$ rpki-client -vvf rpki.apnic.net/member_repository/A912BAAD/521ADDC8184811EA9078562BC4F9AE02/3fiEkRrT8ozJ2WqMJKk5pl-LJXY.mft File: 3fiEkRrT8ozJ2WqMJKk5pl-LJXY.mft (raw, json) Hash identifier: hAsY/BMbuoqHRwGAokSjdSZcnd4YXlmKo02yeicPF64= Subject key identifier: 51:99:E3:D4:7E:E3:53:F0:16:0F:9F:72:05:DB:36:30:93:30:18:D3 Authority key identifier: DD:F8:84:91:1A:D3:F2:8C:C9:D9:6A:8C:24:A9:39:A6:5F:8B:25:76 Certificate issuer: /CN=A912BAAD/serialNumber=DDF884911AD3F28CC9D96A8C24A939A65F8B2576 Certificate serial: 0B9A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3fiEkRrT8ozJ2WqMJKk5pl-LJXY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912BAAD/521ADDC8184811EA9078562BC4F9AE02/3fiEkRrT8ozJ2WqMJKk5pl-LJXY.mft Manifest number: 0B8B Signing time: Fri 22 Nov 2024 18:46:59 +0000 Manifest this update: Fri 22 Nov 2024 18:46:59 +0000 Manifest next update: Fri 29 Nov 2024 18:46:59 +0000 Files and hashes: 1: 3fiEkRrT8ozJ2WqMJKk5pl-LJXY.crl (hash: 2wGnUDj79oxlKm7vqKsN4O6SISgCNlXG+SfGRFl3wcM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912BAAD/521ADDC8184811EA9078562BC4F9AE02/3fiEkRrT8ozJ2WqMJKk5pl-LJXY.crl rsync://rpki.apnic.net/member_repository/A912BAAD/521ADDC8184811EA9078562BC4F9AE02/3fiEkRrT8ozJ2WqMJKk5pl-LJXY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3fiEkRrT8ozJ2WqMJKk5pl-LJXY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 18:46:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2970 (0xb9a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912BAAD/serialNumber=DDF884911AD3F28CC9D96A8C24A939A65F8B2576 Validity Not Before: Nov 22 18:46:59 2024 GMT Not After : Nov 29 18:46:59 2024 GMT Subject: CN=6740d1a3-7dfa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:77:33:5d:9a:d6:e1:6b:d6:a4:6c:2b:08:64: 53:3f:c4:61:5c:a5:81:41:8b:33:56:83:d3:23:86: db:0c:6a:e2:b1:4c:0f:94:0e:6c:24:3f:00:8f:9e: 90:a2:50:40:a7:d3:67:0e:2c:b7:99:a9:eb:88:2b: af:d9:67:09:79:ec:51:0c:d9:35:42:93:c7:7d:43: ba:18:33:33:1a:b4:00:21:09:89:55:50:c1:3d:5c: 54:48:37:07:0c:c0:23:91:39:a3:e4:90:d3:4b:a9: 60:cc:72:34:e0:46:bf:e3:1d:9f:f1:c1:cb:c1:a5: c7:41:2c:f6:26:f6:da:fb:79:8d:ab:f5:50:c5:92: 81:18:62:7f:bf:01:06:cb:63:80:84:c5:2e:c1:f3: 9b:eb:ed:5f:5e:ba:67:44:f6:65:be:0f:99:c0:17: 47:e7:df:06:f8:23:4e:75:03:32:79:9d:b9:ad:84: b9:1a:71:55:06:e8:ae:1e:79:cf:1b:2b:65:1d:a2: c9:18:87:59:52:fa:49:e6:ab:b0:17:f6:dc:d8:47: 78:21:e8:8f:3d:0e:a7:d1:9e:e4:30:b4:04:55:3e: 7f:72:21:d6:6b:71:97:15:54:b4:44:cf:ba:72:2b: 97:87:c4:72:bd:f0:49:9b:03:aa:19:14:0b:be:48: 06:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:99:E3:D4:7E:E3:53:F0:16:0F:9F:72:05:DB:36:30:93:30:18:D3 X509v3 Authority Key Identifier: keyid:DD:F8:84:91:1A:D3:F2:8C:C9:D9:6A:8C:24:A9:39:A6:5F:8B:25:76 