$ rpki-client -vvf rpki.apnic.net/member_repository/A91504D6/AD0CAC1E31A911EFB6FB1D60C4F9AE02/66pMRPJIk3FKHVs2Ci17LYYFsWM.mft File: 66pMRPJIk3FKHVs2Ci17LYYFsWM.mft (raw, json) Hash identifier: SDr+6bFtOLTmBZZilVajAXJ1wCv1blPHO3oA2RR2ESQ= Subject key identifier: CD:C2:43:FD:CA:F2:CD:AE:1B:96:3A:98:55:FE:A6:1A:D5:89:CE:86 Authority key identifier: EB:AA:4C:44:F2:48:93:71:4A:1D:5B:36:0A:2D:7B:2D:86:05:B1:63 Certificate issuer: /CN=A91504D6/serialNumber=EBAA4C44F24893714A1D5B360A2D7B2D8605B163 Certificate serial: 30 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/66pMRPJIk3FKHVs2Ci17LYYFsWM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91504D6/AD0CAC1E31A911EFB6FB1D60C4F9AE02/66pMRPJIk3FKHVs2Ci17LYYFsWM.mft Manifest number: 2F Signing time: Thu 19 Sep 2024 05:55:41 +0000 Manifest this update: Thu 19 Sep 2024 05:55:41 +0000 Manifest next update: Thu 26 Sep 2024 05:55:41 +0000 Files and hashes: 1: 66pMRPJIk3FKHVs2Ci17LYYFsWM.crl (hash: FsZ8DhHzXP08Gz5cvu37z9VnUnYOkosys2vcXGNKofU=) 2: BE82B5AE31C911EFA31A8D3AC4F9AE02.roa (hash: wr1kXYyY7l2BgFmqLOZ94HA7pnxPU2gVy/IwUnKiFb4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91504D6/AD0CAC1E31A911EFB6FB1D60C4F9AE02/66pMRPJIk3FKHVs2Ci17LYYFsWM.crl rsync://rpki.apnic.net/member_repository/A91504D6/AD0CAC1E31A911EFB6FB1D60C4F9AE02/66pMRPJIk3FKHVs2Ci17LYYFsWM.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/66pMRPJIk3FKHVs2Ci17LYYFsWM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 26 Sep 2024 05:55:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 48 (0x30) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91504D6/serialNumber=EBAA4C44F24893714A1D5B360A2D7B2D8605B163 Validity Not Before: Sep 19 05:55:41 2024 GMT Not After : Sep 26 05:55:41 2024 GMT Subject: CN=66ebbcdd-6535 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:69:05:7a:42:a0:57:82:9e:3d:55:ca:29:f6: 63:e9:27:e7:05:2a:43:23:18:9f:9e:db:8e:79:92: cf:98:a5:7d:b6:1b:e2:fa:54:91:8e:3c:b4:bf:37: de:a3:93:55:ae:f9:1e:a3:7b:19:15:d1:0e:70:e2: 17:a0:a8:90:87:8e:ff:da:3a:27:c6:11:9f:99:1e: e1:54:4d:06:c6:c5:ed:d6:b4:6b:9a:f9:e0:34:e6: 62:47:02:e7:eb:e8:e1:d5:66:44:27:95:16:af:af: 8f:23:1d:e1:7d:57:f2:cf:9f:9f:3f:72:66:c0:4b: 98:52:3a:0d:de:af:51:8a:d2:f3:c7:24:05:05:ba: e1:35:a3:5a:d9:fb:9a:93:5e:13:f6:8c:05:99:8a: 96:68:cf:56:16:db:de:4f:ed:87:f6:82:56:a1:16: 1c:bb:16:c5:cf:d9:97:5b:58:2c:bf:57:1c:c7:08: 95:4c:a8:c9:2d:e9:0c:d3:b9:be:54:58:17:b7:ed: ad:9b:59:ff:ba:49:8c:d1:58:92:2d:7e:bd:ea:a6: a4:c2:22:0b:8a:92:71:bd:4d:f8:1e:28:06:9f:f7: 61:81:ca:7a:26:8f:f7:e2:dc:4d:af:ff:a2:5f:d1: 61:dc:de:44:ee:3b:87:78:31:9f:e1:26:c4:88:de: 88:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:C2:43:FD:CA:F2:CD:AE:1B:96:3A:98:55:FE:A6:1A:D5:89:CE:86 X509v3 Authority Key Identifier: keyid:EB:AA:4C:44:F2:48:93:71:4A:1D:5B:36:0A:2D:7B:2D:86:05:B1:63 