$ rpki-client -vvf rpki.apnic.net/member_repository/A912DD36/7F4023F2253211EFBC93211AC4F9AE02/BN7ay9uvpcHBT5KBe5b39QMQCig.mft File: BN7ay9uvpcHBT5KBe5b39QMQCig.mft (raw, json) Hash identifier: IdQD3kCIBjvncUSJuL9pzHs7oFncHosQ7MfjKygNF+Y= Subject key identifier: 90:18:80:EB:5B:D3:93:3F:41:ED:17:23:9F:08:61:8E:E5:D3:06:6D Authority key identifier: 04:DE:DA:CB:DB:AF:A5:C1:C1:4F:92:81:7B:96:F7:F5:03:10:0A:28 Certificate issuer: /CN=A912DD36/serialNumber=04DEDACBDBAFA5C1C14F92817B96F7F503100A28 Certificate serial: 3A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BN7ay9uvpcHBT5KBe5b39QMQCig.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912DD36/7F4023F2253211EFBC93211AC4F9AE02/BN7ay9uvpcHBT5KBe5b39QMQCig.mft Manifest number: 37 Signing time: Sun 15 Sep 2024 10:00:38 +0000 Manifest this update: Sun 15 Sep 2024 10:00:37 +0000 Manifest next update: Sun 22 Sep 2024 10:00:37 +0000 Files and hashes: 1: BN7ay9uvpcHBT5KBe5b39QMQCig.crl (hash: dhoirhesoqSIvUHNyiquxDdyo2lNKecyUsEo9Fun4OE=) 2: 09EC8E16662211EFB6FA446CC4F9AE02.roa (hash: urnxskxc6j+If6xUlVvxOJwYlSVOMo9w2F7g3T2GGgM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912DD36/7F4023F2253211EFBC93211AC4F9AE02/BN7ay9uvpcHBT5KBe5b39QMQCig.crl rsync://rpki.apnic.net/member_repository/A912DD36/7F4023F2253211EFBC93211AC4F9AE02/BN7ay9uvpcHBT5KBe5b39QMQCig.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BN7ay9uvpcHBT5KBe5b39QMQCig.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 22 Sep 2024 02:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58 (0x3a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912DD36/serialNumber=04DEDACBDBAFA5C1C14F92817B96F7F503100A28 Validity Not Before: Sep 15 10:00:37 2024 GMT Not After : Sep 22 10:00:37 2024 GMT Subject: CN=66e6b045-b635 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:45:a8:3f:ae:c1:fe:d7:db:d7:60:03:89:b1: 69:a0:b9:4b:97:45:93:69:25:92:eb:37:04:71:68: 1d:3e:52:f7:15:5f:bc:f8:9e:ef:d7:74:7f:8d:82: d0:f2:5a:e3:99:3c:97:5f:b3:de:e7:24:7c:c9:36: 68:b4:a2:36:e7:21:dd:cf:af:1c:54:72:73:3a:99: 7b:eb:e5:ca:56:c9:06:ca:22:18:a2:6f:87:59:9f: ce:30:61:7f:72:8f:1e:fb:35:8d:53:46:24:d6:85: ab:a9:c1:e2:10:bc:e0:e5:d2:4c:17:78:9e:31:bf: 10:b5:eb:88:e1:65:ec:8b:87:b2:7e:f3:90:69:97: a5:a6:04:8f:91:d0:62:b2:5a:58:1e:1a:f5:15:bf: f2:77:fd:02:81:f7:46:61:09:77:3a:b7:26:06:f0: ab:7f:42:12:84:25:cc:df:d0:db:27:21:57:fd:54: 7a:00:fc:70:a8:3b:d2:8b:d3:e6:41:ef:9d:58:6e: 69:1a:4e:36:3c:07:df:43:58:22:b2:6b:fc:76:ee: 72:15:ae:e6:35:24:20:10:93:7c:4a:ab:4e:4f:b2: a2:b3:3e:eb:3d:3f:f7:5b:d5:e6:2b:52:f9:84:ee: 33:af:16:c7:d6:5f:d1:76:c8:58:8e:ee:c7:ec:fb: f4:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:18:80:EB:5B:D3:93:3F:41:ED:17:23:9F:08:61:8E:E5:D3:06:6D X509v3 Authority Key Identifier: keyid:04:DE:DA:CB:DB:AF:A5:C1:C1:4F:92:81:7B:96:F7:F5:03:10:0A:28 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912DD36/7F4023F2253211EFBC93211AC4F9AE02/BN7ay9uvpcHBT5KBe5b39QMQCig.