$ rpki-client -vvf rpki.apnic.net/member_repository/A91F4091/5A116BAA1D9D11EFA10F2D3AC4F9AE02/g8kBUb4XghT8FnWDNNO21Sd6PL8.mft File: g8kBUb4XghT8FnWDNNO21Sd6PL8.mft (raw, json) Hash identifier: szxTK7+NOIYLhMf0/scZEJPkxBkjfQaYGMn1Kruw+HI= Subject key identifier: F1:B7:8A:F3:84:90:2D:35:74:AF:54:05:8A:AA:7B:C7:5A:D0:46:6A Authority key identifier: 83:C9:01:51:BE:17:82:14:FC:16:75:83:34:D3:B6:D5:27:7A:3C:BF Certificate issuer: /CN=A91F4091/serialNumber=83C90151BE178214FC16758334D3B6D5277A3CBF Certificate serial: 3C Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/g8kBUb4XghT8FnWDNNO21Sd6PL8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F4091/5A116BAA1D9D11EFA10F2D3AC4F9AE02/g8kBUb4XghT8FnWDNNO21Sd6PL8.mft Manifest number: 3B Signing time: Thu 19 Sep 2024 05:47:19 +0000 Manifest this update: Thu 19 Sep 2024 05:47:18 +0000 Manifest next update: Thu 26 Sep 2024 05:47:18 +0000 Files and hashes: 1: g8kBUb4XghT8FnWDNNO21Sd6PL8.crl (hash: PBUH83kCEvnK86i5Yz1T2v/o4xnYGbaj8SUIGW6UqCw=) 2: 1E110D7E1DA011EFBC90D55EC4F9AE02.roa (hash: sXijOKbCJmo7Vc9siLjMj6vbNj9IjkbsFg/cetJYPUA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F4091/5A116BAA1D9D11EFA10F2D3AC4F9AE02/g8kBUb4XghT8FnWDNNO21Sd6PL8.crl rsync://rpki.apnic.net/member_repository/A91F4091/5A116BAA1D9D11EFA10F2D3AC4F9AE02/g8kBUb4XghT8FnWDNNO21Sd6PL8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/g8kBUb4XghT8FnWDNNO21Sd6PL8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 26 Sep 2024 05:47:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 60 (0x3c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F4091/serialNumber=83C90151BE178214FC16758334D3B6D5277A3CBF Validity Not Before: Sep 19 05:47:18 2024 GMT Not After : Sep 26 05:47:18 2024 GMT Subject: CN=66ebbae7-18b7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:d3:d6:c3:ff:d1:56:49:f8:6c:6e:27:21:df: 85:2c:86:5e:08:e3:d8:c5:64:1b:65:ee:96:2d:ee: d5:98:f2:c9:a9:1b:4d:b2:60:67:c3:53:5a:c2:06: 04:4c:d4:50:bf:e1:ee:a1:a8:6b:41:1d:38:52:36: 8d:06:0f:0e:8e:a1:cc:4d:48:a0:58:76:58:3c:a9: 22:0a:dc:7f:76:30:76:33:39:a4:6d:c5:d7:15:a4: c4:ad:9b:c5:16:3d:22:86:93:ca:54:91:39:8d:de: 0d:78:34:9b:a8:fa:da:5c:46:f4:c8:57:2f:b5:b4: 75:3e:e6:0d:d7:a5:46:49:4b:c0:25:c4:8b:42:39: f2:5e:e5:9a:6d:1b:08:50:d9:85:b7:c1:aa:15:8f: 58:f0:b7:45:ca:05:da:c3:2c:ab:7d:d8:12:a1:25: 77:fb:b5:84:bf:e3:9b:b7:df:6a:3a:b6:93:93:3d: e1:33:f7:c1:ae:32:d2:d5:d0:bb:72:45:e8:8f:5d: e6:52:9e:d3:c8:af:9a:20:f1:bb:be:00:90:2a:0f: 37:9f:e7:b1:af:a0:93:ff:64:a0:c6:6c:4f:15:44: bc:32:40:67:60:bd:18:2e:00:b8:ab:fd:b7:31:67: b8:68:b8:ca:db:12:55:b1:52:2c:eb:af:89:72:88: 1b:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:B7:8A:F3:84:90:2D:35:74:AF:54:05:8A:AA:7B:C7:5A:D0:46:6A X509v3 Authority Key Identifier: keyid:83:C9:01:51:BE:17:82:14:FC:16:75:83:34:D3:B6:D5:27:7A:3C:BF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F4091/5A116BAA1D9D11EFA10F2D3AC4F9AE02/g8kBUb4XghT8FnWDNNO21Sd6PL8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/g8kBUb4XghT8FnWDNNO21Sd6PL8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F4091/5A116BAA1D9D11EFA10F2D3AC4F9AE02/g8kBUb4XghT8FnWDNNO21Sd6PL8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b3:fa:27:9c:84:5f:23:7e:4c:b5:c5:10:10:70:27:a8:17:60: 38:40:32:90:25:77:7f:98:c1:9e:d0:7b:9d:a5:7a:fc:ba:b4: c7:0e:ba:10:ee:52:71:6e:2e:c8:61:c4:aa:d4:27:62:11:d4: e5:90:05:ea:06:b4:9a:55:53:91:a0:50:cd:78:54:cd:c7:18: 77:0a:26:da:ff:e9:93:39:af:3c:6d:74:98:a3:e1:1a:d0:3c: 34:d9:25:0d:8f:b5:24:90:ac:ea:a9:2c:b2:1f:a3:7b:94:e7: 30:22:79:d1:54:39:c6:d0:cc:47:da:1b:96:5a:c6:e2:2a:5b: b4:6d:36:72:d3:cc:63:72:fe:e1:f9:95:8e:aa:36:6d:56:06: 82:06:22:8b:54:33:7d:fa:d2:dc:0a:07:47:cf:78:68:be:8d: d4:c1:0b:9c:0c:ab:5c:1d:1e:92:6b:5e:eb:5a:93:12:30:c0: 89:0b:ab:44:07:53:fc:bc:30:7b:92:96:a2:e3:b6:7b:94:f3: 15:c6:15:36:ed:07:b9:fc:f4:60:6d:57:a9:7d:b5:3f:2d:84: dd:3f:b8:59:21:ef:1c:90:2f:c5:4f:92:36:8d:85:78:e6:07: 3c:18:83:8b:52:66:72:52:f6:14:a0:04:56:8a:4e:96:dd:ef: 1f:2c:bb:55 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBPDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG NDA5MTExMC8GA1UEBRMoODNDOTAxNTFCRTE3ODIxNEZDMTY3NTgzMzREM0I2RDUy NzdBM0NCRjAeFw0yNDA5MTkwNTQ3MThaFw0yNDA5MjYwNTQ3MThaMBgxFjAUBgNV BAMTDTY2ZWJiYWU3LTE4YjcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDD09bD/9FWSfhsbich34Ushl4I49jFZBtl7pYt7tWY8smpG02yYGfDU1rCBgRM 1FC/4e6hqGtBHThSNo0GDw6OocxNSKBYdlg8qSIK3H92MHYzOaRtxdcVpMStm8UW PSKGk8pUkTmN3g14NJuo+tpcRvTIVy+1tHU+5g3XpUZJS8AlxItCOfJe5ZptGwhQ 2YW3waoVj1jwt0XKBdrDLKt92BKhJXf7tYS/45u332o6tpOTPeEz98GuMtLV0Lty ReiPXeZSntPIr5og8bu+AJAqDzef57GvoJP/ZKDGbE8VRLwyQGdgvRguALir/bcx Z7houMrbElWxUizrr4lyiBvDAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU8beK84SQ LTV0r1QFiqp7x1rQRmowHwYDVR0jBBgwFoAUg8kBUb4XghT8FnWDNNO21Sd6PL8w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUY0MDkxLzVBMTE2QkFBMUQ5 RDExRUZBMTBGMkQzQUM0RjlBRTAyL2c4a0JVYjRYZ2hUOEZuV0ROTk8yMVNkNlBM OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvZzhrQlViNFhnaFQ4Rm5XRE5OTzIxU2Q2UEw4LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUY0 MDkxLzVBMTE2QkFBMUQ5RDExRUZBMTBGMkQzQUM0RjlBRTAyL2c4a0JVYjRYZ2hU OEZuV0ROTk8yMVNkNlBMOC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBALP6J5yEXyN+TLXFEBBwJ6gXYDhAMpAld3+YwZ7Qe52levy6tMcOuhDu UnFuLshhxKrUJ2IR1OWQBeoGtJpVU5GgUM14VM3HGHcKJtr/6ZM5rzxtdJij4RrQ PDTZJQ2PtSSQrOqpLLIfo3uU5zAiedFUOcbQzEfaG5ZaxuIqW7RtNnLTzGNy/uH5 lY6qNm1WBoIGIotUM3360twKB0fPeGi+jdTBC5wMq1wdHpJrXutakxIwwIkLq0QH U/y8MHuSlqLjtnuU8xXGFTbtB7n89GBtV6l9tT8thN0/uFkh7xyQL8VPkjaNhXjm BzwYg4tSZnJS9hSgBFaKTpbd7x8su1U= -----END CERTIFICATE-----Generated at Thu Sep 19 08:57:58 2024 by rpki-client on console-ams.rpki-client.org