$ rpki-client -vvf rpki.apnic.net/member_repository/A91CD40B/741A1E2C855B11EFB0576D40C4F9AE02/aLMj2oThIFRmzrWv19YHcmdbBTE.mft File: aLMj2oThIFRmzrWv19YHcmdbBTE.mft (raw, json) Hash identifier: ko4aCQh065PonD2esLz5X4vPpKA0keWaN5ACBbb4j6c= Subject key identifier: E0:49:84:D1:CD:26:9E:3D:5B:AD:07:3C:3C:7B:7E:D2:16:27:EE:22 Authority key identifier: 68:B3:23:DA:84:E1:20:54:66:CE:B5:AF:D7:D6:07:72:67:5B:05:31 Certificate issuer: /CN=A91CD40B/serialNumber=68B323DA84E1205466CEB5AFD7D60772675B0531 Certificate serial: 0A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aLMj2oThIFRmzrWv19YHcmdbBTE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CD40B/741A1E2C855B11EFB0576D40C4F9AE02/aLMj2oThIFRmzrWv19YHcmdbBTE.mft Manifest number: 0A Signing time: Wed 23 Oct 2024 06:47:56 +0000 Manifest this update: Wed 23 Oct 2024 06:47:55 +0000 Manifest next update: Wed 30 Oct 2024 06:47:55 +0000 Files and hashes: 1: aLMj2oThIFRmzrWv19YHcmdbBTE.crl (hash: 5wBvpec9C+lDPkg/0iWnEc5nfcPR2cuUK9y7TJ3kVlU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CD40B/741A1E2C855B11EFB0576D40C4F9AE02/aLMj2oThIFRmzrWv19YHcmdbBTE.crl rsync://rpki.apnic.net/member_repository/A91CD40B/741A1E2C855B11EFB0576D40C4F9AE02/aLMj2oThIFRmzrWv19YHcmdbBTE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aLMj2oThIFRmzrWv19YHcmdbBTE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 30 Oct 2024 05:54:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10 (0xa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CD40B/serialNumber=68B323DA84E1205466CEB5AFD7D60772675B0531 Validity Not Before: Oct 23 06:47:55 2024 GMT Not After : Oct 30 06:47:55 2024 GMT Subject: CN=67189c1b-99c6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:e0:d6:75:f2:0b:96:6a:3a:84:96:46:5b:64: 46:8b:33:6a:a0:c4:7f:c8:73:25:2a:e3:8b:72:57: 17:4f:df:c4:7e:6b:9f:2f:ea:b9:25:ab:1e:ad:c5: 02:67:ae:e5:db:34:fc:3a:38:75:6f:e1:ba:86:ef: 04:b1:82:bf:ef:4e:a0:63:63:4a:10:eb:5c:c0:5f: 6f:14:03:57:9a:d0:b3:52:4f:56:23:27:3e:f8:df: de:9e:7a:58:f7:ce:a9:c0:c6:ab:98:31:05:f9:6d: e6:78:cc:b8:b4:b4:a3:08:4d:f2:e4:a8:d3:a3:9c: 38:bb:f9:07:41:b7:55:be:88:72:fd:2c:ba:5a:3e: 37:e8:e2:a9:f8:50:3f:4e:49:b2:ea:19:6d:24:8d: 58:b6:19:e6:9e:8f:b5:3a:06:f7:4a:39:03:d8:c7: e8:85:cf:c8:bc:10:0a:f9:61:92:1a:7e:f3:d0:91: a0:c5:e1:6f:c9:13:ec:f9:bd:fd:68:bf:81:8b:ec: 1c:7d:b5:9b:af:c7:14:c7:e1:0f:fc:da:a0:19:87: 65:3d:0d:90:42:9b:fa:3f:d8:b1:d1:d9:64:36:fc: aa:f3:c2:86:a3:e6:8c:7d:b2:43:0e:ea:3d:a6:1f: 91:17:55:81:7c:e9:01:15:72:92:92:c8:4f:32:75: 34:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:49:84:D1:CD:26:9E:3D:5B:AD:07:3C:3C:7B:7E:D2:16:27:EE:22 X509v3 Authority Key Identifier: keyid:68:B3:23:DA:84:E1:20:54:66:CE:B5:AF:D7:D6:07:72:67:5B:05:31 