$ rpki-client -vvf rpki.apnic.net/member_repository/A9143B09/3B367BCE33B711E9AD0F587AC4F9AE02/3ETtNb69CygywHT8LEaqsM1oL94.mft File: 3ETtNb69CygywHT8LEaqsM1oL94.mft (raw, json) Hash identifier: DkBRiDyrHpT3464s1Ch0XPAQAchUazi2SkBOIwQZ0Dc= Subject key identifier: FA:C5:98:48:82:EA:58:99:D1:D1:AD:B1:7F:E6:EC:EF:05:26:79:E9 Authority key identifier: DC:44:ED:35:BE:BD:0B:28:32:C0:74:FC:2C:46:AA:B0:CD:68:2F:DE Certificate issuer: /CN=A9143B09/serialNumber=DC44ED35BEBD0B2832C074FC2C46AAB0CD682FDE Certificate serial: 1026 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3ETtNb69CygywHT8LEaqsM1oL94.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9143B09/3B367BCE33B711E9AD0F587AC4F9AE02/3ETtNb69CygywHT8LEaqsM1oL94.mft Manifest number: 184B Signing time: Fri 22 Nov 2024 17:24:18 +0000 Manifest this update: Fri 22 Nov 2024 17:24:17 +0000 Manifest next update: Fri 29 Nov 2024 17:24:17 +0000 Files and hashes: 1: 3ETtNb69CygywHT8LEaqsM1oL94.crl (hash: ubY4IFQvTyl+LwfKUhxHbiXyTmfd585QACifmE/7K5U=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9143B09/3B367BCE33B711E9AD0F587AC4F9AE02/3ETtNb69CygywHT8LEaqsM1oL94.crl rsync://rpki.apnic.net/member_repository/A9143B09/3B367BCE33B711E9AD0F587AC4F9AE02/3ETtNb69CygywHT8LEaqsM1oL94.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3ETtNb69CygywHT8LEaqsM1oL94.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 17:24:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4134 (0x1026) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9143B09/serialNumber=DC44ED35BEBD0B2832C074FC2C46AAB0CD682FDE Validity Not Before: Nov 22 17:24:17 2024 GMT Not After : Nov 29 17:24:17 2024 GMT Subject: CN=6740be41-df5d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:89:05:29:a3:7f:49:54:17:d0:27:c9:d1:ab: 21:ed:ee:97:82:c6:73:cf:12:e5:32:9e:98:c3:3c: 70:a4:d4:6c:56:f2:89:7a:16:b3:95:62:c5:f9:a4: d6:8f:10:24:ee:a6:9a:8a:31:53:c2:04:1a:15:52: 26:19:82:9b:1e:6a:7a:e0:f8:5b:08:82:9d:e2:fe: db:e7:b0:ce:3f:7a:da:b4:3f:c5:95:23:af:28:2b: 8d:89:8a:4a:ca:da:e2:b5:7d:bf:93:90:35:ea:0e: 5b:04:d4:75:c6:8a:c4:bd:63:c6:1e:d7:4e:d0:40: 0c:2e:6b:14:8a:49:16:a2:c7:5d:7f:41:fd:84:65: 5d:6c:89:68:79:fb:7f:0c:35:8c:f6:5a:31:de:39: b7:3d:8c:73:c7:5b:1a:58:18:b7:fe:ea:6a:24:a7: 01:7c:60:64:e5:0f:90:8b:95:27:6d:1a:46:d5:07: 38:ea:00:59:2d:a2:0d:e9:51:79:bc:f4:f5:a3:15: 15:9e:9a:45:29:df:a3:a5:a3:0c:74:b4:4c:56:95: 0a:18:03:1e:c8:89:3f:eb:29:ff:e4:04:9e:81:b8: cf:bb:b8:da:4f:b0:c8:23:ba:a3:03:d3:de:6a:70: dd:23:ea:d1:1e:f4:f0:b6:60:d1:b1:79:c4:1a:70: 4b:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:C5:98:48:82:EA:58:99:D1:D1:AD:B1:7F:E6:EC:EF:05:26:79:E9 X509v3 Authority Key Identifier: keyid:DC:44:ED:35:BE:BD:0B:28:32:C0:74:FC:2C:46:AA:B0:CD:68:2F:DE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9143B09/3B367BCE33B711E9AD0F587AC4F9AE02/3ETtNb69CygywHT8LEaqsM1oL94.