$ rpki-client -vvf rpki.apnic.net/member_repository/A9171753/805145901DA711E2AAA94AA108B02CD2/pm3QENok34rhcGvZCMukO9E4ljE.mft File: pm3QENok34rhcGvZCMukO9E4ljE.mft (raw, json) Hash identifier: m3TJJp/HcBAWroo60jXPXLLrDvXLt+oWSJ9XIsLUuEY= Subject key identifier: 60:21:61:57:09:AF:6F:4B:71:0F:44:72:11:84:93:08:19:93:C2:A3 Authority key identifier: A6:6D:D0:10:DA:24:DF:8A:E1:70:6B:D9:08:CB:A4:3B:D1:38:96:31 Certificate issuer: /CN=A9171753/serialNumber=A66DD010DA24DF8AE1706BD908CBA43BD1389631 Certificate serial: 342D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pm3QENok34rhcGvZCMukO9E4ljE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9171753/805145901DA711E2AAA94AA108B02CD2/pm3QENok34rhcGvZCMukO9E4ljE.mft Manifest number: 3425 Signing time: Fri 22 Nov 2024 15:15:21 +0000 Manifest this update: Fri 22 Nov 2024 15:15:20 +0000 Manifest next update: Fri 29 Nov 2024 15:15:20 +0000 Files and hashes: 1: pm3QENok34rhcGvZCMukO9E4ljE.crl (hash: nqFWXmdy6xt08o0AwVGiPA6aj9/S7V1cEeZWNOpHrmc=) 2: DE670A60679D11EEAFBA0A5DC4F9AE02.roa (hash: AygiHoU1IFD//9GEToamhrQ4V5egxIt3wESECTmc63Q=) 3: C92F5F8077A211EDAF94D63EC4F9AE02.roa (hash: XEVDVSbkGW1XL4im1YgJ/xk7H57wudyi6662QWrqYro=) 4: 41623A12778111ED8F236A62C4F9AE02.roa (hash: TaxImBm3ML6L93bSf7LgCo2dDuHN+GnT1SSfjdrYDbs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9171753/805145901DA711E2AAA94AA108B02CD2/pm3QENok34rhcGvZCMukO9E4ljE.crl rsync://rpki.apnic.net/member_repository/A9171753/805145901DA711E2AAA94AA108B02CD2/pm3QENok34rhcGvZCMukO9E4ljE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pm3QENok34rhcGvZCMukO9E4ljE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 15:15:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13357 (0x342d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9171753/serialNumber=A66DD010DA24DF8AE1706BD908CBA43BD1389631 Validity Not Before: Nov 22 15:15:20 2024 GMT Not After : Nov 29 15:15:20 2024 GMT Subject: CN=6740a008-a264 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:7d:23:c5:3d:d8:84:0d:b1:94:69:5a:32:57: 41:93:63:3c:21:aa:d2:77:73:51:9b:ab:48:3c:31: d5:30:94:a9:d4:10:2b:28:36:6c:0c:f1:c6:6c:cc: 3f:02:99:a3:9f:9c:e4:fb:98:8c:0b:43:09:6a:2d: 23:98:e7:11:d2:9b:59:c2:e6:a5:c8:8a:c1:d0:92: 03:2e:79:d9:ef:b1:f0:70:68:59:df:48:bf:93:53: fd:15:eb:fd:43:9d:b9:71:9a:f7:cb:2a:b9:94:a1: 6a:9d:a7:b1:f6:72:24:98:f3:51:b1:74:28:f0:46: 3b:48:aa:72:60:58:0e:54:35:51:16:a9:33:c2:6c: 25:07:b7:7c:eb:9e:b0:b9:97:86:d4:96:19:08:94: fe:2e:6e:e6:1c:4d:42:b6:0b:39:42:91:32:39:d8: 7b:90:0d:e0:53:61:fe:07:bb:04:08:41:4e:95:22: 11:8b:c5:a7:c9:31:33:16:7a:ca:d8:6c:a4:37:42: 3c:d6:87:66:cf:71:42:3e:2e:06:42:04:5c:f2:c2: cd:ff:73:80:46:dc:31:9d:59:1e:39:aa:17:13:39: 01:86:2b:08:32:c4:97:c5:20:51:03:84:1c:db:43: b5:62:47:46:1a:be:f9:4d:a8:72:24:e0:02:77:cb: d1:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:21:61:57:09:AF:6F:4B:71:0F:44:72:11:84:93:08:19:93:C2:A3 X509v3 Authority