$ rpki-client -vvf rpki.apnic.net/member_repository/A91CA735/D0E9B1EE639B11EF9B4D2A5DC4F9AE02/U3sbocAbSGNHOKoRWa4rlVkN3ZE.mft File: U3sbocAbSGNHOKoRWa4rlVkN3ZE.mft (raw, json) Hash identifier: C2ob+cQ2FrRXXoD6Sa9dJrOrL84AbHNIuyBsow/ys8Q= Subject key identifier: 54:DF:F4:22:38:C4:71:78:6A:5B:66:33:C8:DC:DC:D7:24:B4:B6:5A Authority key identifier: 53:7B:1B:A1:C0:1B:48:63:47:38:AA:11:59:AE:2B:95:59:0D:DD:91 Certificate issuer: /CN=A91CA735/serialNumber=537B1BA1C01B48634738AA1159AE2B95590DDD91 Certificate serial: 22 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U3sbocAbSGNHOKoRWa4rlVkN3ZE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CA735/D0E9B1EE639B11EF9B4D2A5DC4F9AE02/U3sbocAbSGNHOKoRWa4rlVkN3ZE.mft Manifest number: 21 Signing time: Wed 23 Oct 2024 06:31:30 +0000 Manifest this update: Wed 23 Oct 2024 06:31:30 +0000 Manifest next update: Wed 30 Oct 2024 06:31:30 +0000 Files and hashes: 1: U3sbocAbSGNHOKoRWa4rlVkN3ZE.crl (hash: 7G1ld7NeY9dt7Xg3DEdEe5iuox0Ei5aU+bxHsk79ndE=) 2: 38D25300639D11EFB668775FC4F9AE02.roa (hash: 3rKNJDDfmaWD0FlSs2li9ybksdVlO8MQocN7u3VEcT8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CA735/D0E9B1EE639B11EF9B4D2A5DC4F9AE02/U3sbocAbSGNHOKoRWa4rlVkN3ZE.crl rsync://rpki.apnic.net/member_repository/A91CA735/D0E9B1EE639B11EF9B4D2A5DC4F9AE02/U3sbocAbSGNHOKoRWa4rlVkN3ZE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U3sbocAbSGNHOKoRWa4rlVkN3ZE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 30 Oct 2024 05:54:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 34 (0x22) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CA735/serialNumber=537B1BA1C01B48634738AA1159AE2B95590DDD91 Validity Not Before: Oct 23 06:31:30 2024 GMT Not After : Oct 30 06:31:30 2024 GMT Subject: CN=67189842-26d5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:d1:e4:15:b7:cf:b1:8f:7e:e9:43:90:03:51: b1:a7:97:12:a5:ee:9b:e8:91:84:76:78:f6:f6:cb: c3:6c:e2:20:11:29:0e:43:0d:fa:f9:37:fc:72:36: ed:0b:45:83:b4:00:16:73:60:66:6c:05:86:97:77: 38:79:14:50:be:77:ff:1b:2a:0c:80:48:05:9b:e7: 7d:e8:e2:d5:8f:af:0f:cc:aa:53:71:dd:cf:19:d4: f5:f1:00:31:f3:40:14:ad:5b:eb:55:6b:84:5f:1c: 8a:8e:69:98:43:9d:90:ac:d3:0d:24:ea:7c:2a:db: 78:be:34:fd:7a:e1:42:05:67:f6:6b:da:d4:b5:fb: a0:c6:3a:b5:82:f7:b7:03:03:be:6d:db:76:1d:b2: 75:28:dd:ee:c1:65:61:75:3c:0f:33:3f:c3:f7:16: 9d:1c:29:71:40:fb:89:69:15:22:f1:f8:1d:88:7e: a4:61:52:67:d1:4c:86:f3:34:37:24:b6:91:90:29: b9:da:2f:f4:00:2d:7c:cb:d3:fa:74:ef:c5:fd:29: 93:7b:1c:ba:08:d4:c3:65:e8:45:87:9c:ff:ae:83: 9f:70:a5:b5:a8:88:45:7d:0d:28:c0:3a:24:d1:9b: 3f:be:5b:d2:a1:77:1e:fe:48:16:06:f2:17:77:90: be:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:DF:F4:22:38:C4:71:78:6A:5B:66:33:C8:DC:DC:D7:24:B4:B6:5A X509v3 Authority Key Identifier: keyid:53:7B:1B:A1:C0:1B:48:63:47:38:AA:11:59:AE:2B:95:59:0D:DD:91 