$ rpki-client -vvf rpki.apnic.net/member_repository/A91B9790/71805BAC5AE211EFAEB0312EC4F9AE02/iUKJrUDufmJvXNgvzsVAbbkeHnE.mft File: iUKJrUDufmJvXNgvzsVAbbkeHnE.mft (raw, json) Hash identifier: ggdNMS/TExorXhxUl/JI/PWEYK26G7dpTZFiZSXSbL8= Subject key identifier: CC:2B:74:1E:6D:86:C3:42:01:81:74:9A:B4:C3:48:6F:76:03:04:A8 Authority key identifier: 89:42:89:AD:40:EE:7E:62:6F:5C:D8:2F:CE:C5:40:6D:B9:1E:1E:71 Certificate issuer: /CN=A91B9790/serialNumber=894289AD40EE7E626F5CD82FCEC5406DB91E1E71 Certificate serial: 1A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iUKJrUDufmJvXNgvzsVAbbkeHnE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B9790/71805BAC5AE211EFAEB0312EC4F9AE02/iUKJrUDufmJvXNgvzsVAbbkeHnE.mft Manifest number: 17 Signing time: Thu 19 Sep 2024 06:17:08 +0000 Manifest this update: Thu 19 Sep 2024 06:17:08 +0000 Manifest next update: Thu 26 Sep 2024 06:17:08 +0000 Files and hashes: 1: iUKJrUDufmJvXNgvzsVAbbkeHnE.crl (hash: tWyHSOfKCD/IbQhy1oF0/Nq5fG5e+zFQBKTv9VaUjYw=) 2: B1CB71925DDF11EF8DBEED1FC4F9AE02.roa (hash: HSMhV9B6fnrXUJjpIZM4gDs/Fg5+cHbZVi57IqRBjEU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B9790/71805BAC5AE211EFAEB0312EC4F9AE02/iUKJrUDufmJvXNgvzsVAbbkeHnE.crl rsync://rpki.apnic.net/member_repository/A91B9790/71805BAC5AE211EFAEB0312EC4F9AE02/iUKJrUDufmJvXNgvzsVAbbkeHnE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iUKJrUDufmJvXNgvzsVAbbkeHnE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 26 Sep 2024 06:11:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 26 (0x1a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B9790/serialNumber=894289AD40EE7E626F5CD82FCEC5406DB91E1E71 Validity Not Before: Sep 19 06:17:08 2024 GMT Not After : Sep 26 06:17:08 2024 GMT Subject: CN=66ebc1e4-4bf2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:e5:bb:b7:14:c7:ba:b1:91:16:29:24:b6:ce: 31:8b:38:c7:66:7d:9e:c8:72:9a:70:d2:bc:17:27: 5e:03:c9:6d:80:79:c1:58:79:b8:82:a8:85:93:91: 0d:c5:3d:3d:64:e6:5e:61:fe:ab:b8:89:5e:05:2a: a9:7e:18:57:75:a3:b8:d7:a8:e9:d6:4a:76:40:21: ca:00:d9:7d:cd:15:cf:62:ee:60:b9:e6:99:a5:ce: e5:a9:45:6d:0d:77:76:1f:98:00:13:45:3e:87:21: d4:02:ae:70:f2:b5:7b:8f:df:87:30:31:a6:2d:ab: 5f:3e:61:04:3b:d6:0b:07:57:ec:c8:27:d7:b7:97: a7:e0:d6:46:48:2f:0b:c8:51:30:b8:b5:da:7e:d9: 6f:12:6a:a5:8a:4e:66:f5:68:36:3e:d7:3a:e6:3f: 01:ab:66:66:2f:8e:f0:22:cb:d6:3a:d8:da:9a:f6: 31:d0:eb:41:47:e9:b3:97:d5:a7:27:0c:4c:e4:b2: c5:35:85:60:fc:79:77:9f:fc:7b:b4:12:aa:e7:c9: c7:ca:32:da:2d:1a:d9:74:8d:72:c2:5c:da:9d:f0: b7:b3:32:78:04:90:1a:78:a7:7e:45:4f:e7:d6:c5: 6b:5c:87:31:04:b3:c5:dc:85:34:41:05:29:48:db: 31:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:2B:74:1E:6D:86:C3:42:01:81:74:9A:B4:C3:48:6F:76:03:04:A8 X509v3 Authority Key Identifier: keyid:89:42:89:AD:40:EE:7E:62:6F:5C:D8:2F:CE:C5:40:6D:B9:1E:1E:71 