$ rpki-client -vvf rpki.apnic.net/member_repository/A91ED596/0572DD8A5AE311EF932C232FC4F9AE02/v3H1vxFop4QFduAAbzu8ZfxINAs.mft File: v3H1vxFop4QFduAAbzu8ZfxINAs.mft (raw, json) Hash identifier: pcnQgHEPvKF2lGP6k8h5/UOTKJDlshaPvdm8RmYdMHM= Subject key identifier: 81:2C:0F:7B:62:7A:5C:F7:E1:17:E7:88:84:D0:A5:58:F3:BE:5D:56 Authority key identifier: BF:71:F5:BF:11:68:A7:84:05:76:E0:00:6F:3B:BC:65:FC:48:34:0B Certificate issuer: /CN=A91ED596/serialNumber=BF71F5BF1168A7840576E0006F3BBC65FC48340B Certificate serial: 26 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/v3H1vxFop4QFduAAbzu8ZfxINAs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ED596/0572DD8A5AE311EF932C232FC4F9AE02/v3H1vxFop4QFduAAbzu8ZfxINAs.mft Manifest number: 25 Signing time: Wed 23 Oct 2024 06:24:36 +0000 Manifest this update: Wed 23 Oct 2024 06:24:36 +0000 Manifest next update: Wed 30 Oct 2024 06:24:35 +0000 Files and hashes: 1: v3H1vxFop4QFduAAbzu8ZfxINAs.crl (hash: tIc3RLSnrTIIqmNDXVlaC6grbSzBIduJG9ZNlWNANlA=) 2: 8580DC705AE311EF86351430C4F9AE02.roa (hash: tNd1A1Pa4JpDSAJTUxSzKVvWvdR5TDXaWTiFNabeiYY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ED596/0572DD8A5AE311EF932C232FC4F9AE02/v3H1vxFop4QFduAAbzu8ZfxINAs.crl rsync://rpki.apnic.net/member_repository/A91ED596/0572DD8A5AE311EF932C232FC4F9AE02/v3H1vxFop4QFduAAbzu8ZfxINAs.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/v3H1vxFop4QFduAAbzu8ZfxINAs.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 30 Oct 2024 02:50:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 38 (0x26) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ED596/serialNumber=BF71F5BF1168A7840576E0006F3BBC65FC48340B Validity Not Before: Oct 23 06:24:36 2024 GMT Not After : Oct 30 06:24:35 2024 GMT Subject: CN=671896a4-899a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:9a:d5:85:4e:c8:b0:09:dd:e3:4a:f9:2f:20: 55:54:0a:c8:5f:f3:d9:64:ff:ee:8e:88:f2:01:8c: 46:e9:61:4f:e5:6d:0c:2d:94:fb:f8:b3:2c:e6:d9: 00:c4:dd:6c:77:88:a7:d1:c2:f9:10:e3:10:31:d7: 1c:9a:38:e4:b9:ec:7b:ed:bb:3e:0b:70:e8:17:91: d2:f4:58:98:38:e7:42:f5:33:a7:da:2f:2e:bd:fe: d0:85:79:14:97:8a:8c:2e:69:d4:0e:b6:8b:a3:6e: 26:68:38:05:cd:71:c7:87:d2:57:d1:4d:ba:23:04: e7:61:90:7d:a7:6e:7a:8a:60:3c:5f:d7:72:1a:20: 00:49:4c:24:77:a9:11:79:50:82:fd:61:35:59:61: e5:62:ae:9f:a4:42:4d:e3:08:c6:6d:30:f9:e2:d7: 9e:38:8c:1a:46:bf:64:04:ef:e3:47:be:b5:12:52: 3a:7c:8f:99:64:d3:18:e9:51:00:c3:38:69:c8:de: d1:79:ec:b4:13:91:1c:62:c1:92:3f:d5:49:db:1e: 92:4a:d7:66:01:e2:a2:60:c8:d6:03:51:6b:25:da: b8:19:2e:59:20:08:30:db:8c:1f:93:ab:15:f1:9c: c0:82:38:27:72:c8:69:13:8f:55:69:b3:7c:2c:1b: b8:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:2C:0F:7B:62:7A:5C:F7:E1:17:E7:88:84:D0:A5:58:F3:BE:5D:56 X509v3 Authority Key Identifier: