$ rpki-client -vvf rpki.apnic.net/member_repository/A91B74D6/DE22AD240CDF11EF9484E62AC4F9AE02/d0ZKhG930cTTZqMGuAaTn88qYBo.mft File: d0ZKhG930cTTZqMGuAaTn88qYBo.mft (raw, json) Hash identifier: MpOZPPktsy/xeOJ/0+pfgx3ozgHIp18W7n9ROVwiiGk= Subject key identifier: DF:C9:88:AC:C4:61:1A:BA:AF:47:CD:25:22:BA:D2:6D:84:4B:87:EA Authority key identifier: 77:46:4A:84:6F:77:D1:C4:D3:66:A3:06:B8:06:93:9F:CF:2A:60:1A Certificate issuer: /CN=A91B74D6/serialNumber=77464A846F77D1C4D366A306B806939FCF2A601A Certificate serial: 4C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d0ZKhG930cTTZqMGuAaTn88qYBo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B74D6/DE22AD240CDF11EF9484E62AC4F9AE02/d0ZKhG930cTTZqMGuAaTn88qYBo.mft Manifest number: 48 Signing time: Sun 15 Sep 2024 09:46:01 +0000 Manifest this update: Sun 15 Sep 2024 09:46:01 +0000 Manifest next update: Sun 22 Sep 2024 09:46:01 +0000 Files and hashes: 1: d0ZKhG930cTTZqMGuAaTn88qYBo.crl (hash: tvg0Io/DBz4if4dt83NUErXDR78m2DYMmLCFi8VzO4k=) 2: ABD84FB00F8A11EF943CC917C4F9AE02.roa (hash: SsqVWQrP6NriT2uAXzIfe2PGot7xTterYlocdHiampI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B74D6/DE22AD240CDF11EF9484E62AC4F9AE02/d0ZKhG930cTTZqMGuAaTn88qYBo.crl rsync://rpki.apnic.net/member_repository/A91B74D6/DE22AD240CDF11EF9484E62AC4F9AE02/d0ZKhG930cTTZqMGuAaTn88qYBo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d0ZKhG930cTTZqMGuAaTn88qYBo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 22 Sep 2024 02:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 76 (0x4c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B74D6/serialNumber=77464A846F77D1C4D366A306B806939FCF2A601A Validity Not Before: Sep 15 09:46:01 2024 GMT Not After : Sep 22 09:46:01 2024 GMT Subject: CN=66e6acd9-0304 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:ea:02:38:42:91:7d:e4:9c:24:e6:50:8a:52: 5a:00:88:ab:b8:f1:3c:3d:9b:da:21:fa:1c:b8:06: 30:aa:23:db:19:c8:fb:1a:79:ed:32:e2:c5:ea:b1: f4:12:e5:70:25:4f:6e:37:04:b5:a4:17:dd:95:cc: f6:14:2d:5b:d4:02:55:49:f3:1e:d7:cd:13:ee:c4: 52:03:c6:79:f6:7f:c0:a2:8f:4c:7c:1c:6e:4b:f6: 6a:a0:f0:4c:1b:56:c4:7b:91:fb:b0:f8:a9:cf:74: 2d:be:6b:90:b1:30:83:c8:0c:b8:02:ff:fe:a4:e0: be:1e:39:eb:2f:4f:28:b1:b0:32:48:9f:cd:33:20: 4f:47:38:23:f6:f0:c5:12:54:e0:e3:22:bf:3a:d4: 4c:13:d2:1a:e0:0a:ab:17:d4:a2:62:a3:42:8d:34: f3:1a:ce:5a:4f:6c:3f:c5:90:63:cb:52:35:2a:bb: c7:01:8b:26:cc:56:6d:72:ab:20:3f:cd:af:35:b5: 64:4d:1b:85:4f:79:7a:36:12:dc:b0:ba:e0:c0:d5: 68:89:ff:ea:ab:24:97:86:e9:9d:0e:a6:57:29:55: 47:84:de:68:7b:b7:ce:dd:f8:f1:97:91:7d:cf:20: d8:21:3d:3f:15:95:c0:fe:80:74:6e:7c:01:a3:a9: 91:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:C9:88:AC:C4:61:1A:BA:AF:47:CD:25:22:BA:D2:6D:84:4B:87:EA X509v3 Authority Key Identifier: keyid:77:46:4A:84:6F:77:D1:C4:D3:66:A3:06:B8:06:93:9F:CF:2A:60:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B74D6/DE22AD240CDF11EF9484E62AC4F9AE02/d0ZKhG930cTTZqMGuAaTn88qYBo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d0ZKhG930cTTZqMGuAaTn88qYBo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B74D6/DE22AD240CDF11EF9484E62AC4F9AE02/d0ZKhG930cTTZqMGuAaTn88qYBo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 65:c0:9c:71:c6:4c:af:d7:fd:5e:6e:f6:5d:8f:b2:fe:f1:25: 03:29:62:fb:ec:c8:ff:63:52:81:2d:ef:94:dc:e2:b5:13:80: 82:c1:18:9a:27:f0:5e:9a:4b:85:88:57:f3:7f:74:a7:2c:e2: 89:51:5b:8b:de:0f:38:99:e8:75:89:c2:0e:32:ff:c6:0d:72: b2:7b:48:c5:a2:43:60:3e:97:d0:a1:44:04:b4:16:f2:04:c4: 72:3c:04:78:51:0f:c5:80:09:97:0f:cb:47:84:ba:a2:6e:b4: e5:af:e1:f1:2b:e3:f0:62:da:17:cc:f0:0d:f9:d9:d0:83:5e: 88:96:34:c0:03:00:19:ab:df:15:d1:fc:1b:bf:c9:df:29:b7: 29:e6:e2:76:d7:6a:d5:73:1d:e2:8d:7e:5b:ba:01:ff:9e:ec: 12:42:26:5e:c8:0a:47:3a:cb:ff:89:3b:01:3e:75:a4:bd:88: 48:ea:72:42:6d:3d:39:bc:ea:55:05:ad:de:78:d8:b5:6d:09: ec:dd:58:9f:df:f1:62:1a:88:77:83:af:b0:43:cc:15:5e:be: 87:c9:a3:8c:8a:b8:1b:29:1e:45:b1:8b:31:cf:c0:86:72:1d: a3:65:76:8a:1c:16:5c:e7:f4:19:08:e8:47:7a:b2:0a:d6:0f: 4f:29:39:60 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBTDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC NzRENjExMC8GA1UEBRMoNzc0NjRBODQ2Rjc3RDFDNEQzNjZBMzA2QjgwNjkzOUZD RjJBNjAxQTAeFw0yNDA5MTUwOTQ2MDFaFw0yNDA5MjIwOTQ2MDFaMBgxFjAUBgNV BAMTDTY2ZTZhY2Q5LTAzMDQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDh6gI4QpF95Jwk5lCKUloAiKu48Tw9m9oh+hy4BjCqI9sZyPsaee0y4sXqsfQS 5XAlT243BLWkF92VzPYULVvUAlVJ8x7XzRPuxFIDxnn2f8Cij0x8HG5L9mqg8Ewb VsR7kfuw+KnPdC2+a5CxMIPIDLgC//6k4L4eOesvTyixsDJIn80zIE9HOCP28MUS VODjIr861EwT0hrgCqsX1KJio0KNNPMazlpPbD/FkGPLUjUqu8cBiybMVm1yqyA/ za81tWRNG4VPeXo2EtywuuDA1WiJ/+qrJJeG6Z0OplcpVUeE3mh7t87d+PGXkX3P INghPT8VlcD+gHRufAGjqZG7AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU38mIrMRh GrqvR80lIrrSbYRLh+owHwYDVR0jBBgwFoAUd0ZKhG930cTTZqMGuAaTn88qYBow DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUI3NEQ2L0RFMjJBRDI0MENE RjExRUY5NDg0RTYyQUM0RjlBRTAyL2QwWktoRzkzMGNUVFpxTUd1QWFUbjg4cVlC by5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvZDBaS2hHOTMwY1RUWnFNR3VBYVRuODhxWUJvLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUI3 NEQ2L0RFMjJBRDI0MENERjExRUY5NDg0RTYyQUM0RjlBRTAyL2QwWktoRzkzMGNU VFpxTUd1QWFUbjg4cVlCby5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAGXAnHHGTK/X/V5u9l2Psv7xJQMpYvvsyP9jUoEt75Tc4rUTgILBGJon 8F6aS4WIV/N/dKcs4olRW4veDziZ6HWJwg4y/8YNcrJ7SMWiQ2A+l9ChRAS0FvIE xHI8BHhRD8WACZcPy0eEuqJutOWv4fEr4/Bi2hfM8A352dCDXoiWNMADABmr3xXR /Bu/yd8ptynm4nbXatVzHeKNflu6Af+e7BJCJl7ICkc6y/+JOwE+daS9iEjqckJt PTm86lUFrd542LVtCezdWJ/f8WIaiHeDr7BDzBVevofJo4yKuBspHkWxizHPwIZy HaNldoocFlzn9BkI6Ed6sgrWD08pOWA= -----END CERTIFICATE-----Generated at Sun Sep 15 10:46:24 2024 by rpki-client on console-ams.rpki-client.org