$ rpki-client -vvf rpki.apnic.net/member_repository/A91DF85B/C713C2FE61D511EEBAA04A5EC4F9AE02/3DHPX8nyg0g327s2g8uK9kKrSnw.mft File: 3DHPX8nyg0g327s2g8uK9kKrSnw.mft (raw, json) Hash identifier: qBx/+lKOdnzwUVNv9y8RzTklk/vU9XoKgbDy3q2wNtU= Subject key identifier: 66:A0:78:38:5E:C4:86:3E:FF:65:CB:8C:4B:35:02:50:AC:B4:D6:C0 Authority key identifier: DC:31:CF:5F:C9:F2:83:48:37:DB:BB:36:83:CB:8A:F6:42:AB:4A:7C Certificate issuer: /CN=A91DF85B/serialNumber=DC31CF5FC9F2834837DBBB3683CB8AF642AB4A7C Certificate serial: DA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3DHPX8nyg0g327s2g8uK9kKrSnw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DF85B/C713C2FE61D511EEBAA04A5EC4F9AE02/3DHPX8nyg0g327s2g8uK9kKrSnw.mft Manifest number: D8 Signing time: Wed 27 Nov 2024 03:48:01 +0000 Manifest this update: Wed 27 Nov 2024 03:48:00 +0000 Manifest next update: Wed 04 Dec 2024 03:48:00 +0000 Files and hashes: 1: 3DHPX8nyg0g327s2g8uK9kKrSnw.crl (hash: BJrYolEv5GLXY9AIdcQkds0kAe02TedtJ1WmasEf5DY=) 2: EE28B64661D611EE9C66300EC4F9AE02.roa (hash: g/Vp4JxPAnFvSE7br/vqo4Gmy4ZBC5/7hAk3ouH5N3o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DF85B/C713C2FE61D511EEBAA04A5EC4F9AE02/3DHPX8nyg0g327s2g8uK9kKrSnw.crl rsync://rpki.apnic.net/member_repository/A91DF85B/C713C2FE61D511EEBAA04A5EC4F9AE02/3DHPX8nyg0g327s2g8uK9kKrSnw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3DHPX8nyg0g327s2g8uK9kKrSnw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 04 Dec 2024 03:48:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 218 (0xda) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DF85B/serialNumber=DC31CF5FC9F2834837DBBB3683CB8AF642AB4A7C Validity Not Before: Nov 27 03:48:00 2024 GMT Not After : Dec 4 03:48:00 2024 GMT Subject: CN=67469670-752a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:af:cf:4c:ff:0a:d5:c5:d2:d4:41:a3:75:c9: 00:03:55:9c:aa:f1:0e:cb:4b:e0:8f:e9:95:43:79: 15:be:88:6f:f1:d6:e1:11:41:f0:c5:08:3c:79:bd: 0d:e6:1b:a1:c7:f0:61:60:db:5b:f0:e3:e9:53:c3: db:47:98:94:23:66:66:89:f9:8d:33:fb:53:9e:ae: 18:6a:67:ec:b3:2f:ee:36:c4:e1:ca:fc:59:1a:c0: 61:0c:67:fe:da:d7:4f:98:70:47:06:9d:9f:2d:c7: ba:ec:25:99:5a:bb:90:32:59:ab:d4:ff:ca:13:81: da:8a:75:c4:f6:f6:1f:2a:c4:58:0c:f9:4a:93:f2: b2:54:fe:05:3f:ce:ec:dd:4c:e0:2c:36:03:e8:9b: 42:b1:0c:f1:ef:d3:d6:02:d8:f8:c3:fd:af:57:79: 32:1c:d8:c9:13:e7:5a:79:d0:e5:9e:31:33:87:74: 5f:06:a2:7d:c4:70:cf:0a:e9:9b:f2:19:d6:a5:d6: 28:96:66:04:95:b2:80:72:e3:ba:53:ef:40:3d:38: 1d:5e:71:4b:1b:3b:5f:1c:da:0a:d4:5a:e4:f9:f3: 07:07:73:3b:c0:60:28:c3:13:f2:9b:cd:3a:4d:b0: 42:64:1f:86:d6:1e:11:44:51:0e:df:8d:b3:d8:91: b7:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:A0:78:38:5E:C4:86:3E:FF:65:CB:8C:4B:35:02:50:AC:B4:D6:C0 X509v3 Authority Key Identifier: keyid:DC:31:CF:5F:C9:F2:83:48:37:DB:BB:36:83:CB:8A:F6:42:AB:4A:7C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DF85B/C713C2FE61D511EEBAA04A5EC4F9AE02/3DHPX8nyg0g327s2g8uK9kKrSnw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3DHPX8nyg0g327s2g8uK9kKrSnw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DF85B/C713C2FE61D511EEBAA04A5EC4F9AE02/3DHPX8nyg0g327s2g8uK9kKrSnw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2c:b8:bd:e1:77:df:1c:b9:8f:4d:b0:d6:15:18:aa:c8:f9:23: 8c:22:96:4c:ab:56:53:36:57:a2:04:3e:da:80:64:aa:81:4b: 58:5d:a7:a4:51:10:a7:10:98:5d:7d:6e:92:a6:2e:be:61:30: 2e:df:fe:a7:a0:26:07:5c:ab:9d:1f:88:a6:46:7a:d0:68:8b: ca:9a:df:ac:18:6c:e3:f2:98:9c:32:2c:b2:c7:50:ab:c8:17: f8:41:b3:cd:2a:cf:a0:b4:7e:8f:8a:8e:3e:4f:d2:66:1b:6d: b0:54:08:93:73:bd:d7:13:f3:fd:ab:60:a9:dc:73:e7:5f:53: 3c:6d:d9:2f:c7:1f:80:7d:46:cc:0a:61:c6:09:23:ea:48:04: 78:1c:5a:5d:0a:af:24:d9:5a:e8:52:92:01:e8:57:f5:21:f2: ae:fc:43:e6:d7:d5:b6:bf:92:22:37:4f:c1:19:93:ea:c4:38: 38:51:f8:50:c9:5b:70:c1:88:04:d3:15:eb:78:fe:4d:b0:b5: b0:dd:76:0d:09:38:bf:0b:cc:9a:c9:59:77:99:be:7b:c3:09: 62:43:18:3a:94:98:ed:42:f6:b9:1a:b1:b5:dc:83:60:0a:60: 8e:c5:6e:fd:5c:2b:16:ec:36:90:a1:91:c1:49:b4:5a:50:c1: db:7f:cb:a3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICANowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REY4NUIxMTAvBgNVBAUTKERDMzFDRjVGQzlGMjgzNDgzN0RCQkIzNjgzQ0I4QUY2 NDJBQjRBN0MwHhcNMjQxMTI3MDM0ODAwWhcNMjQxMjA0MDM0ODAwWjAYMRYwFAYD VQQDEw02NzQ2OTY3MC03NTJhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApK/PTP8K1cXS1EGjdckAA1WcqvEOy0vgj+mVQ3kVvohv8dbhEUHwxQg8eb0N 5huhx/BhYNtb8OPpU8PbR5iUI2ZmifmNM/tTnq4Yamfssy/uNsThyvxZGsBhDGf+ 2tdPmHBHBp2fLce67CWZWruQMlmr1P/KE4HainXE9vYfKsRYDPlKk/KyVP4FP87s 3UzgLDYD6JtCsQzx79PWAtj4w/2vV3kyHNjJE+daedDlnjEzh3RfBqJ9xHDPCumb 8hnWpdYolmYElbKAcuO6U+9APTgdXnFLGztfHNoK1Frk+fMHB3M7wGAowxPym806 TbBCZB+G1h4RRFEO342z2JG3mwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGageDhe xIY+/2XLjEs1AlCstNbAMB8GA1UdIwQYMBaAFNwxz1/J8oNIN9u7NoPLivZCq0p8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERjg1Qi9DNzEzQzJGRTYx RDUxMUVFQkFBMDRBNUVDNEY5QUUwMi8zREhQWDhueWcwZzMyN3MyZzh1SzlrS3JT bncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNESFBYOG55ZzBnMzI3czJnOHVLOWtLclNudy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE Rjg1Qi9DNzEzQzJGRTYxRDUxMUVFQkFBMDRBNUVDNEY5QUUwMi8zREhQWDhueWcw ZzMyN3MyZzh1SzlrS3JTbncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAsuL3hd98cuY9NsNYVGKrI+SOMIpZMq1ZTNleiBD7agGSqgUtYXaek URCnEJhdfW6Spi6+YTAu3/6noCYHXKudH4imRnrQaIvKmt+sGGzj8picMiyyx1Cr yBf4QbPNKs+gtH6Pio4+T9JmG22wVAiTc73XE/P9q2Cp3HPnX1M8bdkvxx+AfUbM CmHGCSPqSAR4HFpdCq8k2VroUpIB6Ff1IfKu/EPm19W2v5IiN0/BGZPqxDg4UfhQ yVtwwYgE0xXreP5NsLWw3XYNCTi/C8yayVl3mb57wwliQxg6lJjtQva5GrG13INg CmCOxW79XCsW7DaQoZHBSbRaUMHbf8uj -----END CERTIFICATE-----Generated at Wed Nov 27 05:56:37 2024 by rpki-client on console-fra.rpki-client.org