$ rpki-client -vvf rpki.apnic.net/member_repository/A91E782F/764CA2D0407011EFBDA9D66FC4F9AE02/ep_4ZMUDGAZxMFiObbqSi6HAOl0.mft File: ep_4ZMUDGAZxMFiObbqSi6HAOl0.mft (raw, json) Hash identifier: hFbGYeiUExduXVT5hEvpWjwr+9bd7FkiJOkuUKI3aJ4= Subject key identifier: 9B:FA:E1:C1:25:73:C1:B1:AA:93:2D:58:6E:4D:42:99:A8:F4:69:82 Authority key identifier: 7A:9F:F8:64:C5:03:18:06:71:30:58:8E:6D:BA:92:8B:A1:C0:3A:5D Certificate issuer: /CN=A91E782F/serialNumber=7A9FF864C50318067130588E6DBA928BA1C03A5D Certificate serial: 23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ep_4ZMUDGAZxMFiObbqSi6HAOl0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E782F/764CA2D0407011EFBDA9D66FC4F9AE02/ep_4ZMUDGAZxMFiObbqSi6HAOl0.mft Manifest number: 23 Signing time: Sun 15 Sep 2024 10:17:15 +0000 Manifest this update: Sun 15 Sep 2024 10:17:14 +0000 Manifest next update: Sun 22 Sep 2024 10:17:14 +0000 Files and hashes: 1: ep_4ZMUDGAZxMFiObbqSi6HAOl0.crl (hash: SUly+c89fKfwU3RFj3b6ooxD2khJYs5oSdtwgKUu6+w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E782F/764CA2D0407011EFBDA9D66FC4F9AE02/ep_4ZMUDGAZxMFiObbqSi6HAOl0.crl rsync://rpki.apnic.net/member_repository/A91E782F/764CA2D0407011EFBDA9D66FC4F9AE02/ep_4ZMUDGAZxMFiObbqSi6HAOl0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ep_4ZMUDGAZxMFiObbqSi6HAOl0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 22 Sep 2024 02:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35 (0x23) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E782F/serialNumber=7A9FF864C50318067130588E6DBA928BA1C03A5D Validity Not Before: Sep 15 10:17:14 2024 GMT Not After : Sep 22 10:17:14 2024 GMT Subject: CN=66e6b42b-8d27 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:87:b1:23:eb:40:55:aa:0d:48:10:d0:1e:ed: e7:b6:74:9f:89:71:8d:43:c2:83:d6:6a:de:2b:e7: fd:c5:ab:74:b7:8f:c5:82:81:94:2b:f9:56:91:fa: b5:89:0d:2b:3e:e7:e3:9f:1a:ca:9f:86:59:8f:3b: 98:21:e9:8c:92:07:75:39:e4:5e:95:82:bd:36:f9: 5d:7d:b7:c9:69:b5:d7:29:a8:86:fa:90:71:ee:9c: 86:82:44:aa:df:b2:0c:58:fc:42:70:8c:df:9f:0f: e0:f3:07:c5:93:52:da:3f:a6:f1:0e:99:82:e6:1c: 5d:2c:ba:55:fa:2f:63:cb:2a:bc:5c:68:cd:5b:ad: 9b:49:4b:37:6e:5a:50:18:68:88:19:33:13:a2:7e: 6c:11:d1:43:44:6a:4e:24:9c:85:38:1b:92:bd:97: 6d:96:de:59:86:0c:22:83:03:fa:8f:7a:6a:9e:12: 05:1c:3e:27:55:55:7d:65:f2:12:7f:4a:c8:3e:25: aa:82:e0:b6:00:d6:f0:6b:75:d1:d0:3b:5f:f1:70: 07:e9:8a:fd:dd:4c:e0:75:e3:bb:67:47:80:83:4f: 19:d8:2e:ee:be:de:40:36:62:97:06:bb:85:56:88: 12:29:6e:ed:83:6d:a7:fb:7b:16:e8:d1:83:88:59: 50:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:FA:E1:C1:25:73:C1:B1:AA:93:2D:58:6E:4D:42:99:A8:F4:69:82 X509v3 Authority Key Identifier: keyid:7A:9F:F8:64:C5:03:18:06:71:30:58:8E:6D:BA:92:8B:A1:C0:3A:5D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E782F/764CA2D0407011EFBDA9D66FC4F9AE02/ep_4ZMUDGAZxMFiObbqSi6HAOl0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ep_4ZMUDGAZxMFiObbqSi6HAOl0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E782F/764CA2D0407011EFBDA9D66FC4F9AE02/ep_4ZMUDGAZxMFiObbqSi6HAOl0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ae:4b:7f:c5:49:33:bd:78:64:be:a6:61:14:d8:f4:1a:8f:fb: ea:bb:c6:4b:40:2e:0f:5b:d0:7f:21:cf:19:15:3f:d5:3a:41: 67:e5:19:24:c2:5f:35:26:bb:da:07:67:15:e3:76:d5:5c:df: 65:8a:e2:34:08:72:6a:42:23:0a:ab:e0:a3:0e:30:4f:db:ed: bd:61:3a:f2:0d:63:7e:f5:a5:c1:1f:71:18:33:98:61:ae:3e: 15:e9:db:fd:96:f5:3e:d3:d5:a4:aa:6e:8b:80:34:2f:51:1c: 4c:50:8a:9c:d2:6a:f4:70:4f:14:65:35:f9:c1:c6:0a:ef:f2: ce:89:8e:27:3c:31:df:f2:01:81:2c:c8:0b:e8:d6:c6:0a:05: e9:55:9a:89:42:02:23:5e:46:30:1f:26:f3:a3:db:0b:80:0f: c9:af:19:ce:68:ec:b8:ba:2e:89:d8:94:fe:5a:b2:8c:a8:19: e4:a1:f4:69:82:83:d9:eb:f5:42:d5:86:f7:15:62:0c:1a:e5: 9e:80:08:1b:6a:b4:79:27:f1:ab:18:83:b1:ec:ad:79:81:43: 65:3c:2b:eb:0f:89:eb:65:42:6f:de:bb:87:24:0a:11:13:9a: 82:c5:76:32:3d:d6:0c:76:69:72:38:42:82:4d:e0:74:ec:18: c5:69:15:30 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBIzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF NzgyRjExMC8GA1UEBRMoN0E5RkY4NjRDNTAzMTgwNjcxMzA1ODhFNkRCQTkyOEJB MUMwM0E1RDAeFw0yNDA5MTUxMDE3MTRaFw0yNDA5MjIxMDE3MTRaMBgxFjAUBgNV BAMTDTY2ZTZiNDJiLThkMjcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDGh7Ej60BVqg1IENAe7ee2dJ+JcY1DwoPWat4r5/3Fq3S3j8WCgZQr+VaR+rWJ DSs+5+OfGsqfhlmPO5gh6YySB3U55F6Vgr02+V19t8lptdcpqIb6kHHunIaCRKrf sgxY/EJwjN+fD+DzB8WTUto/pvEOmYLmHF0sulX6L2PLKrxcaM1brZtJSzduWlAY aIgZMxOifmwR0UNEak4knIU4G5K9l22W3lmGDCKDA/qPemqeEgUcPidVVX1l8hJ/ Ssg+JaqC4LYA1vBrddHQO1/xcAfpiv3dTOB147tnR4CDTxnYLu6+3kA2YpcGu4VW iBIpbu2Dbaf7exbo0YOIWVClAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUm/rhwSVz wbGqky1Ybk1Cmaj0aYIwHwYDVR0jBBgwFoAUep/4ZMUDGAZxMFiObbqSi6HAOl0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUU3ODJGLzc2NENBMkQwNDA3 MDExRUZCREE5RDY2RkM0RjlBRTAyL2VwXzRaTVVER0FaeE1GaU9iYnFTaTZIQU9s MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvZXBfNFpNVURHQVp4TUZpT2JicVNpNkhBT2wwLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUU3 ODJGLzc2NENBMkQwNDA3MDExRUZCREE5RDY2RkM0RjlBRTAyL2VwXzRaTVVER0Fa eE1GaU9iYnFTaTZIQU9sMC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAK5Lf8VJM714ZL6mYRTY9BqP++q7xktALg9b0H8hzxkVP9U6QWflGSTC XzUmu9oHZxXjdtVc32WK4jQIcmpCIwqr4KMOME/b7b1hOvINY371pcEfcRgzmGGu PhXp2/2W9T7T1aSqbouANC9RHExQipzSavRwTxRlNfnBxgrv8s6Jjic8Md/yAYEs yAvo1sYKBelVmolCAiNeRjAfJvOj2wuAD8mvGc5o7Li6LonYlP5asoyoGeSh9GmC g9nr9ULVhvcVYgwa5Z6ACBtqtHkn8asYg7HsrXmBQ2U8K+sPietlQm/eu4ckChET moLFdjI91gx2aXI4QoJN4HTsGMVpFTA= -----END CERTIFICATE-----Generated at Sun Sep 15 12:30:37 2024 by rpki-client on console-ams.rpki-client.org