$ rpki-client -vvf rpki.apnic.net/member_repository/A91E8458/F8AF1202F61511EA8377006CC4F9AE02/3W8BT4rUXahdDhbys3aHZ5REhbM.mft File: 3W8BT4rUXahdDhbys3aHZ5REhbM.mft (raw, json) Hash identifier: GAdpCGQEhvBnprczrjvuxk6N3Nxdu/u1cyJeahcLTFg= Subject key identifier: 97:14:B7:8F:08:8D:52:F2:06:B2:50:18:FC:4E:C7:F9:E0:E2:A0:E0 Authority key identifier: DD:6F:01:4F:8A:D4:5D:A8:5D:0E:16:F2:B3:76:87:67:94:44:85:B3 Certificate issuer: /CN=A91E8458/serialNumber=DD6F014F8AD45DA85D0E16F2B3768767944485B3 Certificate serial: 076E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3W8BT4rUXahdDhbys3aHZ5REhbM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E8458/F8AF1202F61511EA8377006CC4F9AE02/3W8BT4rUXahdDhbys3aHZ5REhbM.mft Manifest number: 0768 Signing time: Fri 22 Nov 2024 20:59:38 +0000 Manifest this update: Fri 22 Nov 2024 20:59:38 +0000 Manifest next update: Fri 29 Nov 2024 20:59:38 +0000 Files and hashes: 1: 3W8BT4rUXahdDhbys3aHZ5REhbM.crl (hash: AomShIKoKl3TgNJt8aCIYJKRexO2gpx8pIvgy5mLCj8=) 2: FAE7339CF7B911EA91318653C4F9AE02.roa (hash: AWPlkT/VPOlTrND3SaqX87pYECk2GQcIiP0u70mzoFk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E8458/F8AF1202F61511EA8377006CC4F9AE02/3W8BT4rUXahdDhbys3aHZ5REhbM.crl rsync://rpki.apnic.net/member_repository/A91E8458/F8AF1202F61511EA8377006CC4F9AE02/3W8BT4rUXahdDhbys3aHZ5REhbM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3W8BT4rUXahdDhbys3aHZ5REhbM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1902 (0x76e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E8458/serialNumber=DD6F014F8AD45DA85D0E16F2B3768767944485B3 Validity Not Before: Nov 22 20:59:38 2024 GMT Not After : Nov 29 20:59:38 2024 GMT Subject: CN=6740f0ba-5564 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:30:90:22:07:9a:cd:af:b5:d5:85:d2:f1:37: de:65:51:9a:d6:d6:78:50:a2:32:97:2a:1d:8a:af: 55:14:ee:a5:ce:59:14:45:0b:39:b5:94:68:b4:7e: e4:b1:51:3d:25:77:44:a1:de:af:dc:18:7c:5a:d5: 1f:72:39:0b:63:87:f3:37:1c:c2:a9:e5:6b:8b:ea: 7c:c3:e2:ca:52:c3:c2:30:82:48:77:55:78:64:20: 16:dd:78:21:e9:a2:16:bd:11:d1:2c:54:9c:38:23: e9:f8:cf:4a:a8:43:e9:a1:fb:f7:59:6a:37:9c:32: 0d:97:e2:45:17:81:0c:0e:4c:3c:56:06:52:2a:7f: 1a:03:84:1f:68:76:a6:1b:fe:80:21:04:4b:c9:e4: d8:9a:cd:b8:d5:44:27:f2:9e:ee:95:7a:55:05:c9: fa:91:9b:f1:05:2b:54:a3:44:c8:0b:75:5e:95:f3: 86:ef:c6:95:c1:1b:e5:fc:c7:92:06:76:7e:b1:5c: 76:1e:db:58:75:4d:62:2a:2b:3c:14:97:06:1b:9e: ba:9f:c6:c5:5a:6c:1a:9a:ea:a0:e5:b1:72:bc:56: c5:e3:5e:7a:4e:90:6c:3d:a9:48:18:5b:04:03:4c: 19:fc:f9:84:64:a6:0b:c3:ef:3e:94:44:a1:a6:7a: 95:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:14:B7:8F:08:8D:52:F2:06:B2:50:18:FC:4E:C7:F9:E0:E2:A0:E0 X509v3 Authority Key Identifier: keyid:DD:6F:01:4F:8A:D4:5D:A8:5D:0E:16:F2:B3:76:87:67:94:44:85:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E8458/F8AF1202F61511EA8377006CC4F9AE02/3W8BT4rUXahdDhbys3aHZ5REhbM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3W8BT4rUXahdDhbys3aHZ5REhbM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E8458/F8AF1202F61511EA8377006CC4F9AE02/3W8BT4rUXahdDhbys3aHZ5REhbM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a7:cf:02:03:53:40:8a:cc:ba:37:b8:a9:11:f6:21:d3:b9:8b: 67:06:fe:28:bf:ce:7c:d5:a3:ab:08:26:28:25:42:d4:a5:76: d5:5b:0b:ec:3e:ea:3d:de:e0:fe:51:7e:5f:9e:4f:03:ef:ca: 4c:1d:d1:a9:fb:db:57:dc:8b:92:bc:f8:96:6d:e3:b4:28:fc: 98:2c:65:d9:b3:1c:d1:2d:94:9d:15:65:34:51:c2:2c:25:6a: b7:99:d3:41:ef:b5:69:cf:e5:0c:39:92:31:0c:b7:9c:44:c9: 4b:30:53:bb:82:c8:8f:c7:f4:28:8c:de:13:93:df:32:5c:65: 3c:04:cd:f0:b9:d6:2d:11:de:ea:f9:f0:e1:e3:79:35:e2:b0: 52:ec:04:0d:9a:55:c6:53:94:4a:02:85:3d:0d:2f:f8:c6:57: 46:24:02:42:95:f2:b6:af:ee:df:c3:17:10:44:35:ba:86:39: 68:2d:23:a8:12:e9:2f:3f:8c:b6:fe:e2:58:33:d9:43:71:2d: 2c:4f:db:76:bf:15:2c:9d:12:dc:e1:d5:3a:40:a6:15:9c:27: 24:76:7c:75:56:e6:4e:18:01:92:7c:dd:6f:09:a3:b7:d4:3f: a5:2c:7a:67:c1:a0:6a:d7:85:a4:bc:e7:0e:ee:dc:5f:82:91: 90:86:8a:d4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB24wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTg0NTgxMTAvBgNVBAUTKERENkYwMTRGOEFENDVEQTg1RDBFMTZGMkIzNzY4NzY3 OTQ0NDg1QjMwHhcNMjQxMTIyMjA1OTM4WhcNMjQxMTI5MjA1OTM4WjAYMRYwFAYD VQQDEw02NzQwZjBiYS01NTY0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyTCQIgeaza+11YXS8TfeZVGa1tZ4UKIylyodiq9VFO6lzlkURQs5tZRotH7k sVE9JXdEod6v3Bh8WtUfcjkLY4fzNxzCqeVri+p8w+LKUsPCMIJId1V4ZCAW3Xgh 6aIWvRHRLFScOCPp+M9KqEPpofv3WWo3nDINl+JFF4EMDkw8VgZSKn8aA4QfaHam G/6AIQRLyeTYms241UQn8p7ulXpVBcn6kZvxBStUo0TIC3VelfOG78aVwRvl/MeS BnZ+sVx2HttYdU1iKis8FJcGG566n8bFWmwamuqg5bFyvFbF4156TpBsPalIGFsE A0wZ/PmEZKYLw+8+lEShpnqVeQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJcUt48I jVLyBrJQGPxOx/ng4qDgMB8GA1UdIwQYMBaAFN1vAU+K1F2oXQ4W8rN2h2eURIWz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFODQ1OC9GOEFGMTIwMkY2 MTUxMUVBODM3NzAwNkNDNEY5QUUwMi8zVzhCVDRyVVhhaGREaGJ5czNhSFo1UkVo Yk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNXOEJUNHJVWGFoZERoYnlzM2FIWjVSRWhiTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF ODQ1OC9GOEFGMTIwMkY2MTUxMUVBODM3NzAwNkNDNEY5QUUwMi8zVzhCVDRyVVhh aGREaGJ5czNhSFo1UkVoYk0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCnzwIDU0CKzLo3uKkR9iHTuYtnBv4ov8581aOrCCYoJULUpXbVWwvs Puo93uD+UX5fnk8D78pMHdGp+9tX3IuSvPiWbeO0KPyYLGXZsxzRLZSdFWU0UcIs JWq3mdNB77Vpz+UMOZIxDLecRMlLMFO7gsiPx/QojN4Tk98yXGU8BM3wudYtEd7q +fDh43k14rBS7AQNmlXGU5RKAoU9DS/4xldGJAJClfK2r+7fwxcQRDW6hjloLSOo EukvP4y2/uJYM9lDcS0sT9t2vxUsnRLc4dU6QKYVnCckdnx1VuZOGAGSfN1vCaO3 1D+lLHpnwaBq14WkvOcO7txfgpGQhorU -----END CERTIFICATE-----Generated at Fri Nov 22 22:24:14 2024 by rpki-client on console-fra.rpki-client.org