$ rpki-client -vvf rpki.apnic.net/member_repository/A91A5A57/6E74831056EC11EF8A0CB24FC4F9AE02/2cXYKr0w_dIPqcrz0e2GfbB2lWs.mft File: 2cXYKr0w_dIPqcrz0e2GfbB2lWs.mft (raw, json) Hash identifier: Jm90vTVkFNEODfYufapTjd/B5/5WkOtMnJX5BH7bO/Q= Subject key identifier: E8:4A:01:BC:3C:FE:BE:96:0F:72:E4:A4:6A:E6:B2:1A:E8:7A:57:1E Authority key identifier: D9:C5:D8:2A:BD:30:FD:D2:0F:A9:CA:F3:D1:ED:86:7D:B0:76:95:6B Certificate issuer: /CN=A91A5A57/serialNumber=D9C5D82ABD30FDD20FA9CAF3D1ED867DB076956B Certificate serial: 29 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2cXYKr0w_dIPqcrz0e2GfbB2lWs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A5A57/6E74831056EC11EF8A0CB24FC4F9AE02/2cXYKr0w_dIPqcrz0e2GfbB2lWs.mft Manifest number: 28 Signing time: Wed 23 Oct 2024 06:21:43 +0000 Manifest this update: Wed 23 Oct 2024 06:21:43 +0000 Manifest next update: Wed 30 Oct 2024 06:21:43 +0000 Files and hashes: 1: 2cXYKr0w_dIPqcrz0e2GfbB2lWs.crl (hash: Qr7g9UIZxK/Ij8iLrq8xx9HpSzZU/eS39/vCqk0BWSQ=) 2: F6382C7A56EC11EF85879C50C4F9AE02.roa (hash: FxzQ/fIjW3ehlt8HpKRH7n5BfwlAuKegJIAFiGlOhTE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A5A57/6E74831056EC11EF8A0CB24FC4F9AE02/2cXYKr0w_dIPqcrz0e2GfbB2lWs.crl rsync://rpki.apnic.net/member_repository/A91A5A57/6E74831056EC11EF8A0CB24FC4F9AE02/2cXYKr0w_dIPqcrz0e2GfbB2lWs.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2cXYKr0w_dIPqcrz0e2GfbB2lWs.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 30 Oct 2024 02:50:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 41 (0x29) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A5A57/serialNumber=D9C5D82ABD30FDD20FA9CAF3D1ED867DB076956B Validity Not Before: Oct 23 06:21:43 2024 GMT Not After : Oct 30 06:21:43 2024 GMT Subject: CN=671895f7-486e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:e5:d0:d0:51:73:fc:57:a3:ae:b2:b2:0a:f4: 35:b5:12:0f:0a:45:b6:14:21:e1:a7:ff:f7:07:61: 4e:b4:6e:99:a3:f7:9b:ab:43:9e:64:7a:4a:e7:53: ba:4b:a2:c7:f4:77:4d:d3:a2:98:d0:f1:24:db:35: 12:5f:23:b9:36:ae:25:4a:71:bb:bc:e1:83:60:d0: 99:02:e6:dd:18:b9:8a:e5:51:7f:2f:f8:28:f8:8a: 7c:e4:50:a6:ea:e4:9e:fd:94:87:cf:a1:32:b3:f3: a1:0f:bb:1d:b7:a2:1c:00:64:83:53:43:fe:f5:51: d9:67:21:6c:67:14:2f:91:c2:44:95:72:d8:e4:40: d1:0c:d6:f8:42:72:d4:7a:98:78:b2:7b:f9:0b:c0: 3c:58:a8:db:0f:a5:23:f1:01:f1:55:73:5f:5a:12: 93:fe:13:db:63:c4:98:29:02:4b:68:89:eb:92:2a: e0:3f:66:49:b6:99:ba:6b:eb:02:06:b6:27:3f:fb: 91:cd:f7:4c:a7:b4:17:d3:ba:20:15:97:e8:db:a2: e5:f2:1c:5e:53:ac:59:6c:50:2f:0a:af:96:c9:52: 04:cc:9a:d8:e0:6c:d2:27:3a:d1:7f:47:07:f6:25: 65:5d:2b:1c:08:17:3d:ca:d7:90:8e:56:c4:d7:78: 68:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:4A:01:BC:3C:FE:BE:96:0F:72:E4:A4:6A:E6:B2:1A:E8:7A:57:1E X509v3 Authority Key Identifier: keyid:D9:C5:D8:2A:BD:30:FD:D2:0F:A9:CA:F3:D1:ED:86:7D:B0:76:95:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A5A57/6E74831056EC11EF8A0CB24FC4F9AE02/2cXYKr0w_dIPqcrz0e2GfbB2lWs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2cXYKr0w_dIPqcrz0e2GfbB2lWs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A5A57/6E74831056EC11EF8A0CB24FC4F9AE02/2cXYKr0w_dIPqcrz0e2GfbB2lWs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bd:40:25:9a:e4:1f:d0:ce:a5:48:59:9a:fb:b8:29:fe:cc:cb: f8:c6:aa:67:8b:f1:bf:a3:60:cc:1f:18:37:d2:1b:07:d2:db: ce:2c:2b:ad:f4:f5:a6:4c:1f:9a:cf:bb:87:bf:4c:f0:c2:59: 7e:16:80:d3:3b:ab:4e:79:14:b6:16:dd:2e:b1:7a:c9:18:19: f1:fa:74:13:28:da:11:aa:ba:4b:f5:59:2d:22:47:7a:fe:2c: a4:97:20:56:85:1a:62:ab:b8:a5:ac:15:7c:b8:b3:04:a5:e3: 22:aa:90:15:47:a0:74:4a:1f:89:a4:19:ea:58:91:2e:af:50: 3d:a9:33:15:14:a7:ca:d3:79:95:e1:0a:00:9f:6e:cc:3e:28: d3:4e:68:dc:5f:ba:14:bf:11:04:b4:4a:3b:d7:b8:12:c7:a9: 40:c9:9e:b5:b9:c6:5a:a6:b4:4b:7a:d0:bc:f1:1e:8f:96:57: 71:3d:57:39:24:f2:b6:ff:8c:a9:85:0f:fb:29:22:1a:c8:35: c6:99:cf:91:ec:aa:9e:e1:8b:2c:93:f9:5c:9a:e2:30:67:25: 87:5f:5b:8a:4c:45:7f:f7:01:d3:8e:fe:93:7e:1e:0a:b9:ad: cd:15:5c:eb:64:10:b5:e9:06:17:0b:22:b0:90:9d:8a:a5:71: 07:2c:28:46 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBKTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB NUE1NzExMC8GA1UEBRMoRDlDNUQ4MkFCRDMwRkREMjBGQTlDQUYzRDFFRDg2N0RC MDc2OTU2QjAeFw0yNDEwMjMwNjIxNDNaFw0yNDEwMzAwNjIxNDNaMBgxFjAUBgNV BAMTDTY3MTg5NWY3LTQ4NmUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCy5dDQUXP8V6OusrIK9DW1Eg8KRbYUIeGn//cHYU60bpmj95urQ55kekrnU7pL osf0d03TopjQ8STbNRJfI7k2riVKcbu84YNg0JkC5t0YuYrlUX8v+Cj4inzkUKbq 5J79lIfPoTKz86EPux23ohwAZINTQ/71UdlnIWxnFC+RwkSVctjkQNEM1vhCctR6 mHiye/kLwDxYqNsPpSPxAfFVc19aEpP+E9tjxJgpAktoieuSKuA/Zkm2mbpr6wIG tic/+5HN90yntBfTuiAVl+jbouXyHF5TrFlsUC8Kr5bJUgTMmtjgbNInOtF/Rwf2 JWVdKxwIFz3K15COVsTXeGihAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU6EoBvDz+ vpYPcuSkauayGuh6Vx4wHwYDVR0jBBgwFoAU2cXYKr0w/dIPqcrz0e2GfbB2lWsw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE1QTU3LzZFNzQ4MzEwNTZF QzExRUY4QTBDQjI0RkM0RjlBRTAyLzJjWFlLcjB3X2RJUHFjcnowZTJHZmJCMmxX cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvMmNYWUtyMHdfZElQcWNyejBlMkdmYkIybFdzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE1 QTU3LzZFNzQ4MzEwNTZFQzExRUY4QTBDQjI0RkM0RjlBRTAyLzJjWFlLcjB3X2RJ UHFjcnowZTJHZmJCMmxXcy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAL1AJZrkH9DOpUhZmvu4Kf7My/jGqmeL8b+jYMwfGDfSGwfS284sK630 9aZMH5rPu4e/TPDCWX4WgNM7q055FLYW3S6xeskYGfH6dBMo2hGqukv1WS0iR3r+ LKSXIFaFGmKruKWsFXy4swSl4yKqkBVHoHRKH4mkGepYkS6vUD2pMxUUp8rTeZXh CgCfbsw+KNNOaNxfuhS/EQS0SjvXuBLHqUDJnrW5xlqmtEt60LzxHo+WV3E9Vzkk 8rb/jKmFD/spIhrINcaZz5Hsqp7hiyyT+Vya4jBnJYdfW4pMRX/3AdOO/pN+Hgq5 rc0VXOtkELXpBhcLIrCQnYqlcQcsKEY= -----END CERTIFICATE-----Generated at Wed Oct 23 07:33:23 2024 by rpki-client on console-fra.rpki-client.org