$ rpki-client -vvf rpki.apnic.net/member_repository/A91658EF/D24337964AEC11E88417F34AC4F9AE02/3dU_UiXtL42o0J56rZgsgLbOrag.mft File: 3dU_UiXtL42o0J56rZgsgLbOrag.mft (raw, json) Hash identifier: RAhh2cjj66yDRLs19Zkp6r3MEvWG+rRPa8CKEP1CR08= Subject key identifier: 50:E6:52:17:AD:24:EE:7F:CA:33:E4:97:1F:CC:5D:67:B3:8A:F8:42 Authority key identifier: DD:D5:3F:52:25:ED:2F:8D:A8:D0:9E:7A:AD:98:2C:80:B6:CE:AD:A8 Certificate issuer: /CN=A91658EF/serialNumber=DDD53F5225ED2F8DA8D09E7AAD982C80B6CEADA8 Certificate serial: 0722 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3dU_UiXtL42o0J56rZgsgLbOrag.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91658EF/D24337964AEC11E88417F34AC4F9AE02/3dU_UiXtL42o0J56rZgsgLbOrag.mft Manifest number: 2A5F Signing time: Fri 22 Nov 2024 16:51:47 +0000 Manifest this update: Fri 22 Nov 2024 16:51:46 +0000 Manifest next update: Fri 29 Nov 2024 16:51:46 +0000 Files and hashes: 1: 3dU_UiXtL42o0J56rZgsgLbOrag.crl (hash: KE0BQPM2X43VRTH4DuhqqIl+eSp4cIqMESodBaEtgM4=) 2: A076FA54BD2B11EBA3874022C4F9AE02.roa (hash: rECWrESPi1Gsv9lGCcHvMxOXH5JRYUB6cIjdJabfsHc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91658EF/D24337964AEC11E88417F34AC4F9AE02/3dU_UiXtL42o0J56rZgsgLbOrag.crl rsync://rpki.apnic.net/member_repository/A91658EF/D24337964AEC11E88417F34AC4F9AE02/3dU_UiXtL42o0J56rZgsgLbOrag.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3dU_UiXtL42o0J56rZgsgLbOrag.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 16:30:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1826 (0x722) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91658EF/serialNumber=DDD53F5225ED2F8DA8D09E7AAD982C80B6CEADA8 Validity Not Before: Nov 22 16:51:46 2024 GMT Not After : Nov 29 16:51:46 2024 GMT Subject: CN=6740b6a2-e2c6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:47:42:ca:09:45:ba:ff:77:3c:a2:44:88:19: e0:81:f5:1b:0b:3b:82:51:db:48:59:25:1c:fa:a5: 96:cc:e4:92:76:2c:f2:fa:0a:f3:39:21:ee:46:94: 8f:8b:73:5c:0b:ce:3c:67:07:3c:00:2c:7a:9b:d7: 1a:15:8b:dd:eb:bd:52:b5:06:56:73:32:20:d2:12: 3a:0d:1f:d4:e2:2a:0d:90:ec:5c:33:6d:d7:ca:f1: 4c:71:2e:1d:ce:e0:d5:4f:90:38:fb:e5:6c:97:f2: 2b:9a:62:1b:fd:cb:8c:b4:f0:10:33:65:2b:06:c5: 56:0d:a8:a3:17:c4:f6:14:60:5c:85:2d:a4:0d:27: 93:f9:2a:49:45:20:90:01:92:d7:66:d7:58:07:29: 33:e8:08:23:cd:e9:e2:39:fd:a0:4c:be:82:02:91: f9:4f:cf:2c:cf:7c:cc:20:ca:a8:6d:c4:21:7b:14: 6b:4d:61:8b:e3:ab:b0:d7:ef:3a:93:c6:9b:0b:59: 1c:92:1c:b8:ae:bc:9f:b5:70:b6:88:6f:cb:e7:02: 53:0b:c9:92:29:11:cd:08:23:4c:82:0f:01:a3:5d: 74:a9:37:03:de:5a:c5:d4:43:26:82:e7:7b:de:dd: cd:b1:39:22:9d:a2:21:32:ef:5f:5d:51:96:2d:55: c2:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:E6:52:17:AD:24:EE:7F:CA:33:E4:97:1F:CC:5D:67:B3:8A:F8:42 X509v3 Authority Key Identifier: keyid:DD:D5:3F:52:25:ED:2F:8D:A8:D0:9E:7A:AD:98:2C:80:B6:CE:AD:A8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91658EF/D24337964AEC11E88417F34AC4F9AE02/3dU_UiXtL42o0J56rZgsgLbOrag.