$ rpki-client -vvf rpki.apnic.net/member_repository/A913F2E2/C5B6B936440411EFB9A62C0DC4F9AE02/ISYbiXSYk8OzGEG5b-P7YyMDLxg.mft File: ISYbiXSYk8OzGEG5b-P7YyMDLxg.mft (raw, json) Hash identifier: 0Vgx8Puj2rZGIl/BFWpyZVKRRjmg1RDVbaUjUawptBQ= Subject key identifier: 70:01:E5:FC:EC:84:F3:82:AB:8C:97:C2:00:3E:C3:A2:D5:F4:FE:0D Authority key identifier: 21:26:1B:89:74:98:93:C3:B3:18:41:B9:6F:E3:FB:63:23:03:2F:18 Certificate issuer: /CN=A913F2E2/serialNumber=21261B89749893C3B31841B96FE3FB6323032F18 Certificate serial: 24 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ISYbiXSYk8OzGEG5b-P7YyMDLxg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913F2E2/C5B6B936440411EFB9A62C0DC4F9AE02/ISYbiXSYk8OzGEG5b-P7YyMDLxg.mft Manifest number: 23 Signing time: Sun 15 Sep 2024 10:18:56 +0000 Manifest this update: Sun 15 Sep 2024 10:18:55 +0000 Manifest next update: Sun 22 Sep 2024 10:18:55 +0000 Files and hashes: 1: ISYbiXSYk8OzGEG5b-P7YyMDLxg.crl (hash: /uYlGJcplYeEvRsTR/votGKKKOHOk8r0l13ltQxYnE0=) 2: A8051CC4508011EF81053074C4F9AE02.roa (hash: KDME76LGlQ6SZ/HJc0igxu2MnypBi5lr/MXedI9Hydk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913F2E2/C5B6B936440411EFB9A62C0DC4F9AE02/ISYbiXSYk8OzGEG5b-P7YyMDLxg.crl rsync://rpki.apnic.net/member_repository/A913F2E2/C5B6B936440411EFB9A62C0DC4F9AE02/ISYbiXSYk8OzGEG5b-P7YyMDLxg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ISYbiXSYk8OzGEG5b-P7YyMDLxg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 22 Sep 2024 02:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 36 (0x24) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913F2E2/serialNumber=21261B89749893C3B31841B96FE3FB6323032F18 Validity Not Before: Sep 15 10:18:55 2024 GMT Not After : Sep 22 10:18:55 2024 GMT Subject: CN=66e6b48f-4ef0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:a4:b1:13:bb:f2:eb:a4:cb:0b:24:2d:a0:96: 70:38:d2:64:59:8b:21:13:d5:ba:35:f8:73:28:e1: 69:2b:d1:c2:d2:2b:46:46:9a:d7:c4:12:de:2a:46: f9:ba:50:f4:d8:9d:68:7f:4a:17:a1:f8:33:04:2f: 14:06:fb:8b:43:3d:92:5e:67:a8:e6:60:d9:ac:98: 27:05:0c:92:21:f4:43:5f:40:0a:fd:46:a9:f7:cc: 79:f2:b6:09:4a:f2:70:59:8c:ed:78:df:88:da:67: 19:e8:cd:5a:cb:b8:e6:b2:64:d6:b0:2c:89:b1:d2: d3:91:d1:30:22:67:7c:44:c2:da:03:dc:4d:5e:8d: 29:ed:80:f0:6c:f0:fd:5b:3f:ca:b9:cb:eb:84:b9: 16:21:8f:8b:ee:99:a3:ae:74:71:ec:5f:23:d2:72: 5b:ff:a5:5e:dd:fe:97:f0:d0:bb:79:d7:67:ea:4d: 4a:9f:7d:af:74:25:9f:a6:04:ba:5f:38:9b:81:47: 4c:44:bb:f7:a6:0b:1d:1b:e5:a6:a4:80:bd:5c:12: c9:69:4c:a6:8f:14:65:3c:02:6b:93:fe:99:df:dc: df:4a:7c:24:ba:d1:86:eb:bd:f3:fc:eb:0d:f9:b2: e1:34:0b:b3:a7:0d:7a:77:85:66:71:1b:04:6b:99: 58:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:01:E5:FC:EC:84:F3:82:AB:8C:97:C2:00:3E:C3:A2:D5:F4:FE:0D X509v3 Authority Key Identifier: keyid:21:26:1B:89:74:98:93:C3:B3:18:41:B9:6F:E3:FB:63:23:03:2F:18 