$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE6EC/082A89F02A2911EF8895F11CC4F9AE02/MGcPYbflDgsLiOclHeh4TAPJ5GI.mft File: MGcPYbflDgsLiOclHeh4TAPJ5GI.mft (raw, json) Hash identifier: hiBjs93iUh1H2ygogK9u4L4eaw7E4YTARNt29sjRQsM= Subject key identifier: 55:3D:A3:0B:F8:41:02:D9:3D:E1:53:CA:E9:B4:CE:61:0C:2B:51:24 Authority key identifier: 30:67:0F:61:B7:E5:0E:0B:0B:88:E7:25:1D:E8:78:4C:03:C9:E4:62 Certificate issuer: /CN=A91CE6EC/serialNumber=30670F61B7E50E0B0B88E7251DE8784C03C9E462 Certificate serial: 4A Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MGcPYbflDgsLiOclHeh4TAPJ5GI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE6EC/082A89F02A2911EF8895F11CC4F9AE02/MGcPYbflDgsLiOclHeh4TAPJ5GI.mft Manifest number: 48 Signing time: Tue 22 Oct 2024 15:47:14 +0000 Manifest this update: Tue 22 Oct 2024 15:47:14 +0000 Manifest next update: Tue 29 Oct 2024 15:47:14 +0000 Files and hashes: 1: MGcPYbflDgsLiOclHeh4TAPJ5GI.crl (hash: fE1kPGcxAA75kAH+pHG5qz23+paMXDIyEjmjHM/ofWU=) 2: 038610FC2D1E11EFA25C6D16C4F9AE02.roa (hash: nEx36xMYEspoRTHpBzsjyglWKve6HGzaUV9gJlWDtWQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE6EC/082A89F02A2911EF8895F11CC4F9AE02/MGcPYbflDgsLiOclHeh4TAPJ5GI.crl rsync://rpki.apnic.net/member_repository/A91CE6EC/082A89F02A2911EF8895F11CC4F9AE02/MGcPYbflDgsLiOclHeh4TAPJ5GI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MGcPYbflDgsLiOclHeh4TAPJ5GI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 29 Oct 2024 15:34:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 74 (0x4a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE6EC/serialNumber=30670F61B7E50E0B0B88E7251DE8784C03C9E462 Validity Not Before: Oct 22 15:47:14 2024 GMT Not After : Oct 29 15:47:14 2024 GMT Subject: CN=6717c902-0267 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:bf:30:17:91:75:e7:cf:98:c8:07:41:0d:6b: a0:43:40:48:c1:56:4a:55:62:9d:18:5e:cb:2e:ae: e6:f0:63:eb:2c:be:d4:67:b5:11:4e:dc:c9:23:ba: 11:14:b1:8e:71:0a:63:b1:48:5a:97:35:52:30:78: aa:d6:a2:45:91:17:88:fd:80:cc:b9:e5:68:9d:ef: 2c:6e:93:d3:e8:3d:4c:cb:e9:9d:ad:5e:6d:41:dc: 53:35:27:64:7d:a2:10:eb:85:14:1c:a9:e6:83:e8: 44:f1:f6:e4:9e:a1:d8:0f:80:a6:2a:e6:a8:cb:ea: d7:68:65:d2:95:f7:d3:6e:92:8f:b8:ba:09:a8:1d: 38:a9:22:59:32:7a:ad:85:54:f4:f7:cc:20:5b:16: 9c:9d:b1:8e:dd:20:f0:14:ab:8c:9a:2e:86:8e:c9: 5d:c5:d4:ed:00:51:b2:bc:49:e0:c2:09:3e:59:34: ee:40:eb:1b:21:37:01:90:fd:7a:11:e0:d1:20:88: 2f:04:d2:e5:37:6e:4b:c5:b8:59:44:80:c7:37:01: c6:fe:ff:97:a0:ca:bf:6a:a5:8d:5f:83:81:c0:fc: 50:63:21:7e:a3:95:6f:53:0b:4c:42:c0:b0:e4:8b: 8a:df:00:00:7d:85:ec:16:90:3b:78:d7:55:89:3b: d1:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:3D:A3:0B:F8:41:02:D9:3D:E1:53:CA:E9:B4:CE:61:0C:2B:51:24 X509v3 Authority Key Identifier: keyid:30:67:0F:61:B7:E5:0E:0B:0B:88:E7:25:1D:E8:78:4C:03:C9:E4:62 