$ rpki-client -vvf rpki.apnic.net/member_repository/A91D506C/46618B1CF46E11EC8C60700FC4F9AE02/3Y89lj-o0fItV_Tfspq9cNJVjjc.mft File: 3Y89lj-o0fItV_Tfspq9cNJVjjc.mft (raw, json) Hash identifier: xubXRnrj+IbaXg7a3PoNw1WPun5yaDv0QeeOcFC7aYE= Subject key identifier: 16:0B:28:20:D9:15:DE:FE:8C:B4:9B:09:EB:4C:EF:3A:67:57:08:EE Authority key identifier: DD:8F:3D:96:3F:A8:D1:F2:2D:57:F4:DF:B2:9A:BD:70:D2:55:8E:37 Certificate issuer: /CN=A91D506C/serialNumber=DD8F3D963FA8D1F22D57F4DFB29ABD70D2558E37 Certificate serial: 025B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3Y89lj-o0fItV_Tfspq9cNJVjjc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D506C/46618B1CF46E11EC8C60700FC4F9AE02/3Y89lj-o0fItV_Tfspq9cNJVjjc.mft Manifest number: 0258 Signing time: Sat 23 Nov 2024 01:16:40 +0000 Manifest this update: Sat 23 Nov 2024 01:16:40 +0000 Manifest next update: Sat 30 Nov 2024 01:16:39 +0000 Files and hashes: 1: 3Y89lj-o0fItV_Tfspq9cNJVjjc.crl (hash: iIHli8tlWWMq1jykJL0Id3U1/ZtRWVNXgY4CkRNCqKw=) 2: 76C5241CF47311EC8721C33DC4F9AE02.roa (hash: g19FhTBXCPfsej+IJgF1Do8UhJTPPb20EhKNCmaxyOU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D506C/46618B1CF46E11EC8C60700FC4F9AE02/3Y89lj-o0fItV_Tfspq9cNJVjjc.crl rsync://rpki.apnic.net/member_repository/A91D506C/46618B1CF46E11EC8C60700FC4F9AE02/3Y89lj-o0fItV_Tfspq9cNJVjjc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3Y89lj-o0fItV_Tfspq9cNJVjjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 01:16:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 603 (0x25b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D506C/serialNumber=DD8F3D963FA8D1F22D57F4DFB29ABD70D2558E37 Validity Not Before: Nov 23 01:16:40 2024 GMT Not After : Nov 30 01:16:39 2024 GMT Subject: CN=67412cf8-e0ec Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:bb:18:6f:1e:77:37:7d:eb:fb:cd:c2:14:2f: d8:17:44:4d:39:a0:c7:95:d4:3e:77:15:9c:c3:cf: 17:f0:0b:29:8d:39:4e:9e:ca:fd:0b:f0:b1:28:ac: 08:9b:da:4e:68:e5:60:53:88:a2:ac:1e:68:26:53: 17:e6:77:10:86:f2:e8:79:77:52:28:00:ac:ec:3f: 7d:49:80:3b:b4:21:59:fb:47:3d:0f:28:19:e1:8c: 2d:b1:2c:28:87:51:01:d4:a9:fa:e0:3e:81:01:d1: dd:0c:7d:2b:4b:9c:a3:c8:9a:18:c7:80:a3:f7:1c: fe:3c:c8:df:6f:c6:bb:c2:76:74:d6:d9:c2:48:4b: b9:77:9b:fe:86:36:ee:26:f9:1c:c0:03:19:08:8e: 1e:b0:27:2b:2a:58:fe:9a:ee:9a:70:a3:b1:b2:1f: 01:38:d5:b4:05:67:be:cf:0f:73:6b:ba:93:d1:16: 08:f6:cb:7d:8a:6a:e9:13:89:01:09:86:49:68:22: 2e:6a:d3:9c:65:f5:b5:89:a2:2d:f9:5d:68:2d:58: 01:2b:a5:61:c7:1d:0b:4f:ae:aa:80:62:e2:61:50: 1c:fc:21:c4:21:48:d4:9a:75:c9:75:db:d9:36:ce: 87:c2:e2:fb:cb:ec:fc:88:67:39:f5:f8:9f:4a:c8: 80:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:0B:28:20:D9:15:DE:FE:8C:B4:9B:09:EB:4C:EF:3A:67:57:08:EE X509v3 Authority Key Identifier: keyid:DD:8F:3D:96:3F:A8:D1:F2:2D:57:F4:DF:B2:9A:BD:70:D2:55:8E:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D506C/46618B1CF46E11EC8C60700FC4F9AE02/3Y89lj-o0fItV_Tfspq9cNJVjjc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3Y89lj-o0fItV_Tfspq9cNJVjjc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D506C/46618B1CF46E11EC8C60700FC4F9AE02/3Y89lj-o0fItV_Tfspq9cNJVjjc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8c:2d:c5:0a:b7:96:36:d5:04:a6:2a:ea:61:99:aa:ce:93:c1: 9e:35:de:3d:a2:d7:6f:94:be:c1:fa:1d:81:8a:53:0f:d4:03: 73:b1:9e:7f:82:1a:8e:2e:9e:da:f8:6e:c3:53:58:36:db:18: 88:6f:21:74:83:c1:47:4f:53:22:91:42:ce:0b:f6:0e:10:ce: 0e:db:80:e0:3e:57:24:a4:73:ea:88:df:59:69:39:3d:a2:a7: 32:9b:00:73:18:d8:11:12:1d:07:b5:51:ec:2e:d5:f9:e5:7b: 1a:25:7d:5f:c4:2a:79:97:3a:c6:6d:7f:20:9f:54:04:17:fc: a7:17:f9:f1:7a:af:b3:4d:1f:34:6d:46:a3:23:38:3b:92:26: d0:7a:a4:a9:61:9d:7b:8f:1d:b7:3e:0e:68:82:1b:a8:2d:16: 1e:a0:5a:5e:b2:4d:ad:75:67:7c:63:59:14:1b:9b:63:3b:b7: fb:de:51:d5:ad:c3:10:17:c9:2c:05:f7:4b:7f:ae:9d:4d:2b: d6:75:1f:0e:4d:da:74:5a:fd:36:ce:07:90:bd:af:d4:d2:75: df:de:bd:6b:58:67:9e:79:d8:4b:ea:77:43:31:08:a5:e2:c5: c9:f8:ca:be:8c:9b:28:59:54:bc:d3:45:93:1b:38:6a:a3:72: ce:1d:16:6c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAlswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDUwNkMxMTAvBgNVBAUTKEREOEYzRDk2M0ZBOEQxRjIyRDU3RjRERkIyOUFCRDcw RDI1NThFMzcwHhcNMjQxMTIzMDExNjQwWhcNMjQxMTMwMDExNjM5WjAYMRYwFAYD VQQDEw02NzQxMmNmOC1lMGVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwrsYbx53N33r+83CFC/YF0RNOaDHldQ+dxWcw88X8AspjTlOnsr9C/CxKKwI m9pOaOVgU4iirB5oJlMX5ncQhvLoeXdSKACs7D99SYA7tCFZ+0c9DygZ4YwtsSwo h1EB1Kn64D6BAdHdDH0rS5yjyJoYx4Cj9xz+PMjfb8a7wnZ01tnCSEu5d5v+hjbu JvkcwAMZCI4esCcrKlj+mu6acKOxsh8BONW0BWe+zw9za7qT0RYI9st9imrpE4kB CYZJaCIuatOcZfW1iaIt+V1oLVgBK6Vhxx0LT66qgGLiYVAc/CHEIUjUmnXJddvZ Ns6HwuL7y+z8iGc59fifSsiAOQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBYLKCDZ Fd7+jLSbCetM7zpnVwjuMB8GA1UdIwQYMBaAFN2PPZY/qNHyLVf037KavXDSVY43 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENTA2Qy80NjYxOEIxQ0Y0 NkUxMUVDOEM2MDcwMEZDNEY5QUUwMi8zWTg5bGotbzBmSXRWX1Rmc3BxOWNOSlZq amMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNZODlsai1vMGZJdFZfVGZzcHE5Y05KVmpqYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NTA2Qy80NjYxOEIxQ0Y0NkUxMUVDOEM2MDcwMEZDNEY5QUUwMi8zWTg5bGotbzBm SXRWX1Rmc3BxOWNOSlZqamMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCMLcUKt5Y21QSmKuphmarOk8GeNd49otdvlL7B+h2BilMP1ANzsZ5/ ghqOLp7a+G7DU1g22xiIbyF0g8FHT1MikULOC/YOEM4O24DgPlckpHPqiN9ZaTk9 oqcymwBzGNgREh0HtVHsLtX55XsaJX1fxCp5lzrGbX8gn1QEF/ynF/nxeq+zTR80 bUajIzg7kibQeqSpYZ17jx23Pg5oghuoLRYeoFpesk2tdWd8Y1kUG5tjO7f73lHV rcMQF8ksBfdLf66dTSvWdR8OTdp0Wv02zgeQva/U0nXf3r1rWGeeedhL6ndDMQil 4sXJ+Mq+jJsoWVS800WTGzhqo3LOHRZs -----END CERTIFICATE-----Generated at Sat Nov 23 03:58:52 2024 by rpki-client on console-ams.rpki-client.org