$ rpki-client -vvf rpki.apnic.net/member_repository/A911035A/3C609B447C6611EA8089F351C4F9AE02/3GIgCKihrUK-KiVJQ0ka-qhFSaU.mft File: 3GIgCKihrUK-KiVJQ0ka-qhFSaU.mft (raw, json) Hash identifier: Dq3Ika8E3NBMhQCBfwj+m27M2+h8XUZA+DHktFtvRUk= Subject key identifier: EC:5F:65:C2:3E:EA:5E:D0:2F:CA:9D:E8:AA:A9:E1:53:D5:8B:FF:FC Authority key identifier: DC:62:20:08:A8:A1:AD:42:BE:2A:25:49:43:49:1A:FA:A8:45:49:A5 Certificate issuer: /CN=A911035A/serialNumber=DC622008A8A1AD42BE2A254943491AFAA84549A5 Certificate serial: 0994 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3GIgCKihrUK-KiVJQ0ka-qhFSaU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911035A/3C609B447C6611EA8089F351C4F9AE02/3GIgCKihrUK-KiVJQ0ka-qhFSaU.mft Manifest number: 0987 Signing time: Fri 22 Nov 2024 19:52:20 +0000 Manifest this update: Fri 22 Nov 2024 19:52:19 +0000 Manifest next update: Fri 29 Nov 2024 19:52:19 +0000 Files and hashes: 1: 3GIgCKihrUK-KiVJQ0ka-qhFSaU.crl (hash: ZniotHrVVd+upt7mCl8bd3cik3Kaql+EvqkrCiYpsjM=) 2: 5B57754A026F11EDBE22EF64C4F9AE02.roa (hash: 8mDSez92eEkaglLsJMbn0fbrJK3EOKwOEODNJChdaCg=) 3: 5A472FBA026F11EDBE22EF64C4F9AE02.roa (hash: NFs1EDcO1yAz73VGI456tOjnaAawML/lh68ilrawz+Y=) 4: C1B3DE082BBE11EF809E1831C4F9AE02.roa (hash: tW1tMolm5x3GeEA1HyFZqPW/WUluhI939ppCe/JxxEw=) 5: E1935B7A36DD11EFB1E53717C4F9AE02.roa (hash: YrfvW4rspoah4qHdMhFX6/ILs8ePWmGD5xqevIlkW/s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911035A/3C609B447C6611EA8089F351C4F9AE02/3GIgCKihrUK-KiVJQ0ka-qhFSaU.crl rsync://rpki.apnic.net/member_repository/A911035A/3C609B447C6611EA8089F351C4F9AE02/3GIgCKihrUK-KiVJQ0ka-qhFSaU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3GIgCKihrUK-KiVJQ0ka-qhFSaU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 19:52:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2452 (0x994) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911035A/serialNumber=DC622008A8A1AD42BE2A254943491AFAA84549A5 Validity Not Before: Nov 22 19:52:19 2024 GMT Not After : Nov 29 19:52:19 2024 GMT Subject: CN=6740e0f4-c045 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:0b:53:6d:76:94:4d:ed:38:68:41:7a:76:bf: 8f:63:72:e3:d7:1a:41:aa:38:f8:5c:2a:23:10:4f: c7:bb:63:80:3d:eb:55:88:68:e3:14:ec:a2:87:c4: 87:cb:11:49:83:08:3b:81:4e:a0:44:da:ca:7c:d4: 4d:8f:9d:a5:bc:2c:65:e0:94:a1:cb:0b:4d:c0:29: dd:a7:8f:28:34:65:c9:75:fe:55:08:f7:1c:61:be: 2d:71:85:ac:19:d0:ff:1f:20:50:6d:71:34:5c:1b: 02:56:c6:d7:b8:aa:79:0c:31:f0:c7:87:5a:15:d8: f2:5a:7f:a0:a6:14:d2:8b:b1:f5:ae:9f:47:31:27: 03:d8:85:7b:79:dc:e6:c6:81:9e:58:12:bb:71:27: 7b:a4:ec:9f:74:3d:57:6d:53:ef:9a:6a:e1:f2:d4: e0:ea:99:ec:06:52:9f:32:cb:01:12:57:ee:57:2e: d8:4f:75:e2:4a:11:b3:a6:67:6d:91:5e:85:2d:63: 18:77:30:0d:a8:34:3e:1e:dc:17:96:14:5a:97:c2: a9:85:a5:d7:b2:1c:bf:2d:99:ee:f5:5c:7c:9f:32: 01:fa:84:70:88:f0:a0:e5:ff:1d:6e:81:3d:31:30: 24:ef:94:94:96:d6:70:3a:80:27:7e:74:c4:32:79: 80:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EC:5F:65:C2:3E:EA:5E:D0:2F:CA:9D:E8:AA:A9:E1:53:D5:8B:FF:FC