$ rpki-client -vvf rpki.apnic.net/member_repository/A91D3D50/15464FD6050111EAAD97252CC4F9AE02/9R3GadtZYYTQv5SqHkHl3hWejaU.mft File: 9R3GadtZYYTQv5SqHkHl3hWejaU.mft (raw, json) Hash identifier: e7hupfVPAX/wIrNdSUu0PQ+FZ+JHSvVhGqmlkjJSmgE= Subject key identifier: 36:5F:3E:6F:40:3F:59:93:19:CC:01:A4:FE:4E:B0:DC:53:3A:2B:89 Authority key identifier: F5:1D:C6:69:DB:59:61:84:D0:BF:94:AA:1E:41:E5:DE:15:9E:8D:A5 Certificate issuer: /CN=A91D3D50/serialNumber=F51DC669DB596184D0BF94AA1E41E5DE159E8DA5 Certificate serial: 0BF2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9R3GadtZYYTQv5SqHkHl3hWejaU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D3D50/15464FD6050111EAAD97252CC4F9AE02/9R3GadtZYYTQv5SqHkHl3hWejaU.mft Manifest number: 0BE9 Signing time: Fri 22 Nov 2024 18:25:34 +0000 Manifest this update: Fri 22 Nov 2024 18:25:34 +0000 Manifest next update: Fri 29 Nov 2024 18:25:34 +0000 Files and hashes: 1: 9R3GadtZYYTQv5SqHkHl3hWejaU.crl (hash: 5fWne5baUDlSh88ZtgSuv0qjPdDjEOR1VFlY8W1RT0Q=) 2: 2DE1069C050311EA93648E33C4F9AE02.roa (hash: zDl80I2OXRgu8XAGzajWbluuoVqJ4qa8l1cE9aEJ0WU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D3D50/15464FD6050111EAAD97252CC4F9AE02/9R3GadtZYYTQv5SqHkHl3hWejaU.crl rsync://rpki.apnic.net/member_repository/A91D3D50/15464FD6050111EAAD97252CC4F9AE02/9R3GadtZYYTQv5SqHkHl3hWejaU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9R3GadtZYYTQv5SqHkHl3hWejaU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 18:25:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3058 (0xbf2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D3D50/serialNumber=F51DC669DB596184D0BF94AA1E41E5DE159E8DA5 Validity Not Before: Nov 22 18:25:34 2024 GMT Not After : Nov 29 18:25:34 2024 GMT Subject: CN=6740cc9e-47d3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:1e:45:80:71:8e:9f:89:c6:dd:8e:4f:78:06: a7:52:9f:d1:09:32:04:27:96:49:1d:b0:94:46:f1: 5a:ef:f0:60:f2:69:68:06:f8:03:86:69:73:83:5a: 8a:48:1b:ea:ab:fc:d2:60:d0:8e:57:82:88:4a:68: 80:06:81:ca:5e:53:b3:1e:63:5a:16:f6:db:e5:43: 5a:da:97:d9:ed:d9:c5:66:f6:b1:34:a1:0c:3c:a1: 33:1d:c5:28:f9:b4:0e:f0:2c:17:84:81:b9:52:a7: 9d:14:86:cc:29:d7:f9:2c:1a:f7:2b:a2:68:56:c8: d6:3e:d8:c0:3f:86:06:1f:21:f1:1a:95:57:fa:8e: 8a:62:92:0a:e8:fa:66:90:c6:bb:5a:57:21:66:9f: f1:c6:0c:c1:75:d3:a7:1e:52:f6:cf:6e:0b:b3:f5: 01:d0:3f:e1:51:7d:77:cd:d2:8d:13:47:80:64:9a: 0e:9c:5e:13:1a:8a:42:0f:d9:41:9c:97:3b:73:ad: 12:f6:2b:82:5a:15:a3:62:9b:51:6e:fd:56:d4:f2: 87:4d:6d:06:9a:fa:05:7c:51:5c:43:d6:37:e7:cb: 65:4b:4e:69:c6:b5:8a:8e:18:db:ce:c1:02:6b:c9: 6b:42:e5:04:6b:01:e0:31:30:cc:51:ea:5b:f2:6a: a5:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:5F:3E:6F:40:3F:59:93:19:CC:01:A4:FE:4E:B0:DC:53:3A:2B:89 X509v3 Authority Key Identifier: keyid:F5:1D:C6:69:DB:59:61:84:D0:BF:94:AA:1E:41:E5:DE:15:9E:8D:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D3D50/15464FD6050111EAAD97252CC4F9AE02/9R3GadtZYYTQv5SqHkHl3hWejaU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9R3GadtZYYTQv5SqHkHl3hWejaU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D3D50/15464FD6050111EAAD97252CC4F9AE02/9R3GadtZYYTQv5SqHkHl3hWejaU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 12:6c:2f:fd:ab:b4:9c:dd:01:49:63:a3:05:c0:43:bb:7e:0a: 5e:5d:f2:7c:7b:7e:23:a4:25:58:07:94:18:42:39:d2:0b:82: f6:b4:e5:8f:c0:e0:ac:7a:f8:60:45:c8:ca:78:75:a9:46:44: fc:a0:85:a9:98:f0:7a:fb:15:bb:1b:d4:f8:91:fb:56:7e:1c: 23:1a:21:fa:79:81:fc:f0:39:ed:10:cf:59:47:6f:af:da:ff: 93:c9:67:f7:d6:66:ee:7c:6d:a0:28:6c:12:01:cf:0c:0d:ae: 6f:8b:0f:81:ab:2e:b7:20:cc:ee:8c:16:bb:ab:36:b8:e2:ab: 54:d0:b0:c2:e2:21:84:b8:2d:2b:b1:07:bf:25:7b:2a:8c:f9: 2c:5b:4d:5d:07:e2:9c:b1:d7:d2:84:cc:4c:8a:0d:58:55:81: 95:b9:00:6d:66:38:e2:7d:18:23:f8:0e:c7:8a:5d:9c:b6:55: db:be:68:f9:31:97:a4:95:50:cd:b5:d7:44:e4:92:cd:ff:5e: 1a:24:31:15:c9:19:36:53:69:c4:6a:c4:9a:ac:6c:26:fd:12: 62:9d:31:ec:8d:ba:22:7d:06:d9:8e:89:92:77:34:4e:25:8e: f4:a9:9b:a4:d9:9b:6f:a6:08:d7:48:06:f5:30:72:b1:82:e6: 11:3c:5a:cf -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC/IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDNENTAxMTAvBgNVBAUTKEY1MURDNjY5REI1OTYxODREMEJGOTRBQTFFNDFFNURF MTU5RThEQTUwHhcNMjQxMTIyMTgyNTM0WhcNMjQxMTI5MTgyNTM0WjAYMRYwFAYD VQQDEw02NzQwY2M5ZS00N2QzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzB5FgHGOn4nG3Y5PeAanUp/RCTIEJ5ZJHbCURvFa7/Bg8mloBvgDhmlzg1qK SBvqq/zSYNCOV4KISmiABoHKXlOzHmNaFvbb5UNa2pfZ7dnFZvaxNKEMPKEzHcUo +bQO8CwXhIG5UqedFIbMKdf5LBr3K6JoVsjWPtjAP4YGHyHxGpVX+o6KYpIK6Ppm kMa7WlchZp/xxgzBddOnHlL2z24Ls/UB0D/hUX13zdKNE0eAZJoOnF4TGopCD9lB nJc7c60S9iuCWhWjYptRbv1W1PKHTW0GmvoFfFFcQ9Y358tlS05pxrWKjhjbzsEC a8lrQuUEawHgMTDMUepb8mqlkQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDZfPm9A P1mTGcwBpP5OsNxTOiuJMB8GA1UdIwQYMBaAFPUdxmnbWWGE0L+Uqh5B5d4Vno2l MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEM0Q1MC8xNTQ2NEZENjA1 MDExMUVBQUQ5NzI1MkNDNEY5QUUwMi85UjNHYWR0WllZVFF2NVNxSGtIbDNoV2Vq YVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzlSM0dhZHRaWVlUUXY1U3FIa0hsM2hXZWphVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE M0Q1MC8xNTQ2NEZENjA1MDExMUVBQUQ5NzI1MkNDNEY5QUUwMi85UjNHYWR0WllZ VFF2NVNxSGtIbDNoV2VqYVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQASbC/9q7Sc3QFJY6MFwEO7fgpeXfJ8e34jpCVYB5QYQjnSC4L2tOWP wOCsevhgRcjKeHWpRkT8oIWpmPB6+xW7G9T4kftWfhwjGiH6eYH88DntEM9ZR2+v 2v+TyWf31mbufG2gKGwSAc8MDa5viw+Bqy63IMzujBa7qza44qtU0LDC4iGEuC0r sQe/JXsqjPksW01dB+KcsdfShMxMig1YVYGVuQBtZjjifRgj+A7Hil2ctlXbvmj5 MZeklVDNtddE5JLN/14aJDEVyRk2U2nEasSarGwm/RJinTHsjboifQbZjomSdzRO JY70qZuk2ZtvpgjXSAb1MHKxguYRPFrP -----END CERTIFICATE-----Generated at Fri Nov 22 19:45:03 2024 by rpki-client on console-fra.rpki-client.org