$ rpki-client -vvf rpki.apnic.net/member_repository/A91AA618/557EAB3C3ABE11EF8619D220C4F9AE02/pSvwKHcZGUlxLT2tKdSreid57EM.mft File: pSvwKHcZGUlxLT2tKdSreid57EM.mft (raw, json) Hash identifier: KROoVHYoDiRJk4Y4Az1fabvuT8aJWxheD0xzNeUbw2M= Subject key identifier: 34:F9:72:17:42:80:02:23:F4:B7:57:8A:D2:90:FE:03:C2:00:43:D3 Authority key identifier: A5:2B:F0:28:77:19:19:49:71:2D:3D:AD:29:D4:AB:7A:27:79:EC:43 Certificate issuer: /CN=A91AA618/serialNumber=A52BF02877191949712D3DAD29D4AB7A2779EC43 Certificate serial: 3A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pSvwKHcZGUlxLT2tKdSreid57EM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AA618/557EAB3C3ABE11EF8619D220C4F9AE02/pSvwKHcZGUlxLT2tKdSreid57EM.mft Manifest number: 39 Signing time: Thu 17 Oct 2024 05:56:58 +0000 Manifest this update: Thu 17 Oct 2024 05:56:57 +0000 Manifest next update: Thu 24 Oct 2024 05:56:57 +0000 Files and hashes: 1: pSvwKHcZGUlxLT2tKdSreid57EM.crl (hash: Vi30ZNktVwP7l9Lx7VkAitmdGKhKRSoommlkvKVxTzs=) 2: 88F562E83DAD11EFAA46E417C4F9AE02.roa (hash: y+CwsCOmzO2omqt+7OucZwgkShxhjQvdzFrUFNJogYw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AA618/557EAB3C3ABE11EF8619D220C4F9AE02/pSvwKHcZGUlxLT2tKdSreid57EM.crl rsync://rpki.apnic.net/member_repository/A91AA618/557EAB3C3ABE11EF8619D220C4F9AE02/pSvwKHcZGUlxLT2tKdSreid57EM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pSvwKHcZGUlxLT2tKdSreid57EM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 24 Oct 2024 05:56:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58 (0x3a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AA618/serialNumber=A52BF02877191949712D3DAD29D4AB7A2779EC43 Validity Not Before: Oct 17 05:56:57 2024 GMT Not After : Oct 24 05:56:57 2024 GMT Subject: CN=6710a729-bd31 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:65:32:a7:ed:ae:5f:3e:13:51:0c:d9:c6:0d: 26:7b:3e:fc:b7:f7:23:50:63:8b:9c:c3:da:5b:15: 0f:ba:12:54:8e:12:6c:29:8f:4b:5a:f9:d8:3f:34: 73:2b:c7:ac:41:b8:2b:53:fd:3d:be:4b:75:a5:e7: fa:88:fa:fc:74:cd:cf:d5:f1:94:76:61:65:0f:2f: a8:5a:8b:21:72:07:3a:4c:b8:f0:7c:c2:9c:65:b7: ab:f6:fd:08:4e:36:3c:57:1f:30:65:f9:3e:9c:cc: dd:2b:a1:3a:2b:fb:af:e1:c9:18:17:38:ee:b0:ab: 00:24:2b:84:ed:61:91:3c:95:9a:10:56:ac:69:eb: 62:f9:3e:52:d4:9e:ff:45:3a:19:0e:a6:a2:46:ab: f4:02:82:93:01:a7:75:6f:43:38:02:cc:69:1a:e1: 9c:48:0c:6c:72:f6:98:08:c8:b4:d1:a2:54:26:77: c1:0f:5b:f0:d7:61:70:dd:fc:be:2a:76:1e:54:86: 51:20:07:7b:e6:20:21:22:0b:d1:c9:70:78:54:db: a3:18:93:da:8f:45:9e:3b:54:e1:14:a5:b4:72:20: 9a:34:fc:c7:6e:be:c2:2e:81:41:f8:b0:5b:90:08: e7:29:09:96:39:7a:21:6a:93:a5:6c:51:6d:ed:51: 10:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:F9:72:17:42:80:02:23:F4:B7:57:8A:D2:90:FE:03:C2:00:43:D3 X509v3 Authority Key Identifier: keyid:A5:2B:F0:28:77:19:19:49:71:2D:3D:AD:29:D4:AB:7A:27:79:EC:43 