$ rpki-client -vvf rpki.apnic.net/member_repository/A91E8D27/C0C5807042E911E29750A32E2979BB20/a-Q-axOWQ8tMGebfcyO1A8STEds.mft File: a-Q-axOWQ8tMGebfcyO1A8STEds.mft (raw, json) Hash identifier: YBgUPwjC6205qcmkiTUb20Yfx6ZMutzgaLDSceIyUO0= Subject key identifier: 9A:13:CB:C3:95:1A:CD:E0:55:77:E7:6A:62:0A:93:4C:4B:BB:29:08 Authority key identifier: 6B:E4:3E:6B:13:96:43:CB:4C:19:E6:DF:73:23:B5:03:C4:93:11:DB Certificate issuer: /CN=A91E8D27/serialNumber=6BE43E6B139643CB4C19E6DF7323B503C49311DB Certificate serial: 33A3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a-Q-axOWQ8tMGebfcyO1A8STEds.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E8D27/C0C5807042E911E29750A32E2979BB20/a-Q-axOWQ8tMGebfcyO1A8STEds.mft Manifest number: 3387 Signing time: Fri 22 Nov 2024 15:22:16 +0000 Manifest this update: Fri 22 Nov 2024 15:22:15 +0000 Manifest next update: Fri 29 Nov 2024 15:22:15 +0000 Files and hashes: 1: a-Q-axOWQ8tMGebfcyO1A8STEds.crl (hash: ixCNNHb3E9DTj4XPnbxwncKHAxBq89W0FP2o4DhUTRI=) 2: 56C3DC822B0B11EF97C4A74AC4F9AE02.roa (hash: 8wnTmh1W8Y0nXXG10XPmkI991HV3skLyCs5O2FK2VSU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E8D27/C0C5807042E911E29750A32E2979BB20/a-Q-axOWQ8tMGebfcyO1A8STEds.crl rsync://rpki.apnic.net/member_repository/A91E8D27/C0C5807042E911E29750A32E2979BB20/a-Q-axOWQ8tMGebfcyO1A8STEds.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a-Q-axOWQ8tMGebfcyO1A8STEds.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 15:22:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13219 (0x33a3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E8D27/serialNumber=6BE43E6B139643CB4C19E6DF7323B503C49311DB Validity Not Before: Nov 22 15:22:15 2024 GMT Not After : Nov 29 15:22:15 2024 GMT Subject: CN=6740a1a7-8d50 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:74:46:1b:fb:6a:3d:17:1a:b7:f3:e9:3e:3a: e5:72:94:69:02:a2:fa:f8:35:83:55:51:93:70:95: 0a:80:1e:e1:81:f7:bd:4f:ad:0b:dd:f9:48:26:fa: a7:04:04:c2:97:4e:2f:2f:06:14:0e:39:1e:1a:f8: a8:cc:16:1a:43:b1:41:ea:b5:2a:ec:e6:b8:a8:db: a1:b0:0c:f8:75:9f:0f:3c:19:3a:46:0a:80:53:14: 95:f9:e0:28:c1:68:77:3f:ff:82:7a:ba:ab:5e:d8: 36:cf:b3:28:d1:3b:1d:31:51:0e:32:9c:84:3d:ae: 68:00:76:d6:4b:9d:65:03:88:1e:f4:28:e9:2d:60: a0:0b:31:1a:21:7d:40:bc:15:e9:ac:ae:05:ff:ad: d6:70:65:6d:cb:ac:44:db:0e:cb:0c:48:10:7c:0d: 02:31:63:53:6c:09:19:70:11:64:89:7d:e7:56:8b: 9e:ed:8f:25:12:74:74:34:14:52:fe:35:32:7e:67: e7:20:fb:f4:6f:97:5d:a9:80:6c:f1:fb:f4:23:c3: c9:ac:d6:16:ee:71:a1:1d:ec:da:9a:8e:8f:c6:63: 9f:09:21:88:96:7c:15:2c:2b:1c:93:f4:6e:66:77: c1:b4:0d:63:55:0d:79:84:8b:3c:36:00:e1:76:d9: 26:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:13:CB:C3:95:1A:CD:E0:55:77:E7:6A:62:0A:93:4C:4B:BB:29:08 X509v3 Authority Key Identifier: keyid:6B:E4:3E:6B:13:96:43:CB:4C:19:E6:DF:73:23:B5:03:C4:93:11:DB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E8D27/C0C5807042E911E29750A32E2979BB20/a-Q-axOWQ8tMGebfcyO1A8STEds.