$ rpki-client -vvf rpki.apnic.net/member_repository/A91D824A/4ADF33FC5B9A11EF8307F540C4F9AE02/XHIqJhQciPfNQPObN0raf7wfmx8.mft File: XHIqJhQciPfNQPObN0raf7wfmx8.mft (raw, json) Hash identifier: b43Hp+YzTWxCzpZdlkz6MJkqilbljzltLip3Y7WIbQE= Subject key identifier: B6:26:E5:F4:9D:27:9B:43:38:90:F8:83:68:35:DF:5E:69:DE:D5:1C Authority key identifier: 5C:72:2A:26:14:1C:88:F7:CD:40:F3:9B:37:4A:DA:7F:BC:1F:9B:1F Certificate issuer: /CN=A91D824A/serialNumber=5C722A26141C88F7CD40F39B374ADA7FBC1F9B1F Certificate serial: 17 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XHIqJhQciPfNQPObN0raf7wfmx8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D824A/4ADF33FC5B9A11EF8307F540C4F9AE02/XHIqJhQciPfNQPObN0raf7wfmx8.mft Manifest number: 15 Signing time: Thu 19 Sep 2024 06:18:25 +0000 Manifest this update: Thu 19 Sep 2024 06:18:25 +0000 Manifest next update: Thu 26 Sep 2024 06:18:25 +0000 Files and hashes: 1: XHIqJhQciPfNQPObN0raf7wfmx8.crl (hash: IW9t5LqEHw10FRJity3InFQwTwjaIOieOq42kHwBGfA=) 2: AA5F20585B9A11EFBB8CB141C4F9AE02.roa (hash: ecxjqjNdTq+EP2ECpqRdRKRjGTmFLrzhQxbK9x8LpmM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D824A/4ADF33FC5B9A11EF8307F540C4F9AE02/XHIqJhQciPfNQPObN0raf7wfmx8.crl rsync://rpki.apnic.net/member_repository/A91D824A/4ADF33FC5B9A11EF8307F540C4F9AE02/XHIqJhQciPfNQPObN0raf7wfmx8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XHIqJhQciPfNQPObN0raf7wfmx8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 26 Sep 2024 06:11:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 23 (0x17) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D824A/serialNumber=5C722A26141C88F7CD40F39B374ADA7FBC1F9B1F Validity Not Before: Sep 19 06:18:25 2024 GMT Not After : Sep 26 06:18:25 2024 GMT Subject: CN=66ebc231-79ef Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:9b:ce:af:8d:94:c4:70:9b:3c:99:72:36:eb: aa:b9:fc:76:79:5f:6d:32:40:28:33:f9:f7:7a:3e: 83:7f:01:cb:b5:7f:aa:18:be:4d:99:ba:8c:46:05: 2f:4c:27:ff:6c:25:2f:96:83:5f:ff:b2:05:d1:a3: 36:2a:e8:ba:20:ae:ac:27:56:6f:40:66:a3:61:ec: d1:48:3f:0a:0a:93:88:6a:7e:e1:f8:ee:48:33:2c: 97:50:43:b5:c8:c1:1c:13:7e:31:05:fb:40:b8:16: d2:99:aa:52:ce:ff:ef:4a:e8:33:5c:ca:c3:01:03: a0:f1:49:69:93:30:e0:ae:09:e8:b4:da:16:e7:32: 0c:79:b2:1f:9e:90:64:93:e2:0a:f5:bb:ce:43:56: 65:f6:a9:61:65:d5:a3:d0:62:63:d1:1a:8a:f4:1c: 46:d7:ac:e6:4c:9d:3b:a9:b3:df:5c:65:4a:98:b3: 1a:44:83:03:f6:c9:9f:fc:bf:cf:0a:49:fd:68:34: b5:07:7c:da:21:b8:f4:38:76:1b:90:dd:8e:82:37: 86:b7:66:ee:ee:4b:a3:6c:3d:32:d3:b5:95:b2:ff: 05:5d:56:07:2e:be:cf:0a:3b:db:2c:40:1d:8c:3a: 0a:82:eb:13:0e:d1:67:5c:dd:f1:e5:f5:79:59:6f: 7a:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B6:26:E5:F4:9D:27:9B:43:38:90:F8:83:68:35:DF:5E:69:DE:D5:1C X509v3 Authority Key Identifier: keyid:5C:72:2A:26:14:1C:88:F7:CD:40:F3:9B:37:4A:DA:7F:BC:1F:9B:1F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D824A/4ADF33FC5B9A11EF8307F540C4F9AE02/XHIqJhQciPfNQPObN0raf7wfmx8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XHIqJhQciPfNQPObN0raf7wfmx8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D824A/4ADF33FC5B9A11EF8307F540C4F9AE02/XHIqJhQciPfNQPObN0raf7wfmx8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 42:d1:aa:6e:54:ec:b2:a1:9b:5a:c4:44:78:63:ae:2c:18:42: ef:81:b8:8c:54:ed:ab:52:68:01:5f:fe:5a:6e:64:b0:33:ef: 40:95:da:0a:18:5b:ce:ec:91:e1:de:ae:ca:4b:26:70:78:d9: 11:b7:a1:6c:85:9b:12:29:87:6c:04:ce:f2:27:bf:da:eb:85: a3:85:71:c6:cc:0d:f4:1a:25:c0:4e:f3:09:0e:62:68:28:0d: c1:b2:f3:07:a6:cd:ba:a5:74:88:38:b6:a3:2a:54:29:e3:5c: 32:0d:31:8f:e3:0f:14:78:e0:a0:df:fb:75:6d:29:aa:0c:2e: 2f:2a:85:c8:ab:14:17:36:dd:00:0d:41:46:e3:53:c3:fb:a3: b5:49:ff:0e:15:64:c5:05:10:b5:b8:93:78:0c:cb:5d:dd:8e: f6:bb:4e:75:8b:d2:ee:36:3b:01:4f:48:37:9e:ae:c0:1c:34: c1:46:94:b5:23:a1:c5:89:3a:7b:2e:02:44:ff:e0:e6:88:d1: 00:ec:2c:f6:b9:ec:35:37:d7:c0:75:0e:bc:9a:c7:b3:85:52: 7f:41:5e:34:80:cc:93:94:0e:be:fb:9f:59:2e:48:6a:a1:61: 8a:86:3a:7a:79:12:a7:99:3d:cd:4d:ad:5f:c1:30:19:96:7e: 24:45:74:3d -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBFzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE ODI0QTExMC8GA1UEBRMoNUM3MjJBMjYxNDFDODhGN0NENDBGMzlCMzc0QURBN0ZC QzFGOUIxRjAeFw0yNDA5MTkwNjE4MjVaFw0yNDA5MjYwNjE4MjVaMBgxFjAUBgNV BAMTDTY2ZWJjMjMxLTc5ZWYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDKm86vjZTEcJs8mXI266q5/HZ5X20yQCgz+fd6PoN/Acu1f6oYvk2ZuoxGBS9M J/9sJS+Wg1//sgXRozYq6LogrqwnVm9AZqNh7NFIPwoKk4hqfuH47kgzLJdQQ7XI wRwTfjEF+0C4FtKZqlLO/+9K6DNcysMBA6DxSWmTMOCuCei02hbnMgx5sh+ekGST 4gr1u85DVmX2qWFl1aPQYmPRGor0HEbXrOZMnTups99cZUqYsxpEgwP2yZ/8v88K Sf1oNLUHfNohuPQ4dhuQ3Y6CN4a3Zu7uS6NsPTLTtZWy/wVdVgcuvs8KO9ssQB2M OgqC6xMO0Wdc3fHl9XlZb3pDAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUtibl9J0n m0M4kPiDaDXfXmne1RwwHwYDVR0jBBgwFoAUXHIqJhQciPfNQPObN0raf7wfmx8w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQ4MjRBLzRBREYzM0ZDNUI5 QTExRUY4MzA3RjU0MEM0RjlBRTAyL1hISXFKaFFjaVBmTlFQT2JOMHJhZjd3Zm14 OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvWEhJcUpoUWNpUGZOUVBPYk4wcmFmN3dmbXg4LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQ4 MjRBLzRBREYzM0ZDNUI5QTExRUY4MzA3RjU0MEM0RjlBRTAyL1hISXFKaFFjaVBm TlFQT2JOMHJhZjd3Zm14OC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAELRqm5U7LKhm1rERHhjriwYQu+BuIxU7atSaAFf/lpuZLAz70CV2goY W87skeHerspLJnB42RG3oWyFmxIph2wEzvInv9rrhaOFccbMDfQaJcBO8wkOYmgo DcGy8wemzbqldIg4tqMqVCnjXDINMY/jDxR44KDf+3VtKaoMLi8qhcirFBc23QAN QUbjU8P7o7VJ/w4VZMUFELW4k3gMy13djva7TnWL0u42OwFPSDeersAcNMFGlLUj ocWJOnsuAkT/4OaI0QDsLPa57DU318B1Dryax7OFUn9BXjSAzJOUDr77n1kuSGqh YYqGOnp5EqeZPc1NrV/BMBmWfiRFdD0= -----END CERTIFICATE-----Generated at Thu Sep 19 07:14:24 2024 by rpki-client on console-fra.rpki-client.org