$ rpki-client -vvf rpki.apnic.net/member_repository/A91F8981/272B4C706C7F11EF914D7D57C4F9AE02/MhTiYKePfRZ36DATfBBlcwAxz2Y.mft File: MhTiYKePfRZ36DATfBBlcwAxz2Y.mft (raw, json) Hash identifier: tzWHPOrwIz9iQ0ZnP2z7fULdRpdcq901SCawEC5rXH0= Subject key identifier: E0:AE:00:36:46:54:1D:E7:FA:E3:45:AE:13:60:15:21:0C:52:CF:82 Authority key identifier: 32:14:E2:60:A7:8F:7D:16:77:E8:30:13:7C:10:65:73:00:31:CF:66 Certificate issuer: /CN=A91F8981/serialNumber=3214E260A78F7D1677E830137C1065730031CF66 Certificate serial: 1A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MhTiYKePfRZ36DATfBBlcwAxz2Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F8981/272B4C706C7F11EF914D7D57C4F9AE02/MhTiYKePfRZ36DATfBBlcwAxz2Y.mft Manifest number: 19 Signing time: Wed 23 Oct 2024 06:37:02 +0000 Manifest this update: Wed 23 Oct 2024 06:37:01 +0000 Manifest next update: Wed 30 Oct 2024 06:37:01 +0000 Files and hashes: 1: MhTiYKePfRZ36DATfBBlcwAxz2Y.crl (hash: 9m16ajytuG1lc8MiDPJN5Ko5naa+hRcJlItQjyoc1T8=) 2: D80D96066C7F11EF92105459C4F9AE02.roa (hash: 7pF3uHzaE+Wewnte+bG2KwxN3eFFLWjZ6eq6MYtYcWc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F8981/272B4C706C7F11EF914D7D57C4F9AE02/MhTiYKePfRZ36DATfBBlcwAxz2Y.crl rsync://rpki.apnic.net/member_repository/A91F8981/272B4C706C7F11EF914D7D57C4F9AE02/MhTiYKePfRZ36DATfBBlcwAxz2Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MhTiYKePfRZ36DATfBBlcwAxz2Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 30 Oct 2024 05:54:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 26 (0x1a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F8981/serialNumber=3214E260A78F7D1677E830137C1065730031CF66 Validity Not Before: Oct 23 06:37:01 2024 GMT Not After : Oct 30 06:37:01 2024 GMT Subject: CN=6718998e-ce21 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:b1:bc:1c:3d:74:fb:ef:6f:b6:74:89:e1:41: 4c:49:0c:0b:5d:d1:05:29:1b:8d:b2:94:b2:16:bc: 79:06:1b:74:90:52:10:34:5c:07:8d:8e:9a:96:3a: 82:b2:3d:14:e4:28:b8:4b:33:9a:95:9d:bb:01:5a: 63:ae:e9:fe:b4:3a:01:8f:2d:ac:19:ea:05:46:0d: 20:f6:2d:70:4c:62:e3:0c:ff:bc:c4:a3:23:a6:c8: d9:b7:54:37:25:6a:80:30:12:dc:ca:0b:b2:9f:e2: 53:93:bf:6c:99:b8:46:72:83:82:52:9c:d2:0a:be: 71:fc:11:d6:12:8d:ee:54:c9:71:11:bf:79:76:e8: 1f:9c:71:55:c2:53:01:5c:c1:cf:bd:43:f6:5a:62: b1:7c:17:84:3e:09:86:a9:69:15:5c:80:ca:74:b5: 1b:70:b4:57:02:51:78:2c:64:82:ef:4b:80:60:98: bb:51:c0:f7:bc:85:a3:eb:fd:53:c2:a7:53:74:e6: 64:3c:05:37:35:c0:a9:10:0b:4e:35:74:57:2f:69: f5:e2:25:2c:87:d5:7c:91:75:03:5a:de:0b:2b:bd: e1:3a:c7:90:27:f9:f5:46:be:f3:da:e1:b3:35:49: 59:90:71:70:4f:e0:df:3c:55:43:03:68:b8:76:48: 26:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:AE:00:36:46:54:1D:E7:FA:E3:45:AE:13:60:15:21:0C:52:CF:82 X509v3 Authority Key Identifier: keyid:32:14:E2:60:A7:8F:7D:16:77:E8:30:13:7C:10:65:73:00:31:CF:66 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F8981/272B4C706C7F11EF914D7D57C4F9AE02/MhTiYKePfRZ36DATfBBlcwAxz2Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MhTiYKePfRZ36DATfBBlcwAxz2Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F8981/272B4C706C7F11EF914D7D57C4F9AE02/MhTiYKePfRZ36DATfBBlcwAxz2Y.