$ rpki-client -vvf rpki.apnic.net/member_repository/A91CEE85/FC66F5AE45AD11EFB435EB6FC4F9AE02/ByRKmUzcS5OAdHEcQkjUn51Q2Cc.mft File: ByRKmUzcS5OAdHEcQkjUn51Q2Cc.mft (raw, json) Hash identifier: Jj8tVSULvjtM1nuznkx6vXre60q4TwgARk7hTxytIqk= Subject key identifier: BD:FF:DB:5F:97:19:27:EF:0B:4C:BD:18:9A:CF:51:37:F3:B9:7C:BD Authority key identifier: 07:24:4A:99:4C:DC:4B:93:80:74:71:1C:42:48:D4:9F:9D:50:D8:27 Certificate issuer: /CN=A91CEE85/serialNumber=07244A994CDC4B938074711C4248D49F9D50D827 Certificate serial: 23 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ByRKmUzcS5OAdHEcQkjUn51Q2Cc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CEE85/FC66F5AE45AD11EFB435EB6FC4F9AE02/ByRKmUzcS5OAdHEcQkjUn51Q2Cc.mft Manifest number: 22 Signing time: Thu 19 Sep 2024 06:06:46 +0000 Manifest this update: Thu 19 Sep 2024 06:06:46 +0000 Manifest next update: Thu 26 Sep 2024 06:06:46 +0000 Files and hashes: 1: ByRKmUzcS5OAdHEcQkjUn51Q2Cc.crl (hash: ZKG1HKREGfVP/cyikXxU8VXEdBhaCwZJGCZHZcHVUdg=) 2: C2838C8245B011EFAE60CC76C4F9AE02.roa (hash: hwH3UwPPp5HcdIoVJGmqXyZx+8wSSAmPJHdJhpeAuug=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CEE85/FC66F5AE45AD11EFB435EB6FC4F9AE02/ByRKmUzcS5OAdHEcQkjUn51Q2Cc.crl rsync://rpki.apnic.net/member_repository/A91CEE85/FC66F5AE45AD11EFB435EB6FC4F9AE02/ByRKmUzcS5OAdHEcQkjUn51Q2Cc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ByRKmUzcS5OAdHEcQkjUn51Q2Cc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 26 Sep 2024 06:06:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35 (0x23) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CEE85/serialNumber=07244A994CDC4B938074711C4248D49F9D50D827 Validity Not Before: Sep 19 06:06:46 2024 GMT Not After : Sep 26 06:06:46 2024 GMT Subject: CN=66ebbf76-1bbb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:c3:ed:8a:2d:cf:e8:44:c9:bc:6c:2d:e0:21: 1c:7d:ed:2b:cc:94:c3:c8:61:41:b7:33:8e:13:91: 2a:e6:27:ba:b6:d9:ab:73:3c:c7:73:cd:6e:4d:20: be:88:be:ad:13:23:fc:81:00:a4:50:cf:5c:3c:52: eb:2e:71:7f:3d:fc:ea:78:e5:93:84:0f:49:94:3e: 23:a1:ed:67:67:c8:55:0f:00:1e:61:95:4d:f7:4e: 64:d6:8f:ec:52:37:23:e2:df:a6:4b:86:cb:8a:88: ee:c4:20:29:4b:99:04:bd:57:89:60:a3:0f:42:65: 65:05:21:6b:35:54:f7:48:80:99:9d:95:6d:0f:5a: 4e:dd:83:0c:7f:3e:d4:59:80:a9:87:1a:10:b0:60: c6:44:de:d3:1b:9b:c3:80:2c:57:25:b7:02:0d:59: 4b:3a:54:5e:ad:3e:f7:1b:d4:d7:96:43:9f:1e:82: 5c:2d:cd:a3:02:ab:6e:bc:50:ff:8f:51:d8:e4:3b: 6c:79:5b:0c:47:67:c9:02:4b:08:64:54:b3:d1:b1: c9:46:7b:9b:c0:fa:0c:c7:1b:84:ae:5b:d9:07:c1: 40:c9:17:81:33:f3:52:ff:58:cd:67:20:5b:06:d1: c5:1e:52:c1:d6:70:ba:dd:84:c4:e9:12:a1:ae:b4: 68:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:FF:DB:5F:97:19:27:EF:0B:4C:BD:18:9A:CF:51:37:F3:B9:7C:BD X509v3 Authority Key Identifier: keyid:07:24:4A:99:4C:DC:4B:93:80:74:71:1C:42:48:D4:9F:9D:50:D8:27 