$ rpki-client -vvf rpki.apnic.net/member_repository/A919D109/DAC666C05CE011EEB6C1B513C4F9AE02/Pq60tRb3A-pY8W4I2opmdwP7XK4.mft File: Pq60tRb3A-pY8W4I2opmdwP7XK4.mft (raw, json) Hash identifier: yFVkhDzvtBBtaD/PPDg2gGU+1s4rXP+uHyc5zHMzM3g= Subject key identifier: F1:40:1E:71:2D:5E:5D:5C:BE:4A:28:80:62:CB:75:6E:18:CF:0B:E7 Authority key identifier: 3E:AE:B4:B5:16:F7:03:EA:58:F1:6E:08:DA:8A:66:77:03:FB:5C:AE Certificate issuer: /CN=A919D109/serialNumber=3EAEB4B516F703EA58F16E08DA8A667703FB5CAE Certificate serial: EB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Pq60tRb3A-pY8W4I2opmdwP7XK4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919D109/DAC666C05CE011EEB6C1B513C4F9AE02/Pq60tRb3A-pY8W4I2opmdwP7XK4.mft Manifest number: E3 Signing time: Sat 23 Nov 2024 03:40:40 +0000 Manifest this update: Sat 23 Nov 2024 03:40:40 +0000 Manifest next update: Sat 30 Nov 2024 03:40:40 +0000 Files and hashes: 1: Pq60tRb3A-pY8W4I2opmdwP7XK4.crl (hash: kJa+BNRFuuCpLSKGy+pPHIFGCXITskezHM2BysWNRa8=) 2: B67DC27A60E311EEB04BEA49C4F9AE02.roa (hash: Uh7NExbaYKDBSUUKd+crKnXeWpl3+22sEhcewGQ9kp8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919D109/DAC666C05CE011EEB6C1B513C4F9AE02/Pq60tRb3A-pY8W4I2opmdwP7XK4.crl rsync://rpki.apnic.net/member_repository/A919D109/DAC666C05CE011EEB6C1B513C4F9AE02/Pq60tRb3A-pY8W4I2opmdwP7XK4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Pq60tRb3A-pY8W4I2opmdwP7XK4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 235 (0xeb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919D109/serialNumber=3EAEB4B516F703EA58F16E08DA8A667703FB5CAE Validity Not Before: Nov 23 03:40:40 2024 GMT Not After : Nov 30 03:40:40 2024 GMT Subject: CN=67414eb8-7ed3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:d8:80:14:be:25:2f:d3:e2:75:31:70:de:44: 59:cf:19:92:be:0a:1b:10:0a:81:0a:78:4e:3e:1e: b7:99:c5:16:0a:e4:d3:93:73:99:f3:16:dd:dc:cb: 7d:c5:c3:ae:14:2e:7d:ab:87:4d:39:74:a3:de:90: 35:15:be:2d:67:8d:08:d9:ea:66:1e:bc:1c:26:32: 2e:71:d1:82:12:74:57:5b:b2:b0:df:e8:dc:be:fd: 53:f0:42:d3:25:14:66:6f:e4:48:7c:ad:82:06:8d: 96:8d:6f:e8:ee:15:37:05:1e:49:6c:3f:f7:0a:20: f2:75:3f:92:f3:bc:dc:c8:5c:ea:95:3a:c9:04:46: 3e:e7:b9:ce:93:f1:ca:1d:47:09:14:b5:83:93:fc: 43:be:4f:92:d9:9a:74:45:ba:8d:fc:61:5e:15:f2: 27:25:eb:1a:de:48:89:4d:29:9a:4d:2f:9b:ee:65: 95:50:dd:5e:c7:7a:0a:ca:0d:b8:33:1e:1e:57:2f: da:6c:ec:78:11:18:87:d6:c7:e6:b8:e2:62:82:5a: c6:64:88:95:d7:d4:51:82:75:a5:1c:07:b6:88:7a: f1:4a:d7:96:bd:69:66:51:5c:a1:c4:18:d2:b7:74: b1:01:cf:97:28:e2:cd:af:20:63:45:9e:65:f9:40: 5e:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:40:1E:71:2D:5E:5D:5C:BE:4A:28:80:62:CB:75:6E:18:CF:0B:E7 X509v3 Authority Key Identifier: keyid:3E:AE:B4:B5:16:F7:03:EA:58:F1:6E:08:DA:8A:66:77:03:FB:5C:AE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919D109/DAC666C05CE011EEB6C1B513C4F9AE02/Pq60tRb3A-pY8W4I2opmdwP7XK4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Pq60tRb3A-pY8W4I2opmdwP7XK4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919D109/DAC666C05CE011EEB6C1B513C4F9AE02/Pq60tRb3A-pY8W4I2opmdwP7XK4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 10:89:b9:37:b3:a2:8f:04:32:67:ee:71:42:ec:e7:66:cf:66: 20:1c:bf:17:90:64:08:da:e3:90:6d:c6:34:bb:dc:26:2d:65: 36:88:93:93:e1:6a:d8:ad:70:78:1a:a2:e7:d6:a3:db:54:2c: 0a:d0:29:6c:3f:63:c5:b7:1b:88:ec:bb:9c:39:ea:52:ce:c0: 12:bd:05:91:9a:57:f7:a9:5a:6c:e1:19:e2:b4:78:66:83:73: 3f:fd:6c:cc:66:e1:c8:fd:db:ba:31:37:cf:90:93:1e:4b:9b: 2e:01:40:a4:d5:9b:22:cb:cd:92:e0:62:89:3b:ac:01:8f:a5: 92:5d:e9:e1:c2:d5:71:27:5f:f7:e4:73:85:9a:21:9b:5d:42: ff:a4:2a:18:77:4e:73:8e:fd:1c:47:64:2d:6d:18:fc:de:02: 23:76:86:52:91:a0:76:a3:12:c5:87:0d:05:44:d4:ed:18:40: 34:0d:b9:ed:3d:7c:00:8b:38:b5:90:49:17:08:46:62:a8:a1: 10:50:97:2f:3a:b5:fe:73:a1:a1:a1:7d:fd:2c:b9:2a:d7:70: 2a:83:3c:bd:76:e9:25:15:1a:cc:d7:bf:f5:7e:c1:b6:44:47: 28:b7:df:2f:ca:23:9f:f9:80:c6:a1:d4:18:9c:f8:f0:d5:c8: df:9d:bd:e3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAOswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUQxMDkxMTAvBgNVBAUTKDNFQUVCNEI1MTZGNzAzRUE1OEYxNkUwOERBOEE2Njc3 MDNGQjVDQUUwHhcNMjQxMTIzMDM0MDQwWhcNMjQxMTMwMDM0MDQwWjAYMRYwFAYD VQQDEw02NzQxNGViOC03ZWQzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvtiAFL4lL9PidTFw3kRZzxmSvgobEAqBCnhOPh63mcUWCuTTk3OZ8xbd3Mt9 xcOuFC59q4dNOXSj3pA1Fb4tZ40I2epmHrwcJjIucdGCEnRXW7Kw3+jcvv1T8ELT JRRmb+RIfK2CBo2WjW/o7hU3BR5JbD/3CiDydT+S87zcyFzqlTrJBEY+57nOk/HK HUcJFLWDk/xDvk+S2Zp0RbqN/GFeFfInJesa3kiJTSmaTS+b7mWVUN1ex3oKyg24 Mx4eVy/abOx4ERiH1sfmuOJiglrGZIiV19RRgnWlHAe2iHrxSteWvWlmUVyhxBjS t3SxAc+XKOLNryBjRZ5l+UBe2QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPFAHnEt Xl1cvkoogGLLdW4YzwvnMB8GA1UdIwQYMBaAFD6utLUW9wPqWPFuCNqKZncD+1yu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RDEwOS9EQUM2NjZDMDVD RTAxMUVFQjZDMUI1MTNDNEY5QUUwMi9QcTYwdFJiM0EtcFk4VzRJMm9wbWR3UDdY SzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BxNjB0UmIzQS1wWThXNEkyb3BtZHdQN1hLNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RDEwOS9EQUM2NjZDMDVDRTAxMUVFQjZDMUI1MTNDNEY5QUUwMi9QcTYwdFJiM0Et cFk4VzRJMm9wbWR3UDdYSzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAQibk3s6KPBDJn7nFC7Odmz2YgHL8XkGQI2uOQbcY0u9wmLWU2iJOT 4WrYrXB4GqLn1qPbVCwK0ClsP2PFtxuI7LucOepSzsASvQWRmlf3qVps4RnitHhm g3M//WzMZuHI/du6MTfPkJMeS5suAUCk1Zsiy82S4GKJO6wBj6WSXenhwtVxJ1/3 5HOFmiGbXUL/pCoYd05zjv0cR2QtbRj83gIjdoZSkaB2oxLFhw0FRNTtGEA0Dbnt PXwAizi1kEkXCEZiqKEQUJcvOrX+c6GhoX39LLkq13Aqgzy9duklFRrM17/1fsG2 REcot98vyiOf+YDGodQYnPjw1cjfnb3j -----END CERTIFICATE-----Generated at Sat Nov 23 06:13:17 2024 by rpki-client on console-ams.rpki-client.org