$ rpki-client -vvf rpki.apnic.net/member_repository/A9115620/14A376446BA911EFA3B34684C4F9AE02/M3WpYTTFczGvVN1xTtNj2rMba9A.mft File: M3WpYTTFczGvVN1xTtNj2rMba9A.mft (raw, json) Hash identifier: Ne0Ay2YXeO7Vr+tKsYAQPQ/Fl+QnTZFeNuR2/GDEJw4= Subject key identifier: 31:72:85:FF:B3:FD:74:3B:BA:EF:73:C2:4A:85:93:2F:8B:5F:17:EB Authority key identifier: 33:75:A9:61:34:C5:73:31:AF:54:DD:71:4E:D3:63:DA:B3:1B:6B:D0 Certificate issuer: /CN=A9115620/serialNumber=3375A96134C57331AF54DD714ED363DAB31B6BD0 Certificate serial: 1B Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/M3WpYTTFczGvVN1xTtNj2rMba9A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9115620/14A376446BA911EFA3B34684C4F9AE02/M3WpYTTFczGvVN1xTtNj2rMba9A.mft Manifest number: 1A Signing time: Wed 23 Oct 2024 06:36:27 +0000 Manifest this update: Wed 23 Oct 2024 06:36:27 +0000 Manifest next update: Wed 30 Oct 2024 06:36:27 +0000 Files and hashes: 1: M3WpYTTFczGvVN1xTtNj2rMba9A.crl (hash: 637I3QhEHoYq9tM8U6GfCeAvTXjN78pzLM5tjEvVGcA=) 2: 8334E4446BA911EFADEBED84C4F9AE02.roa (hash: Ur23uerjkF05UN2d4OV8Z6LvPx8JS26HE6YTaEzhleU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9115620/14A376446BA911EFA3B34684C4F9AE02/M3WpYTTFczGvVN1xTtNj2rMba9A.crl rsync://rpki.apnic.net/member_repository/A9115620/14A376446BA911EFA3B34684C4F9AE02/M3WpYTTFczGvVN1xTtNj2rMba9A.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/M3WpYTTFczGvVN1xTtNj2rMba9A.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 30 Oct 2024 02:50:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27 (0x1b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9115620/serialNumber=3375A96134C57331AF54DD714ED363DAB31B6BD0 Validity Not Before: Oct 23 06:36:27 2024 GMT Not After : Oct 30 06:36:27 2024 GMT Subject: CN=6718996b-0658 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:3c:2e:14:12:69:aa:dd:18:3c:f7:49:5a:ef: 79:6c:89:96:12:a0:ae:2d:b3:de:f4:cc:f5:c5:b7: 28:ec:20:6d:73:ad:3c:56:1c:6b:74:41:7c:40:ec: bd:b4:b2:80:fb:61:12:04:b9:da:66:88:7a:76:95: 52:98:05:4f:52:65:7f:22:36:fd:47:36:11:26:6c: 15:84:a2:f3:db:0b:d2:f4:93:6b:0e:5f:90:56:af: a0:56:37:0d:43:28:73:7e:e7:66:9a:63:e8:3f:2b: e2:a9:2b:c4:e7:9f:d6:5d:70:64:4c:62:6c:be:bb: 2c:e8:cb:ca:a6:7f:5e:2a:99:05:2f:6d:c1:f7:85: 23:6c:66:4c:50:47:92:60:c3:b3:ac:dc:d2:cf:7e: a3:b7:df:e7:d9:7c:9c:b2:18:78:73:aa:4b:4d:5b: d5:5d:e3:a6:5e:90:1d:5b:40:e2:a8:3e:51:1b:8e: bf:44:bf:a8:c1:f8:c8:dd:b0:dc:08:50:bd:8a:86: da:18:ab:21:53:13:0b:e7:b6:90:ed:61:7a:ce:7e: 4f:17:2c:10:b6:05:20:16:a0:2f:40:3e:16:a1:99: 06:ac:56:51:56:0a:33:e9:cc:11:6a:70:8f:11:4b: 3d:5d:bf:93:bb:d7:ed:ca:93:cf:f2:73:10:91:55: 09:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:72:85:FF:B3:FD:74:3B:BA:EF:73:C2:4A:85:93:2F:8B:5F:17:EB X509v3 Authority Key Identifier: keyid:33:75:A9:61:34:C5:73:31:AF:54:DD:71:4E:D3:63:DA:B3:1B:6B:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9115620/14A376446BA911EFA3B34684C4F9AE02/M3WpYTTFczGvVN1xTtNj2rMba9A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/M3WpYTTFczGvVN1xTtNj2rMba9A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9115620/14A376446BA911EFA3B34684C4F9AE02/M3WpYTTFczGvVN1xTtNj2rMba9A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 54:c2:bb:45:7c:a5:f2:84:b5:f7:70:40:3d:2b:e8:e8:36:20: 70:63:fe:23:38:f6:62:0f:6a:5b:5b:08:0f:0f:e9:20:7e:d0: 26:23:53:0c:b4:21:bc:a7:a8:de:6a:a4:1f:5f:ed:67:35:c0: 33:6e:67:77:b8:6b:cb:33:d3:77:3a:f9:f3:63:88:73:49:30: 96:5f:ee:82:18:6d:44:1b:42:bd:22:e4:a6:18:5a:78:ce:37: e1:f4:87:6b:40:e6:e5:95:af:24:ca:11:ea:b3:89:bc:b7:e7: 80:c6:55:e9:c4:62:56:e3:ad:71:24:f9:e8:df:f7:e7:33:41: b4:38:27:7b:4c:10:bf:c2:00:db:10:a1:ab:cc:c4:e6:fb:8e: 6c:a5:45:25:ff:b3:b7:c3:d3:30:12:91:8f:8e:5b:7f:f7:85: e0:66:8b:08:04:f3:3d:b8:c7:da:49:d5:3d:cc:42:b3:18:35: ee:a3:0d:f3:08:a7:1f:16:1b:34:17:fe:78:6c:d1:7b:d1:76: a1:3d:a4:96:a8:27:74:1d:8d:ba:fb:75:66:bf:f4:71:04:9d: a7:08:1a:b2:0f:57:a6:1d:9b:74:b8:4a:61:10:4e:65:b9:72: 60:42:23:a3:02:17:d6:39:19:e5:05:50:b7:25:bf:c9:d4:04: f6:79:5b:dc -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBGzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx NTYyMDExMC8GA1UEBRMoMzM3NUE5NjEzNEM1NzMzMUFGNTRERDcxNEVEMzYzREFC MzFCNkJEMDAeFw0yNDEwMjMwNjM2MjdaFw0yNDEwMzAwNjM2MjdaMBgxFjAUBgNV BAMTDTY3MTg5OTZiLTA2NTgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC8PC4UEmmq3Rg890la73lsiZYSoK4ts970zPXFtyjsIG1zrTxWHGt0QXxA7L20 soD7YRIEudpmiHp2lVKYBU9SZX8iNv1HNhEmbBWEovPbC9L0k2sOX5BWr6BWNw1D KHN+52aaY+g/K+KpK8Tnn9ZdcGRMYmy+uyzoy8qmf14qmQUvbcH3hSNsZkxQR5Jg w7Os3NLPfqO33+fZfJyyGHhzqktNW9Vd46ZekB1bQOKoPlEbjr9Ev6jB+MjdsNwI UL2KhtoYqyFTEwvntpDtYXrOfk8XLBC2BSAWoC9APhahmQasVlFWCjPpzBFqcI8R Sz1dv5O71+3Kk8/ycxCRVQmHAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUMXKF/7P9 dDu673PCSoWTL4tfF+swHwYDVR0jBBgwFoAUM3WpYTTFczGvVN1xTtNj2rMba9Aw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTE1NjIwLzE0QTM3NjQ0NkJB OTExRUZBM0IzNDY4NEM0RjlBRTAyL00zV3BZVFRGY3pHdlZOMXhUdE5qMnJNYmE5 QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvTTNXcFlUVEZjekd2Vk4xeFR0Tmoyck1iYTlBLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTE1 NjIwLzE0QTM3NjQ0NkJBOTExRUZBM0IzNDY4NEM0RjlBRTAyL00zV3BZVFRGY3pH dlZOMXhUdE5qMnJNYmE5QS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAFTCu0V8pfKEtfdwQD0r6Og2IHBj/iM49mIPaltbCA8P6SB+0CYjUwy0 IbynqN5qpB9f7Wc1wDNuZ3e4a8sz03c6+fNjiHNJMJZf7oIYbUQbQr0i5KYYWnjO N+H0h2tA5uWVryTKEeqziby354DGVenEYlbjrXEk+ejf9+czQbQ4J3tMEL/CANsQ oavMxOb7jmylRSX/s7fD0zASkY+OW3/3heBmiwgE8z24x9pJ1T3MQrMYNe6jDfMI px8WGzQX/nhs0XvRdqE9pJaoJ3Qdjbr7dWa/9HEEnacIGrIPV6Ydm3S4SmEQTmW5 cmBCI6MCF9Y5GeUFULclv8nUBPZ5W9w= -----END CERTIFICATE-----Generated at Wed Oct 23 07:33:18 2024 by rpki-client on console-fra.rpki-client.org