$ rpki-client -vvf rpki.apnic.net/member_repository/A91C68AD/DEBA238086A011EFB36E300EC4F9AE02/0QwglvtdswSr0vmfRaKUiCktNyE.mft File: 0QwglvtdswSr0vmfRaKUiCktNyE.mft (raw, json) Hash identifier: 4hTA98TjE6lCNw0GcHaSH/JQu1DrApeVA7ewzayRGXQ= Subject key identifier: CF:69:70:1D:E4:58:82:C5:47:34:DC:D3:19:96:B7:55:05:01:FB:1D Authority key identifier: D1:0C:20:96:FB:5D:B3:04:AB:D2:F9:9F:45:A2:94:88:29:2D:37:21 Certificate issuer: /CN=A91C68AD/serialNumber=D10C2096FB5DB304ABD2F99F45A29488292D3721 Certificate serial: 09 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0QwglvtdswSr0vmfRaKUiCktNyE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C68AD/DEBA238086A011EFB36E300EC4F9AE02/0QwglvtdswSr0vmfRaKUiCktNyE.mft Manifest number: 09 Signing time: Wed 23 Oct 2024 06:48:10 +0000 Manifest this update: Wed 23 Oct 2024 06:48:10 +0000 Manifest next update: Wed 30 Oct 2024 06:48:10 +0000 Files and hashes: 1: 0QwglvtdswSr0vmfRaKUiCktNyE.crl (hash: 1gHA0gySNhCmRvMvfnqhabgUbaAcJ2l4DvgpqXfDXGw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C68AD/DEBA238086A011EFB36E300EC4F9AE02/0QwglvtdswSr0vmfRaKUiCktNyE.crl rsync://rpki.apnic.net/member_repository/A91C68AD/DEBA238086A011EFB36E300EC4F9AE02/0QwglvtdswSr0vmfRaKUiCktNyE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0QwglvtdswSr0vmfRaKUiCktNyE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 30 Oct 2024 05:54:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9 (0x9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C68AD/serialNumber=D10C2096FB5DB304ABD2F99F45A29488292D3721 Validity Not Before: Oct 23 06:48:10 2024 GMT Not After : Oct 30 06:48:10 2024 GMT Subject: CN=67189c2a-1240 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:5c:fc:0a:f7:c1:98:2f:1e:1b:ea:a9:13:ba: 49:07:02:ea:7d:b4:20:1f:05:60:aa:8a:1b:22:a3: e9:16:5b:71:e1:b5:0b:3c:af:c4:19:7c:b0:54:6b: 83:46:80:35:11:e3:03:8c:a1:a4:8d:1e:e3:8b:62: 04:75:6f:d7:c9:4d:eb:d8:d0:49:82:3c:63:ee:ce: fc:dc:82:ee:64:fa:c0:82:de:e5:b4:22:ad:e3:cb: 61:e0:ef:b0:42:c7:38:ff:5d:8e:46:cf:d5:80:e3: f8:fa:7a:18:52:f7:7f:42:70:f1:85:e1:02:1f:d0: d4:fe:f5:7b:60:33:1e:04:de:5a:85:4c:56:ac:62: fe:70:f3:bb:e3:d7:b4:3d:f2:cf:4a:0e:5d:b4:6e: b2:8a:c0:06:1a:e9:0f:02:51:e2:5e:81:5b:91:7d: d6:e6:94:9c:3a:6d:ce:68:fb:70:30:fc:72:7b:0a: 0f:b7:25:50:91:63:ba:a5:b9:73:d2:92:ac:54:4d: 26:34:d0:07:99:07:99:72:5e:0f:22:03:49:09:b2: e8:0e:43:de:fc:ed:cb:1b:e6:8a:be:84:63:f6:ae: 41:58:c8:42:35:36:dc:8d:11:1f:58:dc:66:d0:3c: 2f:e1:b0:16:73:31:e5:1a:99:1d:e7:43:e5:22:b8: 5b:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:69:70:1D:E4:58:82:C5:47:34:DC:D3:19:96:B7:55:05:01:FB:1D X509v3 Authority Key Identifier: keyid:D1:0C:20:96:FB:5D:B3:04:AB:D2:F9:9F:45:A2:94:88:29:2D:37:21 