$ rpki-client -vvf rpki.apnic.net/member_repository/A91C37DD/24855D80096511EFA4BCE87AC4F9AE02/P-OuNVqSd7kdc-KsUvU4fwlfGJo.mft File: P-OuNVqSd7kdc-KsUvU4fwlfGJo.mft (raw, json) Hash identifier: op57/YWQ5mVDBqE/kSK+kCZ0JBGAfOlWgu35jwOOwzw= Subject key identifier: C2:F4:54:68:11:F7:48:AE:15:1D:54:22:E0:FC:91:F4:23:3F:62:80 Authority key identifier: 3F:E3:AE:35:5A:92:77:B9:1D:73:E2:AC:52:F5:38:7F:09:5F:18:9A Certificate issuer: /CN=A91C37DD/serialNumber=3FE3AE355A9277B91D73E2AC52F5387F095F189A Certificate serial: 5C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P-OuNVqSd7kdc-KsUvU4fwlfGJo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C37DD/24855D80096511EFA4BCE87AC4F9AE02/P-OuNVqSd7kdc-KsUvU4fwlfGJo.mft Manifest number: 59 Signing time: Thu 17 Oct 2024 05:34:25 +0000 Manifest this update: Thu 17 Oct 2024 05:34:25 +0000 Manifest next update: Thu 24 Oct 2024 05:34:25 +0000 Files and hashes: 1: P-OuNVqSd7kdc-KsUvU4fwlfGJo.crl (hash: uA76KI7Px+cP4O11W44QpMbUqA+m8jKtFP+SI5bN8/8=) 2: 8670D60E096611EF99F30750C4F9AE02.roa (hash: iuWtuyJfTt35leUhlOLk+Ja/aEErWGzoAPeuFPCgOUo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C37DD/24855D80096511EFA4BCE87AC4F9AE02/P-OuNVqSd7kdc-KsUvU4fwlfGJo.crl rsync://rpki.apnic.net/member_repository/A91C37DD/24855D80096511EFA4BCE87AC4F9AE02/P-OuNVqSd7kdc-KsUvU4fwlfGJo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P-OuNVqSd7kdc-KsUvU4fwlfGJo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 24 Oct 2024 04:45:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 92 (0x5c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C37DD/serialNumber=3FE3AE355A9277B91D73E2AC52F5387F095F189A Validity Not Before: Oct 17 05:34:25 2024 GMT Not After : Oct 24 05:34:25 2024 GMT Subject: CN=6710a1e1-7417 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:ae:93:7d:7d:da:59:76:3e:ee:da:37:64:c7: e3:6c:97:fa:45:13:b1:74:22:d7:bd:e1:3e:a3:7b: 3c:50:21:7c:1b:4f:e4:09:da:07:c1:a5:81:8f:39: 04:fc:23:ee:f6:1c:2e:2e:02:b3:1b:a6:c8:62:74: d8:47:5f:f4:99:b5:ec:66:b5:11:41:e6:46:10:4a: 7b:a5:d4:79:2f:c7:a4:3d:8f:88:2e:e6:88:19:3b: 3b:c6:90:64:8c:7d:42:ae:25:10:b2:3a:39:de:94: ad:d1:55:84:f7:0a:9a:bb:6c:ae:13:a0:3f:7e:f4: 6b:0d:8d:47:5d:b1:9a:78:e7:ae:ba:70:69:01:df: c6:3b:7c:58:6f:23:bc:f4:3f:13:3f:8f:fe:bb:ee: 34:4e:5b:03:2c:2b:4b:02:53:d9:7b:a8:d5:af:13: 53:1f:97:06:ae:ef:fa:87:d8:68:ae:37:b9:04:71: 3a:67:53:a4:27:ca:c5:62:5b:28:7f:10:15:84:46: e8:df:e0:08:09:e3:a4:bb:d7:9e:ea:41:2b:db:71: 35:4b:65:c3:85:7d:cc:83:ef:59:d6:6c:62:b0:1f: 3d:08:e3:3e:95:e4:65:c0:7e:00:7f:96:d5:a0:68: d2:88:78:c7:35:b1:01:db:c5:6e:87:f7:9b:b5:64: b8:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:F4:54:68:11:F7:48:AE:15:1D:54:22:E0:FC:91:F4:23:3F:62:80 X509v3 Authority Key Identifier: keyid:3F:E3:AE:35:5A:92:77:B9:1D:73:E2:AC:52:F5:38:7F:09:5F:18:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C37DD/24855D80096511EFA4BCE87AC4F9AE02/P-OuNVqSd7kdc-KsUvU4fwlfGJo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P-OuNVqSd7kdc-KsUvU4fwlfGJo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C37DD/24855D80096511EFA4BCE87AC4F9AE02/P-OuNVqSd7kdc-KsUvU4fwlfGJo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 07:9a:b4:34:fa:3f:21:f9:1b:2a:23:3c:44:4a:92:d9:51:cf: cf:f6:3f:93:29:56:59:e8:60:36:5a:03:1f:11:d1:7e:5c:e8: 02:14:0c:be:02:88:79:bb:c4:9c:23:16:9f:e3:b9:57:27:c7: 9d:08:71:5e:55:41:35:93:8a:d6:8f:a4:ac:2c:d9:42:c2:87: 0c:bd:e0:91:29:f4:ad:7b:d5:30:4a:b9:7f:fc:77:2a:e4:33: 35:be:b1:92:10:fd:ea:c0:21:15:7d:24:b5:88:92:37:5d:ab: 50:1d:17:9d:a0:ff:2c:7e:a0:1f:ad:d8:08:69:5c:27:0b:25: ce:ad:3b:e3:79:f1:c8:dc:4f:4d:48:cd:4d:f2:f1:a9:dc:22: ec:db:e1:98:69:71:21:b6:12:89:65:00:6d:04:22:67:9f:d7: c3:81:a1:eb:47:28:8a:78:88:96:ba:2d:88:77:e8:04:3c:22: 98:3f:8d:3b:91:fa:f8:2e:a2:24:ce:45:11:56:fd:f6:33:a6: e5:33:77:2d:18:7f:5c:cc:d5:4d:fa:f7:c3:ee:8f:af:45:a6: c8:5c:88:b4:c6:e4:1a:c1:1d:6d:e6:1b:28:cb:d2:2b:9c:c8: d6:d8:2b:f7:79:0c:9f:5d:99:d7:05:8f:1c:c4:2e:3a:1d:f6: ee:82:c2:0c -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBXDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD MzdERDExMC8GA1UEBRMoM0ZFM0FFMzU1QTkyNzdCOTFENzNFMkFDNTJGNTM4N0Yw OTVGMTg5QTAeFw0yNDEwMTcwNTM0MjVaFw0yNDEwMjQwNTM0MjVaMBgxFjAUBgNV BAMTDTY3MTBhMWUxLTc0MTcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCmrpN9fdpZdj7u2jdkx+Nsl/pFE7F0Ite94T6jezxQIXwbT+QJ2gfBpYGPOQT8 I+72HC4uArMbpshidNhHX/SZtexmtRFB5kYQSnul1Hkvx6Q9j4gu5ogZOzvGkGSM fUKuJRCyOjnelK3RVYT3Cpq7bK4ToD9+9GsNjUddsZp45666cGkB38Y7fFhvI7z0 PxM/j/677jROWwMsK0sCU9l7qNWvE1Mflwau7/qH2GiuN7kEcTpnU6QnysViWyh/ EBWERujf4AgJ46S7157qQSvbcTVLZcOFfcyD71nWbGKwHz0I4z6V5GXAfgB/ltWg aNKIeMc1sQHbxW6H95u1ZLhVAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUwvRUaBH3 SK4VHVQi4PyR9CM/YoAwHwYDVR0jBBgwFoAUP+OuNVqSd7kdc+KsUvU4fwlfGJow DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUMzN0RELzI0ODU1RDgwMDk2 NTExRUZBNEJDRTg3QUM0RjlBRTAyL1AtT3VOVnFTZDdrZGMtS3NVdlU0ZndsZkdK by5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvUC1PdU5WcVNkN2tkYy1Lc1V2VTRmd2xmR0pvLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUMz N0RELzI0ODU1RDgwMDk2NTExRUZBNEJDRTg3QUM0RjlBRTAyL1AtT3VOVnFTZDdr ZGMtS3NVdlU0ZndsZkdKby5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAAeatDT6PyH5GyojPERKktlRz8/2P5MpVlnoYDZaAx8R0X5c6AIUDL4C iHm7xJwjFp/juVcnx50IcV5VQTWTitaPpKws2ULChwy94JEp9K171TBKuX/8dyrk MzW+sZIQ/erAIRV9JLWIkjddq1AdF52g/yx+oB+t2AhpXCcLJc6tO+N58cjcT01I zU3y8ancIuzb4ZhpcSG2EollAG0EImef18OBoetHKIp4iJa6LYh36AQ8Ipg/jTuR +vguoiTORRFW/fYzpuUzdy0Yf1zM1U3698Puj69FpshciLTG5BrBHW3mGyjL0iuc yNbYK/d5DJ9dmdcFjxzELjod9u6Cwgw= -----END CERTIFICATE-----Generated at Thu Oct 17 06:46:21 2024 by rpki-client on console-fra.rpki-client.org