$ rpki-client -vvf rpki.apnic.net/member_repository/A91B9AB9/D118C0BC6E8411EFA3CD983FC4F9AE02/OBfP4ApfGsw2O0cvT2nag761ZhM.mft File: OBfP4ApfGsw2O0cvT2nag761ZhM.mft (raw, json) Hash identifier: vy7ofsV0WyK8UI70CkpMsLP8iUVbHD+1cFpoE4Ny9O8= Subject key identifier: E0:9C:87:AF:BF:F5:13:A3:C6:D9:B7:67:3E:83:F9:89:47:AF:39:0F Authority key identifier: 38:17:CF:E0:0A:5F:1A:CC:36:3B:47:2F:4F:69:DA:83:BE:B5:66:13 Certificate issuer: /CN=A91B9AB9/serialNumber=3817CFE00A5F1ACC363B472F4F69DA83BEB56613 Certificate serial: 19 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OBfP4ApfGsw2O0cvT2nag761ZhM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B9AB9/D118C0BC6E8411EFA3CD983FC4F9AE02/OBfP4ApfGsw2O0cvT2nag761ZhM.mft Manifest number: 18 Signing time: Wed 23 Oct 2024 06:37:33 +0000 Manifest this update: Wed 23 Oct 2024 06:37:33 +0000 Manifest next update: Wed 30 Oct 2024 06:37:33 +0000 Files and hashes: 1: OBfP4ApfGsw2O0cvT2nag761ZhM.crl (hash: vaTje2LRzEtfBxsPsCGVeiz77xNk8cTB1pCVEFc6xYw=) 2: A06AB21E6E8811EF95434073C4F9AE02.roa (hash: vppFtWXOaW/ZHVpNFmtwJ9lUk75Frb5HKq6ZQsHZOpc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B9AB9/D118C0BC6E8411EFA3CD983FC4F9AE02/OBfP4ApfGsw2O0cvT2nag761ZhM.crl rsync://rpki.apnic.net/member_repository/A91B9AB9/D118C0BC6E8411EFA3CD983FC4F9AE02/OBfP4ApfGsw2O0cvT2nag761ZhM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OBfP4ApfGsw2O0cvT2nag761ZhM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 30 Oct 2024 05:54:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 25 (0x19) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B9AB9/serialNumber=3817CFE00A5F1ACC363B472F4F69DA83BEB56613 Validity Not Before: Oct 23 06:37:33 2024 GMT Not After : Oct 30 06:37:33 2024 GMT Subject: CN=671899ad-bff7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:54:32:d9:ee:3d:f8:18:0b:24:55:c8:a0:b1: 15:f8:c2:18:84:42:8a:3e:a9:f7:c9:af:ef:86:8c: 9b:e8:55:8b:8c:43:89:c1:12:11:5c:92:f1:f7:96: f8:f9:ba:ab:de:3a:96:cd:7c:4e:f3:38:75:bb:0f: c0:61:b6:0e:a6:9f:62:bc:46:fe:46:ee:26:e3:d8: 43:34:10:02:a4:3a:5a:c9:00:c8:98:0a:97:a5:fa: c2:11:22:4e:a4:ac:3f:41:92:92:c8:89:7b:f7:fc: f3:a1:11:a1:05:c3:b7:6d:9e:87:13:09:2d:e3:e9: 2f:54:6f:21:84:6f:94:6b:51:17:fb:c3:dd:0e:bf: 0d:3b:e3:7c:ee:9a:f9:3b:7f:5d:db:d5:1d:81:84: 0b:1a:b9:3a:ca:9b:44:43:34:f4:9d:33:c6:ee:78: 4c:11:2e:b8:ce:18:e2:61:5f:1b:f5:be:0e:f2:95: da:f7:b7:17:64:ab:7c:b1:48:f6:cd:a1:cf:20:08: 4c:7c:98:a8:28:d7:60:51:56:95:26:fe:d3:a1:a8: eb:0d:ac:1b:de:1a:3e:9e:b4:92:fe:5d:da:ea:81: 73:59:e7:22:bc:1d:21:7c:14:50:70:b5:4e:e7:38: 29:90:16:91:ec:b7:8f:02:70:e4:78:dd:df:bd:65: e8:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:9C:87:AF:BF:F5:13:A3:C6:D9:B7:67:3E:83:F9:89:47:AF:39:0F X509v3 Authority Key Identifier: keyid:38:17:CF:E0:0A:5F:1A:CC:36:3B:47:2F:4F:69:DA:83:BE:B5:66:13 