$ rpki-client -vvf rpki.apnic.net/member_repository/A91104BD/4373D50C384311EAA6192E53C4F9AE02/pi3nVqmxabvP97VW1DMAlV1A4yA.mft File: pi3nVqmxabvP97VW1DMAlV1A4yA.mft (raw, json) Hash identifier: fNnVwLMGAoMTy1mjfKuIs5LwvTVa6CzaRzjQ8FciVKw= Subject key identifier: EB:9D:54:A0:51:99:E6:AE:73:EE:B8:C0:DC:D0:A7:D7:99:24:17:E5 Authority key identifier: A6:2D:E7:56:A9:B1:69:BB:CF:F7:B5:56:D4:33:00:95:5D:40:E3:20 Certificate issuer: /CN=A91104BD/serialNumber=A62DE756A9B169BBCFF7B556D43300955D40E320 Certificate serial: 0ADF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pi3nVqmxabvP97VW1DMAlV1A4yA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91104BD/4373D50C384311EAA6192E53C4F9AE02/pi3nVqmxabvP97VW1DMAlV1A4yA.mft Manifest number: 0AD9 Signing time: Fri 22 Nov 2024 19:07:31 +0000 Manifest this update: Fri 22 Nov 2024 19:07:31 +0000 Manifest next update: Fri 29 Nov 2024 19:07:31 +0000 Files and hashes: 1: pi3nVqmxabvP97VW1DMAlV1A4yA.crl (hash: /Dp0RbYGNsSUeBUdjZ/Joakd+yG6shjX0bI0i4nwdGM=) 2: D326CC30384411EA9D540B58C4F9AE02.roa (hash: 4J+4foQcx/WgvPgxSrTkNKwcOyMcaMXru+FJKfj6p4Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91104BD/4373D50C384311EAA6192E53C4F9AE02/pi3nVqmxabvP97VW1DMAlV1A4yA.crl rsync://rpki.apnic.net/member_repository/A91104BD/4373D50C384311EAA6192E53C4F9AE02/pi3nVqmxabvP97VW1DMAlV1A4yA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pi3nVqmxabvP97VW1DMAlV1A4yA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 19:07:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2783 (0xadf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91104BD/serialNumber=A62DE756A9B169BBCFF7B556D43300955D40E320 Validity Not Before: Nov 22 19:07:31 2024 GMT Not After : Nov 29 19:07:31 2024 GMT Subject: CN=6740d673-bbb9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:93:3b:e7:5b:a8:50:b6:ad:2d:77:a6:12:b4: 5b:49:78:98:bb:87:3c:27:93:de:35:4e:8b:a9:51: 60:5e:10:ac:d2:ca:4d:ed:8a:8c:46:71:4f:e0:cc: ef:f2:7f:8d:01:91:42:ac:1a:31:26:b4:3c:de:1a: 08:54:19:ad:d2:21:50:b3:65:a7:b2:d6:07:96:ac: 3c:dd:1b:cc:2e:9e:08:81:a5:30:5e:32:6b:00:22: e0:85:14:25:e7:e4:bf:4c:b4:fe:9c:ff:b2:fd:fe: 6e:21:f6:c6:0d:a9:a1:d3:7a:0b:aa:2e:d0:57:0b: 1e:e1:f3:a1:a7:bf:ce:cc:70:49:f1:99:38:c1:d6: 80:d8:47:f9:7c:0d:0b:17:b8:f6:2c:43:99:85:71: 29:a1:57:b1:52:ab:31:e4:85:bc:92:89:29:c2:73: 97:de:21:4a:75:33:b6:71:3f:0d:f1:41:3f:a5:8b: ee:27:51:f5:ea:5a:7a:9e:5e:f7:63:c5:77:b7:ca: b3:1d:a8:11:57:d8:0e:8e:15:4f:c8:bf:89:98:e1: 8a:cf:c1:c8:0a:31:59:06:b0:43:8a:bc:2d:2b:44: 0f:4b:81:82:a7:6b:ac:9d:64:96:24:6a:97:ee:af: b7:17:44:2f:61:7d:3d:b0:18:29:8f:60:50:3b:58: 45:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:9D:54:A0:51:99:E6:AE:73:EE:B8:C0:DC:D0:A7:D7:99:24:17:E5 X509v3 Authority Key Identifier: keyid:A6:2D:E7:56:A9:B1:69:BB:CF:F7:B5:56:D4:33:00:95:5D:40:E3:20 