:C5:4F:A5:1E:93:4B:DE:57:48:34:19:3E Authority key identifier: 81:1D:E1:1E:7E:DC:1C:10:76:05:59:EE:B3:9B:FD:66:D6:9A:EA:46 Certificate issuer: /CN=A91E6BEF/serialNumber=811DE11E7EDC1C10760559EEB39BFD66D69AEA46 Certificate serial: 0D37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gR3hHn7cHBB2BVnus5v9Ztaa6kY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E6BEF/4EA866C4C44211E99477E21FC4F9AE02/gR3hHn7cHBB2BVnus5v9Ztaa6kY.mft Manifest number: 0D2E Signing time: Fri 22 Nov 2024 17:57:28 +0000 Manifest this update: Fri 22 Nov 2024 17:57:28 +0000 Manifest next update: Fri 29 Nov 2024 17:57:28 +0000 Files and hashes: 1: gR3hHn7cHBB2BVnus5v9Ztaa6kY.crl (hash: G5Pnlu1KTGHwS9dVi84UumigWQhRhJ6QqroNDBNiO/I=) 2: FEBD6C62C4B511E9B7D53A7FC4F9AE02.roa (hash: UdehkLAzVXoFe5wUis48zru/UMqEMsZcDt54OS7NI9c=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E6BEF/4EA866C4C44211E99477E21FC4F9AE02/gR3hHn7cHBB2BVnus5v9Ztaa6kY.crl rsync://rpki.apnic.net/member_repository/A91E6BEF/4EA866C4C44211E99477E21FC4F9AE02/gR3hHn7cHBB2BVnus5v9Ztaa6kY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gR3hHn7cHBB2BVnus5v9Ztaa6kY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 17:57:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3383 (0xd37) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E6BEF/serialNumber=811DE11E7EDC1C10760559EEB39BFD66D69AEA46 Validity Not Before: Nov 22 17:57:28 2024 GMT Not After : Nov 29 17:57:28 2024 GMT Subject: CN=6740c608-da80 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:c8:9a:ef:7c:82:6a:c9:f3:2a:4b:d4:a6:a0: d4:7b:79:bd:75:02:7f:15:38:ed:a8:9b:4d:71:f4: 0c:48:45:02:63:06:91:03:58:6b:f0:03:75:46:fc: d2:d2:f2:fb:f2:b5:80:5e:34:2f:2b:af:7e:32:4a: 07:c1:8e:9e:21:ff:b0:72:b9:36:15:03:d0:2c:ba: c1:18:79:70:6e:09:e9:a6:7e:4e:33:b5:4d:de:a4: 25:92:97:58:d2:8b:68:14:dd:49:0f:2e:7d:14:e5: 07:d7:25:90:9d:bd:39:61:dd:8f:ba:e1:e9:3f:77: 19:81:41:81:7f:24:ee:24:16:a5:47:6c:d9:d9:c3: ff:06:ae:83:8b:e5:27:16:f2:55:33:1a:93:b9:4c: 05:ae:a5:ce:40:b2:fb:05:40:83:96:06:49:70:d0: de:5e:d6:62:8f:ee:fb:c4:39:b8:07:c0:9c:73:c2: 1e:23:fd:04:6a:21:34:34:ba:e7:f4:84:19:2f:ac: 6e:63:d4:d0:70:0d:b9:4e:10:d3:33:47:2d:5f:a6: 5d:78:2b:b8:b0:65:d9:95:0c:11:2a:a7:f6:82:ab: 7e:1a:87:d5:73:15:15:d5:8e:20:1c:14:3e:8d:c3: 6e:58:e4:50:20:9c:97:bb:e0:ff:42:e8:33:f2:45: d0:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:0B:83:95:DC:F8:06:D8:C5:4F:A5:1E:93:4B:DE:57:48:34:19:3E X509v3 Authority Key Identifier: keyid:81:1D:E1:1E:7E:DC:1C:10:76:05:59:EE:B3:9B:FD:66:D6:9A:EA:46 