$ rpki-client -vvf rpki.apnic.net/member_repository/A91262CA/EC1EE6528A5711EC96EBC014C4F9AE02/1j3oKnWfllf48HOyUSUarme6S6Y.mft File: 1j3oKnWfllf48HOyUSUarme6S6Y.mft (raw, json) Hash identifier: cKQ1QLs8YyqJzXZKYsNyvNckQq6xcDhHHqkTCoPy658= Subject key identifier: C0:2A:D1:EB:BD:4C:B3:97:0D:53:1F:65:FB:E4:30:71:E8:76:4B:E0 Authority key identifier: D6:3D:E8:2A:75:9F:96:57:F8:F0:73:B2:51:25:1A:AE:67:BA:4B:A6 Certificate issuer: /CN=A91262CA/serialNumber=D63DE82A759F9657F8F073B251251AAE67BA4BA6 Certificate serial: 03F3 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/1j3oKnWfllf48HOyUSUarme6S6Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91262CA/EC1EE6528A5711EC96EBC014C4F9AE02/1j3oKnWfllf48HOyUSUarme6S6Y.mft Manifest number: 039F Signing time: Sat 23 Nov 2024 00:29:47 +0000 Manifest this update: Sat 23 Nov 2024 00:29:47 +0000 Manifest next update: Sat 30 Nov 2024 00:29:47 +0000 Files and hashes: 1: 1j3oKnWfllf48HOyUSUarme6S6Y.crl (hash: mLepPrErGuwVM8FgWVEQzB9lniCQCY/sxVisGGSbMUI=) 2: ABE3468CBB5611EE936F4785C4F9AE02.roa (hash: 85cGKhcFvfLsa3fKkS4OSkRQ0VqdCtjeFSWGED/065w=) 3: A15115E6DF3E11EC83CCFE1EC4F9AE02.roa (hash: AFhkaTS9H9SYq32LCGLZ0ybHnkII09gZHj0VVB5f314=) 4: 9FEE9516DF3E11EC83CCFE1EC4F9AE02.roa (hash: cotJkdbyDdnoqnW03wwLgBND9x/lhPuMs/gJ3BCR7lI=) 5: A09F8E52DF3E11EC83CCFE1EC4F9AE02.roa (hash: 1tRgJ3aPzibyR+z50Gw9nZnYt8M73G+bJYsVfkg2zT8=) 6: F563D916248D11EF93237035C4F9AE02.roa (hash: B9+ujxo3UgWLMG+B0g5KGVMUgAJmIzvebILB++raaNc=) 7: 9DEFF2FADF3E11EC83CCFE1EC4F9AE02.roa (hash: K8HM6DIcOQOpn7mr5HRxJGQ+LZPGnSM+a9C5ehvgnkk=) 8: 9F598EEEDF3E11EC83CCFE1EC4F9AE02.roa (hash: ML8bUrH07kWDsJzW00Kjv/Bk94cyav3h3f9sQ1/S5a0=) 9: 376B684C4FFE11EFA3C2A52BC4F9AE02.roa (hash: xj+h/87eUgDBiUAf6BXGKYdnirIR95/CVx+qdKeKOOU=) 10: 9D13F282DF3E11EC83CCFE1EC4F9AE02.roa (hash: 4TUF4fCsd6U4sl8CKjbb5lEPYX8IdLYlZccOBdKP5o0=) 11: 56EC4CB4927911EFABEC2D46C4F9AE02.roa (hash: 5jFOXz91ZZ50fpVnfRxRJl436xHddATVpaygKT2CLho=) 12: A1FED136DF3E11EC83CCFE1EC4F9AE02.roa (hash: gOJa8cYlazWQ7UQ+EjuycM05p/sMIN86mUAHCGBMKow=) 13: 05163DEADD8711EC9BF56E5BC4F9AE02.roa (hash: zGN2nOJQWd9Hxkuu+Xvwm7K9HCh0xLUXhnRjE+idexs=) 14: 9EB0F9FADF3E11EC83CCFE1EC4F9AE02.roa (hash: BczitAlbCQvjk6wnUERPJgdefO0W2XIU7kagZ/uo8Uo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91262CA/EC1EE6528A5711EC96EBC014C4F9AE02/1j3oKnWfllf48HOyUSUarme6S6Y.crl rsync://rpki.apnic.net/member_repository/A91262CA/EC1EE6528A5711EC96EBC014C4F9AE02/1j3oKnWfllf48HOyUSUarme6S6Y.