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 84:1e:d5:bc:b8:81:1a:ad:a2:c7:c4:8a:d8:83:de:45:07:a8: 56:93:de:f6:ed:8b:f2:c5:06:bd:41:95:42:29:ab:d2:cd:a4: f8:4e:33:92:d7:12:f4:ce:7c:bb:c6:fe:35:fd:dd:0a:51:a1: 98:57:7c:df:8b:2d:8d:a6:3f:20:9c:61:df:10:87:fd:db:49: 34:60:bc:19:c0:cb:72:2d:a3:b0:ed:b7:8b:32:83:30:9d:28: 2a:71:eb:81:81:0a:73:2b:d8:f7:f4:d0:61:a3:6e:0f:36:19: df:6b:16:65:78:3d:4e:13:eb:18:8e:c0:79:af:d8:4b:cd:a5: 87:71:da:bc:f3:32:97:c7:57:a3:aa:06:8b:bb:b1:a1:33:71: 04:1c:76:73:d7:ef:61:d7:20:7e:0a:79:22:b4:ec:8f:35:ba: c5:45:36:07:ab:45:5d:87:53:91:9f:e3:0c:3f:c8:e9:85:57: ff:db:60:d4:b0:f4:73:bc:93:39:5f:f0:fa:8b:ad:4c:25:cc: 71:20:ad:81:46:29:f0:e1:51:09:8a:54:19:1f:79:c2:85:0a: 8c:da:6f:0f:10:ec:b7:b4:77:c4:cf:37:94:8b:0e:7b:a3:1e: 68:4a:6c:f3:9f:f7:86:e0:81:45:98:e2:f4:dd:46:eb:8a:e0: 77:54:2c:06 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBGjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG ODk4MTExMC8GA1UEBRMoMzIxNEUyNjBBNzhGN0QxNjc3RTgzMDEzN0MxMDY1NzMw MDMxQ0Y2NjAeFw0yNDEwMjMwNjM3MDFaFw0yNDEwMzAwNjM3MDFaMBgxFjAUBgNV BAMTDTY3MTg5OThlLWNlMjEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC+sbwcPXT772+2dInhQUxJDAtd0QUpG42ylLIWvHkGG3SQUhA0XAeNjpqWOoKy PRTkKLhLM5qVnbsBWmOu6f60OgGPLawZ6gVGDSD2LXBMYuMM/7zEoyOmyNm3VDcl aoAwEtzKC7Kf4lOTv2yZuEZyg4JSnNIKvnH8EdYSje5UyXERv3l26B+ccVXCUwFc wc+9Q/ZaYrF8F4Q+CYapaRVcgMp0tRtwtFcCUXgsZILvS4BgmLtRwPe8haPr/VPC p1N05mQ8BTc1wKkQC041dFcvafXiJSyH1XyRdQNa3gsrveE6x5An+fVGvvPa4bM1 SVmQcXBP4N88VUMDaLh2SCbpAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU4K4ANkZU Hef640WuE2AVIQxSz4IwHwYDVR0jBBgwFoAUMhTiYKePfRZ36DATfBBlcwAxz2Yw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUY4OTgxLzI3MkI0QzcwNkM3 RjExRUY5MTREN0Q1N0M0RjlBRTAyL01oVGlZS2VQZlJaMzZEQVRmQkJsY3dBeHoy WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvTWhUaVlLZVBmUlozNkRBVGZCQmxjd0F4ejJZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUY4 OTgxLzI3MkI0QzcwNkM3RjExRUY5MTREN0Q1N0M0RjlBRTAyL01oVGlZS2VQZlJa MzZEQVRmQkJsY3dBeHoyWS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAIQe1by4gRqtosfEitiD3kUHqFaT3vbti/LFBr1BlUIpq9LNpPhOM5LX EvTOfLvG/jX93QpRoZhXfN+LLY2mPyCcYd8Qh/3bSTRgvBnAy3Ito7Dtt4sygzCd KCpx64GBCnMr2Pf00GGjbg82Gd9rFmV4PU4T6xiOwHmv2EvNpYdx2rzzMpfHV6Oq Bou7saEzcQQcdnPX72HXIH4KeSK07I81usVFNgerRV2HU5Gf4ww/yOmFV//bYNSw 9HO8kzlf8PqLrUwlzHEgrYFGKfDhUQmKVBkfecKFCozabw8Q7Le0d8TPN5SLDnuj HmhKbPOf94bggUWY4vTdRuuK4HdULAY= -----END CERTIFICATE-----Generated at Wed Oct 23 07:33:27 2024 by rpki-client on console-fra.rpki-client.org