$ rpki-client -vvf rpki.apnic.net/member_repository/A91E1511/8D34323C13F811EFA384CE23C4F9AE02/29u3f7gUXp1EhgdPtz74TVSOpiI.mft File: 29u3f7gUXp1EhgdPtz74TVSOpiI.mft (raw, json) Hash identifier: 1llCSkq87JxfuWrpZtK4ZAoB3Gp8B9/ikbtrl2utkl4= Subject key identifier: F2:44:D3:19:FE:DC:D4:5B:E4:A4:34:A5:DC:BC:41:84:32:ED:82:1F Authority key identifier: DB:DB:B7:7F:B8:14:5E:9D:44:86:07:4F:B7:3E:F8:4D:54:8E:A6:22 Certificate issuer: /CN=A91E1511/serialNumber=DBDBB77FB8145E9D4486074FB73EF84D548EA622 Certificate serial: 51 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/29u3f7gUXp1EhgdPtz74TVSOpiI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E1511/8D34323C13F811EFA384CE23C4F9AE02/29u3f7gUXp1EhgdPtz74TVSOpiI.mft Manifest number: 50 Signing time: Thu 17 Oct 2024 05:38:28 +0000 Manifest this update: Thu 17 Oct 2024 05:38:27 +0000 Manifest next update: Thu 24 Oct 2024 05:38:27 +0000 Files and hashes: 1: 29u3f7gUXp1EhgdPtz74TVSOpiI.crl (hash: y9YBYRcddRc+dFtag2Mys02GKsxPLNDnSP611gahK1g=) 2: 5741EB0A159311EFA0CC790BC4F9AE02.roa (hash: jE4GzHd14AerZws/zq+eZy5XQS34aDVO012G4f0K8Tw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E1511/8D34323C13F811EFA384CE23C4F9AE02/29u3f7gUXp1EhgdPtz74TVSOpiI.crl rsync://rpki.apnic.net/member_repository/A91E1511/8D34323C13F811EFA384CE23C4F9AE02/29u3f7gUXp1EhgdPtz74TVSOpiI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/29u3f7gUXp1EhgdPtz74TVSOpiI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 24 Oct 2024 04:45:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 81 (0x51) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E1511/serialNumber=DBDBB77FB8145E9D4486074FB73EF84D548EA622 Validity Not Before: Oct 17 05:38:27 2024 GMT Not After : Oct 24 05:38:27 2024 GMT Subject: CN=6710a2d4-2a99 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:c4:7d:82:29:10:de:94:1d:1b:2e:da:bd:7b: 6b:2f:80:90:4d:5f:a1:6d:72:be:a5:d0:b3:5e:30: f2:2d:cc:86:a8:64:15:22:4d:55:b7:77:e2:06:34: 37:c4:e1:5d:84:91:56:df:b6:0e:45:e0:f8:75:c0: b4:96:5f:f3:21:06:6c:90:60:3e:34:c8:a1:ae:bb: 2e:01:1c:18:6e:34:10:57:c0:0d:e2:00:28:e9:6a: 7c:73:ec:ac:65:3f:d6:3a:6c:fa:20:d0:6b:c6:f1: 3d:f2:86:95:04:7a:18:68:09:1b:00:29:35:51:c5: bd:c1:b9:72:65:e5:5d:05:d1:98:6e:59:3e:b4:98: 83:79:30:5e:e6:73:6c:ce:be:4e:92:b9:02:11:33: bf:df:89:97:63:53:e1:5f:2d:0e:92:3b:64:5a:c9: 6f:92:6b:66:e2:5c:62:50:b0:86:58:37:ba:11:d7: 7e:34:3a:32:4d:2f:3d:83:22:63:d4:57:3f:b5:70: 83:a9:1a:6e:98:58:4a:29:b3:c5:78:5e:d4:4f:d5: e6:76:ad:24:19:ba:27:7e:a5:ad:9c:d5:69:c9:a2: 8b:73:90:07:c5:a4:62:5e:93:a3:38:c0:54:bd:25: 12:74:51:7e:3d:74:d7:b4:45:a7:29:f5:d9:53:84: f1:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:44:D3:19:FE:DC:D4:5B:E4:A4:34:A5:DC:BC:41:84:32:ED:82:1F X509v3 Authority Key Identifier: keyid:DB:DB:B7:7F:B8:14:5E:9D:44:86:07:4F:B7:3E:F8:4D:54:8E:A6:22 