$ rpki-client -vvf rpki.apnic.net/member_repository/A91EAF4B/84858F6A471911EA90863072C4F9AE02/rXHewTibFKASABB2mR9Zq-LKseY.mft File: rXHewTibFKASABB2mR9Zq-LKseY.mft (raw, json) Hash identifier: oojfUD3w8Skbl502ksTDUMV3LJWsXTIUh4smfaAjg2c= Subject key identifier: 30:1A:D8:88:2B:08:28:74:A3:8D:D7:BB:40:6E:5D:A9:66:9D:CE:05 Authority key identifier: AD:71:DE:C1:38:9B:14:A0:12:00:10:76:99:1F:59:AB:E2:CA:B1:E6 Certificate issuer: /CN=A91EAF4B/serialNumber=AD71DEC1389B14A012001076991F59ABE2CAB1E6 Certificate serial: 41 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rXHewTibFKASABB2mR9Zq-LKseY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EAF4B/84858F6A471911EA90863072C4F9AE02/rXHewTibFKASABB2mR9Zq-LKseY.mft Manifest number: 0ABF Signing time: Sat 28 Sep 2024 19:23:55 +0000 Manifest this update: Sat 28 Sep 2024 19:23:54 +0000 Manifest next update: Sat 05 Oct 2024 19:23:54 +0000 Files and hashes: 1: rXHewTibFKASABB2mR9Zq-LKseY.crl (hash: sKf0CxGo0KmvSe7qxoq3sGTS98RCXqDjsiTQxc47VY4=) 2: E19CEE7A295311EF9F79E84BC4F9AE02.roa (hash: FWqWHrgU8YR9QtN3gRWbhhD2XMh1wD0ChEDjXePWjyc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EAF4B/84858F6A471911EA90863072C4F9AE02/rXHewTibFKASABB2mR9Zq-LKseY.crl rsync://rpki.apnic.net/member_repository/A91EAF4B/84858F6A471911EA90863072C4F9AE02/rXHewTibFKASABB2mR9Zq-LKseY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rXHewTibFKASABB2mR9Zq-LKseY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Oct 2024 18:15:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 65 (0x41) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EAF4B/serialNumber=AD71DEC1389B14A012001076991F59ABE2CAB1E6 Validity Not Before: Sep 28 19:23:54 2024 GMT Not After : Oct 5 19:23:54 2024 GMT Subject: CN=66f857ca-f812 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:18:31:8d:1e:a2:7d:03:d7:3a:ed:ff:ff:d0: a5:bd:5d:ce:4f:a7:4a:b7:ca:f4:21:d9:44:03:33: fb:00:ce:f1:34:6f:ca:b0:19:a9:7a:3e:1d:7f:e2: 1c:54:0d:07:81:91:72:9b:31:9d:7c:4c:c5:86:27: b3:e2:00:69:30:91:77:56:ce:9c:19:e0:3c:70:02: 8b:d8:7e:e6:6d:bb:83:9a:be:1f:aa:a5:d8:1c:f8: 5f:56:af:aa:66:16:e2:13:78:be:71:0c:d8:e1:00: 95:f0:ca:c6:c0:ac:23:88:a0:00:ac:f6:0c:3c:5a: 97:86:c6:07:02:91:0b:e3:3e:75:e1:18:f3:1d:42: f8:30:4d:2a:70:2c:c2:07:52:19:90:82:83:87:75: 21:46:e4:4b:ba:28:b8:04:6c:61:c4:a7:65:d9:2d: 23:0c:d3:79:17:48:5b:88:9a:42:d6:38:9d:db:06: 99:6f:48:09:e1:37:a5:30:51:7c:2d:1d:f0:58:1c: 4c:a3:34:ce:c3:74:01:ac:07:3f:1f:08:3f:91:d7: 7b:a0:00:5e:63:bd:7a:75:30:ec:45:83:ee:f5:b3: 09:da:2f:77:1b:52:5d:62:be:f2:62:60:22:49:62: 2c:7c:0e:5e:96:eb:99:d2:50:a9:da:b2:45:68:57: 44:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:1A:D8:88:2B:08:28:74:A3:8D:D7:BB:40:6E:5D:A9:66:9D:CE:05 X509v3 Authority Key Identifier: keyid:AD:71:DE:C1:38:9B:14:A0:12:00:10:76:99:1F:59:AB:E2:CA:B1:E6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EAF4B/84858F6A471911EA90863072C4F9AE02/rXHewTibFKASABB2mR9Zq-LKseY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rXHewTibFKASABB2mR9Zq-LKseY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EAF4B/84858F6A471911EA90863072C4F9AE02/rXHewTibFKASABB2mR9Zq-LKseY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2a:1a:cf:a2:63:08:f7:8f:22:9e:46:b4:87:25:3e:cd:9b:a7: 0f:44:02:b5:6d:c4:cd:d4:34:eb:10:93:75:97:29:e1:29:29: 9a:f3:4e:d7:c9:10:0b:7e:1b:4a:ca:b8:6c:5c:f9:e9:2d:99: 97:7b:96:86:7f:a1:0d:80:a0:41:e1:d1:75:f9:19:43:4d:26: db:1f:dd:e0:2e:0a:4b:bb:e7:db:dd:5d:b2:f0:97:a7:e0:74: 54:50:4a:f3:36:13:9c:f2:e8:37:e1:0e:7d:fc:0a:2d:69:64: 03:34:f0:54:20:20:1c:44:f2:4d:fd:68:93:2c:a9:29:00:8b: c7:55:85:a3:c9:77:75:86:64:4f:82:6b:18:20:d9:63:b8:38: 04:86:1f:eb:f5:9d:d5:36:b7:00:cf:d5:b3:1d:6a:3d:b2:bb: db:4d:69:39:4a:9b:fb:d4:d3:a3:dd:7f:42:dd:fa:c6:44:1d: db:6d:62:5a:a7:e5:f5:9a:3f:e8:b3:d8:18:3b:3d:e7:4f:c8: b5:a6:df:33:33:18:98:69:c1:01:3a:b6:cd:87:20:b4:a7:bc: 05:fb:a5:e0:dc:45:11:7a:0f:79:f5:00:01:77:41:d3:0e:57: 6b:b9:28:2d:16:7a:5d:0b:26:51:29:d2:5e:01:1a:ed:8c:ec: 0e:79:df:2e -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBQTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF QUY0QjExMC8GA1UEBRMoQUQ3MURFQzEzODlCMTRBMDEyMDAxMDc2OTkxRjU5QUJF MkNBQjFFNjAeFw0yNDA5MjgxOTIzNTRaFw0yNDEwMDUxOTIzNTRaMBgxFjAUBgNV BAMTDTY2Zjg1N2NhLWY4MTIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDOGDGNHqJ9A9c67f//0KW9Xc5Pp0q3yvQh2UQDM/sAzvE0b8qwGal6Ph1/4hxU DQeBkXKbMZ18TMWGJ7PiAGkwkXdWzpwZ4DxwAovYfuZtu4Oavh+qpdgc+F9Wr6pm FuITeL5xDNjhAJXwysbArCOIoACs9gw8WpeGxgcCkQvjPnXhGPMdQvgwTSpwLMIH UhmQgoOHdSFG5Eu6KLgEbGHEp2XZLSMM03kXSFuImkLWOJ3bBplvSAnhN6UwUXwt HfBYHEyjNM7DdAGsBz8fCD+R13ugAF5jvXp1MOxFg+71swnaL3cbUl1ivvJiYCJJ Yix8Dl6W65nSUKnaskVoV0RJAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUMBrYiCsI KHSjjde7QG5dqWadzgUwHwYDVR0jBBgwFoAUrXHewTibFKASABB2mR9Zq+LKseYw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUVBRjRCLzg0ODU4RjZBNDcx OTExRUE5MDg2MzA3MkM0RjlBRTAyL3JYSGV3VGliRktBU0FCQjJtUjlacS1MS3Nl WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvclhIZXdUaWJGS0FTQUJCMm1SOVpxLUxLc2VZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUVB RjRCLzg0ODU4RjZBNDcxOTExRUE5MDg2MzA3MkM0RjlBRTAyL3JYSGV3VGliRktB U0FCQjJtUjlacS1MS3NlWS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBACoaz6JjCPePIp5GtIclPs2bpw9EArVtxM3UNOsQk3WXKeEpKZrzTtfJ EAt+G0rKuGxc+ektmZd7loZ/oQ2AoEHh0XX5GUNNJtsf3eAuCku759vdXbLwl6fg dFRQSvM2E5zy6DfhDn38Ci1pZAM08FQgIBxE8k39aJMsqSkAi8dVhaPJd3WGZE+C axgg2WO4OASGH+v1ndU2twDP1bMdaj2yu9tNaTlKm/vU06Pdf0Ld+sZEHdttYlqn 5fWaP+iz2Bg7PedPyLWm3zMzGJhpwQE6ts2HILSnvAX7peDcRRF6D3n1AAF3QdMO V2u5KC0Wel0LJlEp0l4BGu2M7A553y4= -----END CERTIFICATE-----Generated at Sat Sep 28 20:52:23 2024 by rpki-client on console-fra.rpki-client.org