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CEE85/FC66F5AE45AD11EFB435EB6FC4F9AE02/ByRKmUzcS5OAdHEcQkjUn51Q2Cc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ByRKmUzcS5OAdHEcQkjUn51Q2Cc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CEE85/FC66F5AE45AD11EFB435EB6FC4F9AE02/ByRKmUzcS5OAdHEcQkjUn51Q2Cc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2b:16:91:83:fb:a9:86:9e:4c:27:57:5c:d9:8d:89:70:a0:4e: 72:4c:4b:47:e3:40:40:8f:c1:e4:a3:f5:64:36:7f:f7:69:76: 5c:04:b7:f4:db:27:ae:f6:bc:91:35:59:ea:31:6e:1c:62:1e: 0c:70:8b:2c:12:70:b8:dc:87:04:51:ec:9c:3a:4b:4c:12:44: 47:e3:d9:18:b8:86:1d:25:65:53:d4:00:1a:18:97:ae:90:b5: 13:d9:3b:95:d7:d0:e0:6f:93:4d:7e:70:5e:f3:2f:28:93:e1: 1d:b1:8c:f3:01:00:c6:c5:5a:30:98:93:e1:2f:36:93:2e:98: 7c:64:ce:51:75:e6:38:78:e5:82:7d:b7:d3:3e:54:fc:34:a7: 45:ec:50:34:96:42:94:6d:46:25:b9:91:56:f9:d5:9d:c4:41: 92:0a:8a:64:88:bf:bd:a8:a2:7f:8b:3a:fa:65:a6:6b:26:82: cd:e3:a4:d0:e7:44:b3:5c:60:cb:d4:97:5f:95:83:4a:63:52: c8:6a:01:ac:10:8b:e1:78:1d:db:21:a8:cc:b1:da:69:e0:07: 79:a7:7c:e9:e2:c4:b8:a7:84:cf:03:75:5c:fa:0e:30:80:23: 06:04:4f:85:8e:f3:21:8a:f9:5f:37:f6:37:d8:58:34:99:b8: 31:c6:da:cd -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBIzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD RUU4NTExMC8GA1UEBRMoMDcyNDRBOTk0Q0RDNEI5MzgwNzQ3MTFDNDI0OEQ0OUY5 RDUwRDgyNzAeFw0yNDA5MTkwNjA2NDZaFw0yNDA5MjYwNjA2NDZaMBgxFjAUBgNV BAMTDTY2ZWJiZjc2LTFiYmIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDxw+2KLc/oRMm8bC3gIRx97SvMlMPIYUG3M44TkSrmJ7q22atzPMdzzW5NIL6I vq0TI/yBAKRQz1w8UusucX89/Op45ZOED0mUPiOh7WdnyFUPAB5hlU33TmTWj+xS NyPi36ZLhsuKiO7EIClLmQS9V4lgow9CZWUFIWs1VPdIgJmdlW0PWk7dgwx/PtRZ gKmHGhCwYMZE3tMbm8OALFcltwINWUs6VF6tPvcb1NeWQ58eglwtzaMCq268UP+P UdjkO2x5WwxHZ8kCSwhkVLPRsclGe5vA+gzHG4SuW9kHwUDJF4Ez81L/WM1nIFsG 0cUeUsHWcLrdhMTpEqGutGhFAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUvf/bX5cZ J+8LTL0Yms9RN/O5fL0wHwYDVR0jBBgwFoAUByRKmUzcS5OAdHEcQkjUn51Q2Ccw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUNFRTg1L0ZDNjZGNUFFNDVB RDExRUZCNDM1RUI2RkM0RjlBRTAyL0J5UkttVXpjUzVPQWRIRWNRa2pVbjUxUTJD Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvQnlSS21VemNTNU9BZEhFY1FralVuNTFRMkNjLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUNF RTg1L0ZDNjZGNUFFNDVBRDExRUZCNDM1RUI2RkM0RjlBRTAyL0J5UkttVXpjUzVP QWRIRWNRa2pVbjUxUTJDYy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBACsWkYP7qYaeTCdXXNmNiXCgTnJMS0fjQECPweSj9WQ2f/dpdlwEt/Tb J672vJE1WeoxbhxiHgxwiywScLjchwRR7Jw6S0wSREfj2Ri4hh0lZVPUABoYl66Q tRPZO5XX0OBvk01+cF7zLyiT4R2xjPMBAMbFWjCYk+EvNpMumHxkzlF15jh45YJ9 t9M+VPw0p0XsUDSWQpRtRiW5kVb51Z3EQZIKimSIv72oon+LOvplpmsmgs3jpNDn RLNcYMvUl1+Vg0pjUshqAawQi+F4HdshqMyx2mngB3mnfOnixLinhM8DdVz6DjCA IwYET4WO8yGK+V839jfYWDSZuDHG2s0= -----END CERTIFICATE-----Generated at Thu Sep 19 08:57:54 2024 by rpki-client on console-ams.rpki-client.org