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E6BEF/4EA866C4C44211E99477E21FC4F9AE02/gR3hHn7cHBB2BVnus5v9Ztaa6kY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gR3hHn7cHBB2BVnus5v9Ztaa6kY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6BEF/4EA866C4C44211E99477E21FC4F9AE02/gR3hHn7cHBB2BVnus5v9Ztaa6kY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5a:3a:d1:e9:c5:40:2b:7a:00:76:c8:9f:da:2e:a3:74:12:99: 3d:6f:b3:8b:98:b1:68:75:a2:11:47:ce:2f:16:bd:90:fa:50: b7:ba:9d:9a:9e:fd:3a:a4:56:a6:0e:08:cf:4c:24:7e:81:fc: c4:14:72:8c:b6:d7:5d:50:58:4a:3d:64:32:84:58:58:0c:93: fc:0c:94:73:6f:63:f9:99:60:54:8f:4a:01:d6:37:88:5f:04: f6:4f:ba:1b:12:22:cb:49:73:04:d9:73:30:c1:25:79:4d:d5: 04:46:0a:b2:d8:9d:4a:96:4e:b0:4b:96:79:29:25:34:44:de: 6b:4a:73:65:a0:86:a9:0d:62:70:7d:a5:fe:d3:f4:9c:9c:13: 21:b1:96:db:1b:1c:ed:a7:c2:3e:d9:f0:0b:34:8d:27:59:fc: 71:3a:50:7c:30:1e:3f:b9:2e:18:67:08:27:85:d3:77:42:a1: 7c:74:7f:ea:44:ff:9f:f2:a3:d3:c2:04:a9:29:e0:cc:28:90: 59:60:38:f3:e7:bd:17:b5:a3:4a:61:2d:9d:14:69:2c:d9:ec: a9:98:82:c7:f6:77:8f:1a:54:98:89:62:07:27:72:fd:57:93: 49:5a:95:e3:ad:d1:dc:7b:3c:ac:d1:c0:29:ad:5b:54:e9:4d: 75:2f:e3:29 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDTcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTZCRUYxMTAvBgNVBAUTKDgxMURFMTFFN0VEQzFDMTA3NjA1NTlFRUIzOUJGRDY2 RDY5QUVBNDYwHhcNMjQxMTIyMTc1NzI4WhcNMjQxMTI5MTc1NzI4WjAYMRYwFAYD VQQDEw02NzQwYzYwOC1kYTgwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAp8ia73yCasnzKkvUpqDUe3m9dQJ/FTjtqJtNcfQMSEUCYwaRA1hr8AN1RvzS 0vL78rWAXjQvK69+MkoHwY6eIf+wcrk2FQPQLLrBGHlwbgnppn5OM7VN3qQlkpdY 0otoFN1JDy59FOUH1yWQnb05Yd2PuuHpP3cZgUGBfyTuJBalR2zZ2cP/Bq6Di+Un FvJVMxqTuUwFrqXOQLL7BUCDlgZJcNDeXtZij+77xDm4B8Ccc8IeI/0EaiE0NLrn 9IQZL6xuY9TQcA25ThDTM0ctX6ZdeCu4sGXZlQwRKqf2gqt+GofVcxUV1Y4gHBQ+ jcNuWORQIJyXu+D/Qugz8kXQOQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFELg5Xc +AbYxU+lHpNL3ldINBk+MB8GA1UdIwQYMBaAFIEd4R5+3BwQdgVZ7rOb/WbWmupG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNkJFRi80RUE4NjZDNEM0 NDIxMUU5OTQ3N0UyMUZDNEY5QUUwMi9nUjNoSG43Y0hCQjJCVm51czV2OVp0YWE2 a1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dSM2hIbjdjSEJCMkJWbnVzNXY5WnRhYTZrWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NkJFRi80RUE4NjZDNEM0NDIxMUU5OTQ3N0UyMUZDNEY5QUUwMi9nUjNoSG43Y0hC QjJCVm51czV2OVp0YWE2a1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBaOtHpxUAregB2yJ/aLqN0Epk9b7OLmLFodaIRR84vFr2Q+lC3up2a nv06pFamDgjPTCR+gfzEFHKMttddUFhKPWQyhFhYDJP8DJRzb2P5mWBUj0oB1jeI XwT2T7obEiLLSXME2XMwwSV5TdUERgqy2J1Klk6wS5Z5KSU0RN5rSnNloIapDWJw faX+0/ScnBMhsZbbGxztp8I+2fALNI0nWfxxOlB8MB4/uS4YZwgnhdN3QqF8dH/q RP+f8qPTwgSpKeDMKJBZYDjz570XtaNKYS2dFGks2eypmILH9nePGlSYiWIHJ3L9 V5NJWpXjrdHcezys0cAprVtU6U11L+Mp -----END CERTIFICATE-----Generated at Fri Nov 22 19:50:21 2024 by rpki-client on console-ams.rpki-client.org