$ rpki-client -vvf rpki.apnic.net/member_repository/A91807BB/0AE482907CB311EF96C9F250C4F9AE02/RPnE2kfmNx_Ryfn45WTRgDoPMoc.mft File: RPnE2kfmNx_Ryfn45WTRgDoPMoc.mft (raw, json) Hash identifier: CSmCB2cfkg8qVFPINvHw0QiF1kIu0rJf6QyB0Fs+/b0= Subject key identifier: 9C:86:58:19:73:25:C7:52:AE:FA:82:1E:A4:E7:2D:4A:B5:B0:60:CF Authority key identifier: 44:F9:C4:DA:47:E6:37:1F:D1:C9:F9:F8:E5:64:D1:80:3A:0F:32:87 Certificate issuer: /CN=A91807BB/serialNumber=44F9C4DA47E6371FD1C9F9F8E564D1803A0F3287 Certificate serial: 0F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RPnE2kfmNx_Ryfn45WTRgDoPMoc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91807BB/0AE482907CB311EF96C9F250C4F9AE02/RPnE2kfmNx_Ryfn45WTRgDoPMoc.mft Manifest number: 0F Signing time: Wed 23 Oct 2024 06:44:32 +0000 Manifest this update: Wed 23 Oct 2024 06:44:31 +0000 Manifest next update: Wed 30 Oct 2024 06:44:31 +0000 Files and hashes: 1: RPnE2kfmNx_Ryfn45WTRgDoPMoc.crl (hash: YxNdFwhfP1UbsZxk7eSIeRHqb4Y3cTUUiv7Dp3QgRKU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91807BB/0AE482907CB311EF96C9F250C4F9AE02/RPnE2kfmNx_Ryfn45WTRgDoPMoc.crl rsync://rpki.apnic.net/member_repository/A91807BB/0AE482907CB311EF96C9F250C4F9AE02/RPnE2kfmNx_Ryfn45WTRgDoPMoc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RPnE2kfmNx_Ryfn45WTRgDoPMoc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 30 Oct 2024 05:54:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 15 (0xf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91807BB/serialNumber=44F9C4DA47E6371FD1C9F9F8E564D1803A0F3287 Validity Not Before: Oct 23 06:44:31 2024 GMT Not After : Oct 30 06:44:31 2024 GMT Subject: CN=67189b50-39dc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:b6:3e:1d:cb:f7:23:5e:d9:c7:aa:79:cb:25: 3c:d5:78:75:76:25:69:96:94:99:02:5b:4c:9b:b9: 57:6f:88:cc:20:0f:67:44:61:ab:99:45:89:6b:d4: 17:4e:1e:5b:eb:db:fd:08:d5:e6:52:99:f3:59:58: f4:5f:99:88:6c:8f:c0:04:5c:82:69:17:ce:ad:7d: 86:d5:89:98:24:52:f5:b8:db:2b:a5:b3:96:5e:ee: 64:48:00:66:72:91:1b:f3:6b:51:60:3d:bc:7c:a8: f0:f6:18:0d:6e:40:4d:b1:c9:36:80:77:45:30:21: 6f:5b:ef:e9:b5:4b:10:1c:42:cc:45:a5:24:53:37: a7:57:6a:4f:10:a9:e0:e5:ac:2d:5d:55:2d:1c:db: fa:dd:23:55:90:be:fb:5e:b6:a4:44:ad:bf:17:fc: 52:4a:90:6f:34:f8:09:58:34:e3:89:99:3a:33:9b: 20:6e:6a:ac:bc:db:a6:49:58:e6:e0:51:14:1f:d6: 27:0d:0d:70:49:a3:7b:49:0d:90:ae:2d:43:82:30: f6:a2:74:b8:b3:56:c3:77:e9:46:b0:55:ce:df:38: 11:21:e8:72:df:5d:c1:58:84:15:1c:88:a9:eb:3f: d2:5b:82:2d:4f:3a:e1:85:bd:b0:7d:c6:95:a6:7f: 2b:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9C:86:58:19:73:25:C7:52:AE:FA:82:1E:A4:E7:2D:4A:B5:B0:60:CF X509v3 Authority Key Identifier: keyid:44:F9:C4:DA:47:E6:37:1F:D1:C9:F9:F8:E5:64:D1:80:3A:0F:32:87 