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/1j3oKnWfllf48HOyUSUarme6S6Y.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1011 (0x3f3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91262CA/serialNumber=D63DE82A759F9657F8F073B251251AAE67BA4BA6 Validity Not Before: Nov 23 00:29:47 2024 GMT Not After : Nov 30 00:29:47 2024 GMT Subject: CN=674121fb-02a3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:ab:20:c2:ca:b4:ef:03:f7:2b:18:12:78:83: 87:ae:8c:63:15:86:a0:41:f7:7a:37:1a:0e:59:ab: 17:6e:07:35:ab:c4:83:f4:f0:cd:95:a4:ea:7f:a5: cc:9a:a1:6b:91:31:2d:9d:b1:5c:c2:ff:03:74:8b: 2d:1d:be:f5:02:af:a9:97:d9:f2:47:b0:0d:0d:53: a0:bb:98:d4:87:e0:c0:e7:27:f0:97:35:43:fe:bc: 91:bf:01:92:5b:74:2f:7f:fe:f4:0f:bf:fe:72:5f: 31:c8:99:19:ac:ae:9c:11:dc:3f:ff:2b:a0:45:e8: ac:8d:0c:b2:38:58:6f:e3:df:a8:72:c1:2f:c2:80: 4c:7e:46:9e:b6:4f:c9:21:e7:e8:2f:5e:93:10:08: 8f:21:a9:f1:c4:d1:44:a8:19:64:39:60:2a:6a:de: ee:72:58:81:90:9d:0e:f6:d6:db:6e:0d:d3:9e:03: 2f:6d:c4:c4:a4:77:76:cd:7f:a5:95:d6:b4:dd:c3: 8c:b7:52:c4:57:23:59:40:85:33:f8:0d:ce:74:44: d6:31:75:0c:90:80:56:a4:38:84:2b:b1:8d:69:7b: ad:cf:79:a5:13:99:ac:67:0b:af:ed:7f:f9:7c:4b: a8:d4:00:5a:3f:fa:df:2d:31:4a:e2:8a:3f:94:37: 46:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:2A:D1:EB:BD:4C:B3:97:0D:53:1F:65:FB:E4:30:71:E8:76:4B:E0 X509v3 Authority Key Identifier: keyid:D6:3D:E8:2A:75:9F:96:57:F8:F0:73:B2:51:25:1A:AE:67:BA:4B:A6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91262CA/EC1EE6528A5711EC96EBC014C4F9AE02/1j3oKnWfllf48HOyUSUarme6S6Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/1j3oKnWfllf48HOyUSUarme6S6Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91262CA/EC1EE6528A5711EC96EBC014C4F9AE02/1j3oKnWfllf48HOyUSUarme6S6Y.