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CD40B/741A1E2C855B11EFB0576D40C4F9AE02/aLMj2oThIFRmzrWv19YHcmdbBTE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aLMj2oThIFRmzrWv19YHcmdbBTE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CD40B/741A1E2C855B11EFB0576D40C4F9AE02/aLMj2oThIFRmzrWv19YHcmdbBTE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 89:dc:e1:26:dc:88:38:22:30:87:93:d4:60:57:de:f4:2e:04: 79:06:97:48:65:d2:6d:57:ca:5e:82:aa:37:56:0d:79:36:dc: 22:9b:3c:02:61:75:a8:6f:6b:eb:8b:8f:0b:48:3a:f7:d7:30: c4:4f:5a:a7:bc:25:aa:d3:e7:9c:57:e9:08:9a:be:28:8c:6e: 81:4a:4c:5f:ad:f3:a3:00:d2:43:cb:0a:9e:ec:f2:f7:d7:6c: 5d:47:8b:ac:f6:a2:1a:64:a4:f6:58:76:a1:a9:e6:2c:f6:d2: 33:2f:d1:75:66:43:a1:5d:0c:b5:f7:1b:cf:9f:ce:3e:82:c9: e5:dd:84:dc:ee:88:c6:42:9b:35:e4:e9:99:1e:e7:51:4d:43: 4c:70:a5:92:1b:a0:cc:42:59:a2:c0:84:7b:b2:cb:96:62:ea: d9:e6:9e:27:61:2b:8a:ee:95:a7:d6:2f:ab:9d:92:70:cb:ea: ed:1e:5a:86:cf:89:fd:d1:4b:e8:90:2b:d1:81:6e:78:2b:ba: 06:1c:14:80:1c:72:49:d8:1d:ad:50:b1:bf:20:af:a7:41:d4: e4:82:89:f2:32:31:bc:e5:c4:f3:d2:84:36:73:84:d4:29:6b: 2c:82:76:94:1d:e1:6d:c2:74:94:fd:0d:91:de:d6:fc:33:48: 3d:48:67:a9 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBCjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD RDQwQjExMC8GA1UEBRMoNjhCMzIzREE4NEUxMjA1NDY2Q0VCNUFGRDdENjA3NzI2 NzVCMDUzMTAeFw0yNDEwMjMwNjQ3NTVaFw0yNDEwMzAwNjQ3NTVaMBgxFjAUBgNV BAMTDTY3MTg5YzFiLTk5YzYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC94NZ18guWajqElkZbZEaLM2qgxH/IcyUq44tyVxdP38R+a58v6rklqx6txQJn ruXbNPw6OHVv4bqG7wSxgr/vTqBjY0oQ61zAX28UA1ea0LNST1YjJz74396eelj3 zqnAxquYMQX5beZ4zLi0tKMITfLkqNOjnDi7+QdBt1W+iHL9LLpaPjfo4qn4UD9O SbLqGW0kjVi2Geaej7U6BvdKOQPYx+iFz8i8EAr5YZIafvPQkaDF4W/JE+z5vf1o v4GL7Bx9tZuvxxTH4Q/82qAZh2U9DZBCm/o/2LHR2WQ2/Krzwoaj5ox9skMO6j2m H5EXVYF86QEVcpKSyE8ydTSHAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU4EmE0c0m nj1brQc8PHt+0hYn7iIwHwYDVR0jBBgwFoAUaLMj2oThIFRmzrWv19YHcmdbBTEw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUNENDBCLzc0MUExRTJDODU1 QjExRUZCMDU3NkQ0MEM0RjlBRTAyL2FMTWoyb1RoSUZSbXpyV3YxOVlIY21kYkJU RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvYUxNajJvVGhJRlJtenJXdjE5WUhjbWRiQlRFLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUNE NDBCLzc0MUExRTJDODU1QjExRUZCMDU3NkQ0MEM0RjlBRTAyL2FMTWoyb1RoSUZS bXpyV3YxOVlIY21kYkJURS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAInc4SbciDgiMIeT1GBX3vQuBHkGl0hl0m1Xyl6CqjdWDXk23CKbPAJh dahva+uLjwtIOvfXMMRPWqe8JarT55xX6QiaviiMboFKTF+t86MA0kPLCp7s8vfX bF1Hi6z2ohpkpPZYdqGp5iz20jMv0XVmQ6FdDLX3G8+fzj6CyeXdhNzuiMZCmzXk 6Zke51FNQ0xwpZIboMxCWaLAhHuyy5Zi6tnmnidhK4rulafWL6udknDL6u0eWobP if3RS+iQK9GBbngrugYcFIAccknYHa1Qsb8gr6dB1OSCifIyMbzlxPPShDZzhNQp ayyCdpQd4W3CdJT9DZHe1vwzSD1IZ6k= -----END CERTIFICATE-----Generated at Wed Oct 23 07:46:03 2024 by rpki-client on console-ams.rpki-client.org