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E1511/8D34323C13F811EFA384CE23C4F9AE02/29u3f7gUXp1EhgdPtz74TVSOpiI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/29u3f7gUXp1EhgdPtz74TVSOpiI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E1511/8D34323C13F811EFA384CE23C4F9AE02/29u3f7gUXp1EhgdPtz74TVSOpiI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 87:81:13:3b:f0:89:1b:d7:db:65:77:df:d7:23:2c:f6:50:de: 9c:94:11:c5:19:55:e4:0e:6c:fd:9c:9d:78:14:52:c1:48:b8: 0c:03:81:3a:ff:7b:a6:d3:1e:99:89:82:d1:f5:76:d3:74:2c: a4:90:29:d6:ee:d7:5a:bc:b6:c6:11:4e:25:00:56:89:bd:b7: 6b:e9:e3:44:4c:36:d8:08:9c:69:49:89:92:dd:de:cd:db:e5: 3d:14:0f:d1:42:3b:07:70:78:31:c9:53:d4:03:27:55:38:47: ff:d4:fd:50:77:f1:99:fd:50:4f:7f:2d:c9:73:4e:81:ef:93: 60:50:e6:fa:a8:d8:e5:dd:4e:38:df:f3:56:ba:ad:c6:6b:a5: 5f:a6:86:00:3e:df:e4:69:60:05:6c:64:fe:a6:8a:ce:90:ad: 4c:f7:80:a0:14:24:3d:4c:03:e2:28:01:b8:a4:44:9d:f5:d8: 5c:8e:2c:18:e7:97:76:02:f1:af:65:75:83:ec:7a:34:ac:e0: 0e:d2:38:75:bb:17:86:de:11:72:0a:7f:0d:6b:65:22:ce:d0: 79:9e:b2:92:cd:f4:6d:34:28:09:04:55:c2:c4:97:70:0f:54: a5:6e:db:91:37:7c:11:92:b6:03:7b:0c:83:f4:7f:c0:07:81: a2:8f:2b:f2 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBUTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF MTUxMTExMC8GA1UEBRMoREJEQkI3N0ZCODE0NUU5RDQ0ODYwNzRGQjczRUY4NEQ1 NDhFQTYyMjAeFw0yNDEwMTcwNTM4MjdaFw0yNDEwMjQwNTM4MjdaMBgxFjAUBgNV BAMTDTY3MTBhMmQ0LTJhOTkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCexH2CKRDelB0bLtq9e2svgJBNX6Ftcr6l0LNeMPItzIaoZBUiTVW3d+IGNDfE 4V2EkVbftg5F4Ph1wLSWX/MhBmyQYD40yKGuuy4BHBhuNBBXwA3iACjpanxz7Kxl P9Y6bPog0GvG8T3yhpUEehhoCRsAKTVRxb3BuXJl5V0F0ZhuWT60mIN5MF7mc2zO vk6SuQIRM7/fiZdjU+FfLQ6SO2RayW+Sa2biXGJQsIZYN7oR1340OjJNLz2DImPU Vz+1cIOpGm6YWEops8V4XtRP1eZ2rSQZuid+pa2c1WnJootzkAfFpGJek6M4wFS9 JRJ0UX49dNe0Racp9dlThPErAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU8kTTGf7c 1FvkpDSl3LxBhDLtgh8wHwYDVR0jBBgwFoAU29u3f7gUXp1EhgdPtz74TVSOpiIw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUUxNTExLzhEMzQzMjNDMTNG ODExRUZBMzg0Q0UyM0M0RjlBRTAyLzI5dTNmN2dVWHAxRWhnZFB0ejc0VFZTT3Bp SS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvMjl1M2Y3Z1VYcDFFaGdkUHR6NzRUVlNPcGlJLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUUx NTExLzhEMzQzMjNDMTNGODExRUZBMzg0Q0UyM0M0RjlBRTAyLzI5dTNmN2dVWHAx RWhnZFB0ejc0VFZTT3BpSS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAIeBEzvwiRvX22V339cjLPZQ3pyUEcUZVeQObP2cnXgUUsFIuAwDgTr/ e6bTHpmJgtH1dtN0LKSQKdbu11q8tsYRTiUAVom9t2vp40RMNtgInGlJiZLd3s3b 5T0UD9FCOwdweDHJU9QDJ1U4R//U/VB38Zn9UE9/LclzToHvk2BQ5vqo2OXdTjjf 81a6rcZrpV+mhgA+3+RpYAVsZP6mis6QrUz3gKAUJD1MA+IoAbikRJ312FyOLBjn l3YC8a9ldYPsejSs4A7SOHW7F4beEXIKfw1rZSLO0HmespLN9G00KAkEVcLEl3AP VKVu25E3fBGStgN7DIP0f8AHgaKPK/I= -----END CERTIFICATE-----Generated at Thu Oct 17 06:46:22 2024 by rpki-client on console-fra.rpki-client.org