$ rpki-client -vvf rpki.apnic.net/member_repository/A91CF064/F3CA617244E211EFB13F2214C4F9AE02/rUMyA4JywtsyFd2jrfsBU1QVaRM.mft File: rUMyA4JywtsyFd2jrfsBU1QVaRM.mft (raw, json) Hash identifier: 45eJyHYZD22568a9HOrhHtS1wlneuUnrqBwmYmH9KGs= Subject key identifier: 0D:13:A2:8C:52:0C:31:99:76:FC:3F:DF:E2:6A:BC:2C:58:18:3D:D2 Authority key identifier: AD:43:32:03:82:72:C2:DB:32:15:DD:A3:AD:FB:01:53:54:15:69:13 Certificate issuer: /CN=A91CF064/serialNumber=AD4332038272C2DB3215DDA3ADFB015354156913 Certificate serial: 27 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/rUMyA4JywtsyFd2jrfsBU1QVaRM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CF064/F3CA617244E211EFB13F2214C4F9AE02/rUMyA4JywtsyFd2jrfsBU1QVaRM.mft Manifest number: 25 Signing time: Thu 19 Sep 2024 06:06:11 +0000 Manifest this update: Thu 19 Sep 2024 06:06:10 +0000 Manifest next update: Thu 26 Sep 2024 06:06:10 +0000 Files and hashes: 1: rUMyA4JywtsyFd2jrfsBU1QVaRM.crl (hash: ZKAsCuSPKD7nWhKt/7RAH/LKH3VCav5y/pcOCaqY9DA=) 2: F74324B0464511EFA4CCFA6DC4F9AE02.roa (hash: fPKFaBZi29sZTZtbLlYUsELWzYxUxH7zVg+U9ijvWSo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CF064/F3CA617244E211EFB13F2214C4F9AE02/rUMyA4JywtsyFd2jrfsBU1QVaRM.crl rsync://rpki.apnic.net/member_repository/A91CF064/F3CA617244E211EFB13F2214C4F9AE02/rUMyA4JywtsyFd2jrfsBU1QVaRM.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/rUMyA4JywtsyFd2jrfsBU1QVaRM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 26 Sep 2024 06:06:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 39 (0x27) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CF064/serialNumber=AD4332038272C2DB3215DDA3ADFB015354156913 Validity Not Before: Sep 19 06:06:10 2024 GMT Not After : Sep 26 06:06:10 2024 GMT Subject: CN=66ebbf52-fe46 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:7c:3a:b4:2f:73:1a:9e:f3:36:34:3a:60:39: e8:b5:07:6c:28:9d:89:6b:93:31:4f:0d:cf:b2:2f: dc:3f:7e:87:58:35:2d:19:9a:3f:61:dd:c8:cc:7f: 69:54:2e:ef:fc:9c:f5:f5:b3:7c:bc:8c:52:59:21: 4d:f0:f2:e9:fb:b5:5a:b4:d2:b8:b3:d1:e9:09:e9: cb:be:47:44:92:83:41:3a:c9:c5:17:8c:80:ed:4a: b5:d3:dc:ff:f2:9e:5a:ab:39:1c:69:7c:f8:47:d6: cb:15:de:31:20:13:67:c4:0e:26:85:5f:57:f0:97: 00:ed:e1:5a:fe:bc:fd:b6:48:65:48:45:c3:0a:9a: 8a:0a:d0:d0:7e:fc:71:f8:5d:ef:1f:14:1e:f1:97: db:ad:37:df:27:65:d8:b7:de:f2:dd:44:61:98:33: 1b:5c:34:b8:4e:74:a8:08:a0:5b:86:84:89:c5:61: c9:1b:e2:67:c3:83:4d:34:51:ac:11:62:7a:96:c6: 49:47:6a:cd:1f:43:d8:4f:2a:3f:bd:a2:6f:df:1b: 62:6c:d8:73:63:2f:cc:a3:62:a3:99:f8:ca:e2:3c: 8e:05:81:eb:10:d1:16:1e:de:f4:20:fc:ee:0d:e5: 26:d4:04:08:48:14:d7:3b:b1:93:b6:ad:d9:bf:b1: d3:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:13:A2:8C:52:0C:31:99:76:FC:3F:DF:E2:6A:BC:2C:58:18:3D:D2 X509v3 Authority Key Identifier: keyid:AD:43:32:03:82:72:C2:DB:32:15:DD:A3:AD:FB:01:53:54:15:69:13 