$ rpki-client -vvf rpki.apnic.net/member_repository/A91B391F/58DB87F2457011EF9C8B8E71C4F9AE02/Zva4RKn4Ca4wexuc7kv9R8PHdxs.mft File: Zva4RKn4Ca4wexuc7kv9R8PHdxs.mft (raw, json) Hash identifier: UdaJDYxiKf9dHwNpLTIig8rDLZczNqrE956Xq2VF17Q= Subject key identifier: B7:F3:BE:74:47:5E:C5:74:CC:E3:4B:66:3F:6F:C5:5D:35:81:D4:C7 Authority key identifier: 66:F6:B8:44:A9:F8:09:AE:30:7B:1B:9C:EE:4B:FD:47:C3:C7:77:1B Certificate issuer: /CN=A91B391F/serialNumber=66F6B844A9F809AE307B1B9CEE4BFD47C3C7771B Certificate serial: 1F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Zva4RKn4Ca4wexuc7kv9R8PHdxs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B391F/58DB87F2457011EF9C8B8E71C4F9AE02/Zva4RKn4Ca4wexuc7kv9R8PHdxs.mft Manifest number: 1F Signing time: Sun 15 Sep 2024 10:20:01 +0000 Manifest this update: Sun 15 Sep 2024 10:20:00 +0000 Manifest next update: Sun 22 Sep 2024 10:20:00 +0000 Files and hashes: 1: Zva4RKn4Ca4wexuc7kv9R8PHdxs.crl (hash: Bq/9hX4WrnEZbxnAoY5A6yijPCmtfXHT5GKOOwVqWXk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B391F/58DB87F2457011EF9C8B8E71C4F9AE02/Zva4RKn4Ca4wexuc7kv9R8PHdxs.crl rsync://rpki.apnic.net/member_repository/A91B391F/58DB87F2457011EF9C8B8E71C4F9AE02/Zva4RKn4Ca4wexuc7kv9R8PHdxs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Zva4RKn4Ca4wexuc7kv9R8PHdxs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 22 Sep 2024 02:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 31 (0x1f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B391F/serialNumber=66F6B844A9F809AE307B1B9CEE4BFD47C3C7771B Validity Not Before: Sep 15 10:20:00 2024 GMT Not After : Sep 22 10:20:00 2024 GMT Subject: CN=66e6b4d0-29dd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:94:cf:3d:41:1e:65:50:fb:75:cc:d4:e9:87: 1e:1c:2e:e7:1d:00:9d:e4:b7:0c:22:d7:e6:97:10: 52:f6:cd:e0:cd:1d:30:61:7c:eb:94:06:1d:2a:d2: cb:b9:06:e1:3c:15:38:dd:df:a1:ef:95:b2:72:5f: db:26:d3:94:c0:fc:47:ca:9b:bf:b5:e4:ab:63:8e: 23:58:5d:1d:ac:c0:34:36:d2:d5:65:63:33:8e:09: 4d:05:d2:2c:d4:8f:88:8b:63:8e:dc:f9:72:90:a1: 78:ee:b9:21:67:81:db:9d:30:2c:47:9c:db:3e:39: ea:9c:d7:51:93:d2:91:8b:17:21:d9:e6:f5:e7:90: 42:14:35:1d:7c:88:a9:d8:0c:59:db:46:cb:4d:c2: a0:3d:8a:1b:fd:fc:22:9f:f6:55:32:bc:a9:de:93: be:6f:48:cb:7d:ad:c3:72:69:ba:52:04:00:f0:9a: e5:85:9b:b4:9a:1a:1f:21:ba:42:68:6a:1f:80:d9: 2f:f7:82:0b:b9:a3:f5:f4:3e:aa:2a:82:2b:c6:10: b8:f2:ce:86:b1:98:9b:86:3f:3f:88:b7:1f:36:5e: 4c:84:74:00:27:81:80:10:e1:4c:72:65:0b:15:cf: d8:48:66:4f:58:df:93:68:4d:0a:f4:df:29:4e:a1: bd:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:F3:BE:74:47:5E:C5:74:CC:E3:4B:66:3F:6F:C5:5D:35:81:D4:C7 X509v3 Authority Key Identifier: keyid:66:F6:B8:44:A9:F8:09:AE:30:7B:1B:9C:EE:4B:FD:47:C3:C7:77:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B391F/58DB87F2457011EF9C8B8E71C4F9AE02/Zva4RKn4Ca4wexuc7kv9R8PHdxs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Zva4RKn4Ca4wexuc7kv9R8PHdxs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B391F/58DB87F2457011EF9C8B8E71C4F9AE02/Zva4RKn4Ca4wexuc7kv9R8PHdxs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c2:fb:e5:4d:00:40:53:b1:9d:84:a7:eb:50:ed:3c:65:9a:a9: 61:77:a1:ec:6a:58:27:59:e8:d5:44:c0:fd:24:60:61:70:9a: af:89:fd:8f:64:2a:33:da:e4:33:22:e0:73:34:55:9a:b4:57: 5f:3b:b3:7b:13:50:5c:dd:d1:e6:3c:8b:bd:eb:11:05:b5:2b: 54:9d:d5:9e:da:a4:2e:e1:ce:84:2a:da:68:d7:90:8b:86:60: 5c:ce:cd:f2:9f:d2:63:4c:c3:84:ce:c3:98:40:79:3a:42:e6: af:00:0e:31:9e:48:99:89:cc:74:19:11:3c:08:00:fe:30:26: f2:00:8e:a0:6c:58:2d:05:17:d0:b2:9f:e8:0c:22:1d:19:d8: 34:70:e3:5e:79:8e:da:86:52:20:c0:56:04:28:e2:6a:94:23: fe:6d:dc:54:58:21:b4:0c:e2:bd:16:ea:e7:6e:3f:df:4f:cc: 6c:db:02:32:df:c3:5b:97:38:11:3a:16:6f:dd:53:8d:f1:cb: d6:6c:ac:66:90:4d:31:71:8c:84:56:9b:57:95:20:3f:3f:c5: e6:b1:86:39:9d:a1:17:93:ee:6c:56:a6:a9:16:18:99:7d:4a: 95:21:7f:1c:a5:0e:ec:e3:49:4e:fe:46:ae:05:89:f8:89:c6: 9c:11:49:6d -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBHzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC MzkxRjExMC8GA1UEBRMoNjZGNkI4NDRBOUY4MDlBRTMwN0IxQjlDRUU0QkZENDdD M0M3NzcxQjAeFw0yNDA5MTUxMDIwMDBaFw0yNDA5MjIxMDIwMDBaMBgxFjAUBgNV BAMTDTY2ZTZiNGQwLTI5ZGQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC+lM89QR5lUPt1zNTphx4cLucdAJ3ktwwi1+aXEFL2zeDNHTBhfOuUBh0q0su5 BuE8FTjd36HvlbJyX9sm05TA/EfKm7+15KtjjiNYXR2swDQ20tVlYzOOCU0F0izU j4iLY47c+XKQoXjuuSFngdudMCxHnNs+Oeqc11GT0pGLFyHZ5vXnkEIUNR18iKnY DFnbRstNwqA9ihv9/CKf9lUyvKnek75vSMt9rcNyabpSBADwmuWFm7SaGh8hukJo ah+A2S/3ggu5o/X0PqoqgivGELjyzoaxmJuGPz+Itx82XkyEdAAngYAQ4UxyZQsV z9hIZk9Y35NoTQr03ylOob3bAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUt/O+dEde xXTM40tmP2/FXTWB1McwHwYDVR0jBBgwFoAUZva4RKn4Ca4wexuc7kv9R8PHdxsw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUIzOTFGLzU4REI4N0YyNDU3 MDExRUY5QzhCOEU3MUM0RjlBRTAyL1p2YTRSS240Q2E0d2V4dWM3a3Y5UjhQSGR4 cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvWnZhNFJLbjRDYTR3ZXh1YzdrdjlSOFBIZHhzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUIz OTFGLzU4REI4N0YyNDU3MDExRUY5QzhCOEU3MUM0RjlBRTAyL1p2YTRSS240Q2E0 d2V4dWM3a3Y5UjhQSGR4cy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAML75U0AQFOxnYSn61DtPGWaqWF3oexqWCdZ6NVEwP0kYGFwmq+J/Y9k KjPa5DMi4HM0VZq0V187s3sTUFzd0eY8i73rEQW1K1Sd1Z7apC7hzoQq2mjXkIuG YFzOzfKf0mNMw4TOw5hAeTpC5q8ADjGeSJmJzHQZETwIAP4wJvIAjqBsWC0FF9Cy n+gMIh0Z2DRw4155jtqGUiDAVgQo4mqUI/5t3FRYIbQM4r0W6uduP99PzGzbAjLf w1uXOBE6Fm/dU43xy9ZsrGaQTTFxjIRWm1eVID8/xeaxhjmdoReT7mxWpqkWGJl9 SpUhfxylDuzjSU7+Rq4FifiJxpwRSW0= -----END CERTIFICATE-----Generated at Sun Sep 15 13:42:44 2024 by rpki-client on console-fra.rpki-client.org