$ rpki-client -vvf rpki.apnic.net/member_repository/A91B6C85/28707CBE288611EF8F1FB185C4F9AE02/7TFghH3ErtktjFnRmEZbHL7y3yI.mft File: 7TFghH3ErtktjFnRmEZbHL7y3yI.mft (raw, json) Hash identifier: ljzjKzlU3FwjoBLSRUQ9BnH84aNRuPFjQXlNKCF8joo= Subject key identifier: 43:1A:F0:E1:34:CF:7C:D8:7C:3B:74:28:5D:D8:6D:32:F0:B6:4A:F7 Authority key identifier: ED:31:60:84:7D:C4:AE:D9:2D:8C:59:D1:98:46:5B:1C:BE:F2:DF:22 Certificate issuer: /CN=A91B6C85/serialNumber=ED3160847DC4AED92D8C59D198465B1CBEF2DF22 Certificate serial: 33 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7TFghH3ErtktjFnRmEZbHL7y3yI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B6C85/28707CBE288611EF8F1FB185C4F9AE02/7TFghH3ErtktjFnRmEZbHL7y3yI.mft Manifest number: 33 Signing time: Sun 15 Sep 2024 10:01:58 +0000 Manifest this update: Sun 15 Sep 2024 10:01:57 +0000 Manifest next update: Sun 22 Sep 2024 10:01:57 +0000 Files and hashes: 1: 7TFghH3ErtktjFnRmEZbHL7y3yI.crl (hash: nWXSKLetFJqoIbuID7dIFQfaQdH6GL1mZlZsH5XopLE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B6C85/28707CBE288611EF8F1FB185C4F9AE02/7TFghH3ErtktjFnRmEZbHL7y3yI.crl rsync://rpki.apnic.net/member_repository/A91B6C85/28707CBE288611EF8F1FB185C4F9AE02/7TFghH3ErtktjFnRmEZbHL7y3yI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7TFghH3ErtktjFnRmEZbHL7y3yI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 22 Sep 2024 02:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 51 (0x33) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B6C85/serialNumber=ED3160847DC4AED92D8C59D198465B1CBEF2DF22 Validity Not Before: Sep 15 10:01:57 2024 GMT Not After : Sep 22 10:01:57 2024 GMT Subject: CN=66e6b095-79c6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:c8:64:3b:51:00:f9:0c:09:ca:f1:e0:cc:41: 43:34:d8:9b:99:9a:f8:a4:61:a2:24:55:99:f7:30: fc:da:20:ec:0a:b7:f9:bc:44:ef:9a:7f:c8:12:a7: ec:60:cb:fc:57:f3:25:0d:d1:88:ff:9e:59:9f:d1: 11:50:17:2c:9b:8d:c5:03:e3:c4:ea:ac:c8:de:d2: 98:fb:28:6e:67:a5:cb:50:38:25:15:f8:5d:14:56: b6:d2:4e:7d:be:f8:6e:fb:e7:fa:46:10:ac:09:67: c7:cc:04:18:bc:f0:4f:c2:ec:cb:73:87:19:b0:32: 4f:04:5a:9d:39:b4:13:65:66:03:bf:d4:00:48:ea: c9:82:d3:15:0c:f5:5b:4b:3b:60:9a:de:3d:f4:ad: 8d:c7:e4:7a:5b:88:8d:e1:8f:50:9c:97:d9:5e:64: c2:97:8f:0e:a6:78:ae:49:6b:82:59:36:51:81:c3: 18:08:c3:99:62:30:55:d5:d7:8e:d9:cd:cb:b3:c7: 54:25:89:84:79:95:0e:00:41:05:d3:61:f2:18:ae: 28:2d:bb:d2:60:ac:dc:30:bd:e8:82:8e:52:61:cc: f3:7f:93:c6:61:b8:c6:70:c7:35:15:f6:7f:8b:24: 66:3f:83:d3:84:61:30:3d:97:f0:bc:37:ee:99:87: 5e:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:1A:F0:E1:34:CF:7C:D8:7C:3B:74:28:5D:D8:6D:32:F0:B6:4A:F7 X509v3 Authority Key Identifier: keyid:ED:31:60:84:7D:C4:AE:D9:2D:8C:59:D1:98:46:5B:1C:BE:F2:DF:22 