$ rpki-client -vvf rpki.apnic.net/member_repository/A91D1691/50C692929D2411E7861A226BC4F9AE02/3ASvGYyX8lgvFa3e7nxoJhHK2lE.mft File: 3ASvGYyX8lgvFa3e7nxoJhHK2lE.mft (raw, json) Hash identifier: fG9vp8I1MLhv0lR0aSDagW7pJN05dan+KVBelhkwTAY= Subject key identifier: 0B:01:CF:8D:5B:24:FC:1C:19:B9:D2:D6:59:DB:6B:2B:DA:71:A0:41 Authority key identifier: DC:04:AF:19:8C:97:F2:58:2F:15:AD:DE:EE:7C:68:26:11:CA:DA:51 Certificate issuer: /CN=A91D1691/serialNumber=DC04AF198C97F2582F15ADDEEE7C682611CADA51 Certificate serial: 1833 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/3ASvGYyX8lgvFa3e7nxoJhHK2lE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D1691/50C692929D2411E7861A226BC4F9AE02/3ASvGYyX8lgvFa3e7nxoJhHK2lE.mft Manifest number: 182D Signing time: Tue 26 Nov 2024 00:12:44 +0000 Manifest this update: Tue 26 Nov 2024 00:12:44 +0000 Manifest next update: Tue 03 Dec 2024 00:12:44 +0000 Files and hashes: 1: 3ASvGYyX8lgvFa3e7nxoJhHK2lE.crl (hash: RdGC3IHc7oqa6T1A4fqeKJMvGtvY4Ts+529Z6M66n4w=) 2: AEA7C9C0818911EA81577016C4F9AE02.roa (hash: WuIJH5EmbtRmJmFCN//mGN8XhCDwfYBWN+2IltuHvZ4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D1691/50C692929D2411E7861A226BC4F9AE02/3ASvGYyX8lgvFa3e7nxoJhHK2lE.crl rsync://rpki.apnic.net/member_repository/A91D1691/50C692929D2411E7861A226BC4F9AE02/3ASvGYyX8lgvFa3e7nxoJhHK2lE.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/3ASvGYyX8lgvFa3e7nxoJhHK2lE.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 02 Dec 2024 22:01:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6195 (0x1833) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D1691/serialNumber=DC04AF198C97F2582F15ADDEEE7C682611CADA51 Validity Not Before: Nov 26 00:12:44 2024 GMT Not After : Dec 3 00:12:44 2024 GMT Subject: CN=6745127c-7908 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:82:0e:68:67:7e:e8:63:45:ec:67:88:74:17: 17:e6:a8:65:71:2f:f8:3e:15:a3:82:b1:d0:15:e5: 37:55:1e:15:86:dc:3e:46:c5:24:08:37:85:f4:24: 86:f4:b5:91:94:21:90:5d:1a:be:2e:3f:82:23:80: 93:c6:39:98:91:9d:97:a9:e6:46:e3:75:f0:87:0d: 79:dd:f7:19:b3:a3:bd:70:aa:a8:36:ca:2b:e9:13: dd:ac:0e:27:2e:b1:9c:85:94:c4:48:c8:89:91:fa: c6:d3:13:dc:c9:5d:71:45:4f:5a:38:e3:1f:fd:d0: 95:1c:47:94:7e:34:93:da:11:91:d9:85:9b:82:a1: 23:f5:fc:2f:ac:24:94:83:3c:31:03:86:5b:58:81: 6b:66:9b:e3:1d:f3:e5:db:5b:dd:11:8f:d6:48:39: dd:df:bd:34:56:9c:14:d6:3e:57:db:4c:bb:59:83: 80:08:34:a5:0e:e0:ca:b1:cc:32:4e:38:43:b7:42: 03:aa:19:d5:9b:76:3e:2c:3b:1a:cd:bb:7d:1e:07: 0a:2a:9d:8a:73:db:9b:93:9b:c9:55:1e:a7:c8:ee: 72:bd:80:ea:ef:f3:51:48:cb:96:89:d5:84:9b:c2: 6b:3b:7b:b9:dc:55:83:a7:c5:cc:d9:77:63:cb:54: 50:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:01:CF:8D:5B:24:FC:1C:19:B9:D2:D6:59:DB:6B:2B:DA:71:A0:41 X509v3 Authority Key Identifier: keyid:DC:04:AF:19:8C:97:F2:58:2F:15:AD:DE:EE:7C:68:26:11:CA:DA:51 