$ rpki-client -vvf rpki.apnic.net/member_repository/A91777B9/DB517B0875B611EFB8E21514C4F9AE02/CgiKGbvbYd7RkWyGCrK4vuGG7c0.mft File: CgiKGbvbYd7RkWyGCrK4vuGG7c0.mft (raw, json) Hash identifier: +pprqTQUsPrWdg1+NN08KhEoEhXJESJN2Feemvyu298= Subject key identifier: 7B:BC:1E:72:D3:10:0A:66:D7:BE:17:F8:8F:D6:2F:C5:C5:59:9F:89 Authority key identifier: 0A:08:8A:19:BB:DB:61:DE:D1:91:6C:86:0A:B2:B8:BE:E1:86:ED:CD Certificate issuer: /CN=A91777B9/serialNumber=0A088A19BBDB61DED1916C860AB2B8BEE186EDCD Certificate serial: 14 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CgiKGbvbYd7RkWyGCrK4vuGG7c0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91777B9/DB517B0875B611EFB8E21514C4F9AE02/CgiKGbvbYd7RkWyGCrK4vuGG7c0.mft Manifest number: 14 Signing time: Wed 23 Oct 2024 06:41:07 +0000 Manifest this update: Wed 23 Oct 2024 06:41:06 +0000 Manifest next update: Wed 30 Oct 2024 06:41:06 +0000 Files and hashes: 1: CgiKGbvbYd7RkWyGCrK4vuGG7c0.crl (hash: madND/httol4T9kTtoUjSMCA90MX2cRjgjv7+4aqBtg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91777B9/DB517B0875B611EFB8E21514C4F9AE02/CgiKGbvbYd7RkWyGCrK4vuGG7c0.crl rsync://rpki.apnic.net/member_repository/A91777B9/DB517B0875B611EFB8E21514C4F9AE02/CgiKGbvbYd7RkWyGCrK4vuGG7c0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CgiKGbvbYd7RkWyGCrK4vuGG7c0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 30 Oct 2024 05:54:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 20 (0x14) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91777B9/serialNumber=0A088A19BBDB61DED1916C860AB2B8BEE186EDCD Validity Not Before: Oct 23 06:41:06 2024 GMT Not After : Oct 30 06:41:06 2024 GMT Subject: CN=67189a83-78bd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:d1:64:a2:02:bf:cd:5b:da:c0:2d:fa:02:a2: 29:99:2d:52:bd:b0:f9:05:b9:42:00:81:f1:5c:01: a1:dd:67:43:97:5f:d3:41:20:98:6a:20:6b:4e:bc: c9:99:00:6d:f9:38:4e:d0:aa:59:db:3e:5a:60:a7: 9d:a9:e1:ea:0f:66:ef:76:69:da:bc:75:31:ef:06: 6b:06:4e:5d:e7:2a:c1:bb:ce:1b:46:9d:83:44:61: 58:8a:75:49:28:4f:58:f1:4a:dd:73:31:e2:8d:2d: 95:64:48:12:8e:f5:22:f3:8c:d2:15:eb:fa:11:15: 37:33:9a:08:61:56:0c:95:85:6d:ff:e4:c2:bb:83: b1:d1:c1:d3:82:f7:c0:59:f6:a2:c7:e4:1b:af:3e: da:aa:cd:09:4d:35:86:81:57:6f:71:92:04:14:b8: f5:42:67:89:7c:f4:fa:b5:45:76:9d:85:76:54:71: b9:38:51:13:bb:47:41:e7:4f:c1:e5:85:09:99:0c: 23:c2:b3:44:dd:38:6c:60:66:24:39:6c:20:56:43: a6:f9:e6:6d:00:d7:0a:c2:af:7f:a9:a1:22:27:c7: e6:a7:88:6d:a0:71:80:9d:ba:b0:ee:46:f5:90:e7: e7:4a:6f:eb:38:3e:32:d4:9a:82:36:b8:46:df:77: a3:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:BC:1E:72:D3:10:0A:66:D7:BE:17:F8:8F:D6:2F:C5:C5:59:9F:89 X509v3 Authority Key Identifier: keyid:0A:08:8A:19:BB:DB:61:DE:D1:91:6C:86:0A:B2:B8:BE:E1:86:ED:CD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91777B9/DB517B0875B611EFB8E21514C4F9AE02/CgiKGbvbYd7RkWyGCrK4vuGG7c0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CgiKGbvbYd7RkWyGCrK4vuGG7c0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91777B9/DB517B0875B611EFB8E21514C4F9AE02/CgiKGbvbYd7RkWyGCrK4vuGG7c0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bb:0d:9c:d2:bf:5a:7d:4a:76:41:1f:19:fa:39:a4:38:e5:a0: 03:73:c2:76:39:3a:67:98:36:f0:a1:2f:93:4b:8d:c7:74:d1: 2c:01:5a:3e:3c:bb:cc:b6:c7:6d:95:80:d0:c0:3b:18:96:c6: 28:f0:16:3b:95:06:09:b0:07:3f:c9:44:93:fb:e3:22:f4:88: 2b:59:cc:70:97:0d:b6:4a:e6:0a:d2:72:cd:7f:9d:9c:93:0e: 6b:57:a6:ff:2c:46:cd:dc:90:71:fd:3e:14:6a:ba:ca:7a:9e: ba:d7:5f:d1:29:cb:d7:7a:ca:37:97:ad:89:6b:5f:55:c9:2d: e4:6f:51:7b:2f:7d:bd:97:26:3c:84:ef:af:27:9f:2f:06:73: f4:4b:ce:41:f8:d0:fc:60:83:57:32:e4:f5:e8:fb:3c:24:9c: e5:fd:76:58:05:f2:d0:c1:6d:bd:6b:33:e9:6b:28:19:70:a3: 35:32:55:41:8c:47:06:93:7c:3b:ae:02:ca:89:a1:15:3b:54: 3a:5c:4c:df:49:47:8f:09:d0:b5:22:2e:6d:46:c2:5f:a4:54: dc:5a:8c:42:db:da:a1:9c:88:99:04:63:a2:30:80:3a:84:01: 65:cd:a4:30:5e:91:67:64:b0:11:51:7c:ca:f9:9b:9a:aa:b3: 55:c9:13:97 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBFDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 NzdCOTExMC8GA1UEBRMoMEEwODhBMTlCQkRCNjFERUQxOTE2Qzg2MEFCMkI4QkVF MTg2RURDRDAeFw0yNDEwMjMwNjQxMDZaFw0yNDEwMzAwNjQxMDZaMBgxFjAUBgNV BAMTDTY3MTg5YTgzLTc4YmQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCj0WSiAr/NW9rALfoCoimZLVK9sPkFuUIAgfFcAaHdZ0OXX9NBIJhqIGtOvMmZ AG35OE7QqlnbPlpgp52p4eoPZu92adq8dTHvBmsGTl3nKsG7zhtGnYNEYViKdUko T1jxSt1zMeKNLZVkSBKO9SLzjNIV6/oRFTczmghhVgyVhW3/5MK7g7HRwdOC98BZ 9qLH5BuvPtqqzQlNNYaBV29xkgQUuPVCZ4l89Pq1RXadhXZUcbk4URO7R0HnT8Hl hQmZDCPCs0TdOGxgZiQ5bCBWQ6b55m0A1wrCr3+poSInx+aniG2gcYCdurDuRvWQ 5+dKb+s4PjLUmoI2uEbfd6NrAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUe7wectMQ CmbXvhf4j9YvxcVZn4kwHwYDVR0jBBgwFoAUCgiKGbvbYd7RkWyGCrK4vuGG7c0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTc3N0I5L0RCNTE3QjA4NzVC NjExRUZCOEUyMTUxNEM0RjlBRTAyL0NnaUtHYnZiWWQ3UmtXeUdDcks0dnVHRzdj MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvQ2dpS0didmJZZDdSa1d5R0NySzR2dUdHN2MwLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTc3 N0I5L0RCNTE3QjA4NzVCNjExRUZCOEUyMTUxNEM0RjlBRTAyL0NnaUtHYnZiWWQ3 UmtXeUdDcks0dnVHRzdjMC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBALsNnNK/Wn1KdkEfGfo5pDjloANzwnY5OmeYNvChL5NLjcd00SwBWj48 u8y2x22VgNDAOxiWxijwFjuVBgmwBz/JRJP74yL0iCtZzHCXDbZK5grScs1/nZyT DmtXpv8sRs3ckHH9PhRqusp6nrrXX9Epy9d6yjeXrYlrX1XJLeRvUXsvfb2XJjyE 768nny8Gc/RLzkH40Pxgg1cy5PXo+zwknOX9dlgF8tDBbb1rM+lrKBlwozUyVUGM RwaTfDuuAsqJoRU7VDpcTN9JR48J0LUiLm1Gwl+kVNxajELb2qGciJkEY6IwgDqE AWXNpDBekWdksBFRfMr5m5qqs1XJE5c= -----END CERTIFICATE-----Generated at Wed Oct 23 07:45:55 2024 by rpki-client on console-ams.rpki-client.org