$ rpki-client -vvf rpki.apnic.net/member_repository/A91BC64D/B2EF3E3495D611EB98215C18C4F9AE02/3xHpJo0GrlO6-3QTvTT_OHjk7tA.mft File: 3xHpJo0GrlO6-3QTvTT_OHjk7tA.mft (raw, json) Hash identifier: F4bwgyXsoiAcsUluOHQ3BQxam2lQp/5m0yhGCsavfSE= Subject key identifier: B3:EA:FA:02:B2:EA:3F:12:5E:B2:20:B6:95:3A:BB:2A:16:D9:DD:56 Authority key identifier: DF:11:E9:26:8D:06:AE:53:BA:FB:74:13:BD:34:FF:38:78:E4:EE:D0 Certificate issuer: /CN=A91BC64D/serialNumber=DF11E9268D06AE53BAFB7413BD34FF3878E4EED0 Certificate serial: 05DF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3xHpJo0GrlO6-3QTvTT_OHjk7tA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BC64D/B2EF3E3495D611EB98215C18C4F9AE02/3xHpJo0GrlO6-3QTvTT_OHjk7tA.mft Manifest number: 05D4 Signing time: Wed 20 Nov 2024 22:32:47 +0000 Manifest this update: Wed 20 Nov 2024 22:32:47 +0000 Manifest next update: Wed 27 Nov 2024 22:32:47 +0000 Files and hashes: 1: 3xHpJo0GrlO6-3QTvTT_OHjk7tA.crl (hash: Rb9BJNyPkr2mWhxprF1oj7gl4rEP90IgIYL4PC/SMNU=) 2: FC583AC6CC8511EC8D238672C4F9AE02.roa (hash: 4nQWYZbXWSJ3PqE4ZBiXzBzUwOjlbjDx0Oq7v5W8vCQ=) 3: FD987A54CC8511EC8D238672C4F9AE02.roa (hash: MzEQJvzOJlRcf4tMcorSrwSuzHCC7BZBlDirsliZQdI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BC64D/B2EF3E3495D611EB98215C18C4F9AE02/3xHpJo0GrlO6-3QTvTT_OHjk7tA.crl rsync://rpki.apnic.net/member_repository/A91BC64D/B2EF3E3495D611EB98215C18C4F9AE02/3xHpJo0GrlO6-3QTvTT_OHjk7tA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3xHpJo0GrlO6-3QTvTT_OHjk7tA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:33:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1503 (0x5df) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BC64D/serialNumber=DF11E9268D06AE53BAFB7413BD34FF3878E4EED0 Validity Not Before: Nov 20 22:32:47 2024 GMT Not After : Nov 27 22:32:47 2024 GMT Subject: CN=673e638f-f9f9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:4b:0d:97:d1:22:34:41:ab:da:e9:6b:48:8b: d9:7d:7b:a8:5e:ae:e1:63:bb:85:ab:0a:95:57:c9: 23:ce:c5:ad:94:66:39:2b:16:2c:8e:4b:db:15:9b: 4b:58:b2:27:08:7e:50:ee:52:09:7d:77:65:1e:2d: c0:ca:14:63:1c:ce:55:c0:47:6c:ed:55:48:d1:20: 8f:50:a2:18:8d:a8:c0:b8:d6:16:1c:61:8d:6d:05: 7b:fd:d3:c8:43:b1:41:dd:eb:d6:2e:2a:84:ac:f1: 67:b1:11:c5:f7:58:04:06:5f:f4:44:4c:69:bd:ea: 70:41:a2:af:55:0e:48:05:d0:1d:78:82:a8:aa:dc: 8f:e7:d1:ce:fd:99:7f:e3:27:89:78:3e:1e:49:ea: ff:e1:33:5c:32:a9:1b:6c:45:81:d1:4f:fe:6b:d5: 7f:8a:b8:39:ff:a3:f9:f1:90:58:d3:30:9a:d5:c0: 96:1f:95:01:d9:b3:f1:ec:90:c6:1f:ca:09:c6:72: 9e:42:16:90:e0:87:48:32:db:cb:c0:ba:a1:b2:06: 12:62:50:47:73:b6:b1:99:b2:e3:de:35:e9:5d:7f: 2b:4b:c8:7d:3c:54:c0:4a:7b:8f:01:ea:c6:db:30: fa:6c:1a:a6:0f:e6:70:5a:8b:4a:3c:07:1e:be:ab: a4:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:EA:FA:02:B2:EA:3F:12:5E:B2:20:B6:95:3A:BB:2A:16:D9:DD:56 X509v3 Authority Key Identifier: keyid:DF:11:E9:26:8D:06:AE:53:BA:FB:74:13:BD:34:FF:38:78:E4:EE:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BC64D/B2EF3E3495D611EB98215C18C4F9AE02/3xHpJo0GrlO6-3QTvTT_OHjk7tA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3xHpJo0GrlO6-3QTvTT_OHjk7tA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BC64D/B2EF3E3495D611EB98215C18C4F9AE02/3xHpJo0GrlO6-3QTvTT_OHjk7tA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 31:0a:f1:52:ef:c3:bd:6b:28:1b:b3:b2:7a:85:b8:57:d4:18: 68:72:52:be:45:10:c1:cb:c5:ff:4f:bc:06:77:4d:60:0c:53: 76:04:38:a4:ff:89:86:41:d5:e2:af:ef:9f:6d:49:5d:eb:16: 50:98:5d:67:bb:92:12:f5:ed:0c:ea:02:a0:09:18:4a:e3:6b: 93:95:94:28:79:09:3c:44:0d:ed:32:ea:d6:0f:e8:a7:a7:67: b2:c5:a1:4b:93:e7:dc:f8:b5:7c:6b:9e:2a:dd:fe:ad:f6:ce: 93:39:cd:d3:ad:0f:df:f1:c3:51:ed:90:1d:0d:8c:38:d4:75: 21:60:8d:45:df:7e:3a:15:a7:8f:11:39:96:4f:ef:fd:34:9b: 28:18:53:3e:a6:93:8d:bd:34:d8:90:dc:37:c8:63:53:fa:5c: d1:6c:23:89:e7:0a:df:a2:f7:ce:23:43:7a:6e:41:34:39:5e: ff:03:43:59:ed:4d:52:01:db:f3:85:e4:16:bc:22:d3:3c:a0: 02:b0:48:df:24:b2:19:3e:40:89:96:c7:47:9e:90:66:f5:35: 91:ab:c0:13:83:47:ce:74:d5:b5:26:18:92:33:9f:f3:7e:08: a3:26:37:c1:70:35:49:84:a8:6f:11:ce:2b:b5:f3:15:52:18: 9c:08:38:25 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBd8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkM2NEQxMTAvBgNVBAUTKERGMTFFOTI2OEQwNkFFNTNCQUZCNzQxM0JEMzRGRjM4 NzhFNEVFRDAwHhcNMjQxMTIwMjIzMjQ3WhcNMjQxMTI3MjIzMjQ3WjAYMRYwFAYD VQQDEw02NzNlNjM4Zi1mOWY5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyksNl9EiNEGr2ulrSIvZfXuoXq7hY7uFqwqVV8kjzsWtlGY5KxYsjkvbFZtL WLInCH5Q7lIJfXdlHi3AyhRjHM5VwEds7VVI0SCPUKIYjajAuNYWHGGNbQV7/dPI Q7FB3evWLiqErPFnsRHF91gEBl/0RExpvepwQaKvVQ5IBdAdeIKoqtyP59HO/Zl/ 4yeJeD4eSer/4TNcMqkbbEWB0U/+a9V/irg5/6P58ZBY0zCa1cCWH5UB2bPx7JDG H8oJxnKeQhaQ4IdIMtvLwLqhsgYSYlBHc7axmbLj3jXpXX8rS8h9PFTASnuPAerG 2zD6bBqmD+ZwWotKPAcevquk1wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLPq+gKy 6j8SXrIgtpU6uyoW2d1WMB8GA1UdIwQYMBaAFN8R6SaNBq5Tuvt0E700/zh45O7Q MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQzY0RC9CMkVGM0UzNDk1 RDYxMUVCOTgyMTVDMThDNEY5QUUwMi8zeEhwSm8wR3JsTzYtM1FUdlRUX09Iams3 dEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzN4SHBKbzBHcmxPNi0zUVR2VFRfT0hqazd0QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QzY0RC9CMkVGM0UzNDk1RDYxMUVCOTgyMTVDMThDNEY5QUUwMi8zeEhwSm8wR3Js TzYtM1FUdlRUX09Iams3dEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAxCvFS78O9aygbs7J6hbhX1BhoclK+RRDBy8X/T7wGd01gDFN2BDik /4mGQdXir++fbUld6xZQmF1nu5IS9e0M6gKgCRhK42uTlZQoeQk8RA3tMurWD+in p2eyxaFLk+fc+LV8a54q3f6t9s6TOc3TrQ/f8cNR7ZAdDYw41HUhYI1F3346FaeP ETmWT+/9NJsoGFM+ppONvTTYkNw3yGNT+lzRbCOJ5wrfovfOI0N6bkE0OV7/A0NZ 7U1SAdvzheQWvCLTPKACsEjfJLIZPkCJlsdHnpBm9TWRq8ATg0fOdNW1JhiSM5/z fgijJjfBcDVJhKhvEc4rtfMVUhicCDgl -----END CERTIFICATE-----Generated at Wed Nov 20 23:55:52 2024 by rpki-client on console-ams.rpki-client.org