$ rpki-client -vvf rpki.apnic.net/member_repository/A91B4873/56A5B2AE38E711EF844B4F65C4F9AE02/bdB1wHDNGUBcCU1NPUvaFjQM7vw.mft File: bdB1wHDNGUBcCU1NPUvaFjQM7vw.mft (raw, json) Hash identifier: 7+vpKPd2lhJ+1b3sGglMEhLEVB4EHj6p9NVue+okdkM= Subject key identifier: C7:77:6C:05:6C:05:E7:F7:8D:B2:9B:15:0F:13:0D:30:24:16:20:87 Authority key identifier: 6D:D0:75:C0:70:CD:19:40:5C:09:4D:4D:3D:4B:DA:16:34:0C:EE:FC Certificate issuer: /CN=A91B4873/serialNumber=6DD075C070CD19405C094D4D3D4BDA16340CEEFC Certificate serial: 37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bdB1wHDNGUBcCU1NPUvaFjQM7vw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B4873/56A5B2AE38E711EF844B4F65C4F9AE02/bdB1wHDNGUBcCU1NPUvaFjQM7vw.mft Manifest number: 37 Signing time: Thu 17 Oct 2024 05:55:32 +0000 Manifest this update: Thu 17 Oct 2024 05:55:31 +0000 Manifest next update: Thu 24 Oct 2024 05:55:31 +0000 Files and hashes: 1: bdB1wHDNGUBcCU1NPUvaFjQM7vw.crl (hash: VoCYNriYBMbEVOvSap//of5EOmTZukW+HBaFViUda1M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B4873/56A5B2AE38E711EF844B4F65C4F9AE02/bdB1wHDNGUBcCU1NPUvaFjQM7vw.crl rsync://rpki.apnic.net/member_repository/A91B4873/56A5B2AE38E711EF844B4F65C4F9AE02/bdB1wHDNGUBcCU1NPUvaFjQM7vw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bdB1wHDNGUBcCU1NPUvaFjQM7vw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 24 Oct 2024 04:45:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 55 (0x37) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B4873/serialNumber=6DD075C070CD19405C094D4D3D4BDA16340CEEFC Validity Not Before: Oct 17 05:55:31 2024 GMT Not After : Oct 24 05:55:31 2024 GMT Subject: CN=6710a6d3-e2d3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:8b:8b:df:3c:7d:21:1a:32:00:10:18:96:13: 5b:32:77:36:4b:97:9f:d0:65:d4:16:1c:08:3b:7d: 3b:7f:ab:ab:81:cb:bd:a3:32:aa:65:13:6f:e5:76: 45:e1:1c:47:7a:d7:e7:1e:06:ba:8e:35:6e:ec:65: 16:78:f0:5b:cf:70:b1:dd:5b:e5:a4:1a:d8:97:e3: 3f:45:ee:30:d6:8b:9e:aa:14:7b:0d:81:67:42:9e: 1a:a1:2d:04:4f:c5:1e:47:b0:23:84:3a:37:8e:cd: a1:af:2c:13:fb:f2:4a:a4:f6:2b:6d:4c:15:8b:d4: 66:b2:dd:f6:18:38:63:5f:eb:86:a7:5c:87:9e:c5: b3:2c:c2:05:b3:b4:85:0c:4a:cc:c7:ac:12:ca:74: ff:05:33:ef:ec:f7:ac:b8:2b:d9:e1:7a:35:85:23: 35:7c:3c:9f:c6:ba:33:e3:05:0a:f1:d2:fe:aa:9e: 32:45:79:ca:46:4c:2a:f4:bb:f6:2c:6d:68:a1:25: f6:6f:78:fb:6e:75:09:a7:21:4a:10:eb:a2:5b:78: 18:64:6d:01:36:8f:9b:b5:7f:dc:e6:a4:7c:7e:59: 73:e8:3c:da:61:00:50:f3:f0:ad:83:e5:19:98:0e: f8:25:ce:b6:79:2c:fe:5c:a5:0d:40:7e:4f:1e:f5: 0f:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:77:6C:05:6C:05:E7:F7:8D:B2:9B:15:0F:13:0D:30:24:16:20:87 X509v3 Authority Key Identifier: keyid:6D:D0:75:C0:70:CD:19:40:5C:09:4D:4D:3D:4B:DA:16:34:0C:EE:FC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B4873/56A5B2AE38E711EF844B4F65C4F9AE02/bdB1wHDNGUBcCU1NPUvaFjQM7vw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bdB1wHDNGUBcCU1NPUvaFjQM7vw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B4873/56A5B2AE38E711EF844B4F65C4F9AE02/bdB1wHDNGUBcCU1NPUvaFjQM7vw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 92:8a:78:63:09:50:96:41:7e:16:8a:4d:dd:aa:3d:7d:16:f9: 73:13:3a:68:08:09:8e:b9:75:00:7e:da:de:08:73:96:43:65: 38:90:79:c4:ce:45:17:5d:da:a3:c9:2e:3e:3a:2c:61:13:9f: bb:80:5a:a9:9d:37:70:c0:74:49:65:db:53:1c:72:22:d2:e9: f2:ff:75:fc:08:00:fb:46:5b:2b:1a:bc:d0:0e:6a:6a:14:26: b9:7c:1e:32:bf:07:10:6e:ec:4f:b4:20:95:fc:3a:43:3d:b8: 16:18:64:b9:2a:15:96:b9:3e:6c:0a:15:98:3e:7e:3a:3b:6e: da:af:c6:32:c7:a3:85:cf:8f:3d:3e:68:b4:52:6a:b7:8a:93: 5f:ae:63:56:c4:bb:ce:dc:5a:a8:31:3e:81:5a:fd:df:79:b8: f4:e9:34:4b:2c:3a:ee:50:f5:64:e0:9c:05:d6:83:15:93:89: b5:b3:60:28:6e:ac:f7:84:3b:3b:bb:74:59:e7:0a:d8:1c:86: 12:b1:87:5f:8b:0d:af:1f:65:cc:63:f0:a5:91:01:4b:f9:1c: f9:7d:c5:61:f0:31:3d:7c:22:de:60:97:7c:99:6d:c7:48:4b: 45:84:d3:7c:9b:a5:60:db:c9:1d:ca:db:8b:eb:f5:73:3b:cd: 45:75:23:54 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBNzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC NDg3MzExMC8GA1UEBRMoNkREMDc1QzA3MENEMTk0MDVDMDk0RDREM0Q0QkRBMTYz NDBDRUVGQzAeFw0yNDEwMTcwNTU1MzFaFw0yNDEwMjQwNTU1MzFaMBgxFjAUBgNV BAMTDTY3MTBhNmQzLWUyZDMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDVi4vfPH0hGjIAEBiWE1sydzZLl5/QZdQWHAg7fTt/q6uBy72jMqplE2/ldkXh HEd61+ceBrqONW7sZRZ48FvPcLHdW+WkGtiX4z9F7jDWi56qFHsNgWdCnhqhLQRP xR5HsCOEOjeOzaGvLBP78kqk9ittTBWL1Gay3fYYOGNf64anXIeexbMswgWztIUM SszHrBLKdP8FM+/s96y4K9nhejWFIzV8PJ/GujPjBQrx0v6qnjJFecpGTCr0u/Ys bWihJfZvePtudQmnIUoQ66JbeBhkbQE2j5u1f9zmpHx+WXPoPNphAFDz8K2D5RmY DvglzrZ5LP5cpQ1Afk8e9Q/vAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUx3dsBWwF 5/eNspsVDxMNMCQWIIcwHwYDVR0jBBgwFoAUbdB1wHDNGUBcCU1NPUvaFjQM7vww DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUI0ODczLzU2QTVCMkFFMzhF NzExRUY4NDRCNEY2NUM0RjlBRTAyL2JkQjF3SEROR1VCY0NVMU5QVXZhRmpRTTd2 dy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvYmRCMXdIRE5HVUJjQ1UxTlBVdmFGalFNN3Z3LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUI0 ODczLzU2QTVCMkFFMzhFNzExRUY4NDRCNEY2NUM0RjlBRTAyL2JkQjF3SEROR1VC Y0NVMU5QVXZhRmpRTTd2dy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAJKKeGMJUJZBfhaKTd2qPX0W+XMTOmgICY65dQB+2t4Ic5ZDZTiQecTO RRdd2qPJLj46LGETn7uAWqmdN3DAdEll21McciLS6fL/dfwIAPtGWysavNAOamoU Jrl8HjK/BxBu7E+0IJX8OkM9uBYYZLkqFZa5PmwKFZg+fjo7btqvxjLHo4XPjz0+ aLRSareKk1+uY1bEu87cWqgxPoFa/d95uPTpNEssOu5Q9WTgnAXWgxWTibWzYChu rPeEOzu7dFnnCtgchhKxh1+LDa8fZcxj8KWRAUv5HPl9xWHwMT18It5gl3yZbcdI S0WE03ybpWDbyR3K24vr9XM7zUV1I1Q= -----END CERTIFICATE-----Generated at Thu Oct 17 06:46:20 2024 by rpki-client on console-fra.rpki-client.org