$ rpki-client -vvf rpki.apnic.net/member_repository/A91B4873/4E25C8BC38E711EF844B4F65C4F9AE02/5bRMaejecz32GWYFbn5BXsfHDSo.mft File: 5bRMaejecz32GWYFbn5BXsfHDSo.mft (raw, json) Hash identifier: zIQoTStF5Hxxe60q/E6d6C888zAG4weCH9HXtCDudaA= Subject key identifier: FD:1F:2A:CD:C0:61:B4:FB:6A:A3:E3:2A:2E:49:0E:6A:64:25:65:B7 Authority key identifier: E5:B4:4C:69:E8:DE:73:3D:F6:19:66:05:6E:7E:41:5E:C7:C7:0D:2A Certificate issuer: /CN=A91B4873/serialNumber=E5B44C69E8DE733DF61966056E7E415EC7C70D2A Certificate serial: 38 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5bRMaejecz32GWYFbn5BXsfHDSo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B4873/4E25C8BC38E711EF844B4F65C4F9AE02/5bRMaejecz32GWYFbn5BXsfHDSo.mft Manifest number: 37 Signing time: Thu 17 Oct 2024 05:55:34 +0000 Manifest this update: Thu 17 Oct 2024 05:55:33 +0000 Manifest next update: Thu 24 Oct 2024 05:55:33 +0000 Files and hashes: 1: 5bRMaejecz32GWYFbn5BXsfHDSo.crl (hash: S3OnxfgHxqSVIm/s0r8Qm5RTtfI5Z4bm1mKP2QqLyrk=) 2: 01F62A6438F011EF9A82662BC4F9AE02.roa (hash: 6ibBV+FsUpvviGFZhtbUaWu715IOaDD6qWu96emn7VA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B4873/4E25C8BC38E711EF844B4F65C4F9AE02/5bRMaejecz32GWYFbn5BXsfHDSo.crl rsync://rpki.apnic.net/member_repository/A91B4873/4E25C8BC38E711EF844B4F65C4F9AE02/5bRMaejecz32GWYFbn5BXsfHDSo.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5bRMaejecz32GWYFbn5BXsfHDSo.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 24 Oct 2024 03:23:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 56 (0x38) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B4873/serialNumber=E5B44C69E8DE733DF61966056E7E415EC7C70D2A Validity Not Before: Oct 17 05:55:33 2024 GMT Not After : Oct 24 05:55:33 2024 GMT Subject: CN=6710a6d6-3cff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:c0:52:43:4e:33:92:eb:04:44:92:d4:23:b2: 40:3a:fe:15:68:fe:9e:94:ee:83:ee:8b:ba:c5:ae: f3:ed:32:93:8d:30:81:1c:a7:37:af:71:7a:6e:45: 60:25:3c:17:15:e2:e6:8f:8d:2b:ae:56:33:e0:60: a7:8e:f3:10:79:d5:b4:b2:7f:88:ba:2c:c8:31:36: dd:b1:59:3c:3a:07:35:f3:9d:a6:fe:6f:9c:8f:ea: 2f:57:cf:01:89:f9:da:e0:cb:cd:cf:c1:81:61:f1: 0f:53:52:0e:09:dd:d6:a3:1b:a4:bf:07:b8:70:b6: 66:7c:80:95:20:17:3b:38:bb:2b:c4:5d:84:de:81: d4:97:dc:1a:22:6f:ab:76:54:34:6e:b5:98:0a:61: 43:83:f6:23:2b:44:94:25:bb:79:65:f9:b3:06:b4: 73:35:27:86:80:8b:02:06:c1:2e:62:ec:a5:9a:66: bf:e8:c4:c5:04:f5:f1:cc:a6:63:b8:9a:33:df:05: 5a:36:38:6b:47:31:f1:a1:19:ae:14:92:96:ee:66: 91:35:27:bd:1b:e2:93:e2:f9:4c:4a:80:39:3c:bf: 41:98:06:39:e9:8a:77:88:5b:56:e5:b9:cd:44:1c: 7b:fa:86:cb:86:85:b9:7a:17:a9:2b:84:a5:1a:a1: 56:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:1F:2A:CD:C0:61:B4:FB:6A:A3:E3:2A:2E:49:0E:6A:64:25:65:B7 X509v3 Authority Key Identifier: keyid:E5:B4:4C:69:E8:DE:73:3D:F6:19:66:05:6E:7E:41:5E:C7:C7:0D:2A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B4873/4E25C8BC38E711EF844B4F65C4F9AE02/5bRMaejecz32GWYFbn5BXsfHDSo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5bRMaejecz32GWYFbn5BXsfHDSo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B4873/4E25C8BC38E711EF844B4F65C4F9AE02/5bRMaejecz32GWYFbn5BXsfHDSo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d5:08:16:7c:4d:65:f7:ba:6f:ee:84:a9:1a:4c:78:56:0b:74: 4b:31:ee:61:99:67:67:d4:a3:8c:4f:1a:3e:9a:e7:4f:ef:31: 28:43:8f:d9:5c:05:66:6b:cd:9b:87:09:b3:fd:03:c2:e0:f3: 68:3e:a9:bd:9b:6d:8a:64:85:2c:9c:e0:45:e1:81:52:30:4f: ad:7a:9e:47:02:7c:9f:7b:bb:bd:9a:c5:e5:46:5c:bd:d5:2a: 92:ff:5a:08:bd:fd:c8:2e:cc:ec:a9:6e:1f:c9:51:f0:ba:c1: 85:99:0d:15:e0:2a:9d:c2:f1:a9:04:81:70:c0:76:97:fa:62: 73:a7:1d:9a:33:07:fe:46:37:99:79:db:d8:ee:8e:77:f6:66: 8f:9c:f2:77:96:0d:7a:0e:93:75:35:42:01:d5:57:27:c6:26: 87:02:f2:f6:a2:6b:98:47:32:8f:93:c5:0d:d8:af:96:4b:b3: ac:53:65:85:1b:9b:c8:61:ba:c5:03:03:73:80:4c:a9:c9:6e: 39:76:f8:5e:da:10:ed:92:fa:e7:ad:35:51:37:45:1d:1a:59: b4:2a:d3:d7:53:a8:70:75:11:d6:a0:09:01:dc:b6:bc:3e:a9: f2:db:1f:5c:75:b5:77:65:45:af:ad:e0:6f:57:cf:e0:8b:5f: 77:00:7d:32 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBODANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC NDg3MzExMC8GA1UEBRMoRTVCNDRDNjlFOERFNzMzREY2MTk2NjA1NkU3RTQxNUVD N0M3MEQyQTAeFw0yNDEwMTcwNTU1MzNaFw0yNDEwMjQwNTU1MzNaMBgxFjAUBgNV BAMTDTY3MTBhNmQ2LTNjZmYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDJwFJDTjOS6wREktQjskA6/hVo/p6U7oPui7rFrvPtMpONMIEcpzevcXpuRWAl PBcV4uaPjSuuVjPgYKeO8xB51bSyf4i6LMgxNt2xWTw6BzXznab+b5yP6i9XzwGJ +drgy83PwYFh8Q9TUg4J3dajG6S/B7hwtmZ8gJUgFzs4uyvEXYTegdSX3Boib6t2 VDRutZgKYUOD9iMrRJQlu3ll+bMGtHM1J4aAiwIGwS5i7KWaZr/oxMUE9fHMpmO4 mjPfBVo2OGtHMfGhGa4UkpbuZpE1J70b4pPi+UxKgDk8v0GYBjnpineIW1bluc1E HHv6hsuGhbl6F6krhKUaoVanAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU/R8qzcBh tPtqo+MqLkkOamQlZbcwHwYDVR0jBBgwFoAU5bRMaejecz32GWYFbn5BXsfHDSow DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUI0ODczLzRFMjVDOEJDMzhF NzExRUY4NDRCNEY2NUM0RjlBRTAyLzViUk1hZWplY3ozMkdXWUZibjVCWHNmSERT by5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvNWJSTWFlamVjejMyR1dZRmJuNUJYc2ZIRFNvLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUI0 ODczLzRFMjVDOEJDMzhFNzExRUY4NDRCNEY2NUM0RjlBRTAyLzViUk1hZWplY3oz MkdXWUZibjVCWHNmSERTby5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBANUIFnxNZfe6b+6EqRpMeFYLdEsx7mGZZ2fUo4xPGj6a50/vMShDj9lc BWZrzZuHCbP9A8Lg82g+qb2bbYpkhSyc4EXhgVIwT616nkcCfJ97u72axeVGXL3V KpL/Wgi9/cguzOypbh/JUfC6wYWZDRXgKp3C8akEgXDAdpf6YnOnHZozB/5GN5l5 29jujnf2Zo+c8neWDXoOk3U1QgHVVyfGJocC8vaia5hHMo+TxQ3Yr5ZLs6xTZYUb m8hhusUDA3OATKnJbjl2+F7aEO2S+uetNVE3RR0aWbQq09dTqHB1EdagCQHctrw+ qfLbH1x1tXdlRa+t4G9Xz+CLX3cAfTI= -----END CERTIFICATE-----Generated at Thu Oct 17 06:46:20 2024 by rpki-client on console-fra.rpki-client.org