$ rpki-client -vvf rpki.apnic.net/member_repository/A9189311/13AFF6F6B24D11E4B67F185FC4F9AE02/e3dUqC3QY6R-jsNdFj72skSNEts.mft File: e3dUqC3QY6R-jsNdFj72skSNEts.mft (raw, json) Hash identifier: qKsNeeoZXeM2VrGP5BIdyD6SKAWbhdL8ZHb9V9Wkl+o= Subject key identifier: 79:96:39:22:45:4A:42:F1:6A:5B:91:26:AD:F2:EE:82:64:F2:9A:F2 Authority key identifier: 7B:77:54:A8:2D:D0:63:A4:7E:8E:C3:5D:16:3E:F6:B2:44:8D:12:DB Certificate issuer: /CN=A9189311/serialNumber=7B7754A82DD063A47E8EC35D163EF6B2448D12DB Certificate serial: 2729 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/e3dUqC3QY6R-jsNdFj72skSNEts.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9189311/13AFF6F6B24D11E4B67F185FC4F9AE02/e3dUqC3QY6R-jsNdFj72skSNEts.mft Manifest number: 2717 Signing time: Fri 22 Nov 2024 15:39:46 +0000 Manifest this update: Fri 22 Nov 2024 15:39:45 +0000 Manifest next update: Fri 29 Nov 2024 15:39:45 +0000 Files and hashes: 1: e3dUqC3QY6R-jsNdFj72skSNEts.crl (hash: fE3OWBHe1ZpT65mG29uZ/xnOfVgThCN5JXbWiOKFreo=) 2: F5BBEA5AF6A611E7B40C7427C4F9AE02.roa (hash: jZ94Uq8FHCXXnitnDn5/qXCMyoMAkxZffV3TIDmL9po=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9189311/13AFF6F6B24D11E4B67F185FC4F9AE02/e3dUqC3QY6R-jsNdFj72skSNEts.crl rsync://rpki.apnic.net/member_repository/A9189311/13AFF6F6B24D11E4B67F185FC4F9AE02/e3dUqC3QY6R-jsNdFj72skSNEts.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/e3dUqC3QY6R-jsNdFj72skSNEts.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 15:22:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10025 (0x2729) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9189311/serialNumber=7B7754A82DD063A47E8EC35D163EF6B2448D12DB Validity Not Before: Nov 22 15:39:45 2024 GMT Not After : Nov 29 15:39:45 2024 GMT Subject: CN=6740a5c1-682c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:1a:67:5b:fc:ff:ff:c3:36:40:d3:63:4f:7f: 03:4b:54:55:06:d0:03:80:09:11:83:f5:6e:a2:f4: b6:f2:ab:4c:06:e1:9a:f3:a6:c9:d3:a5:4a:f0:bf: 55:c5:b6:d8:75:ec:a5:5e:e0:46:0b:67:b9:8e:a1: 08:cd:5e:62:65:0c:57:80:4b:42:b7:ba:f4:c5:49: 44:45:3f:da:3c:3e:c9:21:57:e6:03:6f:81:58:b2: 94:84:70:ca:40:46:bf:4f:29:ee:8d:91:ea:67:f0: b6:b9:b5:59:20:7c:ed:7c:30:b0:cc:58:01:6d:56: 5e:ad:f6:f7:9c:8f:36:b2:62:b7:d2:af:1d:ca:b2: 34:b1:bb:f3:a1:ec:86:c0:5e:cc:9e:2f:94:2a:f7: bf:93:ef:93:17:4c:39:68:6e:98:f7:89:7e:06:a6: 0f:5c:e2:1f:90:99:b6:97:aa:1d:ff:c5:85:20:cf: 6f:91:57:a6:da:c6:87:e6:ab:68:9b:4d:97:14:4f: 4b:c7:1a:d3:35:78:d8:1c:30:6e:ef:89:68:37:3c: 6d:ca:c9:c9:f4:40:21:ee:50:e7:d6:1c:66:50:4d: 87:c6:57:b5:40:4b:b4:d0:9a:3d:5f:a7:35:b7:c8: 57:c4:75:96:48:b9:36:e1:68:b4:c9:b8:34:03:31: 38:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:96:39:22:45:4A:42:F1:6A:5B:91:26:AD:F2:EE:82:64:F2:9A:F2 X509v3 Authority Key Identifier: keyid:7B:77:54:A8:2D:D0:63:A4:7E:8E:C3:5D:16:3E:F6:B2:44:8D:12:DB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9189311/13AFF6F6B24D11E4B67F185FC4F9AE02/e3dUqC3QY6R-jsNdFj72skSNEts.