$ rpki-client -vvf rpki.apnic.net/member_repository/A91B1E8B/6291764445B611EF8AB30A31C4F9AE02/nTwzrLEQPnH6H_PmAT6dwxEiafw.mft File: nTwzrLEQPnH6H_PmAT6dwxEiafw.mft (raw, json) Hash identifier: wHFpFVYylJYavwJ+pwP16IHuGi/aH0LRb/CjPk5+x2A= Subject key identifier: D4:C6:12:80:C9:97:F2:53:04:7B:4B:B5:A3:72:A6:54:B4:45:31:72 Authority key identifier: 9D:3C:33:AC:B1:10:3E:71:FA:1F:F3:E6:01:3E:9D:C3:11:22:69:FC Certificate issuer: /CN=A91B1E8B/serialNumber=9D3C33ACB1103E71FA1FF3E6013E9DC3112269FC Certificate serial: 21 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/nTwzrLEQPnH6H_PmAT6dwxEiafw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B1E8B/6291764445B611EF8AB30A31C4F9AE02/nTwzrLEQPnH6H_PmAT6dwxEiafw.mft Manifest number: 21 Signing time: Thu 19 Sep 2024 06:07:53 +0000 Manifest this update: Thu 19 Sep 2024 06:07:53 +0000 Manifest next update: Thu 26 Sep 2024 06:07:53 +0000 Files and hashes: 1: nTwzrLEQPnH6H_PmAT6dwxEiafw.crl (hash: RkfUiIn56cGyGmKofanw0sYVubQT9LSPdplcvcTke8g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B1E8B/6291764445B611EF8AB30A31C4F9AE02/nTwzrLEQPnH6H_PmAT6dwxEiafw.crl rsync://rpki.apnic.net/member_repository/A91B1E8B/6291764445B611EF8AB30A31C4F9AE02/nTwzrLEQPnH6H_PmAT6dwxEiafw.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/nTwzrLEQPnH6H_PmAT6dwxEiafw.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 26 Sep 2024 06:07:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 33 (0x21) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B1E8B/serialNumber=9D3C33ACB1103E71FA1FF3E6013E9DC3112269FC Validity Not Before: Sep 19 06:07:53 2024 GMT Not After : Sep 26 06:07:53 2024 GMT Subject: CN=66ebbfb9-943c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:b7:3c:ca:df:98:3b:98:f4:d5:75:3e:52:e7: 43:c2:bc:07:32:1b:cb:d6:78:69:92:6e:e9:bc:f3: 37:2b:dd:b2:b4:b8:d2:d8:13:77:b3:b4:be:6d:70: 94:63:cc:dc:c0:6b:2f:54:be:b9:68:7e:8f:8c:63: 73:4d:01:16:4c:3b:46:dd:d0:95:ed:02:99:2b:3d: 4d:19:fe:c8:ef:82:45:ab:4e:74:e9:19:7f:72:8b: 1e:88:71:d6:3d:3b:da:2c:b2:b6:85:72:35:86:c3: 0a:e5:ea:8c:83:38:d3:5a:37:43:e4:af:50:a9:f5: 0d:0c:57:5f:3d:9b:bb:43:6c:c4:f5:42:00:6c:98: de:59:ce:5e:b0:ca:20:6d:c5:c8:57:80:2a:94:41: e2:0b:94:f9:db:d5:b2:5c:32:1a:38:2c:10:ea:87: a6:7b:19:f4:eb:6e:9c:08:32:25:9c:38:8a:62:34: 10:6c:a6:33:fc:9c:d1:78:38:82:4e:1e:13:6b:45: cc:3b:81:ab:81:cf:3a:8c:29:88:61:14:52:f9:ae: 02:16:0e:85:d2:c4:5f:56:b8:d4:b2:33:10:3d:28: f6:aa:7b:90:de:bc:70:51:d9:c6:e4:ae:d5:cd:ce: b8:fe:76:99:5d:91:21:ae:5f:d4:2e:01:0f:f3:7f: b5:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:C6:12:80:C9:97:F2:53:04:7B:4B:B5:A3:72:A6:54:B4:45:31:72 X509v3 Authority Key Identifier: