$ rpki-client -vvf rpki.apnic.net/member_repository/A911945B/3ACF70C017FD11EF8C083063C4F9AE02/6zLfknQ0rG06hoR937o9LoEAETE.mft File: 6zLfknQ0rG06hoR937o9LoEAETE.mft (raw, json) Hash identifier: jXG4lTRhyET1y6CmF883Y1TpFFRTknrIEKB1Ndutd5M= Subject key identifier: 70:5F:F3:B8:21:33:93:DF:75:0F:1C:3B:93:D6:7C:FA:B6:FA:92:64 Authority key identifier: EB:32:DF:92:74:34:AC:6D:3A:86:84:7D:DF:BA:3D:2E:81:00:11:31 Certificate issuer: /CN=A911945B/serialNumber=EB32DF927434AC6D3A86847DDFBA3D2E81001131 Certificate serial: 47 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6zLfknQ0rG06hoR937o9LoEAETE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911945B/3ACF70C017FD11EF8C083063C4F9AE02/6zLfknQ0rG06hoR937o9LoEAETE.mft Manifest number: 45 Signing time: Fri 27 Sep 2024 05:56:13 +0000 Manifest this update: Fri 27 Sep 2024 05:56:12 +0000 Manifest next update: Fri 04 Oct 2024 05:56:12 +0000 Files and hashes: 1: 6zLfknQ0rG06hoR937o9LoEAETE.crl (hash: QH01i8zmOo2JfbQH1GTbP4qJID4K0x1r6h3lg8DGYSo=) 2: C562775017FD11EF9A320864C4F9AE02.roa (hash: KzKcuINIseqCKm2mKPVX0jaoPaRQgEtGnab7YqNF1/k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911945B/3ACF70C017FD11EF8C083063C4F9AE02/6zLfknQ0rG06hoR937o9LoEAETE.crl rsync://rpki.apnic.net/member_repository/A911945B/3ACF70C017FD11EF8C083063C4F9AE02/6zLfknQ0rG06hoR937o9LoEAETE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6zLfknQ0rG06hoR937o9LoEAETE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 04 Oct 2024 05:56:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 71 (0x47) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911945B/serialNumber=EB32DF927434AC6D3A86847DDFBA3D2E81001131 Validity Not Before: Sep 27 05:56:12 2024 GMT Not After : Oct 4 05:56:12 2024 GMT Subject: CN=66f648fd-26cc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:3f:f1:80:0b:7e:7e:89:33:e3:0d:39:b6:5c: 95:21:e0:22:ea:ed:d4:23:44:4c:7c:f8:b7:df:6c: 8e:03:b0:60:65:ca:d6:f4:df:2f:84:6c:a3:ff:27: da:5d:4f:9c:95:42:e3:ca:0f:72:0d:5a:9d:50:c7: f1:84:93:5e:7c:9c:64:25:b3:cd:ed:4d:a2:f3:15: e6:eb:7d:0f:c7:f1:24:82:ee:ef:79:52:96:ff:3d: 30:f0:c2:9f:8e:0e:f3:69:71:e8:34:e7:46:6f:93: 84:c3:b7:b2:ee:f3:54:bd:60:20:a9:72:6d:bd:fe: e1:4c:97:d3:26:ad:58:9f:e7:66:e4:6d:83:d7:57: 10:74:93:e9:ab:56:76:29:45:81:85:76:33:c7:28: ef:52:c1:21:06:ac:f9:53:31:0f:49:e9:9d:e0:d9: 85:e0:83:27:06:2e:c7:68:8a:25:25:45:e6:44:4a: aa:7c:cb:e0:fb:b6:b2:a0:57:93:79:27:00:9d:fd: 18:b1:38:83:76:0e:10:f5:f8:da:c6:1b:6a:77:ab: a2:fc:15:e4:6f:ff:bc:f2:1b:f8:75:94:31:bd:58: 1a:b0:97:d7:80:ad:8c:d1:3a:e7:82:38:5a:4c:e6: d6:92:ab:80:66:94:0d:e2:cf:0d:94:a6:78:ec:45: 53:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:5F:F3:B8:21:33:93:DF:75:0F:1C:3B:93:D6:7C:FA:B6:FA:92:64 X509v3 Authority Key Identifier: keyid:EB:32:DF:92:74:34:AC:6D:3A:86:84:7D:DF:BA:3D:2E:81:00:11:31 