$ rpki-client -vvf rpki.apnic.net/member_repository/A9158568/D3130676185711EA9863415EC4F9AE02/3yU0hNzlLEE3y9HI7UTZyyVX9D8.mft File: 3yU0hNzlLEE3y9HI7UTZyyVX9D8.mft (raw, json) Hash identifier: P0/4gCo3uM86uuieFz9AVCXchblBWTcYgCuzqVf/8XU= Subject key identifier: 7B:3C:16:B0:84:91:B2:EB:86:4D:C1:8B:2C:AC:28:03:06:F1:4E:4E Authority key identifier: DF:25:34:84:DC:E5:2C:41:37:CB:D1:C8:ED:44:D9:CB:25:57:F4:3F Certificate issuer: /CN=A9158568/serialNumber=DF253484DCE52C4137CBD1C8ED44D9CB2557F43F Certificate serial: 0BA3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3yU0hNzlLEE3y9HI7UTZyyVX9D8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9158568/D3130676185711EA9863415EC4F9AE02/3yU0hNzlLEE3y9HI7UTZyyVX9D8.mft Manifest number: 0B8A Signing time: Fri 22 Nov 2024 18:47:13 +0000 Manifest this update: Fri 22 Nov 2024 18:47:12 +0000 Manifest next update: Fri 29 Nov 2024 18:47:12 +0000 Files and hashes: 1: 3yU0hNzlLEE3y9HI7UTZyyVX9D8.crl (hash: r4NrbCk0nNOwHR6wRFZ9gUuC8t+Xf8jhMX/rZJNjog0=) 2: 3A5A84F8CB7111EBA9EEF440C4F9AE02.roa (hash: reHdzW246NVqAWZCq6Q5QnJEXEf29dnZorkiuo7WYZA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9158568/D3130676185711EA9863415EC4F9AE02/3yU0hNzlLEE3y9HI7UTZyyVX9D8.crl rsync://rpki.apnic.net/member_repository/A9158568/D3130676185711EA9863415EC4F9AE02/3yU0hNzlLEE3y9HI7UTZyyVX9D8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3yU0hNzlLEE3y9HI7UTZyyVX9D8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 18:47:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2979 (0xba3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9158568/serialNumber=DF253484DCE52C4137CBD1C8ED44D9CB2557F43F Validity Not Before: Nov 22 18:47:12 2024 GMT Not After : Nov 29 18:47:12 2024 GMT Subject: CN=6740d1b0-d4e9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:e9:df:9a:56:9b:70:63:81:d9:2b:ce:4b:97: 11:99:a6:b2:4f:e1:7f:7f:da:94:3d:76:54:8a:8c: 68:ce:b7:61:f3:a0:0b:92:56:48:eb:bb:71:43:63: fd:3d:f0:cf:ad:f4:c9:29:8e:1b:d7:82:6f:5f:e7: 8f:2e:33:fb:3b:02:19:87:71:e6:74:49:22:5a:71: 44:b6:08:0c:0f:29:e4:24:f7:5a:43:45:ee:59:72: 7e:2c:02:ae:5a:84:b7:ab:5e:c1:fd:2d:2a:24:9a: 72:86:b4:2b:29:6d:c0:67:b4:c1:dd:e5:3f:56:c3: 95:c7:1a:5a:24:0c:55:89:28:3b:f6:da:ef:04:86: 80:f3:5c:f6:51:4f:db:78:9a:a4:ec:f8:ff:d7:cc: 8e:a2:c8:96:3e:d7:c2:f2:cb:ef:1e:52:f7:92:d9: 93:b2:e3:dc:ea:0d:6d:1d:ea:ff:fc:8d:e1:c8:fa: de:52:2d:7c:dc:f3:4b:9f:7f:fb:6c:30:0c:5e:7a: ce:b9:19:41:a5:5f:57:50:e2:7b:96:ca:e0:55:4a: 8d:62:4d:58:0e:9f:65:ac:aa:b8:a1:a9:2d:22:1b: 64:f6:86:bf:98:0d:09:1e:27:3e:dc:d0:21:2b:11: fe:c4:3c:82:80:ec:27:b0:2c:b5:3c:fb:0a:71:6d: 0e:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:3C:16:B0:84:91:B2:EB:86:4D:C1:8B:2C:AC:28:03:06:F1:4E:4E X509v3 Authority Key Identifier: