$ rpki-client -vvf rpki.apnic.net/member_repository/A91ED596/0DE23E165AE311EF932C232FC4F9AE02/ciYIDnxlJSNDlihmsxOfAjhyxAI.mft File: ciYIDnxlJSNDlihmsxOfAjhyxAI.mft (raw, json) Hash identifier: oMBh+6MyGChe0EXS3ECpnVhqodu0kPvvu0uOld0CSPY= Subject key identifier: 83:4D:8F:F3:23:C0:2F:79:92:F9:95:D8:26:D5:2D:B5:F1:CB:6F:CB Authority key identifier: 72:26:08:0E:7C:65:25:23:43:96:28:66:B3:13:9F:02:38:72:C4:02 Certificate issuer: /CN=A91ED596/serialNumber=7226080E7C65252343962866B3139F023872C402 Certificate serial: 26 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ciYIDnxlJSNDlihmsxOfAjhyxAI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ED596/0DE23E165AE311EF932C232FC4F9AE02/ciYIDnxlJSNDlihmsxOfAjhyxAI.mft Manifest number: 25 Signing time: Wed 23 Oct 2024 06:24:39 +0000 Manifest this update: Wed 23 Oct 2024 06:24:38 +0000 Manifest next update: Wed 30 Oct 2024 06:24:38 +0000 Files and hashes: 1: ciYIDnxlJSNDlihmsxOfAjhyxAI.crl (hash: Bvtj3aZJZ4eL779yhhEiPsfrbRT4kZFe7SHZyxnMIjc=) 2: C0C401905AE311EF90924C30C4F9AE02.roa (hash: 7P9QGIuS2YxmoaQtTvokUjWFQu4qLuQF/pm4P1jB/wE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ED596/0DE23E165AE311EF932C232FC4F9AE02/ciYIDnxlJSNDlihmsxOfAjhyxAI.crl rsync://rpki.apnic.net/member_repository/A91ED596/0DE23E165AE311EF932C232FC4F9AE02/ciYIDnxlJSNDlihmsxOfAjhyxAI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ciYIDnxlJSNDlihmsxOfAjhyxAI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 30 Oct 2024 05:54:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 38 (0x26) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ED596/serialNumber=7226080E7C65252343962866B3139F023872C402 Validity Not Before: Oct 23 06:24:38 2024 GMT Not After : Oct 30 06:24:38 2024 GMT Subject: CN=671896a6-6550 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:3e:14:81:26:f6:1f:57:3d:5c:cc:07:97:27: 58:31:53:e0:48:36:c1:91:52:3b:8d:6a:e6:75:db: 4a:b1:d0:0d:c9:41:35:10:fa:22:a0:11:a8:3a:7d: aa:6e:5e:6b:10:ff:d4:8f:4c:13:9e:01:e9:47:ea: 4e:3d:e2:a0:1a:18:44:ed:54:e6:c6:5e:aa:52:1a: 52:42:ec:eb:51:6c:22:b5:4a:cf:7a:45:d7:69:67: c0:e1:49:d9:eb:64:6b:6e:1c:5e:30:05:33:a1:40: 4f:1e:f4:a0:18:59:e5:86:c6:df:71:4c:75:d0:b3: 07:c2:3c:88:ad:6d:48:98:1c:67:f3:c9:08:3b:ce: 5a:8c:a8:75:d6:35:9f:09:ac:ae:f7:a3:7a:95:80: 88:68:86:26:56:7e:08:06:05:dd:af:0f:c3:1f:2c: cd:35:dd:80:eb:f0:32:7d:4c:aa:fc:09:cb:0b:ee: 54:5f:4f:63:9d:dc:42:99:dc:f6:bc:e3:35:12:8b: c7:09:33:e6:16:39:fd:35:e1:a2:93:db:f3:5b:3d: a7:12:b2:5b:72:bd:86:7f:9b:a9:27:5d:27:65:c6: 6c:58:de:8e:57:fe:fe:5e:28:e5:45:8e:d7:4a:70: ec:81:20:2e:16:16:16:25:84:0a:59:f8:c8:27:41: 84:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:4D:8F:F3:23:C0:2F:79:92:F9:95:D8:26:D5:2D:B5:F1:CB:6F:CB X509v3 Authority Key Identifier: keyid:72:26:08:0E:7C:65:25:23:43:96:28:66:B3:13:9F:02:38:72:C4:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ED596/0DE23E165AE311EF932C232FC4F9AE02/ciYIDnxlJSNDlihmsxOfAjhyxAI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ciYIDnxlJSNDlihmsxOfAjhyxAI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ED596/0DE23E165AE311EF932C232FC4F9AE02/ciYIDnxlJSNDlihmsxOfAjhyxAI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 55:0c:ba:83:50:9f:bb:d2:cb:93:bb:83:83:2a:92:0a:4a:3f: 43:48:5b:e5:d0:d8:db:e9:8f:f3:5d:f7:82:8d:84:fc:77:ec: d6:c3:20:62:33:0b:c2:77:d0:ed:88:ae:3a:c1:f1:33:48:9a: fd:a7:32:c5:c3:02:a6:0f:01:31:c3:49:e6:da:a5:99:09:e8: 38:4a:d6:10:be:c5:b2:b5:bc:6a:dc:27:b1:b2:bf:75:36:89: 73:a5:14:a9:4d:f8:a8:69:1e:08:c6:20:37:44:f3:a9:08:d2: 3e:33:7c:fd:a6:b5:74:e7:67:95:ee:b8:29:26:6b:4c:32:30: f7:96:a3:fc:6d:9a:30:9e:f4:64:71:b0:df:59:1b:eb:bf:79: 97:5e:77:d0:c5:e1:c4:6a:f5:a3:7c:8b:87:d0:30:a9:97:85: 7b:85:c7:81:e6:77:07:0a:31:18:02:dc:b2:7d:44:6d:40:e3: 61:c2:b3:ba:01:6b:fa:c6:10:ef:bd:4c:c6:ef:fa:0f:0b:e2: b2:87:60:58:a1:af:19:18:f3:ab:7c:7d:2a:52:49:ca:09:eb: 5d:9d:7e:11:2f:e2:82:91:72:bc:fa:91:aa:b9:cb:96:cf:13: b5:44:c1:a7:f0:bd:d1:74:96:0e:d5:63:d5:7d:aa:92:dd:f5: 0c:ee:d3:3f -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBJjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF RDU5NjExMC8GA1UEBRMoNzIyNjA4MEU3QzY1MjUyMzQzOTYyODY2QjMxMzlGMDIz ODcyQzQwMjAeFw0yNDEwMjMwNjI0MzhaFw0yNDEwMzAwNjI0MzhaMBgxFjAUBgNV BAMTDTY3MTg5NmE2LTY1NTAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQChPhSBJvYfVz1czAeXJ1gxU+BINsGRUjuNauZ120qx0A3JQTUQ+iKgEag6fapu XmsQ/9SPTBOeAelH6k494qAaGETtVObGXqpSGlJC7OtRbCK1Ss96RddpZ8DhSdnr ZGtuHF4wBTOhQE8e9KAYWeWGxt9xTHXQswfCPIitbUiYHGfzyQg7zlqMqHXWNZ8J rK73o3qVgIhohiZWfggGBd2vD8MfLM013YDr8DJ9TKr8CcsL7lRfT2Od3EKZ3Pa8 4zUSi8cJM+YWOf014aKT2/NbPacSsltyvYZ/m6knXSdlxmxY3o5X/v5eKOVFjtdK cOyBIC4WFhYlhApZ+MgnQYQTAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUg02P8yPA L3mS+ZXYJtUttfHLb8swHwYDVR0jBBgwFoAUciYIDnxlJSNDlihmsxOfAjhyxAIw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUVENTk2LzBERTIzRTE2NUFF MzExRUY5MzJDMjMyRkM0RjlBRTAyL2NpWUlEbnhsSlNORGxpaG1zeE9mQWpoeXhB SS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvY2lZSURueGxKU05EbGlobXN4T2ZBamh5eEFJLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUVE NTk2LzBERTIzRTE2NUFFMzExRUY5MzJDMjMyRkM0RjlBRTAyL2NpWUlEbnhsSlNO RGxpaG1zeE9mQWpoeXhBSS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAFUMuoNQn7vSy5O7g4MqkgpKP0NIW+XQ2Nvpj/Nd94KNhPx37NbDIGIz C8J30O2IrjrB8TNImv2nMsXDAqYPATHDSebapZkJ6DhK1hC+xbK1vGrcJ7Gyv3U2 iXOlFKlN+KhpHgjGIDdE86kI0j4zfP2mtXTnZ5XuuCkma0wyMPeWo/xtmjCe9GRx sN9ZG+u/eZded9DF4cRq9aN8i4fQMKmXhXuFx4HmdwcKMRgC3LJ9RG1A42HCs7oB a/rGEO+9TMbv+g8L4rKHYFihrxkY86t8fSpSScoJ612dfhEv4oKRcrz6kaq5y5bP E7VEwafwvdF0lg7VY9V9qpLd9Qzu0z8= -----END CERTIFICATE-----Generated at Wed Oct 23 07:33:27 2024 by rpki-client on console-fra.rpki-client.org