$ rpki-client -vvf rpki.apnic.net/member_repository/A917AC33/B0BFAC34924F11EEA8C22440C4F9AE02/3q8cjeT-PFHGkVP8r5_owq1vjiY.mft File: 3q8cjeT-PFHGkVP8r5_owq1vjiY.mft (raw, json) Hash identifier: QCNO2VE9TY4PIpll+cckDa2EIh2A8hW31I9eBmi8+q0= Subject key identifier: 6C:29:4D:BD:CB:A6:DC:4B:A9:83:E2:6C:EC:9C:8F:F7:61:BC:94:DB Authority key identifier: DE:AF:1C:8D:E4:FE:3C:51:C6:91:53:FC:AF:9F:E8:C2:AD:6F:8E:26 Certificate issuer: /CN=A917AC33/serialNumber=DEAF1C8DE4FE3C51C69153FCAF9FE8C2AD6F8E26 Certificate serial: B9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3q8cjeT-PFHGkVP8r5_owq1vjiY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917AC33/B0BFAC34924F11EEA8C22440C4F9AE02/3q8cjeT-PFHGkVP8r5_owq1vjiY.mft Manifest number: B7 Signing time: Sat 23 Nov 2024 04:04:02 +0000 Manifest this update: Sat 23 Nov 2024 04:04:01 +0000 Manifest next update: Sat 30 Nov 2024 04:04:01 +0000 Files and hashes: 1: 3q8cjeT-PFHGkVP8r5_owq1vjiY.crl (hash: oou9nzJGcFFBUrEZGr/pFeOYAiBdaBLUOdxJR0+iP+M=) 2: 1C2EA330925011EE9571EE40C4F9AE02.roa (hash: Z3NjmZHjrC5QDqZVrNc2A+wY2OMdX2iZifn6im8ttEc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917AC33/B0BFAC34924F11EEA8C22440C4F9AE02/3q8cjeT-PFHGkVP8r5_owq1vjiY.crl rsync://rpki.apnic.net/member_repository/A917AC33/B0BFAC34924F11EEA8C22440C4F9AE02/3q8cjeT-PFHGkVP8r5_owq1vjiY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3q8cjeT-PFHGkVP8r5_owq1vjiY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 185 (0xb9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917AC33/serialNumber=DEAF1C8DE4FE3C51C69153FCAF9FE8C2AD6F8E26 Validity Not Before: Nov 23 04:04:01 2024 GMT Not After : Nov 30 04:04:01 2024 GMT Subject: CN=67415432-7525 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:18:f8:dd:f3:94:28:b9:9c:40:46:57:48:17: 2e:27:17:14:c1:1d:9e:75:0c:a5:11:d3:99:a3:71: 62:6f:b0:55:d4:6d:31:5b:a9:c7:8f:f7:5a:42:42: 3b:9b:b3:99:3b:4c:d1:43:72:1e:01:c8:06:8a:7a: f7:6f:fc:63:fe:61:df:1f:c4:de:0f:6c:5c:9a:f1: 07:b7:89:c8:e2:96:cc:1e:91:1d:a7:f2:22:76:44: fa:09:87:bd:1f:d4:94:6c:05:0f:83:b2:a5:d7:cb: c6:3b:26:25:19:53:c9:ed:3a:ec:92:43:d7:cd:9f: 3a:aa:f7:c4:3b:a0:6a:29:d9:d5:7d:ff:67:e3:5a: c9:2a:0c:45:84:f1:20:6a:1f:93:02:41:03:53:29: 50:b1:de:01:e7:53:91:02:97:d5:c3:13:91:b0:fe: a8:cf:07:4d:12:cd:78:7d:e1:c4:92:c0:a4:5f:96: 64:54:36:19:45:de:86:0a:03:de:93:6c:ff:be:87: a7:eb:1f:4b:37:42:c2:9b:95:86:d0:a2:f4:91:af: 58:40:f7:29:e2:15:7f:3c:93:b7:58:07:ee:d3:20: 33:ee:b4:c2:6d:f5:f5:9e:55:27:5a:dd:18:4e:3a: b9:27:f9:42:6c:db:a2:e0:bc:bd:18:24:67:e5:62: dc:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:29:4D:BD:CB:A6:DC:4B:A9:83:E2:6C:EC:9C:8F:F7:61:BC:94:DB X509v3 Authority Key Identifier: keyid:DE:AF:1C:8D:E4:FE:3C:51:C6:91:53:FC:AF:9F:E8:C2:AD:6F:8E:26 