$ rpki-client -vvf rpki.apnic.net/member_repository/A91DD1F9/402ED2724ACF11EFB8218E15C4F9AE02/wnrh0WRyn0PZ4PpkvlHQtq4J65k.mft File: wnrh0WRyn0PZ4PpkvlHQtq4J65k.mft (raw, json) Hash identifier: Onv8HhoQdn4vlsVSRcOtpdXxK641cQ6SQnmRjZkbx00= Subject key identifier: 4D:66:BE:20:AC:CD:75:CD:2B:3F:04:9E:D4:54:54:27:77:1B:0A:60 Authority key identifier: C2:7A:E1:D1:64:72:9F:43:D9:E0:FA:64:BE:51:D0:B6:AE:09:EB:99 Certificate issuer: /CN=A91DD1F9/serialNumber=C27AE1D164729F43D9E0FA64BE51D0B6AE09EB99 Certificate serial: 1F Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/wnrh0WRyn0PZ4PpkvlHQtq4J65k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DD1F9/402ED2724ACF11EFB8218E15C4F9AE02/wnrh0WRyn0PZ4PpkvlHQtq4J65k.mft Manifest number: 1E Signing time: Thu 19 Sep 2024 06:10:31 +0000 Manifest this update: Thu 19 Sep 2024 06:10:30 +0000 Manifest next update: Thu 26 Sep 2024 06:10:30 +0000 Files and hashes: 1: wnrh0WRyn0PZ4PpkvlHQtq4J65k.crl (hash: ixSLywwIUq9fOlXVrKekgRMq2DQsUcd43oCAwUoBaug=) 2: 36CFD1EE4AD011EF9B941D17C4F9AE02.roa (hash: EOPx00rRZjGS/73Br0xTrWoW0kA4+3+SpewBHZe+BK0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DD1F9/402ED2724ACF11EFB8218E15C4F9AE02/wnrh0WRyn0PZ4PpkvlHQtq4J65k.crl rsync://rpki.apnic.net/member_repository/A91DD1F9/402ED2724ACF11EFB8218E15C4F9AE02/wnrh0WRyn0PZ4PpkvlHQtq4J65k.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/wnrh0WRyn0PZ4PpkvlHQtq4J65k.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 26 Sep 2024 06:10:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 31 (0x1f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DD1F9/serialNumber=C27AE1D164729F43D9E0FA64BE51D0B6AE09EB99 Validity Not Before: Sep 19 06:10:30 2024 GMT Not After : Sep 26 06:10:30 2024 GMT Subject: CN=66ebc056-0f2b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:cc:89:b8:f4:27:d1:5d:8a:8c:2b:18:c9:28: 17:59:5d:b5:4e:ae:87:c9:44:c2:c6:15:83:63:aa: 4c:de:a2:62:e2:0f:04:43:de:a2:51:69:9a:0a:d5: 38:28:2b:d7:df:88:7d:11:d8:fd:6f:24:1b:03:72: e4:7a:2b:00:57:96:c7:9a:91:fb:cd:70:d1:30:26: a7:b0:80:e6:28:1f:f9:27:f0:0c:b1:03:10:7b:42: ee:13:d8:c9:23:37:82:f6:99:81:a1:6e:f7:12:9c: f7:99:39:c8:4a:43:70:3c:c6:c1:30:1c:05:77:88: ae:97:53:e9:2b:ac:46:17:82:49:05:aa:9c:af:c8: 93:36:49:83:97:a4:89:45:5a:e9:1d:4f:6d:2e:09: 33:68:5f:f6:7e:9e:a3:3b:d2:75:46:0b:72:b5:5d: 88:82:e4:06:c0:b4:28:e6:f5:65:b7:98:69:8f:16: 1a:3a:66:9c:cf:78:a7:c4:d6:4c:c2:a9:0b:a3:88: 83:75:8d:b6:5f:17:2f:fe:8f:85:77:0d:fa:c6:23: 2b:7d:28:a7:bc:4e:1c:d4:ea:67:49:22:9b:6e:f5: ae:88:60:d0:07:1f:0d:53:bc:f8:20:ac:42:df:9b: 6f:b8:cf:31:aa:5f:52:83:9f:f3:41:01:bd:31:66: 35:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:66:BE:20:AC:CD:75:CD:2B:3F:04:9E:D4:54:54:27:77:1B:0A:60 X509v3 Authority Key Identifier: keyid:C2:7A:E1:D1:64:72:9F:43:D9:E0:FA:64:BE:51:D0:B6:AE:09:EB:99 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DD1F9/402ED2724ACF11EFB8218E15C4F9AE02/wnrh0WRyn0PZ4PpkvlHQtq4J65k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/wnrh0WRyn0PZ4PpkvlHQtq4J65k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DD1F9/402ED2724ACF11EFB8218E15C4F9AE02/wnrh0WRyn0PZ4PpkvlHQtq4J65k.