$ rpki-client -vvf rpki.apnic.net/member_repository/A9137722/46BDDC00288D11EFB1904721C4F9AE02/1Siei3312SAW7HmO7v8FvHPoVYA.mft File: 1Siei3312SAW7HmO7v8FvHPoVYA.mft (raw, json) Hash identifier: kJJoFmelpsyKGNdQ5Ok/hlEH5ICrGuxsWIXRxF8HqRM= Subject key identifier: 5A:4C:1D:83:48:2A:B5:54:40:49:98:30:46:76:0E:67:85:AD:E0:C6 Authority key identifier: D5:28:9E:8B:7D:F5:D9:20:16:EC:79:8E:EE:FF:05:BC:73:E8:55:80 Certificate issuer: /CN=A9137722/serialNumber=D5289E8B7DF5D92016EC798EEEFF05BC73E85580 Certificate serial: 33 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1Siei3312SAW7HmO7v8FvHPoVYA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9137722/46BDDC00288D11EFB1904721C4F9AE02/1Siei3312SAW7HmO7v8FvHPoVYA.mft Manifest number: 32 Signing time: Sun 15 Sep 2024 10:02:09 +0000 Manifest this update: Sun 15 Sep 2024 10:02:08 +0000 Manifest next update: Sun 22 Sep 2024 10:02:08 +0000 Files and hashes: 1: 1Siei3312SAW7HmO7v8FvHPoVYA.crl (hash: NsqRG0UekJrl7ZUQyWmNtoc2/nD70AUIqOS4FuV0nvA=) 2: B4684D8A288D11EF96BC5135C4F9AE02.roa (hash: I/239A+uKGXID5A2Bawe59vn/eGDb/JGz6QWYLcYl8Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9137722/46BDDC00288D11EFB1904721C4F9AE02/1Siei3312SAW7HmO7v8FvHPoVYA.crl rsync://rpki.apnic.net/member_repository/A9137722/46BDDC00288D11EFB1904721C4F9AE02/1Siei3312SAW7HmO7v8FvHPoVYA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1Siei3312SAW7HmO7v8FvHPoVYA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 22 Sep 2024 02:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 51 (0x33) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9137722/serialNumber=D5289E8B7DF5D92016EC798EEEFF05BC73E85580 Validity Not Before: Sep 15 10:02:08 2024 GMT Not After : Sep 22 10:02:08 2024 GMT Subject: CN=66e6b0a1-43dc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:a4:5c:c2:d2:e8:2d:39:b6:4b:97:1d:67:c5: 59:4a:8d:71:43:6d:c4:6a:ad:d3:b9:19:8d:c7:b0: b5:41:2e:c0:c0:6c:13:60:ea:f0:1c:3f:c9:44:4e: 21:f9:95:69:fe:95:14:95:a4:e6:a2:25:6b:4f:58: f4:f9:29:86:24:50:49:06:b5:c5:97:79:4c:9a:fb: 98:6e:c3:d1:06:df:34:93:50:92:91:70:01:07:d8: 0d:ed:15:bb:01:64:3f:e2:6c:96:9d:a9:02:f3:dd: 82:7d:0c:6d:5e:f1:57:37:68:4e:ca:fb:e3:0d:be: 2a:95:dd:5f:7b:98:fc:87:ea:d0:62:4a:c7:b1:fb: 8e:2c:dc:09:a0:3d:a1:0b:06:0d:1a:0f:27:4c:9f: 38:2c:f3:78:a5:00:68:47:e0:4a:3e:8b:2a:47:6d: 00:f8:ad:23:ec:7a:bc:4a:8f:85:49:1e:84:8b:3e: 5c:f8:cd:42:81:94:af:ef:27:45:5d:b3:dc:2a:08: b3:59:a7:3f:51:ad:19:c7:19:30:f4:dd:82:ab:21: 6c:94:fb:e0:c2:ad:1c:2d:95:04:1e:49:96:16:0e: 7c:16:aa:70:31:bf:87:2e:7b:d8:b8:cd:4e:23:01: 5d:26:4b:31:3a:d3:18:46:b6:1b:0c:c3:5c:d3:9c: 4e:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:4C:1D:83:48:2A:B5:54:40:49:98:30:46:76:0E:67:85:AD:E0:C6 X509v3 Authority Key Identifier: keyid:D5:28:9E:8B:7D:F5:D9:20:16:EC:79:8E:EE:FF:05:BC:73:E8:55:80 