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3ETtNb69CygywHT8LEaqsM1oL94.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9143B09/3B367BCE33B711E9AD0F587AC4F9AE02/3ETtNb69CygywHT8LEaqsM1oL94.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 62:9f:8b:89:c1:9f:f5:95:50:d9:e0:cc:96:6c:d2:3d:27:81: 3d:98:0f:a9:0b:f2:59:06:f9:f8:97:ad:87:b4:62:6b:56:e8: 05:c9:78:a4:40:05:92:02:87:7f:8f:b4:9b:08:af:47:41:ab: 88:17:98:58:02:ef:fd:d9:2b:d7:f2:f1:fc:dd:11:f5:73:ea: aa:5c:0f:3b:52:27:31:45:e9:07:ea:64:94:64:ab:36:24:1a: bb:92:91:e6:a3:39:b6:f6:ad:1c:56:23:13:44:7f:6f:08:32: 97:06:d0:20:70:9e:f1:1d:69:ca:11:68:05:d5:86:71:e4:bd: 91:71:2e:3f:1a:86:f2:e6:7c:8d:75:7e:8e:78:6e:7a:e4:b7: eb:48:d4:8e:ec:c4:14:84:5e:77:aa:f3:7f:33:b2:16:7e:58: b2:ee:83:76:be:cf:18:80:06:3c:2d:d0:00:4e:2c:b7:2a:ed: 73:9f:d2:fc:c7:a3:d6:28:a2:99:ed:61:5d:bd:ba:02:45:ce: 84:51:03:84:a7:27:39:76:37:9e:b1:2a:e2:a3:6c:d1:97:95: 70:47:03:92:4f:95:f0:20:c0:04:8a:ce:16:cc:0f:c7:37:f9: f6:ce:a0:7e:2e:13:8a:b1:c5:2a:d8:69:0c:e8:cd:dc:e1:bd: a1:f9:22:3d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICECYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDNCMDkxMTAvBgNVBAUTKERDNDRFRDM1QkVCRDBCMjgzMkMwNzRGQzJDNDZBQUIw Q0Q2ODJGREUwHhcNMjQxMTIyMTcyNDE3WhcNMjQxMTI5MTcyNDE3WjAYMRYwFAYD VQQDEw02NzQwYmU0MS1kZjVkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyYkFKaN/SVQX0CfJ0ash7e6XgsZzzxLlMp6YwzxwpNRsVvKJehazlWLF+aTW jxAk7qaaijFTwgQaFVImGYKbHmp64PhbCIKd4v7b57DOP3ratD/FlSOvKCuNiYpK ytritX2/k5A16g5bBNR1xorEvWPGHtdO0EAMLmsUikkWosddf0H9hGVdbIloeft/ DDWM9lox3jm3PYxzx1saWBi3/upqJKcBfGBk5Q+Qi5UnbRpG1Qc46gBZLaIN6VF5 vPT1oxUVnppFKd+jpaMMdLRMVpUKGAMeyIk/6yn/5ASegbjPu7jaT7DII7qjA9Pe anDdI+rRHvTwtmDRsXnEGnBLpwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPrFmEiC 6liZ0dGtsX/m7O8FJnnpMB8GA1UdIwQYMBaAFNxE7TW+vQsoMsB0/CxGqrDNaC/e MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0M0IwOS8zQjM2N0JDRTMz QjcxMUU5QUQwRjU4N0FDNEY5QUUwMi8zRVR0TmI2OUN5Z3l3SFQ4TEVhcXNNMW9M OTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNFVHROYjY5Q3lneXdIVDhMRWFxc00xb0w5NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 M0IwOS8zQjM2N0JDRTMzQjcxMUU5QUQwRjU4N0FDNEY5QUUwMi8zRVR0TmI2OUN5 Z3l3SFQ4TEVhcXNNMW9MOTQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBin4uJwZ/1lVDZ4MyWbNI9J4E9mA+pC/JZBvn4l62HtGJrVugFyXik QAWSAod/j7SbCK9HQauIF5hYAu/92SvX8vH83RH1c+qqXA87UicxRekH6mSUZKs2 JBq7kpHmozm29q0cViMTRH9vCDKXBtAgcJ7xHWnKEWgF1YZx5L2RcS4/Goby5nyN dX6OeG565LfrSNSO7MQUhF53qvN/M7IWfliy7oN2vs8YgAY8LdAATiy3Ku1zn9L8 x6PWKKKZ7WFdvboCRc6EUQOEpyc5djeesSrio2zRl5VwRwOST5XwIMAEis4WzA/H N/n2zqB+LhOKscUq2GkM6M3c4b2h+SI9 -----END CERTIFICATE-----Generated at Fri Nov 22 19:44:57 2024 by rpki-client on console-fra.rpki-client.org