$ rpki-client -vvf rpki.apnic.net/member_repository/A91C799C/A2DFB336135711EB8D13B215C4F9AE02/3CH4ZzeyOX3SsmCej7QGhuPI92E.mft File: 3CH4ZzeyOX3SsmCej7QGhuPI92E.mft (raw, json) Hash identifier: bVFo/cHBTYNAQZETgXPLXpJzuPPeN2nkwNyWs1cVyjs= Subject key identifier: B6:E4:DF:CB:F8:CB:E2:16:94:A1:6C:75:CD:7D:DF:D1:01:2B:49:31 Authority key identifier: DC:21:F8:67:37:B2:39:7D:D2:B2:60:9E:8F:B4:06:86:E3:C8:F7:61 Certificate issuer: /CN=A91C799C/serialNumber=DC21F86737B2397DD2B2609E8FB40686E3C8F761 Certificate serial: 0720 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3CH4ZzeyOX3SsmCej7QGhuPI92E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C799C/A2DFB336135711EB8D13B215C4F9AE02/3CH4ZzeyOX3SsmCej7QGhuPI92E.mft Manifest number: 071B Signing time: Fri 22 Nov 2024 21:19:57 +0000 Manifest this update: Fri 22 Nov 2024 21:19:57 +0000 Manifest next update: Fri 29 Nov 2024 21:19:57 +0000 Files and hashes: 1: 3CH4ZzeyOX3SsmCej7QGhuPI92E.crl (hash: 6u/Dbu8wa3uTi4cuufnY12K8lGjXYnjmyNPvndF9rcM=) 2: 9F5F0EC6135911EBBC97C718C4F9AE02.roa (hash: SiUJ7SYlbA21+yPfD2uZbgHjH4MPfQViyjJFRbUxFiY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C799C/A2DFB336135711EB8D13B215C4F9AE02/3CH4ZzeyOX3SsmCej7QGhuPI92E.crl rsync://rpki.apnic.net/member_repository/A91C799C/A2DFB336135711EB8D13B215C4F9AE02/3CH4ZzeyOX3SsmCej7QGhuPI92E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3CH4ZzeyOX3SsmCej7QGhuPI92E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1824 (0x720) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C799C/serialNumber=DC21F86737B2397DD2B2609E8FB40686E3C8F761 Validity Not Before: Nov 22 21:19:57 2024 GMT Not After : Nov 29 21:19:57 2024 GMT Subject: CN=6740f57d-d715 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:5a:2b:2b:48:8e:80:94:37:26:ee:97:29:1d: 73:e5:37:d6:3e:26:f9:82:61:4a:10:90:38:07:66: 13:7a:ae:08:fc:22:f9:da:13:ed:61:69:71:60:7c: 84:60:f0:81:3f:3a:78:1b:1d:7b:8d:25:19:83:8d: be:aa:c5:9a:ad:75:c5:94:59:f4:68:0d:5c:88:95: 69:35:50:07:84:3c:2c:68:a2:de:22:28:37:2b:0c: b2:69:5f:de:1c:28:60:2c:9a:6c:67:cb:29:a1:76: 1c:7c:1a:fd:88:b5:e1:a4:ba:7a:a1:e9:eb:c5:be: 78:2e:d3:c5:8b:ce:8a:a8:58:10:17:a1:aa:84:41: 49:6e:43:9c:5e:63:2b:fd:66:d7:52:39:82:95:bd: 83:33:cd:05:29:0e:48:c1:5d:19:45:1b:42:33:47: b1:7a:7d:da:fa:61:88:4e:b6:35:b9:cf:ee:36:6e: 4b:a0:e9:7d:7e:fe:6b:93:bb:7e:d8:4c:1e:f4:66: 68:d8:fe:ef:36:29:28:f8:59:e8:3e:5f:d6:e9:d2: 01:60:45:7a:bf:b3:13:2a:03:9c:fa:c0:6e:f3:0d: bd:23:04:c4:e8:a0:81:0f:3a:ee:97:62:1f:fa:24: 9b:7e:3f:42:ba:42:22:91:12:c2:d5:eb:8f:b7:6a: f2:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B6:E4:DF:CB:F8:CB:E2:16:94:A1:6C:75:CD:7D:DF:D1:01:2B:49:31 X509v3 Authority Key Identifier: keyid:DC:21:F8:67:37:B2:39:7D:D2:B2:60:9E:8F:B4:06:86:E3:C8:F7:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C799C/A2DFB336135711EB8D13B215C4F9AE02/3CH4ZzeyOX3SsmCej7QGhuPI92E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3CH4ZzeyOX3SsmCej7QGhuPI92E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C799C/A2DFB336135711EB8D13B215C4F9AE02/3CH4ZzeyOX3SsmCej7QGhuPI92E.