$ rpki-client -vvf rpki.apnic.net/member_repository/A917D3A1/607AE9541D8611E299BA94DD08B02CD2/DeFnnSHTm2HwJlCkFOydBGLF5Bg.mft File: DeFnnSHTm2HwJlCkFOydBGLF5Bg.mft (raw, json) Hash identifier: 4UIC4x683Pd/aGg3nY1cNdjZbOFHNuIS3+CcePqy3rA= Subject key identifier: E1:A6:E3:5A:CF:32:72:6F:30:45:84:45:35:29:BE:A4:5D:47:F2:37 Authority key identifier: 0D:E1:67:9D:21:D3:9B:61:F0:26:50:A4:14:EC:9D:04:62:C5:E4:18 Certificate issuer: /CN=A917D3A1/serialNumber=0DE1679D21D39B61F02650A414EC9D0462C5E418 Certificate serial: 347A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DeFnnSHTm2HwJlCkFOydBGLF5Bg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917D3A1/607AE9541D8611E299BA94DD08B02CD2/DeFnnSHTm2HwJlCkFOydBGLF5Bg.mft Manifest number: 3458 Signing time: Fri 22 Nov 2024 14:26:36 +0000 Manifest this update: Fri 22 Nov 2024 14:26:36 +0000 Manifest next update: Fri 29 Nov 2024 14:26:36 +0000 Files and hashes: 1: DeFnnSHTm2HwJlCkFOydBGLF5Bg.crl (hash: nFxoBlIEOHqOQ2KFDl8gC1WYfLpSx9GFB6sOcY9lkeU=) 2: B3B5B50E117711EEA0E5E040C4F9AE02.roa (hash: b1St5p/BJaRvEwQmiMB5eWAx2Nt2NWNHV6h7q2a3rhY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917D3A1/607AE9541D8611E299BA94DD08B02CD2/DeFnnSHTm2HwJlCkFOydBGLF5Bg.crl rsync://rpki.apnic.net/member_repository/A917D3A1/607AE9541D8611E299BA94DD08B02CD2/DeFnnSHTm2HwJlCkFOydBGLF5Bg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DeFnnSHTm2HwJlCkFOydBGLF5Bg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 14:26:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13434 (0x347a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917D3A1/serialNumber=0DE1679D21D39B61F02650A414EC9D0462C5E418 Validity Not Before: Nov 22 14:26:36 2024 GMT Not After : Nov 29 14:26:36 2024 GMT Subject: CN=6740949c-1171 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:42:38:dc:4e:b3:76:36:34:0d:4e:c6:75:34: 36:22:68:39:da:fe:fb:6f:e2:20:57:c1:fb:e0:21: 9a:3e:9f:9b:5f:4e:66:f1:f3:f0:cc:72:a8:92:72: db:94:e1:d0:cb:fd:a9:4d:ad:bb:d3:67:aa:21:03: c1:a0:88:28:2f:d5:9e:aa:53:8a:f7:fd:51:b3:12: 6e:43:0d:41:86:c2:e5:f4:3c:3f:21:b3:45:cb:c2: 26:22:cc:03:d1:8f:af:d8:5e:4c:3c:bc:7f:21:bf: 8a:47:05:eb:92:1f:a2:28:30:b7:7e:3c:8c:30:ec: 33:4a:e8:6c:5d:e8:ab:f6:16:58:bb:38:32:45:56: 9d:65:d7:cd:19:fc:d0:9f:29:56:8b:d5:bd:b9:c9: 33:b4:2a:89:06:77:04:9e:50:d3:2b:f6:b8:c6:23: 38:89:63:91:b9:9b:3e:79:cd:7d:83:ad:cc:2a:72: 05:49:0c:69:8b:d8:ae:ce:ba:95:f7:3e:b6:32:66: 56:df:bf:f6:51:f3:da:1e:03:cd:01:ca:e6:83:3a: 70:4c:9f:d9:1c:7e:d7:eb:0d:66:6b:ed:8b:97:aa: 40:62:23:80:c3:99:0f:9c:7d:3e:ac:cf:3c:0b:ec: c3:6e:b6:5d:16:53:16:57:f9:60:28:7c:3a:da:9e: bd:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:A6:E3:5A:CF:32:72:6F:30:45:84:45:35:29:BE:A4:5D:47:F2:37 X509v3 Authority Key Identifier: keyid:0D:E1:67:9D:21:D3:9B:61:F0:26:50:A4:14:EC:9D:04:62:C5:E4:18 