$ rpki-client -vvf rpki.apnic.net/member_repository/A91D9B1B/F9FEE0463CF811EFA367C385C4F9AE02/01nlbdoAA8SD861qQMCA6Qy41HI.mft File: 01nlbdoAA8SD861qQMCA6Qy41HI.mft (raw, json) Hash identifier: s5LdZfeIOEIZYchypUB1hy6kB0KX6Bss2uxMP4FM1dM= Subject key identifier: 13:27:0A:90:12:21:2C:FE:BF:1E:7F:B7:2D:B9:1E:21:1F:AB:EB:59 Authority key identifier: D3:59:E5:6D:DA:00:03:C4:83:F3:AD:6A:40:C0:80:E9:0C:B8:D4:72 Certificate issuer: /CN=A91D9B1B/serialNumber=D359E56DDA0003C483F3AD6A40C080E90CB8D472 Certificate serial: 2B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/01nlbdoAA8SD861qQMCA6Qy41HI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D9B1B/F9FEE0463CF811EFA367C385C4F9AE02/01nlbdoAA8SD861qQMCA6Qy41HI.mft Manifest number: 28 Signing time: Sun 15 Sep 2024 10:14:33 +0000 Manifest this update: Sun 15 Sep 2024 10:14:33 +0000 Manifest next update: Sun 22 Sep 2024 10:14:33 +0000 Files and hashes: 1: 01nlbdoAA8SD861qQMCA6Qy41HI.crl (hash: zBtJvg0JY7FSzoCltMryPTzpPSHWIv57IySxe09ma1A=) 2: 97530E023D0911EFA33E4A38C4F9AE02.roa (hash: bWCEf7xphHzCuEdSJWfNIfntO4HJguemBgMtzB7ylYA=) 3: 573BE4DE3D0811EF84157B26C4F9AE02.roa (hash: nywG68ULgKtBcMdjYbgBHpATJxb1PptzCmatC6Dkc8Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D9B1B/F9FEE0463CF811EFA367C385C4F9AE02/01nlbdoAA8SD861qQMCA6Qy41HI.crl rsync://rpki.apnic.net/member_repository/A91D9B1B/F9FEE0463CF811EFA367C385C4F9AE02/01nlbdoAA8SD861qQMCA6Qy41HI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/01nlbdoAA8SD861qQMCA6Qy41HI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 22 Sep 2024 02:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 43 (0x2b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D9B1B/serialNumber=D359E56DDA0003C483F3AD6A40C080E90CB8D472 Validity Not Before: Sep 15 10:14:33 2024 GMT Not After : Sep 22 10:14:33 2024 GMT Subject: CN=66e6b389-ce3b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:9b:c8:74:43:30:5d:37:53:f5:fc:95:0c:9a: 94:d2:ae:5c:ab:d8:08:98:8c:6f:28:f1:2e:96:64: a0:42:95:53:db:e9:71:76:e3:96:ae:12:10:14:ac: 24:a2:c9:0d:85:44:6f:d7:2b:27:70:0d:5b:f5:55: 6d:86:57:4d:5a:8b:16:89:8c:fe:a5:fe:4f:df:1c: 29:83:bc:1f:85:f2:1c:e5:d0:ac:c5:83:79:13:a3: f1:28:26:74:a4:5b:46:2e:34:ea:9d:c1:d1:e8:15: 9d:70:63:27:9d:92:df:a8:1d:97:dd:47:95:1a:1a: 57:ff:07:47:f1:b9:21:72:dc:28:5f:91:9e:7b:44: 33:6e:aa:b9:c2:c9:c5:2e:d5:9d:a5:36:7a:be:e7: 78:dd:c9:50:9a:b8:18:b5:a4:fc:c8:a2:2b:f0:25: 35:6c:db:e8:c7:d0:b5:df:68:15:ed:1d:a6:5e:24: 9a:fc:6e:bd:f7:d4:fd:76:a1:06:39:b6:74:b2:79: 94:f1:a3:7d:8e:66:c8:52:39:04:c3:1d:e2:4e:7d: 4b:8e:4c:c1:d0:99:b2:31:e4:91:33:11:00:3f:f0: 34:24:59:1b:28:83:e6:18:bb:78:24:74:c9:ae:3a: 6d:7c:98:35:72:2e:d6:e8:d1:c9:64:04:98:5c:5b: c6:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:27:0A:90:12:21:2C:FE:BF:1E:7F:B7:2D:B9:1E:21:1F:AB:EB:59 X509v3 Authority Key Identifier: keyid:D3:59:E5:6D:DA:00:03:C4:83:F3:AD:6A:40:C0:80:E9:0C:B8:D4:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D9B1B/F9FEE0463CF811EFA367C385C4F9AE02/01nlbdoAA8SD861qQMCA6Qy41HI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/01nlbdoAA8SD861qQMCA6Qy41HI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D9B1B/F9FEE0463CF811EFA367C385C4F9AE02/01nlbdoAA8SD861qQMCA6Qy41HI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 44:62:d6:30:cd:09:69:5b:12:b6:2d:e3:7d:9f:fc:54:65:44: 9c:85:90:24:a1:7a:35:28:a8:12:d5:81:39:09:d3:c7:f3:c9: cf:86:ab:a6:e0:fe:be:7d:2b:17:e3:f4:90:b5:35:4f:1c:c5: f7:3e:ae:1b:23:1b:b8:ab:4b:84:bc:c9:06:54:f6:fc:53:c5: cb:24:63:37:b5:da:8f:bc:4d:77:af:aa:45:c2:f5:f1:2f:a4: 74:43:38:a8:57:f2:63:ed:af:3a:e2:43:81:71:79:e9:fd:0a: 32:83:bc:ff:e3:d1:97:b5:69:ca:f1:05:72:81:94:85:26:c2: 42:1a:f5:c6:af:77:d9:35:6e:63:82:5e:9e:be:2b:22:f3:75: 4c:c9:33:82:03:c7:d2:d9:e4:a2:80:33:fa:3f:64:a1:82:f9: 78:28:db:a5:b2:58:93:68:34:1c:82:98:b9:08:f4:a6:4a:a9: 5a:b8:69:c1:98:df:8a:56:53:93:b2:ed:d7:9e:c8:3b:05:c4: 5f:03:69:a7:8a:8f:a8:e1:55:6a:e0:bc:1d:7b:46:8f:4c:63: 05:b8:b8:70:d5:8f:8d:bc:94:66:39:3f:08:21:82:c8:84:b5: 92:84:e6:a4:6a:23:2f:c5:23:7e:cd:08:32:6e:5f:dd:e9:4c: 61:83:4c:ac -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBKzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE OUIxQjExMC8GA1UEBRMoRDM1OUU1NkREQTAwMDNDNDgzRjNBRDZBNDBDMDgwRTkw Q0I4RDQ3MjAeFw0yNDA5MTUxMDE0MzNaFw0yNDA5MjIxMDE0MzNaMBgxFjAUBgNV BAMTDTY2ZTZiMzg5LWNlM2IwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCjm8h0QzBdN1P1/JUMmpTSrlyr2AiYjG8o8S6WZKBClVPb6XF245auEhAUrCSi yQ2FRG/XKydwDVv1VW2GV01aixaJjP6l/k/fHCmDvB+F8hzl0KzFg3kTo/EoJnSk W0YuNOqdwdHoFZ1wYyedkt+oHZfdR5UaGlf/B0fxuSFy3ChfkZ57RDNuqrnCycUu 1Z2lNnq+53jdyVCauBi1pPzIoivwJTVs2+jH0LXfaBXtHaZeJJr8br331P12oQY5 tnSyeZTxo32OZshSOQTDHeJOfUuOTMHQmbIx5JEzEQA/8DQkWRsog+YYu3gkdMmu Om18mDVyLtbo0clkBJhcW8Y/AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUEycKkBIh LP6/Hn+3LbkeIR+r61kwHwYDVR0jBBgwFoAU01nlbdoAA8SD861qQMCA6Qy41HIw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQ5QjFCL0Y5RkVFMDQ2M0NG ODExRUZBMzY3QzM4NUM0RjlBRTAyLzAxbmxiZG9BQThTRDg2MXFRTUNBNlF5NDFI SS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvMDFubGJkb0FBOFNEODYxcVFNQ0E2UXk0MUhJLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQ5 QjFCL0Y5RkVFMDQ2M0NGODExRUZBMzY3QzM4NUM0RjlBRTAyLzAxbmxiZG9BQThT RDg2MXFRTUNBNlF5NDFISS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAERi1jDNCWlbErYt432f/FRlRJyFkCShejUoqBLVgTkJ08fzyc+Gq6bg /r59Kxfj9JC1NU8cxfc+rhsjG7irS4S8yQZU9vxTxcskYze12o+8TXevqkXC9fEv pHRDOKhX8mPtrzriQ4Fxeen9CjKDvP/j0Ze1acrxBXKBlIUmwkIa9cavd9k1bmOC Xp6+KyLzdUzJM4IDx9LZ5KKAM/o/ZKGC+Xgo26WyWJNoNByCmLkI9KZKqVq4acGY 34pWU5Oy7deeyDsFxF8DaaeKj6jhVWrgvB17Ro9MYwW4uHDVj428lGY5PwghgsiE tZKE5qRqIy/FI37NCDJuX93pTGGDTKw= -----END CERTIFICATE-----Generated at Sun Sep 15 13:42:45 2024 by rpki-client on console-fra.rpki-client.org