$ rpki-client -vvf rpki.apnic.net/member_repository/A91B8C13/D06117160B2D11EE867E6A17C4F9AE02/3SNdNwiQmzPViUtMzckQXGH9Fq4.mft File: 3SNdNwiQmzPViUtMzckQXGH9Fq4.mft (raw, json) Hash identifier: VIo51xqwg6Sbhxm5VVDVwJLccHTbHTreA7rTEIh0eCs= Subject key identifier: 6A:38:E5:72:87:7D:91:5C:30:6B:13:D0:99:71:20:D3:7F:62:D2:95 Authority key identifier: DD:23:5D:37:08:90:9B:33:D5:89:4B:4C:CD:C9:10:5C:61:FD:16:AE Certificate issuer: /CN=A91B8C13/serialNumber=DD235D3708909B33D5894B4CCDC9105C61FD16AE Certificate serial: 0116 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/3SNdNwiQmzPViUtMzckQXGH9Fq4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B8C13/D06117160B2D11EE867E6A17C4F9AE02/3SNdNwiQmzPViUtMzckQXGH9Fq4.mft Manifest number: 0115 Signing time: Sun 24 Nov 2024 15:15:53 +0000 Manifest this update: Sun 24 Nov 2024 15:15:53 +0000 Manifest next update: Sun 01 Dec 2024 15:15:53 +0000 Files and hashes: 1: 3SNdNwiQmzPViUtMzckQXGH9Fq4.crl (hash: BYpGo7O1nmN0Rek4Xm0Xfmi83ogKzlW+UrphR2GdOIY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B8C13/D06117160B2D11EE867E6A17C4F9AE02/3SNdNwiQmzPViUtMzckQXGH9Fq4.crl rsync://rpki.apnic.net/member_repository/A91B8C13/D06117160B2D11EE867E6A17C4F9AE02/3SNdNwiQmzPViUtMzckQXGH9Fq4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/3SNdNwiQmzPViUtMzckQXGH9Fq4.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Dec 2024 15:15:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 278 (0x116) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B8C13/serialNumber=DD235D3708909B33D5894B4CCDC9105C61FD16AE Validity Not Before: Nov 24 15:15:53 2024 GMT Not After : Dec 1 15:15:53 2024 GMT Subject: CN=67434329-2979 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:59:a3:fe:68:3f:bb:db:ba:a1:eb:40:21:ea: 66:19:e6:c6:74:d4:f3:85:59:c4:42:99:1b:94:ff: 1e:7f:18:6e:44:4c:2c:07:2a:b9:b4:4a:77:43:a0: 6c:36:3a:fa:2f:f3:83:2c:e9:b3:ee:9b:be:34:0f: 1d:89:66:ed:ff:81:81:e9:85:d9:72:32:b2:1d:47: 72:ff:66:e0:43:62:28:81:b3:7c:81:03:5a:28:3c: aa:15:53:6f:88:6c:40:1f:c0:21:5f:26:46:cd:69: 32:3f:e9:2b:55:00:0b:19:ae:d2:4d:24:d3:f3:88: cd:97:a2:0d:9d:f2:08:f5:31:8f:86:de:01:30:2e: 67:a2:d9:95:cd:43:d6:3e:f0:5b:9a:e2:c7:32:0e: 30:c5:b9:bc:43:7a:10:97:c7:a2:b8:02:a1:b1:6f: 74:b2:10:83:b5:c6:e7:fb:a6:74:da:7c:bf:24:81: 7c:23:0e:79:98:ec:b3:58:6a:ce:7a:90:fc:ea:38: 8b:a9:f2:69:97:94:22:f0:75:20:e5:18:d0:f5:82: cd:3a:f5:22:d7:28:81:3a:17:0c:d3:f6:44:2b:f3: 19:25:cb:6d:e1:26:b7:43:d9:2e:20:6b:7d:b6:04: b4:60:ee:2c:70:08:0d:b3:89:02:7d:8b:2e:fe:33: 06:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:38:E5:72:87:7D:91:5C:30:6B:13:D0:99:71:20:D3:7F:62:D2:95 X509v3 Authority Key Identifier: keyid:DD:23:5D:37:08:90:9B:33:D5:89:4B:4C:CD:C9:10:5C:61:FD:16:AE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B8C13/D06117160B2D11EE867E6A17C4F9AE02/3SNdNwiQmzPViUtMzckQXGH9Fq4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/3SNdNwiQmzPViUtMzckQXGH9Fq4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B8C13/D06117160B2D11EE867E6A17C4F9AE02/3SNdNwiQmzPViUtMzckQXGH9Fq4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5d:49:93:ec:a4:35:2f:63:f5:8d:58:ac:f8:cc:b3:c3:3e:39: fc:b0:ca:18:5a:f3:0f:12:d5:82:d6:f6:03:44:40:c4:eb:c1: 0e:0b:a2:0a:f2:aa:18:6f:c9:c9:86:21:c1:c8:b4:5d:83:4c: 60:35:43:13:ea:61:e9:3f:46:d4:b2:ca:cd:5e:42:a4:d2:be: 37:0f:df:51:4a:da:f6:25:3c:98:c4:ca:fe:fe:fd:66:f5:1c: 64:90:77:e4:21:f4:96:69:d3:be:8f:7a:80:1c:12:18:e7:90: 2e:d2:89:c1:6d:03:87:88:a2:5d:c8:36:fc:25:dc:15:e4:3c: 87:fe:90:c5:1b:03:8f:a0:1c:cc:bb:8c:09:3a:00:1a:21:d7: 14:d7:4a:0f:2d:8f:9d:62:8a:f1:e6:5b:5f:44:b0:23:7d:d5: de:ec:f0:b7:ef:90:c3:15:54:3c:19:94:cc:1a:2a:9c:2b:44: ca:fc:ca:a3:08:38:49:df:62:d4:74:dd:7b:47:66:d4:b4:14: 66:bf:d2:d4:64:5e:bd:ee:13:37:f0:80:fe:b7:aa:57:c0:d9: b3:c6:bf:c9:a1:9e:ce:82:77:7a:5f:09:5f:66:6c:78:38:66: 1a:0b:b3:22:41:8c:68:9e:74:02:1a:4e:f0:14:75:a4:23:8a: bd:d4:06:20 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICARYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjhDMTMxMTAvBgNVBAUTKEREMjM1RDM3MDg5MDlCMzNENTg5NEI0Q0NEQzkxMDVD NjFGRDE2QUUwHhcNMjQxMTI0MTUxNTUzWhcNMjQxMjAxMTUxNTUzWjAYMRYwFAYD VQQDEw02NzQzNDMyOS0yOTc5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs1mj/mg/u9u6oetAIepmGebGdNTzhVnEQpkblP8efxhuREwsByq5tEp3Q6Bs Njr6L/ODLOmz7pu+NA8diWbt/4GB6YXZcjKyHUdy/2bgQ2IogbN8gQNaKDyqFVNv iGxAH8AhXyZGzWkyP+krVQALGa7STSTT84jNl6INnfII9TGPht4BMC5notmVzUPW PvBbmuLHMg4wxbm8Q3oQl8eiuAKhsW90shCDtcbn+6Z02ny/JIF8Iw55mOyzWGrO epD86jiLqfJpl5Qi8HUg5RjQ9YLNOvUi1yiBOhcM0/ZEK/MZJctt4Sa3Q9kuIGt9 tgS0YO4scAgNs4kCfYsu/jMGCwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGo45XKH fZFcMGsT0JlxINN/YtKVMB8GA1UdIwQYMBaAFN0jXTcIkJsz1YlLTM3JEFxh/Rau MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCOEMxMy9EMDYxMTcxNjBC MkQxMUVFODY3RTZBMTdDNEY5QUUwMi8zU05kTndpUW16UFZpVXRNemNrUVhHSDlG cTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzNTTmROd2lRbXpQVmlVdE16Y2tRWEdIOUZxNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC OEMxMy9EMDYxMTcxNjBCMkQxMUVFODY3RTZBMTdDNEY5QUUwMi8zU05kTndpUW16 UFZpVXRNemNrUVhHSDlGcTQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBdSZPspDUvY/WNWKz4zLPDPjn8sMoYWvMPEtWC1vYDREDE68EOC6IK 8qoYb8nJhiHByLRdg0xgNUMT6mHpP0bUssrNXkKk0r43D99RStr2JTyYxMr+/v1m 9RxkkHfkIfSWadO+j3qAHBIY55Au0onBbQOHiKJdyDb8JdwV5DyH/pDFGwOPoBzM u4wJOgAaIdcU10oPLY+dYorx5ltfRLAjfdXe7PC375DDFVQ8GZTMGiqcK0TK/Mqj CDhJ32LUdN17R2bUtBRmv9LUZF697hM38ID+t6pXwNmzxr/JoZ7Ognd6XwlfZmx4 OGYaC7MiQYxonnQCGk7wFHWkI4q91AYg -----END CERTIFICATE-----Generated at Sun Nov 24 18:24:55 2024 by rpki-client on console-ams.rpki-client.org