$ rpki-client -vvf rpki.apnic.net/member_repository/A91D2B62/BD29B8165AE011EF8651B61BC4F9AE02/5vZdIhtZX2uhPrMU3uM4yiQeJyA.mft File: 5vZdIhtZX2uhPrMU3uM4yiQeJyA.mft (raw, json) Hash identifier: Darh3ucUKS1r2cnbcidfms7H51WLNR11UZwdo6m5NbA= Subject key identifier: 79:39:91:89:91:84:03:9F:F9:40:FD:B0:92:6C:9C:37:2E:40:5C:A0 Authority key identifier: E6:F6:5D:22:1B:59:5F:6B:A1:3E:B3:14:DE:E3:38:CA:24:1E:27:20 Certificate issuer: /CN=A91D2B62/serialNumber=E6F65D221B595F6BA13EB314DEE338CA241E2720 Certificate serial: 15 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5vZdIhtZX2uhPrMU3uM4yiQeJyA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D2B62/BD29B8165AE011EF8651B61BC4F9AE02/5vZdIhtZX2uhPrMU3uM4yiQeJyA.mft Manifest number: 14 Signing time: Thu 19 Sep 2024 06:16:47 +0000 Manifest this update: Thu 19 Sep 2024 06:16:46 +0000 Manifest next update: Thu 26 Sep 2024 06:16:46 +0000 Files and hashes: 1: 5vZdIhtZX2uhPrMU3uM4yiQeJyA.crl (hash: 4ne/tQZtkuL57VkASaKozroe2mjzvkozQIhVd0MBL58=) 2: F47CB05C5AE011EFB4CD7428C4F9AE02.roa (hash: SolE9/ls/4rdz8cVUNMpZ46SrWa9Gee/JJmOyfWq0t8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D2B62/BD29B8165AE011EF8651B61BC4F9AE02/5vZdIhtZX2uhPrMU3uM4yiQeJyA.crl rsync://rpki.apnic.net/member_repository/A91D2B62/BD29B8165AE011EF8651B61BC4F9AE02/5vZdIhtZX2uhPrMU3uM4yiQeJyA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5vZdIhtZX2uhPrMU3uM4yiQeJyA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 26 Sep 2024 06:11:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 21 (0x15) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D2B62/serialNumber=E6F65D221B595F6BA13EB314DEE338CA241E2720 Validity Not Before: Sep 19 06:16:46 2024 GMT Not After : Sep 26 06:16:46 2024 GMT Subject: CN=66ebc1ce-cd56 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:b4:66:6b:35:e6:2b:bf:71:57:c8:8a:70:35: 89:cb:f8:71:ff:43:5d:b2:df:bc:e2:c2:fe:c7:59: fe:10:ae:11:d3:9c:d2:9c:d4:a8:31:b2:aa:b3:d5: d5:2a:b0:2e:0e:9e:7c:ce:3a:5f:71:42:62:07:5f: 87:f3:4f:ab:2d:e0:26:db:e6:e2:d2:1c:17:43:95: 8f:a4:dd:90:fa:60:00:62:a8:80:df:b9:37:f2:e4: fc:ec:ab:1f:b1:82:1e:3a:f4:17:68:25:aa:88:03: b1:47:08:c7:e4:e4:21:00:a8:b8:e7:c9:a4:75:3b: 06:b1:30:62:90:58:e1:28:ac:46:a9:eb:64:5d:3b: 3e:92:7b:84:ed:e6:85:d9:a5:25:0e:55:6d:97:af: 08:cd:d5:05:28:5c:38:dd:4b:11:f6:29:9f:8f:31: fd:f5:81:97:34:87:98:27:e1:c5:b9:d8:6c:13:01: 31:46:0b:ce:55:29:96:d4:d8:44:67:a8:26:91:b0: ca:6f:ac:73:2c:f8:2e:b7:85:8b:a9:a0:9f:36:bb: b1:73:7e:d2:17:a2:60:d0:53:6e:16:31:2f:08:44: 33:66:09:0c:c5:79:e8:fb:17:6d:ad:72:53:7b:bb: 29:f1:db:94:60:f5:fe:55:40:79:8a:7b:fe:74:06: dc:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:39:91:89:91:84:03:9F:F9:40:FD:B0:92:6C:9C:37:2E:40:5C:A0 X509v3 Authority Key Identifier: keyid:E6:F6:5D:22:1B:59:5F:6B:A1:3E:B3:14:DE:E3:38:CA:24:1E:27:20 