$ rpki-client -vvf rpki.apnic.net/member_repository/A91BD4DF/310D3542399311EFA08D2E1BC4F9AE02/o222tflxI3VeVEH6xWqmu6BbCAo.mft File: o222tflxI3VeVEH6xWqmu6BbCAo.mft (raw, json) Hash identifier: VNsZW6y1J0uSLqX0J3M/6zQIikkPJIzadqeMmPLBlGA= Subject key identifier: 36:5C:20:0D:3C:7A:A8:9B:E9:F4:B1:CF:EF:48:08:C8:D4:1B:71:14 Authority key identifier: A3:6D:B6:B5:F9:71:23:75:5E:54:41:FA:C5:6A:A6:BB:A0:5B:08:0A Certificate issuer: /CN=A91BD4DF/serialNumber=A36DB6B5F97123755E5441FAC56AA6BBA05B080A Certificate serial: 2C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o222tflxI3VeVEH6xWqmu6BbCAo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BD4DF/310D3542399311EFA08D2E1BC4F9AE02/o222tflxI3VeVEH6xWqmu6BbCAo.mft Manifest number: 2A Signing time: Sun 15 Sep 2024 10:12:53 +0000 Manifest this update: Sun 15 Sep 2024 10:12:53 +0000 Manifest next update: Sun 22 Sep 2024 10:12:53 +0000 Files and hashes: 1: o222tflxI3VeVEH6xWqmu6BbCAo.crl (hash: eUcBJONiT8IVes1z1clYiRPgYGPyyyNbr37u1jQ/dUM=) 2: 4136642C39AA11EF933F9583C4F9AE02.roa (hash: sUP25TQ/KdT/7AtskmzQ7yncQkdS/sqA5Ond/xRIO3Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BD4DF/310D3542399311EFA08D2E1BC4F9AE02/o222tflxI3VeVEH6xWqmu6BbCAo.crl rsync://rpki.apnic.net/member_repository/A91BD4DF/310D3542399311EFA08D2E1BC4F9AE02/o222tflxI3VeVEH6xWqmu6BbCAo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o222tflxI3VeVEH6xWqmu6BbCAo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 22 Sep 2024 02:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 44 (0x2c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BD4DF/serialNumber=A36DB6B5F97123755E5441FAC56AA6BBA05B080A Validity Not Before: Sep 15 10:12:53 2024 GMT Not After : Sep 22 10:12:53 2024 GMT Subject: CN=66e6b325-f722 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:0b:b2:e8:1c:5c:5b:93:d6:2f:dd:66:29:d8: 43:78:6a:59:52:71:d7:b3:1f:03:9e:2c:fd:b7:ce: 3c:00:6a:2a:c4:92:1f:f5:3e:a4:2a:7d:4b:2f:a4: 33:53:84:70:0d:f7:14:34:b5:b1:39:2c:9c:40:2d: 47:33:92:95:27:22:46:51:ca:9d:7b:08:84:c6:5b: dc:e6:55:00:70:94:73:d9:1c:cd:15:83:ec:43:96: 4b:d8:de:33:ff:c9:61:1a:5e:2a:fe:e5:5a:27:26: 66:4a:74:a5:48:e1:45:d0:f7:6d:47:62:95:e6:e7: fc:7b:fd:0a:dd:1c:e5:39:72:21:1e:1e:05:55:fb: df:0e:9e:da:6a:36:86:35:7d:b4:70:3a:54:50:23: 13:1f:4f:9c:7a:f2:83:eb:79:16:fb:02:a9:f7:a8: 26:c8:c0:b6:38:de:57:8c:3a:f8:2f:9b:c6:52:9f: 86:4d:08:ea:d2:64:f0:8f:44:0b:26:eb:92:4f:78: a1:89:b9:f2:23:8b:38:e3:4d:a1:8b:8d:ea:ee:7e: 4c:57:d0:03:9f:4a:92:a6:f3:f2:5c:a6:a9:02:3b: 01:70:7e:0a:b4:2c:a4:bb:a7:6d:3f:23:26:87:1e: 51:56:78:75:f2:65:f5:53:cb:1d:e8:09:17:ef:ea: 8a:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:5C:20:0D:3C:7A:A8:9B:E9:F4:B1:CF:EF:48:08:C8:D4:1B:71:14 X509v3 Authority Key Identifier: keyid:A3:6D:B6:B5:F9:71:23:75:5E:54:41:FA:C5:6A:A6:BB:A0:5B:08:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BD4DF/310D3542399311EFA08D2E1BC4F9AE02/o222tflxI3VeVEH6xWqmu6BbCAo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o222tflxI3VeVEH6xWqmu6BbCAo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BD4DF/310D3542399311EFA08D2E1BC4F9AE02/o222tflxI3VeVEH6xWqmu6BbCAo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 88:a4:32:96:fe:82:1e:20:44:27:bf:02:9c:a0:5e:92:f5:6e: 8e:a2:a5:2e:27:ee:33:61:2d:f5:c2:50:a3:fd:b0:13:9a:2d: 41:fc:a6:40:ae:67:33:58:20:10:c9:a9:d9:0c:ce:9a:d8:8a: db:d5:13:23:d5:7e:c2:bb:c6:c0:e2:26:85:ca:47:01:ac:7a: b1:71:76:b6:a9:bb:c2:2c:54:41:95:45:ed:45:2c:1a:a6:76: e4:13:49:50:03:6d:d7:fa:4d:81:0f:2d:d1:17:9b:e4:4a:6c: 23:18:39:2e:2d:07:1e:d0:68:4c:41:59:33:8e:b6:ab:b0:10: 15:a6:99:38:6e:31:dd:8a:0f:86:0e:66:1b:f2:9c:6a:26:39: f8:a5:1f:2e:26:71:61:56:c5:81:ec:8d:19:92:99:06:5f:44: b3:12:b0:a9:64:6c:4d:12:19:ed:19:7e:f8:f2:58:3a:f2:ec: a7:ee:2e:06:9a:fa:aa:15:cd:82:d8:6d:62:26:b3:18:80:7f: 09:10:85:9c:c8:9b:7a:c9:6d:55:3b:a6:f0:a8:e4:ee:79:2b: 49:26:6f:67:e7:a7:f5:13:6c:f8:2e:cb:21:9d:26:66:ac:45: f5:9f:e7:80:0e:5f:51:ee:3f:5b:32:6f:ff:8a:67:c5:d9:f3: 2d:44:81:70 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBLDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC RDRERjExMC8GA1UEBRMoQTM2REI2QjVGOTcxMjM3NTVFNTQ0MUZBQzU2QUE2QkJB MDVCMDgwQTAeFw0yNDA5MTUxMDEyNTNaFw0yNDA5MjIxMDEyNTNaMBgxFjAUBgNV BAMTDTY2ZTZiMzI1LWY3MjIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCfC7LoHFxbk9Yv3WYp2EN4allScdezHwOeLP23zjwAairEkh/1PqQqfUsvpDNT hHAN9xQ0tbE5LJxALUczkpUnIkZRyp17CITGW9zmVQBwlHPZHM0Vg+xDlkvY3jP/ yWEaXir+5VonJmZKdKVI4UXQ921HYpXm5/x7/QrdHOU5ciEeHgVV+98OntpqNoY1 fbRwOlRQIxMfT5x68oPreRb7Aqn3qCbIwLY43leMOvgvm8ZSn4ZNCOrSZPCPRAsm 65JPeKGJufIjizjjTaGLjerufkxX0AOfSpKm8/JcpqkCOwFwfgq0LKS7p20/IyaH HlFWeHXyZfVTyx3oCRfv6orfAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUNlwgDTx6 qJvp9LHP70gIyNQbcRQwHwYDVR0jBBgwFoAUo222tflxI3VeVEH6xWqmu6BbCAow DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUJENERGLzMxMEQzNTQyMzk5 MzExRUZBMDhEMkUxQkM0RjlBRTAyL28yMjJ0Zmx4STNWZVZFSDZ4V3FtdTZCYkNB by5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvbzIyMnRmbHhJM1ZlVkVINnhXcW11NkJiQ0FvLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUJE NERGLzMxMEQzNTQyMzk5MzExRUZBMDhEMkUxQkM0RjlBRTAyL28yMjJ0Zmx4STNW ZVZFSDZ4V3FtdTZCYkNBby5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAIikMpb+gh4gRCe/ApygXpL1bo6ipS4n7jNhLfXCUKP9sBOaLUH8pkCu ZzNYIBDJqdkMzprYitvVEyPVfsK7xsDiJoXKRwGserFxdrapu8IsVEGVRe1FLBqm duQTSVADbdf6TYEPLdEXm+RKbCMYOS4tBx7QaExBWTOOtquwEBWmmThuMd2KD4YO ZhvynGomOfilHy4mcWFWxYHsjRmSmQZfRLMSsKlkbE0SGe0ZfvjyWDry7KfuLgaa +qoVzYLYbWImsxiAfwkQhZzIm3rJbVU7pvCo5O55K0kmb2fnp/UTbPguyyGdJmas RfWf54AOX1HuP1syb/+KZ8XZ8y1EgXA= -----END CERTIFICATE-----Generated at Sun Sep 15 12:30:36 2024 by rpki-client on console-ams.rpki-client.org