$ rpki-client -vvf rpki.apnic.net/member_repository/A91443DC/A065D1EA306211EF978B4764C4F9AE02/0Y_8xQTTaT1_ijjYbcEuiM2WDlY.mft File: 0Y_8xQTTaT1_ijjYbcEuiM2WDlY.mft (raw, json) Hash identifier: vxfY+U2Qum3ykkDb4Y4fUGiW18nEQEsPT9Ybq2l1dZM= Subject key identifier: 67:A9:76:13:2B:4C:25:D3:0B:F6:F0:64:AC:30:E3:64:68:64:F0:D0 Authority key identifier: D1:8F:FC:C5:04:D3:69:3D:7F:8A:38:D8:6D:C1:2E:88:CD:96:0E:56 Certificate issuer: /CN=A91443DC/serialNumber=D18FFCC504D3693D7F8A38D86DC12E88CD960E56 Certificate serial: 3D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0Y_8xQTTaT1_ijjYbcEuiM2WDlY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91443DC/A065D1EA306211EF978B4764C4F9AE02/0Y_8xQTTaT1_ijjYbcEuiM2WDlY.mft Manifest number: 3D Signing time: Thu 17 Oct 2024 05:50:50 +0000 Manifest this update: Thu 17 Oct 2024 05:50:49 +0000 Manifest next update: Thu 24 Oct 2024 05:50:49 +0000 Files and hashes: 1: 0Y_8xQTTaT1_ijjYbcEuiM2WDlY.crl (hash: AqLecUK1Ls5uDQwLRNfVwaUd3hq/VoM06u1vdvsz4SE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91443DC/A065D1EA306211EF978B4764C4F9AE02/0Y_8xQTTaT1_ijjYbcEuiM2WDlY.crl rsync://rpki.apnic.net/member_repository/A91443DC/A065D1EA306211EF978B4764C4F9AE02/0Y_8xQTTaT1_ijjYbcEuiM2WDlY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0Y_8xQTTaT1_ijjYbcEuiM2WDlY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 24 Oct 2024 05:50:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 61 (0x3d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91443DC/serialNumber=D18FFCC504D3693D7F8A38D86DC12E88CD960E56 Validity Not Before: Oct 17 05:50:49 2024 GMT Not After : Oct 24 05:50:49 2024 GMT Subject: CN=6710a5b9-a28b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:8e:e4:68:cc:6e:7c:84:e8:c8:57:7d:d2:56: 95:df:9b:62:28:43:25:d2:96:4b:28:35:72:0c:a0: 00:b2:ef:f3:9c:b1:f8:c0:ac:f0:90:e1:ca:81:a1: 5b:de:97:43:07:23:59:14:e5:8c:0e:e6:b7:f4:d3: fe:ff:fc:2f:ad:19:b3:c7:2f:c9:be:48:82:f7:6d: cd:ca:5b:56:53:c9:73:84:9e:39:56:ba:4c:af:b3: e4:eb:90:b8:1c:56:2b:34:11:9a:ef:30:af:9b:e2: 35:97:45:a6:4e:91:01:5e:cf:78:8d:07:f7:fc:26: c3:9f:78:46:84:21:ec:0b:91:4f:e6:56:69:ab:f6: 7a:72:c7:92:b8:c2:80:47:2b:9f:a6:e7:56:4b:49: 54:af:44:bf:b7:e6:b5:da:da:ae:09:36:6b:e4:49: 87:b6:34:66:3d:19:03:1f:40:74:53:cf:cb:5d:60: 3d:a9:2e:de:15:2e:10:d7:05:e5:bb:97:90:dc:fc: 0f:cd:8e:d2:6b:b1:28:e1:88:9b:b3:8d:13:08:92: be:98:0c:2a:c8:2a:cc:35:7e:ff:35:77:ca:ac:c0: c7:f9:f2:db:bc:fe:de:fd:a6:5a:e3:33:f2:cf:33: 4a:70:31:c1:5f:24:25:04:b2:2e:f1:14:9d:79:f4: 93:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:A9:76:13:2B:4C:25:D3:0B:F6:F0:64:AC:30:E3:64:68:64:F0:D0 X509v3 Authority Key Identifier: keyid:D1:8F:FC:C5:04:D3:69:3D:7F:8A:38:D8:6D:C1:2E:88:CD:96:0E:56 