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CA735/D0E9B1EE639B11EF9B4D2A5DC4F9AE02/U3sbocAbSGNHOKoRWa4rlVkN3ZE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U3sbocAbSGNHOKoRWa4rlVkN3ZE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CA735/D0E9B1EE639B11EF9B4D2A5DC4F9AE02/U3sbocAbSGNHOKoRWa4rlVkN3ZE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 49:46:6d:37:b7:d9:78:45:2b:c6:7b:f7:91:69:1d:7b:50:96: 8e:f8:48:da:7d:1e:48:1a:1d:be:d4:bc:b6:f5:c2:30:01:f3: 4f:e8:e7:d4:c8:49:83:a7:1d:40:42:d1:7f:9c:88:9a:21:f3: 3c:4f:ed:f4:a8:57:fa:48:91:dd:5b:96:30:42:dc:21:7f:86: c2:79:0c:e1:01:8b:3e:89:82:c1:80:57:f0:36:65:2c:02:e6: a3:9a:7e:e2:cc:e9:97:5e:52:7b:3a:6a:d9:88:40:ff:19:53: 2d:2e:e3:81:b2:3e:17:74:ff:bf:01:f6:9c:6b:a6:73:9f:b7: 6a:48:8a:f0:03:c3:eb:d0:86:cc:25:fc:cd:34:5a:d1:da:58: 33:5c:63:7f:14:d6:56:dc:5c:91:92:5e:30:56:c6:51:f7:7f: 38:b1:bd:38:ed:85:f3:fd:7b:e9:33:fc:4d:c1:da:13:f2:22: 0b:0e:3f:a2:69:b1:61:0a:13:bd:d1:27:b6:4f:8b:8b:63:44: a9:f7:58:84:68:6e:fc:64:20:62:4b:83:b3:6c:11:05:ea:a5: dd:82:a3:2a:33:ee:75:f1:30:50:c9:16:b4:5a:19:b2:f7:ba: 56:fe:2a:4c:c3:d1:50:ee:99:c0:69:19:84:43:e5:a2:9d:41: 67:9d:66:33 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBIjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD QTczNTExMC8GA1UEBRMoNTM3QjFCQTFDMDFCNDg2MzQ3MzhBQTExNTlBRTJCOTU1 OTBEREQ5MTAeFw0yNDEwMjMwNjMxMzBaFw0yNDEwMzAwNjMxMzBaMBgxFjAUBgNV BAMTDTY3MTg5ODQyLTI2ZDUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCy0eQVt8+xj37pQ5ADUbGnlxKl7pvokYR2ePb2y8Ns4iARKQ5DDfr5N/xyNu0L RYO0ABZzYGZsBYaXdzh5FFC+d/8bKgyASAWb533o4tWPrw/MqlNx3c8Z1PXxADHz QBStW+tVa4RfHIqOaZhDnZCs0w0k6nwq23i+NP164UIFZ/Zr2tS1+6DGOrWC97cD A75t23YdsnUo3e7BZWF1PA8zP8P3Fp0cKXFA+4lpFSLx+B2IfqRhUmfRTIbzNDck tpGQKbnaL/QALXzL0/p078X9KZN7HLoI1MNl6EWHnP+ug59wpbWoiEV9DSjAOiTR mz++W9Khdx7+SBYG8hd3kL5JAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUVN/0IjjE cXhqW2YzyNzc1yS0tlowHwYDVR0jBBgwFoAUU3sbocAbSGNHOKoRWa4rlVkN3ZEw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUNBNzM1L0QwRTlCMUVFNjM5 QjExRUY5QjREMkE1REM0RjlBRTAyL1Uzc2JvY0FiU0dOSE9Lb1JXYTRybFZrTjNa RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvVTNzYm9jQWJTR05IT0tvUldhNHJsVmtOM1pFLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUNB NzM1L0QwRTlCMUVFNjM5QjExRUY5QjREMkE1REM0RjlBRTAyL1Uzc2JvY0FiU0dO SE9Lb1JXYTRybFZrTjNaRS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAElGbTe32XhFK8Z795FpHXtQlo74SNp9HkgaHb7UvLb1wjAB80/o59TI SYOnHUBC0X+ciJoh8zxP7fSoV/pIkd1bljBC3CF/hsJ5DOEBiz6JgsGAV/A2ZSwC 5qOafuLM6ZdeUns6atmIQP8ZUy0u44GyPhd0/78B9pxrpnOft2pIivADw+vQhswl /M00WtHaWDNcY38U1lbcXJGSXjBWxlH3fzixvTjthfP9e+kz/E3B2hPyIgsOP6Jp sWEKE73RJ7ZPi4tjRKn3WIRobvxkIGJLg7NsEQXqpd2Coyoz7nXxMFDJFrRaGbL3 ulb+KkzD0VDumcBpGYRD5aKdQWedZjM= -----END CERTIFICATE-----Generated at Wed Oct 23 07:33:25 2024 by rpki-client on console-fra.rpki-client.org