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CF064/F3CA617244E211EFB13F2214C4F9AE02/rUMyA4JywtsyFd2jrfsBU1QVaRM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/rUMyA4JywtsyFd2jrfsBU1QVaRM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CF064/F3CA617244E211EFB13F2214C4F9AE02/rUMyA4JywtsyFd2jrfsBU1QVaRM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 49:8d:33:32:10:1f:b0:9d:11:57:e0:9c:1a:6e:81:db:5d:39: 54:81:c0:a6:58:51:53:84:56:d0:38:54:14:51:a9:48:5c:d2: 48:b1:b8:26:e6:d6:87:d6:7d:cb:e8:c4:59:82:c9:1f:23:9d: 00:4f:86:11:3e:f9:e3:e8:0d:41:ec:66:9b:95:f3:d1:5d:7c: 4a:2a:83:21:b3:f4:76:5e:b9:6d:07:7c:5d:aa:59:13:44:89: 19:3a:cf:28:51:cf:d4:64:6e:0e:8d:0e:1b:6d:dc:c0:7b:c2: 8f:c6:84:a6:31:af:48:43:0d:6a:0e:9c:02:f3:24:28:ce:25: 9b:aa:f7:29:12:08:6f:33:f9:ea:51:49:db:34:39:bf:e3:f8: a7:f7:2b:6f:11:55:be:ef:e5:e9:da:7a:ef:8b:7b:dd:75:9f: 2a:11:4b:9a:5a:68:a7:27:96:da:21:ca:3a:86:be:76:0e:5d: 4e:6e:b5:c5:1d:61:5d:49:fb:5a:5a:47:14:0e:b0:41:4d:08: e9:85:fe:e9:30:86:ce:36:d8:d2:8f:6f:39:6c:68:0e:7e:20: e1:fb:6f:65:6e:c8:3e:b7:c1:fe:84:f6:5f:0f:5e:4d:e9:fa: c9:f6:f6:3c:e8:3a:84:16:8c:14:10:9b:33:87:f5:95:da:04: b1:2f:1d:12 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBJzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD RjA2NDExMC8GA1UEBRMoQUQ0MzMyMDM4MjcyQzJEQjMyMTVEREEzQURGQjAxNTM1 NDE1NjkxMzAeFw0yNDA5MTkwNjA2MTBaFw0yNDA5MjYwNjA2MTBaMBgxFjAUBgNV BAMTDTY2ZWJiZjUyLWZlNDYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDCfDq0L3ManvM2NDpgOei1B2wonYlrkzFPDc+yL9w/fodYNS0Zmj9h3cjMf2lU Lu/8nPX1s3y8jFJZIU3w8un7tVq00riz0ekJ6cu+R0SSg0E6ycUXjIDtSrXT3P/y nlqrORxpfPhH1ssV3jEgE2fEDiaFX1fwlwDt4Vr+vP22SGVIRcMKmooK0NB+/HH4 Xe8fFB7xl9utN98nZdi33vLdRGGYMxtcNLhOdKgIoFuGhInFYckb4mfDg000UawR YnqWxklHas0fQ9hPKj+9om/fG2Js2HNjL8yjYqOZ+MriPI4FgesQ0RYe3vQg/O4N 5SbUBAhIFNc7sZO2rdm/sdMvAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUDROijFIM MZl2/D/f4mq8LFgYPdIwHwYDVR0jBBgwFoAUrUMyA4JywtsyFd2jrfsBU1QVaRMw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUNGMDY0L0YzQ0E2MTcyNDRF MjExRUZCMTNGMjIxNEM0RjlBRTAyL3JVTXlBNEp5d3RzeUZkMmpyZnNCVTFRVmFS TS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvclVNeUE0Snl3dHN5RmQyanJmc0JVMVFWYVJNLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUNG MDY0L0YzQ0E2MTcyNDRFMjExRUZCMTNGMjIxNEM0RjlBRTAyL3JVTXlBNEp5d3Rz eUZkMmpyZnNCVTFRVmFSTS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAEmNMzIQH7CdEVfgnBpugdtdOVSBwKZYUVOEVtA4VBRRqUhc0kixuCbm 1ofWfcvoxFmCyR8jnQBPhhE++ePoDUHsZpuV89FdfEoqgyGz9HZeuW0HfF2qWRNE iRk6zyhRz9Rkbg6NDhtt3MB7wo/GhKYxr0hDDWoOnALzJCjOJZuq9ykSCG8z+epR Sds0Ob/j+Kf3K28RVb7v5enaeu+Le911nyoRS5paaKcnltohyjqGvnYOXU5utcUd YV1J+1paRxQOsEFNCOmF/ukwhs422NKPbzlsaA5+IOH7b2VuyD63wf6E9l8PXk3p +sn29jzoOoQWjBQQmzOH9ZXaBLEvHRI= -----END CERTIFICATE-----Generated at Thu Sep 19 07:14:23 2024 by rpki-client on console-fra.rpki-client.org