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C68AD/DEBA238086A011EFB36E300EC4F9AE02/0QwglvtdswSr0vmfRaKUiCktNyE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0QwglvtdswSr0vmfRaKUiCktNyE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C68AD/DEBA238086A011EFB36E300EC4F9AE02/0QwglvtdswSr0vmfRaKUiCktNyE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9d:1e:9c:35:f9:0b:5c:97:2f:a1:98:1e:b4:a3:b7:51:e8:0c: 4a:d3:05:ea:ca:93:5a:5b:5f:ef:f7:ea:ac:8d:9d:1b:50:df: 90:26:51:eb:f9:43:9e:39:6c:b8:03:db:80:dc:0e:c3:22:6e: e0:68:98:8b:02:bf:71:05:80:c4:18:d2:84:b0:ae:09:f9:9b: 32:51:ef:c9:21:06:83:e9:c2:3c:1d:65:04:9e:7a:9a:13:76: 24:4b:f4:9e:55:5d:22:41:98:b3:5f:7d:4c:c3:e5:dc:ec:41: a5:93:7e:ab:fc:e3:c9:4c:d4:f4:a4:1f:51:81:0d:9c:31:2c: 08:fd:88:f4:bd:bb:e8:73:71:2e:4b:b0:1b:56:15:d5:d9:4a: 26:05:c5:91:86:14:70:7e:57:51:9c:97:4f:c8:d0:0b:ea:df: 4a:37:43:55:0d:cc:95:b5:56:1f:14:f3:e8:05:b4:9b:83:df: 40:77:96:48:d8:c8:99:ac:2d:94:3a:ed:fe:59:2a:b1:de:66: 83:4c:a5:f1:3a:61:2e:03:0f:87:5b:d6:45:5d:ab:b9:c3:ed: 79:fa:ec:e6:ea:1d:c1:2d:68:0a:44:17:78:3b:0b:96:b1:57: 65:ca:e9:25:2d:39:99:35:1e:02:c1:59:24:16:f8:c8:52:91: 01:e6:a8:76 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBCTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD NjhBRDExMC8GA1UEBRMoRDEwQzIwOTZGQjVEQjMwNEFCRDJGOTlGNDVBMjk0ODgy OTJEMzcyMTAeFw0yNDEwMjMwNjQ4MTBaFw0yNDEwMzAwNjQ4MTBaMBgxFjAUBgNV BAMTDTY3MTg5YzJhLTEyNDAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC8XPwK98GYLx4b6qkTukkHAup9tCAfBWCqihsio+kWW3HhtQs8r8QZfLBUa4NG gDUR4wOMoaSNHuOLYgR1b9fJTevY0EmCPGPuzvzcgu5k+sCC3uW0Iq3jy2Hg77BC xzj/XY5Gz9WA4/j6ehhS939CcPGF4QIf0NT+9XtgMx4E3lqFTFasYv5w87vj17Q9 8s9KDl20brKKwAYa6Q8CUeJegVuRfdbmlJw6bc5o+3Aw/HJ7Cg+3JVCRY7qluXPS kqxUTSY00AeZB5lyXg8iA0kJsugOQ9787csb5oq+hGP2rkFYyEI1NtyNER9Y3GbQ PC/hsBZzMeUamR3nQ+UiuFvPAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUz2lwHeRY gsVHNNzTGZa3VQUB+x0wHwYDVR0jBBgwFoAU0QwglvtdswSr0vmfRaKUiCktNyEw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUM2OEFEL0RFQkEyMzgwODZB MDExRUZCMzZFMzAwRUM0RjlBRTAyLzBRd2dsdnRkc3dTcjB2bWZSYUtVaUNrdE55 RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvMFF3Z2x2dGRzd1NyMHZtZlJhS1VpQ2t0TnlFLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUM2 OEFEL0RFQkEyMzgwODZBMDExRUZCMzZFMzAwRUM0RjlBRTAyLzBRd2dsdnRkc3dT cjB2bWZSYUtVaUNrdE55RS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAJ0enDX5C1yXL6GYHrSjt1HoDErTBerKk1pbX+/36qyNnRtQ35AmUev5 Q545bLgD24DcDsMibuBomIsCv3EFgMQY0oSwrgn5mzJR78khBoPpwjwdZQSeepoT diRL9J5VXSJBmLNffUzD5dzsQaWTfqv848lM1PSkH1GBDZwxLAj9iPS9u+hzcS5L sBtWFdXZSiYFxZGGFHB+V1Gcl0/I0Avq30o3Q1UNzJW1Vh8U8+gFtJuD30B3lkjY yJmsLZQ67f5ZKrHeZoNMpfE6YS4DD4db1kVdq7nD7Xn67ObqHcEtaApEF3g7C5ax V2XK6SUtOZk1HgLBWSQW+MhSkQHmqHY= -----END CERTIFICATE-----Generated at Wed Oct 23 07:33:25 2024 by rpki-client on console-fra.rpki-client.org