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D2B62/BD29B8165AE011EF8651B61BC4F9AE02/5vZdIhtZX2uhPrMU3uM4yiQeJyA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5vZdIhtZX2uhPrMU3uM4yiQeJyA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D2B62/BD29B8165AE011EF8651B61BC4F9AE02/5vZdIhtZX2uhPrMU3uM4yiQeJyA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 99:f8:d8:48:f4:14:10:03:8c:47:75:ee:26:5c:c5:c9:2f:96: cd:1c:ae:3c:58:9c:63:ff:1f:a4:1d:be:b1:d6:66:65:56:2b: 45:02:40:0c:a4:25:37:68:85:bc:92:15:08:89:28:22:c0:ee: ce:bd:0e:cd:69:f4:6a:b7:3b:18:3e:48:3f:49:3f:5a:15:af: 82:2b:20:a1:da:e3:8b:9e:4c:a8:8d:23:19:49:9e:cf:1d:a7: 7e:f2:4c:93:2d:38:f9:54:ab:fc:bc:f5:b1:50:87:39:f8:f9: 3e:02:dc:28:5b:a5:1b:33:f1:51:ea:1d:59:8d:23:e7:b6:19: 36:ca:50:0b:f1:af:c0:fb:86:a3:ee:89:7e:46:ba:b9:af:08: 69:83:1d:71:e8:87:e7:d7:f5:27:ea:f3:10:61:65:21:46:e7: 96:66:fe:b4:b1:80:6c:72:09:06:fe:ac:0d:cf:ad:59:c9:31: c4:0a:34:34:7c:76:0a:79:d8:fd:a2:f8:85:77:60:2c:62:22: b7:ff:5c:a5:ec:1a:a4:8d:f4:48:e3:80:6e:c8:e0:a2:70:97: df:ee:77:4e:40:69:1b:fa:ee:46:a7:8e:9c:b8:7e:cd:d1:31: 0b:c2:3a:e8:7e:c2:6c:fe:48:68:ee:e4:35:fe:39:5f:37:00: 15:9d:44:84 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBFTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE MkI2MjExMC8GA1UEBRMoRTZGNjVEMjIxQjU5NUY2QkExM0VCMzE0REVFMzM4Q0Ey NDFFMjcyMDAeFw0yNDA5MTkwNjE2NDZaFw0yNDA5MjYwNjE2NDZaMBgxFjAUBgNV BAMTDTY2ZWJjMWNlLWNkNTYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDqtGZrNeYrv3FXyIpwNYnL+HH/Q12y37ziwv7HWf4QrhHTnNKc1Kgxsqqz1dUq sC4OnnzOOl9xQmIHX4fzT6st4Cbb5uLSHBdDlY+k3ZD6YABiqIDfuTfy5Pzsqx+x gh469BdoJaqIA7FHCMfk5CEAqLjnyaR1OwaxMGKQWOEorEap62RdOz6Se4Tt5oXZ pSUOVW2XrwjN1QUoXDjdSxH2KZ+PMf31gZc0h5gn4cW52GwTATFGC85VKZbU2ERn qCaRsMpvrHMs+C63hYupoJ82u7FzftIXomDQU24WMS8IRDNmCQzFeej7F22tclN7 uynx25Rg9f5VQHmKe/50Bty3AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUeTmRiZGE A5/5QP2wkmycNy5AXKAwHwYDVR0jBBgwFoAU5vZdIhtZX2uhPrMU3uM4yiQeJyAw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQyQjYyL0JEMjlCODE2NUFF MDExRUY4NjUxQjYxQkM0RjlBRTAyLzV2WmRJaHRaWDJ1aFByTVUzdU00eWlRZUp5 QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvNXZaZElodFpYMnVoUHJNVTN1TTR5aVFlSnlBLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQy QjYyL0JEMjlCODE2NUFFMDExRUY4NjUxQjYxQkM0RjlBRTAyLzV2WmRJaHRaWDJ1 aFByTVUzdU00eWlRZUp5QS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAJn42Ej0FBADjEd17iZcxckvls0crjxYnGP/H6QdvrHWZmVWK0UCQAyk JTdohbySFQiJKCLA7s69Ds1p9Gq3Oxg+SD9JP1oVr4IrIKHa44ueTKiNIxlJns8d p37yTJMtOPlUq/y89bFQhzn4+T4C3ChbpRsz8VHqHVmNI+e2GTbKUAvxr8D7hqPu iX5GurmvCGmDHXHoh+fX9Sfq8xBhZSFG55Zm/rSxgGxyCQb+rA3PrVnJMcQKNDR8 dgp52P2i+IV3YCxiIrf/XKXsGqSN9EjjgG7I4KJwl9/ud05AaRv67kanjpy4fs3R MQvCOuh+wmz+SGju5DX+OV83ABWdRIQ= -----END CERTIFICATE-----Generated at Thu Sep 19 07:14:24 2024 by rpki-client on console-fra.rpki-client.org