$ rpki-client -vvf rpki.apnic.net/member_repository/A91A5560/4C3D6BC0216F11EFAF45EA2DC4F9AE02/446z9aUQfjDwynHd6nWxcNCwMlY.mft File: 446z9aUQfjDwynHd6nWxcNCwMlY.mft (raw, json) Hash identifier: FbgMg9e1fHJxKT8fJHMAg/DB0P/Y13yT8QlphPjQpEo= Subject key identifier: CC:B9:2F:31:12:37:AD:71:A3:D8:E7:26:A2:2F:A4:B5:9D:6C:52:03 Authority key identifier: E3:8E:B3:F5:A5:10:7E:30:F0:CA:71:DD:EA:75:B1:70:D0:B0:32:56 Certificate issuer: /CN=A91A5560/serialNumber=E38EB3F5A5107E30F0CA71DDEA75B170D0B03256 Certificate serial: 3B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/446z9aUQfjDwynHd6nWxcNCwMlY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A5560/4C3D6BC0216F11EFAF45EA2DC4F9AE02/446z9aUQfjDwynHd6nWxcNCwMlY.mft Manifest number: 38 Signing time: Sun 15 Sep 2024 09:57:53 +0000 Manifest this update: Sun 15 Sep 2024 09:57:52 +0000 Manifest next update: Sun 22 Sep 2024 09:57:52 +0000 Files and hashes: 1: 446z9aUQfjDwynHd6nWxcNCwMlY.crl (hash: HC7kTqfWS410YFwvQ/EfcIFJY9jnBYOn1WU7T3uMbv8=) 2: 407CD21836FE11EFBD645E84C4F9AE02.roa (hash: y9jWVZSXd+2K9ugLRsSHm+WPqa8sXl9m6dHJxIes0B4=) 3: F9ECF4A0295A11EFBECFCA7EC4F9AE02.roa (hash: ebgShmBvzJZ3qmN/KtJc0apKg8RyItgKLjz53kqARW4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A5560/4C3D6BC0216F11EFAF45EA2DC4F9AE02/446z9aUQfjDwynHd6nWxcNCwMlY.crl rsync://rpki.apnic.net/member_repository/A91A5560/4C3D6BC0216F11EFAF45EA2DC4F9AE02/446z9aUQfjDwynHd6nWxcNCwMlY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/446z9aUQfjDwynHd6nWxcNCwMlY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 22 Sep 2024 02:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 59 (0x3b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A5560/serialNumber=E38EB3F5A5107E30F0CA71DDEA75B170D0B03256 Validity Not Before: Sep 15 09:57:52 2024 GMT Not After : Sep 22 09:57:52 2024 GMT Subject: CN=66e6afa0-c25a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:1a:27:8d:fa:70:be:60:72:2b:88:28:d4:c7: cd:17:f8:2e:1e:bb:d9:d1:ca:1f:15:11:36:22:ef: 23:a7:48:0b:ef:f0:04:85:a1:71:5e:c2:12:6d:25: 7d:9b:ba:4a:a1:5e:71:f8:9d:63:6d:76:b3:16:3e: 8c:ee:28:84:a0:e3:5c:46:12:58:89:a9:ab:62:3b: 08:68:88:b2:20:1b:af:3c:37:82:7f:c3:59:ac:72: 0f:d1:a7:7f:f3:3b:56:18:f8:2c:35:e8:c8:75:8f: 91:77:ed:9e:c3:bc:e2:05:ad:0a:28:e2:93:39:f7: 0e:31:63:37:61:b7:b4:e0:9c:ba:6b:7d:db:52:45: 28:bd:c8:d9:c7:26:2a:83:0a:c3:a5:5f:73:14:9e: 0b:66:25:52:2f:8d:ee:0d:c4:fc:96:ed:bb:d9:8d: d6:1e:42:32:c9:c7:49:df:19:7e:f5:b9:bc:96:8a: 83:7b:47:13:2c:19:1c:61:bd:f2:b7:15:68:e3:2d: 07:6b:ad:ab:85:ad:53:3a:f4:b8:8d:90:41:a1:db: 94:bd:86:01:ac:a4:1a:06:2f:a5:eb:b8:8e:05:e2: 1f:77:1e:1c:c6:e5:5d:6f:86:e8:82:30:2d:c0:15: b6:98:d0:9b:db:84:d7:f1:7b:4a:59:11:30:29:72: b3:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:B9:2F:31:12:37:AD:71:A3:D8:E7:26:A2:2F:A4:B5:9D:6C:52:03 X509v3 Authority Key Identifier: keyid:E3:8E:B3:F5:A5:10:7E:30:F0:CA:71:DD:EA:75:B1:70:D0:B0:32:56 