$ rpki-client -vvf rpki.apnic.net/member_repository/A91CCAF1/09C0D3668AAD11EFBEF9166AC4F9AE02/bBlGl4FvmxMLpTz0vuZ2AVlOjLE.mft File: bBlGl4FvmxMLpTz0vuZ2AVlOjLE.mft (raw, json) Hash identifier: 3IvNUJ2ySgE2f+o1lApMf99cUXmM6A4/5ug6HPSHESI= Subject key identifier: 38:8D:90:87:C7:6E:02:A9:78:D7:AA:3C:A9:63:A2:62:69:08:B3:AC Authority key identifier: 6C:19:46:97:81:6F:9B:13:0B:A5:3C:F4:BE:E6:76:01:59:4E:8C:B1 Certificate issuer: /CN=A91CCAF1/serialNumber=6C194697816F9B130BA53CF4BEE67601594E8CB1 Certificate serial: 06 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bBlGl4FvmxMLpTz0vuZ2AVlOjLE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CCAF1/09C0D3668AAD11EFBEF9166AC4F9AE02/bBlGl4FvmxMLpTz0vuZ2AVlOjLE.mft Manifest number: 06 Signing time: Wed 23 Oct 2024 06:51:06 +0000 Manifest this update: Wed 23 Oct 2024 06:51:05 +0000 Manifest next update: Wed 30 Oct 2024 06:51:05 +0000 Files and hashes: 1: bBlGl4FvmxMLpTz0vuZ2AVlOjLE.crl (hash: Yr3KLUMexYHaZuGZEun/5rLeXr2KlREUxbD1o/d22hE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CCAF1/09C0D3668AAD11EFBEF9166AC4F9AE02/bBlGl4FvmxMLpTz0vuZ2AVlOjLE.crl rsync://rpki.apnic.net/member_repository/A91CCAF1/09C0D3668AAD11EFBEF9166AC4F9AE02/bBlGl4FvmxMLpTz0vuZ2AVlOjLE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bBlGl4FvmxMLpTz0vuZ2AVlOjLE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 30 Oct 2024 05:54:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6 (0x6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CCAF1/serialNumber=6C194697816F9B130BA53CF4BEE67601594E8CB1 Validity Not Before: Oct 23 06:51:05 2024 GMT Not After : Oct 30 06:51:05 2024 GMT Subject: CN=67189cd9-ee6e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:a3:9c:8e:fd:d6:02:c3:3f:d3:c7:a8:be:7e: 3e:3e:10:9c:8f:65:25:78:33:6f:ba:a5:ae:f0:ba: 9d:e0:4b:51:e1:03:ce:74:ce:34:54:b3:30:ed:b3: 49:e5:19:63:05:0a:0b:6e:2c:a3:9c:89:de:40:3c: 1c:5d:6c:46:83:80:ea:cb:a1:4f:1a:a4:e2:07:93: 47:0f:db:88:c3:f6:0e:97:42:c9:e8:28:e4:7d:db: 98:e1:c2:a2:ab:fc:17:35:7a:ed:2a:38:2f:8b:7d: 88:e0:56:14:04:e8:e3:22:3e:c6:2f:f8:3c:3b:b1: 8a:f5:f3:75:17:ff:9e:ba:d6:5c:0f:1a:9d:97:b5: d1:70:2e:e4:c5:ac:bb:ab:fb:d0:27:6c:6a:43:da: 37:e9:fd:e0:bb:aa:6a:da:aa:ea:55:cc:c0:5e:62: 6c:1c:04:f3:b0:2c:71:2d:5c:5e:b9:d4:d4:1d:25: 2c:f7:5a:97:81:cc:02:7a:5b:1e:e9:95:f1:db:35: ea:38:cb:6d:25:db:ff:81:6d:78:08:0d:90:55:34: f3:8d:21:6b:56:53:2f:d2:fc:b0:b6:4f:90:c7:53: c1:f7:cb:4f:2f:79:da:ed:7e:31:3c:bc:84:17:27: 1c:bd:77:7e:b1:43:f0:2e:ab:d0:db:7b:fc:72:2a: e2:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:8D:90:87:C7:6E:02:A9:78:D7:AA:3C:A9:63:A2:62:69:08:B3:AC X509v3 Authority Key Identifier: keyid:6C:19:46:97:81:6F:9B:13:0B:A5:3C:F4:BE:E6:76:01:59:4E:8C:B1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CCAF1/09C0D3668AAD11EFBEF9166AC4F9AE02/bBlGl4FvmxMLpTz0vuZ2AVlOjLE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bBlGl4FvmxMLpTz0vuZ2AVlOjLE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CCAF1/09C0D3668AAD11EFBEF9166AC4F9AE02/bBlGl4FvmxMLpTz0vuZ2AVlOjLE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 41:9e:6b:14:a2:7b:05:c6:ca:64:86:3f:44:a9:bf:1f:a5:23: c0:c6:01:91:4e:2b:8a:c6:24:08:0e:11:72:8d:6b:1e:e7:27: d5:56:48:98:bb:be:fc:69:8c:af:5c:8d:d0:95:55:65:f9:a4: 0a:36:bb:b6:eb:5f:75:e8:f2:fe:68:6b:48:56:ba:09:f9:05: 5e:70:7c:bc:54:ce:26:73:ba:04:71:9e:94:1e:66:88:fe:b5: d5:13:8e:2e:63:52:e1:89:70:95:ed:41:0c:57:9f:dd:d6:45: 3d:c9:b8:44:a5:2a:f9:b8:be:05:39:5f:56:ab:09:fb:2d:ed: 5a:58:4e:98:b6:bc:b5:fe:84:52:78:8a:8e:f3:3b:1f:0e:43: e2:3c:44:91:f3:7b:a4:7b:8f:1d:ff:7c:5a:5f:c1:30:72:a7: 49:49:ae:b6:12:a7:14:ed:8b:02:42:54:cf:b2:dc:9c:18:4e: 95:2e:63:17:c6:42:3c:7c:66:e8:2b:d6:75:c9:1a:38:f0:c0: 8b:27:92:ef:80:bf:fe:56:f8:d9:b6:1d:d6:ae:c1:ec:fb:2e: b0:61:36:5b:2c:87:0b:05:cc:de:ff:c9:e2:c9:e3:1b:4c:c7: a2:03:f8:4b:44:e7:d7:90:46:ed:f4:d1:21:d9:b9:88:80:83: 43:91:21:ba -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBBjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD Q0FGMTExMC8GA1UEBRMoNkMxOTQ2OTc4MTZGOUIxMzBCQTUzQ0Y0QkVFNjc2MDE1 OTRFOENCMTAeFw0yNDEwMjMwNjUxMDVaFw0yNDEwMzAwNjUxMDVaMBgxFjAUBgNV BAMTDTY3MTg5Y2Q5LWVlNmUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCoo5yO/dYCwz/Tx6i+fj4+EJyPZSV4M2+6pa7wup3gS1HhA850zjRUszDts0nl GWMFCgtuLKOcid5APBxdbEaDgOrLoU8apOIHk0cP24jD9g6XQsnoKOR925jhwqKr /Bc1eu0qOC+LfYjgVhQE6OMiPsYv+Dw7sYr183UX/5661lwPGp2XtdFwLuTFrLur +9AnbGpD2jfp/eC7qmraqupVzMBeYmwcBPOwLHEtXF651NQdJSz3WpeBzAJ6Wx7p lfHbNeo4y20l2/+BbXgIDZBVNPONIWtWUy/S/LC2T5DHU8H3y08vedrtfjE8vIQX Jxy9d36xQ/Auq9Dbe/xyKuI3AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUOI2Qh8du Aql416o8qWOiYmkIs6wwHwYDVR0jBBgwFoAUbBlGl4FvmxMLpTz0vuZ2AVlOjLEw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUNDQUYxLzA5QzBEMzY2OEFB RDExRUZCRUY5MTY2QUM0RjlBRTAyL2JCbEdsNEZ2bXhNTHBUejB2dVoyQVZsT2pM RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvYkJsR2w0RnZteE1McFR6MHZ1WjJBVmxPakxFLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUND QUYxLzA5QzBEMzY2OEFBRDExRUZCRUY5MTY2QUM0RjlBRTAyL2JCbEdsNEZ2bXhN THBUejB2dVoyQVZsT2pMRS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAEGeaxSiewXGymSGP0Spvx+lI8DGAZFOK4rGJAgOEXKNax7nJ9VWSJi7 vvxpjK9cjdCVVWX5pAo2u7brX3Xo8v5oa0hWugn5BV5wfLxUziZzugRxnpQeZoj+ tdUTji5jUuGJcJXtQQxXn93WRT3JuESlKvm4vgU5X1arCfst7VpYTpi2vLX+hFJ4 io7zOx8OQ+I8RJHze6R7jx3/fFpfwTByp0lJrrYSpxTtiwJCVM+y3JwYTpUuYxfG Qjx8Zugr1nXJGjjwwIsnku+Av/5W+Nm2Hdauwez7LrBhNlsshwsFzN7/yeLJ4xtM x6ID+EtE59eQRu300SHZuYiAg0ORIbo= -----END CERTIFICATE-----Generated at Wed Oct 23 07:46:03 2024 by rpki-client on console-ams.rpki-client.org