keyid:9D:3C:33:AC:B1:10:3E:71:FA:1F:F3:E6:01:3E:9D:C3:11:22:69:FC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B1E8B/6291764445B611EF8AB30A31C4F9AE02/nTwzrLEQPnH6H_PmAT6dwxEiafw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/nTwzrLEQPnH6H_PmAT6dwxEiafw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B1E8B/6291764445B611EF8AB30A31C4F9AE02/nTwzrLEQPnH6H_PmAT6dwxEiafw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption da:b9:8f:02:32:e4:60:70:5e:f5:62:5c:d5:9c:bd:e0:7f:89: 01:73:d1:96:d3:83:cc:be:1d:ba:ce:f5:e9:62:e2:ba:a2:2b: 57:ab:1b:a4:d2:7f:90:2c:a0:99:cf:85:46:6f:72:92:81:7f: da:07:fe:20:26:b4:48:b5:fe:c1:8e:6f:f9:69:27:92:32:06: c7:c4:31:92:2c:8a:26:09:89:29:bd:64:11:5f:b6:b2:e5:b6: 5f:72:99:1e:95:5b:cb:e5:87:96:40:8d:66:58:8c:7f:bd:50: 93:97:2e:30:46:fd:b7:7d:0b:08:a9:84:d2:63:1d:ca:d4:e4: a4:05:33:6f:7a:21:76:05:19:57:3c:13:fc:9b:79:ae:4d:d8: 51:04:f4:9c:f1:ba:44:d1:c5:6d:42:72:f0:fa:9b:7a:80:9f: f7:30:fd:f7:e0:12:fe:7c:99:00:3f:c3:e5:6d:7e:37:67:ea: bc:d4:0f:bc:18:e0:8c:bd:ca:db:87:dc:a4:c5:84:58:6b:a7: 1e:3d:7b:4c:2e:c9:ba:bb:f1:c3:0f:2a:96:6c:c8:75:32:e7: cf:a3:52:11:a7:e4:36:0d:01:cc:b9:d8:91:c3:25:d2:eb:bd: 8a:b9:c2:f8:44:86:77:77:e5:6f:56:09:c2:6c:60:1e:e8:70: 25:ba:97:1a -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBITANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC MUU4QjExMC8GA1UEBRMoOUQzQzMzQUNCMTEwM0U3MUZBMUZGM0U2MDEzRTlEQzMx MTIyNjlGQzAeFw0yNDA5MTkwNjA3NTNaFw0yNDA5MjYwNjA3NTNaMBgxFjAUBgNV BAMTDTY2ZWJiZmI5LTk0M2MwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDItzzK35g7mPTVdT5S50PCvAcyG8vWeGmSbum88zcr3bK0uNLYE3eztL5tcJRj zNzAay9Uvrlofo+MY3NNARZMO0bd0JXtApkrPU0Z/sjvgkWrTnTpGX9yix6IcdY9 O9ossraFcjWGwwrl6oyDONNaN0Pkr1Cp9Q0MV189m7tDbMT1QgBsmN5Zzl6wyiBt xchXgCqUQeILlPnb1bJcMho4LBDqh6Z7GfTrbpwIMiWcOIpiNBBspjP8nNF4OIJO HhNrRcw7gauBzzqMKYhhFFL5rgIWDoXSxF9WuNSyMxA9KPaqe5DevHBR2cbkrtXN zrj+dpldkSGuX9QuAQ/zf7WbAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU1MYSgMmX 8lMEe0u1o3KmVLRFMXIwHwYDVR0jBBgwFoAUnTwzrLEQPnH6H/PmAT6dwxEiafww DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUIxRThCLzYyOTE3NjQ0NDVC NjExRUY4QUIzMEEzMUM0RjlBRTAyL25Ud3pyTEVRUG5INkhfUG1BVDZkd3hFaWFm dy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvblR3enJMRVFQbkg2SF9QbUFUNmR3eEVpYWZ3LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUIx RThCLzYyOTE3NjQ0NDVCNjExRUY4QUIzMEEzMUM0RjlBRTAyL25Ud3pyTEVRUG5I NkhfUG1BVDZkd3hFaWFmdy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBANq5jwIy5GBwXvViXNWcveB/iQFz0ZbTg8y+HbrO9eli4rqiK1erG6TS f5AsoJnPhUZvcpKBf9oH/iAmtEi1/sGOb/lpJ5IyBsfEMZIsiiYJiSm9ZBFftrLl tl9ymR6VW8vlh5ZAjWZYjH+9UJOXLjBG/bd9CwiphNJjHcrU5KQFM296IXYFGVc8 E/ybea5N2FEE9JzxukTRxW1CcvD6m3qAn/cw/ffgEv58mQA/w+Vtfjdn6rzUD7wY 4Iy9ytuH3KTFhFhrpx49e0wuybq78cMPKpZsyHUy58+jUhGn5DYNAcy52JHDJdLr vYq5wvhEhnd35W9WCcJsYB7ocCW6lxo= -----END CERTIFICATE-----Generated at Thu Sep 19 07:14:21 2024 by rpki-client on console-fra.rpki-client.org