$ rpki-client -vvf rpki.apnic.net/member_repository/A91BB4C2/B17E95D6037011EE9BB62C2FC4F9AE02/3COmnqHvwaN5SSwT6awUfEn1rQQ.mft File: 3COmnqHvwaN5SSwT6awUfEn1rQQ.mft (raw, json) Hash identifier: KWM2Mgzl5lbdca7pS4g+wPheqjLwVzVBM3aqkBoOTOs= Subject key identifier: 54:DC:C6:AA:65:46:7C:17:0C:E3:34:CD:09:50:5B:C5:26:E9:C2:71 Authority key identifier: DC:23:A6:9E:A1:EF:C1:A3:79:49:2C:13:E9:AC:14:7C:49:F5:AD:04 Certificate issuer: /CN=A91BB4C2/serialNumber=DC23A69EA1EFC1A379492C13E9AC147C49F5AD04 Certificate serial: 0175 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3COmnqHvwaN5SSwT6awUfEn1rQQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BB4C2/B17E95D6037011EE9BB62C2FC4F9AE02/3COmnqHvwaN5SSwT6awUfEn1rQQ.mft Manifest number: 0148 Signing time: Sat 23 Nov 2024 03:03:05 +0000 Manifest this update: Sat 23 Nov 2024 03:03:04 +0000 Manifest next update: Sat 30 Nov 2024 03:03:04 +0000 Files and hashes: 1: 3COmnqHvwaN5SSwT6awUfEn1rQQ.crl (hash: aLFr7KC1dx4UMXC6157hGTS2ebAW4uqn6HoM7AmgA4s=) 2: CBF7E2CE2D3611EEA81A490BC4F9AE02.roa (hash: q2jyIpsgOSZMDylILKfsOrMIus5pnrAFZdrI/kJzgvw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BB4C2/B17E95D6037011EE9BB62C2FC4F9AE02/3COmnqHvwaN5SSwT6awUfEn1rQQ.crl rsync://rpki.apnic.net/member_repository/A91BB4C2/B17E95D6037011EE9BB62C2FC4F9AE02/3COmnqHvwaN5SSwT6awUfEn1rQQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3COmnqHvwaN5SSwT6awUfEn1rQQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 373 (0x175) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BB4C2/serialNumber=DC23A69EA1EFC1A379492C13E9AC147C49F5AD04 Validity Not Before: Nov 23 03:03:04 2024 GMT Not After : Nov 30 03:03:04 2024 GMT Subject: CN=674145e8-8e0c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:5f:9b:b7:38:6f:0d:a6:cd:95:70:7d:fe:12: ea:45:58:ed:0a:47:58:05:d6:f0:c1:9f:04:43:c7: 20:79:b6:29:46:d3:6e:36:89:08:7c:04:77:a6:38: 8f:da:bc:05:85:20:85:9f:aa:1f:45:0f:6b:a3:2a: 87:b3:e7:7a:04:38:5f:aa:06:f9:ff:90:d3:28:a4: e4:bc:27:0d:46:b7:da:6b:aa:29:19:22:e5:fb:09: 22:e1:1c:5e:d5:56:e2:f9:6b:68:45:0c:13:e7:e3: 62:c1:e6:3f:a9:9e:2e:b2:25:83:a7:b9:04:23:d9: 77:71:2f:b6:b9:19:a1:37:55:25:c3:83:de:ee:2b: fa:99:12:21:11:59:ca:25:66:eb:34:da:b7:31:05: 9b:6a:ad:2a:45:66:de:5e:b5:d8:4e:51:f1:d6:1a: 22:96:fa:21:c5:41:0b:ad:45:44:0c:7a:88:38:fb: 0e:2c:85:5a:92:0d:9b:ac:d1:6d:08:39:0f:97:da: 5f:f7:2d:6f:c0:90:b1:1a:ac:ef:c3:49:5d:ce:00: 7c:e7:22:e9:56:8d:c7:40:99:09:31:0e:23:0f:61: 87:05:88:25:98:fb:66:13:40:d2:1b:5c:87:a5:09: 77:a9:64:33:bd:29:2b:0e:23:23:c4:04:0b:46:4e: ce:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:DC:C6:AA:65:46:7C:17:0C:E3:34:CD:09:50:5B:C5:26:E9:C2:71 X509v3 Authority Key Identifier: keyid:DC:23:A6:9E:A1:EF:C1:A3:79:49:2C:13:E9:AC:14:7C:49:F5:AD:04 