$ rpki-client -vvf rpki.apnic.net/member_repository/A91D60CF/E53608F02AFC11EFA0243C4AC4F9AE02/BHT0BqF40ixU1e9yTGssLJo7a5g.mft File: BHT0BqF40ixU1e9yTGssLJo7a5g.mft (raw, json) Hash identifier: Hb6GoaiF9MeQk/vvDzPFzuGWUVJ961e3zhFobUPwXTI= Subject key identifier: 13:4B:D2:7F:31:DB:28:E0:2F:39:EE:13:88:00:65:6F:60:07:F8:52 Authority key identifier: 04:74:F4:06:A1:78:D2:2C:54:D5:EF:72:4C:6B:2C:2C:9A:3B:6B:98 Certificate issuer: /CN=A91D60CF/serialNumber=0474F406A178D22C54D5EF724C6B2C2C9A3B6B98 Certificate serial: 31 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BHT0BqF40ixU1e9yTGssLJo7a5g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D60CF/E53608F02AFC11EFA0243C4AC4F9AE02/BHT0BqF40ixU1e9yTGssLJo7a5g.mft Manifest number: 31 Signing time: Thu 19 Sep 2024 05:52:49 +0000 Manifest this update: Thu 19 Sep 2024 05:52:49 +0000 Manifest next update: Thu 26 Sep 2024 05:52:49 +0000 Files and hashes: 1: BHT0BqF40ixU1e9yTGssLJo7a5g.crl (hash: Uhh8GtwhncJM7hvsGjT0aBnBy2cEVHjMPoKBKodLR78=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D60CF/E53608F02AFC11EFA0243C4AC4F9AE02/BHT0BqF40ixU1e9yTGssLJo7a5g.crl rsync://rpki.apnic.net/member_repository/A91D60CF/E53608F02AFC11EFA0243C4AC4F9AE02/BHT0BqF40ixU1e9yTGssLJo7a5g.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BHT0BqF40ixU1e9yTGssLJo7a5g.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 26 Sep 2024 05:52:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 49 (0x31) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D60CF/serialNumber=0474F406A178D22C54D5EF724C6B2C2C9A3B6B98 Validity Not Before: Sep 19 05:52:49 2024 GMT Not After : Sep 26 05:52:49 2024 GMT Subject: CN=66ebbc31-3fca Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:16:4c:4a:b7:29:fc:50:a0:fe:5e:30:cf:91: ab:7c:8c:cb:3f:f6:78:5e:44:4e:6f:4d:6a:61:6e: 06:e4:8c:d1:ba:86:04:31:12:32:ad:05:0f:93:98: fb:94:dc:08:c9:51:93:3a:49:a4:9c:37:20:11:29: 38:0d:3e:d1:d4:08:02:c0:88:41:8c:6b:e5:b9:d5: 76:e0:33:65:cc:c2:8b:ad:ca:ec:21:02:ce:80:0d: 35:93:27:14:31:df:47:f2:ce:a7:3d:ab:62:e0:6d: 38:4b:3e:f0:b0:33:e0:ed:4b:51:f1:94:0e:0a:04: d0:16:76:8f:22:ab:32:8b:68:b9:b4:e9:49:cd:71: 77:4b:6f:56:61:da:e2:a1:54:32:20:dc:dc:d4:03: 14:0a:99:ac:1f:e2:67:a1:02:a1:67:57:8f:23:d6: 6d:84:8e:d5:e5:8f:36:3d:4f:6b:dc:2b:15:31:c6: 7e:95:70:1d:d5:2f:98:04:d2:c9:a2:2b:78:5e:11: 19:b8:7d:3c:83:21:e8:f7:b5:dd:b0:cb:88:2c:72: 3b:da:ed:d7:b1:6f:45:43:3c:b4:bb:59:32:97:36: 35:16:5d:f4:69:01:11:e0:5b:9f:e9:0c:7c:e8:a4: 0b:c5:a0:6b:42:c1:32:f8:d6:59:26:97:27:3d:07: ab:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:4B:D2:7F:31:DB:28:E0:2F:39:EE:13:88:00:65:6F:60:07:F8:52 X509v3 Authority Key Identifier: keyid:04:74:F4:06:A1:78:D2:2C:54:D5:EF:72:4C:6B:2C:2C:9A:3B:6B:98 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D60CF/E53608F02AFC11EFA0243C4AC4F9AE02/BHT0BqF40ixU1e9yTGssLJo7a5g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BHT0BqF40ixU1e9yTGssLJo7a5g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D60CF/E53608F02AFC11EFA0243C4AC4F9AE02/BHT0BqF40ixU1e9yTGssLJo7a5g.