$ rpki-client -vvf rpki.apnic.net/member_repository/A91B1A3B/227019DA901111EF9B85C96AC4F9AE02/38UozwAG40FK-3_obR_er2SLXJ0.mft File: 38UozwAG40FK-3_obR_er2SLXJ0.mft (raw, json) Hash identifier: nUhFrCwJw+FJF//qE/B+KZuM3fdvipjsUKKDHvYm7AM= Subject key identifier: 3E:3B:5C:E5:59:4C:5B:B3:25:44:F7:9C:F1:F3:EB:3F:1B:A7:29:65 Authority key identifier: DF:C5:28:CF:00:06:E3:41:4A:FB:7F:E8:6D:1F:DE:AF:64:8B:5C:9D Certificate issuer: /CN=A91B1A3B/serialNumber=DFC528CF0006E3414AFB7FE86D1FDEAF648B5C9D Certificate serial: 14 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/38UozwAG40FK-3_obR_er2SLXJ0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B1A3B/227019DA901111EF9B85C96AC4F9AE02/38UozwAG40FK-3_obR_er2SLXJ0.mft Manifest number: 13 Signing time: Sat 23 Nov 2024 05:57:40 +0000 Manifest this update: Sat 23 Nov 2024 05:57:39 +0000 Manifest next update: Sat 30 Nov 2024 05:57:39 +0000 Files and hashes: 1: 38UozwAG40FK-3_obR_er2SLXJ0.crl (hash: H9qm0qFVS5iolWqB2vCyDGeUAl67IuDwNk6P4pJ2t4k=) 2: 6CF3FF44901111EF922BFC29C4F9AE02.roa (hash: kYva9N1B9q6x51z8ic6e8oPHZgI7EM6Un1P8CXMlwJE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B1A3B/227019DA901111EF9B85C96AC4F9AE02/38UozwAG40FK-3_obR_er2SLXJ0.crl rsync://rpki.apnic.net/member_repository/A91B1A3B/227019DA901111EF9B85C96AC4F9AE02/38UozwAG40FK-3_obR_er2SLXJ0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/38UozwAG40FK-3_obR_er2SLXJ0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 20 (0x14) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B1A3B/serialNumber=DFC528CF0006E3414AFB7FE86D1FDEAF648B5C9D Validity Not Before: Nov 23 05:57:39 2024 GMT Not After : Nov 30 05:57:39 2024 GMT Subject: CN=67416ed4-66ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:0b:22:65:24:95:a2:4f:d5:64:d7:a3:30:29: 03:81:ea:2f:be:af:d4:09:21:a5:56:02:fc:11:7c: 37:a6:11:4c:d8:21:c5:44:91:85:e1:de:c4:7d:fd: 2c:a2:59:09:c7:71:51:d2:1f:bb:f6:fa:fa:87:38: 54:29:78:40:3b:ff:a8:9b:4b:67:ba:a5:92:01:34: 06:cd:f4:da:3c:3d:0a:31:00:00:d4:17:e2:f3:dd: 3c:a1:cb:11:12:c4:ac:98:71:89:1a:97:38:28:8b: 7d:12:d9:52:9e:51:b2:d7:d6:9a:2b:19:d0:2e:13: 51:40:2c:62:59:bc:f1:14:41:70:13:81:88:bb:03: 7a:1c:99:da:00:f3:1a:65:77:64:1a:97:c7:68:87: 9e:7f:0b:99:1c:9b:f6:a4:17:e3:1f:18:4c:13:6b: 85:9d:76:63:75:b3:54:2a:a5:cf:89:81:e4:87:63: ac:88:e2:ff:d5:aa:d5:a7:70:a5:31:8c:97:e4:8f: a8:99:d9:83:33:f5:82:c8:65:54:3d:a6:63:fc:ff: 0d:dd:af:8d:30:bc:d6:92:a3:8f:57:9e:fc:bb:44: a6:1f:7c:af:04:fb:35:81:c0:51:d1:9d:3a:88:c6: ba:27:8c:63:69:2c:09:b6:ff:c9:73:15:8c:b5:7a: 91:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:3B:5C:E5:59:4C:5B:B3:25:44:F7:9C:F1:F3:EB:3F:1B:A7:29:65 X509v3 Authority Key Identifier: keyid:DF:C5:28:CF:00:06:E3:41:4A:FB:7F:E8:6D:1F:DE:AF:64:8B:5C:9D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B1A3B/227019DA901111EF9B85C96AC4F9AE02/38UozwAG40FK-3_obR_er2SLXJ0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/38UozwAG40FK-3_obR_er2SLXJ0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B1A3B/227019DA901111EF9B85C96AC4F9AE02/38UozwAG40FK-3_obR_er2SLXJ0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5b:9f:e6:c8:0d:d1:7f:73:5d:cf:61:be:cd:6a:10:4a:69:53: 4d:46:cf:d8:5b:e2:90:e8:62:09:d5:1f:26:2c:9e:47:a9:7e: 21:b9:a8:43:57:89:f3:49:21:8b:7a:96:67:90:fb:67:26:99: e7:fc:0f:1f:de:c9:41:d4:7c:97:9e:6c:ea:15:80:fc:1e:2a: bf:a2:b6:8f:dd:7b:7c:ce:48:05:da:6f:97:4c:ef:7f:cb:df: 50:87:28:ac:16:14:8f:6b:13:91:15:4e:95:60:47:a6:a6:0a: a5:1e:2a:48:0a:4b:fd:c2:ab:0e:b3:b9:62:86:e5:f8:ee:40: b7:31:11:8a:3a:32:fe:e3:6d:af:1a:ef:85:db:ee:fb:92:86: ca:ab:c6:ac:09:83:5c:45:d1:e5:b5:02:c7:c9:e0:53:a1:61: c4:fe:0d:56:e7:34:90:90:45:8d:d4:35:12:4b:4f:d6:d2:c1: 30:b7:ab:84:f6:ab:51:dc:1c:22:23:af:8e:87:fd:0f:29:44: 30:ec:32:80:6c:cd:08:36:45:99:71:75:c0:8d:84:ea:30:fb: ca:c4:75:b9:d2:45:ac:95:5e:89:93:1e:61:6c:ce:97:41:5e: 5d:d5:14:db:b8:aa:31:1e:29:00:21:f6:81:ea:14:fd:ba:15: f2:da:78:28 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBFDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC MUEzQjExMC8GA1UEBRMoREZDNTI4Q0YwMDA2RTM0MTRBRkI3RkU4NkQxRkRFQUY2 NDhCNUM5RDAeFw0yNDExMjMwNTU3MzlaFw0yNDExMzAwNTU3MzlaMBgxFjAUBgNV BAMTDTY3NDE2ZWQ0LTY2ZmYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCvCyJlJJWiT9Vk16MwKQOB6i++r9QJIaVWAvwRfDemEUzYIcVEkYXh3sR9/Syi WQnHcVHSH7v2+vqHOFQpeEA7/6ibS2e6pZIBNAbN9No8PQoxAADUF+Lz3TyhyxES xKyYcYkalzgoi30S2VKeUbLX1porGdAuE1FALGJZvPEUQXATgYi7A3ocmdoA8xpl d2Qal8doh55/C5kcm/akF+MfGEwTa4WddmN1s1Qqpc+JgeSHY6yI4v/VqtWncKUx jJfkj6iZ2YMz9YLIZVQ9pmP8/w3dr40wvNaSo49Xnvy7RKYffK8E+zWBwFHRnTqI xronjGNpLAm2/8lzFYy1epHjAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUPjtc5VlM W7MlRPec8fPrPxunKWUwHwYDVR0jBBgwFoAU38UozwAG40FK+3/obR/er2SLXJ0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUIxQTNCLzIyNzAxOURBOTAx MTExRUY5Qjg1Qzk2QUM0RjlBRTAyLzM4VW96d0FHNDBGSy0zX29iUl9lcjJTTFhK MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvMzhVb3p3QUc0MEZLLTNfb2JSX2VyMlNMWEowLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUIx QTNCLzIyNzAxOURBOTAxMTExRUY5Qjg1Qzk2QUM0RjlBRTAyLzM4VW96d0FHNDBG Sy0zX29iUl9lcjJTTFhKMC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAFuf5sgN0X9zXc9hvs1qEEppU01Gz9hb4pDoYgnVHyYsnkepfiG5qENX ifNJIYt6lmeQ+2cmmef8Dx/eyUHUfJeebOoVgPweKr+ito/de3zOSAXab5dM73/L 31CHKKwWFI9rE5EVTpVgR6amCqUeKkgKS/3Cqw6zuWKG5fjuQLcxEYo6Mv7jba8a 74Xb7vuShsqrxqwJg1xF0eW1AsfJ4FOhYcT+DVbnNJCQRY3UNRJLT9bSwTC3q4T2 q1HcHCIjr46H/Q8pRDDsMoBszQg2RZlxdcCNhOow+8rEdbnSRayVXomTHmFszpdB Xl3VFNu4qjEeKQAh9oHqFP26FfLaeCg= -----END CERTIFICATE-----Generated at Sat Nov 23 07:31:31 2024 by rpki-client on console-fra.rpki-client.org