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911945B/3ACF70C017FD11EF8C083063C4F9AE02/6zLfknQ0rG06hoR937o9LoEAETE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6zLfknQ0rG06hoR937o9LoEAETE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911945B/3ACF70C017FD11EF8C083063C4F9AE02/6zLfknQ0rG06hoR937o9LoEAETE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 88:77:a3:2b:37:15:33:a2:ca:c5:2c:04:f3:31:7f:c2:b3:ed: 31:58:98:2b:b2:94:a0:33:b3:40:0d:4d:45:58:65:3e:31:e3: 4e:20:01:f1:4d:4b:fb:df:7a:f5:ce:85:8d:0a:c4:30:fb:ee: 1b:ab:dd:42:99:77:95:c8:f5:00:35:ea:30:14:fb:fc:d3:ec: 7f:c1:0c:0d:72:ec:89:e1:64:83:6a:d6:e8:b8:28:16:29:67: 52:ad:3b:f2:61:ac:71:87:70:02:81:d2:98:a7:b1:2e:63:72: 42:c9:c1:bf:71:e4:36:e0:e8:c6:02:e3:a9:39:9e:97:f1:1b: ab:51:7c:52:e8:e9:f8:7c:be:fd:96:4e:03:93:30:c0:cb:8d: 95:96:d2:c7:4e:bb:10:6d:8e:df:73:04:bc:9e:60:cf:01:b9: 27:03:43:f4:c2:fc:18:9d:0f:eb:c5:a5:6c:f7:32:c1:81:a5: fa:c6:d5:e3:f7:6e:96:e6:00:b4:8e:16:cc:46:dd:ed:f2:48: 4d:e0:f0:26:47:e2:7f:cd:ac:df:b9:95:a7:b6:ac:1c:a5:30: d2:51:58:59:ca:85:73:6f:c1:18:33:5b:ea:85:84:ca:01:1f: bf:66:8f:89:2c:36:39:fd:71:77:a4:61:9d:a9:6a:ad:59:d4: a1:57:50:50 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBRzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx OTQ1QjExMC8GA1UEBRMoRUIzMkRGOTI3NDM0QUM2RDNBODY4NDdEREZCQTNEMkU4 MTAwMTEzMTAeFw0yNDA5MjcwNTU2MTJaFw0yNDEwMDQwNTU2MTJaMBgxFjAUBgNV BAMTDTY2ZjY0OGZkLTI2Y2MwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDMP/GAC35+iTPjDTm2XJUh4CLq7dQjREx8+LffbI4DsGBlytb03y+EbKP/J9pd T5yVQuPKD3INWp1Qx/GEk158nGQls83tTaLzFebrfQ/H8SSC7u95Upb/PTDwwp+O DvNpceg050Zvk4TDt7Lu81S9YCCpcm29/uFMl9MmrVif52bkbYPXVxB0k+mrVnYp RYGFdjPHKO9SwSEGrPlTMQ9J6Z3g2YXggycGLsdoiiUlReZESqp8y+D7trKgV5N5 JwCd/RixOIN2DhD1+NrGG2p3q6L8FeRv/7zyG/h1lDG9WBqwl9eArYzROueCOFpM 5taSq4BmlA3izw2UpnjsRVMtAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUcF/zuCEz k991Dxw7k9Z8+rb6kmQwHwYDVR0jBBgwFoAU6zLfknQ0rG06hoR937o9LoEAETEw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTE5NDVCLzNBQ0Y3MEMwMTdG RDExRUY4QzA4MzA2M0M0RjlBRTAyLzZ6TGZrblEwckcwNmhvUjkzN285TG9FQUVU RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvNnpMZmtuUTByRzA2aG9SOTM3bzlMb0VBRVRFLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTE5 NDVCLzNBQ0Y3MEMwMTdGRDExRUY4QzA4MzA2M0M0RjlBRTAyLzZ6TGZrblEwckcw NmhvUjkzN285TG9FQUVURS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAIh3oys3FTOiysUsBPMxf8Kz7TFYmCuylKAzs0ANTUVYZT4x404gAfFN S/vfevXOhY0KxDD77hur3UKZd5XI9QA16jAU+/zT7H/BDA1y7InhZINq1ui4KBYp Z1KtO/JhrHGHcAKB0pinsS5jckLJwb9x5Dbg6MYC46k5npfxG6tRfFLo6fh8vv2W TgOTMMDLjZWW0sdOuxBtjt9zBLyeYM8BuScDQ/TC/BidD+vFpWz3MsGBpfrG1eP3 bpbmALSOFsxG3e3ySE3g8CZH4n/NrN+5lae2rBylMNJRWFnKhXNvwRgzW+qFhMoB H79mj4ksNjn9cXekYZ2paq1Z1KFXUFA= -----END CERTIFICATE-----Generated at Fri Sep 27 07:39:54 2024 by rpki-client on console-fra.rpki-client.org