$ rpki-client -vvf rpki.apnic.net/member_repository/A91949C1/09F52B142DD511EF9E505E5DC4F9AE02/-YvpQtnreFakMNG8KUc7xN1nf-o.mft File: -YvpQtnreFakMNG8KUc7xN1nf-o.mft (raw, json) Hash identifier: 3Gh/3eyvsI83NINnxbmQQbVkJG0pjD5Q2QRqBOQALJc= Subject key identifier: C9:BE:22:1A:93:58:EF:29:0E:46:94:56:56:00:E7:40:A6:6F:17:3B Authority key identifier: F9:8B:E9:42:D9:EB:78:56:A4:30:D1:BC:29:47:3B:C4:DD:67:7F:EA Certificate issuer: /CN=A91949C1/serialNumber=F98BE942D9EB7856A430D1BC29473BC4DD677FEA Certificate serial: 32 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/-YvpQtnreFakMNG8KUc7xN1nf-o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91949C1/09F52B142DD511EF9E505E5DC4F9AE02/-YvpQtnreFakMNG8KUc7xN1nf-o.mft Manifest number: 31 Signing time: Sat 21 Sep 2024 05:54:22 +0000 Manifest this update: Sat 21 Sep 2024 05:54:22 +0000 Manifest next update: Sat 28 Sep 2024 05:54:22 +0000 Files and hashes: 1: -YvpQtnreFakMNG8KUc7xN1nf-o.crl (hash: bs1zJe0d1bLlQvPw96ncUApLpai9FCl86arQtOgw4o8=) 2: 5E1227E22DD511EF9AFE395EC4F9AE02.roa (hash: Etmj0xt/W0SmV0Orr2NUt8hTe4pIwfnUtLKYwnR9+RI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91949C1/09F52B142DD511EF9E505E5DC4F9AE02/-YvpQtnreFakMNG8KUc7xN1nf-o.crl rsync://rpki.apnic.net/member_repository/A91949C1/09F52B142DD511EF9E505E5DC4F9AE02/-YvpQtnreFakMNG8KUc7xN1nf-o.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/-YvpQtnreFakMNG8KUc7xN1nf-o.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Sep 2024 02:50:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 50 (0x32) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91949C1/serialNumber=F98BE942D9EB7856A430D1BC29473BC4DD677FEA Validity Not Before: Sep 21 05:54:22 2024 GMT Not After : Sep 28 05:54:22 2024 GMT Subject: CN=66ee5f8e-8f6c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:eb:a0:9f:a3:a1:67:2d:15:6c:50:ca:03:1e: 3c:e5:25:9d:94:08:e6:b4:c0:2a:c0:33:3c:13:00: e3:2b:38:8c:db:63:8d:bf:18:38:70:22:10:14:02: 34:68:d3:42:44:bd:77:e1:2a:f9:98:5a:39:8e:cc: 7d:32:a9:da:ad:44:b8:fe:38:aa:b4:c8:b1:49:49: 8d:bd:47:31:fe:69:c6:02:fe:6e:70:d5:5f:39:23: af:80:9e:e7:3b:f6:a3:c2:39:5f:73:1d:67:48:19: 72:2b:86:76:c2:c6:7d:2a:c8:f1:f7:21:57:39:71: 2a:b2:c0:4b:1b:41:89:a9:7b:fd:53:16:fc:98:f2: 30:f5:2a:89:b9:c2:22:cf:16:59:11:ea:d7:ed:c0: f7:00:9f:af:01:5d:c6:a6:06:0c:d4:08:2b:81:de: 18:d3:81:5b:16:d9:23:9d:f2:9e:8a:4c:d7:08:f4: b5:1b:43:85:dd:60:a0:9a:e9:f1:8f:26:69:ae:f6: fb:27:46:3b:80:f8:81:ae:eb:3a:89:04:f0:56:7d: 9c:e1:2f:9b:3c:bb:7a:ab:b1:27:42:fc:77:b8:36: f4:22:5e:27:b1:2f:27:17:bc:34:87:5d:fb:8a:a0: 20:b2:71:44:54:c1:b1:a7:9b:39:14:3f:2a:cb:2b: fe:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:BE:22:1A:93:58:EF:29:0E:46:94:56:56:00:E7:40:A6:6F:17:3B X509v3 Authority Key Identifier: keyid:F9:8B:E9:42:D9:EB:78:56:A4:30:D1:BC:29:47:3B:C4:DD:67:7F:EA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91949C1/09F52B142DD511EF9E505E5DC4F9AE02/-YvpQtnreFakMNG8KUc7xN1nf-o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/-YvpQtnreFakMNG8KUc7xN1nf-o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91949C1/09F52B142DD511EF9E505E5DC4F9AE02/-YvpQtnreFakMNG8KUc7xN1nf-o.