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91104BD/4373D50C384311EAA6192E53C4F9AE02/pi3nVqmxabvP97VW1DMAlV1A4yA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pi3nVqmxabvP97VW1DMAlV1A4yA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91104BD/4373D50C384311EAA6192E53C4F9AE02/pi3nVqmxabvP97VW1DMAlV1A4yA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 61:99:69:db:31:eb:b4:0e:0e:cf:ba:fc:ec:03:47:d8:30:e6: 17:43:2b:50:b7:b2:52:bc:c2:61:bf:38:d4:b8:9c:94:0b:a3: 98:38:de:f5:5f:4b:03:b8:43:47:9b:8f:93:fd:e2:e3:e2:24: a6:fa:ec:cf:84:25:a7:16:e3:d3:4c:01:43:5b:57:3f:0c:cc: 12:e5:25:28:9e:c4:69:58:52:4a:01:b2:12:a8:57:aa:e6:a0: 5b:1d:0d:a2:c1:d6:4e:cf:1a:66:38:5d:bb:d0:de:52:c4:89: 33:2e:bc:64:4e:cc:f0:50:54:a2:0c:6c:34:fd:a3:f4:8c:1c: 02:30:cb:9b:02:6e:c5:f6:5c:93:37:18:d8:15:1d:fc:9d:fc: 1f:10:2e:a9:74:ec:7f:f1:88:a2:43:5d:67:e5:31:90:ec:47: 60:dd:e4:7d:a6:e7:4a:4d:8f:f7:b7:f7:9b:e8:f1:49:1d:9d: e4:85:2b:5d:5e:11:fa:27:46:c7:26:e0:2f:3d:b4:d4:54:22: 9e:3c:12:0b:00:d8:77:59:0b:bf:08:d7:ee:99:ac:cb:f1:13: 5f:82:3b:63:12:fe:df:d9:c2:ed:e8:8d:bb:0a:9f:81:29:aa: 78:1a:16:b5:b6:0c:56:ce:4f:61:75:e7:ed:5a:9b:72:35:7f: cf:37:66:92 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCt8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTA0QkQxMTAvBgNVBAUTKEE2MkRFNzU2QTlCMTY5QkJDRkY3QjU1NkQ0MzMwMDk1 NUQ0MEUzMjAwHhcNMjQxMTIyMTkwNzMxWhcNMjQxMTI5MTkwNzMxWjAYMRYwFAYD VQQDEw02NzQwZDY3My1iYmI5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0pM751uoULatLXemErRbSXiYu4c8J5PeNU6LqVFgXhCs0spN7YqMRnFP4Mzv 8n+NAZFCrBoxJrQ83hoIVBmt0iFQs2WnstYHlqw83RvMLp4IgaUwXjJrACLghRQl 5+S/TLT+nP+y/f5uIfbGDamh03oLqi7QVwse4fOhp7/OzHBJ8Zk4wdaA2Ef5fA0L F7j2LEOZhXEpoVexUqsx5IW8kokpwnOX3iFKdTO2cT8N8UE/pYvuJ1H16lp6nl73 Y8V3t8qzHagRV9gOjhVPyL+JmOGKz8HICjFZBrBDirwtK0QPS4GCp2usnWSWJGqX 7q+3F0QvYX09sBgpj2BQO1hFFwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOudVKBR meauc+64wNzQp9eZJBflMB8GA1UdIwQYMBaAFKYt51apsWm7z/e1VtQzAJVdQOMg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMDRCRC80MzczRDUwQzM4 NDMxMUVBQTYxOTJFNTNDNEY5QUUwMi9waTNuVnFteGFidlA5N1ZXMURNQWxWMUE0 eUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BpM25WcW14YWJ2UDk3VlcxRE1BbFYxQTR5QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MDRCRC80MzczRDUwQzM4NDMxMUVBQTYxOTJFNTNDNEY5QUUwMi9waTNuVnFteGFi dlA5N1ZXMURNQWxWMUE0eUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBhmWnbMeu0Dg7PuvzsA0fYMOYXQytQt7JSvMJhvzjUuJyUC6OYON71 X0sDuENHm4+T/eLj4iSm+uzPhCWnFuPTTAFDW1c/DMwS5SUonsRpWFJKAbISqFeq 5qBbHQ2iwdZOzxpmOF270N5SxIkzLrxkTszwUFSiDGw0/aP0jBwCMMubAm7F9lyT NxjYFR38nfwfEC6pdOx/8YiiQ11n5TGQ7Edg3eR9pudKTY/3t/eb6PFJHZ3khStd XhH6J0bHJuAvPbTUVCKePBILANh3WQu/CNfumazL8RNfgjtjEv7f2cLt6I27Cp+B Kap4Gha1tgxWzk9hdeftWptyNX/PN2aS -----END CERTIFICATE-----Generated at Fri Nov 22 21:05:25 2024 by rpki-client on console-fra.rpki-client.org