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9137722/46BDDC00288D11EFB1904721C4F9AE02/1Siei3312SAW7HmO7v8FvHPoVYA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1Siei3312SAW7HmO7v8FvHPoVYA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9137722/46BDDC00288D11EFB1904721C4F9AE02/1Siei3312SAW7HmO7v8FvHPoVYA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8d:60:90:2d:4e:c2:3d:58:0f:7d:c2:36:9d:45:e4:42:df:0e: a2:f6:9e:14:de:d9:94:8e:07:1d:69:f0:2c:b4:e3:64:97:3c: b1:f2:7c:95:d9:56:0a:db:60:f4:6e:58:f9:d1:42:49:1c:5f: 58:c8:0b:fa:75:20:22:9a:26:4e:b9:5c:0d:76:4a:c5:20:be: 3e:81:1f:7d:ab:5b:5c:95:af:d0:f5:3d:95:b8:e3:ea:e6:be: 72:a3:67:67:66:a3:1f:fb:f7:d0:5a:7c:5b:d4:71:d2:50:3d: 6c:37:5c:54:26:1a:e8:5b:01:0d:d1:c2:38:39:71:d4:d5:7b: b4:ce:bd:47:55:af:07:82:9b:58:59:cf:1c:7b:cd:c1:78:51: 35:72:dc:7e:ca:7f:f2:b9:87:34:d6:13:2f:ea:f3:86:3f:1d: 67:8a:4f:6c:92:dc:4d:f3:4e:9b:98:8b:8c:68:f5:aa:f1:5c: 06:d7:8b:bd:66:b7:ed:a7:6e:84:78:d7:a1:65:16:6c:7b:b2: 68:1f:c3:20:a1:35:ad:39:fa:83:a1:c7:43:1e:fd:29:4c:52: e7:f0:27:a8:3a:50:d9:02:cf:4c:3a:af:58:97:59:fa:70:2e: 36:b5:97:fc:b6:03:f9:2a:78:fe:b6:b4:a5:3d:86:f6:86:45: 44:b4:54:5c -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBMzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEz NzcyMjExMC8GA1UEBRMoRDUyODlFOEI3REY1RDkyMDE2RUM3OThFRUVGRjA1QkM3 M0U4NTU4MDAeFw0yNDA5MTUxMDAyMDhaFw0yNDA5MjIxMDAyMDhaMBgxFjAUBgNV BAMTDTY2ZTZiMGExLTQzZGMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDJpFzC0ugtObZLlx1nxVlKjXFDbcRqrdO5GY3HsLVBLsDAbBNg6vAcP8lETiH5 lWn+lRSVpOaiJWtPWPT5KYYkUEkGtcWXeUya+5huw9EG3zSTUJKRcAEH2A3tFbsB ZD/ibJadqQLz3YJ9DG1e8Vc3aE7K++MNviqV3V97mPyH6tBiSsex+44s3AmgPaEL Bg0aDydMnzgs83ilAGhH4Eo+iypHbQD4rSPserxKj4VJHoSLPlz4zUKBlK/vJ0Vd s9wqCLNZpz9RrRnHGTD03YKrIWyU++DCrRwtlQQeSZYWDnwWqnAxv4cue9i4zU4j AV0mSzE60xhGthsMw1zTnE5VAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUWkwdg0gq tVRASZgwRnYOZ4Wt4MYwHwYDVR0jBBgwFoAU1Siei3312SAW7HmO7v8FvHPoVYAw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTM3NzIyLzQ2QkREQzAwMjg4 RDExRUZCMTkwNDcyMUM0RjlBRTAyLzFTaWVpMzMxMlNBVzdIbU83djhGdkhQb1ZZ QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvMVNpZWkzMzEyU0FXN0htTzd2OEZ2SFBvVllBLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTM3 NzIyLzQ2QkREQzAwMjg4RDExRUZCMTkwNDcyMUM0RjlBRTAyLzFTaWVpMzMxMlNB VzdIbU83djhGdkhQb1ZZQS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAI1gkC1Owj1YD33CNp1F5ELfDqL2nhTe2ZSOBx1p8Cy042SXPLHyfJXZ VgrbYPRuWPnRQkkcX1jIC/p1ICKaJk65XA12SsUgvj6BH32rW1yVr9D1PZW44+rm vnKjZ2dmox/799BafFvUcdJQPWw3XFQmGuhbAQ3Rwjg5cdTVe7TOvUdVrweCm1hZ zxx7zcF4UTVy3H7Kf/K5hzTWEy/q84Y/HWeKT2yS3E3zTpuYi4xo9arxXAbXi71m t+2nboR416FlFmx7smgfwyChNa05+oOhx0Me/SlMUufwJ6g6UNkCz0w6r1iXWfpw Lja1l/y2A/kqeP62tKU9hvaGRUS0VFw= -----END CERTIFICATE-----Generated at Sun Sep 15 10:45:08 2024 by rpki-client on console-fra.rpki-client.org