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BB4C2/B17E95D6037011EE9BB62C2FC4F9AE02/3COmnqHvwaN5SSwT6awUfEn1rQQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3COmnqHvwaN5SSwT6awUfEn1rQQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BB4C2/B17E95D6037011EE9BB62C2FC4F9AE02/3COmnqHvwaN5SSwT6awUfEn1rQQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0b:94:55:ab:cc:8a:69:f8:a4:6b:fb:99:32:0b:78:06:ca:89: 42:57:96:7b:09:23:c0:86:9d:91:71:85:13:1c:b7:1d:c7:06: 47:5b:3f:80:4c:17:12:e3:67:f1:32:2a:c9:45:2e:e7:3b:30: 3f:39:ba:5b:50:92:f4:67:ac:9a:af:f3:66:e3:a8:df:1a:67: 24:0b:0e:f3:4e:33:59:38:37:09:1d:04:3a:b3:d1:09:4c:81: 20:26:7f:41:bd:4a:0f:9a:84:0f:f0:1e:1c:f4:72:70:d4:ef: ed:cd:e1:65:d4:2a:92:86:1c:00:15:08:ff:0f:7e:7a:21:74: dd:be:07:ac:b5:24:c3:18:59:ef:a2:9a:31:4e:29:9d:04:55: 55:66:25:ca:eb:83:5b:bc:1e:dc:12:bd:80:b6:6f:ad:b6:2c: 60:fd:0e:f4:54:d1:8f:44:8d:5f:7d:bd:c6:5c:29:9f:85:92: 7d:f1:0f:da:a3:94:c5:da:03:e4:b8:9e:24:e7:1b:12:13:bc: 1f:a8:2a:bd:79:fe:d7:a0:5b:95:60:93:92:ab:63:10:f7:46: 93:ed:57:3b:d3:86:27:38:47:15:21:6f:63:0e:e4:cc:9a:1f: c3:db:23:61:d5:2f:68:28:5b:c7:63:86:8e:20:a6:04:b5:26: f6:fc:06:54 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAXUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkI0QzIxMTAvBgNVBAUTKERDMjNBNjlFQTFFRkMxQTM3OTQ5MkMxM0U5QUMxNDdD NDlGNUFEMDQwHhcNMjQxMTIzMDMwMzA0WhcNMjQxMTMwMDMwMzA0WjAYMRYwFAYD VQQDEw02NzQxNDVlOC04ZTBjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyF+btzhvDabNlXB9/hLqRVjtCkdYBdbwwZ8EQ8cgebYpRtNuNokIfAR3pjiP 2rwFhSCFn6ofRQ9royqHs+d6BDhfqgb5/5DTKKTkvCcNRrfaa6opGSLl+wki4Rxe 1Vbi+WtoRQwT5+NiweY/qZ4usiWDp7kEI9l3cS+2uRmhN1Ulw4Pe7iv6mRIhEVnK JWbrNNq3MQWbaq0qRWbeXrXYTlHx1hoilvohxUELrUVEDHqIOPsOLIVakg2brNFt CDkPl9pf9y1vwJCxGqzvw0ldzgB85yLpVo3HQJkJMQ4jD2GHBYglmPtmE0DSG1yH pQl3qWQzvSkrDiMjxAQLRk7OtQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFTcxqpl RnwXDOM0zQlQW8Um6cJxMB8GA1UdIwQYMBaAFNwjpp6h78GjeUksE+msFHxJ9a0E MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQjRDMi9CMTdFOTVENjAz NzAxMUVFOUJCNjJDMkZDNEY5QUUwMi8zQ09tbnFIdndhTjVTU3dUNmF3VWZFbjFy UVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNDT21ucUh2d2FONVNTd1Q2YXdVZkVuMXJRUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QjRDMi9CMTdFOTVENjAzNzAxMUVFOUJCNjJDMkZDNEY5QUUwMi8zQ09tbnFIdndh TjVTU3dUNmF3VWZFbjFyUVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQALlFWrzIpp+KRr+5kyC3gGyolCV5Z7CSPAhp2RcYUTHLcdxwZHWz+A TBcS42fxMirJRS7nOzA/ObpbUJL0Z6yar/Nm46jfGmckCw7zTjNZODcJHQQ6s9EJ TIEgJn9BvUoPmoQP8B4c9HJw1O/tzeFl1CqShhwAFQj/D356IXTdvgestSTDGFnv opoxTimdBFVVZiXK64NbvB7cEr2Atm+ttixg/Q70VNGPRI1ffb3GXCmfhZJ98Q/a o5TF2gPkuJ4k5xsSE7wfqCq9ef7XoFuVYJOSq2MQ90aT7Vc704YnOEcVIW9jDuTM mh/D2yNh1S9oKFvHY4aOIKYEtSb2/AZU -----END CERTIFICATE-----Generated at Sat Nov 23 03:58:49 2024 by rpki-client on console-ams.rpki-client.org