keyid:DF:25:34:84:DC:E5:2C:41:37:CB:D1:C8:ED:44:D9:CB:25:57:F4:3F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9158568/D3130676185711EA9863415EC4F9AE02/3yU0hNzlLEE3y9HI7UTZyyVX9D8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3yU0hNzlLEE3y9HI7UTZyyVX9D8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9158568/D3130676185711EA9863415EC4F9AE02/3yU0hNzlLEE3y9HI7UTZyyVX9D8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 30:6b:da:85:51:9c:d5:1a:db:fc:9a:01:d9:27:44:db:55:0f: 57:6b:d4:8a:bb:ee:be:d1:d1:6c:8e:f7:ca:b0:cc:1e:dc:06: 3c:d7:86:c6:71:df:9b:03:e2:19:aa:d5:8a:41:10:2d:08:bc: 5c:10:46:f8:1b:6f:d0:3c:26:67:33:bb:a9:c7:63:26:a9:69: 88:91:da:00:de:9b:53:00:b2:37:3a:cf:2b:ef:65:62:c9:cc: b1:8b:8a:a8:97:2f:19:2c:0a:11:c7:6d:74:82:87:ff:0b:5a: 07:2d:4c:0f:cb:29:0b:6d:f1:39:e6:d3:b6:d4:78:f3:d7:66: 6c:8c:7f:62:a1:7a:68:59:e0:45:df:9c:33:4a:1d:75:3a:66: 91:8f:16:28:0f:cf:b6:21:b8:d7:f7:e4:ff:a0:7d:19:d9:54: 21:cc:00:31:0f:a7:85:4c:0f:6e:c2:ed:f0:cb:a0:20:52:99: 36:ae:d2:5a:50:16:1a:fe:0c:da:54:9e:ab:c2:b6:90:3d:ef: e3:ee:14:9e:2d:f2:46:cc:99:bd:4f:40:3a:cb:73:8a:b2:78: 43:4c:e8:2f:8c:6f:71:64:97:8b:4c:f9:20:97:8c:5d:57:ba: 3a:40:79:c7:fe:0a:5b:05:fd:b5:cf:c6:25:3b:36:79:9d:86: e5:47:95:61 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC6MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTg1NjgxMTAvBgNVBAUTKERGMjUzNDg0RENFNTJDNDEzN0NCRDFDOEVENDREOUNC MjU1N0Y0M0YwHhcNMjQxMTIyMTg0NzEyWhcNMjQxMTI5MTg0NzEyWjAYMRYwFAYD VQQDEw02NzQwZDFiMC1kNGU5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzunfmlabcGOB2SvOS5cRmaayT+F/f9qUPXZUioxozrdh86ALklZI67txQ2P9 PfDPrfTJKY4b14JvX+ePLjP7OwIZh3HmdEkiWnFEtggMDynkJPdaQ0XuWXJ+LAKu WoS3q17B/S0qJJpyhrQrKW3AZ7TB3eU/VsOVxxpaJAxViSg79trvBIaA81z2UU/b eJqk7Pj/18yOosiWPtfC8svvHlL3ktmTsuPc6g1tHer//I3hyPreUi183PNLn3/7 bDAMXnrOuRlBpV9XUOJ7lsrgVUqNYk1YDp9lrKq4oaktIhtk9oa/mA0JHic+3NAh KxH+xDyCgOwnsCy1PPsKcW0O+wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHs8FrCE kbLrhk3BiyysKAMG8U5OMB8GA1UdIwQYMBaAFN8lNITc5SxBN8vRyO1E2cslV/Q/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1ODU2OC9EMzEzMDY3NjE4 NTcxMUVBOTg2MzQxNUVDNEY5QUUwMi8zeVUwaE56bExFRTN5OUhJN1VUWnl5Vlg5 RDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzN5VTBoTnpsTEVFM3k5SEk3VVRaeXlWWDlEOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 ODU2OC9EMzEzMDY3NjE4NTcxMUVBOTg2MzQxNUVDNEY5QUUwMi8zeVUwaE56bExF RTN5OUhJN1VUWnl5Vlg5RDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAwa9qFUZzVGtv8mgHZJ0TbVQ9Xa9SKu+6+0dFsjvfKsMwe3AY814bG cd+bA+IZqtWKQRAtCLxcEEb4G2/QPCZnM7upx2MmqWmIkdoA3ptTALI3Os8r72Vi ycyxi4qoly8ZLAoRx210gof/C1oHLUwPyykLbfE55tO21Hjz12ZsjH9ioXpoWeBF 35wzSh11OmaRjxYoD8+2IbjX9+T/oH0Z2VQhzAAxD6eFTA9uwu3wy6AgUpk2rtJa UBYa/gzaVJ6rwraQPe/j7hSeLfJGzJm9T0A6y3OKsnhDTOgvjG9xZJeLTPkgl4xd V7o6QHnH/gpbBf21z8YlOzZ5nYblR5Vh -----END CERTIFICATE-----Generated at Fri Nov 22 19:44:58 2024 by rpki-client on console-fra.rpki-client.org