$ rpki-client -vvf rpki.apnic.net/member_repository/A915370F/7346E8A2604911E2A307578D2979BB20/u1uBVrA35dIiY-rH9qEcBS_fYz8.mft File: u1uBVrA35dIiY-rH9qEcBS_fYz8.mft (raw, json) Hash identifier: 0hldMiNo5DFdvV1ywI/yToXFbxm4a9kB3o1bU6NAs9I= Subject key identifier: E2:69:3F:33:9A:A9:B3:3E:62:1A:D2:BA:FB:78:B9:79:13:07:C2:3C Authority key identifier: BB:5B:81:56:B0:37:E5:D2:22:63:EA:C7:F6:A1:1C:05:2F:DF:63:3F Certificate issuer: /CN=A915370F/serialNumber=BB5B8156B037E5D22263EAC7F6A11C052FDF633F Certificate serial: 3419 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u1uBVrA35dIiY-rH9qEcBS_fYz8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915370F/7346E8A2604911E2A307578D2979BB20/u1uBVrA35dIiY-rH9qEcBS_fYz8.mft Manifest number: 3388 Signing time: Wed 20 Nov 2024 15:21:21 +0000 Manifest this update: Wed 20 Nov 2024 15:21:21 +0000 Manifest next update: Wed 27 Nov 2024 15:21:21 +0000 Files and hashes: 1: u1uBVrA35dIiY-rH9qEcBS_fYz8.crl (hash: cXlBeUb/Qzhq32guM7x7z0K80QWL/63KpcRltO2PP4o=) 2: AA5075824F1811EFB6ECD54CC4F9AE02.roa (hash: Zt1pvdwOft/kNVYIji31PZ+Vytsn8ifr5w5B3qkwhUo=) 3: ABD794FA669A11EFAA2C7969C4F9AE02.roa (hash: N036pW0PtfBFAIVyyK5dLQ8pyR5U9JWbZRqxG+qDKMg=) 4: 47E1F234B45111EEA556091EC4F9AE02.roa (hash: ODd/KbyV1dKtPRXyiR/8CGUuMB8EdgFkSZIUAw8ZgVc=) 5: 0A5276E04BB611EE8F105367C4F9AE02.roa (hash: J2B62sMcnSdrJJbUQ/iV8zM2NMli09yKtWpghmuGGD8=) 6: BBEDAA78A71D11EF8B416C39C4F9AE02.roa (hash: AOdwsUBAT1Ck6dQAFRzgbxW2F6tARi9bmlCoXxjaKO8=) 7: 1D5CF862021A11EFB5F82E67C4F9AE02.roa (hash: CXTIWzihGeSfKhDv6c5pWmqhrZNOjKACh4DAcJVhyGM=) 8: 6159E3148BEB11ED9A3CD825C4F9AE02.roa (hash: xraItLh7Qa2azf1yhEL6lYfhMGBZEGyxS0vkvcHXR/E=) 9: D38D71F0854811EFA29BE474C4F9AE02.roa (hash: Xgtd+60aYdnuXLEAVe0xptjJAN/1QXGAUOeP3kNet1Q=) 10: 22C2A76E854811EFA776AC73C4F9AE02.roa (hash: 6GwSaRQGnjgTRlnwH4C1KZF+EfK76a1huc0miG4Eyd4=) 11: 60DB91E48BEB11ED9A3CD825C4F9AE02.roa (hash: GStxspM7rX6cVJq7TJi4F9iOLd6pT7iZHKiCRc0MCaI=) 12: 9826D5EEB45011EE829AF51CC4F9AE02.roa (hash: 5BoxLKekJFCkZTtAL7aRDOqjExsyHH7PHxs8u02byjw=) 13: F180E2B24FD011EFBC17A55DC4F9AE02.roa (hash: XPJdGMXTiNSJ2lIv20BPiYxh+vjbiml0MYgZ2GlZTM8=) 14: D28E7D62854811EFA29BE474C4F9AE02.roa (hash: FMY8wP7ZaKlO3KEOkEEigDCe9hhN9BbuBjfaDsZXUsM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915370F/7346E8A2604911E2A307578D2979BB20/u1uBVrA35dIiY-rH9qEcBS_fYz8.crl rsync://rpki.apnic.net/member_repository/A915370F/7346E8A2604911E2A307578D2979BB20/u1uBVrA35dIiY-rH9qEcBS_fYz8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u1uBVrA35dIiY-rH9qEcBS_fYz8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 15:21:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13337 (0x3419) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915370F/serialNumber=BB5B8156B037E5D22263EAC7F6A11C052FDF633F Validity Not Before: Nov 20 15:21:21 2024 GMT Not After : Nov 27 15:21:21 2024 GMT Subject: CN=673dfe71-b762 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:91:3d:c9:69:9f:b4:9a:73:85:cb:ae:a0:44: 7d:39:fa:08:ee:52:ea:15:d3:bd:9a:f4:9a:14:b3: f4:65:f1:cd:2b:4e:b1:64:42:6a:d8:a6:8e:f3:73: 5b:14:63:99:3c:56:06:4a:ce:b9:e9:b5:43:d2:4c: 08:4f:40:a4:2a:31:ec:12:7d:6b:6b:19:73:f3:ac: 7b:68:77:0c:d1:73:8a:43:39:d7:2b:1d:ab:17:69: 35:d6:ab:ed:92:31:db:31:63:93:7b:b9:23:72:87: cc:eb:8d:c8:8c:a2:8d:ec:7e:d8:c8:61:70:bd:1c: 04:45:f9:ad:f2:68:4a:a5:a5:57:b0:60:bd:53:44: bc:4b:2d:29:22:09:98:c8:d4:eb:3e:65:10:21:be: 9a:7e:6f:2e:23:ea:39:c6:24:8f:23:42:4e:12:8d: f5:e1:bf:1c:e7:98:25:cc:c3:ca:f4:87:a6:fe:19: 66:7d:8e:64:42:23:ce:81:b3:c9:f2:6e:8a:b6:27: 61:c5:c8:0f:99:02:62:68:d2:93:c0:cb:d4:a7:d8: 1f:f3:07:cd:31:dd:ab:fe:d7:d6:8a:0d:0b:72:70: 59:58:db:f0:51:63:49:bf:d2:cd:c4:ac:ce:ef:0e: 95:51:59:78:e3:cc:5e:30:0f:19:02:54:b9:cf:2c: 9a:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:69:3F:33:9A:A9:B3:3E:62:1A:D2:BA:FB:78:B9:79:13:07:C2:3C X509v3 Authority Key Identifier: keyid:BB:5B:81:56:B0:37:E5:D2:22:63:EA:C7:F6:A1:1C:05:2F:DF:63:3F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915370F/7346E8A2604911E2A307578D2979BB20/u1uBVrA35dIiY-rH9qEcBS_fYz8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u1uBVrA35dIiY-rH9qEcBS_fYz8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915370F/7346E8A2604911E2A307578D2979BB20/u1uBVrA35dIiY-rH9qEcBS_fYz8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 13:70:36:d8:78:35:c1:10:c8:ea:00:fc:1d:c7:d9:60:ef:68: db:b8:77:df:89:4b:7c:9c:b6:09:ae:fd:ab:97:7a:34:3a:69: de:af:b3:f0:22:65:c3:47:4f:6b:74:4c:81:2e:10:4c:bb:cc: a3:9a:c7:a7:61:b1:3f:2f:c9:d4:c8:56:b6:39:9c:84:27:3f: 