$ rpki-client -vvf rpki.apnic.net/member_repository/A913E36B/7C2C6240A09111EAA9427C44C4F9AE02/3604bKySNIOAxXSS2xjyvIScUoY.mft File: 3604bKySNIOAxXSS2xjyvIScUoY.mft (raw, json) Hash identifier: JIRky3vdy468C+8gXiXDHXMF9z8cp1aZuuyX0+6sGwY= Subject key identifier: 43:1D:C3:F2:A2:CF:8E:37:46:56:AB:01:B5:0B:6B:FF:E9:3E:9A:5A Authority key identifier: DF:AD:38:6C:AC:92:34:83:80:C5:74:92:DB:18:F2:BC:84:9C:52:86 Certificate issuer: /CN=A913E36B/serialNumber=DFAD386CAC92348380C57492DB18F2BC849C5286 Certificate serial: 08D4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3604bKySNIOAxXSS2xjyvIScUoY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913E36B/7C2C6240A09111EAA9427C44C4F9AE02/3604bKySNIOAxXSS2xjyvIScUoY.mft Manifest number: 08C6 Signing time: Wed 20 Nov 2024 20:09:41 +0000 Manifest this update: Wed 20 Nov 2024 20:09:41 +0000 Manifest next update: Wed 27 Nov 2024 20:09:41 +0000 Files and hashes: 1: 3604bKySNIOAxXSS2xjyvIScUoY.crl (hash: l/Snap341QGohundYe2/Bp55x7onyi+q1UhahlkyvmI=) 2: 649A355C5F0F11EBBDB7C113C4F9AE02.roa (hash: bw4sMGnKDiftNLfRmiZR5SdnMpNduWFQjTQlPL6jZYY=) 3: 20544B84F14511ECA1AE5F4EC4F9AE02.roa (hash: FPAklaM71rdV3Mf7CFthJcOnotN1vw1BtN7p9xcPR+g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913E36B/7C2C6240A09111EAA9427C44C4F9AE02/3604bKySNIOAxXSS2xjyvIScUoY.crl rsync://rpki.apnic.net/member_repository/A913E36B/7C2C6240A09111EAA9427C44C4F9AE02/3604bKySNIOAxXSS2xjyvIScUoY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3604bKySNIOAxXSS2xjyvIScUoY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:09:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2260 (0x8d4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913E36B/serialNumber=DFAD386CAC92348380C57492DB18F2BC849C5286 Validity Not Before: Nov 20 20:09:41 2024 GMT Not After : Nov 27 20:09:41 2024 GMT Subject: CN=673e4205-1883 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:52:a4:a9:d4:6f:29:a3:d1:6b:a9:6c:e8:c1: a1:dd:f9:d0:fc:97:48:9f:88:14:0d:67:c4:24:67: 1a:c5:ad:52:87:eb:53:39:b6:f5:06:fe:1b:57:ce: 5f:79:3c:4d:85:39:55:81:3e:9b:28:17:34:d6:50: fd:c4:03:c7:bc:7e:fd:7e:dd:4c:f7:09:8c:f8:e5: a4:9f:47:df:90:0c:21:39:13:e2:53:85:7d:79:49: 51:d6:26:47:62:6b:e7:67:28:92:8e:83:e3:b6:f7: 91:5c:8b:dd:c9:a9:e2:4b:29:c6:1f:59:17:66:a5: ae:9d:6c:57:bd:d3:25:ed:db:3e:21:b0:00:15:dd: 48:20:6b:a1:21:91:12:05:d7:d7:58:f2:f6:f5:c9: b1:8b:f8:cd:48:e7:c1:db:84:e8:69:1c:94:8f:8c: 54:cc:8d:0e:a0:d3:3d:ee:83:a7:e8:36:3d:0d:da: 23:d4:c2:53:02:89:f7:d8:ab:21:28:7b:5e:5b:87: 91:6b:c0:76:96:10:23:eb:75:43:97:9a:85:e3:0c: 13:d5:b2:41:6d:db:67:46:e1:0e:0e:e2:79:26:e8: c2:a6:4f:b5:c9:fa:0d:33:4a:ec:06:30:ea:92:3e: f4:db:be:73:dd:f3:3d:69:cf:c9:e2:e2:67:aa:1d: a4:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:1D:C3:F2:A2:CF:8E:37:46:56:AB:01:B5:0B:6B:FF:E9:3E:9A:5A X509v3 Authority Key Identifier: keyid:DF:AD:38:6C:AC:92:34:83:80:C5:74:92:DB:18:F2:BC:84:9C:52:86 