Key Identifier: keyid:A6:6D:D0:10:DA:24:DF:8A:E1:70:6B:D9:08:CB:A4:3B:D1:38:96:31 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9171753/805145901DA711E2AAA94AA108B02CD2/pm3QENok34rhcGvZCMukO9E4ljE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pm3QENok34rhcGvZCMukO9E4ljE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9171753/805145901DA711E2AAA94AA108B02CD2/pm3QENok34rhcGvZCMukO9E4ljE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 14:42:18:37:35:17:c9:70:e4:00:9c:18:36:51:26:d8:c2:e2: 30:57:d3:1e:fb:fe:1d:eb:75:56:ae:2b:9a:fa:9a:3c:dc:4d: da:1d:f0:71:a5:a2:05:0e:4c:fc:a2:cf:29:a1:14:ce:6e:09: 8c:10:e3:14:96:21:e5:ba:79:fe:cf:ea:12:84:a7:b8:88:c4: 48:8d:19:9f:85:97:c7:cb:cc:7e:dc:4a:5b:93:76:0b:c1:fc: 51:69:0e:13:2e:0e:01:ed:62:6b:a3:68:92:1f:81:34:9d:9c: 8a:43:00:1a:ca:0b:32:49:52:dc:2a:98:fb:55:8e:94:e0:37: 48:6d:27:53:e2:5d:2f:7d:ac:85:f0:70:5f:2b:8f:c3:99:2f: 53:7b:73:c9:e3:70:b5:1c:52:08:1e:54:28:65:87:0d:34:a8: fa:80:6d:56:c5:19:37:3f:95:ac:7c:38:76:0f:38:06:0e:bb: 9e:cb:64:97:e0:55:0c:a1:e4:f7:14:8f:d5:0a:b4:84:d0:87: 0a:76:56:2c:42:68:38:f2:1c:b5:f5:7e:f9:5e:45:96:65:2f: 75:78:9d:53:c4:1a:2b:e0:85:e6:b1:42:a5:85:68:4a:ce:23: d5:bc:ba:26:82:db:e2:6e:68:6d:a6:12:d9:d1:09:8c:ec:88: 14:32:0f:23 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNC0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzE3NTMxMTAvBgNVBAUTKEE2NkREMDEwREEyNERGOEFFMTcwNkJEOTA4Q0JBNDNC RDEzODk2MzEwHhcNMjQxMTIyMTUxNTIwWhcNMjQxMTI5MTUxNTIwWjAYMRYwFAYD VQQDEw02NzQwYTAwOC1hMjY0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4X0jxT3YhA2xlGlaMldBk2M8IarSd3NRm6tIPDHVMJSp1BArKDZsDPHGbMw/ Apmjn5zk+5iMC0MJai0jmOcR0ptZwualyIrB0JIDLnnZ77HwcGhZ30i/k1P9Fev9 Q525cZr3yyq5lKFqnaex9nIkmPNRsXQo8EY7SKpyYFgOVDVRFqkzwmwlB7d8656w uZeG1JYZCJT+Lm7mHE1Ctgs5QpEyOdh7kA3gU2H+B7sECEFOlSIRi8WnyTEzFnrK 2GykN0I81odmz3FCPi4GQgRc8sLN/3OARtwxnVkeOaoXEzkBhisIMsSXxSBRA4Qc 20O1YkdGGr75TahyJOACd8vRowIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGAhYVcJ r29LcQ9EchGEkwgZk8KjMB8GA1UdIwQYMBaAFKZt0BDaJN+K4XBr2QjLpDvROJYx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MTc1My84MDUxNDU5MDFE QTcxMUUyQUFBOTRBQTEwOEIwMkNEMi9wbTNRRU5vazM0cmhjR3ZaQ011a085RTRs akUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BtM1FFTm9rMzRyaGNHdlpDTXVrTzlFNGxqRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MTc1My84MDUxNDU5MDFEQTcxMUUyQUFBOTRBQTEwOEIwMkNEMi9wbTNRRU5vazM0 cmhjR3ZaQ011a085RTRsakUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAUQhg3NRfJcOQAnBg2USbYwuIwV9Me+/4d63VWriua+po83E3aHfBx paIFDkz8os8poRTObgmMEOMUliHlunn+z+oShKe4iMRIjRmfhZfHy8x+3Epbk3YL wfxRaQ4TLg4B7WJro2iSH4E0nZyKQwAaygsySVLcKpj7VY6U4DdIbSdT4l0vfayF 8HBfK4/DmS9Te3PJ43C1HFIIHlQoZYcNNKj6gG1WxRk3P5WsfDh2DzgGDruey2SX 4FUMoeT3FI/VCrSE0IcKdlYsQmg48hy19X75XkWWZS91eJ1TxBor4IXmsUKlhWhK ziPVvLomgtvibmhtphLZ0QmM7IgUMg8j -----END CERTIFICATE-----Generated at Fri Nov 22 16:49:22 2024 by rpki-client on console-ams.rpki-client.org