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 03:cb:49:38:0d:69:b8:e8:37:66:6d:50:e9:49:76:a9:ca:34: ac:d2:76:62:19:74:eb:a5:ac:04:c5:56:df:3c:d9:87:fc:c9: 47:3b:5a:97:05:22:56:51:ed:2e:6f:d0:06:6d:1b:0a:85:b3: ed:64:2c:c4:af:2a:52:a9:b7:aa:eb:6d:a5:2e:3e:a7:c2:79: 65:6f:07:06:52:e0:8c:06:fb:24:0c:7d:0f:8b:fa:9b:65:4b: 0e:54:86:ac:36:33:b9:81:b1:32:7c:1e:92:1f:f1:fb:0d:2e: a1:36:3e:a5:87:55:6f:16:41:81:55:4d:ef:2c:49:4d:d7:87: eb:e2:9d:b4:a1:64:30:04:8e:c9:ab:13:a0:24:9b:e0:33:5b: ab:34:31:05:2d:f5:ee:f1:90:3c:19:b2:ea:b5:37:39:1f:a2: 16:28:71:2d:23:92:d0:b5:4e:af:26:7b:16:eb:4e:69:c5:b8: 16:84:04:d6:db:e0:0f:74:5d:51:c2:76:ef:68:f3:24:58:41: dd:90:8b:7a:17:55:89:3b:ce:19:69:f6:8d:c6:fa:38:51:0c: e9:0e:a9:cd:26:2d:6c:d9:79:9c:c8:6f:c9:28:d2:14:d5:0f: 1b:da:f5:7a:3d:f3:50:18:ef:e4:d1:95:a2:25:d9:3a:ce:9c: ea:bb:89:9b -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBMTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE NjBDRjExMC8GA1UEBRMoMDQ3NEY0MDZBMTc4RDIyQzU0RDVFRjcyNEM2QjJDMkM5 QTNCNkI5ODAeFw0yNDA5MTkwNTUyNDlaFw0yNDA5MjYwNTUyNDlaMBgxFjAUBgNV BAMTDTY2ZWJiYzMxLTNmY2EwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDNFkxKtyn8UKD+XjDPkat8jMs/9nheRE5vTWphbgbkjNG6hgQxEjKtBQ+TmPuU 3AjJUZM6SaScNyARKTgNPtHUCALAiEGMa+W51XbgM2XMwoutyuwhAs6ADTWTJxQx 30fyzqc9q2LgbThLPvCwM+DtS1HxlA4KBNAWdo8iqzKLaLm06UnNcXdLb1Zh2uKh VDIg3NzUAxQKmawf4mehAqFnV48j1m2EjtXljzY9T2vcKxUxxn6VcB3VL5gE0smi K3heERm4fTyDIej3td2wy4gscjva7dexb0VDPLS7WTKXNjUWXfRpARHgW5/pDHzo pAvFoGtCwTL41lkmlyc9B6vpAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUE0vSfzHb KOAvOe4TiABlb2AH+FIwHwYDVR0jBBgwFoAUBHT0BqF40ixU1e9yTGssLJo7a5gw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQ2MENGL0U1MzYwOEYwMkFG QzExRUZBMDI0M0M0QUM0RjlBRTAyL0JIVDBCcUY0MGl4VTFlOXlUR3NzTEpvN2E1 Zy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvQkhUMEJxRjQwaXhVMWU5eVRHc3NMSm83YTVnLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQ2 MENGL0U1MzYwOEYwMkFGQzExRUZBMDI0M0M0QUM0RjlBRTAyL0JIVDBCcUY0MGl4 VTFlOXlUR3NzTEpvN2E1Zy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAAPLSTgNabjoN2ZtUOlJdqnKNKzSdmIZdOulrATFVt882Yf8yUc7WpcF IlZR7S5v0AZtGwqFs+1kLMSvKlKpt6rrbaUuPqfCeWVvBwZS4IwG+yQMfQ+L+ptl Sw5Uhqw2M7mBsTJ8HpIf8fsNLqE2PqWHVW8WQYFVTe8sSU3Xh+vinbShZDAEjsmr E6Akm+AzW6s0MQUt9e7xkDwZsuq1NzkfohYocS0jktC1Tq8mexbrTmnFuBaEBNbb 4A90XVHCdu9o8yRYQd2Qi3oXVYk7zhlp9o3G+jhRDOkOqc0mLWzZeZzIb8ko0hTV Dxva9Xo981AY7+TRlaIl2TrOnOq7iZs= -----END CERTIFICATE-----Generated at Thu Sep 19 08:57:54 2024 by rpki-client on console-ams.rpki-client.org