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B9AB9/D118C0BC6E8411EFA3CD983FC4F9AE02/OBfP4ApfGsw2O0cvT2nag761ZhM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OBfP4ApfGsw2O0cvT2nag761ZhM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B9AB9/D118C0BC6E8411EFA3CD983FC4F9AE02/OBfP4ApfGsw2O0cvT2nag761ZhM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 22:6b:4f:0c:1b:97:86:5b:6f:ea:05:9a:03:43:06:a1:ec:79: d2:c5:56:b5:3d:26:92:72:21:f9:f5:66:86:7b:a5:0d:0e:4b: e0:13:86:42:5a:93:35:eb:eb:30:7e:7d:bb:56:2e:c8:60:9a: 72:dc:ce:c9:1d:84:60:a8:1b:8e:db:21:3f:8f:2f:2d:c0:5c: 4d:ff:c7:4b:12:fe:33:6a:f4:c7:65:00:48:6b:d5:9b:20:2d: cb:76:17:35:d0:dc:be:6c:fb:a5:93:87:21:7b:03:b8:a0:5a: 2c:a1:3c:05:70:6b:f9:8b:ee:c0:b8:62:1f:11:37:58:44:13: aa:ca:45:f2:61:29:4b:c7:55:58:86:45:47:69:38:2d:fb:d3: e0:e1:6e:46:0a:d9:50:18:ad:23:95:16:b0:87:1d:d0:46:dc: 67:98:24:db:31:63:3c:8e:20:1e:f6:73:d5:0d:aa:e1:89:96: f6:ad:a6:a7:d8:95:98:72:7d:76:7f:93:cd:46:c3:a0:71:56: e7:9c:44:51:6c:61:ed:56:bb:71:4a:4a:1c:36:49:bf:eb:c6: cd:e4:d6:39:c8:bb:4d:c3:74:f8:13:b0:47:1e:3f:17:bf:f4: 82:30:8f:7d:9d:47:5c:86:40:7c:98:f0:b3:f9:d7:33:77:83: 3b:56:31:bc -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBGTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC OUFCOTExMC8GA1UEBRMoMzgxN0NGRTAwQTVGMUFDQzM2M0I0NzJGNEY2OURBODNC RUI1NjYxMzAeFw0yNDEwMjMwNjM3MzNaFw0yNDEwMzAwNjM3MzNaMBgxFjAUBgNV BAMTDTY3MTg5OWFkLWJmZjcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDGVDLZ7j34GAskVcigsRX4whiEQoo+qffJr++GjJvoVYuMQ4nBEhFckvH3lvj5 uqveOpbNfE7zOHW7D8Bhtg6mn2K8Rv5G7ibj2EM0EAKkOlrJAMiYCpel+sIRIk6k rD9BkpLIiXv3/POhEaEFw7dtnocTCS3j6S9UbyGEb5RrURf7w90Ovw0743zumvk7 f13b1R2BhAsauTrKm0RDNPSdM8bueEwRLrjOGOJhXxv1vg7yldr3txdkq3yxSPbN oc8gCEx8mKgo12BRVpUm/tOhqOsNrBveGj6etJL+XdrqgXNZ5yK8HSF8FFBwtU7n OCmQFpHst48CcOR43d+9ZegrAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU4JyHr7/1 E6PG2bdnPoP5iUevOQ8wHwYDVR0jBBgwFoAUOBfP4ApfGsw2O0cvT2nag761ZhMw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUI5QUI5L0QxMThDMEJDNkU4 NDExRUZBM0NEOTgzRkM0RjlBRTAyL09CZlA0QXBmR3N3Mk8wY3ZUMm5hZzc2MVpo TS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvT0JmUDRBcGZHc3cyTzBjdlQybmFnNzYxWmhNLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUI5 QUI5L0QxMThDMEJDNkU4NDExRUZBM0NEOTgzRkM0RjlBRTAyL09CZlA0QXBmR3N3 Mk8wY3ZUMm5hZzc2MVpoTS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBACJrTwwbl4Zbb+oFmgNDBqHsedLFVrU9JpJyIfn1ZoZ7pQ0OS+AThkJa kzXr6zB+fbtWLshgmnLczskdhGCoG47bIT+PLy3AXE3/x0sS/jNq9MdlAEhr1Zsg Lct2FzXQ3L5s+6WThyF7A7igWiyhPAVwa/mL7sC4Yh8RN1hEE6rKRfJhKUvHVViG RUdpOC370+DhbkYK2VAYrSOVFrCHHdBG3GeYJNsxYzyOIB72c9UNquGJlvatpqfY lZhyfXZ/k81Gw6BxVuecRFFsYe1Wu3FKShw2Sb/rxs3k1jnIu03DdPgTsEcePxe/ 9IIwj32dR1yGQHyY8LP51zN3gztWMbw= -----END CERTIFICATE-----Generated at Wed Oct 23 07:33:24 2024 by rpki-client on console-fra.rpki-client.org