$ rpki-client -vvf rpki.apnic.net/member_repository/A919C7BB/8CE59DA4645F11EABC69297AC4F9AE02/u3h15MblRLV0ehFf6M32iYyN5zM.mft File: u3h15MblRLV0ehFf6M32iYyN5zM.mft (raw, json) Hash identifier: 1Dl1zYhaLkvzEzjrFkhTSPppfvJD0oK40QxbpTPZLG8= Subject key identifier: DB:1D:9D:41:AD:01:65:BD:34:C8:FF:C5:2F:14:A7:23:B9:0B:1B:6C Authority key identifier: BB:78:75:E4:C6:E5:44:B5:74:7A:11:5F:E8:CD:F6:89:8C:8D:E7:33 Certificate issuer: /CN=A919C7BB/serialNumber=BB7875E4C6E544B5747A115FE8CDF6898C8DE733 Certificate serial: 0A12 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u3h15MblRLV0ehFf6M32iYyN5zM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919C7BB/8CE59DA4645F11EABC69297AC4F9AE02/u3h15MblRLV0ehFf6M32iYyN5zM.mft Manifest number: 0A03 Signing time: Fri 22 Nov 2024 19:37:37 +0000 Manifest this update: Fri 22 Nov 2024 19:37:36 +0000 Manifest next update: Fri 29 Nov 2024 19:37:36 +0000 Files and hashes: 1: u3h15MblRLV0ehFf6M32iYyN5zM.crl (hash: imMiFM4amXZABwW8/wB6eML4WOXwRQKEFHfIKmPCpO0=) 2: 33CAA25A05A611EEA86A0C2BC4F9AE02.roa (hash: Eg/JW4cJF7nsXObfOoTZK84gKFfE+zST8g2LwnJr8pE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919C7BB/8CE59DA4645F11EABC69297AC4F9AE02/u3h15MblRLV0ehFf6M32iYyN5zM.crl rsync://rpki.apnic.net/member_repository/A919C7BB/8CE59DA4645F11EABC69297AC4F9AE02/u3h15MblRLV0ehFf6M32iYyN5zM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u3h15MblRLV0ehFf6M32iYyN5zM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 19:37:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2578 (0xa12) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919C7BB/serialNumber=BB7875E4C6E544B5747A115FE8CDF6898C8DE733 Validity Not Before: Nov 22 19:37:36 2024 GMT Not After : Nov 29 19:37:36 2024 GMT Subject: CN=6740dd81-f593 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:3d:6d:5d:ac:d2:58:19:38:37:bd:af:3e:38: c4:dd:cb:ed:1a:0c:a8:42:8c:d4:bb:1f:49:b2:d9: 11:15:74:19:1b:ae:a2:5f:35:4e:75:85:06:e8:64: 15:63:ac:c9:8b:fe:d7:92:00:18:b5:0f:8b:d4:85: 1b:4e:cf:62:b4:68:6c:00:75:c1:55:03:d6:85:47: 99:cb:d6:5e:86:b5:ce:5f:b1:0f:ea:24:a7:09:1d: d0:e9:43:b7:5a:ce:3d:0a:2d:06:f1:2e:c3:02:da: b5:42:cf:a7:eb:e2:8d:33:8b:d7:f8:7e:8b:d5:41: c2:d7:f3:43:2e:1b:30:f5:ba:10:5d:af:16:a1:db: fb:1b:bd:cf:b5:53:2c:db:59:62:85:51:0c:d6:99: bb:a3:75:a5:d3:c9:b7:0e:31:68:b8:96:74:81:67: 52:ac:08:00:d4:fd:f3:83:5f:a1:c7:02:53:55:8a: 46:11:63:ab:4b:72:b9:41:c3:33:4c:1e:2a:8a:b4: 45:77:7c:4d:02:22:fd:67:93:ac:b4:ba:a5:ac:84: 50:62:f9:cc:99:2e:7b:e5:e5:8b:ef:79:19:69:31: dc:89:79:78:b6:68:c2:75:02:58:b9:8a:1a:e1:7b: 36:32:7c:82:1a:5a:69:c5:98:e9:0a:71:bc:2b:d3: 79:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:1D:9D:41:AD:01:65:BD:34:C8:FF:C5:2F:14:A7:23:B9:0B:1B:6C X509v3 Authority Key Identifier: keyid:BB:78:75:E4:C6:E5:44:B5:74:7A:11:5F:E8:CD:F6:89:8C:8D:E7:33 