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917AC33/B0BFAC34924F11EEA8C22440C4F9AE02/3q8cjeT-PFHGkVP8r5_owq1vjiY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3q8cjeT-PFHGkVP8r5_owq1vjiY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917AC33/B0BFAC34924F11EEA8C22440C4F9AE02/3q8cjeT-PFHGkVP8r5_owq1vjiY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 64:58:d7:fa:0f:d1:82:6d:b4:3f:10:ac:fd:7c:93:78:66:08: 05:ec:5f:18:5f:0f:9d:70:b8:46:6a:3e:bb:ec:72:20:09:86: 0f:f3:fa:57:40:e6:e2:bc:53:21:80:bc:38:16:78:ef:f0:62: 98:25:78:c8:c5:92:c4:0c:76:1f:d3:99:0e:7d:1f:e8:ae:b4: a6:42:e8:4b:35:b8:2c:db:c9:d6:7c:24:4b:60:49:17:9a:5c: 2a:59:c2:82:2d:2e:0b:d0:ff:6e:44:99:60:4c:37:a5:e9:7e: 4c:55:fc:11:2f:03:d8:72:b2:ac:00:fe:f9:f3:1d:5c:37:40: 19:c7:91:46:56:a9:5d:e9:ab:67:79:99:e3:85:40:44:1a:7d: 0b:0d:d5:5d:32:55:ac:fe:b2:d1:c2:36:fe:ae:a5:96:b9:73: 63:66:35:71:5b:14:19:3a:7a:16:7a:bf:a0:1d:8d:74:91:1c: da:eb:11:8a:48:0e:8f:db:9b:6f:c9:c0:66:b5:35:f4:74:98: 1d:d1:2c:7a:fe:e1:be:2c:11:19:2c:3b:63:8f:8e:9b:c8:b4: 8b:b0:57:ac:60:d4:20:cd:35:50:40:b5:0a:b0:8d:79:01:d4: 3f:02:cc:12:24:be:9b:db:47:26:f4:e7:b1:09:8f:69:7c:cb: 16:c1:1c:65 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICALkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0FDMzMxMTAvBgNVBAUTKERFQUYxQzhERTRGRTNDNTFDNjkxNTNGQ0FGOUZFOEMy QUQ2RjhFMjYwHhcNMjQxMTIzMDQwNDAxWhcNMjQxMTMwMDQwNDAxWjAYMRYwFAYD VQQDEw02NzQxNTQzMi03NTI1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzhj43fOUKLmcQEZXSBcuJxcUwR2edQylEdOZo3Fib7BV1G0xW6nHj/daQkI7 m7OZO0zRQ3IeAcgGinr3b/xj/mHfH8TeD2xcmvEHt4nI4pbMHpEdp/IidkT6CYe9 H9SUbAUPg7Kl18vGOyYlGVPJ7TrskkPXzZ86qvfEO6BqKdnVff9n41rJKgxFhPEg ah+TAkEDUylQsd4B51ORApfVwxORsP6ozwdNEs14feHEksCkX5ZkVDYZRd6GCgPe k2z/voen6x9LN0LCm5WG0KL0ka9YQPcp4hV/PJO3WAfu0yAz7rTCbfX1nlUnWt0Y Tjq5J/lCbNui4Ly9GCRn5WLcJQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGwpTb3L ptxLqYPibOycj/dhvJTbMB8GA1UdIwQYMBaAFN6vHI3k/jxRxpFT/K+f6MKtb44m MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QUMzMy9CMEJGQUMzNDky NEYxMUVFQThDMjI0NDBDNEY5QUUwMi8zcThjamVULVBGSEdrVlA4cjVfb3dxMXZq aVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNxOGNqZVQtUEZIR2tWUDhyNV9vd3ExdmppWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QUMzMy9CMEJGQUMzNDkyNEYxMUVFQThDMjI0NDBDNEY5QUUwMi8zcThjamVULVBG SEdrVlA4cjVfb3dxMXZqaVkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBkWNf6D9GCbbQ/EKz9fJN4ZggF7F8YXw+dcLhGaj677HIgCYYP8/pX QObivFMhgLw4Fnjv8GKYJXjIxZLEDHYf05kOfR/orrSmQuhLNbgs28nWfCRLYEkX mlwqWcKCLS4L0P9uRJlgTDel6X5MVfwRLwPYcrKsAP758x1cN0AZx5FGVqld6atn eZnjhUBEGn0LDdVdMlWs/rLRwjb+rqWWuXNjZjVxWxQZOnoWer+gHY10kRza6xGK SA6P25tvycBmtTX0dJgd0Sx6/uG+LBEZLDtjj46byLSLsFesYNQgzTVQQLUKsI15 AdQ/AswSJL6b20cm9OexCY9pfMsWwRxl -----END CERTIFICATE-----Generated at Sat Nov 23 06:13:10 2024 by rpki-client on console-ams.rpki-client.org