$ rpki-client -vvf rpki.apnic.net/member_repository/A917B503/7B885FE4431011EF8948A381C4F9AE02/vWPg3ctc1Bs0UB3y6Boqcs7jbvI.mft File: vWPg3ctc1Bs0UB3y6Boqcs7jbvI.mft (raw, json) Hash identifier: d/ODhBBQa2kD5rS3MUJevInjQ1sFiGuugnUiep5aAlc= Subject key identifier: 11:97:CB:9B:E4:36:A0:6A:B4:31:E1:F8:D7:B4:E8:11:C7:71:3A:87 Authority key identifier: BD:63:E0:DD:CB:5C:D4:1B:34:50:1D:F2:E8:1A:2A:72:CE:E3:6E:F2 Certificate issuer: /CN=A917B503/serialNumber=BD63E0DDCB5CD41B34501DF2E81A2A72CEE36EF2 Certificate serial: 21 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vWPg3ctc1Bs0UB3y6Boqcs7jbvI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917B503/7B885FE4431011EF8948A381C4F9AE02/vWPg3ctc1Bs0UB3y6Boqcs7jbvI.mft Manifest number: 21 Signing time: Sun 15 Sep 2024 10:18:09 +0000 Manifest this update: Sun 15 Sep 2024 10:18:07 +0000 Manifest next update: Sun 22 Sep 2024 10:18:07 +0000 Files and hashes: 1: vWPg3ctc1Bs0UB3y6Boqcs7jbvI.crl (hash: pDGVVR2KH0a7ZgC9BF2qBE5/DhIUjV1QOkH98/SowwI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917B503/7B885FE4431011EF8948A381C4F9AE02/vWPg3ctc1Bs0UB3y6Boqcs7jbvI.crl rsync://rpki.apnic.net/member_repository/A917B503/7B885FE4431011EF8948A381C4F9AE02/vWPg3ctc1Bs0UB3y6Boqcs7jbvI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vWPg3ctc1Bs0UB3y6Boqcs7jbvI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 22 Sep 2024 02:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 33 (0x21) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917B503/serialNumber=BD63E0DDCB5CD41B34501DF2E81A2A72CEE36EF2 Validity Not Before: Sep 15 10:18:07 2024 GMT Not After : Sep 22 10:18:07 2024 GMT Subject: CN=66e6b460-98f4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:0d:9c:28:5e:ec:5a:0b:1f:12:d9:4c:d3:51: 1e:03:ca:26:0a:f0:2d:22:f9:94:f4:5b:f5:19:c2: 90:47:ec:44:28:39:bc:e8:53:98:fc:53:f9:6c:cd: cd:be:f9:4c:37:94:0d:22:c8:31:06:0d:74:41:13: b2:6c:ab:0b:37:96:bd:33:7a:53:39:82:92:69:8c: fe:5e:53:4c:33:dd:27:85:61:8e:79:a4:6a:42:dd: 10:8b:a0:30:72:83:f0:28:5b:ea:28:b1:6c:df:8e: 93:4d:86:82:e4:75:4e:07:ba:7c:16:d5:bf:4a:d4: 31:1b:26:18:e4:a8:89:34:0a:4c:fd:72:6e:55:72: e1:5f:fa:f7:22:0d:90:52:25:18:86:b7:98:7f:ca: 67:11:1b:de:53:f9:c0:fe:73:18:ae:fc:a6:7b:08: dc:ee:1c:99:a0:1b:9f:30:17:05:5e:9b:ff:46:39: 7b:57:f4:67:f5:44:7f:b2:ad:54:f7:05:00:20:ca: 87:d0:3f:fa:15:38:a5:e4:79:ea:33:d6:59:b4:e4: c4:0b:65:30:ec:77:83:e1:a1:c5:d8:3b:e1:31:f9: dc:17:72:27:58:0e:59:1f:f2:42:16:ba:9b:b1:46: c6:42:21:67:c6:c2:2a:0c:3e:41:a4:05:df:fe:4c: ee:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:97:CB:9B:E4:36:A0:6A:B4:31:E1:F8:D7:B4:E8:11:C7:71:3A:87 X509v3 Authority Key Identifier: keyid:BD:63:E0:DD:CB:5C:D4:1B:34:50:1D:F2:E8:1A:2A:72:CE:E3:6E:F2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917B503/7B885FE4431011EF8948A381C4F9AE02/vWPg3ctc1Bs0UB3y6Boqcs7jbvI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vWPg3ctc1Bs0UB3y6Boqcs7jbvI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917B503/7B885FE4431011EF8948A381C4F9AE02/vWPg3ctc1Bs0UB3y6Boqcs7jbvI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a8:5b:e2:a1:68:f4:e5:99:2e:c6:ab:39:80:7d:fa:65:6b:7b: cf:8b:eb:96:9a:f7:29:ba:00:71:05:3d:9e:de:78:4c:4d:d9: d5:36:e8:c1:1e:03:58:4e:8d:49:fd:1a:1e:ce:56:f1:42:96: bf:a6:76:78:11:2f:bc:5d:61:63:db:a7:61:b7:43:71:71:95: ea:77:36:f8:17:2d:97:6e:0a:e9:c3:48:ad:42:71:56:52:c4: 24:bd:46:cc:98:73:7d:68:b4:9d:6f:d1:e4:d0:45:f0:31:36: 11:2b:7d:c2:98:4f:10:c6:ad:ff:f9:a7:ca:f2:5e:e1:43:ad: 8f:8b:ea:c7:8d:bd:7b:fa:a9:60:4d:6f:11:f2:45:bc:bd:70: b3:28:03:0c:ad:dc:34:41:7c:66:0c:74:66:85:b2:1a:8c:b0: 3d:e3:7c:65:a4:2e:23:fa:06:91:fc:47:5d:d0:eb:f7:43:44: c4:29:d3:b4:a5:12:7a:d7:04:32:c7:94:a5:2b:92:1e:e6:06: c3:3d:c0:11:06:b1:7b:b8:55:56:a2:ff:e7:73:25:13:fe:db: c6:9c:ab:0f:d4:6c:7d:bd:24:19:6b:43:71:f1:cb:0a:93:38: b2:3e:96:15:80:a4:fe:ca:8e:4d:fb:21:f5:85:a5:0f:9e:3a: df:1e:4f:41 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBITANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 QjUwMzExMC8GA1UEBRMoQkQ2M0UwRERDQjVDRDQxQjM0NTAxREYyRTgxQTJBNzJD RUUzNkVGMjAeFw0yNDA5MTUxMDE4MDdaFw0yNDA5MjIxMDE4MDdaMBgxFjAUBgNV BAMTDTY2ZTZiNDYwLTk4ZjQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC/DZwoXuxaCx8S2UzTUR4DyiYK8C0i+ZT0W/UZwpBH7EQoObzoU5j8U/lszc2+ +Uw3lA0iyDEGDXRBE7Jsqws3lr0zelM5gpJpjP5eU0wz3SeFYY55pGpC3RCLoDBy g/AoW+oosWzfjpNNhoLkdU4HunwW1b9K1DEbJhjkqIk0Ckz9cm5VcuFf+vciDZBS JRiGt5h/ymcRG95T+cD+cxiu/KZ7CNzuHJmgG58wFwVem/9GOXtX9Gf1RH+yrVT3 BQAgyofQP/oVOKXkeeoz1lm05MQLZTDsd4PhocXYO+Ex+dwXcidYDlkf8kIWupux RsZCIWfGwioMPkGkBd/+TO75AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUEZfLm+Q2 oGq0MeH417ToEcdxOocwHwYDVR0jBBgwFoAUvWPg3ctc1Bs0UB3y6Boqcs7jbvIw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTdCNTAzLzdCODg1RkU0NDMx MDExRUY4OTQ4QTM4MUM0RjlBRTAyL3ZXUGczY3RjMUJzMFVCM3k2Qm9xY3M3amJ2 SS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvdldQZzNjdGMxQnMwVUIzeTZCb3FjczdqYnZJLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTdC NTAzLzdCODg1RkU0NDMxMDExRUY4OTQ4QTM4MUM0RjlBRTAyL3ZXUGczY3RjMUJz MFVCM3k2Qm9xY3M3amJ2SS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAKhb4qFo9OWZLsarOYB9+mVre8+L65aa9ym6AHEFPZ7eeExN2dU26MEe A1hOjUn9Gh7OVvFClr+mdngRL7xdYWPbp2G3Q3Fxlep3NvgXLZduCunDSK1CcVZS xCS9RsyYc31otJ1v0eTQRfAxNhErfcKYTxDGrf/5p8ryXuFDrY+L6seNvXv6qWBN bxHyRby9cLMoAwyt3DRBfGYMdGaFshqMsD3jfGWkLiP6BpH8R13Q6/dDRMQp07Sl EnrXBDLHlKUrkh7mBsM9wBEGsXu4VVai/+dzJRP+28acqw/UbH29JBlrQ3HxywqT OLI+lhWApP7Kjk37IfWFpQ+eOt8eT0E= -----END CERTIFICATE-----Generated at Sun Sep 15 12:30:35 2024 by rpki-client on console-ams.rpki-client.org