$ rpki-client -vvf rpki.apnic.net/member_repository/A91EE92F/1B290B5E740B11EF9E9C0336C4F9AE02/4deDfrzHqaTRdRZXhgR2OivQQnI.mft File: 4deDfrzHqaTRdRZXhgR2OivQQnI.mft (raw, json) Hash identifier: /u4CaoizUl+S/cBKBxSvvVd6qzYhby07s/GViqfU6+k= Subject key identifier: B2:7C:94:35:12:D4:4E:D0:FB:22:A4:BD:2A:D5:EE:5B:D3:E2:5B:FA Authority key identifier: E1:D7:83:7E:BC:C7:A9:A4:D1:75:16:57:86:04:76:3A:2B:D0:42:72 Certificate issuer: /CN=A91EE92F/serialNumber=E1D7837EBCC7A9A4D17516578604763A2BD04272 Certificate serial: 16 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4deDfrzHqaTRdRZXhgR2OivQQnI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EE92F/1B290B5E740B11EF9E9C0336C4F9AE02/4deDfrzHqaTRdRZXhgR2OivQQnI.mft Manifest number: 15 Signing time: Wed 23 Oct 2024 06:39:45 +0000 Manifest this update: Wed 23 Oct 2024 06:39:44 +0000 Manifest next update: Wed 30 Oct 2024 06:39:44 +0000 Files and hashes: 1: 4deDfrzHqaTRdRZXhgR2OivQQnI.crl (hash: wWhLD/xhAxBpRKoz5ZNTiN/NDUNGZMY24dBixoaENAc=) 2: 2EC0897A740C11EFB881CE37C4F9AE02.roa (hash: C+VHhvYJIxJRl2QjSKnvrnjeERAfLrb94Vm3sllfwRo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EE92F/1B290B5E740B11EF9E9C0336C4F9AE02/4deDfrzHqaTRdRZXhgR2OivQQnI.crl rsync://rpki.apnic.net/member_repository/A91EE92F/1B290B5E740B11EF9E9C0336C4F9AE02/4deDfrzHqaTRdRZXhgR2OivQQnI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4deDfrzHqaTRdRZXhgR2OivQQnI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 30 Oct 2024 05:54:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 22 (0x16) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EE92F/serialNumber=E1D7837EBCC7A9A4D17516578604763A2BD04272 Validity Not Before: Oct 23 06:39:44 2024 GMT Not After : Oct 30 06:39:44 2024 GMT Subject: CN=67189a31-c6fd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:f1:d2:c7:fa:5c:e4:d1:4e:53:0d:68:38:83: 6e:b3:99:cc:de:59:ba:12:c3:37:0c:60:88:31:a8: 8c:a4:f9:20:50:5d:4d:0c:ed:b4:fe:3c:59:02:c0: b6:f9:4c:fa:06:5e:f3:fd:b4:45:a8:89:cf:e8:5c: 3b:df:88:7a:1b:bd:ed:d2:4e:4b:25:d4:a5:ac:9e: 9f:3e:81:a9:20:d3:d2:c7:e4:88:7e:14:25:f6:31: b6:8b:bb:4b:a7:bd:0d:05:2f:58:60:b8:cb:36:02: 31:90:20:68:89:c7:73:d7:30:fb:1d:e4:71:95:4b: 1d:95:77:d5:5c:8f:8e:1e:70:54:23:79:62:a5:a4: 2f:69:c5:86:60:19:f5:03:08:a4:90:4b:a1:8e:d5: de:66:26:13:63:cb:81:ff:7e:aa:0c:4b:eb:52:1a: cb:a5:d8:5a:15:82:01:b4:e8:01:49:a4:c7:43:67: 12:c5:fe:3d:a4:e0:ba:53:60:ab:11:9e:91:3f:26: 35:69:7e:b5:57:c5:79:b1:81:37:c7:c0:e2:b6:dc: 18:8d:89:1d:71:a2:cb:5f:4b:74:55:a5:59:23:71: 44:51:18:d1:b2:d2:57:e4:e5:88:a4:f3:49:6f:98: 4a:44:48:b1:13:85:b8:1b:4b:78:82:b6:a4:98:b6: ef:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:7C:94:35:12:D4:4E:D0:FB:22:A4:BD:2A:D5:EE:5B:D3:E2:5B:FA X509v3 Authority Key Identifier: keyid:E1:D7:83:7E:BC:C7:A9:A4:D1:75:16:57:86:04:76:3A:2B:D0:42:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EE92F/1B290B5E740B11EF9E9C0336C4F9AE02/4deDfrzHqaTRdRZXhgR2OivQQnI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4deDfrzHqaTRdRZXhgR2OivQQnI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EE92F/1B290B5E740B11EF9E9C0336C4F9AE02/4deDfrzHqaTRdRZXhgR2OivQQnI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 12:8f:9c:f8:fe:20:14:89:40:ca:19:d4:12:23:c1:e3:fc:39: 21:13:86:c7:a6:57:58:6d:bc:cc:1f:da:09:e8:d2:d5:4b:20: 69:3b:ca:41:09:d3:d9:21:0d:ab:67:d9:d1:72:58:e9:3c:03: 16:e3:6e:e6:75:7a:dc:31:fa:c4:7e:04:02:1d:05:77:ef:9a: b4:ca:4a:db:e2:72:9d:74:e4:df:5e:3f:c3:d9:62:a4:5a:ab: 9f:ca:1a:f8:3f:ce:3c:fe:96:98:75:6b:41:b5:9f:79:5a:05: b4:19:94:51:93:ec:40:2f:72:e4:22:ad:95:b8:59:96:0f:45: 2a:18:5c:e5:ec:13:5b:5a:4a:27:70:25:83:4d:b8:a1:57:e7: c1:d0:6f:c6:b0:27:e4:93:2f:f8:79:67:fd:b4:e7:28:ef:1f: 55:02:50:f7:9b:0e:57:7a:7f:27:ca:d4:13:26:42:b3:17:30: f7:3f:74:21:e8:fc:a1:86:82:b8:d1:b6:32:f9:2e:1d:b8:71: bc:d4:aa:29:05:f1:bf:b0:d0:d5:14:4e:ec:36:bf:f5:d7:d9: a4:d4:27:f0:9a:16:35:6d:7c:95:2a:06:51:2a:67:c1:ac:79: b7:71:70:c2:52:47:98:6a:d6:92:16:a9:f6:e2:3d:53:28:23: 8d:83:f7:57 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBFjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF RTkyRjExMC8GA1UEBRMoRTFENzgzN0VCQ0M3QTlBNEQxNzUxNjU3ODYwNDc2M0Ey QkQwNDI3MjAeFw0yNDEwMjMwNjM5NDRaFw0yNDEwMzAwNjM5NDRaMBgxFjAUBgNV BAMTDTY3MTg5YTMxLWM2ZmQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDl8dLH+lzk0U5TDWg4g26zmczeWboSwzcMYIgxqIyk+SBQXU0M7bT+PFkCwLb5 TPoGXvP9tEWoic/oXDvfiHobve3STksl1KWsnp8+gakg09LH5Ih+FCX2MbaLu0un vQ0FL1hguMs2AjGQIGiJx3PXMPsd5HGVSx2Vd9Vcj44ecFQjeWKlpC9pxYZgGfUD CKSQS6GO1d5mJhNjy4H/fqoMS+tSGsul2FoVggG06AFJpMdDZxLF/j2k4LpTYKsR npE/JjVpfrVXxXmxgTfHwOK23BiNiR1xostfS3RVpVkjcURRGNGy0lfk5Yik80lv mEpESLEThbgbS3iCtqSYtu+NAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUsnyUNRLU TtD7IqS9KtXuW9PiW/owHwYDVR0jBBgwFoAU4deDfrzHqaTRdRZXhgR2OivQQnIw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUVFOTJGLzFCMjkwQjVFNzQw QjExRUY5RTlDMDMzNkM0RjlBRTAyLzRkZURmcnpIcWFUUmRSWlhoZ1IyT2l2UVFu SS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvNGRlRGZyekhxYVRSZFJaWGhnUjJPaXZRUW5JLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUVF OTJGLzFCMjkwQjVFNzQwQjExRUY5RTlDMDMzNkM0RjlBRTAyLzRkZURmcnpIcWFU UmRSWlhoZ1IyT2l2UVFuSS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBABKPnPj+IBSJQMoZ1BIjweP8OSEThsemV1htvMwf2gno0tVLIGk7ykEJ 09khDatn2dFyWOk8AxbjbuZ1etwx+sR+BAIdBXfvmrTKStvicp105N9eP8PZYqRa q5/KGvg/zjz+lph1a0G1n3laBbQZlFGT7EAvcuQirZW4WZYPRSoYXOXsE1taSidw JYNNuKFX58HQb8awJ+STL/h5Z/205yjvH1UCUPebDld6fyfK1BMmQrMXMPc/dCHo /KGGgrjRtjL5Lh24cbzUqikF8b+w0NUUTuw2v/XX2aTUJ/CaFjVtfJUqBlEqZ8Gs ebdxcMJSR5hq1pIWqfbiPVMoI42D91c= -----END CERTIFICATE-----Generated at Wed Oct 23 07:46:04 2024 by rpki-client on console-ams.rpki-client.org