$ rpki-client -vvf rpki.apnic.net/member_repository/A91CF064/FC2FF9C644E211EFB13F2214C4F9AE02/5jRJcTfNjgmazQdoyBzzu0QmUbo.mft File: 5jRJcTfNjgmazQdoyBzzu0QmUbo.mft (raw, json) Hash identifier: HqsTkNu7VwsNRHH93TH7dJKQnwTIfiUrcsqTzH1eZ8U= Subject key identifier: 4B:C4:E1:86:49:13:19:22:AD:68:79:56:93:80:CB:49:B1:3D:1C:A4 Authority key identifier: E6:34:49:71:37:CD:8E:09:9A:CD:07:68:C8:1C:F3:BB:44:26:51:BA Certificate issuer: /CN=A91CF064/serialNumber=E634497137CD8E099ACD0768C81CF3BB442651BA Certificate serial: 20 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5jRJcTfNjgmazQdoyBzzu0QmUbo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CF064/FC2FF9C644E211EFB13F2214C4F9AE02/5jRJcTfNjgmazQdoyBzzu0QmUbo.mft Manifest number: 20 Signing time: Sun 15 Sep 2024 10:19:33 +0000 Manifest this update: Sun 15 Sep 2024 10:19:32 +0000 Manifest next update: Sun 22 Sep 2024 10:19:32 +0000 Files and hashes: 1: 5jRJcTfNjgmazQdoyBzzu0QmUbo.crl (hash: bCvu+qZCIqBIAZ0uhKY5oiI6By+ayoZsjweEuiNB1cs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CF064/FC2FF9C644E211EFB13F2214C4F9AE02/5jRJcTfNjgmazQdoyBzzu0QmUbo.crl rsync://rpki.apnic.net/member_repository/A91CF064/FC2FF9C644E211EFB13F2214C4F9AE02/5jRJcTfNjgmazQdoyBzzu0QmUbo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5jRJcTfNjgmazQdoyBzzu0QmUbo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 22 Sep 2024 02:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 32 (0x20) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CF064/serialNumber=E634497137CD8E099ACD0768C81CF3BB442651BA Validity Not Before: Sep 15 10:19:32 2024 GMT Not After : Sep 22 10:19:32 2024 GMT Subject: CN=66e6b4b4-99ed Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:3b:2a:87:02:24:2a:5c:0f:7e:89:2d:5a:91: e2:5b:c3:3b:2e:1c:a2:d5:44:3d:98:ec:44:2a:31: ac:17:d8:16:e1:a3:37:04:f8:72:fa:3a:31:c2:8e: 38:f9:25:cd:c0:67:8c:2c:70:52:99:e9:a0:34:0b: ba:3b:ac:1e:4e:ff:b7:bf:8e:f7:b2:24:9d:d6:5c: cb:b5:d4:5c:e3:97:bb:d0:05:91:92:b3:59:45:f6: 35:65:3c:bf:c6:6e:f9:76:4b:6b:fc:58:d8:c3:57: e6:de:dd:e1:01:d1:9f:26:f2:da:9d:91:9a:5e:f8: ed:17:e9:70:f7:4f:5e:36:45:5e:9a:90:d6:6b:85: 04:65:3b:f5:84:a5:90:4b:bd:6c:b4:9f:6a:cf:93: 42:28:f1:1e:4c:fb:90:dc:40:f7:f8:af:63:0f:57: 3a:8f:ed:94:9f:13:d9:0e:ba:f2:9f:e4:01:5a:60: e0:0d:7a:31:be:c7:7e:53:23:6c:51:ad:f8:54:8c: b0:6a:c5:99:34:0f:82:e3:65:aa:ef:0a:e6:11:e7: 08:e8:de:e4:20:fe:b6:3d:d5:8b:65:18:ec:c2:1c: 8c:bf:aa:30:eb:f2:be:3f:da:5b:36:92:ba:2b:3f: 27:f7:41:14:c4:f4:45:75:6f:2a:e4:d2:b3:c4:c7: a2:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:C4:E1:86:49:13:19:22:AD:68:79:56:93:80:CB:49:B1:3D:1C:A4 X509v3 Authority Key Identifier: keyid:E6:34:49:71:37:CD:8E:09:9A:CD:07:68:C8:1C:F3:BB:44:26:51:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CF064/FC2FF9C644E211EFB13F2214C4F9AE02/5jRJcTfNjgmazQdoyBzzu0QmUbo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5jRJcTfNjgmazQdoyBzzu0QmUbo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CF064/FC2FF9C644E211EFB13F2214C4F9AE02/5jRJcTfNjgmazQdoyBzzu0QmUbo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 25:0c:fb:64:79:8c:6f:c5:ef:2d:27:57:12:3d:87:66:fe:3b: a8:94:63:ba:8c:d9:67:c6:f7:22:f8:c7:be:17:44:b4:58:4c: 48:d5:1d:d1:88:8d:a4:a3:b9:8b:43:ea:11:6f:b6:9a:81:39: cf:ff:0e:f1:c8:2a:78:97:fb:e6:cb:ea:50:08:4f:b6:20:3d: 65:02:e4:3e:93:b5:8e:d1:18:90:24:cf:9e:97:76:e1:3c:f1: df:5e:e7:d4:50:b6:fa:7d:6e:b7:b5:d4:8b:c6:32:5f:63:82: 29:65:ff:b7:fd:47:e7:bd:1a:a6:92:98:48:ae:e8:98:24:71: c5:ef:bc:af:e1:d4:4f:1d:4d:fe:de:07:19:a4:77:ce:d5:a8: b2:e0:27:df:29:f3:56:c0:80:ef:5d:c7:53:3b:86:8c:ec:5e: 73:fe:c9:43:4f:09:84:15:4f:f6:ad:3c:22:38:47:96:f6:ea: 57:21:e8:61:ac:c2:65:5a:f3:4a:fe:aa:7c:b7:9c:d1:d1:03: 27:66:b0:ba:b3:85:a3:57:94:80:48:e1:58:02:f4:b7:68:5a: 42:90:8a:8b:32:c3:30:6a:7f:4b:38:ee:98:b5:1d:d1:53:f7: 3a:a2:c0:a4:74:fd:82:cb:e6:dc:d7:38:d9:8a:92:8f:b4:d1: af:6e:0b:d6 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBIDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD RjA2NDExMC8GA1UEBRMoRTYzNDQ5NzEzN0NEOEUwOTlBQ0QwNzY4QzgxQ0YzQkI0 NDI2NTFCQTAeFw0yNDA5MTUxMDE5MzJaFw0yNDA5MjIxMDE5MzJaMBgxFjAUBgNV BAMTDTY2ZTZiNGI0LTk5ZWQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC7OyqHAiQqXA9+iS1akeJbwzsuHKLVRD2Y7EQqMawX2BbhozcE+HL6OjHCjjj5 Jc3AZ4wscFKZ6aA0C7o7rB5O/7e/jveyJJ3WXMu11Fzjl7vQBZGSs1lF9jVlPL/G bvl2S2v8WNjDV+be3eEB0Z8m8tqdkZpe+O0X6XD3T142RV6akNZrhQRlO/WEpZBL vWy0n2rPk0Io8R5M+5DcQPf4r2MPVzqP7ZSfE9kOuvKf5AFaYOANejG+x35TI2xR rfhUjLBqxZk0D4LjZarvCuYR5wjo3uQg/rY91YtlGOzCHIy/qjDr8r4/2ls2kror Pyf3QRTE9EV1byrk0rPEx6LNAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUS8ThhkkT GSKtaHlWk4DLSbE9HKQwHwYDVR0jBBgwFoAU5jRJcTfNjgmazQdoyBzzu0QmUbow DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUNGMDY0L0ZDMkZGOUM2NDRF MjExRUZCMTNGMjIxNEM0RjlBRTAyLzVqUkpjVGZOamdtYXpRZG95Qnp6dTBRbVVi by5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvNWpSSmNUZk5qZ21helFkb3lCenp1MFFtVWJvLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUNG MDY0L0ZDMkZGOUM2NDRFMjExRUZCMTNGMjIxNEM0RjlBRTAyLzVqUkpjVGZOamdt YXpRZG95Qnp6dTBRbVViby5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBACUM+2R5jG/F7y0nVxI9h2b+O6iUY7qM2WfG9yL4x74XRLRYTEjVHdGI jaSjuYtD6hFvtpqBOc//DvHIKniX++bL6lAIT7YgPWUC5D6TtY7RGJAkz56XduE8 8d9e59RQtvp9bre11IvGMl9jgill/7f9R+e9GqaSmEiu6JgkccXvvK/h1E8dTf7e Bxmkd87VqLLgJ98p81bAgO9dx1M7hozsXnP+yUNPCYQVT/atPCI4R5b26lch6GGs wmVa80r+qny3nNHRAydmsLqzhaNXlIBI4VgC9LdoWkKQiosywzBqf0s47pi1HdFT 9zqiwKR0/YLL5tzXONmKko+00a9uC9Y= -----END CERTIFICATE-----Generated at Sun Sep 15 13:42:44 2024 by rpki-client on console-fra.rpki-client.org