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913F2E2/C5B6B936440411EFB9A62C0DC4F9AE02/ISYbiXSYk8OzGEG5b-P7YyMDLxg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ISYbiXSYk8OzGEG5b-P7YyMDLxg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913F2E2/C5B6B936440411EFB9A62C0DC4F9AE02/ISYbiXSYk8OzGEG5b-P7YyMDLxg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 97:9b:ac:0c:6a:a2:ab:a1:d1:5e:ce:09:76:e8:1a:17:73:ae: 94:9e:74:20:9b:77:0a:fb:3b:48:b1:e4:62:3e:30:ec:46:93: 08:7f:c2:76:7a:50:e3:da:2f:34:c8:9b:7e:fe:25:e6:93:85: 35:88:1d:9e:b0:83:72:88:f7:e0:61:2b:c1:d6:e0:67:84:e8: c0:ff:14:f9:ab:36:62:99:38:e3:73:74:9e:1f:e8:46:ba:75: c1:d7:82:ca:4f:eb:98:bc:91:87:f1:7b:c2:67:20:75:ca:c6: d5:67:ed:da:51:3c:a3:54:d4:37:b9:2f:44:38:98:5d:66:4a: 1c:e0:c1:61:61:a5:36:a9:b8:e2:af:b4:d9:64:74:70:bb:c9: 8c:f9:f1:a9:fd:31:84:15:d4:8f:51:77:26:52:0c:35:36:c4: 7f:13:08:86:46:54:9a:55:0b:43:d4:1b:0b:17:6b:cf:5b:52: f2:a5:5d:93:9c:96:8a:eb:71:38:ca:80:9c:85:96:b5:22:8f: ac:ea:ef:30:8f:23:39:50:64:58:69:90:60:f1:bc:bf:e7:06: 95:d9:38:07:3c:45:d6:cd:09:14:be:98:39:a0:32:ea:49:40: 8b:94:77:37:d7:60:4f:4f:bb:15:bf:87:27:f0:84:3e:e9:ed: 04:bb:db:7a -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBJDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEz RjJFMjExMC8GA1UEBRMoMjEyNjFCODk3NDk4OTNDM0IzMTg0MUI5NkZFM0ZCNjMy MzAzMkYxODAeFw0yNDA5MTUxMDE4NTVaFw0yNDA5MjIxMDE4NTVaMBgxFjAUBgNV BAMTDTY2ZTZiNDhmLTRlZjAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDHpLETu/LrpMsLJC2glnA40mRZiyET1bo1+HMo4Wkr0cLSK0ZGmtfEEt4qRvm6 UPTYnWh/Sheh+DMELxQG+4tDPZJeZ6jmYNmsmCcFDJIh9ENfQAr9Rqn3zHnytglK 8nBZjO1434jaZxnozVrLuOayZNawLImx0tOR0TAiZ3xEwtoD3E1ejSntgPBs8P1b P8q5y+uEuRYhj4vumaOudHHsXyPSclv/pV7d/pfw0Lt512fqTUqffa90JZ+mBLpf OJuBR0xEu/emCx0b5aakgL1cEslpTKaPFGU8AmuT/pnf3N9KfCS60YbrvfP86w35 suE0C7OnDXp3hWZxGwRrmVhNAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUcAHl/OyE 84KrjJfCAD7DotX0/g0wHwYDVR0jBBgwFoAUISYbiXSYk8OzGEG5b+P7YyMDLxgw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTNGMkUyL0M1QjZCOTM2NDQw NDExRUZCOUE2MkMwREM0RjlBRTAyL0lTWWJpWFNZazhPekdFRzViLVA3WXlNREx4 Zy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvSVNZYmlYU1lrOE96R0VHNWItUDdZeU1ETHhnLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTNG MkUyL0M1QjZCOTM2NDQwNDExRUZCOUE2MkMwREM0RjlBRTAyL0lTWWJpWFNZazhP ekdFRzViLVA3WXlNREx4Zy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAJebrAxqoquh0V7OCXboGhdzrpSedCCbdwr7O0ix5GI+MOxGkwh/wnZ6 UOPaLzTIm37+JeaThTWIHZ6wg3KI9+BhK8HW4GeE6MD/FPmrNmKZOONzdJ4f6Ea6 dcHXgspP65i8kYfxe8JnIHXKxtVn7dpRPKNU1De5L0Q4mF1mShzgwWFhpTapuOKv tNlkdHC7yYz58an9MYQV1I9RdyZSDDU2xH8TCIZGVJpVC0PUGwsXa89bUvKlXZOc lorrcTjKgJyFlrUij6zq7zCPIzlQZFhpkGDxvL/nBpXZOAc8RdbNCRS+mDmgMupJ QIuUdzfXYE9PuxW/hyfwhD7p7QS723o= -----END CERTIFICATE-----Generated at Sun Sep 15 13:42:41 2024 by rpki-client on console-fra.rpki-client.org