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 38:20:3d:21:3b:f6:b9:f2:c5:7b:b9:f4:97:15:c4:18:98:e2: 9e:2c:83:a5:e0:96:eb:dc:41:79:b8:04:88:3c:86:4d:c8:2a: af:b3:48:77:0e:45:4f:eb:2c:96:64:0b:99:4e:8b:74:f9:88: 27:ea:bc:52:d8:25:31:b8:13:2c:5e:7d:60:49:95:a0:d0:89: d3:e4:8e:80:1c:21:99:83:ee:a9:10:9f:b5:f9:8c:d1:8b:72: eb:7d:e5:f7:5c:d4:a0:94:77:6b:36:14:4d:8a:3c:a5:3a:98: 35:90:69:88:d3:d3:ba:cf:ef:98:27:82:fd:7f:77:b8:34:c6: 88:1f:8e:9d:74:bc:34:dc:76:6d:54:c5:51:e9:c4:ed:5a:50: d5:23:3a:14:1b:d1:ff:b2:01:7a:ca:3d:29:09:ac:5c:76:1e: 6b:a8:98:b4:2d:6f:d5:e8:50:46:d9:d9:05:3d:1a:60:3e:00: 06:9d:21:9c:c9:b8:57:7c:98:8b:4c:31:c1:84:b5:fd:76:e7: a3:08:fc:dd:fe:23:08:88:8c:d6:aa:a3:aa:57:3a:2e:cb:1d: 39:a6:0d:f4:e0:77:62:3e:fe:73:48:a9:1d:54:45:48:52:70: 4e:0b:62:34:bf:a7:d8:1c:09:18:97:3f:3f:48:10:33:14:a6: 98:13:d0:23 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBMjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE5 NDlDMTExMC8GA1UEBRMoRjk4QkU5NDJEOUVCNzg1NkE0MzBEMUJDMjk0NzNCQzRE RDY3N0ZFQTAeFw0yNDA5MjEwNTU0MjJaFw0yNDA5MjgwNTU0MjJaMBgxFjAUBgNV BAMTDTY2ZWU1ZjhlLThmNmMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCq66Cfo6FnLRVsUMoDHjzlJZ2UCOa0wCrAMzwTAOMrOIzbY42/GDhwIhAUAjRo 00JEvXfhKvmYWjmOzH0yqdqtRLj+OKq0yLFJSY29RzH+acYC/m5w1V85I6+Anuc7 9qPCOV9zHWdIGXIrhnbCxn0qyPH3IVc5cSqywEsbQYmpe/1TFvyY8jD1Kom5wiLP FlkR6tftwPcAn68BXcamBgzUCCuB3hjTgVsW2SOd8p6KTNcI9LUbQ4XdYKCa6fGP Jmmu9vsnRjuA+IGu6zqJBPBWfZzhL5s8u3qrsSdC/He4NvQiXiexLycXvDSHXfuK oCCycURUwbGnmzkUPyrLK/5xAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUyb4iGpNY 7ykORpRWVgDnQKZvFzswHwYDVR0jBBgwFoAU+YvpQtnreFakMNG8KUc7xN1nf+ow DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTk0OUMxLzA5RjUyQjE0MkRE NTExRUY5RTUwNUU1REM0RjlBRTAyLy1ZdnBRdG5yZUZha01ORzhLVWM3eE4xbmYt by5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvLVl2cFF0bnJlRmFrTU5HOEtVYzd4TjFuZi1vLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTk0 OUMxLzA5RjUyQjE0MkRENTExRUY5RTUwNUU1REM0RjlBRTAyLy1ZdnBRdG5yZUZh a01ORzhLVWM3eE4xbmYtby5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBADggPSE79rnyxXu59JcVxBiY4p4sg6XgluvcQXm4BIg8hk3IKq+zSHcO RU/rLJZkC5lOi3T5iCfqvFLYJTG4EyxefWBJlaDQidPkjoAcIZmD7qkQn7X5jNGL cut95fdc1KCUd2s2FE2KPKU6mDWQaYjT07rP75gngv1/d7g0xogfjp10vDTcdm1U xVHpxO1aUNUjOhQb0f+yAXrKPSkJrFx2HmuomLQtb9XoUEbZ2QU9GmA+AAadIZzJ uFd8mItMMcGEtf1256MI/N3+IwiIjNaqo6pXOi7LHTmmDfTgd2I+/nNIqR1URUhS cE4LYjS/p9gcCRiXPz9IEDMUppgT0CM= -----END CERTIFICATE-----Generated at Sat Sep 21 07:32:05 2024 by rpki-client on console-fra.rpki-client.org