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91504D6/AD0CAC1E31A911EFB6FB1D60C4F9AE02/66pMRPJIk3FKHVs2Ci17LYYFsWM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/66pMRPJIk3FKHVs2Ci17LYYFsWM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91504D6/AD0CAC1E31A911EFB6FB1D60C4F9AE02/66pMRPJIk3FKHVs2Ci17LYYFsWM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 10:fd:28:af:b9:14:05:1d:8a:3f:85:1e:46:c5:93:e9:c7:38: 3f:24:97:40:82:76:c3:d0:4c:58:c2:ae:4c:5f:c0:70:e1:52: ae:bf:32:ed:15:dc:2b:c9:34:c0:90:f5:ce:db:3c:d7:cd:4f: 19:5c:d4:82:2d:54:24:6d:13:38:95:ad:02:6a:b8:c7:9d:9d: 3c:bd:e3:71:e0:b7:c5:7d:82:48:2a:90:0b:03:c6:50:0e:4e: 16:6b:ec:ac:e0:36:04:06:8b:1d:c0:cc:ed:6f:8e:5e:fe:0a: bb:97:e3:31:e4:1f:57:27:98:56:0a:50:ab:17:29:44:02:8e: 68:2d:8f:d7:23:f8:83:f9:56:dc:6f:f4:cf:71:cc:6a:dc:97: 5c:4f:41:3d:ba:7e:ac:f8:f4:a0:1f:bf:41:87:14:4e:9d:83: 81:39:6e:d7:59:6a:90:be:a1:ec:e3:7e:0a:f5:cf:ec:b0:44: d3:b8:61:50:f4:b5:53:fe:e9:a4:90:96:fa:3f:9f:3d:70:20: 28:87:03:9f:05:42:4b:77:b8:e5:42:e4:b3:c4:fa:38:94:1f: 76:54:de:1e:e5:ff:e1:b3:c4:3d:86:35:b1:59:5a:47:5e:24: be:98:2c:a6:10:e0:00:97:db:66:8b:de:fa:46:6e:2e:f4:57: 89:a3:df:7c -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBMDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1 MDRENjExMC8GA1UEBRMoRUJBQTRDNDRGMjQ4OTM3MTRBMUQ1QjM2MEEyRDdCMkQ4 NjA1QjE2MzAeFw0yNDA5MTkwNTU1NDFaFw0yNDA5MjYwNTU1NDFaMBgxFjAUBgNV BAMTDTY2ZWJiY2RkLTY1MzUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCqaQV6QqBXgp49Vcop9mPpJ+cFKkMjGJ+e2455ks+YpX22G+L6VJGOPLS/N96j k1Wu+R6jexkV0Q5w4hegqJCHjv/aOifGEZ+ZHuFUTQbGxe3WtGua+eA05mJHAufr 6OHVZkQnlRavr48jHeF9V/LPn58/cmbAS5hSOg3er1GK0vPHJAUFuuE1o1rZ+5qT XhP2jAWZipZoz1YW295P7Yf2glahFhy7FsXP2ZdbWCy/VxzHCJVMqMkt6QzTub5U WBe37a2bWf+6SYzRWJItfr3qpqTCIguKknG9TfgeKAaf92GBynomj/fi3E2v/6Jf 0WHc3kTuO4d4MZ/hJsSI3oifAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUzcJD/cry za4bljqYVf6mGtWJzoYwHwYDVR0jBBgwFoAU66pMRPJIk3FKHVs2Ci17LYYFsWMw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTUwNEQ2L0FEMENBQzFFMzFB OTExRUZCNkZCMUQ2MEM0RjlBRTAyLzY2cE1SUEpJazNGS0hWczJDaTE3TFlZRnNX TS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvNjZwTVJQSklrM0ZLSFZzMkNpMTdMWVlGc1dNLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTUw NEQ2L0FEMENBQzFFMzFBOTExRUZCNkZCMUQ2MEM0RjlBRTAyLzY2cE1SUEpJazNG S0hWczJDaTE3TFlZRnNXTS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBABD9KK+5FAUdij+FHkbFk+nHOD8kl0CCdsPQTFjCrkxfwHDhUq6/Mu0V 3CvJNMCQ9c7bPNfNTxlc1IItVCRtEziVrQJquMednTy943Hgt8V9gkgqkAsDxlAO ThZr7KzgNgQGix3AzO1vjl7+CruX4zHkH1cnmFYKUKsXKUQCjmgtj9cj+IP5Vtxv 9M9xzGrcl1xPQT26fqz49KAfv0GHFE6dg4E5btdZapC+oezjfgr1z+ywRNO4YVD0 tVP+6aSQlvo/nz1wICiHA58FQkt3uOVC5LPE+jiUH3ZU3h7l/+GzxD2GNbFZWkde JL6YLKYQ4ACX22aL3vpGbi70V4mj33w= -----END CERTIFICATE-----Generated at Thu Sep 19 07:13:48 2024 by rpki-client on console-fra.rpki-client.org