$ rpki-client -vvf rpki.apnic.net/member_repository/A917C422/A2C738681D8511E287036ADC08B02CD2/PgyjPXanW6ZPDdawakQr5pWGRBo.mft File: PgyjPXanW6ZPDdawakQr5pWGRBo.mft (raw, json) Hash identifier: To/V0g3pJm4ddVtpUcsGtJqVYoD+gKviNBb5dzxzKJ4= Subject key identifier: 48:9D:CC:D5:02:3C:B5:32:C5:C0:30:65:54:AD:7C:0F:C4:86:65:45 Authority key identifier: 3E:0C:A3:3D:76:A7:5B:A6:4F:0D:D6:B0:6A:44:2B:E6:95:86:44:1A Certificate issuer: /CN=A917C422/serialNumber=3E0CA33D76A75BA64F0DD6B06A442BE69586441A Certificate serial: 343E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PgyjPXanW6ZPDdawakQr5pWGRBo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917C422/A2C738681D8511E287036ADC08B02CD2/PgyjPXanW6ZPDdawakQr5pWGRBo.mft Manifest number: 342F Signing time: Fri 22 Nov 2024 14:25:32 +0000 Manifest this update: Fri 22 Nov 2024 14:25:31 +0000 Manifest next update: Fri 29 Nov 2024 14:25:31 +0000 Files and hashes: 1: PgyjPXanW6ZPDdawakQr5pWGRBo.crl (hash: W467e5uMzlfjXwLSJtBMQcBsBU5Ub2gANf3wed6zsSA=) 2: D69F6688CD8511EBB5252063C4F9AE02.roa (hash: 1ODdrQTl4q6/w7rtOls+USY+PM8yOp3Wfi9ftx6zA0o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917C422/A2C738681D8511E287036ADC08B02CD2/PgyjPXanW6ZPDdawakQr5pWGRBo.crl rsync://rpki.apnic.net/member_repository/A917C422/A2C738681D8511E287036ADC08B02CD2/PgyjPXanW6ZPDdawakQr5pWGRBo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PgyjPXanW6ZPDdawakQr5pWGRBo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 14:25:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13374 (0x343e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917C422/serialNumber=3E0CA33D76A75BA64F0DD6B06A442BE69586441A Validity Not Before: Nov 22 14:25:31 2024 GMT Not After : Nov 29 14:25:31 2024 GMT Subject: CN=6740945b-c5b9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:0c:81:7a:2b:a1:fe:21:86:c8:4f:95:81:0b: 59:62:75:09:c8:a2:22:03:ae:7c:33:5b:03:45:68: 13:21:64:50:b7:b5:78:17:5d:08:6d:0c:1c:02:e2: 6e:0b:d1:3c:07:1a:8b:8a:b8:58:ac:58:31:6e:d5: ff:ff:4b:8a:e6:d8:86:60:09:50:f5:93:35:b1:ae: a4:11:52:bd:6f:ad:33:3d:54:33:52:c8:f0:cd:d9: fc:58:2f:dc:87:e1:d0:11:88:0f:43:c0:83:16:c1: 13:c7:c4:54:ed:52:c8:9f:df:b3:ca:b0:c4:ee:6a: b3:32:23:11:5c:98:5c:0e:94:b4:b6:35:c0:f2:ef: 1f:3d:5c:85:ef:b7:25:db:83:8f:19:10:d1:51:9c: 0d:14:d6:37:da:25:44:c3:62:bc:5c:a3:68:a4:da: 11:84:fc:42:96:c7:7e:38:2f:79:51:aa:c4:f2:af: 42:5a:c9:3c:bc:69:db:ad:6f:9f:86:41:5f:2e:29: ea:c6:01:29:2f:fb:08:fc:71:f1:25:00:9c:c1:bf: 2c:e0:16:55:e5:47:c0:47:fe:0b:5d:7d:d9:8c:88: 38:8e:78:b2:81:55:6e:11:75:c2:d4:27:01:e9:38: c3:d3:80:af:b0:09:c7:aa:aa:d5:fb:10:f6:14:fe: 71:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:9D:CC:D5:02:3C:B5:32:C5:C0:30:65:54:AD:7C:0F:C4:86:65:45 X509v3 Authority Key Identifier: keyid:3E:0C:A3:3D:76:A7:5B:A6:4F:0D:D6:B0:6A:44:2B:E6:95:86:44:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917C422/A2C738681D8511E287036ADC08B02CD2/PgyjPXanW6ZPDdawakQr5pWGRBo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PgyjPXanW6ZPDdawakQr5pWGRBo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917C422/A2C738681D8511E287036ADC08B02CD2/PgyjPXanW6ZPDdawakQr5pWGRBo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7f:cc:13:ae:27:24:ec:ad:62:0b:bf:23:a1:0c:8f:e0:ca:c7: ed:0a:dd:9e:47:b9:89:9c:9a:83:ed:96:ed:5c:40:88:ee:2c: 60:c2:93:ae:57:bb:58:80:39:b7:d7:eb:ff:28:60:b3:3d:cf: 4c:c5:ed:3e:24:2c:f0:69:e1:4f:40:40:de:5b:da:5a:f6:3d: 6a:4f:58:5a:01:1f:c2:1b:60:b8:f8:8a:b7:0a:49:54:b5:b1: 47:b1:81:b6:1d:9f:25:c4:c9:d9:52:ce:71:ed:f4:9c:cb:3a: 42:f9:44:3a:f1:ca:82:7b:64:7f:03:70:ca:a8:53:f8:4f:ce: 0c:9d:60:54:c5:d3:e2:6c:61:45:0b:89:37:3c:90:70:2d:61: 43:3f:18:0f:81:32:da:9c:7a:1a:01:12:cb:7b:c3:fa:ac:62: 22:b8:3c:f6:a7:e0:7c:66:5d:9c:9e:a9:1d:78:76:cb:d5:7f: 45:7b:4b:31:28:47:1e:e4:66:49:14:cb:b9:6a:e1:1f:f3:df: a4:66:53:8c:b7:95:4d:e8:4a:57:d7:72:80:0b:4f:e7:23:b2: 20:95:0d:ca:0f:4c:65:a3:de:47:ed:2d:95:b9:76:8f:5a:20: ec:60:26:da:5c:38:d7:1b:a4:11:78:a3:bc:c7:21:25:46:97: f8:49:1b:b1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICND4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0M0MjIxMTAvBgNVBAUTKDNFMENBMzNENzZBNzVCQTY0RjBERDZCMDZBNDQyQkU2 OTU4NjQ0MUEwHhcNMjQxMTIyMTQyNTMxWhcNMjQxMTI5MTQyNTMxWjAYMRYwFAYD VQQDEw02NzQwOTQ1Yi1jNWI5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApwyBeiuh/iGGyE+VgQtZYnUJyKIiA658M1sDRWgTIWRQt7V4F10IbQwcAuJu C9E8BxqLirhYrFgxbtX//0uK5tiGYAlQ9ZM1sa6kEVK9b60zPVQzUsjwzdn8WC/c h+HQEYgPQ8CDFsETx8RU7VLIn9+zyrDE7mqzMiMRXJhcDpS0tjXA8u8fPVyF77cl 24OPGRDRUZwNFNY32iVEw2K8XKNopNoRhPxClsd+OC95UarE8q9CWsk8vGnbrW+f hkFfLinqxgEpL/sI/HHxJQCcwb8s4BZV5UfAR/4LXX3ZjIg4jniygVVuEXXC1CcB 6TjD04CvsAnHqqrV+xD2FP5xJwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEidzNUC PLUyxcAwZVStfA/EhmVFMB8GA1UdIwQYMBaAFD4Moz12p1umTw3WsGpEK+aVhkQa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QzQyMi9BMkM3Mzg2ODFE ODUxMUUyODcwMzZBREMwOEIwMkNEMi9QZ3lqUFhhblc2WlBEZGF3YWtRcjVwV0dS Qm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BneWpQWGFuVzZaUERkYXdha1FyNXBXR1JCby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QzQyMi9BMkM3Mzg2ODFEODUxMUUyODcwMzZBREMwOEIwMkNEMi9QZ3lqUFhhblc2 WlBEZGF3YWtRcjVwV0dSQm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB/zBOuJyTsrWILvyOhDI/gysftCt2eR7mJnJqD7ZbtXECI7ixgwpOu V7tYgDm31+v/KGCzPc9Mxe0+JCzwaeFPQEDeW9pa9j1qT1haAR/CG2C4+Iq3CklU tbFHsYG2HZ8lxMnZUs5x7fScyzpC+UQ68cqCe2R/A3DKqFP4T84MnWBUxdPibGFF C4k3PJBwLWFDPxgPgTLanHoaARLLe8P6rGIiuDz2p+B8Zl2cnqkdeHbL1X9Fe0sx KEce5GZJFMu5auEf89+kZlOMt5VN6EpX13KAC0/nI7IglQ3KD0xlo95H7S2VuXaP WiDsYCbaXDjXG6QReKO8xyElRpf4SRux -----END CERTIFICATE-----Generated at Fri Nov 22 15:25:38 2024 by rpki-client on console-fra.rpki-client.org