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912BAAD/521ADDC8184811EA9078562BC4F9AE02/3fiEkRrT8ozJ2WqMJKk5pl-LJXY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3fiEkRrT8ozJ2WqMJKk5pl-LJXY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912BAAD/521ADDC8184811EA9078562BC4F9AE02/3fiEkRrT8ozJ2WqMJKk5pl-LJXY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 60:1e:22:b9:d0:b0:9f:af:f4:cc:6e:23:99:0b:d8:2e:0e:ee: 23:e8:e6:36:1b:50:33:56:6e:53:8f:a4:d4:98:84:d8:37:c0: b9:87:c0:73:1e:3c:16:26:e6:d8:4f:2f:d2:84:ad:b9:3e:c3: d8:76:09:20:71:77:f8:ad:53:e6:49:b4:69:46:af:7e:bc:a9: 32:28:66:56:81:d0:4f:b6:f9:5f:6c:0a:ce:ee:98:cb:36:d9: 57:aa:97:64:33:7d:1d:4c:d5:7d:b0:06:6d:4d:21:02:40:4c: 61:da:94:75:3b:a7:c6:63:55:2f:ea:c3:58:77:78:d5:8c:73: 48:c9:e6:a7:06:8a:16:cc:91:8c:1d:fc:b8:0e:11:83:58:66: 6e:2d:9c:3a:1f:34:8a:41:43:b7:3d:b5:f6:47:6c:52:a9:a1: b1:86:dd:2c:cc:5b:76:16:a6:6b:ab:3d:8e:70:8f:ad:93:9c: 79:cc:55:81:01:36:0c:4f:c9:9a:7b:b4:c1:83:e5:3d:84:3c: 22:21:11:25:4e:40:a5:1a:ed:51:bf:15:97:c2:fb:75:55:30: 2d:82:6b:97:06:7f:19:e6:f3:90:b4:76:82:03:0f:71:55:af: 52:4a:89:80:b8:8b:b7:18:b8:b9:ba:e4:0f:e5:63:3f:84:2d: 19:32:38:ab -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC5owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkJBQUQxMTAvBgNVBAUTKERERjg4NDkxMUFEM0YyOENDOUQ5NkE4QzI0QTkzOUE2 NUY4QjI1NzYwHhcNMjQxMTIyMTg0NjU5WhcNMjQxMTI5MTg0NjU5WjAYMRYwFAYD VQQDEw02NzQwZDFhMy03ZGZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8HczXZrW4WvWpGwrCGRTP8RhXKWBQYszVoPTI4bbDGrisUwPlA5sJD8Aj56Q olBAp9NnDiy3manriCuv2WcJeexRDNk1QpPHfUO6GDMzGrQAIQmJVVDBPVxUSDcH DMAjkTmj5JDTS6lgzHI04Ea/4x2f8cHLwaXHQSz2Jvba+3mNq/VQxZKBGGJ/vwEG y2OAhMUuwfOb6+1fXrpnRPZlvg+ZwBdH598G+CNOdQMyeZ25rYS5GnFVBuiuHnnP GytlHaLJGIdZUvpJ5quwF/bc2Ed4IeiPPQ6n0Z7kMLQEVT5/ciHWa3GXFVS0RM+6 ciuXh8RyvfBJmwOqGRQLvkgGxQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFGZ49R+ 41PwFg+fcgXbNjCTMBjTMB8GA1UdIwQYMBaAFN34hJEa0/KMydlqjCSpOaZfiyV2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQkFBRC81MjFBRERDODE4 NDgxMUVBOTA3ODU2MkJDNEY5QUUwMi8zZmlFa1JyVDhvekoyV3FNSktrNXBsLUxK WFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNmaUVrUnJUOG96SjJXcU1KS2s1cGwtTEpYWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy QkFBRC81MjFBRERDODE4NDgxMUVBOTA3ODU2MkJDNEY5QUUwMi8zZmlFa1JyVDhv ekoyV3FNSktrNXBsLUxKWFkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBgHiK50LCfr/TMbiOZC9guDu4j6OY2G1AzVm5Tj6TUmITYN8C5h8Bz HjwWJubYTy/ShK25PsPYdgkgcXf4rVPmSbRpRq9+vKkyKGZWgdBPtvlfbArO7pjL NtlXqpdkM30dTNV9sAZtTSECQExh2pR1O6fGY1Uv6sNYd3jVjHNIyeanBooWzJGM Hfy4DhGDWGZuLZw6HzSKQUO3PbX2R2xSqaGxht0szFt2FqZrqz2OcI+tk5x5zFWB ATYMT8mae7TBg+U9hDwiIRElTkClGu1RvxWXwvt1VTAtgmuXBn8Z5vOQtHaCAw9x Va9SSomAuIu3GLi5uuQP5WM/hC0ZMjir -----END CERTIFICATE-----Generated at Fri Nov 22 19:44:56 2024 by rpki-client on console-fra.rpki-client.org