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D1691/50C692929D2411E7861A226BC4F9AE02/3ASvGYyX8lgvFa3e7nxoJhHK2lE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/3ASvGYyX8lgvFa3e7nxoJhHK2lE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D1691/50C692929D2411E7861A226BC4F9AE02/3ASvGYyX8lgvFa3e7nxoJhHK2lE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 75:09:33:9a:a4:5e:a3:f4:bc:35:f6:fc:50:35:02:52:c4:4e: ab:a9:5d:72:5e:ad:82:44:bc:f4:ba:70:38:6f:8d:4f:96:f8: a2:0f:3b:b7:b1:6b:50:e9:e5:0b:51:27:82:a2:73:1b:99:ce: be:0f:30:11:00:5e:c9:f8:fb:af:cf:58:c1:7c:37:b5:a6:e0: 46:2f:fa:9f:91:3a:d1:79:e0:b3:60:e8:d4:6e:23:a4:13:fc: 2a:ab:c0:d8:93:8e:a9:fa:0b:15:75:d5:d6:88:f6:47:16:58: 95:fc:64:b3:4e:bc:90:b1:25:2d:fa:cd:35:ed:b8:e6:95:1c: 6b:13:d5:13:b7:52:b7:c5:74:8a:0a:89:12:60:81:47:46:8c: 64:19:22:c4:94:a5:33:04:f2:ef:b0:21:b0:2f:4c:19:3e:c2: 03:18:48:55:74:42:9d:e1:87:69:5f:0e:ba:b7:9c:5e:56:e4: 36:8a:9d:09:58:e9:c1:25:a0:45:90:14:96:41:3a:41:43:c8: 3d:82:a8:c1:86:9f:ab:26:e3:65:76:62:b6:2d:be:ee:ac:64: 73:12:03:92:f9:63:61:d9:e9:46:a6:aa:f5:ce:f7:2e:8a:8b: 8a:f5:a6:40:e6:6a:81:0b:6d:e9:bd:26:29:90:a8:16:1d:d5: ff:2c:b3:d5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICGDMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDE2OTExMTAvBgNVBAUTKERDMDRBRjE5OEM5N0YyNTgyRjE1QURERUVFN0M2ODI2 MTFDQURBNTEwHhcNMjQxMTI2MDAxMjQ0WhcNMjQxMjAzMDAxMjQ0WjAYMRYwFAYD VQQDEw02NzQ1MTI3Yy03OTA4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsYIOaGd+6GNF7GeIdBcX5qhlcS/4PhWjgrHQFeU3VR4Vhtw+RsUkCDeF9CSG 9LWRlCGQXRq+Lj+CI4CTxjmYkZ2XqeZG43Xwhw153fcZs6O9cKqoNsor6RPdrA4n LrGchZTESMiJkfrG0xPcyV1xRU9aOOMf/dCVHEeUfjST2hGR2YWbgqEj9fwvrCSU gzwxA4ZbWIFrZpvjHfPl21vdEY/WSDnd3700VpwU1j5X20y7WYOACDSlDuDKscwy TjhDt0IDqhnVm3Y+LDsazbt9HgcKKp2Kc9ubk5vJVR6nyO5yvYDq7/NRSMuWidWE m8JrO3u53FWDp8XM2Xdjy1RQMQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAsBz41b JPwcGbnS1lnbayvacaBBMB8GA1UdIwQYMBaAFNwErxmMl/JYLxWt3u58aCYRytpR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMTY5MS81MEM2OTI5MjlE MjQxMUU3ODYxQTIyNkJDNEY5QUUwMi8zQVN2R1l5WDhsZ3ZGYTNlN254b0poSEsy bEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyLzNBU3ZHWXlYOGxndkZhM2U3bnhvSmhISzJsRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MTY5MS81MEM2OTI5MjlEMjQxMUU3ODYxQTIyNkJDNEY5QUUwMi8zQVN2R1l5WDhs Z3ZGYTNlN254b0poSEsybEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB1CTOapF6j9Lw19vxQNQJSxE6rqV1yXq2CRLz0unA4b41PlviiDzu3 sWtQ6eULUSeConMbmc6+DzARAF7J+Puvz1jBfDe1puBGL/qfkTrReeCzYOjUbiOk E/wqq8DYk46p+gsVddXWiPZHFliV/GSzTryQsSUt+s017bjmlRxrE9UTt1K3xXSK CokSYIFHRoxkGSLElKUzBPLvsCGwL0wZPsIDGEhVdEKd4YdpXw66t5xeVuQ2ip0J WOnBJaBFkBSWQTpBQ8g9gqjBhp+rJuNldmK2Lb7urGRzEgOS+WNh2elGpqr1zvcu iouK9aZA5mqBC23pvSYpkKgWHdX/LLPV -----END CERTIFICATE-----Generated at Tue Nov 26 02:20:26 2024 by rpki-client on console-fra.rpki-client.org