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B9790/71805BAC5AE211EFAEB0312EC4F9AE02/iUKJrUDufmJvXNgvzsVAbbkeHnE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iUKJrUDufmJvXNgvzsVAbbkeHnE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B9790/71805BAC5AE211EFAEB0312EC4F9AE02/iUKJrUDufmJvXNgvzsVAbbkeHnE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bd:d4:95:89:e4:a7:32:dd:48:cd:ab:aa:11:e9:1a:e2:3b:84: de:3f:99:1d:8b:91:29:75:97:a7:0b:e2:22:68:c2:f2:98:a9: 44:07:e5:b5:a3:96:dc:73:bd:a5:17:7d:79:6d:42:64:5f:e5: 92:92:2a:05:46:87:60:c4:07:24:cc:f8:ef:ea:b6:8a:4a:bc: d0:86:0e:0f:6a:9e:bf:e4:58:df:f8:1c:23:d0:57:21:ba:8c: 50:a8:3e:a1:9b:7a:da:04:f6:5d:37:ab:6c:ab:9e:4e:76:18: 1f:a5:33:d7:b6:93:34:ce:47:ca:19:28:ea:53:67:af:12:a2: 88:04:88:93:0b:ea:36:46:5d:c9:43:db:83:b4:55:33:a6:d2: 0b:28:75:28:14:fb:c7:6b:5b:3e:27:63:16:9a:e7:3c:52:3e: b2:f6:57:a0:54:3e:18:5c:0b:3f:51:c9:93:b2:a6:01:e6:a0: b2:66:04:5a:ed:13:13:98:09:7f:f8:2e:63:22:63:a0:42:30: 60:0a:3e:ef:f0:73:de:ec:c9:fd:41:9e:6c:3d:4e:b5:af:25: 96:57:c6:25:39:2a:20:69:ec:01:53:71:28:bf:3d:ab:56:2e: a3:ae:27:a7:9a:67:4e:5f:31:ef:da:dd:2e:0f:54:f8:47:ad: 82:dd:99:95 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBGjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC OTc5MDExMC8GA1UEBRMoODk0Mjg5QUQ0MEVFN0U2MjZGNUNEODJGQ0VDNTQwNkRC OTFFMUU3MTAeFw0yNDA5MTkwNjE3MDhaFw0yNDA5MjYwNjE3MDhaMBgxFjAUBgNV BAMTDTY2ZWJjMWU0LTRiZjIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDW5bu3FMe6sZEWKSS2zjGLOMdmfZ7Icppw0rwXJ14DyW2AecFYebiCqIWTkQ3F PT1k5l5h/qu4iV4FKql+GFd1o7jXqOnWSnZAIcoA2X3NFc9i7mC55pmlzuWpRW0N d3YfmAATRT6HIdQCrnDytXuP34cwMaYtq18+YQQ71gsHV+zIJ9e3l6fg1kZILwvI UTC4tdp+2W8SaqWKTmb1aDY+1zrmPwGrZmYvjvAiy9Y62Nqa9jHQ60FH6bOX1acn DEzkssU1hWD8eXef/Hu0EqrnycfKMtotGtl0jXLCXNqd8LezMngEkBp4p35FT+fW xWtchzEEs8XchTRBBSlI2zHDAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUzCt0Hm2G w0IBgXSatMNIb3YDBKgwHwYDVR0jBBgwFoAUiUKJrUDufmJvXNgvzsVAbbkeHnEw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUI5NzkwLzcxODA1QkFDNUFF MjExRUZBRUIwMzEyRUM0RjlBRTAyL2lVS0pyVUR1Zm1KdlhOZ3Z6c1ZBYmJrZUhu RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvaVVLSnJVRHVmbUp2WE5ndnpzVkFiYmtlSG5FLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUI5 NzkwLzcxODA1QkFDNUFFMjExRUZBRUIwMzEyRUM0RjlBRTAyL2lVS0pyVUR1Zm1K dlhOZ3Z6c1ZBYmJrZUhuRS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAL3UlYnkpzLdSM2rqhHpGuI7hN4/mR2LkSl1l6cL4iJowvKYqUQH5bWj ltxzvaUXfXltQmRf5ZKSKgVGh2DEByTM+O/qtopKvNCGDg9qnr/kWN/4HCPQVyG6 jFCoPqGbetoE9l03q2yrnk52GB+lM9e2kzTOR8oZKOpTZ68SoogEiJML6jZGXclD 24O0VTOm0gsodSgU+8drWz4nYxaa5zxSPrL2V6BUPhhcCz9RyZOypgHmoLJmBFrt ExOYCX/4LmMiY6BCMGAKPu/wc97syf1Bnmw9TrWvJZZXxiU5KiBp7AFTcSi/PatW LqOuJ6eaZ05fMe/a3S4PVPhHrYLdmZU= -----END CERTIFICATE-----Generated at Thu Sep 19 08:57:52 2024 by rpki-client on console-ams.rpki-client.org