keyid:BF:71:F5:BF:11:68:A7:84:05:76:E0:00:6F:3B:BC:65:FC:48:34:0B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ED596/0572DD8A5AE311EF932C232FC4F9AE02/v3H1vxFop4QFduAAbzu8ZfxINAs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/v3H1vxFop4QFduAAbzu8ZfxINAs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ED596/0572DD8A5AE311EF932C232FC4F9AE02/v3H1vxFop4QFduAAbzu8ZfxINAs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 27:7d:a0:f9:88:ec:2c:05:51:cb:e2:bc:0f:cc:ea:a9:c7:51: 1c:04:41:2f:3f:f2:4b:30:b8:d9:9f:99:22:cf:28:38:a0:2f: ed:58:bf:68:96:6a:28:f7:67:5f:78:72:55:9c:78:37:a6:55: 5e:37:c8:66:65:71:9c:e2:2b:c8:cd:7a:db:e6:88:61:15:29: 28:11:29:f2:2e:e6:af:f8:b5:bc:e8:19:52:e2:cc:ad:e4:26: a3:7d:51:ab:a1:86:a3:09:e9:cf:07:bd:a2:98:4e:ec:d5:a1: 08:a0:6e:0a:b9:d4:46:6e:be:3c:61:0e:7f:2c:ad:d4:0f:6a: b1:6a:14:e8:9e:23:f2:27:3c:e5:9c:0a:87:e9:a0:e8:87:58: 07:8e:02:e4:16:95:ce:00:b3:91:a7:4c:f8:df:69:84:39:b9: 53:ae:f4:34:ee:0e:b6:c8:e1:0c:3c:81:e7:2b:b3:c3:20:1a: 2c:2d:28:6c:ea:0d:83:bd:a5:74:04:6b:41:60:55:63:f1:5d: 75:c7:a0:96:15:c9:e4:1f:51:4f:6a:8e:f2:4a:44:8b:82:88: 41:81:e8:b3:04:6c:c8:5a:39:b2:82:be:aa:d3:27:db:ba:36: 77:90:2e:fd:21:22:0a:0d:ce:96:17:68:82:bb:20:8b:48:53: d5:12:86:e2 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBJjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF RDU5NjExMC8GA1UEBRMoQkY3MUY1QkYxMTY4QTc4NDA1NzZFMDAwNkYzQkJDNjVG QzQ4MzQwQjAeFw0yNDEwMjMwNjI0MzZaFw0yNDEwMzAwNjI0MzVaMBgxFjAUBgNV BAMTDTY3MTg5NmE0LTg5OWEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDcmtWFTsiwCd3jSvkvIFVUCshf89lk/+6OiPIBjEbpYU/lbQwtlPv4syzm2QDE 3Wx3iKfRwvkQ4xAx1xyaOOS57Hvtuz4LcOgXkdL0WJg450L1M6faLy69/tCFeRSX iowuadQOtoujbiZoOAXNcceH0lfRTbojBOdhkH2nbnqKYDxf13IaIABJTCR3qRF5 UIL9YTVZYeVirp+kQk3jCMZtMPni1544jBpGv2QE7+NHvrUSUjp8j5lk0xjpUQDD OGnI3tF57LQTkRxiwZI/1UnbHpJK12YB4qJgyNYDUWsl2rgZLlkgCDDbjB+TqxXx nMCCOCdyyGkTj1Vps3wsG7iZAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUgSwPe2J6 XPfhF+eIhNClWPO+XVYwHwYDVR0jBBgwFoAUv3H1vxFop4QFduAAbzu8ZfxINAsw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUVENTk2LzA1NzJERDhBNUFF MzExRUY5MzJDMjMyRkM0RjlBRTAyL3YzSDF2eEZvcDRRRmR1QUFienU4WmZ4SU5B cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvdjNIMXZ4Rm9wNFFGZHVBQWJ6dThaZnhJTkFzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUVE NTk2LzA1NzJERDhBNUFFMzExRUY5MzJDMjMyRkM0RjlBRTAyL3YzSDF2eEZvcDRR RmR1QUFienU4WmZ4SU5Bcy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBACd9oPmI7CwFUcvivA/M6qnHURwEQS8/8kswuNmfmSLPKDigL+1Yv2iW aij3Z194clWceDemVV43yGZlcZziK8jNetvmiGEVKSgRKfIu5q/4tbzoGVLizK3k JqN9UauhhqMJ6c8HvaKYTuzVoQigbgq51EZuvjxhDn8srdQParFqFOieI/InPOWc CofpoOiHWAeOAuQWlc4As5GnTPjfaYQ5uVOu9DTuDrbI4Qw8gecrs8MgGiwtKGzq DYO9pXQEa0FgVWPxXXXHoJYVyeQfUU9qjvJKRIuCiEGB6LMEbMhaObKCvqrTJ9u6 NneQLv0hIgoNzpYXaIK7IItIU9UShuI= -----END CERTIFICATE-----Generated at Wed Oct 23 07:46:04 2024 by rpki-client on console-ams.rpki-client.org