$ rpki-client -vvf rpki.apnic.net/member_repository/A9199AFB/4434D590D9C211EC887F9846C4F9AE02/3GF8-u34v7Cj7PfWcULmwdUmQ1w.mft File: 3GF8-u34v7Cj7PfWcULmwdUmQ1w.mft (raw, json) Hash identifier: 6fwnIiSEk6gJ4g1XcoHBB0pqcLpKEGfFrSgHuZ3brNQ= Subject key identifier: 8C:CA:D1:6A:D3:8F:3D:B8:F6:9D:F7:03:BE:22:B8:4F:EE:83:3B:94 Authority key identifier: DC:61:7C:FA:ED:F8:BF:B0:A3:EC:F7:D6:71:42:E6:C1:D5:26:43:5C Certificate issuer: /CN=A9199AFB/serialNumber=DC617CFAEDF8BFB0A3ECF7D67142E6C1D526435C Certificate serial: 02A2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3GF8-u34v7Cj7PfWcULmwdUmQ1w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9199AFB/4434D590D9C211EC887F9846C4F9AE02/3GF8-u34v7Cj7PfWcULmwdUmQ1w.mft Manifest number: 029E Signing time: Sat 23 Nov 2024 01:05:56 +0000 Manifest this update: Sat 23 Nov 2024 01:05:55 +0000 Manifest next update: Sat 30 Nov 2024 01:05:55 +0000 Files and hashes: 1: 3GF8-u34v7Cj7PfWcULmwdUmQ1w.crl (hash: gelRX7DfTjTHCbQTnbN25FHmaPDQqSBss2zCo+bX2/k=) 2: 9E9EC628D9C511EC81B54F47C4F9AE02.roa (hash: eVqCt6jrx+C1JB/X7OKow2VBehCM/YMsmg/5OjY9iwk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9199AFB/4434D590D9C211EC887F9846C4F9AE02/3GF8-u34v7Cj7PfWcULmwdUmQ1w.crl rsync://rpki.apnic.net/member_repository/A9199AFB/4434D590D9C211EC887F9846C4F9AE02/3GF8-u34v7Cj7PfWcULmwdUmQ1w.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3GF8-u34v7Cj7PfWcULmwdUmQ1w.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 674 (0x2a2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9199AFB/serialNumber=DC617CFAEDF8BFB0A3ECF7D67142E6C1D526435C Validity Not Before: Nov 23 01:05:55 2024 GMT Not After : Nov 30 01:05:55 2024 GMT Subject: CN=67412a73-de10 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:07:70:c8:19:d5:05:3a:76:06:b7:22:90:84: 45:f0:84:d7:39:5c:28:eb:a6:10:78:53:51:e7:45: 8e:86:d7:63:f4:3c:9e:f9:51:0f:d5:9c:6d:39:ae: 78:e6:19:f8:b6:a3:f2:e4:bd:14:52:02:ab:77:63: 03:03:33:db:ff:78:85:1e:a5:93:70:87:6f:ad:6b: 55:58:18:8d:e5:55:26:fe:26:22:bc:f7:ac:7c:5a: c5:05:2c:a3:5e:e5:75:1d:ce:c5:04:dd:40:4d:3d: ae:1a:ba:cd:dd:0f:1a:a9:ac:f7:cc:06:df:ea:ef: d6:ff:50:c5:fa:c0:bd:37:a3:98:0d:bd:2d:3d:5a: 22:98:fa:fc:18:6c:31:00:11:39:5f:12:35:90:e0: 3f:23:37:9b:44:d1:8f:6d:da:e7:ca:5d:fc:0c:8a: 39:a8:40:a3:4d:82:30:93:99:be:88:75:10:ec:13: e1:99:7a:92:e2:4d:21:6e:40:d6:3a:da:1c:28:2c: d4:71:bc:af:3d:cb:94:72:b8:92:62:ab:51:0b:c2: 94:e9:b7:d1:60:b1:f5:51:4a:52:e2:11:7b:4b:3e: 41:71:7a:21:28:17:7c:c8:cf:56:88:b2:7c:87:ee: a6:86:76:61:dc:0c:fa:21:f2:bb:46:b5:f2:37:31: 52:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:CA:D1:6A:D3:8F:3D:B8:F6:9D:F7:03:BE:22:B8:4F:EE:83:3B:94 X509v3 Authority Key Identifier: keyid:DC:61:7C:FA:ED:F8:BF:B0:A3:EC:F7:D6:71:42:E6:C1:D5:26:43:5C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9199AFB/4434D590D9C211EC887F9846C4F9AE02/3GF8-u34v7Cj7PfWcULmwdUmQ1w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3GF8-u34v7Cj7PfWcULmwdUmQ1w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9199AFB/4434D590D9C211EC887F9846C4F9AE02/3GF8-u34v7Cj7PfWcULmwdUmQ1w.