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/e3dUqC3QY6R-jsNdFj72skSNEts.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9189311/13AFF6F6B24D11E4B67F185FC4F9AE02/e3dUqC3QY6R-jsNdFj72skSNEts.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 51:f4:27:e0:25:20:60:21:ce:8b:e7:54:e5:41:da:cb:c6:ee: 0a:8f:cf:fb:c8:8a:60:3a:1f:37:2a:c3:45:df:e2:37:c7:3c: 84:7f:2f:03:50:c9:0e:fa:20:28:4e:aa:f8:83:59:a3:77:e6: 60:ae:d1:29:2b:22:5e:06:fe:a1:91:61:75:90:7f:46:7d:92: a7:6c:39:b4:1c:9c:e6:e7:aa:16:aa:39:4c:dd:b5:f3:0d:8f: 2b:a8:47:45:6a:0e:4a:4d:81:ca:56:00:50:00:77:ab:8c:a9: 15:2a:c4:39:eb:fb:89:5a:b3:53:b0:06:b8:28:dd:4b:34:63: 74:c8:83:ae:67:e7:a0:c4:d4:3f:5e:7a:03:cb:6c:b8:6b:0f: c5:51:77:da:54:df:23:55:bb:37:3a:cb:66:67:da:e1:74:72: d1:a8:a8:07:72:bb:15:fd:05:fd:25:36:a8:db:8f:1f:38:3e: 91:97:af:fb:9c:a5:c7:bb:72:f8:14:af:fa:16:0a:5a:b6:2a: 23:5f:da:4a:e3:39:8b:9c:1b:4e:45:b0:6e:43:0d:5c:c9:0b: eb:af:9f:de:d3:38:6e:93:5e:d8:ad:0e:b5:83:60:c3:e1:f9: 70:d8:51:d7:44:ae:fa:22:00:10:54:14:4d:0b:b4:4c:7c:b4: fc:8c:75:6a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICJykwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODkzMTExMTAvBgNVBAUTKDdCNzc1NEE4MkREMDYzQTQ3RThFQzM1RDE2M0VGNkIy NDQ4RDEyREIwHhcNMjQxMTIyMTUzOTQ1WhcNMjQxMTI5MTUzOTQ1WjAYMRYwFAYD VQQDEw02NzQwYTVjMS02ODJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxRpnW/z//8M2QNNjT38DS1RVBtADgAkRg/VuovS28qtMBuGa86bJ06VK8L9V xbbYdeylXuBGC2e5jqEIzV5iZQxXgEtCt7r0xUlERT/aPD7JIVfmA2+BWLKUhHDK QEa/TynujZHqZ/C2ubVZIHztfDCwzFgBbVZerfb3nI82smK30q8dyrI0sbvzoeyG wF7Mni+UKve/k++TF0w5aG6Y94l+BqYPXOIfkJm2l6od/8WFIM9vkVem2saH5qto m02XFE9LxxrTNXjYHDBu74loNzxtysnJ9EAh7lDn1hxmUE2Hxle1QEu00Jo9X6c1 t8hXxHWWSLk24Wi0ybg0AzE4fQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHmWOSJF SkLxaluRJq3y7oJk8pryMB8GA1UdIwQYMBaAFHt3VKgt0GOkfo7DXRY+9rJEjRLb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4OTMxMS8xM0FGRjZGNkIy NEQxMUU0QjY3RjE4NUZDNEY5QUUwMi9lM2RVcUMzUVk2Ui1qc05kRmo3MnNrU05F dHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2UzZFVxQzNRWTZSLWpzTmRGajcyc2tTTkV0cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 OTMxMS8xM0FGRjZGNkIyNEQxMUU0QjY3RjE4NUZDNEY5QUUwMi9lM2RVcUMzUVk2 Ui1qc05kRmo3MnNrU05FdHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBR9CfgJSBgIc6L51TlQdrLxu4Kj8/7yIpgOh83KsNF3+I3xzyEfy8D UMkO+iAoTqr4g1mjd+ZgrtEpKyJeBv6hkWF1kH9GfZKnbDm0HJzm56oWqjlM3bXz DY8rqEdFag5KTYHKVgBQAHerjKkVKsQ56/uJWrNTsAa4KN1LNGN0yIOuZ+egxNQ/ XnoDy2y4aw/FUXfaVN8jVbs3OstmZ9rhdHLRqKgHcrsV/QX9JTao248fOD6Rl6/7 nKXHu3L4FK/6FgpatiojX9pK4zmLnBtORbBuQw1cyQvrr5/e0zhuk17YrQ61g2DD 4flw2FHXRK76IgAQVBRNC7RMfLT8jHVq -----END CERTIFICATE-----Generated at Fri Nov 22 16:49:23 2024 by rpki-client on console-ams.rpki-client.org