$ rpki-client -vvf rpki.apnic.net/member_repository/A91BB1F3/4297D05245AE11EFB6237870C4F9AE02/dQ-le1kVZTnLFuVKYKbO21sQ654.mft File: dQ-le1kVZTnLFuVKYKbO21sQ654.mft (raw, json) Hash identifier: ZUsJfGCdmLtrWoR8ooQIqA3TQ0NeXJJ7TuiPI3Sh4iw= Subject key identifier: 0F:E0:65:F6:BA:A0:79:20:6E:43:65:0A:95:9F:F7:37:08:40:C4:66 Authority key identifier: 75:0F:A5:7B:59:15:65:39:CB:16:E5:4A:60:A6:CE:DB:5B:10:EB:9E Certificate issuer: /CN=A91BB1F3/serialNumber=750FA57B59156539CB16E54A60A6CEDB5B10EB9E Certificate serial: 20 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dQ-le1kVZTnLFuVKYKbO21sQ654.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BB1F3/4297D05245AE11EFB6237870C4F9AE02/dQ-le1kVZTnLFuVKYKbO21sQ654.mft Manifest number: 1F Signing time: Sun 15 Sep 2024 10:20:36 +0000 Manifest this update: Sun 15 Sep 2024 10:20:35 +0000 Manifest next update: Sun 22 Sep 2024 10:20:35 +0000 Files and hashes: 1: dQ-le1kVZTnLFuVKYKbO21sQ654.crl (hash: g/emQfqLaSFym/S0tVzJLwtycSd4Yy4F4BhWyxpGtN0=) 2: F9E4E14645AE11EF8870C771C4F9AE02.roa (hash: vqfBcf5vpMBkoptdR186vKEyoOUdk3eFKxuU70CJf2Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BB1F3/4297D05245AE11EFB6237870C4F9AE02/dQ-le1kVZTnLFuVKYKbO21sQ654.crl rsync://rpki.apnic.net/member_repository/A91BB1F3/4297D05245AE11EFB6237870C4F9AE02/dQ-le1kVZTnLFuVKYKbO21sQ654.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dQ-le1kVZTnLFuVKYKbO21sQ654.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 22 Sep 2024 02:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 32 (0x20) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BB1F3/serialNumber=750FA57B59156539CB16E54A60A6CEDB5B10EB9E Validity Not Before: Sep 15 10:20:35 2024 GMT Not After : Sep 22 10:20:35 2024 GMT Subject: CN=66e6b4f4-818a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:58:8c:ff:e3:83:b6:11:03:89:d6:b6:c6:22: 9a:6c:77:21:30:e2:ad:35:ff:47:5a:9f:dc:88:a4: 1b:78:0f:b7:8b:c2:d7:a4:da:3a:07:86:f7:aa:29: 24:bc:36:7c:6a:4e:7d:d0:26:83:3a:83:b7:d0:58: e1:77:4b:5e:87:ea:aa:d6:a7:b5:45:e7:b7:a2:5f: b2:c4:6b:4b:5d:9b:9a:a3:5c:ce:b6:ed:20:a4:a3: e2:dd:89:b5:2d:e9:35:3c:16:e4:a6:79:03:e4:15: ce:16:65:96:7d:72:c5:36:04:17:99:b1:6a:8f:3c: 72:d5:6f:a6:72:f2:4b:76:1e:a3:11:57:29:3f:01: f3:94:3d:e4:8b:24:05:1e:78:12:73:aa:6c:44:68: bc:e3:75:1e:22:d9:42:6b:65:00:8c:c6:5a:99:e2: 26:17:b5:8f:ee:80:9c:76:34:54:ae:64:66:44:46: df:cd:33:d9:34:17:86:0e:ca:69:85:fa:06:4c:a2: 01:89:1b:5c:aa:a6:ef:4f:25:21:5f:f9:cc:79:71: b6:ee:4a:25:e8:73:59:3b:e7:88:50:8b:7e:9a:02: 66:2b:66:ec:f7:6c:8c:83:34:c3:45:b1:07:b6:32: a5:5e:b0:2b:b5:6d:ad:a9:fc:d4:96:17:95:66:72: fb:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:E0:65:F6:BA:A0:79:20:6E:43:65:0A:95:9F:F7:37:08:40:C4:66 X509v3 Authority Key Identifier: keyid:75:0F:A5:7B:59:15:65:39:CB:16:E5:4A:60:A6:CE:DB:5B:10:EB:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BB1F3/4297D05245AE11EFB6237870C4F9AE02/dQ-le1kVZTnLFuVKYKbO21sQ654.