$ rpki-client -vvf rpki.apnic.net/member_repository/A91560A3/E4DF96AAFDF811E8AD2C1262C4F9AE02/Di3qFP18_9DQqeo-N0N7keRUsjY.mft File: Di3qFP18_9DQqeo-N0N7keRUsjY.mft (raw, json) Hash identifier: vcNeU6pyr7xbXjg0J5vnn76BvwmGAhvFgotSt70AwYs= Subject key identifier: 53:BB:F9:8D:32:C7:21:33:86:EB:CB:5B:5A:36:08:D0:CD:40:99:97 Authority key identifier: 0E:2D:EA:14:FD:7C:FF:D0:D0:A9:EA:3E:37:43:7B:91:E4:54:B2:36 Certificate issuer: /CN=A91560A3/serialNumber=0E2DEA14FD7CFFD0D0A9EA3E37437B91E454B236 Certificate serial: 111D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Di3qFP18_9DQqeo-N0N7keRUsjY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91560A3/E4DF96AAFDF811E8AD2C1262C4F9AE02/Di3qFP18_9DQqeo-N0N7keRUsjY.mft Manifest number: 1118 Signing time: Fri 22 Nov 2024 17:16:23 +0000 Manifest this update: Fri 22 Nov 2024 17:16:23 +0000 Manifest next update: Fri 29 Nov 2024 17:16:23 +0000 Files and hashes: 1: Di3qFP18_9DQqeo-N0N7keRUsjY.crl (hash: xfunc0K67bc99qZlr+LFp267C2hJqFD0E0onUbIgTtE=) 2: 2245CE0A606811EB80E3D531C4F9AE02.roa (hash: n0eE4w1ioXiku75wdXVIUXgqTRR1ty++Snk078GZCnM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91560A3/E4DF96AAFDF811E8AD2C1262C4F9AE02/Di3qFP18_9DQqeo-N0N7keRUsjY.crl rsync://rpki.apnic.net/member_repository/A91560A3/E4DF96AAFDF811E8AD2C1262C4F9AE02/Di3qFP18_9DQqeo-N0N7keRUsjY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Di3qFP18_9DQqeo-N0N7keRUsjY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 17:16:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4381 (0x111d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91560A3/serialNumber=0E2DEA14FD7CFFD0D0A9EA3E37437B91E454B236 Validity Not Before: Nov 22 17:16:23 2024 GMT Not After : Nov 29 17:16:23 2024 GMT Subject: CN=6740bc67-f68b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:b2:05:a0:58:2a:9e:66:99:3f:e8:e1:68:f4: 36:9d:d5:64:51:b8:f0:be:6d:c3:14:db:4d:a9:9a: d7:7c:f7:80:b6:d3:cd:6f:6b:00:7e:3a:f4:1a:ad: d4:cd:6f:00:79:ff:24:b1:85:f0:6a:bc:ad:20:86: 02:6d:c8:8d:7f:f6:79:69:a4:ed:2d:d8:44:4a:57: 86:5c:86:b1:0a:1a:0c:fd:63:3a:29:b9:4a:72:3d: 7a:f5:f5:ad:1c:d6:7f:d8:2c:46:3d:d4:33:2d:05: 3d:54:e6:b8:b3:87:68:e4:f1:14:b3:c2:ba:b9:b6: 5b:a3:8c:40:5d:13:f8:dd:8c:2c:18:57:60:65:24: 64:5a:26:f5:c9:a4:4b:c9:9c:e7:5f:12:36:6e:e7: 5c:17:4a:4c:38:8b:5a:eb:0b:08:dc:79:53:c7:02: e0:6d:c2:dd:f1:43:bb:49:01:46:11:c2:a7:4c:62: df:8d:55:ac:bc:b6:6b:6b:75:f7:17:f6:70:43:3e: a1:e0:b7:9b:1e:fb:5f:8b:3f:ce:46:5c:50:9e:3e: ae:11:ef:6f:1f:87:24:75:f0:10:23:f2:eb:7c:4c: a3:cf:f9:de:ba:94:f0:9b:64:12:ef:d2:59:6f:33: 62:d2:ad:26:9b:e6:34:e3:b5:66:02:cf:09:a2:d7: 62:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:BB:F9:8D:32:C7:21:33:86:EB:CB:5B:5A:36:08:D0:CD:40:99:97 X509v3 Authority Key Identifier: keyid:0E:2D:EA:14:FD:7C:FF:D0:D0:A9:EA:3E:37:43:7B:91:E4:54:B2:36 