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 45:48:f0:2d:09:a3:8d:63:5c:04:48:f4:5d:91:92:db:a6:46: ab:8f:dd:fe:85:b2:c5:cd:ed:11:6f:8b:71:52:54:85:b4:f7: 0f:1f:bc:ae:29:e0:eb:e3:bd:ef:65:ba:a3:d9:87:f5:b0:42: fe:c6:d6:8b:ea:62:fb:e0:42:4e:58:00:f1:c1:98:44:c3:37: fc:55:4b:4b:c1:34:76:88:97:ec:31:d8:6a:ef:18:6c:07:61: 0f:1a:04:f6:e2:88:21:57:e0:a1:87:83:37:52:eb:1a:ee:d4: 0f:3f:54:49:8b:5b:a0:26:37:bf:dd:31:72:9e:01:fb:b4:b1: 13:46:db:3a:17:a5:08:1c:5e:18:44:b8:fe:8c:7d:2b:52:1b: 31:af:a1:d9:24:26:63:0c:c1:4e:f4:27:67:a5:fc:35:35:c2: 69:b4:51:64:d5:83:ab:cd:84:34:4c:da:50:92:09:0d:93:7f: 41:f3:68:1f:36:37:df:17:86:4e:cd:d6:15:5d:b7:5e:5b:95: 0f:67:5b:3a:fe:ad:65:40:3a:5c:32:4a:84:cf:c4:6d:07:ce: a4:cb:c0:79:73:90:e3:34:0a:e9:9e:3c:47:89:4c:a7:2b:35: 5e:ed:01:d7:12:67:34:6c:df:39:2a:2f:45:a0:1e:ab:56:df: 0d:99:91:f4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAqIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTlBRkIxMTAvBgNVBAUTKERDNjE3Q0ZBRURGOEJGQjBBM0VDRjdENjcxNDJFNkMx RDUyNjQzNUMwHhcNMjQxMTIzMDEwNTU1WhcNMjQxMTMwMDEwNTU1WjAYMRYwFAYD VQQDEw02NzQxMmE3My1kZTEwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvwdwyBnVBTp2BrcikIRF8ITXOVwo66YQeFNR50WOhtdj9Dye+VEP1ZxtOa54 5hn4tqPy5L0UUgKrd2MDAzPb/3iFHqWTcIdvrWtVWBiN5VUm/iYivPesfFrFBSyj XuV1Hc7FBN1ATT2uGrrN3Q8aqaz3zAbf6u/W/1DF+sC9N6OYDb0tPVoimPr8GGwx ABE5XxI1kOA/IzebRNGPbdrnyl38DIo5qECjTYIwk5m+iHUQ7BPhmXqS4k0hbkDW OtocKCzUcbyvPcuUcriSYqtRC8KU6bfRYLH1UUpS4hF7Sz5BcXohKBd8yM9WiLJ8 h+6mhnZh3Az6IfK7RrXyNzFS+QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIzK0WrT jz249p33A74iuE/ugzuUMB8GA1UdIwQYMBaAFNxhfPrt+L+wo+z31nFC5sHVJkNc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5OUFGQi80NDM0RDU5MEQ5 QzIxMUVDODg3Rjk4NDZDNEY5QUUwMi8zR0Y4LXUzNHY3Q2o3UGZXY1VMbXdkVW1R MXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNHRjgtdTM0djdDajdQZldjVUxtd2RVbVExdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 OUFGQi80NDM0RDU5MEQ5QzIxMUVDODg3Rjk4NDZDNEY5QUUwMi8zR0Y4LXUzNHY3 Q2o3UGZXY1VMbXdkVW1RMXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBFSPAtCaONY1wESPRdkZLbpkarj93+hbLFze0Rb4txUlSFtPcPH7yu KeDr473vZbqj2Yf1sEL+xtaL6mL74EJOWADxwZhEwzf8VUtLwTR2iJfsMdhq7xhs B2EPGgT24oghV+Chh4M3Uusa7tQPP1RJi1ugJje/3TFyngH7tLETRts6F6UIHF4Y RLj+jH0rUhsxr6HZJCZjDMFO9Cdnpfw1NcJptFFk1YOrzYQ0TNpQkgkNk39B82gf NjffF4ZOzdYVXbdeW5UPZ1s6/q1lQDpcMkqEz8RtB86ky8B5c5DjNArpnjxHiUyn KzVe7QHXEmc0bN85Ki9FoB6rVt8NmZH0 -----END CERTIFICATE-----Generated at Sat Nov 23 02:33:42 2024 by rpki-client on console-fra.rpki-client.org