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A5560/4C3D6BC0216F11EFAF45EA2DC4F9AE02/446z9aUQfjDwynHd6nWxcNCwMlY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/446z9aUQfjDwynHd6nWxcNCwMlY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A5560/4C3D6BC0216F11EFAF45EA2DC4F9AE02/446z9aUQfjDwynHd6nWxcNCwMlY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2b:4c:43:8f:cb:b4:6f:93:69:f3:ed:0c:6f:61:d0:c9:34:e9: 3f:c4:0d:ca:51:0f:d1:ff:b7:bb:37:b6:80:4b:64:3b:0a:9d: 87:8e:cf:17:d2:70:59:80:dc:71:c4:f6:0e:53:4b:e1:1e:68: 90:77:93:33:06:3b:bb:d6:08:2d:0b:b7:60:0a:e3:74:14:d7: c8:26:76:d9:d9:a2:ed:7b:a7:67:9c:e3:9c:30:46:db:13:60: 11:4f:d0:e5:85:cd:40:34:8b:b9:fd:6a:8d:bb:84:20:4f:7d: fb:04:00:eb:21:4a:be:36:c1:c7:62:08:9a:86:fe:7d:3a:f4: 93:fe:68:76:2d:8b:ee:df:a5:72:12:05:b7:15:cf:66:bc:9f: 43:99:b7:f1:e6:48:75:c1:d9:3e:34:4d:8c:bd:70:6d:c5:42: 6f:28:a7:a4:1d:0a:8a:aa:8e:85:e1:0e:f5:29:fd:41:d5:5b: 13:1e:11:fb:a2:d2:be:ff:57:53:11:5b:2c:1b:d0:65:46:53: b1:b0:e7:1b:b8:ae:17:7b:ba:c0:1b:c0:41:8e:41:75:38:b5: b3:50:92:c8:c0:ae:3f:af:39:ea:e1:bf:e0:4e:5b:8a:9d:4c: 42:1c:cd:7f:f1:83:7e:68:42:a5:93:09:80:5c:97:e6:31:d7: 1e:b5:3c:5e -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBOzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB NTU2MDExMC8GA1UEBRMoRTM4RUIzRjVBNTEwN0UzMEYwQ0E3MURERUE3NUIxNzBE MEIwMzI1NjAeFw0yNDA5MTUwOTU3NTJaFw0yNDA5MjIwOTU3NTJaMBgxFjAUBgNV BAMTDTY2ZTZhZmEwLWMyNWEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDDGieN+nC+YHIriCjUx80X+C4eu9nRyh8VETYi7yOnSAvv8ASFoXFewhJtJX2b ukqhXnH4nWNtdrMWPozuKISg41xGEliJqatiOwhoiLIgG688N4J/w1mscg/Rp3/z O1YY+Cw16Mh1j5F37Z7DvOIFrQoo4pM59w4xYzdht7TgnLprfdtSRSi9yNnHJiqD CsOlX3MUngtmJVIvje4NxPyW7bvZjdYeQjLJx0nfGX71ubyWioN7RxMsGRxhvfK3 FWjjLQdrrauFrVM69LiNkEGh25S9hgGspBoGL6XruI4F4h93HhzG5V1vhuiCMC3A FbaY0JvbhNfxe0pZETApcrPjAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUzLkvMRI3 rXGj2Ocmoi+ktZ1sUgMwHwYDVR0jBBgwFoAU446z9aUQfjDwynHd6nWxcNCwMlYw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE1NTYwLzRDM0Q2QkMwMjE2 RjExRUZBRjQ1RUEyREM0RjlBRTAyLzQ0Nno5YVVRZmpEd3luSGQ2bld4Y05Dd01s WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvNDQ2ejlhVVFmakR3eW5IZDZuV3hjTkN3TWxZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE1 NTYwLzRDM0Q2QkMwMjE2RjExRUZBRjQ1RUEyREM0RjlBRTAyLzQ0Nno5YVVRZmpE d3luSGQ2bld4Y05Dd01sWS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBACtMQ4/LtG+TafPtDG9h0Mk06T/EDcpRD9H/t7s3toBLZDsKnYeOzxfS cFmA3HHE9g5TS+EeaJB3kzMGO7vWCC0Lt2AK43QU18gmdtnZou17p2ec45wwRtsT YBFP0OWFzUA0i7n9ao27hCBPffsEAOshSr42wcdiCJqG/n069JP+aHYti+7fpXIS BbcVz2a8n0OZt/HmSHXB2T40TYy9cG3FQm8op6QdCoqqjoXhDvUp/UHVWxMeEfui 0r7/V1MRWywb0GVGU7Gw5xu4rhd7usAbwEGOQXU4tbNQksjArj+vOerhv+BOW4qd TEIczX/xg35oQqWTCYBcl+Yx1x61PF4= -----END CERTIFICATE-----Generated at Sun Sep 15 10:46:23 2024 by rpki-client on console-ams.rpki-client.org