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B6C85/28707CBE288611EF8F1FB185C4F9AE02/7TFghH3ErtktjFnRmEZbHL7y3yI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7TFghH3ErtktjFnRmEZbHL7y3yI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B6C85/28707CBE288611EF8F1FB185C4F9AE02/7TFghH3ErtktjFnRmEZbHL7y3yI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4b:99:72:a6:b2:95:ec:d0:71:ba:aa:92:cb:89:5f:07:78:f8: 46:2a:1e:05:b5:40:4a:39:f8:9a:12:ce:c5:39:ed:5b:7f:e8: 3c:e4:16:cd:54:ec:2b:3c:09:1f:c2:30:f5:03:69:0f:47:ff: 30:b3:cf:33:13:05:a5:66:8e:46:b2:58:e3:66:ce:46:a2:57: 30:0b:94:66:35:d6:f7:a6:d0:da:2e:4f:ff:c5:0a:27:44:bf: e1:5d:4b:3a:e8:30:aa:55:54:3c:31:e2:b1:b7:75:5a:23:42: 1a:a1:45:3b:c9:54:b9:ac:c2:5a:04:53:fe:62:7f:e7:f9:4c: a4:7b:c1:c0:88:3f:a3:74:5f:32:ad:33:3a:84:02:83:eb:72: 50:ef:e0:a6:fc:a9:45:ec:55:c1:f1:5b:f2:7c:8c:be:df:8b: f1:1d:90:47:ac:5a:84:55:a9:7b:dc:28:c4:0a:12:29:0b:5f: 89:91:4e:58:fb:b3:9c:37:1d:ec:a1:06:f1:d9:a6:91:bb:3b: 08:1a:4d:ad:4f:c3:de:db:68:fc:fb:a5:a0:66:5f:e1:e4:80: b3:56:2f:71:4b:b3:87:ae:2c:e5:25:09:b2:3a:33:96:9f:8f: be:c8:0a:68:8d:60:73:f2:83:e9:83:d1:4a:40:ef:73:c4:88: 8a:4f:2b:cb -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBMzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC NkM4NTExMC8GA1UEBRMoRUQzMTYwODQ3REM0QUVEOTJEOEM1OUQxOTg0NjVCMUNC RUYyREYyMjAeFw0yNDA5MTUxMDAxNTdaFw0yNDA5MjIxMDAxNTdaMBgxFjAUBgNV BAMTDTY2ZTZiMDk1LTc5YzYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC8yGQ7UQD5DAnK8eDMQUM02JuZmvikYaIkVZn3MPzaIOwKt/m8RO+af8gSp+xg y/xX8yUN0Yj/nlmf0RFQFyybjcUD48TqrMje0pj7KG5npctQOCUV+F0UVrbSTn2+ +G775/pGEKwJZ8fMBBi88E/C7MtzhxmwMk8EWp05tBNlZgO/1ABI6smC0xUM9VtL O2Ca3j30rY3H5HpbiI3hj1Ccl9leZMKXjw6meK5Ja4JZNlGBwxgIw5liMFXV147Z zcuzx1QliYR5lQ4AQQXTYfIYrigtu9JgrNwwveiCjlJhzPN/k8ZhuMZwxzUV9n+L JGY/g9OEYTA9l/C8N+6Zh17TAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUQxrw4TTP fNh8O3QoXdhtMvC2SvcwHwYDVR0jBBgwFoAU7TFghH3ErtktjFnRmEZbHL7y3yIw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUI2Qzg1LzI4NzA3Q0JFMjg4 NjExRUY4RjFGQjE4NUM0RjlBRTAyLzdURmdoSDNFcnRrdGpGblJtRVpiSEw3eTN5 SS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvN1RGZ2hIM0VydGt0akZuUm1FWmJITDd5M3lJLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUI2 Qzg1LzI4NzA3Q0JFMjg4NjExRUY4RjFGQjE4NUM0RjlBRTAyLzdURmdoSDNFcnRr dGpGblJtRVpiSEw3eTN5SS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAEuZcqaylezQcbqqksuJXwd4+EYqHgW1QEo5+JoSzsU57Vt/6DzkFs1U 7Cs8CR/CMPUDaQ9H/zCzzzMTBaVmjkayWONmzkaiVzALlGY11vem0NouT//FCidE v+FdSzroMKpVVDwx4rG3dVojQhqhRTvJVLmswloEU/5if+f5TKR7wcCIP6N0XzKt MzqEAoPrclDv4Kb8qUXsVcHxW/J8jL7fi/EdkEesWoRVqXvcKMQKEikLX4mRTlj7 s5w3HeyhBvHZppG7OwgaTa1Pw97baPz7paBmX+HkgLNWL3FLs4euLOUlCbI6M5af j77ICmiNYHPyg+mD0UpA73PEiIpPK8s= -----END CERTIFICATE-----Generated at Sun Sep 15 10:45:12 2024 by rpki-client on console-fra.rpki-client.org