$ rpki-client -vvf rpki.apnic.net/member_repository/A9134B4A/E26499A22F8911EFA3D04A6BC4F9AE02/PDWH3Dry6Tfs22WoOJJ1mkHIhQs.mft File: PDWH3Dry6Tfs22WoOJJ1mkHIhQs.mft (raw, json) Hash identifier: dtBAoA//E0sOo4yZDtXmvsN43EPpPl7K/s2bNyWhzm8= Subject key identifier: F7:40:C3:79:0A:82:E0:35:6F:69:2F:AB:DD:45:77:60:CC:9F:34:06 Authority key identifier: 3C:35:87:DC:3A:F2:E9:37:EC:DB:65:A8:38:92:75:9A:41:C8:85:0B Certificate issuer: /CN=A9134B4A/serialNumber=3C3587DC3AF2E937ECDB65A83892759A41C8850B Certificate serial: 32 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PDWH3Dry6Tfs22WoOJJ1mkHIhQs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9134B4A/E26499A22F8911EFA3D04A6BC4F9AE02/PDWH3Dry6Tfs22WoOJJ1mkHIhQs.mft Manifest number: 31 Signing time: Thu 19 Sep 2024 05:55:09 +0000 Manifest this update: Thu 19 Sep 2024 05:55:08 +0000 Manifest next update: Thu 26 Sep 2024 05:55:08 +0000 Files and hashes: 1: PDWH3Dry6Tfs22WoOJJ1mkHIhQs.crl (hash: FcJrz0ZIptdku6uCv2hSIFxXddfWdYmb0tQp7u4D+/c=) 2: 7D7BEE5430B111EF94A59A7AC4F9AE02.roa (hash: 81k+yaGAd+6BZ2WpNR6UcAlDDXedgJXlylTiPkMD+do=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9134B4A/E26499A22F8911EFA3D04A6BC4F9AE02/PDWH3Dry6Tfs22WoOJJ1mkHIhQs.crl rsync://rpki.apnic.net/member_repository/A9134B4A/E26499A22F8911EFA3D04A6BC4F9AE02/PDWH3Dry6Tfs22WoOJJ1mkHIhQs.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PDWH3Dry6Tfs22WoOJJ1mkHIhQs.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 26 Sep 2024 05:55:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 50 (0x32) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9134B4A/serialNumber=3C3587DC3AF2E937ECDB65A83892759A41C8850B Validity Not Before: Sep 19 05:55:08 2024 GMT Not After : Sep 26 05:55:08 2024 GMT Subject: CN=66ebbcbc-602d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:92:a0:0b:e9:9b:16:ee:7e:46:f0:c7:93:ea: 06:39:37:8a:c9:29:2b:31:1b:be:7f:2e:18:21:a5: cb:4c:44:44:11:24:7e:94:02:f6:42:bc:a8:59:8f: 83:4f:8c:c3:79:27:6e:f7:89:8c:c7:3a:da:d5:a7: 09:f6:86:5e:7a:ae:ff:1f:f5:dc:43:25:a1:33:d5: e3:ee:e8:a7:66:0b:ae:a5:4b:b2:31:aa:4a:61:e0: a7:39:65:f1:94:3d:c5:a5:ba:63:c5:41:65:ce:13: 03:bc:8a:9d:6d:ed:30:22:65:0c:84:2c:19:af:b0: 26:c3:77:ec:07:6d:6f:fc:7f:f6:70:80:d9:3f:05: 06:88:12:29:fc:97:34:89:18:e3:40:72:b0:69:db: 7c:0c:33:bf:f7:5d:f6:e6:78:8b:26:b0:ed:8f:8c: 7e:84:f0:fe:45:44:52:a3:3c:51:55:45:07:98:11: 98:51:4a:90:67:c1:1a:01:82:e4:87:38:21:3b:85: 01:53:a2:0a:a6:cc:35:5a:00:9d:e3:25:5d:be:70: a8:a4:6e:9b:20:6b:c1:83:e3:ae:e6:f4:bf:98:9c: 8b:8e:a9:fe:6a:ec:d5:d9:a7:68:31:f9:ec:9f:45: 33:47:82:00:8d:f7:66:e9:ee:d2:1d:d4:95:2c:dd: 86:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:40:C3:79:0A:82:E0:35:6F:69:2F:AB:DD:45:77:60:CC:9F:34:06 X509v3 Authority Key Identifier: keyid:3C:35:87:DC:3A:F2:E9:37:EC:DB:65:A8:38:92:75:9A:41:C8:85:0B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9134B4A/E26499A22F8911EFA3D04A6BC4F9AE02/PDWH3Dry6Tfs22WoOJJ1mkHIhQs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PDWH3Dry6Tfs22WoOJJ1mkHIhQs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9134B4A/E26499A22F8911EFA3D04A6BC4F9AE02/PDWH3Dry6Tfs22WoOJJ1mkHIhQs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 38:31:a2:39:fa:a4:04:ab:d9:f1:68:a2:c7:70:26:5e:08:64: db:3e:9d:2d:67:0e:89:10:0d:15:03:9a:e1:65:d5:46:ba:c3: 07:35:45:84:47:5c:69:98:b4:71:dc:97:af:48:53:72:54:3a: ed:de:c4:91:55:53:ad:74:34:55:f0:c2:ad:5d:b9:07:39:d0: c6:94:7e:4b:cb:79:88:a4:b7:9e:ab:cf:b6:1c:62:58:b2:15: 0a:f8:97:3b:25:f3:29:6f:ca:ed:63:e2:05:ec:eb:8c:aa:0f: 04:ad:aa:82:29:32:58:a2:26:81:dc:77:f2:70:71:ed:a5:39: b0:bd:61:00:ff:10:a8:0c:5a:e5:9a:dd:50:ab:d8:39:b1:e3: d6:7b:b1:a6:99:9d:d9:3e:4f:31:8d:6a:d1:25:59:66:5b:18: 84:ca:01:ed:50:50:30:bd:5b:c5:7c:52:ab:7d:a2:ab:da:2c: 38:9d:51:98:61:f2:60:7b:f6:72:08:06:6e:a0:04:27:da:67: 66:0b:cc:43:fa:7b:69:13:c7:c3:4b:a3:f0:37:7b:da:8b:47: 85:13:8b:f3:28:01:49:ab:b9:77:d3:bb:c5:f1:63:cb:2a:d6: c9:ed:54:92:ae:8c:4f:51:9d:90:bb:47:9b:c7:98:06:d2:78: c9:de:27:05 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBMjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEz NEI0QTExMC8GA1UEBRMoM0MzNTg3REMzQUYyRTkzN0VDREI2NUE4Mzg5Mjc1OUE0 MUM4ODUwQjAeFw0yNDA5MTkwNTU1MDhaFw0yNDA5MjYwNTU1MDhaMBgxFjAUBgNV BAMTDTY2ZWJiY2JjLTYwMmQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDJkqAL6ZsW7n5G8MeT6gY5N4rJKSsxG75/LhghpctMREQRJH6UAvZCvKhZj4NP jMN5J273iYzHOtrVpwn2hl56rv8f9dxDJaEz1ePu6KdmC66lS7Ixqkph4Kc5ZfGU PcWlumPFQWXOEwO8ip1t7TAiZQyELBmvsCbDd+wHbW/8f/ZwgNk/BQaIEin8lzSJ GONAcrBp23wMM7/3XfbmeIsmsO2PjH6E8P5FRFKjPFFVRQeYEZhRSpBnwRoBguSH OCE7hQFTogqmzDVaAJ3jJV2+cKikbpsga8GD467m9L+YnIuOqf5q7NXZp2gx+eyf RTNHggCN92bp7tId1JUs3Yb9AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU90DDeQqC 4DVvaS+r3UV3YMyfNAYwHwYDVR0jBBgwFoAUPDWH3Dry6Tfs22WoOJJ1mkHIhQsw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTM0QjRBL0UyNjQ5OUEyMkY4 OTExRUZBM0QwNEE2QkM0RjlBRTAyL1BEV0gzRHJ5NlRmczIyV29PSkoxbWtISWhR cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvUERXSDNEcnk2VGZzMjJXb09KSjFta0hJaFFzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTM0 QjRBL0UyNjQ5OUEyMkY4OTExRUZBM0QwNEE2QkM0RjlBRTAyL1BEV0gzRHJ5NlRm czIyV29PSkoxbWtISWhRcy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBADgxojn6pASr2fFoosdwJl4IZNs+nS1nDokQDRUDmuFl1Ua6wwc1RYRH XGmYtHHcl69IU3JUOu3exJFVU610NFXwwq1duQc50MaUfkvLeYikt56rz7YcYliy FQr4lzsl8ylvyu1j4gXs64yqDwStqoIpMliiJoHcd/Jwce2lObC9YQD/EKgMWuWa 3VCr2Dmx49Z7saaZndk+TzGNatElWWZbGITKAe1QUDC9W8V8Uqt9oqvaLDidUZhh 8mB79nIIBm6gBCfaZ2YLzEP6e2kTx8NLo/A3e9qLR4UTi/MoAUmruXfTu8XxY8sq 1sntVJKujE9RnZC7R5vHmAbSeMneJwU= -----END CERTIFICATE-----Generated at Thu Sep 19 07:13:46 2024 by rpki-client on console-fra.rpki-client.org