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917D3A1/607AE9541D8611E299BA94DD08B02CD2/DeFnnSHTm2HwJlCkFOydBGLF5Bg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DeFnnSHTm2HwJlCkFOydBGLF5Bg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917D3A1/607AE9541D8611E299BA94DD08B02CD2/DeFnnSHTm2HwJlCkFOydBGLF5Bg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1b:5e:f6:30:34:10:bd:d5:19:2d:0c:a1:bb:44:63:49:0b:ef: a0:d4:09:45:b2:28:e3:76:e6:b8:9b:7e:6d:eb:6e:f7:1d:c5: 0b:f6:34:e7:45:22:5e:2e:61:51:a4:19:d1:21:b9:1c:21:e6: 55:02:ed:9a:fb:dc:09:0a:42:84:03:f2:51:4d:db:5b:e6:5f: c8:41:2e:f4:06:a9:20:b8:d1:1b:18:c2:10:55:46:17:31:bc: c7:2d:ef:63:32:e9:06:9a:6e:14:de:98:9e:2e:c7:fc:2c:77: c5:47:8a:ce:68:16:81:f1:2c:9e:f4:ab:75:58:d1:aa:60:7f: f0:fb:be:31:2d:d8:3b:96:5e:7d:cb:01:05:1a:76:c4:d0:3a: 83:32:3c:dd:45:07:40:94:88:ba:f9:50:30:b9:d1:eb:ab:24: 63:c6:c0:1a:a0:e5:5e:01:a1:f7:dd:72:8b:00:d3:32:80:6f: 2a:c4:2c:af:68:bf:db:34:63:fe:35:c7:28:32:fc:e1:d3:d0: b4:c2:73:a8:23:0a:e8:14:8d:9f:c2:c0:2e:ed:e8:cc:9d:aa: 06:30:08:51:a5:3e:29:87:56:a1:25:13:ab:25:2d:75:81:55: 6d:77:3a:52:59:3a:ff:39:e7:4b:35:8a:96:a2:d4:db:d5:23: b5:bc:ec:7b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNHowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0QzQTExMTAvBgNVBAUTKDBERTE2NzlEMjFEMzlCNjFGMDI2NTBBNDE0RUM5RDA0 NjJDNUU0MTgwHhcNMjQxMTIyMTQyNjM2WhcNMjQxMTI5MTQyNjM2WjAYMRYwFAYD VQQDEw02NzQwOTQ5Yy0xMTcxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2EI43E6zdjY0DU7GdTQ2Img52v77b+IgV8H74CGaPp+bX05m8fPwzHKoknLb lOHQy/2pTa2702eqIQPBoIgoL9WeqlOK9/1RsxJuQw1BhsLl9Dw/IbNFy8ImIswD 0Y+v2F5MPLx/Ib+KRwXrkh+iKDC3fjyMMOwzSuhsXeir9hZYuzgyRVadZdfNGfzQ nylWi9W9uckztCqJBncEnlDTK/a4xiM4iWORuZs+ec19g63MKnIFSQxpi9iuzrqV 9z62MmZW37/2UfPaHgPNAcrmgzpwTJ/ZHH7X6w1ma+2Ll6pAYiOAw5kPnH0+rM88 C+zDbrZdFlMWV/lgKHw62p69zQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOGm41rP MnJvMEWERTUpvqRdR/I3MB8GA1UdIwQYMBaAFA3hZ50h05th8CZQpBTsnQRixeQY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RDNBMS82MDdBRTk1NDFE ODYxMUUyOTlCQTk0REQwOEIwMkNEMi9EZUZublNIVG0ySHdKbENrRk95ZEJHTEY1 QmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0RlRm5uU0hUbTJId0psQ2tGT3lkQkdMRjVCZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RDNBMS82MDdBRTk1NDFEODYxMUUyOTlCQTk0REQwOEIwMkNEMi9EZUZublNIVG0y SHdKbENrRk95ZEJHTEY1QmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAbXvYwNBC91RktDKG7RGNJC++g1AlFsijjdua4m35t6273HcUL9jTn RSJeLmFRpBnRIbkcIeZVAu2a+9wJCkKEA/JRTdtb5l/IQS70BqkguNEbGMIQVUYX MbzHLe9jMukGmm4U3pieLsf8LHfFR4rOaBaB8Sye9Kt1WNGqYH/w+74xLdg7ll59 ywEFGnbE0DqDMjzdRQdAlIi6+VAwudHrqyRjxsAaoOVeAaH33XKLANMygG8qxCyv aL/bNGP+NccoMvzh09C0wnOoIwroFI2fwsAu7ejMnaoGMAhRpT4ph1ahJROrJS11 gVVtdzpSWTr/OedLNYqWotTb1SO1vOx7 -----END CERTIFICATE-----Generated at Fri Nov 22 16:49:22 2024 by rpki-client on console-ams.rpki-client.org