$ rpki-client -vvf rpki.apnic.net/member_repository/A91D0C18/683BA096646611EF8E18F87AC4F9AE02/CJy1orM7eG11SgfWgKnElBQmGeE.mft File: CJy1orM7eG11SgfWgKnElBQmGeE.mft (raw, json) Hash identifier: VTqWz7DUt++brtRVYeX+ygvsktFJTMartSmbAPEr+zw= Subject key identifier: 1F:16:CA:CE:3A:A6:84:1C:D2:B9:B5:14:D9:4A:F7:49:44:E2:35:49 Authority key identifier: 08:9C:B5:A2:B3:3B:78:6D:75:4A:07:D6:80:A9:C4:94:14:26:19:E1 Certificate issuer: /CN=A91D0C18/serialNumber=089CB5A2B33B786D754A07D680A9C494142619E1 Certificate serial: 20 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/CJy1orM7eG11SgfWgKnElBQmGeE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D0C18/683BA096646611EF8E18F87AC4F9AE02/CJy1orM7eG11SgfWgKnElBQmGeE.mft Manifest number: 1F Signing time: Wed 23 Oct 2024 06:32:22 +0000 Manifest this update: Wed 23 Oct 2024 06:32:22 +0000 Manifest next update: Wed 30 Oct 2024 06:32:22 +0000 Files and hashes: 1: CJy1orM7eG11SgfWgKnElBQmGeE.crl (hash: IpKd1/JjHM2vLWNpyo6AKnhQFi1mZt1sukVW6UkHIO8=) 2: EEE0092A646611EFA25D167EC4F9AE02.roa (hash: PB6LRHoIMyYv1uIUIe4A3HeqPVxI7OtzvXNUbqHxj3Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D0C18/683BA096646611EF8E18F87AC4F9AE02/CJy1orM7eG11SgfWgKnElBQmGeE.crl rsync://rpki.apnic.net/member_repository/A91D0C18/683BA096646611EF8E18F87AC4F9AE02/CJy1orM7eG11SgfWgKnElBQmGeE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/CJy1orM7eG11SgfWgKnElBQmGeE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 30 Oct 2024 02:50:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 32 (0x20) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D0C18/serialNumber=089CB5A2B33B786D754A07D680A9C494142619E1 Validity Not Before: Oct 23 06:32:22 2024 GMT Not After : Oct 30 06:32:22 2024 GMT Subject: CN=67189876-a1ae Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:13:7c:69:72:28:5f:de:91:6b:75:5b:50:6a: f3:ea:08:74:b8:86:9c:56:58:ca:0d:3a:26:be:33: c6:99:fb:92:05:10:d4:a1:e5:9f:76:36:06:d3:de: 7a:8c:19:b6:3d:44:a9:06:c1:78:5d:a7:1d:89:79: 56:36:5d:00:95:4d:e6:cc:f1:9a:8a:d6:cf:d0:13: b2:e1:64:ab:4d:e2:d4:cb:e1:c9:24:1a:f4:18:e7: a4:d9:1c:fb:e8:da:81:b5:82:5d:37:67:b4:25:89: 06:5c:c1:74:02:da:8b:88:b8:28:af:a7:ee:7f:15: 5d:23:e6:13:fa:16:0e:77:67:14:f7:fc:75:f9:89: 7e:99:2e:7f:45:50:82:a8:ae:3a:16:85:96:bd:1e: 14:31:ba:b0:b2:3a:1f:bd:69:38:76:61:67:57:6f: 84:c2:f8:79:a7:bf:e2:60:5b:dc:2f:07:ef:d0:9b: 03:72:bd:6e:2a:c5:36:af:5f:0a:c2:f2:33:96:f5: ab:b2:6b:22:74:be:ba:dd:5b:05:51:c1:0e:e5:cc: b9:93:70:f1:8b:03:df:ca:a9:81:c8:ce:85:c4:0a: 5f:c7:e1:1a:b2:2d:83:65:86:75:18:0f:2a:db:b7: 25:26:a4:83:f6:55:94:e4:96:04:9a:45:18:69:15: 5a:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:16:CA:CE:3A:A6:84:1C:D2:B9:B5:14:D9:4A:F7:49:44:E2:35:49 X509v3 Authority Key Identifier: keyid:08:9C:B5:A2:B3:3B:78:6D:75:4A:07:D6:80:A9:C4:94:14:26:19:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D0C18/683BA096646611EF8E18F87AC4F9AE02/CJy1orM7eG11SgfWgKnElBQmGeE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/CJy1orM7eG11SgfWgKnElBQmGeE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D0C18/683BA096646611EF8E18F87AC4F9AE02/CJy1orM7eG11SgfWgKnElBQmGeE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4f:bc:94:4f:59:06:46:e8:0c:99:21:7e:52:76:55:04:23:89: a6:99:db:f4:34:1e:13:ab:7e:7e:38:ed:b4:09:07:81:39:3d: ac:7e:75:33:54:4e:3b:d5:23:a0:3d:75:16:c0:4a:2e:5b:27: 6c:39:88:87:5d:c5:93:06:6b:69:50:60:a9:0e:54:3d:a4:f5: 15:ce:8e:98:21:a0:92:22:f8:ee:14:b3:02:c7:18:90:46:54: b0:b7:60:0d:8d:ee:36:40:8d:bc:7d:11:2d:20:2f:96:1e:22: 02:7a:d4:09:43:91:77:9e:43:df:4a:33:d9:c6:fc:29:8f:0c: 6f:0b:8e:da:5e:e6:27:19:45:f1:7a:4c:14:a7:24:06:37:f0: e9:1f:b5:89:6f:c2:57:15:2e:a5:47:0a:75:d6:1c:e3:f0:ef: fe:bd:65:bf:3c:b5:c7:e1:7e:6c:83:3f:81:b3:20:6b:3a:a5: 1d:3d:05:12:1e:80:0f:e3:e0:4f:53:f9:05:07:98:27:b9:1c: fc:bb:65:c7:8d:41:5b:9a:9d:74:ef:ee:7e:6d:be:3a:d8:fb: ca:be:f7:9a:6d:12:5f:28:44:05:4c:e6:59:40:cd:1d:95:18: a8:fd:a7:35:58:13:d6:e0:69:b7:b9:80:34:c2:8a:bc:42:10: 6c:37:3f:92 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBIDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE MEMxODExMC8GA1UEBRMoMDg5Q0I1QTJCMzNCNzg2RDc1NEEwN0Q2ODBBOUM0OTQx NDI2MTlFMTAeFw0yNDEwMjMwNjMyMjJaFw0yNDEwMzAwNjMyMjJaMBgxFjAUBgNV BAMTDTY3MTg5ODc2LWExYWUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCqE3xpcihf3pFrdVtQavPqCHS4hpxWWMoNOia+M8aZ+5IFENSh5Z92NgbT3nqM GbY9RKkGwXhdpx2JeVY2XQCVTebM8ZqK1s/QE7LhZKtN4tTL4ckkGvQY56TZHPvo 2oG1gl03Z7QliQZcwXQC2ouIuCivp+5/FV0j5hP6Fg53ZxT3/HX5iX6ZLn9FUIKo rjoWhZa9HhQxurCyOh+9aTh2YWdXb4TC+Hmnv+JgW9wvB+/QmwNyvW4qxTavXwrC 8jOW9auyayJ0vrrdWwVRwQ7lzLmTcPGLA9/KqYHIzoXECl/H4RqyLYNlhnUYDyrb tyUmpIP2VZTklgSaRRhpFVprAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUHxbKzjqm hBzSubUU2Ur3SUTiNUkwHwYDVR0jBBgwFoAUCJy1orM7eG11SgfWgKnElBQmGeEw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQwQzE4LzY4M0JBMDk2NjQ2 NjExRUY4RTE4Rjg3QUM0RjlBRTAyL0NKeTFvck03ZUcxMVNnZldnS25FbEJRbUdl RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvQ0p5MW9yTTdlRzExU2dmV2dLbkVsQlFtR2VFLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQw QzE4LzY4M0JBMDk2NjQ2NjExRUY4RTE4Rjg3QUM0RjlBRTAyL0NKeTFvck03ZUcx MVNnZldnS25FbEJRbUdlRS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAE+8lE9ZBkboDJkhflJ2VQQjiaaZ2/Q0HhOrfn447bQJB4E5Pax+dTNU TjvVI6A9dRbASi5bJ2w5iIddxZMGa2lQYKkOVD2k9RXOjpghoJIi+O4UswLHGJBG VLC3YA2N7jZAjbx9ES0gL5YeIgJ61AlDkXeeQ99KM9nG/CmPDG8Ljtpe5icZRfF6 TBSnJAY38OkftYlvwlcVLqVHCnXWHOPw7/69Zb88tcfhfmyDP4GzIGs6pR09BRIe gA/j4E9T+QUHmCe5HPy7ZceNQVuanXTv7n5tvjrY+8q+95ptEl8oRAVM5llAzR2V GKj9pzVYE9bgabe5gDTCirxCEGw3P5I= -----END CERTIFICATE-----Generated at Wed Oct 23 07:46:03 2024 by rpki-client on console-ams.rpki-client.org