$ rpki-client -vvf rpki.apnic.net/member_repository/A91E782F/6D2075F6407011EFBDA9D66FC4F9AE02/yGA2V1UkSO1buu1xck0iIPA798Y.mft File: yGA2V1UkSO1buu1xck0iIPA798Y.mft (raw, json) Hash identifier: XGdK8/zTQvN8qGLLkdSrF5AJ+8KOe1SAfBTu82i1oLg= Subject key identifier: 7F:53:D2:78:AB:D7:EC:6A:55:60:87:66:6F:9D:B7:DE:08:6E:50:79 Authority key identifier: C8:60:36:57:55:24:48:ED:5B:BA:ED:71:72:4D:22:20:F0:3B:F7:C6 Certificate issuer: /CN=A91E782F/serialNumber=C8603657552448ED5BBAED71724D2220F03BF7C6 Certificate serial: 2D Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/yGA2V1UkSO1buu1xck0iIPA798Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E782F/6D2075F6407011EFBDA9D66FC4F9AE02/yGA2V1UkSO1buu1xck0iIPA798Y.mft Manifest number: 28 Signing time: Thu 19 Sep 2024 06:04:20 +0000 Manifest this update: Thu 19 Sep 2024 06:04:19 +0000 Manifest next update: Thu 26 Sep 2024 06:04:19 +0000 Files and hashes: 1: yGA2V1UkSO1buu1xck0iIPA798Y.crl (hash: SuNkklva98ikmMk9m5o/FdxVGcxK84B6ayqEWbY5mjc=) 2: 68EBA63A48B911EFB80D9535C4F9AE02.roa (hash: OV24Kj5y+880mPdkukE2fpkmI0sbTUDGEcrj2jYLxRA=) 3: C006CA2248B311EFB8A4C178C4F9AE02.roa (hash: RWKYaNgfk7P7N5uSJ3tE2gik3mua1Il7oXxrRLWnbWI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E782F/6D2075F6407011EFBDA9D66FC4F9AE02/yGA2V1UkSO1buu1xck0iIPA798Y.crl rsync://rpki.apnic.net/member_repository/A91E782F/6D2075F6407011EFBDA9D66FC4F9AE02/yGA2V1UkSO1buu1xck0iIPA798Y.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/yGA2V1UkSO1buu1xck0iIPA798Y.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 26 Sep 2024 06:04:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 45 (0x2d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E782F/serialNumber=C8603657552448ED5BBAED71724D2220F03BF7C6 Validity Not Before: Sep 19 06:04:19 2024 GMT Not After : Sep 26 06:04:19 2024 GMT Subject: CN=66ebbee3-79a4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:42:34:7d:b2:f6:08:d4:d1:d0:7a:ee:14:43: fe:8a:dd:ae:6b:a5:6f:3d:b9:8b:df:bd:73:77:cd: 3c:e0:43:9d:04:0a:17:d5:39:d5:2b:ab:cd:4c:b8: 89:be:0b:e6:df:e2:74:9c:31:b5:02:0b:bc:46:bc: a7:f2:4d:e8:77:1b:36:9c:ee:b5:58:75:5a:d1:e0: 02:62:7c:15:1f:07:20:ad:04:a7:b9:45:a4:f9:c6: e7:cf:c8:2a:80:62:45:94:9b:79:b6:f3:d2:97:3a: c2:58:25:16:85:1d:0b:4e:f4:9e:d6:17:10:51:6a: 13:ad:0b:9b:9c:76:74:45:71:3c:c9:8a:b7:81:1b: 0e:17:96:ae:33:31:2c:0d:d4:a9:4f:24:73:f5:e6: 28:85:4f:cb:31:5e:34:92:65:89:7d:3d:c4:81:84: ad:a9:74:82:1c:f5:2e:b6:bc:89:5c:49:42:d5:bc: f3:36:f9:fa:c2:6a:a0:7b:7c:a4:c9:a2:f9:ad:52: e1:9a:6d:71:e4:a4:33:46:27:fa:81:88:d4:6d:80: 45:b1:8f:84:39:e1:cf:d1:a0:86:a9:b1:b6:03:62: 56:7d:10:db:41:ba:05:d3:90:4e:67:fd:14:b0:0b: 0d:a7:d6:08:69:e9:82:08:1c:43:1a:d9:97:aa:14: 91:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:53:D2:78:AB:D7:EC:6A:55:60:87:66:6F:9D:B7:DE:08:6E:50:79 X509v3 Authority Key Identifier: keyid:C8:60:36:57:55:24:48:ED:5B:BA:ED:71:72:4D:22:20:F0:3B:F7:C6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E782F/6D2075F6407011EFBDA9D66FC4F9AE02/yGA2V1UkSO1buu1xck0iIPA798Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/yGA2V1UkSO1buu1xck0iIPA798Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E782F/6D2075F6407011EFBDA9D66FC4F9AE02/yGA2V1UkSO1buu1xck0iIPA798Y.