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 21:82:56:a2:9c:81:16:5e:25:66:55:26:89:62:a0:01:65:27: dd:48:a0:e7:e3:f9:75:e4:d9:92:32:dd:b4:54:76:e0:9d:c6: 06:3e:3f:26:6e:96:83:4f:a2:e8:3e:92:10:ce:19:a5:f3:eb: 73:09:03:db:34:f9:95:5b:8b:4c:e1:33:e6:ac:56:ef:9f:c9: 52:5b:0b:09:a3:a7:f6:18:6e:87:05:46:19:b3:19:be:cf:8c: f1:e8:20:a4:16:94:de:07:a7:d4:3b:28:bf:de:6f:5c:08:de: 93:33:5f:bc:c4:17:7b:56:65:55:00:ca:ae:76:f3:20:7c:99: 63:88:f9:54:32:d0:5f:68:d8:93:64:22:23:b2:e3:27:51:92: 89:7f:36:73:14:58:12:27:70:f4:e0:93:ef:f3:53:3b:28:ff: 61:36:aa:40:73:87:c8:68:ee:c0:c5:c9:24:0e:63:52:78:42: fc:42:bc:13:fd:99:cf:7d:80:2f:19:9d:e7:06:8e:f7:d3:fa: d9:9f:df:2c:a0:07:6f:45:08:6f:2b:02:a1:62:37:ec:d6:9f: c1:87:a4:5d:62:4b:53:89:85:f5:0c:bc:0c:77:df:9c:ac:24: 24:0e:4f:01:37:f4:41:34:6e:17:e6:fa:a8:e5:00:4a:0b:76: be:58:e9:a9 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBHzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE RDFGOTExMC8GA1UEBRMoQzI3QUUxRDE2NDcyOUY0M0Q5RTBGQTY0QkU1MUQwQjZB RTA5RUI5OTAeFw0yNDA5MTkwNjEwMzBaFw0yNDA5MjYwNjEwMzBaMBgxFjAUBgNV BAMTDTY2ZWJjMDU2LTBmMmIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDRzIm49CfRXYqMKxjJKBdZXbVOrofJRMLGFYNjqkzeomLiDwRD3qJRaZoK1Tgo K9ffiH0R2P1vJBsDcuR6KwBXlseakfvNcNEwJqewgOYoH/kn8AyxAxB7Qu4T2Mkj N4L2mYGhbvcSnPeZOchKQ3A8xsEwHAV3iK6XU+krrEYXgkkFqpyvyJM2SYOXpIlF WukdT20uCTNoX/Z+nqM70nVGC3K1XYiC5AbAtCjm9WW3mGmPFho6ZpzPeKfE1kzC qQujiIN1jbZfFy/+j4V3DfrGIyt9KKe8ThzU6mdJIptu9a6IYNAHHw1TvPggrELf m2+4zzGqX1KDn/NBAb0xZjVfAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUTWa+IKzN dc0rPwSe1FRUJ3cbCmAwHwYDVR0jBBgwFoAUwnrh0WRyn0PZ4PpkvlHQtq4J65kw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUREMUY5LzQwMkVEMjcyNEFD RjExRUZCODIxOEUxNUM0RjlBRTAyL3ducmgwV1J5bjBQWjRQcGt2bEhRdHE0SjY1 ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvd25yaDBXUnluMFBaNFBwa3ZsSFF0cTRKNjVrLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MURE MUY5LzQwMkVEMjcyNEFDRjExRUZCODIxOEUxNUM0RjlBRTAyL3ducmgwV1J5bjBQ WjRQcGt2bEhRdHE0SjY1ay5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBACGCVqKcgRZeJWZVJolioAFlJ91IoOfj+XXk2ZIy3bRUduCdxgY+PyZu loNPoug+khDOGaXz63MJA9s0+ZVbi0zhM+asVu+fyVJbCwmjp/YYbocFRhmzGb7P jPHoIKQWlN4Hp9Q7KL/eb1wI3pMzX7zEF3tWZVUAyq528yB8mWOI+VQy0F9o2JNk IiOy4ydRkol/NnMUWBIncPTgk+/zUzso/2E2qkBzh8ho7sDFySQOY1J4QvxCvBP9 mc99gC8ZnecGjvfT+tmf3yygB29FCG8rAqFiN+zWn8GHpF1iS1OJhfUMvAx335ys JCQOTwE39EE0bhfm+qjlAEoLdr5Y6ak= -----END CERTIFICATE-----Generated at Thu Sep 19 08:57:55 2024 by rpki-client on console-ams.rpki-client.org