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AA618/557EAB3C3ABE11EF8619D220C4F9AE02/pSvwKHcZGUlxLT2tKdSreid57EM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pSvwKHcZGUlxLT2tKdSreid57EM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AA618/557EAB3C3ABE11EF8619D220C4F9AE02/pSvwKHcZGUlxLT2tKdSreid57EM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 61:aa:c9:ce:01:b9:11:12:01:eb:3b:95:a4:e6:90:cc:b7:ee: 25:ea:5e:0a:81:23:88:6a:59:98:85:63:9a:1b:8e:50:4d:11: e7:36:32:6c:e2:31:b8:9c:62:38:46:85:d1:0d:4d:f6:3b:1f: 36:6e:94:5d:90:b5:87:e9:fa:7a:62:bf:ff:04:87:ea:8e:13: fc:2d:59:ef:d8:41:fc:89:90:fb:a2:1e:de:43:c3:22:26:d9: 20:69:fd:45:e7:71:2d:74:b2:5e:c4:a0:0e:c2:2d:f5:fc:3f: 91:97:34:c0:a5:7b:a5:41:8f:6d:a8:a9:32:8e:96:05:e0:27: 30:38:5e:0f:d6:02:4b:30:e4:1e:c1:22:32:a9:6c:af:86:02: 64:33:8c:28:ad:8e:67:96:06:7e:55:b3:51:b5:3b:50:59:c4: 6c:dd:dc:54:23:ea:a2:a5:18:7e:f9:64:3f:7e:b2:d7:6a:e9: df:a6:68:30:66:43:38:26:0f:63:07:95:66:4e:ee:2c:45:d2: c7:77:0b:ec:85:50:46:44:9a:45:b1:8c:7f:03:57:6b:04:8b: 8c:6c:67:42:93:9e:51:fc:3c:2a:90:a5:62:e7:71:1f:c1:d0: 4d:da:01:db:36:23:19:1b:24:b8:9a:e0:99:21:e8:02:3d:8a: 34:e7:07:6f -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBOjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB QTYxODExMC8GA1UEBRMoQTUyQkYwMjg3NzE5MTk0OTcxMkQzREFEMjlENEFCN0Ey Nzc5RUM0MzAeFw0yNDEwMTcwNTU2NTdaFw0yNDEwMjQwNTU2NTdaMBgxFjAUBgNV BAMTDTY3MTBhNzI5LWJkMzEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCrZTKn7a5fPhNRDNnGDSZ7Pvy39yNQY4ucw9pbFQ+6ElSOEmwpj0ta+dg/NHMr x6xBuCtT/T2+S3Wl5/qI+vx0zc/V8ZR2YWUPL6haiyFyBzpMuPB8wpxlt6v2/QhO NjxXHzBl+T6czN0roTor+6/hyRgXOO6wqwAkK4TtYZE8lZoQVqxp62L5PlLUnv9F OhkOpqJGq/QCgpMBp3VvQzgCzGka4ZxIDGxy9pgIyLTRolQmd8EPW/DXYXDd/L4q dh5UhlEgB3vmICEiC9HJcHhU26MYk9qPRZ47VOEUpbRyIJo0/MduvsIugUH4sFuQ COcpCZY5eiFqk6VsUW3tURARAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUNPlyF0KA AiP0t1eK0pD+A8IAQ9MwHwYDVR0jBBgwFoAUpSvwKHcZGUlxLT2tKdSreid57EMw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUFBNjE4LzU1N0VBQjNDM0FC RTExRUY4NjE5RDIyMEM0RjlBRTAyL3BTdndLSGNaR1VseExUMnRLZFNyZWlkNTdF TS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvcFN2d0tIY1pHVWx4TFQydEtkU3JlaWQ1N0VNLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUFB NjE4LzU1N0VBQjNDM0FCRTExRUY4NjE5RDIyMEM0RjlBRTAyL3BTdndLSGNaR1Vs eExUMnRLZFNyZWlkNTdFTS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAGGqyc4BuRESAes7laTmkMy37iXqXgqBI4hqWZiFY5objlBNEec2Mmzi MbicYjhGhdENTfY7HzZulF2QtYfp+npiv/8Eh+qOE/wtWe/YQfyJkPuiHt5DwyIm 2SBp/UXncS10sl7EoA7CLfX8P5GXNMCle6VBj22oqTKOlgXgJzA4Xg/WAksw5B7B IjKpbK+GAmQzjCitjmeWBn5Vs1G1O1BZxGzd3FQj6qKlGH75ZD9+stdq6d+maDBm QzgmD2MHlWZO7ixF0sd3C+yFUEZEmkWxjH8DV2sEi4xsZ0KTnlH8PCqQpWLncR/B 0E3aAds2IxkbJLia4Jkh6AI9ijTnB28= -----END CERTIFICATE-----Generated at Thu Oct 17 08:06:25 2024 by rpki-client on console-ams.rpki-client.org