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913E36B/7C2C6240A09111EAA9427C44C4F9AE02/3604bKySNIOAxXSS2xjyvIScUoY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3604bKySNIOAxXSS2xjyvIScUoY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913E36B/7C2C6240A09111EAA9427C44C4F9AE02/3604bKySNIOAxXSS2xjyvIScUoY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 71:d5:1e:eb:a1:78:5b:c0:6b:55:1c:05:a4:2b:5e:f8:64:5b: 83:7f:b5:78:7a:16:d0:cc:58:52:50:6e:34:d6:59:2f:81:60: e3:d2:e5:84:04:0e:ed:d5:62:ef:a5:2e:3a:2e:5a:c0:fe:18: 40:48:8d:98:19:b6:f2:ed:98:6a:3f:98:1f:c4:b0:c0:61:a2: f1:47:6d:2f:f9:8e:23:30:ad:cb:23:c2:e7:6a:cb:e5:d0:58: 37:ac:0a:66:61:e9:5f:13:fd:bc:bc:08:7d:1b:9a:03:65:be: 88:15:99:13:88:85:5f:0e:99:ac:05:4e:ed:e1:cb:67:dc:fb: 40:ca:58:2a:74:1b:15:c8:e4:46:bf:47:83:1e:86:76:78:49: 44:c3:eb:aa:55:54:2a:e9:0a:53:d0:f6:43:e3:01:8c:35:a6: ee:5f:c6:9a:44:1c:16:ef:13:cd:d0:50:77:f4:88:c8:d2:67: 8e:ba:64:12:42:66:7a:be:08:64:82:5e:c0:d6:15:ad:a9:92: 58:9d:60:89:db:72:5a:ab:d0:34:b2:88:b1:ee:3f:5f:84:53: 9a:ad:e4:54:01:57:39:6b:2a:d5:5d:b8:b7:50:03:cf:6b:8c: c6:35:67:8d:c0:ec:5e:87:d2:7e:87:26:95:56:ba:42:63:7e: ca:45:9f:a0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCNQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0UzNkIxMTAvBgNVBAUTKERGQUQzODZDQUM5MjM0ODM4MEM1NzQ5MkRCMThGMkJD ODQ5QzUyODYwHhcNMjQxMTIwMjAwOTQxWhcNMjQxMTI3MjAwOTQxWjAYMRYwFAYD VQQDEw02NzNlNDIwNS0xODgzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0lKkqdRvKaPRa6ls6MGh3fnQ/JdIn4gUDWfEJGcaxa1Sh+tTObb1Bv4bV85f eTxNhTlVgT6bKBc01lD9xAPHvH79ft1M9wmM+OWkn0ffkAwhORPiU4V9eUlR1iZH YmvnZyiSjoPjtveRXIvdyaniSynGH1kXZqWunWxXvdMl7ds+IbAAFd1IIGuhIZES BdfXWPL29cmxi/jNSOfB24ToaRyUj4xUzI0OoNM97oOn6DY9Ddoj1MJTAon32Ksh KHteW4eRa8B2lhAj63VDl5qF4wwT1bJBbdtnRuEODuJ5JujCpk+1yfoNM0rsBjDq kj70275z3fM9ac/J4uJnqh2kuQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEMdw/Ki z443RlarAbULa//pPppaMB8GA1UdIwQYMBaAFN+tOGyskjSDgMV0ktsY8ryEnFKG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzRTM2Qi83QzJDNjI0MEEw OTExMUVBQTk0MjdDNDRDNEY5QUUwMi8zNjA0Ykt5U05JT0F4WFNTMnhqeXZJU2NV b1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzM2MDRiS3lTTklPQXhYU1MyeGp5dklTY1VvWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz RTM2Qi83QzJDNjI0MEEwOTExMUVBQTk0MjdDNDRDNEY5QUUwMi8zNjA0Ykt5U05J T0F4WFNTMnhqeXZJU2NVb1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBx1R7roXhbwGtVHAWkK174ZFuDf7V4ehbQzFhSUG401lkvgWDj0uWE BA7t1WLvpS46LlrA/hhASI2YGbby7ZhqP5gfxLDAYaLxR20v+Y4jMK3LI8Lnasvl 0Fg3rApmYelfE/28vAh9G5oDZb6IFZkTiIVfDpmsBU7t4ctn3PtAylgqdBsVyORG v0eDHoZ2eElEw+uqVVQq6QpT0PZD4wGMNabuX8aaRBwW7xPN0FB39IjI0meOumQS QmZ6vghkgl7A1hWtqZJYnWCJ23Jaq9A0soix7j9fhFOareRUAVc5ayrVXbi3UAPP a4zGNWeNwOxeh9J+hyaVVrpCY37KRZ+g -----END CERTIFICATE-----Generated at Wed Nov 20 21:52:37 2024 by rpki-client on console-fra.rpki-client.org