23:27:a0:ba:1e:8b:61:c6:7c:4f:24:b2:7d:4b:1b:31:5e:1e: 0d:1c:43:b7:2d:bc:95:30:31:20:ea:48:bd:2d:55:6a:22:77: df:60:ba:06:dc:5e:52:50:4a:9c:2a:d1:c3:4e:0d:db:35:51: 1e:d8:06:25:26:f1:8c:cb:86:79:af:9b:b7:da:ca:40:d9:0f: 94:ea:62:b2:73:f8:40:d4:97:69:fe:03:72:56:09:81:52:9d: ea:12:63:8f:f6:0a:b9:50:bf:01:31:c2:0d:e4:4d:a6:c9:eb: 7e:ad:c4:8c:53:38:23:45:fa:36:8b:05:d5:e3:dc:a4:e6:93: ef:85:50:f8:c1:83:81:da:37:f2:c6:a5:53:de:0d:43:77:e9: 1c:38:ba:59:11:c6:8f:aa:03:0c:e5:8b:e8:24:62:de:6d:a0: 18:9f:04:b1:6e:19:a8:14:b0:03:36:90:33:b6:13:f6:fe:10: 54:7b:6d:41 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNBkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTM3MEYxMTAvBgNVBAUTKEJCNUI4MTU2QjAzN0U1RDIyMjYzRUFDN0Y2QTExQzA1 MkZERjYzM0YwHhcNMjQxMTIwMTUyMTIxWhcNMjQxMTI3MTUyMTIxWjAYMRYwFAYD VQQDEw02NzNkZmU3MS1iNzYyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwZE9yWmftJpzhcuuoER9OfoI7lLqFdO9mvSaFLP0ZfHNK06xZEJq2KaO83Nb FGOZPFYGSs656bVD0kwIT0CkKjHsEn1raxlz86x7aHcM0XOKQznXKx2rF2k11qvt kjHbMWOTe7kjcofM643IjKKN7H7YyGFwvRwERfmt8mhKpaVXsGC9U0S8Sy0pIgmY yNTrPmUQIb6afm8uI+o5xiSPI0JOEo314b8c55glzMPK9Iem/hlmfY5kQiPOgbPJ 8m6KtidhxcgPmQJiaNKTwMvUp9gf8wfNMd2r/tfWig0LcnBZWNvwUWNJv9LNxKzO 7w6VUVl448xeMA8ZAlS5zyyagwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOJpPzOa qbM+YhrSuvt4uXkTB8I8MB8GA1UdIwQYMBaAFLtbgVawN+XSImPqx/ahHAUv32M/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MzcwRi83MzQ2RThBMjYw NDkxMUUyQTMwNzU3OEQyOTc5QkIyMC91MXVCVnJBMzVkSWlZLXJIOXFFY0JTX2ZZ ejguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3UxdUJWckEzNWRJaVktckg5cUVjQlNfZll6OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MzcwRi83MzQ2RThBMjYwNDkxMUUyQTMwNzU3OEQyOTc5QkIyMC91MXVCVnJBMzVk SWlZLXJIOXFFY0JTX2ZZejgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQATcDbYeDXBEMjqAPwdx9lg72jbuHffiUt8nLYJrv2rl3o0Omner7Pw ImXDR09rdEyBLhBMu8yjmsenYbE/L8nUyFa2OZyEJz8jJ6C6HothxnxPJLJ9Sxsx Xh4NHEO3LbyVMDEg6ki9LVVqInffYLoG3F5SUEqcKtHDTg3bNVEe2AYlJvGMy4Z5 r5u32spA2Q+U6mKyc/hA1Jdp/gNyVgmBUp3qEmOP9gq5UL8BMcIN5E2myet+rcSM UzgjRfo2iwXV49yk5pPvhVD4wYOB2jfyxqVT3g1Dd+kcOLpZEcaPqgMM5YvoJGLe baAYnwSxbhmoFLADNpAzthP2/hBUe21B -----END CERTIFICATE-----Generated at Wed Nov 20 19:05:18 2024 by rpki-client on console-ams.rpki-client.org