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919C7BB/8CE59DA4645F11EABC69297AC4F9AE02/u3h15MblRLV0ehFf6M32iYyN5zM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u3h15MblRLV0ehFf6M32iYyN5zM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919C7BB/8CE59DA4645F11EABC69297AC4F9AE02/u3h15MblRLV0ehFf6M32iYyN5zM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 61:a5:c4:bd:37:84:6f:dc:be:d4:e5:e0:d0:01:14:1e:14:f4: 89:a3:b4:e6:b1:5e:14:21:d0:f0:87:c4:40:d5:e1:dc:26:95: ce:73:eb:7a:b9:99:a1:4d:c5:b5:4b:2b:0a:d0:32:cc:93:9a: fc:c4:ea:7b:de:44:97:e3:71:2c:d1:8e:a1:fe:c3:ac:0d:51: 58:cd:76:ae:2c:56:74:15:61:f8:99:da:dd:c0:bd:ad:a5:c5: 5c:78:e1:c8:d6:8b:e3:53:71:7d:88:58:f5:4d:78:76:89:43: 2d:19:7e:6d:dc:87:21:80:5d:c6:9b:ac:72:67:ab:f8:b1:95: 13:cb:ed:ff:fe:d2:7f:87:bb:49:a8:5b:df:1d:b6:44:60:f1: 44:f4:7c:8d:9e:b1:cc:62:ce:5d:15:61:92:e2:9b:f1:e0:9b: 3a:ca:fa:dc:7a:d5:43:0f:4a:d4:62:bf:94:5a:9b:2f:64:30: 24:33:92:9b:72:c7:49:62:bd:80:d9:00:62:8d:20:26:c9:ad: b7:cd:2d:78:e2:ab:4b:9e:8b:de:69:53:e0:07:cd:96:e5:77: 05:cd:cb:df:d9:83:81:35:46:a1:4f:bd:05:58:d6:80:e2:d4: 27:10:6c:9a:8f:78:67:f7:a2:cc:bb:e2:72:70:b5:05:f8:1c: d4:65:40:f7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICChIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUM3QkIxMTAvBgNVBAUTKEJCNzg3NUU0QzZFNTQ0QjU3NDdBMTE1RkU4Q0RGNjg5 OEM4REU3MzMwHhcNMjQxMTIyMTkzNzM2WhcNMjQxMTI5MTkzNzM2WjAYMRYwFAYD VQQDEw02NzQwZGQ4MS1mNTkzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzD1tXazSWBk4N72vPjjE3cvtGgyoQozUux9JstkRFXQZG66iXzVOdYUG6GQV Y6zJi/7XkgAYtQ+L1IUbTs9itGhsAHXBVQPWhUeZy9ZehrXOX7EP6iSnCR3Q6UO3 Ws49Ci0G8S7DAtq1Qs+n6+KNM4vX+H6L1UHC1/NDLhsw9boQXa8Wodv7G73PtVMs 21lihVEM1pm7o3Wl08m3DjFouJZ0gWdSrAgA1P3zg1+hxwJTVYpGEWOrS3K5QcMz TB4qirRFd3xNAiL9Z5OstLqlrIRQYvnMmS575eWL73kZaTHciXl4tmjCdQJYuYoa 4Xs2MnyCGlppxZjpCnG8K9N5lQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNsdnUGt AWW9NMj/xS8UpyO5CxtsMB8GA1UdIwQYMBaAFLt4deTG5US1dHoRX+jN9omMjecz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QzdCQi84Q0U1OURBNDY0 NUYxMUVBQkM2OTI5N0FDNEY5QUUwMi91M2gxNU1ibFJMVjBlaEZmNk0zMmlZeU41 ek0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3UzaDE1TWJsUkxWMGVoRmY2TTMyaVl5TjV6TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 QzdCQi84Q0U1OURBNDY0NUYxMUVBQkM2OTI5N0FDNEY5QUUwMi91M2gxNU1ibFJM VjBlaEZmNk0zMmlZeU41ek0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBhpcS9N4Rv3L7U5eDQARQeFPSJo7TmsV4UIdDwh8RA1eHcJpXOc+t6 uZmhTcW1SysK0DLMk5r8xOp73kSX43Es0Y6h/sOsDVFYzXauLFZ0FWH4mdrdwL2t pcVceOHI1ovjU3F9iFj1TXh2iUMtGX5t3IchgF3Gm6xyZ6v4sZUTy+3//tJ/h7tJ qFvfHbZEYPFE9HyNnrHMYs5dFWGS4pvx4Js6yvrcetVDD0rUYr+UWpsvZDAkM5Kb csdJYr2A2QBijSAmya23zS144qtLnoveaVPgB82W5XcFzcvf2YOBNUahT70FWNaA 4tQnEGyaj3hn96LMu+JycLUF+BzUZUD3 -----END CERTIFICATE-----Generated at Fri Nov 22 22:14:36 2024 by rpki-client on console-ams.rpki-client.org