X509v3 Authority Key Identifier: keyid:DC:62:20:08:A8:A1:AD:42:BE:2A:25:49:43:49:1A:FA:A8:45:49:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911035A/3C609B447C6611EA8089F351C4F9AE02/3GIgCKihrUK-KiVJQ0ka-qhFSaU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3GIgCKihrUK-KiVJQ0ka-qhFSaU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911035A/3C609B447C6611EA8089F351C4F9AE02/3GIgCKihrUK-KiVJQ0ka-qhFSaU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 22:f1:98:4e:1b:74:3c:9a:eb:a1:a4:ef:7a:93:df:a7:5d:bb: f4:96:73:31:8f:5d:91:60:f1:c3:96:19:80:9e:74:b1:db:77: a9:9d:e0:ed:23:36:50:e3:e9:19:42:70:4e:5e:f1:f4:5c:05: ab:de:8a:9b:ff:89:70:e1:7c:ad:fa:1e:dc:2a:d2:8c:a5:b4: 43:a8:de:27:a5:7f:41:f5:37:18:d1:f9:42:93:a4:ce:5c:d3: f6:b4:5e:ce:85:fc:87:32:35:8e:2b:01:27:85:ce:1a:70:f3: fa:66:1f:d0:d4:e6:04:19:5e:80:a8:e4:6b:c3:9d:67:de:3a: f5:e0:b4:cb:9b:47:61:08:16:ca:69:df:b6:5e:b6:11:58:3a: 78:89:1b:ce:bb:05:3d:aa:b4:f9:27:9e:a3:77:1d:13:38:a6: eb:a4:7d:11:52:66:5a:a1:67:ab:70:f2:68:7d:6b:4a:e7:45: 25:7a:f1:64:04:3b:04:c1:f1:74:57:99:51:c0:3b:ae:7d:c1: 30:0e:90:a2:21:5b:30:9d:44:ee:eb:a4:5b:fc:45:7d:ec:30: 4b:7a:a3:bf:55:47:e0:10:97:80:d0:57:11:74:cd:59:23:36: 17:f7:55:94:f3:0a:51:75:b1:7d:70:9a:20:b3:48:04:33:f1: 62:f3:43:15 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCZQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTAzNUExMTAvBgNVBAUTKERDNjIyMDA4QThBMUFENDJCRTJBMjU0OTQzNDkxQUZB QTg0NTQ5QTUwHhcNMjQxMTIyMTk1MjE5WhcNMjQxMTI5MTk1MjE5WjAYMRYwFAYD VQQDEw02NzQwZTBmNC1jMDQ1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5QtTbXaUTe04aEF6dr+PY3Lj1xpBqjj4XCojEE/Hu2OAPetViGjjFOyih8SH yxFJgwg7gU6gRNrKfNRNj52lvCxl4JShywtNwCndp48oNGXJdf5VCPccYb4tcYWs GdD/HyBQbXE0XBsCVsbXuKp5DDHwx4daFdjyWn+gphTSi7H1rp9HMScD2IV7edzm xoGeWBK7cSd7pOyfdD1XbVPvmmrh8tTg6pnsBlKfMssBElfuVy7YT3XiShGzpmdt kV6FLWMYdzANqDQ+HtwXlhRal8KphaXXshy/LZnu9Vx8nzIB+oRwiPCg5f8dboE9 MTAk75SUltZwOoAnfnTEMnmADQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOxfZcI+ 6l7QL8qd6Kqp4VPVi//8MB8GA1UdIwQYMBaAFNxiIAiooa1CviolSUNJGvqoRUml MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMDM1QS8zQzYwOUI0NDdD NjYxMUVBODA4OUYzNTFDNEY5QUUwMi8zR0lnQ0tpaHJVSy1LaVZKUTBrYS1xaEZT YVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNHSWdDS2loclVLLUtpVkpRMGthLXFoRlNhVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MDM1QS8zQzYwOUI0NDdDNjYxMUVBODA4OUYzNTFDNEY5QUUwMi8zR0lnQ0tpaHJV Sy1LaVZKUTBrYS1xaEZTYVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAi8ZhOG3Q8muuhpO96k9+nXbv0lnMxj12RYPHDlhmAnnSx23epneDt IzZQ4+kZQnBOXvH0XAWr3oqb/4lw4Xyt+h7cKtKMpbRDqN4npX9B9TcY0flCk6TO XNP2tF7OhfyHMjWOKwEnhc4acPP6Zh/Q1OYEGV6AqORrw51n3jr14LTLm0dhCBbK ad+2XrYRWDp4iRvOuwU9qrT5J56jdx0TOKbrpH0RUmZaoWercPJofWtK50UlevFk BDsEwfF0V5lRwDuufcEwDpCiIVswnUTu66Rb/EV97DBLeqO/VUfgEJeA0FcRdM1Z IzYX91WU8wpRdbF9cJogs0gEM/Fi80MV -----END CERTIFICATE-----Generated at Fri Nov 22 21:05:25 2024 by rpki-client on console-fra.rpki-client.org