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dQ-le1kVZTnLFuVKYKbO21sQ654.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BB1F3/4297D05245AE11EFB6237870C4F9AE02/dQ-le1kVZTnLFuVKYKbO21sQ654.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 74:b0:2e:de:42:9d:e8:5b:65:36:04:65:57:ed:47:58:9d:1d: f6:82:cc:21:84:63:0c:a8:0d:63:bf:bc:62:c7:13:d6:94:f8: b8:23:a7:d9:fc:06:e3:f3:f6:42:57:73:2a:d2:8b:ce:50:4e: f4:f6:ce:74:12:fe:06:65:20:cc:d3:69:cd:d2:70:8d:78:ae: 34:d0:98:13:b0:34:28:50:a5:4f:0f:7b:32:2c:ca:f1:38:21: b4:3e:16:72:e7:6f:41:75:a1:b7:5b:03:32:44:87:f7:fb:b8: a7:21:a3:67:52:f0:46:f5:d7:09:0b:e1:76:e9:b4:a4:7f:ac: 9b:fe:9e:fa:6d:7d:b3:b2:b4:10:88:f6:b7:93:14:e1:35:43: 0c:b9:5c:19:b5:f8:34:cb:32:73:b8:31:de:ae:62:2c:65:dd: 60:ef:5a:85:35:ae:57:ae:7c:77:aa:b2:35:ac:de:f7:42:43: cb:e3:7a:ff:54:a5:05:4c:ee:11:90:e9:03:20:de:e7:7f:80: ff:1c:02:97:17:56:00:95:58:ff:65:8c:c9:ff:0c:3a:74:f4: 9d:4e:64:3b:33:e9:68:d4:96:36:7d:f9:18:93:a2:44:be:2d: 8b:63:49:fd:86:c8:c9:a4:9f:1f:58:0a:3c:1e:0d:d8:55:45: 2e:8b:32:f2 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBIDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC QjFGMzExMC8GA1UEBRMoNzUwRkE1N0I1OTE1NjUzOUNCMTZFNTRBNjBBNkNFREI1 QjEwRUI5RTAeFw0yNDA5MTUxMDIwMzVaFw0yNDA5MjIxMDIwMzVaMBgxFjAUBgNV BAMTDTY2ZTZiNGY0LTgxOGEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCiWIz/44O2EQOJ1rbGIppsdyEw4q01/0dan9yIpBt4D7eLwtek2joHhveqKSS8 NnxqTn3QJoM6g7fQWOF3S16H6qrWp7VF57eiX7LEa0tdm5qjXM627SCko+LdibUt 6TU8FuSmeQPkFc4WZZZ9csU2BBeZsWqPPHLVb6Zy8kt2HqMRVyk/AfOUPeSLJAUe eBJzqmxEaLzjdR4i2UJrZQCMxlqZ4iYXtY/ugJx2NFSuZGZERt/NM9k0F4YOymmF +gZMogGJG1yqpu9PJSFf+cx5cbbuSiXoc1k754hQi36aAmYrZuz3bIyDNMNFsQe2 MqVesCu1ba2p/NSWF5VmcvsxAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUD+Bl9rqg eSBuQ2UKlZ/3NwhAxGYwHwYDVR0jBBgwFoAUdQ+le1kVZTnLFuVKYKbO21sQ654w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUJCMUYzLzQyOTdEMDUyNDVB RTExRUZCNjIzNzg3MEM0RjlBRTAyL2RRLWxlMWtWWlRuTEZ1VktZS2JPMjFzUTY1 NC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvZFEtbGUxa1ZaVG5MRnVWS1lLYk8yMXNRNjU0LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUJC MUYzLzQyOTdEMDUyNDVBRTExRUZCNjIzNzg3MEM0RjlBRTAyL2RRLWxlMWtWWlRu TEZ1VktZS2JPMjFzUTY1NC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAHSwLt5CnehbZTYEZVftR1idHfaCzCGEYwyoDWO/vGLHE9aU+Lgjp9n8 BuPz9kJXcyrSi85QTvT2znQS/gZlIMzTac3ScI14rjTQmBOwNChQpU8PezIsyvE4 IbQ+FnLnb0F1obdbAzJEh/f7uKcho2dS8Eb11wkL4XbptKR/rJv+nvptfbOytBCI 9reTFOE1Qwy5XBm1+DTLMnO4Md6uYixl3WDvWoU1rleufHeqsjWs3vdCQ8vjev9U pQVM7hGQ6QMg3ud/gP8cApcXVgCVWP9ljMn/DDp09J1OZDsz6WjUljZ9+RiTokS+ LYtjSf2GyMmknx9YCjweDdhVRS6LMvI= -----END CERTIFICATE-----Generated at Sun Sep 15 13:42:44 2024 by rpki-client on console-fra.rpki-client.org