$ rpki-client -vvf rpki.apnic.net/member_repository/A919A016/C0677226417111EAAAD26A6CC4F9AE02/3y-KdfPpJ14NTxD8ajGZl5Eb5bU.mft File: 3y-KdfPpJ14NTxD8ajGZl5Eb5bU.mft (raw, json) Hash identifier: Gmm9ZX9YG6N3Vq9kgoLzCWOJRebVKDrjBIaV7k+8N3c= Subject key identifier: A1:3D:F8:F2:E7:9D:7C:EB:83:2F:46:33:24:D4:CE:7F:E9:27:E4:1D Authority key identifier: DF:2F:8A:75:F3:E9:27:5E:0D:4F:10:FC:6A:31:99:97:91:1B:E5:B5 Certificate issuer: /CN=A919A016/serialNumber=DF2F8A75F3E9275E0D4F10FC6A319997911BE5B5 Certificate serial: 0AB0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3y-KdfPpJ14NTxD8ajGZl5Eb5bU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919A016/C0677226417111EAAAD26A6CC4F9AE02/3y-KdfPpJ14NTxD8ajGZl5Eb5bU.mft Manifest number: 0AA9 Signing time: Wed 20 Nov 2024 19:12:26 +0000 Manifest this update: Wed 20 Nov 2024 19:12:25 +0000 Manifest next update: Wed 27 Nov 2024 19:12:25 +0000 Files and hashes: 1: 3y-KdfPpJ14NTxD8ajGZl5Eb5bU.crl (hash: Z47mmqncyEFFlXDG4tzzAFYqINFJiVxNPxpScf2mFEo=) 2: AD03DBB2419D11EABC319278C4F9AE02.roa (hash: lXRhvrRkiDZ89FEGOujFjOkOv02tmbv3I/6VRa5eWzo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919A016/C0677226417111EAAAD26A6CC4F9AE02/3y-KdfPpJ14NTxD8ajGZl5Eb5bU.crl rsync://rpki.apnic.net/member_repository/A919A016/C0677226417111EAAAD26A6CC4F9AE02/3y-KdfPpJ14NTxD8ajGZl5Eb5bU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3y-KdfPpJ14NTxD8ajGZl5Eb5bU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 19:12:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2736 (0xab0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919A016/serialNumber=DF2F8A75F3E9275E0D4F10FC6A319997911BE5B5 Validity Not Before: Nov 20 19:12:25 2024 GMT Not After : Nov 27 19:12:25 2024 GMT Subject: CN=673e349a-07e0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:8e:bd:07:30:c6:74:55:f1:8b:f4:42:ac:5f: dc:67:dd:da:37:69:9f:7a:5b:7d:13:47:ca:9d:94: b6:07:5c:19:82:41:97:59:39:69:c7:c8:19:e0:bb: 25:12:41:1d:dc:d3:c3:3f:06:cf:09:cd:15:71:e5: ba:70:04:38:a2:16:e8:54:53:91:d7:92:9f:ab:c0: 0a:c8:69:21:88:2e:fe:20:66:a1:6d:7a:13:f7:c3: a0:c3:f2:50:27:51:8d:17:63:1a:b7:35:6a:79:8d: 7d:6e:32:c2:e3:37:49:87:3c:49:0c:c3:ab:14:54: e9:e4:2c:86:2e:3a:7d:d1:53:9f:e9:12:0d:dd:bf: dd:1f:db:3c:77:a6:2d:63:bd:6f:e2:e1:df:13:ed: 4d:bf:e6:ff:2a:fc:4d:9b:3a:a8:f1:e7:ce:91:8a: a7:a9:0e:74:9c:9b:81:d6:69:8e:db:b6:af:20:c2: bb:0a:b9:90:58:b2:e2:04:45:de:62:d7:b4:c0:a3: a3:8d:f6:0e:74:6c:51:a7:38:3f:78:62:42:77:5b: 1c:35:41:52:0e:c3:f2:a8:42:31:34:48:1c:a1:86: f4:ef:24:a8:c9:a5:8f:bd:66:9f:20:13:2a:03:65: d6:47:40:3b:1b:95:8b:7d:17:9d:ae:a0:47:a8:ca: ae:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:3D:F8:F2:E7:9D:7C:EB:83:2F:46:33:24:D4:CE:7F:E9:27:E4:1D X509v3 Authority Key Identifier: keyid:DF:2F:8A:75:F3:E9:27:5E:0D:4F:10:FC:6A:31:99:97:91:1B:E5:B5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919A016/C0677226417111EAAAD26A6CC4F9AE02/3y-KdfPpJ14NTxD8ajGZl5Eb5bU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3y-KdfPpJ14NTxD8ajGZl5Eb5bU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919A016/C0677226417111EAAAD26A6CC4F9AE02/3y-KdfPpJ14NTxD8ajGZl5Eb5bU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 28:eb:2a:41:23:b9:fe:b3:12:0f:20:0c:d0:1c:8f:2f:52:8f: 38:22:29:68:74:57:04:80:ae:b2:e7:fd:90:23:15:15:94:d5: da:99:10:8f:ed:5a:c3:35:86:7b:19:ce:5b:d8:04:c8:c2:a6: ec:0a:70:20:83:76:ef:59:22:d4:92:9b:c6:6f:4c:99:8a:26: c6:a2:3b:f4:ae:ce:b2:d4:c8:7c:ab:6c:21:13:74:66:0e:59: 59:33:27:4f:c3:88:06:35:d9:25:52:5e:43:7a:99:96:59:96: 3a:a8:9e:fb:a0:6e:56:d9:ff:8f:d3:08:e6:f9:d4:18:07:28: 33:8c:4a:e3:a4:37:07:30:22:9e:bb:e7:76:9a:82:24:7e:51: c9:19:49:ae:0d:51:be:e4:9d:18:75:6c:b1:20:04:ee:45:59: 3b:42:ad:ce:16:db:31:41:62:ec:fb:3c:1f:83:88:50:a1:f0: 83:58:11:96:c8:0c:20:30:9c:1e:00:50:a8:4b:93:91:13:c3: ce:d2:ce:9a:cf:81:e4:6f:5e:f1:6c:89:a2:31:32:ea:17:d8: 91:bb:44:9b:42:5a:7e:d1:96:27:0a:6c:9c:a4:09:97:16:4f: 21:41:9f:b6:1c:7f:49:1a:f1:ad:9e:8c:61:61:82:1c:6a:63: af:a7:ce:59 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCrAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUEwMTYxMTAvBgNVBAUTKERGMkY4QTc1RjNFOTI3NUUwRDRGMTBGQzZBMzE5OTk3 OTExQkU1QjUwHhcNMjQxMTIwMTkxMjI1WhcNMjQxMTI3MTkxMjI1WjAYMRYwFAYD VQQDEw02NzNlMzQ5YS0wN2UwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6469BzDGdFXxi/RCrF/cZ93aN2mfelt9E0fKnZS2B1wZgkGXWTlpx8gZ4Lsl EkEd3NPDPwbPCc0VceW6cAQ4ohboVFOR15Kfq8AKyGkhiC7+IGahbXoT98Ogw/JQ J1GNF2MatzVqeY19bjLC4zdJhzxJDMOrFFTp5CyGLjp90VOf6RIN3b/dH9s8d6Yt Y71v4uHfE+1Nv+b/KvxNmzqo8efOkYqnqQ50nJuB1mmO27avIMK7CrmQWLLiBEXe Yte0wKOjjfYOdGxRpzg/eGJCd1scNUFSDsPyqEIxNEgcoYb07ySoyaWPvWafIBMq A2XWR0A7G5WLfRedrqBHqMquEwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKE9+PLn nXzrgy9GMyTUzn/pJ+QdMB8GA1UdIwQYMBaAFN8vinXz6SdeDU8Q/GoxmZeRG+W1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QTAxNi9DMDY3NzIyNjQx NzExMUVBQUFEMjZBNkNDNEY5QUUwMi8zeS1LZGZQcEoxNE5UeEQ4YWpHWmw1RWI1 YlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzN5LUtkZlBwSjE0TlR4RDhhakdabDVFYjViVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 QTAxNi9DMDY3NzIyNjQxNzExMUVBQUFEMjZBNkNDNEY5QUUwMi8zeS1LZGZQcEox NE5UeEQ4YWpHWmw1RWI1YlUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAo6ypBI7n+sxIPIAzQHI8vUo84IilodFcEgK6y5/2QIxUVlNXamRCP 7VrDNYZ7Gc5b2ATIwqbsCnAgg3bvWSLUkpvGb0yZiibGojv0rs6y1Mh8q2whE3Rm DllZMydPw4gGNdklUl5DepmWWZY6qJ77oG5W2f+P0wjm+dQYBygzjErjpDcHMCKe u+d2moIkflHJGUmuDVG+5J0YdWyxIATuRVk7Qq3OFtsxQWLs+zwfg4hQofCDWBGW yAwgMJweAFCoS5ORE8PO0s6az4Hkb17xbImiMTLqF9iRu0SbQlp+0ZYnCmycpAmX Fk8hQZ+2HH9JGvGtnoxhYYIcamOvp85Z -----END CERTIFICATE-----Generated at Wed Nov 20 21:34:55 2024 by rpki-client on console-ams.rpki-client.org