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a-Q-axOWQ8tMGebfcyO1A8STEds.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E8D27/C0C5807042E911E29750A32E2979BB20/a-Q-axOWQ8tMGebfcyO1A8STEds.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 08:28:c9:3a:b2:fd:3a:bd:e8:03:7a:ef:65:4b:54:00:c9:5c: a3:7d:8f:0b:cf:64:3d:6c:38:7c:b8:08:0e:df:29:49:e1:4e: 42:11:46:91:58:8c:88:10:32:9a:94:1e:1c:b2:2a:d5:74:d9: 69:6b:03:a3:85:a0:89:d2:46:07:b3:aa:e0:76:fb:f8:ad:67: 5d:cc:c5:d2:48:91:22:79:af:e5:0c:cd:dd:ff:64:99:c1:28: ce:9d:56:c2:da:a7:05:97:f1:7e:2a:47:8c:4a:37:cb:77:44: 7b:88:ec:f0:b9:54:b6:d9:a8:ef:db:f9:be:98:44:16:dd:15: e7:31:c4:0e:92:65:91:80:47:99:ed:5b:e9:1b:f6:b5:f8:7b: 79:fd:2a:8a:00:12:8e:04:b1:cf:60:28:d5:3d:aa:cc:d6:cd: 04:1f:f3:9a:e1:07:5a:aa:63:b7:f3:e0:26:59:19:c3:dd:04: 46:a4:ac:ce:d7:fb:a4:88:c4:3d:41:70:0e:63:a7:22:4a:40: 1d:76:1a:a9:2e:af:76:34:b4:f2:55:63:4d:cc:a9:55:bf:21: 17:7c:14:d2:63:04:fd:83:aa:31:e4:40:62:01:ec:45:94:d7: ed:2c:aa:5d:c8:9f:4a:b9:f6:90:24:cb:52:18:82:25:8a:ce: 95:2f:e8:cb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICM6MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RThEMjcxMTAvBgNVBAUTKDZCRTQzRTZCMTM5NjQzQ0I0QzE5RTZERjczMjNCNTAz QzQ5MzExREIwHhcNMjQxMTIyMTUyMjE1WhcNMjQxMTI5MTUyMjE1WjAYMRYwFAYD VQQDEw02NzQwYTFhNy04ZDUwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuHRGG/tqPRcat/PpPjrlcpRpAqL6+DWDVVGTcJUKgB7hgfe9T60L3flIJvqn BATCl04vLwYUDjkeGviozBYaQ7FB6rUq7Oa4qNuhsAz4dZ8PPBk6RgqAUxSV+eAo wWh3P/+CerqrXtg2z7Mo0TsdMVEOMpyEPa5oAHbWS51lA4ge9CjpLWCgCzEaIX1A vBXprK4F/63WcGVty6xE2w7LDEgQfA0CMWNTbAkZcBFkiX3nVoue7Y8lEnR0NBRS /jUyfmfnIPv0b5ddqYBs8fv0I8PJrNYW7nGhHezamo6PxmOfCSGIlnwVLCsck/Ru ZnfBtA1jVQ15hIs8NgDhdtkmawIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJoTy8OV Gs3gVXfnamIKk0xLuykIMB8GA1UdIwQYMBaAFGvkPmsTlkPLTBnm33MjtQPEkxHb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOEQyNy9DMEM1ODA3MDQy RTkxMUUyOTc1MEEzMkUyOTc5QkIyMC9hLVEtYXhPV1E4dE1HZWJmY3lPMUE4U1RF ZHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2EtUS1heE9XUTh0TUdlYmZjeU8xQThTVEVkcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF OEQyNy9DMEM1ODA3MDQyRTkxMUUyOTc1MEEzMkUyOTc5QkIyMC9hLVEtYXhPV1E4 dE1HZWJmY3lPMUE4U1RFZHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAIKMk6sv06vegDeu9lS1QAyVyjfY8Lz2Q9bDh8uAgO3ylJ4U5CEUaR WIyIEDKalB4csirVdNlpawOjhaCJ0kYHs6rgdvv4rWddzMXSSJEiea/lDM3d/2SZ wSjOnVbC2qcFl/F+KkeMSjfLd0R7iOzwuVS22ajv2/m+mEQW3RXnMcQOkmWRgEeZ 7VvpG/a1+Ht5/SqKABKOBLHPYCjVParM1s0EH/Oa4QdaqmO38+AmWRnD3QRGpKzO 1/ukiMQ9QXAOY6ciSkAddhqpLq92NLTyVWNNzKlVvyEXfBTSYwT9g6ox5EBiAexF lNftLKpdyJ9KufaQJMtSGIIlis6VL+jL -----END CERTIFICATE-----Generated at Fri Nov 22 17:56:22 2024 by rpki-client on console-fra.rpki-client.org