$ rpki-client -vvf rpki.apnic.net/member_repository/A917A67E/67B4CB841BD311EE965FEF38C4F9AE02/S3IqOmeTvzLJvPUuTncuCm86Yxk.mft File: S3IqOmeTvzLJvPUuTncuCm86Yxk.mft (raw, json) Hash identifier: FC3wjQc9NAECNEchXd8Kny7ZyKftrEST97WC5kZtG5M= Subject key identifier: 8F:AB:29:05:09:14:E4:8C:06:3E:F8:29:AD:22:67:35:5E:9A:05:C8 Authority key identifier: 4B:72:2A:3A:67:93:BF:32:C9:BC:F5:2E:4E:77:2E:0A:6F:3A:63:19 Certificate issuer: /CN=A917A67E/serialNumber=4B722A3A6793BF32C9BCF52E4E772E0A6F3A6319 Certificate serial: 0106 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S3IqOmeTvzLJvPUuTncuCm86Yxk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917A67E/67B4CB841BD311EE965FEF38C4F9AE02/S3IqOmeTvzLJvPUuTncuCm86Yxk.mft Manifest number: 0104 Signing time: Sat 23 Nov 2024 03:12:47 +0000 Manifest this update: Sat 23 Nov 2024 03:12:47 +0000 Manifest next update: Sat 30 Nov 2024 03:12:47 +0000 Files and hashes: 1: S3IqOmeTvzLJvPUuTncuCm86Yxk.crl (hash: 9Be2bCeZ6cG8TluFIt3iqhUxLYUeP/WoDq3OV/nXW30=) 2: E3901F981BD711EEB9597921C4F9AE02.roa (hash: kDd0UyJiiGuqaONxiGP/252EeTqmNnyGZ50AdfF+Vyo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917A67E/67B4CB841BD311EE965FEF38C4F9AE02/S3IqOmeTvzLJvPUuTncuCm86Yxk.crl rsync://rpki.apnic.net/member_repository/A917A67E/67B4CB841BD311EE965FEF38C4F9AE02/S3IqOmeTvzLJvPUuTncuCm86Yxk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S3IqOmeTvzLJvPUuTncuCm86Yxk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 262 (0x106) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917A67E/serialNumber=4B722A3A6793BF32C9BCF52E4E772E0A6F3A6319 Validity Not Before: Nov 23 03:12:47 2024 GMT Not After : Nov 30 03:12:47 2024 GMT Subject: CN=6741482f-3e56 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:ed:ee:dd:d4:e8:bd:b5:10:d7:c3:f4:52:03: 5b:16:bf:b5:cc:42:4e:5c:54:7e:ed:45:c6:c5:e7: 93:54:84:c3:d8:c4:4b:31:dd:ca:ed:c0:d9:69:74: af:03:5f:ee:cf:ec:1e:90:8b:d1:ef:48:4c:ab:09: 2e:89:4b:01:06:53:35:93:c8:fc:e0:30:b0:0f:95: 9a:8a:fd:ac:bb:b1:8a:96:56:74:8d:0f:b1:8f:c0: 66:a7:2e:1f:13:d9:b9:44:d5:59:cc:8a:66:d3:5f: 0e:ea:ab:29:c4:7c:ea:68:0a:ec:91:2e:8a:f7:bd: 7d:10:7d:93:3d:79:8e:17:bd:19:d6:11:09:4c:1c: 51:b9:83:6c:18:19:ac:31:56:93:a8:3a:c7:80:ce: bc:29:a9:d6:0f:41:90:ee:6d:24:74:0a:9c:17:37: bc:a5:8c:27:25:c3:f1:1a:73:00:bb:74:c2:bd:02: a2:99:55:09:b3:31:94:a1:85:b3:56:62:cd:24:b4: bd:d7:77:78:3f:6d:ea:6d:98:29:20:2b:f3:55:94: 42:20:cc:f3:9a:66:cf:a0:28:09:3d:cb:c5:37:6c: aa:53:f7:f3:ac:88:c6:e4:e9:54:6e:1e:eb:73:34: 20:67:04:7e:89:f0:33:7d:4c:4a:3f:75:e9:d7:ca: fd:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:AB:29:05:09:14:E4:8C:06:3E:F8:29:AD:22:67:35:5E:9A:05:C8 X509v3 Authority Key Identifier: keyid:4B:72:2A:3A:67:93:BF:32:C9:BC:F5:2E:4E:77:2E:0A:6F:3A:63:19 