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3dU_UiXtL42o0J56rZgsgLbOrag.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91658EF/D24337964AEC11E88417F34AC4F9AE02/3dU_UiXtL42o0J56rZgsgLbOrag.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 33:b4:73:5c:9b:65:82:93:85:11:9b:14:df:38:74:87:d1:20: 79:1a:15:b0:3a:e1:0c:85:db:b1:a4:14:67:47:a3:ac:21:6b: 99:17:25:d4:27:2e:4c:af:d1:60:3b:37:e7:9b:ea:c0:29:32: 52:e9:f8:95:28:46:26:71:82:5e:b2:a9:64:bd:17:51:f1:14: ff:d2:70:3e:fc:34:81:2c:16:23:09:07:c8:43:0d:42:d7:d9: 2a:85:f8:f6:43:6d:64:a0:1b:b5:58:c3:75:5e:72:57:71:bd: b8:7e:7c:f0:3d:93:70:e3:01:d1:7d:1c:9d:1b:d2:94:13:aa: d1:87:2a:23:f3:2f:e6:4b:ab:11:fc:00:f2:c5:ec:a9:50:10: 06:57:e3:07:f1:80:c7:bf:94:ff:94:f1:f9:79:98:ac:54:42: 7e:50:b3:8f:62:06:67:5a:01:bf:e8:0d:8d:79:24:9c:5a:ce: 5d:38:6a:14:b9:5c:d5:71:a3:48:a9:78:39:01:1d:29:f0:cf: 45:de:36:a8:f2:61:b3:da:d1:b9:e4:9d:a8:77:01:b4:61:b8: 52:23:51:9a:24:cc:49:8e:df:2d:8d:b1:25:3d:5f:e5:60:0d: 41:10:d7:da:ff:40:a2:c0:60:72:56:54:40:41:39:8f:88:95: d4:2f:45:91 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICByIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjU4RUYxMTAvBgNVBAUTKERERDUzRjUyMjVFRDJGOERBOEQwOUU3QUFEOTgyQzgw QjZDRUFEQTgwHhcNMjQxMTIyMTY1MTQ2WhcNMjQxMTI5MTY1MTQ2WjAYMRYwFAYD VQQDEw02NzQwYjZhMi1lMmM2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA20dCyglFuv93PKJEiBnggfUbCzuCUdtIWSUc+qWWzOSSdizy+grzOSHuRpSP i3NcC848Zwc8ACx6m9caFYvd671StQZWczIg0hI6DR/U4ioNkOxcM23XyvFMcS4d zuDVT5A4++Vsl/IrmmIb/cuMtPAQM2UrBsVWDaijF8T2FGBchS2kDSeT+SpJRSCQ AZLXZtdYBykz6AgjzeniOf2gTL6CApH5T88sz3zMIMqobcQhexRrTWGL46uw1+86 k8abC1kckhy4rryftXC2iG/L5wJTC8mSKRHNCCNMgg8Bo110qTcD3lrF1EMmgud7 3t3NsTkinaIhMu9fXVGWLVXCqwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFDmUhet JO5/yjPklx/MXWezivhCMB8GA1UdIwQYMBaAFN3VP1Il7S+NqNCeeq2YLIC2zq2o MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NThFRi9EMjQzMzc5NjRB RUMxMUU4ODQxN0YzNEFDNEY5QUUwMi8zZFVfVWlYdEw0Mm8wSjU2clpnc2dMYk9y YWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNkVV9VaVh0TDQybzBKNTZyWmdzZ0xiT3JhZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NThFRi9EMjQzMzc5NjRBRUMxMUU4ODQxN0YzNEFDNEY5QUUwMi8zZFVfVWlYdEw0 Mm8wSjU2clpnc2dMYk9yYWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAztHNcm2WCk4URmxTfOHSH0SB5GhWwOuEMhduxpBRnR6OsIWuZFyXU Jy5Mr9FgOzfnm+rAKTJS6fiVKEYmcYJesqlkvRdR8RT/0nA+/DSBLBYjCQfIQw1C 19kqhfj2Q21koBu1WMN1XnJXcb24fnzwPZNw4wHRfRydG9KUE6rRhyoj8y/mS6sR /ADyxeypUBAGV+MH8YDHv5T/lPH5eZisVEJ+ULOPYgZnWgG/6A2NeSScWs5dOGoU uVzVcaNIqXg5AR0p8M9F3jao8mGz2tG55J2odwG0YbhSI1GaJMxJjt8tjbElPV/l YA1BENfa/0CiwGByVlRAQTmPiJXUL0WR -----END CERTIFICATE-----Generated at Fri Nov 22 17:55:47 2024 by rpki-client on console-fra.rpki-client.org