$ rpki-client -vvf rpki.apnic.net/member_repository/A917E04F/418537F4970311E9B4B7B25AC4F9AE02/dd3NDNRiWKwZGsOQoskl2MA1qFc.mft File: dd3NDNRiWKwZGsOQoskl2MA1qFc.mft (raw, json) Hash identifier: jqCwsV29p9s4D2Z/QfSl12CnEjCOoKMLqkzZJ8DMKtw= Subject key identifier: 7C:4B:FA:08:6C:FF:22:1E:C8:0E:AF:49:67:18:DB:1B:44:57:BA:BB Authority key identifier: 75:DD:CD:0C:D4:62:58:AC:19:1A:C3:90:A2:C9:25:D8:C0:35:A8:57 Certificate issuer: /CN=A917E04F/serialNumber=75DDCD0CD46258AC191AC390A2C925D8C035A857 Certificate serial: 0E1A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dd3NDNRiWKwZGsOQoskl2MA1qFc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E04F/418537F4970311E9B4B7B25AC4F9AE02/dd3NDNRiWKwZGsOQoskl2MA1qFc.mft Manifest number: 0E13 Signing time: Fri 22 Nov 2024 17:44:35 +0000 Manifest this update: Fri 22 Nov 2024 17:44:34 +0000 Manifest next update: Fri 29 Nov 2024 17:44:34 +0000 Files and hashes: 1: dd3NDNRiWKwZGsOQoskl2MA1qFc.crl (hash: i6h1zd9Bm0Bf0NhHTRxl9z4Dh1p99dT2oOhvyphuXCE=) 2: 9C9389D4970311E9B7D3DE5AC4F9AE02.roa (hash: wpaP/UJ1okKESnCBZ5S0aOpOY1jJLBjoc5z2xXs4h+o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E04F/418537F4970311E9B4B7B25AC4F9AE02/dd3NDNRiWKwZGsOQoskl2MA1qFc.crl rsync://rpki.apnic.net/member_repository/A917E04F/418537F4970311E9B4B7B25AC4F9AE02/dd3NDNRiWKwZGsOQoskl2MA1qFc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dd3NDNRiWKwZGsOQoskl2MA1qFc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 17:44:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3610 (0xe1a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E04F/serialNumber=75DDCD0CD46258AC191AC390A2C925D8C035A857 Validity Not Before: Nov 22 17:44:34 2024 GMT Not After : Nov 29 17:44:34 2024 GMT Subject: CN=6740c302-362d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:2c:23:fa:0f:86:d6:4c:64:19:41:c9:d8:88: 38:17:8e:35:f0:26:6c:1f:e2:b3:b4:09:6e:d7:b7: cf:0d:bf:34:7f:86:17:49:00:ed:19:df:8c:1c:37: 57:9f:83:05:b3:5c:4c:f5:27:38:2f:14:de:41:b6: 69:c2:f2:11:4a:6d:36:10:8f:07:a7:c0:4a:e5:24: e8:57:2a:2d:11:8a:32:a7:36:29:d7:1e:01:43:bd: f5:22:47:41:20:02:2d:83:a1:7a:d9:ad:2b:0b:21: ec:b4:88:e1:24:7e:f6:7a:14:48:bb:47:58:77:f3: 55:cb:0e:95:9a:d3:d6:ec:fe:59:46:52:07:67:98: 84:49:56:62:47:31:83:e9:75:0c:e9:77:ad:3b:ab: 8f:cf:07:b5:c8:e2:fa:7b:9a:45:a1:9b:43:a7:64: 97:f6:7c:e5:4a:7c:49:70:e6:10:55:41:cf:7f:83: 34:ae:39:ca:3f:82:f5:29:00:26:d5:7f:12:b5:4e: 69:3e:a0:cc:40:e2:90:6e:4c:c9:0f:98:46:59:97: 69:39:40:87:ed:dc:26:a3:60:b2:39:89:b8:46:b8: 6f:f1:79:80:16:da:70:4b:40:54:42:5a:81:ed:eb: 55:cc:7b:13:e1:bd:3d:be:09:5e:5a:9e:9c:a2:62: b6:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:4B:FA:08:6C:FF:22:1E:C8:0E:AF:49:67:18:DB:1B:44:57:BA:BB X509v3 Authority Key Identifier: keyid:75:DD:CD:0C:D4:62:58:AC:19:1A:C3:90:A2:C9:25:D8:C0:35:A8:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E04F/418537F4970311E9B4B7B25AC4F9AE02/dd3NDNRiWKwZGsOQoskl2MA1qFc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dd3NDNRiWKwZGsOQoskl2MA1qFc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E04F/418537F4970311E9B4B7B25AC4F9AE02/dd3NDNRiWKwZGsOQoskl2MA1qFc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 73:da:7e:8a:ad:81:7e:7b:c6:e0:00:42:fe:8e:88:ed:fd:e6: 66:9b:3c:a9:83:e7:7d:03:37:25:fc:fc:4c:5b:23:f0:67:a9: 5d:f2:a5:5b:60:dd:47:c2:d5:82:e8:33:9c:db:9f:95:19:3f: 05:1c:16:d1:25:09:df:af:47:01:e9:09:b8:97:c6:2e:73:5b: 4f:e6:d7:48:4c:b4:24:87:2d:50:9a:62:3f:a8:bf:85:3d:6d: 32:57:4c:94:a4:2e:78:f9:e0:77:08:7b:be:bc:24:a1:09:e3: 84:43:79:db:10:82:21:90:cf:6c:3e:1b:16:2a:cb:3f:22:b1: 53:8e:b5:f1:56:d1:7d:7a:7b:4b:a6:96:7a:31:52:fa:67:6e: bc:eb:7b:8a:fe:af:29:77:01:ac:96:4a:ef:d6:67:62:0b:48: e5:b3:77:65:57:a4:23:00:dd:a7:ff:0e:30:b7:c1:9f:dd:c3: 3b:7f:67:1a:72:65:4b:81:43:f6:cb:e7:05:bb:8c:49:0c:d3: c0:b3:f8:1b:1f:9a:0d:c3:44:8c:fd:2c:ba:9e:1a:fc:69:72: db:58:cb:08:eb:a4:8c:04:78:92:41:17:8f:67:99:0f:0e:e6: 56:83:35:f2:88:da:d9:15:57:bc:45:78:45:bd:7c:6e:99:d3: 69:93:ff:9b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDhowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0UwNEYxMTAvBgNVBAUTKDc1RERDRDBDRDQ2MjU4QUMxOTFBQzM5MEEyQzkyNUQ4 QzAzNUE4NTcwHhcNMjQxMTIyMTc0NDM0WhcNMjQxMTI5MTc0NDM0WjAYMRYwFAYD VQQDEw02NzQwYzMwMi0zNjJkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4Cwj+g+G1kxkGUHJ2Ig4F4418CZsH+KztAlu17fPDb80f4YXSQDtGd+MHDdX n4MFs1xM9Sc4LxTeQbZpwvIRSm02EI8Hp8BK5SToVyotEYoypzYp1x4BQ731IkdB IAItg6F62a0rCyHstIjhJH72ehRIu0dYd/NVyw6VmtPW7P5ZRlIHZ5iESVZiRzGD 6XUM6XetO6uPzwe1yOL6e5pFoZtDp2SX9nzlSnxJcOYQVUHPf4M0rjnKP4L1KQAm 1X8StU5pPqDMQOKQbkzJD5hGWZdpOUCH7dwmo2CyOYm4Rrhv8XmAFtpwS0BUQlqB 7etVzHsT4b09vgleWp6comK2uwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHxL+ghs /yIeyA6vSWcY2xtEV7q7MB8GA1UdIwQYMBaAFHXdzQzUYlisGRrDkKLJJdjANahX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RTA0Ri80MTg1MzdGNDk3 MDMxMUU5QjRCN0IyNUFDNEY5QUUwMi9kZDNORE5SaVdLd1pHc09Rb3NrbDJNQTFx RmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2RkM05ETlJpV0t3WkdzT1Fvc2tsMk1BMXFGYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RTA0Ri80MTg1MzdGNDk3MDMxMUU5QjRCN0IyNUFDNEY5QUUwMi9kZDNORE5SaVdL d1pHc09Rb3NrbDJNQTFxRmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBz2n6KrYF+e8bgAEL+jojt/eZmmzypg+d9Azcl/PxMWyPwZ6ld8qVb YN1HwtWC6DOc25+VGT8FHBbRJQnfr0cB6Qm4l8Yuc1tP5tdITLQkhy1QmmI/qL+F PW0yV0yUpC54+eB3CHu+vCShCeOEQ3nbEIIhkM9sPhsWKss/IrFTjrXxVtF9entL ppZ6MVL6Z26863uK/q8pdwGslkrv1mdiC0jls3dlV6QjAN2n/w4wt8Gf3cM7f2ca cmVLgUP2y+cFu4xJDNPAs/gbH5oNw0SM/Sy6nhr8aXLbWMsI66SMBHiSQRePZ5kP DuZWgzXyiNrZFVe8RXhFvXxumdNpk/+b -----END CERTIFICATE-----Generated at Fri Nov 22 19:50:06 2024 by rpki-client on console-ams.rpki-client.org