$ rpki-client -vvf rpki.apnic.net/member_repository/A91A15FB/BE88A70C2EC711EF82208273C4F9AE02/kuYzl488XC0IYKzbDh3VEhAOie8.mft File: kuYzl488XC0IYKzbDh3VEhAOie8.mft (raw, json) Hash identifier: ogtcq4/N/fMXBJb5v8ch5TdMUO0PMUFKvK7htUIcnUc= Subject key identifier: 76:39:DD:F2:06:A8:B6:68:86:50:8F:29:FE:7F:7C:74:84:46:56:B2 Authority key identifier: 92:E6:33:97:8F:3C:5C:2D:08:60:AC:DB:0E:1D:D5:12:10:0E:89:EF Certificate issuer: /CN=A91A15FB/serialNumber=92E633978F3C5C2D0860ACDB0E1DD512100E89EF Certificate serial: 31 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kuYzl488XC0IYKzbDh3VEhAOie8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A15FB/BE88A70C2EC711EF82208273C4F9AE02/kuYzl488XC0IYKzbDh3VEhAOie8.mft Manifest number: 30 Signing time: Thu 19 Sep 2024 05:54:40 +0000 Manifest this update: Thu 19 Sep 2024 05:54:39 +0000 Manifest next update: Thu 26 Sep 2024 05:54:39 +0000 Files and hashes: 1: kuYzl488XC0IYKzbDh3VEhAOie8.crl (hash: tKbAl473NoWHDeKGog8a1WikqjHtLt5KsHyOZc6DmKs=) 2: 431868FE2EC811EFBB3A6574C4F9AE02.roa (hash: yYqs2C5AMpVdcomEvwsEelNt35bcShUcpatPOoqg3y0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A15FB/BE88A70C2EC711EF82208273C4F9AE02/kuYzl488XC0IYKzbDh3VEhAOie8.crl rsync://rpki.apnic.net/member_repository/A91A15FB/BE88A70C2EC711EF82208273C4F9AE02/kuYzl488XC0IYKzbDh3VEhAOie8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kuYzl488XC0IYKzbDh3VEhAOie8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 26 Sep 2024 05:54:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 49 (0x31) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A15FB/serialNumber=92E633978F3C5C2D0860ACDB0E1DD512100E89EF Validity Not Before: Sep 19 05:54:39 2024 GMT Not After : Sep 26 05:54:39 2024 GMT Subject: CN=66ebbca0-bb78 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:05:bb:ad:98:05:23:e2:15:7b:12:92:43:d9: 8a:8f:20:4c:15:e2:8f:4b:54:ee:cb:88:17:fa:99: e2:20:68:28:3c:8e:65:35:d8:2b:73:65:65:95:64: 3e:5f:af:03:c0:a7:59:fb:8c:9a:d6:c4:de:71:58: fd:81:ab:e8:d1:e4:33:9d:be:f5:80:61:82:02:f0: 43:90:92:73:ed:cd:4d:ad:4c:03:17:9f:9d:a5:31: af:a7:f7:12:f7:1e:00:7a:9b:66:77:f0:73:64:10: d4:7b:e7:8e:1e:01:32:fe:39:95:0a:50:21:80:38: 8d:e7:32:dc:d7:c4:1c:19:f6:b2:26:6a:77:24:6e: e4:ca:5d:e1:16:1c:1a:f7:fe:ea:00:dc:97:1f:7f: ae:99:c4:ea:19:da:d2:22:2f:eb:04:0d:09:d5:54: d1:41:92:23:8a:72:6e:76:ef:6e:94:04:87:7f:d5: 2c:fd:29:f0:a8:3e:ff:14:06:38:45:bd:25:c6:da: ef:51:81:3e:80:a3:66:b8:88:63:f7:a7:79:9b:05: 61:3c:0a:9d:66:c5:ef:fa:0b:6b:91:f2:9a:3a:6d: 15:11:7c:ad:81:69:42:c7:e0:8c:35:c4:53:44:91: 3c:71:6a:79:65:b1:80:e3:29:28:ef:ca:71:a3:24: a2:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:39:DD:F2:06:A8:B6:68:86:50:8F:29:FE:7F:7C:74:84:46:56:B2 X509v3 Authority Key Identifier: keyid:92:E6:33:97:8F:3C:5C:2D:08:60:AC:DB:0E:1D:D5:12:10:0E:89:EF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A15FB/BE88A70C2EC711EF82208273C4F9AE02/kuYzl488XC0IYKzbDh3VEhAOie8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kuYzl488XC0IYKzbDh3VEhAOie8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A15FB/BE88A70C2EC711EF82208273C4F9AE02/kuYzl488XC0IYKzbDh3VEhAOie8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 23:e0:70:81:16:dc:ca:2a:22:da:f6:9a:d8:e3:93:28:58:fa: 8e:ec:55:23:9e:7d:b2:03:a5:46:01:60:27:cf:15:c1:7c:98: 0f:a7:12:c7:e0:66:ad:c3:a1:8c:49:4d:1a:15:d8:18:d7:f6: 95:89:11:6c:9a:2c:fc:ba:61:a4:b3:30:1c:00:c2:fe:12:f6: 4b:e3:b7:f5:d4:e4:b9:4b:38:31:04:63:f0:c8:38:02:d6:35: 36:2d:1f:22:2f:c8:2c:27:b1:9e:14:d1:32:de:b8:6c:a2:b9: db:dc:e4:d5:42:63:06:69:1c:cd:1d:ff:7f:8a:5f:a2:fa:b0: 95:47:16:bc:71:9d:eb:35:62:e4:88:34:5a:14:65:89:77:52: 1d:5c:a8:a8:6e:55:0c:c0:85:dd:e6:76:0e:83:f0:85:68:b9: c3:9d:9b:32:dc:59:e5:a0:73:4b:73:d3:ad:02:8b:9e:fb:71: b4:fc:17:c5:62:bd:ef:88:bb:a6:01:93:ef:76:1e:e9:6a:2d: d3:a5:ef:8f:29:b8:0e:95:fc:04:ed:05:79:bf:71:3d:24:79: ac:3e:cc:cd:3d:e5:a8:4f:6c:09:8a:80:64:19:85:c8:fb:90: 5d:64:80:4e:c6:3a:28:14:5d:2b:7c:92:fa:66:04:e9:d5:b7: 87:79:89:9c -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBMTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB MTVGQjExMC8GA1UEBRMoOTJFNjMzOTc4RjNDNUMyRDA4NjBBQ0RCMEUxREQ1MTIx MDBFODlFRjAeFw0yNDA5MTkwNTU0MzlaFw0yNDA5MjYwNTU0MzlaMBgxFjAUBgNV BAMTDTY2ZWJiY2EwLWJiNzgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCtBbutmAUj4hV7EpJD2YqPIEwV4o9LVO7LiBf6meIgaCg8jmU12CtzZWWVZD5f rwPAp1n7jJrWxN5xWP2Bq+jR5DOdvvWAYYIC8EOQknPtzU2tTAMXn52lMa+n9xL3 HgB6m2Z38HNkENR7544eATL+OZUKUCGAOI3nMtzXxBwZ9rImanckbuTKXeEWHBr3 /uoA3Jcff66ZxOoZ2tIiL+sEDQnVVNFBkiOKcm52726UBId/1Sz9KfCoPv8UBjhF vSXG2u9RgT6Ao2a4iGP3p3mbBWE8Cp1mxe/6C2uR8po6bRURfK2BaULH4Iw1xFNE kTxxanllsYDjKSjvynGjJKKjAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUdjnd8gao tmiGUI8p/n98dIRGVrIwHwYDVR0jBBgwFoAUkuYzl488XC0IYKzbDh3VEhAOie8w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUExNUZCL0JFODhBNzBDMkVD NzExRUY4MjIwODI3M0M0RjlBRTAyL2t1WXpsNDg4WEMwSVlLemJEaDNWRWhBT2ll OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIva3VZemw0ODhYQzBJWUt6YkRoM1ZFaEFPaWU4LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUEx NUZCL0JFODhBNzBDMkVDNzExRUY4MjIwODI3M0M0RjlBRTAyL2t1WXpsNDg4WEMw SVlLemJEaDNWRWhBT2llOC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBACPgcIEW3MoqItr2mtjjkyhY+o7sVSOefbIDpUYBYCfPFcF8mA+nEsfg Zq3DoYxJTRoV2BjX9pWJEWyaLPy6YaSzMBwAwv4S9kvjt/XU5LlLODEEY/DIOALW NTYtHyIvyCwnsZ4U0TLeuGyiudvc5NVCYwZpHM0d/3+KX6L6sJVHFrxxnes1YuSI NFoUZYl3Uh1cqKhuVQzAhd3mdg6D8IVoucOdmzLcWeWgc0tz060Ci577cbT8F8Vi ve+Iu6YBk+92HulqLdOl748puA6V/ATtBXm/cT0keaw+zM095ahPbAmKgGQZhcj7 kF1kgE7GOigUXSt8kvpmBOnVt4d5iZw= -----END CERTIFICATE-----Generated at Thu Sep 19 07:14:19 2024 by rpki-client on console-fra.rpki-client.org