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91807BB/0AE482907CB311EF96C9F250C4F9AE02/RPnE2kfmNx_Ryfn45WTRgDoPMoc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RPnE2kfmNx_Ryfn45WTRgDoPMoc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91807BB/0AE482907CB311EF96C9F250C4F9AE02/RPnE2kfmNx_Ryfn45WTRgDoPMoc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5a:c5:a3:02:17:f1:6b:ed:dd:a6:b6:b1:a5:8c:d8:e2:20:b3: 39:de:42:b9:e8:88:26:ec:78:3d:0d:75:3d:58:1b:85:c5:b8: 4b:1a:5f:2b:36:ff:d7:2e:16:25:6a:0a:cd:2d:d0:7a:fa:a2: 13:da:cc:65:5f:59:0a:df:91:56:0d:23:a2:54:a9:a8:10:3c: 53:57:91:32:31:29:a1:ed:f8:27:e9:8f:65:51:84:17:5a:68: c7:8b:c7:d4:03:84:13:2d:f9:2f:44:9a:b5:df:5b:aa:9a:ec: 88:8e:1a:d3:a2:e9:aa:db:66:70:49:d6:43:ee:8a:e1:5d:96: e3:99:f5:b8:72:c9:c7:d2:83:64:74:5b:b0:41:87:b2:5e:ab: cd:cc:af:34:02:c9:1f:09:f5:90:21:f3:aa:7a:31:38:82:e6: 10:58:6d:bb:df:ad:23:2d:7f:75:29:a0:c7:8a:43:09:a0:c2: 90:0e:14:ab:6f:5b:5d:62:f1:a2:9a:e6:94:6b:a0:83:a1:cb: 69:ad:3a:27:be:6a:58:6b:fb:cb:74:c9:c9:01:4f:60:2c:66: 82:52:5a:0d:04:46:9f:8d:0c:53:6a:f8:70:4f:ca:1a:b6:75: 9b:a8:36:2d:7c:9f:ab:c6:64:95:09:48:40:c8:87:8e:ae:ff: 53:95:39:ff -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBDzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE4 MDdCQjExMC8GA1UEBRMoNDRGOUM0REE0N0U2MzcxRkQxQzlGOUY4RTU2NEQxODAz QTBGMzI4NzAeFw0yNDEwMjMwNjQ0MzFaFw0yNDEwMzAwNjQ0MzFaMBgxFjAUBgNV BAMTDTY3MTg5YjUwLTM5ZGMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCbtj4dy/cjXtnHqnnLJTzVeHV2JWmWlJkCW0ybuVdviMwgD2dEYauZRYlr1BdO Hlvr2/0I1eZSmfNZWPRfmYhsj8AEXIJpF86tfYbViZgkUvW42yuls5Ze7mRIAGZy kRvza1FgPbx8qPD2GA1uQE2xyTaAd0UwIW9b7+m1SxAcQsxFpSRTN6dXak8QqeDl rC1dVS0c2/rdI1WQvvtetqRErb8X/FJKkG80+AlYNOOJmTozmyBuaqy826ZJWObg URQf1icNDXBJo3tJDZCuLUOCMPaidLizVsN36UawVc7fOBEh6HLfXcFYhBUciKnr P9Jbgi1POuGFvbB9xpWmfytBAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUnIZYGXMl x1Ku+oIepOctSrWwYM8wHwYDVR0jBBgwFoAURPnE2kfmNx/Ryfn45WTRgDoPMocw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTgwN0JCLzBBRTQ4MjkwN0NC MzExRUY5NkM5RjI1MEM0RjlBRTAyL1JQbkUya2ZtTnhfUnlmbjQ1V1RSZ0RvUE1v Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvUlBuRTJrZm1OeF9SeWZuNDVXVFJnRG9QTW9jLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTgw N0JCLzBBRTQ4MjkwN0NCMzExRUY5NkM5RjI1MEM0RjlBRTAyL1JQbkUya2ZtTnhf UnlmbjQ1V1RSZ0RvUE1vYy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAFrFowIX8Wvt3aa2saWM2OIgszneQrnoiCbseD0NdT1YG4XFuEsaXys2 /9cuFiVqCs0t0Hr6ohPazGVfWQrfkVYNI6JUqagQPFNXkTIxKaHt+Cfpj2VRhBda aMeLx9QDhBMt+S9EmrXfW6qa7IiOGtOi6arbZnBJ1kPuiuFdluOZ9bhyycfSg2R0 W7BBh7Jeq83MrzQCyR8J9ZAh86p6MTiC5hBYbbvfrSMtf3UpoMeKQwmgwpAOFKtv W11i8aKa5pRroIOhy2mtOie+alhr+8t0yckBT2AsZoJSWg0ERp+NDFNq+HBPyhq2 dZuoNi18n6vGZJUJSEDIh46u/1OVOf8= -----END CERTIFICATE-----Generated at Wed Oct 23 07:33:22 2024 by rpki-client on console-fra.rpki-client.org