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 08:47:11:56:d0:a7:11:a6:e9:df:33:d9:2d:32:70:82:76:ec: d1:17:ae:ce:0f:22:09:d6:46:f8:fb:da:ff:d1:88:d3:a4:fe: a5:1b:26:26:c8:4e:6f:58:c8:bd:7f:fd:16:33:b1:49:a0:95: 5c:87:56:c6:94:fa:7c:8a:77:73:81:af:65:0a:8e:8d:89:1b: 92:05:60:d2:a2:61:3c:17:ac:d6:51:0d:b8:39:bd:f8:53:cb: fb:52:45:48:f9:e6:13:25:2a:90:6c:a1:fd:f6:ba:3d:d8:0f: f8:1a:f4:8e:4f:05:7c:aa:af:fd:d3:9c:d9:0e:4a:ed:a8:f8: 6f:dd:a2:85:81:88:f3:c2:b3:31:df:37:ba:70:58:2d:73:22: bd:39:b4:cb:75:92:19:07:3f:03:b1:af:7d:a3:08:df:a4:43: 56:ca:bf:6b:97:e9:79:42:ec:40:33:84:50:47:7b:11:7c:c1: 92:49:e4:02:bc:9a:b9:78:dd:26:38:93:4f:20:57:1c:4b:11: 49:fa:f6:09:bf:12:3e:d3:1a:cd:14:a1:d2:15:3c:81:ed:5c: f2:2d:19:a1:2d:ac:c3:e7:50:64:42:ed:6a:9e:94:45:12:0c: a2:57:ab:2c:94:bb:a3:c5:fc:46:ba:fb:91:c9:2a:14:41:75: 8b:bb:9e:bf -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBLTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF NzgyRjExMC8GA1UEBRMoQzg2MDM2NTc1NTI0NDhFRDVCQkFFRDcxNzI0RDIyMjBG MDNCRjdDNjAeFw0yNDA5MTkwNjA0MTlaFw0yNDA5MjYwNjA0MTlaMBgxFjAUBgNV BAMTDTY2ZWJiZWUzLTc5YTQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDfQjR9svYI1NHQeu4UQ/6K3a5rpW89uYvfvXN3zTzgQ50EChfVOdUrq81MuIm+ C+bf4nScMbUCC7xGvKfyTeh3Gzac7rVYdVrR4AJifBUfByCtBKe5RaT5xufPyCqA YkWUm3m289KXOsJYJRaFHQtO9J7WFxBRahOtC5ucdnRFcTzJireBGw4Xlq4zMSwN 1KlPJHP15iiFT8sxXjSSZYl9PcSBhK2pdIIc9S62vIlcSULVvPM2+frCaqB7fKTJ ovmtUuGabXHkpDNGJ/qBiNRtgEWxj4Q54c/RoIapsbYDYlZ9ENtBugXTkE5n/RSw Cw2n1ghp6YIIHEMa2ZeqFJH7AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUf1PSeKvX 7GpVYIdmb5233ghuUHkwHwYDVR0jBBgwFoAUyGA2V1UkSO1buu1xck0iIPA798Yw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUU3ODJGLzZEMjA3NUY2NDA3 MDExRUZCREE5RDY2RkM0RjlBRTAyL3lHQTJWMVVrU08xYnV1MXhjazBpSVBBNzk4 WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIveUdBMlYxVWtTTzFidXUxeGNrMGlJUEE3OThZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUU3 ODJGLzZEMjA3NUY2NDA3MDExRUZCREE5RDY2RkM0RjlBRTAyL3lHQTJWMVVrU08x YnV1MXhjazBpSVBBNzk4WS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAAhHEVbQpxGm6d8z2S0ycIJ27NEXrs4PIgnWRvj72v/RiNOk/qUbJibI Tm9YyL1//RYzsUmglVyHVsaU+nyKd3OBr2UKjo2JG5IFYNKiYTwXrNZRDbg5vfhT y/tSRUj55hMlKpBsof32uj3YD/ga9I5PBXyqr/3TnNkOSu2o+G/dooWBiPPCszHf N7pwWC1zIr05tMt1khkHPwOxr32jCN+kQ1bKv2uX6XlC7EAzhFBHexF8wZJJ5AK8 mrl43SY4k08gVxxLEUn69gm/Ej7TGs0UodIVPIHtXPItGaEtrMPnUGRC7WqelEUS DKJXqyyUu6PF/Ea6+5HJKhRBdYu7nr8= -----END CERTIFICATE-----Generated at Thu Sep 19 07:14:26 2024 by rpki-client on console-fra.rpki-client.org