$ rpki-client -vvf rpki.apnic.net/member_repository/A91F11EE/E98A46523E8711EFAA24AA43C4F9AE02/-sKy5UFEW1tHxZ2uHeLd6IeauLs.mft File: -sKy5UFEW1tHxZ2uHeLd6IeauLs.mft (raw, json) Hash identifier: WQZJP5rdLMMAYuCcfV203YHr+KJgdJjUB4blwZf5CNE= Subject key identifier: BA:AD:2E:E2:B9:58:32:88:9E:82:BC:B3:0C:86:9A:9B:46:45:FA:A4 Authority key identifier: FA:C2:B2:E5:41:44:5B:5B:47:C5:9D:AE:1D:E2:DD:E8:87:9A:B8:BB Certificate issuer: /CN=A91F11EE/serialNumber=FAC2B2E541445B5B47C59DAE1DE2DDE8879AB8BB Certificate serial: 41 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-sKy5UFEW1tHxZ2uHeLd6IeauLs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F11EE/E98A46523E8711EFAA24AA43C4F9AE02/-sKy5UFEW1tHxZ2uHeLd6IeauLs.mft Manifest number: 3B Signing time: Thu 17 Oct 2024 05:58:22 +0000 Manifest this update: Thu 17 Oct 2024 05:58:22 +0000 Manifest next update: Thu 24 Oct 2024 05:58:22 +0000 Files and hashes: 1: -sKy5UFEW1tHxZ2uHeLd6IeauLs.crl (hash: N/832jsUEYjxLGa04B7L1BFWMWuCp55uTvmTKsLvoVg=) 2: 8B0201183E8911EFB2DCA846C4F9AE02.roa (hash: 8zOiXd3kRlQoiz32Gjahx1aoeuvy3cZGr/aU3t8eEp8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F11EE/E98A46523E8711EFAA24AA43C4F9AE02/-sKy5UFEW1tHxZ2uHeLd6IeauLs.crl rsync://rpki.apnic.net/member_repository/A91F11EE/E98A46523E8711EFAA24AA43C4F9AE02/-sKy5UFEW1tHxZ2uHeLd6IeauLs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-sKy5UFEW1tHxZ2uHeLd6IeauLs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 24 Oct 2024 05:58:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 65 (0x41) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F11EE/serialNumber=FAC2B2E541445B5B47C59DAE1DE2DDE8879AB8BB Validity Not Before: Oct 17 05:58:22 2024 GMT Not After : Oct 24 05:58:22 2024 GMT Subject: CN=6710a77e-d9c2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:49:94:cd:ac:32:fe:68:2f:56:7e:8b:82:34: db:80:e1:a4:32:31:cc:13:0c:9a:9b:e6:a8:e8:bf: f2:91:1d:0a:d9:94:bf:47:f9:a1:ce:10:17:3f:6d: 8a:b0:4a:27:6c:43:fc:67:44:48:b5:95:03:2c:fc: 3c:1b:34:c0:3f:03:8b:e3:22:8d:6b:90:48:42:f2: a0:5c:4e:a6:20:7d:a3:7d:12:dd:3a:bf:99:a7:12: 2c:ba:93:64:02:34:6b:32:f2:da:14:b9:e1:da:6c: d1:d6:08:cc:4a:f2:6a:9c:23:57:da:29:54:74:5c: dc:22:38:ad:24:f9:d2:50:66:e3:7a:b7:4c:40:e9: 77:7e:10:4b:91:77:b1:7b:5b:a4:36:0d:4d:62:73: ab:2f:3a:51:c8:aa:94:b1:d7:55:ce:9b:1e:df:8b: 4b:68:7f:9b:85:95:c1:07:11:9f:24:3c:1e:39:46: 44:5c:b9:db:ad:89:03:9c:5e:9b:45:2d:36:cb:6c: d2:6c:79:49:ef:98:9d:3d:43:14:5f:95:72:b2:ab: 17:56:3d:f0:45:94:52:2a:43:1f:60:b1:59:c2:16: 07:63:f5:a9:5d:a0:c4:2d:b2:4a:ab:bb:e2:77:36: 4a:19:d1:f5:45:db:07:3f:fc:2a:44:31:80:bd:df: 8d:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:AD:2E:E2:B9:58:32:88:9E:82:BC:B3:0C:86:9A:9B:46:45:FA:A4 X509v3 Authority Key Identifier: keyid:FA:C2:B2:E5:41:44:5B:5B:47:C5:9D:AE:1D:E2:DD:E8:87:9A:B8:BB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F11EE/E98A46523E8711EFAA24AA43C4F9AE02/-sKy5UFEW1tHxZ2uHeLd6IeauLs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-sKy5UFEW1tHxZ2uHeLd6IeauLs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F11EE/E98A46523E8711EFAA24AA43C4F9AE02/-sKy5UFEW1tHxZ2uHeLd6IeauLs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c8:b3:7d:ac:26:84:42:43:30:09:c7:e8:db:21:31:d1:d0:7a: d4:07:b6:d5:57:86:40:bf:3b:7f:c1:2f:7b:b2:b4:96:bf:2c: d1:d3:ee:e3:e0:93:14:06:8d:d2:04:35:7a:b9:2a:96:f6:67: 9b:a9:93:f3:f4:90:73:1b:01:a7:b0:00:33:e7:01:de:bb:9a: 50:78:04:e6:21:f2:db:a1:e7:34:a7:88:b8:42:67:cc:69:e6: 3e:59:39:c6:87:b1:ed:f0:7b:a3:67:02:03:f4:60:f7:25:95: 3e:d2:70:fe:90:63:e3:75:ae:6e:1e:95:6d:a0:b2:c5:26:bb: 3f:47:31:a1:35:33:39:b3:a5:33:0c:03:40:87:93:06:70:ca: 8b:74:f9:b9:94:64:54:c7:9c:6d:f2:69:65:ae:d7:d8:c8:5b: be:43:7f:45:79:cb:25:28:c4:32:46:47:0e:00:01:b1:51:05: 7c:1e:94:0d:76:79:7c:5e:45:b6:88:fe:2b:64:b2:ce:47:59: 75:5e:d4:c5:de:18:67:10:7c:fe:e6:17:2e:23:4f:8f:fe:b3: fe:0d:8e:5a:97:d0:d9:4a:c2:62:80:81:ac:e3:76:f5:f7:84: 62:a0:d1:5e:23:1f:33:b8:20:96:32:e5:25:67:6e:fb:05:7d: 0a:24:9d:05 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBQTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG MTFFRTExMC8GA1UEBRMoRkFDMkIyRTU0MTQ0NUI1QjQ3QzU5REFFMURFMkRERTg4 NzlBQjhCQjAeFw0yNDEwMTcwNTU4MjJaFw0yNDEwMjQwNTU4MjJaMBgxFjAUBgNV BAMTDTY3MTBhNzdlLWQ5YzIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDMSZTNrDL+aC9WfouCNNuA4aQyMcwTDJqb5qjov/KRHQrZlL9H+aHOEBc/bYqw SidsQ/xnREi1lQMs/DwbNMA/A4vjIo1rkEhC8qBcTqYgfaN9Et06v5mnEiy6k2QC NGsy8toUueHabNHWCMxK8mqcI1faKVR0XNwiOK0k+dJQZuN6t0xA6Xd+EEuRd7F7 W6Q2DU1ic6svOlHIqpSx11XOmx7fi0tof5uFlcEHEZ8kPB45RkRcudutiQOcXptF LTbLbNJseUnvmJ09QxRflXKyqxdWPfBFlFIqQx9gsVnCFgdj9aldoMQtskqru+J3 NkoZ0fVF2wc//CpEMYC9341ZAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUuq0u4rlY MoiegryzDIaam0ZF+qQwHwYDVR0jBBgwFoAU+sKy5UFEW1tHxZ2uHeLd6IeauLsw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUYxMUVFL0U5OEE0NjUyM0U4 NzExRUZBQTI0QUE0M0M0RjlBRTAyLy1zS3k1VUZFVzF0SHhaMnVIZUxkNkllYXVM cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvLXNLeTVVRkVXMXRIeFoydUhlTGQ2SWVhdUxzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUYx MUVFL0U5OEE0NjUyM0U4NzExRUZBQTI0QUE0M0M0RjlBRTAyLy1zS3k1VUZFVzF0 SHhaMnVIZUxkNkllYXVMcy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAMizfawmhEJDMAnH6NshMdHQetQHttVXhkC/O3/BL3uytJa/LNHT7uPg kxQGjdIENXq5Kpb2Z5upk/P0kHMbAaewADPnAd67mlB4BOYh8tuh5zSniLhCZ8xp 5j5ZOcaHse3we6NnAgP0YPcllT7ScP6QY+N1rm4elW2gssUmuz9HMaE1MzmzpTMM A0CHkwZwyot0+bmUZFTHnG3yaWWu19jIW75Df0V5yyUoxDJGRw4AAbFRBXwelA12 eXxeRbaI/itkss5HWXVe1MXeGGcQfP7mFy4jT4/+s/4NjlqX0NlKwmKAgazjdvX3 hGKg0V4jHzO4IJYy5SVnbvsFfQoknQU= -----END CERTIFICATE-----Generated at Thu Oct 17 08:06:30 2024 by rpki-client on console-ams.rpki-client.org