$ rpki-client -vvf rpki.apnic.net/member_repository/A91626D2/AF20834E13F511EFA09D321BC4F9AE02/bDt_HBM9qcUdRE2oXmAqloRR_lQ.mft File: bDt_HBM9qcUdRE2oXmAqloRR_lQ.mft (raw, json) Hash identifier: t2Hi16OTxsroQyLMQEhsTT+szI2ef2PKKGBISua4q+g= Subject key identifier: A7:D4:FB:9D:C7:C4:9A:AF:86:3B:FB:C3:0E:B2:D6:75:E3:D7:FC:25 Authority key identifier: 6C:3B:7F:1C:13:3D:A9:C5:1D:44:4D:A8:5E:60:2A:96:84:51:FE:54 Certificate issuer: /CN=A91626D2/serialNumber=6C3B7F1C133DA9C51D444DA85E602A968451FE54 Certificate serial: 40 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bDt_HBM9qcUdRE2oXmAqloRR_lQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91626D2/AF20834E13F511EFA09D321BC4F9AE02/bDt_HBM9qcUdRE2oXmAqloRR_lQ.mft Manifest number: 3F Signing time: Sun 15 Sep 2024 09:49:53 +0000 Manifest this update: Sun 15 Sep 2024 09:49:52 +0000 Manifest next update: Sun 22 Sep 2024 09:49:52 +0000 Files and hashes: 1: bDt_HBM9qcUdRE2oXmAqloRR_lQ.crl (hash: AbSYlp2UXx/0kGQ9vikbSjjmNWSgl7D7m1Y41HdJvIo=) 2: 8093CCBA13F611EF8ED7D71EC4F9AE02.roa (hash: XL79ufKKtjs3RC/HFtRum1LG/m0heNTfnq14ISz+Hk4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91626D2/AF20834E13F511EFA09D321BC4F9AE02/bDt_HBM9qcUdRE2oXmAqloRR_lQ.crl rsync://rpki.apnic.net/member_repository/A91626D2/AF20834E13F511EFA09D321BC4F9AE02/bDt_HBM9qcUdRE2oXmAqloRR_lQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bDt_HBM9qcUdRE2oXmAqloRR_lQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 22 Sep 2024 02:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 64 (0x40) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91626D2/serialNumber=6C3B7F1C133DA9C51D444DA85E602A968451FE54 Validity Not Before: Sep 15 09:49:52 2024 GMT Not After : Sep 22 09:49:52 2024 GMT Subject: CN=66e6adc0-206b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:d0:4c:a4:09:17:98:fb:bb:8a:93:76:78:12: 96:e8:ff:01:d5:0e:a9:30:0a:23:dd:cd:14:0f:a8: 31:2b:09:f2:77:9b:83:bc:d2:a6:08:bd:29:b4:25: 37:21:f6:18:50:af:b6:d2:95:82:a8:67:5b:52:8d: 10:9c:28:a1:3e:4a:93:81:a0:1c:54:72:a4:46:94: bb:b1:a5:68:e0:c2:e8:78:6e:94:4e:16:eb:07:91: 2b:34:c4:53:3d:a7:a3:6c:67:5a:64:19:fe:79:03: 45:2a:0e:fe:f1:9b:6d:ad:ce:95:8a:6b:60:f5:ae: ae:06:bb:83:d3:e4:18:62:69:aa:02:21:7a:88:19: e5:92:e8:d2:ea:e9:4f:92:dc:7b:b9:f3:d7:4f:d1: 6c:28:b4:e5:63:60:40:55:8c:08:0d:a7:ca:9a:2b: 05:5f:64:5e:00:b9:a2:17:6d:bf:7e:1b:e8:02:14: b0:4e:bf:9a:10:43:d1:26:d6:ff:c0:1d:8f:a0:fb: 35:dd:80:0e:6b:9e:f7:cc:d7:95:57:09:3a:cf:40: 66:01:0f:be:52:7a:b7:05:7a:a4:f5:09:7e:9f:ce: b5:5e:32:06:b3:7d:f0:c7:b6:f6:d2:13:86:56:d0: 0a:42:4d:bd:0d:a0:35:c6:8a:d7:f0:d3:f4:87:46: 64:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:D4:FB:9D:C7:C4:9A:AF:86:3B:FB:C3:0E:B2:D6:75:E3:D7:FC:25 X509v3 Authority Key Identifier: keyid:6C:3B:7F:1C:13:3D:A9:C5:1D:44:4D:A8:5E:60:2A:96:84:51:FE:54 