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE6EC/082A89F02A2911EF8895F11CC4F9AE02/MGcPYbflDgsLiOclHeh4TAPJ5GI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MGcPYbflDgsLiOclHeh4TAPJ5GI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE6EC/082A89F02A2911EF8895F11CC4F9AE02/MGcPYbflDgsLiOclHeh4TAPJ5GI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a5:21:8c:e8:d3:43:69:4f:e3:e1:9a:ee:4c:59:07:f3:f2:e4: 8a:0f:ef:0c:cb:18:71:54:2d:c1:f5:4d:d9:c7:3d:01:c8:18: 4a:b9:b9:00:06:ce:f6:b0:90:8c:22:51:83:e9:3d:c3:58:48: 1c:7f:8a:ec:ff:4f:8f:de:95:b2:51:ce:f6:c7:6f:8f:d2:78: a2:e7:46:29:72:f9:ea:bb:c8:85:62:e6:20:2d:a4:03:39:19: df:f5:7c:07:c9:28:e9:79:03:5a:57:bb:76:9b:75:9c:57:c7: dd:69:7e:20:97:25:a3:c7:77:24:1b:66:df:0c:4f:8d:f6:29: 27:52:3c:18:40:6c:d4:59:67:48:49:41:59:dc:3d:29:e2:55: 65:5c:25:10:d0:79:e7:5d:65:43:24:3d:a4:12:7a:4d:7a:a4: e6:1c:41:05:e8:eb:79:2b:d7:8e:2f:fb:8e:78:7f:b6:7a:8f: af:e8:c4:7b:bb:4a:09:18:b9:a4:ab:0b:13:2a:20:67:df:88: 32:84:7b:da:19:b8:80:d9:aa:ba:b9:0f:13:7e:ab:1e:06:05: 21:f5:85:fb:12:09:e3:c9:85:44:d0:bf:39:33:96:a7:03:9b: 44:9f:c5:5b:97:0b:a1:f7:08:3e:cd:ab:41:89:e3:9b:8f:c8: 1f:4f:0f:2d -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBSjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD RTZFQzExMC8GA1UEBRMoMzA2NzBGNjFCN0U1MEUwQjBCODhFNzI1MURFODc4NEMw M0M5RTQ2MjAeFw0yNDEwMjIxNTQ3MTRaFw0yNDEwMjkxNTQ3MTRaMBgxFjAUBgNV BAMTDTY3MTdjOTAyLTAyNjcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDMvzAXkXXnz5jIB0ENa6BDQEjBVkpVYp0YXssurubwY+ssvtRntRFO3MkjuhEU sY5xCmOxSFqXNVIweKrWokWRF4j9gMy55Wid7yxuk9PoPUzL6Z2tXm1B3FM1J2R9 ohDrhRQcqeaD6ETx9uSeodgPgKYq5qjL6tdoZdKV99Nuko+4ugmoHTipIlkyeq2F VPT3zCBbFpydsY7dIPAUq4yaLoaOyV3F1O0AUbK8SeDCCT5ZNO5A6xshNwGQ/XoR 4NEgiC8E0uU3bkvFuFlEgMc3Acb+/5egyr9qpY1fg4HA/FBjIX6jlW9TC0xCwLDk i4rfAAB9hewWkDt411WJO9FTAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUVT2jC/hB Atk94VPK6bTOYQwrUSQwHwYDVR0jBBgwFoAUMGcPYbflDgsLiOclHeh4TAPJ5GIw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUNFNkVDLzA4MkE4OUYwMkEy OTExRUY4ODk1RjExQ0M0RjlBRTAyL01HY1BZYmZsRGdzTGlPY2xIZWg0VEFQSjVH SS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvTUdjUFliZmxEZ3NMaU9jbEhlaDRUQVBKNUdJLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUNF NkVDLzA4MkE4OUYwMkEyOTExRUY4ODk1RjExQ0M0RjlBRTAyL01HY1BZYmZsRGdz TGlPY2xIZWg0VEFQSjVHSS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAKUhjOjTQ2lP4+Ga7kxZB/Py5IoP7wzLGHFULcH1TdnHPQHIGEq5uQAG zvawkIwiUYPpPcNYSBx/iuz/T4/elbJRzvbHb4/SeKLnRily+eq7yIVi5iAtpAM5 Gd/1fAfJKOl5A1pXu3abdZxXx91pfiCXJaPHdyQbZt8MT432KSdSPBhAbNRZZ0hJ QVncPSniVWVcJRDQeeddZUMkPaQSek16pOYcQQXo63kr144v+454f7Z6j6/oxHu7 SgkYuaSrCxMqIGffiDKEe9oZuIDZqrq5DxN+qx4GBSH1hfsSCePJhUTQvzkzlqcD m0SfxVuXC6H3CD7Nq0GJ45uPyB9PDy0= -----END CERTIFICATE-----Generated at Tue Oct 22 17:18:40 2024 by rpki-client on console-fra.rpki-client.org