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BN7ay9uvpcHBT5KBe5b39QMQCig.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912DD36/7F4023F2253211EFBC93211AC4F9AE02/BN7ay9uvpcHBT5KBe5b39QMQCig.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 94:8f:4b:dd:c6:c6:9c:0a:3e:48:23:a9:c6:0a:02:ba:f1:40: e3:3d:3c:79:92:74:ec:7f:d3:a6:26:77:94:c7:a1:30:61:1e: 38:a1:ce:9e:73:bd:42:72:b3:0b:48:d4:6d:9d:af:78:cd:a7: 07:1e:73:99:ad:38:03:29:95:61:f3:f5:78:ba:cb:33:fe:c1: 91:13:c3:df:d4:b7:76:5b:71:ff:45:f6:da:2d:66:aa:1e:6a: 99:a6:e6:07:fd:d6:e5:44:de:01:2a:92:c6:c1:ab:98:91:4e: f1:aa:86:16:f6:27:d5:c0:57:8b:ae:4f:61:21:4d:bf:11:d3: 98:a7:63:f8:4a:34:5b:bc:02:51:52:f0:8e:42:80:3f:97:37: 1f:de:ba:f8:a8:e4:09:bd:33:d7:5b:f7:6e:4c:98:91:77:f1: fb:bd:07:81:30:41:47:f6:fa:ef:a8:5c:8e:5f:62:3a:ad:61: 85:0d:f6:42:cb:f3:44:62:71:3a:3e:89:60:4d:d4:2e:ec:c5: b3:e9:94:1d:3b:dd:b8:4f:0e:75:ca:35:e2:95:13:cd:0c:23: 39:d5:29:5d:9f:3b:fd:6b:8e:6c:99:bf:b1:5a:ec:12:2b:9e: d4:3f:66:ac:47:f2:b5:a1:3c:45:e9:5b:f4:59:03:f6:cc:96: 34:5e:31:94 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBOjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEy REQzNjExMC8GA1UEBRMoMDRERURBQ0JEQkFGQTVDMUMxNEY5MjgxN0I5NkY3RjUw MzEwMEEyODAeFw0yNDA5MTUxMDAwMzdaFw0yNDA5MjIxMDAwMzdaMBgxFjAUBgNV BAMTDTY2ZTZiMDQ1LWI2MzUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDKRag/rsH+19vXYAOJsWmguUuXRZNpJZLrNwRxaB0+UvcVX7z4nu/XdH+NgtDy WuOZPJdfs97nJHzJNmi0ojbnId3PrxxUcnM6mXvr5cpWyQbKIhiib4dZn84wYX9y jx77NY1TRiTWhaupweIQvODl0kwXeJ4xvxC164jhZeyLh7J+85Bpl6WmBI+R0GKy WlgeGvUVv/J3/QKB90ZhCXc6tyYG8Kt/QhKEJczf0NsnIVf9VHoA/HCoO9KL0+ZB 751YbmkaTjY8B99DWCKya/x27nIVruY1JCAQk3xKq05PsqKzPus9P/db1eYrUvmE 7jOvFsfWX9F2yFiO7sfs+/TRAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUkBiA61vT kz9B7RcjnwhhjuXTBm0wHwYDVR0jBBgwFoAUBN7ay9uvpcHBT5KBe5b39QMQCigw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTJERDM2LzdGNDAyM0YyMjUz MjExRUZCQzkzMjExQUM0RjlBRTAyL0JON2F5OXV2cGNIQlQ1S0JlNWIzOVFNUUNp Zy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvQk43YXk5dXZwY0hCVDVLQmU1YjM5UU1RQ2lnLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTJE RDM2LzdGNDAyM0YyMjUzMjExRUZCQzkzMjExQUM0RjlBRTAyL0JON2F5OXV2cGNI QlQ1S0JlNWIzOVFNUUNpZy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAJSPS93GxpwKPkgjqcYKArrxQOM9PHmSdOx/06Ymd5THoTBhHjihzp5z vUJyswtI1G2dr3jNpwcec5mtOAMplWHz9Xi6yzP+wZETw9/Ut3Zbcf9F9totZqoe apmm5gf91uVE3gEqksbBq5iRTvGqhhb2J9XAV4uuT2EhTb8R05inY/hKNFu8AlFS 8I5CgD+XNx/euvio5Am9M9db925MmJF38fu9B4EwQUf2+u+oXI5fYjqtYYUN9kLL 80RicTo+iWBN1C7sxbPplB073bhPDnXKNeKVE80MIznVKV2fO/1rjmyZv7Fa7BIr ntQ/ZqxH8rWhPEXpW/RZA/bMljReMZQ= -----END CERTIFICATE-----Generated at Sun Sep 15 10:45:08 2024 by rpki-client on console-fra.rpki-client.org