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2e:73:a8:d4:b7:8d:9f:f1:dc:9b:f4:6e:73:24:dc:73:c0:5e: a7:02:e1:cf:86:45:fd:45:9d:f3:84:5d:61:be:16:aa:84:1c: 8c:fc:0d:15:09:30:a6:49:78:20:b9:ae:34:a6:b1:9b:76:e2: cd:10:3d:ee:b8:17:cd:7b:ad:55:82:df:1f:a9:79:a9:84:32: e2:01:d1:50:f4:55:74:45:f6:46:3a:68:88:13:eb:cf:b1:4c: 1e:9d:2e:cd:a9:24:ae:b7:35:ef:6a:05:7b:91:8a:66:cf:68: 7f:8b:16:67:9e:ca:34:b6:bf:82:4c:c8:fd:d1:c7:5d:4e:47: 85:69:56:ce:4b:25:1d:29:b6:85:eb:c5:d4:1b:e3:3f:70:f8: e2:10:35:23:f4:c8:f6:85:90:0d:db:3a:22:db:d9:50:bf:1d: 1c:8f:02:3f:a6:99:f6:49:5e:e9:4f:fd:df:69:92:47:ab:5e: ef:df:1f:42:6f:06:0b:40:d9:ad:f2:de:f0:4c:1d:08:71:8b: 4e:30:15:89:fa:2e:db:28:2a:99:d4:37:a9:f4:8f:c7:6e:21: d0:ec:d9:32:da:e8:c0:ad:de:a7:a1:81:23:84:18:29:79:e8: 2e:df:09:44:e8:56:39:c0:39:91:a4:98:b2:fc:7a:86:61:d0: 34:87:1c:22 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICByAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qzc5OUMxMTAvBgNVBAUTKERDMjFGODY3MzdCMjM5N0REMkIyNjA5RThGQjQwNjg2 RTNDOEY3NjEwHhcNMjQxMTIyMjExOTU3WhcNMjQxMTI5MjExOTU3WjAYMRYwFAYD VQQDEw02NzQwZjU3ZC1kNzE1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsVorK0iOgJQ3Ju6XKR1z5TfWPib5gmFKEJA4B2YTeq4I/CL52hPtYWlxYHyE YPCBPzp4Gx17jSUZg42+qsWarXXFlFn0aA1ciJVpNVAHhDwsaKLeIig3KwyyaV/e HChgLJpsZ8spoXYcfBr9iLXhpLp6oenrxb54LtPFi86KqFgQF6GqhEFJbkOcXmMr /WbXUjmClb2DM80FKQ5IwV0ZRRtCM0exen3a+mGITrY1uc/uNm5LoOl9fv5rk7t+ 2Ewe9GZo2P7vNiko+FnoPl/W6dIBYEV6v7MTKgOc+sBu8w29IwTE6KCBDzrul2If +iSbfj9CukIikRLC1euPt2ryiwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLbk38v4 y+IWlKFsdc1939EBK0kxMB8GA1UdIwQYMBaAFNwh+Gc3sjl90rJgno+0BobjyPdh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNzk5Qy9BMkRGQjMzNjEz NTcxMUVCOEQxM0IyMTVDNEY5QUUwMi8zQ0g0WnpleU9YM1NzbUNlajdRR2h1UEk5 MkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNDSDRaemV5T1gzU3NtQ2VqN1FHaHVQSTkyRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD Nzk5Qy9BMkRGQjMzNjEzNTcxMUVCOEQxM0IyMTVDNEY5QUUwMi8zQ0g0WnpleU9Y M1NzbUNlajdRR2h1UEk5MkUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAuc6jUt42f8dyb9G5zJNxzwF6nAuHPhkX9RZ3zhF1hvhaqhByM/A0V CTCmSXggua40prGbduLNED3uuBfNe61Vgt8fqXmphDLiAdFQ9FV0RfZGOmiIE+vP sUwenS7NqSSutzXvagV7kYpmz2h/ixZnnso0tr+CTMj90cddTkeFaVbOSyUdKbaF 68XUG+M/cPjiEDUj9Mj2hZAN2zoi29lQvx0cjwI/ppn2SV7pT/3faZJHq17v3x9C bwYLQNmt8t7wTB0IcYtOMBWJ+i7bKCqZ1Dep9I/HbiHQ7Nky2ujArd6noYEjhBgp eegu3wlE6FY5wDmRpJiy/HqGYdA0hxwi -----END CERTIFICATE-----Generated at Sat Nov 23 00:08:50 2024 by rpki-client on console-ams.rpki-client.org