$ rpki-client -vvf rpki.apnic.net/member_repository/A917D9B8/C8B1D44E07A111EF84F3D26AC4F9AE02/VngmFidUtGDLWGbawxSIDHA1Rh0.mft File: VngmFidUtGDLWGbawxSIDHA1Rh0.mft (raw, json) Hash identifier: L0uVm4t6QhqpiWY2UocOkCYmfS4XhlCG+oj5lAEIx/Y= Subject key identifier: CD:7F:6C:7F:22:60:A7:93:ED:7C:C2:C0:33:85:CB:9F:64:BB:BF:8F Authority key identifier: 56:78:26:16:27:54:B4:60:CB:58:66:DA:C3:14:88:0C:70:35:46:1D Certificate issuer: /CN=A917D9B8/serialNumber=567826162754B460CB5866DAC314880C7035461D Certificate serial: 48 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VngmFidUtGDLWGbawxSIDHA1Rh0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917D9B8/C8B1D44E07A111EF84F3D26AC4F9AE02/VngmFidUtGDLWGbawxSIDHA1Rh0.mft Manifest number: 47 Signing time: Sun 15 Sep 2024 09:44:13 +0000 Manifest this update: Sun 15 Sep 2024 09:44:13 +0000 Manifest next update: Sun 22 Sep 2024 09:44:13 +0000 Files and hashes: 1: VngmFidUtGDLWGbawxSIDHA1Rh0.crl (hash: je115qNELj1LVFVjHAqC6NHb7VVgp29jCoUk7bFNMZQ=) 2: DFDEC4D007A411EFAB20A473C4F9AE02.roa (hash: PGS5VhTr1DCXehAFd1ANgs/kmJnDFu9yzCbFFpOqU30=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917D9B8/C8B1D44E07A111EF84F3D26AC4F9AE02/VngmFidUtGDLWGbawxSIDHA1Rh0.crl rsync://rpki.apnic.net/member_repository/A917D9B8/C8B1D44E07A111EF84F3D26AC4F9AE02/VngmFidUtGDLWGbawxSIDHA1Rh0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VngmFidUtGDLWGbawxSIDHA1Rh0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 22 Sep 2024 02:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 72 (0x48) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917D9B8/serialNumber=567826162754B460CB5866DAC314880C7035461D Validity Not Before: Sep 15 09:44:13 2024 GMT Not After : Sep 22 09:44:13 2024 GMT Subject: CN=66e6ac6d-b5d2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:8d:25:93:5a:41:a3:50:36:28:c4:09:64:2a: 83:b0:25:ad:3a:19:27:91:8b:2f:da:47:48:71:f1: 7b:a7:ff:44:27:9f:75:88:23:2e:bd:24:04:94:61: ab:46:2d:40:d9:35:fd:04:09:5d:ad:1d:ff:c9:b0: 54:ae:d2:db:72:be:df:b0:c8:ca:9a:4a:2c:95:b4: 8f:e6:7c:b5:0d:90:fd:9c:18:68:97:52:b5:ed:16: 61:af:9c:48:03:00:2b:44:0d:46:58:50:99:bd:52: 3c:10:ea:2f:20:9a:40:9b:c7:16:37:f4:1a:17:5d: 27:48:97:d1:2f:b2:6f:14:24:ad:05:f8:ec:29:b8: ec:1a:82:17:4a:0f:75:2e:32:27:d5:ff:a7:41:4e: 3f:59:1c:9c:b8:24:43:fb:09:72:97:5a:5a:d6:46: 5f:c8:04:39:75:eb:82:1a:5e:cc:f6:18:b5:fc:f6: 7d:c0:73:db:df:7e:12:74:a1:e1:e2:f3:cb:58:7b: 83:d0:ec:bc:1e:09:ff:1d:46:04:40:db:dd:44:fc: dc:1a:8e:59:66:5f:f4:c8:64:80:98:04:ec:a2:e7: 81:76:af:d8:1c:8d:40:ea:31:aa:37:b5:f1:c2:83: 42:f2:70:d5:61:32:43:32:a6:80:3c:df:79:79:45: b9:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:7F:6C:7F:22:60:A7:93:ED:7C:C2:C0:33:85:CB:9F:64:BB:BF:8F X509v3 Authority Key Identifier: keyid:56:78:26:16:27:54:B4:60:CB:58:66:DA:C3:14:88:0C:70:35:46:1D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917D9B8/C8B1D44E07A111EF84F3D26AC4F9AE02/VngmFidUtGDLWGbawxSIDHA1Rh0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VngmFidUtGDLWGbawxSIDHA1Rh0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917D9B8/C8B1D44E07A111EF84F3D26AC4F9AE02/VngmFidUtGDLWGbawxSIDHA1Rh0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c3:53:0a:6a:ce:86:30:6e:09:9e:9d:e2:e6:1a:a3:8d:9d:a0: 67:72:49:7f:7e:e0:b7:b5:87:c4:ba:b1:70:1f:af:c8:47:47: 31:89:61:d1:5e:6d:f3:e2:b5:9c:51:b0:28:db:2d:c5:a4:b6: 0a:59:4c:ad:2b:d6:41:29:2d:9c:ff:21:a3:11:de:8d:36:7b: 28:2e:9a:c8:0f:9a:42:ad:b1:92:ff:42:13:10:34:b2:3e:48: 3c:7a:e4:8e:6e:b8:1b:84:66:ef:28:a0:c1:f2:e8:7a:e4:ee: b5:0b:22:4e:a3:44:11:b1:f7:55:30:34:3c:78:13:bc:74:d4: 6a:30:62:31:b4:c8:ae:57:c2:1f:6b:c0:89:5c:ea:2b:a0:57: 21:56:88:de:e6:57:9d:86:2d:99:6b:b3:7d:06:c9:aa:c1:d8: 86:28:36:fe:58:a1:1c:94:ed:40:91:b6:9b:61:b9:a8:a4:03: 5e:7d:59:bc:1b:2d:5d:70:51:6b:64:e2:fa:f4:49:9c:56:12: 3e:32:52:04:47:1c:42:82:1b:9b:f8:3b:70:67:af:3b:d5:89: 15:50:f2:16:6d:09:a3:b0:34:24:5a:08:c7:6b:ff:4d:72:d8: 95:bb:3f:90:4c:98:49:63:5e:8f:99:b3:0f:c9:0a:4a:c7:f2: 5c:6d:82:e4 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBSDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 RDlCODExMC8GA1UEBRMoNTY3ODI2MTYyNzU0QjQ2MENCNTg2NkRBQzMxNDg4MEM3 MDM1NDYxRDAeFw0yNDA5MTUwOTQ0MTNaFw0yNDA5MjIwOTQ0MTNaMBgxFjAUBgNV BAMTDTY2ZTZhYzZkLWI1ZDIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDDjSWTWkGjUDYoxAlkKoOwJa06GSeRiy/aR0hx8Xun/0Qnn3WIIy69JASUYatG LUDZNf0ECV2tHf/JsFSu0ttyvt+wyMqaSiyVtI/mfLUNkP2cGGiXUrXtFmGvnEgD ACtEDUZYUJm9UjwQ6i8gmkCbxxY39BoXXSdIl9Evsm8UJK0F+OwpuOwaghdKD3Uu MifV/6dBTj9ZHJy4JEP7CXKXWlrWRl/IBDl164IaXsz2GLX89n3Ac9vffhJ0oeHi 88tYe4PQ7LweCf8dRgRA291E/NwajllmX/TIZICYBOyi54F2r9gcjUDqMao3tfHC g0LycNVhMkMypoA833l5RbmFAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUzX9sfyJg p5PtfMLAM4XLn2S7v48wHwYDVR0jBBgwFoAUVngmFidUtGDLWGbawxSIDHA1Rh0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTdEOUI4L0M4QjFENDRFMDdB MTExRUY4NEYzRDI2QUM0RjlBRTAyL1ZuZ21GaWRVdEdETFdHYmF3eFNJREhBMVJo MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvVm5nbUZpZFV0R0RMV0diYXd4U0lESEExUmgwLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTdE OUI4L0M4QjFENDRFMDdBMTExRUY4NEYzRDI2QUM0RjlBRTAyL1ZuZ21GaWRVdEdE TFdHYmF3eFNJREhBMVJoMC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAMNTCmrOhjBuCZ6d4uYao42doGdySX9+4Le1h8S6sXAfr8hHRzGJYdFe bfPitZxRsCjbLcWktgpZTK0r1kEpLZz/IaMR3o02eygumsgPmkKtsZL/QhMQNLI+ SDx65I5uuBuEZu8ooMHy6Hrk7rULIk6jRBGx91UwNDx4E7x01GowYjG0yK5Xwh9r wIlc6iugVyFWiN7mV52GLZlrs30GyarB2IYoNv5YoRyU7UCRtpthuaikA159Wbwb LV1wUWtk4vr0SZxWEj4yUgRHHEKCG5v4O3BnrzvViRVQ8hZtCaOwNCRaCMdr/01y 2JW7P5BMmEljXo+Zsw/JCkrH8lxtguQ= -----END CERTIFICATE-----Generated at Sun Sep 15 10:45:10 2024 by rpki-client on console-fra.rpki-client.org