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9c:91:05:7d:94:f0:e5:c4:16:7c:40:b3:69:f3:bb:24:01:3d: 8d:bd:89:98:8d:e4:1f:f9:72:be:d7:e1:37:a1:00:5c:84:24: c6:a0:46:da:06:be:91:cd:8e:85:84:94:4c:67:a7:8f:d4:de: f3:90:db:28:25:f9:12:04:52:ac:50:af:2e:27:26:91:54:94: cd:56:6f:3d:f1:26:77:ec:2f:7f:63:e0:1f:06:43:84:0c:8e: 61:c3:94:f2:d2:6c:1e:a4:7d:ee:16:bd:15:81:97:bd:b3:69: 76:a4:f7:af:cb:a4:47:73:0f:7a:be:3e:14:3c:7f:fa:84:95: 38:22:36:50:0a:f4:b6:d4:98:b2:7f:b6:07:72:13:34:1f:40: 3c:0a:ae:06:5d:68:c3:7d:39:b7:ad:9c:c4:ec:c1:08:1a:e6: f8:6e:d9:87:61:6b:a9:14:8e:39:a5:18:50:b0:b6:b1:e2:71: a0:f0:18:2c:40:95:10:f2:fa:ac:1f:de:30:c7:c1:00:d7:aa: 1a:74:a0:0c:77:23:dc:c6:fa:77:dd:9f:f7:49:9b:fb:a3:43: 5b:56:bf:85:3d:39:51:26:2b:af:26:f3:e1:8a:05:b0:af:a3: 83:4a:e8:0e:a6:e4:66:2e:de:b5:46:b1:68:08:4e:ec:8a:c2: e0:36:97:eb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA/MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjYyQ0ExMTAvBgNVBAUTKEQ2M0RFODJBNzU5Rjk2NTdGOEYwNzNCMjUxMjUxQUFF NjdCQTRCQTYwHhcNMjQxMTIzMDAyOTQ3WhcNMjQxMTMwMDAyOTQ3WjAYMRYwFAYD VQQDEw02NzQxMjFmYi0wMmEzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApasgwsq07wP3KxgSeIOHroxjFYagQfd6NxoOWasXbgc1q8SD9PDNlaTqf6XM mqFrkTEtnbFcwv8DdIstHb71Aq+pl9nyR7ANDVOgu5jUh+DA5yfwlzVD/ryRvwGS W3Qvf/70D7/+cl8xyJkZrK6cEdw//yugReisjQyyOFhv49+ocsEvwoBMfkaetk/J IefoL16TEAiPIanxxNFEqBlkOWAqat7ucliBkJ0O9tbbbg3TngMvbcTEpHd2zX+l lda03cOMt1LEVyNZQIUz+A3OdETWMXUMkIBWpDiEK7GNaXutz3mlE5msZwuv7X/5 fEuo1ABaP/rfLTFK4oo/lDdGCwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMAq0eu9 TLOXDVMfZfvkMHHodkvgMB8GA1UdIwQYMBaAFNY96Cp1n5ZX+PBzslElGq5nukum MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNjJDQS9FQzFFRTY1MjhB NTcxMUVDOTZFQkMwMTRDNEY5QUUwMi8xajNvS25XZmxsZjQ4SE95VVNVYXJtZTZT NlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzFqM29LbldmbGxmNDhIT3lVU1Vhcm1lNlM2WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NjJDQS9FQzFFRTY1MjhBNTcxMUVDOTZFQkMwMTRDNEY5QUUwMi8xajNvS25XZmxs ZjQ4SE95VVNVYXJtZTZTNlkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCckQV9lPDlxBZ8QLNp87skAT2NvYmYjeQf+XK+1+E3oQBchCTGoEba Br6RzY6FhJRMZ6eP1N7zkNsoJfkSBFKsUK8uJyaRVJTNVm898SZ37C9/Y+AfBkOE DI5hw5Ty0mwepH3uFr0VgZe9s2l2pPevy6RHcw96vj4UPH/6hJU4IjZQCvS21Jiy f7YHchM0H0A8Cq4GXWjDfTm3rZzE7MEIGub4btmHYWupFI45pRhQsLax4nGg8Bgs QJUQ8vqsH94wx8EA16oadKAMdyPcxvp33Z/3SZv7o0NbVr+FPTlRJiuvJvPhigWw r6ODSugOpuRmLt61RrFoCE7sisLgNpfr -----END CERTIFICATE-----Generated at Sat Nov 23 01:27:20 2024 by rpki-client on console-ams.rpki-client.org