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917A67E/67B4CB841BD311EE965FEF38C4F9AE02/S3IqOmeTvzLJvPUuTncuCm86Yxk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S3IqOmeTvzLJvPUuTncuCm86Yxk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917A67E/67B4CB841BD311EE965FEF38C4F9AE02/S3IqOmeTvzLJvPUuTncuCm86Yxk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2f:cb:54:a1:b7:cf:43:29:c9:52:9d:81:e6:2b:f4:7b:39:b4: 2b:e1:1b:bd:bf:12:58:9f:1e:69:8a:ac:2a:89:2b:ed:4b:68: 4a:46:10:0b:9e:5c:b1:7b:7b:ac:8f:b3:63:38:31:ea:6a:87: 7f:bb:d3:96:f6:1b:2d:26:c8:1b:45:f7:92:52:23:5d:94:22: ee:3f:57:21:5a:64:a4:5d:96:54:e7:b5:50:28:65:63:c7:78: 46:9f:9d:d5:d5:e0:c8:06:ad:33:8e:88:90:ce:d6:44:88:80: 9b:5c:9c:ac:96:23:8b:38:af:5c:05:76:1d:c4:46:6b:de:3a: 26:21:5b:2c:70:56:e3:13:73:71:67:40:c1:85:3d:c3:c1:48: 73:a6:85:77:5b:f2:c9:66:2a:0c:2a:d5:c8:c6:b5:7d:b9:0f: 76:2e:6d:8f:7d:d3:3e:97:60:04:c6:54:89:b8:7c:8b:72:8e: fd:d8:ee:f3:cf:6e:4f:d1:02:99:9f:8e:b1:0b:65:c4:a5:5c: f9:07:7c:89:0a:39:17:b8:16:ba:96:b1:ad:0a:86:0a:9a:a7: 63:0a:a0:3a:73:e2:09:1f:f9:e7:19:b4:dd:bc:ce:2a:b2:c2: 45:0e:07:e0:7f:cd:ac:87:6c:f6:28:a1:c9:ae:2b:a0:46:f8: 64:27:4c:e3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0E2N0UxMTAvBgNVBAUTKDRCNzIyQTNBNjc5M0JGMzJDOUJDRjUyRTRFNzcyRTBB NkYzQTYzMTkwHhcNMjQxMTIzMDMxMjQ3WhcNMjQxMTMwMDMxMjQ3WjAYMRYwFAYD VQQDEw02NzQxNDgyZi0zZTU2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAye3u3dTovbUQ18P0UgNbFr+1zEJOXFR+7UXGxeeTVITD2MRLMd3K7cDZaXSv A1/uz+wekIvR70hMqwkuiUsBBlM1k8j84DCwD5Waiv2su7GKllZ0jQ+xj8Bmpy4f E9m5RNVZzIpm018O6qspxHzqaArskS6K9719EH2TPXmOF70Z1hEJTBxRuYNsGBms MVaTqDrHgM68KanWD0GQ7m0kdAqcFze8pYwnJcPxGnMAu3TCvQKimVUJszGUoYWz VmLNJLS913d4P23qbZgpICvzVZRCIMzzmmbPoCgJPcvFN2yqU/fzrIjG5OlUbh7r czQgZwR+ifAzfUxKP3Xp18r9iwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFI+rKQUJ FOSMBj74Ka0iZzVemgXIMB8GA1UdIwQYMBaAFEtyKjpnk78yybz1Lk53LgpvOmMZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QTY3RS82N0I0Q0I4NDFC RDMxMUVFOTY1RkVGMzhDNEY5QUUwMi9TM0lxT21lVHZ6TEp2UFV1VG5jdUNtODZZ eGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1MzSXFPbWVUdnpMSnZQVXVUbmN1Q204Nll4ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QTY3RS82N0I0Q0I4NDFCRDMxMUVFOTY1RkVGMzhDNEY5QUUwMi9TM0lxT21lVHZ6 TEp2UFV1VG5jdUNtODZZeGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAvy1Sht89DKclSnYHmK/R7ObQr4Ru9vxJYnx5piqwqiSvtS2hKRhAL nlyxe3usj7NjODHqaod/u9OW9hstJsgbRfeSUiNdlCLuP1chWmSkXZZU57VQKGVj x3hGn53V1eDIBq0zjoiQztZEiICbXJysliOLOK9cBXYdxEZr3jomIVsscFbjE3Nx Z0DBhT3DwUhzpoV3W/LJZioMKtXIxrV9uQ92Lm2PfdM+l2AExlSJuHyLco792O7z z25P0QKZn46xC2XEpVz5B3yJCjkXuBa6lrGtCoYKmqdjCqA6c+IJH/nnGbTdvM4q ssJFDgfgf82sh2z2KKHJriugRvhkJ0zj -----END CERTIFICATE-----Generated at Sat Nov 23 05:02:51 2024 by rpki-client on console-fra.rpki-client.org