$ rpki-client -vvf rpki.apnic.net/member_repository/A91DBA5B/58004AAA70E711EFB444AF70C4F9AE02/30fOzFfqiK65ajhlVgufImC6mQ4.mft File: 30fOzFfqiK65ajhlVgufImC6mQ4.mft (raw, json) Hash identifier: +r2mUAOCDmUHelkGErDgGjDHhAZbZrLc0BMhu0dZeiw= Subject key identifier: D8:25:3B:C1:B5:21:60:C2:9D:3D:B8:7E:B4:AB:12:12:78:6B:F3:53 Authority key identifier: DF:47:CE:CC:57:EA:88:AE:B9:6A:38:65:56:0B:9F:22:60:BA:99:0E Certificate issuer: /CN=A91DBA5B/serialNumber=DF47CECC57EA88AEB96A3865560B9F2260BA990E Certificate serial: 18 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/30fOzFfqiK65ajhlVgufImC6mQ4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DBA5B/58004AAA70E711EFB444AF70C4F9AE02/30fOzFfqiK65ajhlVgufImC6mQ4.mft Manifest number: 17 Signing time: Wed 23 Oct 2024 06:39:05 +0000 Manifest this update: Wed 23 Oct 2024 06:39:04 +0000 Manifest next update: Wed 30 Oct 2024 06:39:04 +0000 Files and hashes: 1: 30fOzFfqiK65ajhlVgufImC6mQ4.crl (hash: 99r0ao43dcNhgAWVG0p1JG1khvyCv4NMgJvXfs07D1Y=) 2: 02389B7670E811EFA8DBE571C4F9AE02.roa (hash: AxDsA8rt+K98y/uEnY4JUiHZ0XXqFDNJTlI0IgqxxqQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DBA5B/58004AAA70E711EFB444AF70C4F9AE02/30fOzFfqiK65ajhlVgufImC6mQ4.crl rsync://rpki.apnic.net/member_repository/A91DBA5B/58004AAA70E711EFB444AF70C4F9AE02/30fOzFfqiK65ajhlVgufImC6mQ4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/30fOzFfqiK65ajhlVgufImC6mQ4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 30 Oct 2024 05:54:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24 (0x18) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DBA5B/serialNumber=DF47CECC57EA88AEB96A3865560B9F2260BA990E Validity Not Before: Oct 23 06:39:04 2024 GMT Not After : Oct 30 06:39:04 2024 GMT Subject: CN=67189a09-2299 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:c8:9d:fc:3f:c7:0c:2d:40:ca:95:61:56:9f: 16:15:18:0e:ad:3e:2f:f1:93:d3:a1:f9:d2:54:42: cb:13:a2:45:33:9b:17:a1:b6:15:b9:63:56:2c:2f: 5e:64:02:73:4c:d0:f2:b0:29:db:10:5b:c3:a6:be: 0c:54:79:65:92:c5:32:d1:ab:21:7d:75:5f:f3:8a: b1:c6:57:be:02:90:b4:27:78:54:f8:19:f6:b0:b3: 72:27:a7:35:e0:24:4f:d6:29:71:32:5c:09:c3:8e: dd:b5:ba:d6:c8:d5:99:1b:30:5f:cc:20:0c:1c:2e: 3c:1e:4f:ee:c1:fa:17:fc:a0:e7:e5:c6:cb:48:3f: e6:5f:f4:40:04:3e:b8:3c:1d:9b:c7:60:56:11:29: 37:0e:af:c3:8e:9b:1c:22:64:3b:36:66:04:8c:d5: 9b:a0:8f:68:42:86:47:64:23:09:df:cf:3e:01:af: cf:12:3e:1e:d1:9b:15:1c:44:0d:23:72:11:ae:10: 5f:c4:ec:b3:87:a2:24:95:50:ff:5b:16:57:d8:51: 25:86:51:bb:bb:4e:ef:4e:cc:d3:c5:0b:18:1f:df: dc:c2:f1:9e:bc:f1:5d:5c:8f:ad:b6:ea:b5:04:e9: 64:3c:64:ba:f2:7b:3d:94:00:15:24:da:93:7a:71: 77:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:25:3B:C1:B5:21:60:C2:9D:3D:B8:7E:B4:AB:12:12:78:6B:F3:53 X509v3 Authority Key Identifier: keyid:DF:47:CE:CC:57:EA:88:AE:B9:6A:38:65:56:0B:9F:22:60:BA:99:0E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DBA5B/58004AAA70E711EFB444AF70C4F9AE02/30fOzFfqiK65ajhlVgufImC6mQ4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/30fOzFfqiK65ajhlVgufImC6mQ4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DBA5B/58004AAA70E711EFB444AF70C4F9AE02/30fOzFfqiK65ajhlVgufImC6mQ4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 61:c0:35:11:b8:58:b5:b9:7d:d4:48:2f:85:d9:3a:09:79:4d: 31:66:64:a8:51:37:f3:50:fc:0d:78:a0:64:8a:2b:a9:06:d6: 0f:d5:4b:36:ef:1d:65:16:37:e0:94:72:cb:0f:76:3f:63:ef: bd:e4:56:4f:a4:5c:c9:17:26:0f:f1:b7:63:e4:9f:e1:75:b0: a4:77:6e:6d:b2:71:4e:18:da:e2:7a:00:be:00:1a:dc:d6:5f: 22:b8:14:f2:5b:85:07:29:ae:bd:a0:0f:a8:fb:eb:27:08:60: 1e:09:8b:ca:0e:64:67:5c:27:26:f1:63:b9:e0:33:a8:c7:ef: 00:bb:82:6e:2b:14:6a:a9:a0:59:8c:27:d6:70:fd:c9:59:87: 76:e4:d2:ee:a1:b9:c7:10:ca:2e:cf:ef:2e:94:75:b1:19:7e: 0b:84:cd:2b:1a:c0:8d:e4:36:13:8d:aa:9e:24:33:00:40:64: 89:d0:c9:1f:07:d6:b2:90:29:2c:62:4d:aa:22:ce:34:70:e8: 7f:e8:93:a9:db:07:46:b7:5f:89:ee:48:1a:c5:c5:c8:20:0b: 56:f9:20:1c:6a:de:42:8d:19:f1:fe:2d:d2:8a:1a:5c:3d:a5: 91:58:7b:18:2e:14:f0:d5:1e:22:7c:64:a9:cf:ac:d3:b4:36: f0:81:dc:93 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBGDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE QkE1QjExMC8GA1UEBRMoREY0N0NFQ0M1N0VBODhBRUI5NkEzODY1NTYwQjlGMjI2 MEJBOTkwRTAeFw0yNDEwMjMwNjM5MDRaFw0yNDEwMzAwNjM5MDRaMBgxFjAUBgNV BAMTDTY3MTg5YTA5LTIyOTkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDVyJ38P8cMLUDKlWFWnxYVGA6tPi/xk9Oh+dJUQssTokUzmxehthW5Y1YsL15k AnNM0PKwKdsQW8OmvgxUeWWSxTLRqyF9dV/zirHGV74CkLQneFT4Gfaws3InpzXg JE/WKXEyXAnDjt21utbI1ZkbMF/MIAwcLjweT+7B+hf8oOflxstIP+Zf9EAEPrg8 HZvHYFYRKTcOr8OOmxwiZDs2ZgSM1Zugj2hChkdkIwnfzz4Br88SPh7RmxUcRA0j chGuEF/E7LOHoiSVUP9bFlfYUSWGUbu7Tu9OzNPFCxgf39zC8Z688V1cj6226rUE 6WQ8ZLryez2UABUk2pN6cXfbAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU2CU7wbUh YMKdPbh+tKsSEnhr81MwHwYDVR0jBBgwFoAU30fOzFfqiK65ajhlVgufImC6mQ4w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MURCQTVCLzU4MDA0QUFBNzBF NzExRUZCNDQ0QUY3MEM0RjlBRTAyLzMwZk96RmZxaUs2NWFqaGxWZ3VmSW1DNm1R NC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvMzBmT3pGZnFpSzY1YWpobFZndWZJbUM2bVE0LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MURC QTVCLzU4MDA0QUFBNzBFNzExRUZCNDQ0QUY3MEM0RjlBRTAyLzMwZk96RmZxaUs2 NWFqaGxWZ3VmSW1DNm1RNC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAGHANRG4WLW5fdRIL4XZOgl5TTFmZKhRN/NQ/A14oGSKK6kG1g/VSzbv HWUWN+CUcssPdj9j773kVk+kXMkXJg/xt2Pkn+F1sKR3bm2ycU4Y2uJ6AL4AGtzW XyK4FPJbhQcprr2gD6j76ycIYB4Ji8oOZGdcJybxY7ngM6jH7wC7gm4rFGqpoFmM J9Zw/clZh3bk0u6huccQyi7P7y6UdbEZfguEzSsawI3kNhONqp4kMwBAZInQyR8H 1rKQKSxiTaoizjRw6H/ok6nbB0a3X4nuSBrFxcggC1b5IBxq3kKNGfH+LdKKGlw9 pZFYexguFPDVHiJ8ZKnPrNO0NvCB3JM= -----END CERTIFICATE-----Generated at Wed Oct 23 07:33:26 2024 by rpki-client on console-fra.rpki-client.org