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91443DC/A065D1EA306211EF978B4764C4F9AE02/0Y_8xQTTaT1_ijjYbcEuiM2WDlY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0Y_8xQTTaT1_ijjYbcEuiM2WDlY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91443DC/A065D1EA306211EF978B4764C4F9AE02/0Y_8xQTTaT1_ijjYbcEuiM2WDlY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 89:94:48:e5:42:89:e6:2e:3c:c3:55:cd:83:18:99:e7:70:5f: 34:78:0d:10:92:c0:5c:6f:c6:bc:72:36:1f:be:6f:9e:c1:83: 24:ed:e9:58:b3:66:8e:6e:d9:85:f7:60:c5:fd:c8:9e:5c:52: af:bb:01:f2:11:3d:2d:43:df:9b:14:67:91:aa:c9:f9:3b:41: 3f:8a:26:c9:35:1a:22:82:75:5f:27:2d:c3:dc:4c:5b:c2:20: 61:71:33:65:5c:96:c0:8f:b0:97:37:51:28:2f:ed:ee:75:e0: a9:42:9f:4e:1c:8e:b0:93:dd:4d:98:c9:8d:21:b8:3a:f5:71: 17:d3:7a:2a:67:ac:54:e6:e9:bc:5c:8b:65:6a:4a:ee:40:bf: b2:7b:ec:6a:f4:a5:47:76:c5:8b:35:40:e3:e9:1a:de:84:f8: 1d:84:ef:c8:3c:2d:a2:b8:de:24:bd:f0:5b:0a:b4:3c:18:6f: 95:29:b4:06:02:b9:1a:b8:6c:e1:6c:3e:6e:25:49:de:9a:d9: 27:05:22:e8:78:17:59:9a:41:8f:8d:d1:dc:85:16:ff:21:1b: cb:2f:63:87:b4:d5:b2:cc:b8:0e:02:02:73:4c:52:2e:07:77: fb:3f:a8:f1:b5:f2:b5:03:81:59:a7:99:08:27:6c:eb:0d:14: 7a:7e:d1:dc -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBPTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0 NDNEQzExMC8GA1UEBRMoRDE4RkZDQzUwNEQzNjkzRDdGOEEzOEQ4NkRDMTJFODhD RDk2MEU1NjAeFw0yNDEwMTcwNTUwNDlaFw0yNDEwMjQwNTUwNDlaMBgxFjAUBgNV BAMTDTY3MTBhNWI5LWEyOGIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC5juRozG58hOjIV33SVpXfm2IoQyXSlksoNXIMoACy7/OcsfjArPCQ4cqBoVve l0MHI1kU5YwO5rf00/7//C+tGbPHL8m+SIL3bc3KW1ZTyXOEnjlWukyvs+TrkLgc Vis0EZrvMK+b4jWXRaZOkQFez3iNB/f8JsOfeEaEIewLkU/mVmmr9npyx5K4woBH K5+m51ZLSVSvRL+35rXa2q4JNmvkSYe2NGY9GQMfQHRTz8tdYD2pLt4VLhDXBeW7 l5Dc/A/NjtJrsSjhiJuzjRMIkr6YDCrIKsw1fv81d8qswMf58tu8/t79plrjM/LP M0pwMcFfJCUEsi7xFJ159JNzAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUZ6l2EytM JdML9vBkrDDjZGhk8NAwHwYDVR0jBBgwFoAU0Y/8xQTTaT1/ijjYbcEuiM2WDlYw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQ0M0RDL0EwNjVEMUVBMzA2 MjExRUY5NzhCNDc2NEM0RjlBRTAyLzBZXzh4UVRUYVQxX2lqalliY0V1aU0yV0Rs WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvMFlfOHhRVFRhVDFfaWpqWWJjRXVpTTJXRGxZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQ0 M0RDL0EwNjVEMUVBMzA2MjExRUY5NzhCNDc2NEM0RjlBRTAyLzBZXzh4UVRUYVQx X2lqalliY0V1aU0yV0RsWS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAImUSOVCieYuPMNVzYMYmedwXzR4DRCSwFxvxrxyNh++b57BgyTt6Viz Zo5u2YX3YMX9yJ5cUq+7AfIRPS1D35sUZ5Gqyfk7QT+KJsk1GiKCdV8nLcPcTFvC IGFxM2VclsCPsJc3USgv7e514KlCn04cjrCT3U2YyY0huDr1cRfTeipnrFTm6bxc i2VqSu5Av7J77Gr0pUd2xYs1QOPpGt6E+B2E78g8LaK43iS98FsKtDwYb5UptAYC uRq4bOFsPm4lSd6a2ScFIuh4F1maQY+N0dyFFv8hG8svY4e01bLMuA4CAnNMUi4H d/s/qPG18rUDgVmnmQgnbOsNFHp+0dw= -----END CERTIFICATE-----Generated at Thu Oct 17 08:05:45 2024 by rpki-client on console-ams.rpki-client.org