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91626D2/AF20834E13F511EFA09D321BC4F9AE02/bDt_HBM9qcUdRE2oXmAqloRR_lQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bDt_HBM9qcUdRE2oXmAqloRR_lQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91626D2/AF20834E13F511EFA09D321BC4F9AE02/bDt_HBM9qcUdRE2oXmAqloRR_lQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 56:59:45:c7:22:ec:26:d0:b2:bf:31:e5:7f:78:5c:50:0d:a1: 6c:a1:50:8c:7d:6b:22:d3:19:e9:98:c4:97:1b:a6:dc:6c:3a: f3:d3:6a:82:97:ce:a2:37:ac:14:e7:78:18:7c:9e:73:a2:8b: 2a:f4:f5:3e:46:af:c4:54:f4:6f:d9:66:32:43:c9:26:c8:4a: b5:02:ef:69:ac:9b:84:e1:37:0d:86:f7:6b:a2:c9:b6:c7:31: 34:0d:f5:8b:38:f5:03:f6:4e:99:4c:c6:30:bc:e0:06:01:36: 0f:22:61:0a:85:a0:b6:4c:cd:a0:c7:ff:6b:96:0b:e1:d6:e4: d2:5f:88:db:d5:80:0e:35:e9:16:34:41:07:a7:89:25:03:f8: 52:e9:3a:dd:13:d1:a1:22:38:68:eb:d9:24:11:f9:5b:b7:de: fe:32:da:fd:6a:8a:db:ec:1d:09:32:c9:55:3b:d3:d3:61:33: 47:39:cc:89:96:71:1d:ea:52:aa:4b:2d:53:8c:f0:7b:7e:50: de:a4:2b:e4:d8:34:98:84:cc:6e:8a:8e:a1:bd:c6:f1:0d:a3: 4d:4b:8d:7e:36:1f:94:ad:e1:84:6c:a4:c2:92:3e:54:df:75: fd:5d:b8:89:b5:97:af:fc:eb:25:a6:2a:d5:e6:ab:35:0d:1d: de:b9:07:6f -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBQDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 MjZEMjExMC8GA1UEBRMoNkMzQjdGMUMxMzNEQTlDNTFENDQ0REE4NUU2MDJBOTY4 NDUxRkU1NDAeFw0yNDA5MTUwOTQ5NTJaFw0yNDA5MjIwOTQ5NTJaMBgxFjAUBgNV BAMTDTY2ZTZhZGMwLTIwNmIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDF0EykCReY+7uKk3Z4Epbo/wHVDqkwCiPdzRQPqDErCfJ3m4O80qYIvSm0JTch 9hhQr7bSlYKoZ1tSjRCcKKE+SpOBoBxUcqRGlLuxpWjgwuh4bpROFusHkSs0xFM9 p6NsZ1pkGf55A0UqDv7xm22tzpWKa2D1rq4Gu4PT5BhiaaoCIXqIGeWS6NLq6U+S 3Hu589dP0WwotOVjYEBVjAgNp8qaKwVfZF4AuaIXbb9+G+gCFLBOv5oQQ9Em1v/A HY+g+zXdgA5rnvfM15VXCTrPQGYBD75SercFeqT1CX6fzrVeMgazffDHtvbSE4ZW 0ApCTb0NoDXGitfw0/SHRmSxAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUp9T7ncfE mq+GO/vDDrLWdePX/CUwHwYDVR0jBBgwFoAUbDt/HBM9qcUdRE2oXmAqloRR/lQw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTYyNkQyL0FGMjA4MzRFMTNG NTExRUZBMDlEMzIxQkM0RjlBRTAyL2JEdF9IQk05cWNVZFJFMm9YbUFxbG9SUl9s US5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvYkR0X0hCTTlxY1VkUkUyb1htQXFsb1JSX2xRLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTYy NkQyL0FGMjA4MzRFMTNGNTExRUZBMDlEMzIxQkM0RjlBRTAyL2JEdF9IQk05cWNV ZFJFMm9YbUFxbG9SUl9sUS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAFZZRcci7CbQsr8x5X94XFANoWyhUIx9ayLTGemYxJcbptxsOvPTaoKX zqI3rBTneBh8nnOiiyr09T5Gr8RU9G/ZZjJDySbISrUC72msm4ThNw2G92uiybbH MTQN9Ys49QP2TplMxjC84AYBNg8iYQqFoLZMzaDH/2uWC+HW5NJfiNvVgA416RY0 QQeniSUD+FLpOt0T0aEiOGjr2SQR+Vu33v4y2v1qitvsHQkyyVU709NhM0c5zImW cR3qUqpLLVOM8Ht+UN6kK+TYNJiEzG6KjqG9xvENo01LjX42H5St4YRspMKSPlTf df1duIm1l6/86yWmKtXmqzUNHd65B28= -----END CERTIFICATE-----Generated at Sun Sep 15 10:45:09 2024 by rpki-client on console-fra.rpki-client.org