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91560A3/E4DF96AAFDF811E8AD2C1262C4F9AE02/Di3qFP18_9DQqeo-N0N7keRUsjY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Di3qFP18_9DQqeo-N0N7keRUsjY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91560A3/E4DF96AAFDF811E8AD2C1262C4F9AE02/Di3qFP18_9DQqeo-N0N7keRUsjY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5e:85:83:30:37:51:28:a5:05:0a:92:fe:fc:da:12:9d:23:fd: 43:a7:52:8d:d0:8e:57:a2:fe:1b:9c:ea:23:90:ab:28:f4:77: 35:99:7c:5b:08:f4:c3:b9:4c:73:96:35:50:4a:fd:99:32:76: 18:af:57:a8:81:d4:be:30:b9:d4:ef:c3:77:d7:2d:51:73:9c: 59:eb:7f:72:da:9a:c0:59:39:b1:bd:e3:00:8e:fc:6e:fe:9d: 38:f1:01:a6:ae:5a:b8:32:c2:b5:30:7e:f6:e1:d2:64:e6:5b: 64:33:00:ae:4f:d2:22:3b:61:28:32:c4:af:80:85:e8:10:6b: 56:9c:e6:06:7a:07:16:78:c9:13:22:91:89:70:cd:c2:e5:29: fa:45:d9:49:b9:2d:d7:4a:37:c2:37:39:58:d3:ad:9d:fa:ac: e9:eb:b7:a4:d5:69:f8:c2:f7:1c:fc:89:0a:ca:fe:b4:4d:cf: 33:fb:a2:27:f0:00:6c:2c:f0:ca:70:eb:9d:81:c7:50:d2:fe: 13:9b:e4:c0:58:67:d3:65:cf:4d:40:83:56:f4:f1:dd:60:00: 5d:f0:28:28:94:ac:aa:e1:bd:6c:21:77:b2:42:b6:8b:52:29: ad:f2:45:ce:df:43:0e:2c:d9:75:43:8f:ce:c5:c9:dd:11:00: 63:d4:cb:46 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICER0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTYwQTMxMTAvBgNVBAUTKDBFMkRFQTE0RkQ3Q0ZGRDBEMEE5RUEzRTM3NDM3Qjkx RTQ1NEIyMzYwHhcNMjQxMTIyMTcxNjIzWhcNMjQxMTI5MTcxNjIzWjAYMRYwFAYD VQQDEw02NzQwYmM2Ny1mNjhiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0rIFoFgqnmaZP+jhaPQ2ndVkUbjwvm3DFNtNqZrXfPeAttPNb2sAfjr0Gq3U zW8Aef8ksYXwarytIIYCbciNf/Z5aaTtLdhESleGXIaxChoM/WM6KblKcj169fWt HNZ/2CxGPdQzLQU9VOa4s4do5PEUs8K6ubZbo4xAXRP43YwsGFdgZSRkWib1yaRL yZznXxI2budcF0pMOIta6wsI3HlTxwLgbcLd8UO7SQFGEcKnTGLfjVWsvLZra3X3 F/ZwQz6h4LebHvtfiz/ORlxQnj6uEe9vH4ckdfAQI/LrfEyjz/neupTwm2QS79JZ bzNi0q0mm+Y047VmAs8Jotdi8QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFO7+Y0y xyEzhuvLW1o2CNDNQJmXMB8GA1UdIwQYMBaAFA4t6hT9fP/Q0KnqPjdDe5HkVLI2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NjBBMy9FNERGOTZBQUZE RjgxMUU4QUQyQzEyNjJDNEY5QUUwMi9EaTNxRlAxOF85RFFxZW8tTjBON2tlUlVz alkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0RpM3FGUDE4XzlEUXFlby1OME43a2VSVXNqWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NjBBMy9FNERGOTZBQUZERjgxMUU4QUQyQzEyNjJDNEY5QUUwMi9EaTNxRlAxOF85 RFFxZW8tTjBON2tlUlVzalkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBehYMwN1EopQUKkv782hKdI/1Dp1KN0I5Xov4bnOojkKso9Hc1mXxb CPTDuUxzljVQSv2ZMnYYr1eogdS+MLnU78N31y1Rc5xZ639y2prAWTmxveMAjvxu /p048QGmrlq4MsK1MH724dJk5ltkMwCuT9IiO2EoMsSvgIXoEGtWnOYGegcWeMkT IpGJcM3C5Sn6RdlJuS3XSjfCNzlY062d+qzp67ek1Wn4wvcc/IkKyv60Tc8z+6In 8ABsLPDKcOudgcdQ0v4Tm+TAWGfTZc9NQINW9PHdYABd8CgolKyq4b1sIXeyQraL Uimt8kXO30MOLNl1Q4/OxcndEQBj1MtG -----END CERTIFICATE-----Generated at Fri Nov 22 19:50:03 2024 by rpki-client on console-ams.rpki-client.org