$ rpki-client -vvf rpki.apnic.net/member_repository/A91FA69F/BD859F9633A311EFA5B49B23C4F9AE02/suiO3TYbzGGUyX9oxHJRgP8C9yQ.mft File: suiO3TYbzGGUyX9oxHJRgP8C9yQ.mft (raw, json) Hash identifier: MibrNA4HseSwx+XHzb5s0YtD2fscQgjqu/Nmw1IZ+Ls= Subject key identifier: 0F:60:A1:58:13:74:C2:E0:22:4C:C7:72:D2:85:7F:4B:0D:25:B7:2E Authority key identifier: B2:E8:8E:DD:36:1B:CC:61:94:C9:7F:68:C4:72:51:80:FF:02:F7:24 Certificate issuer: /CN=A91FA69F/serialNumber=B2E88EDD361BCC6194C97F68C4725180FF02F724 Certificate serial: 2E Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/suiO3TYbzGGUyX9oxHJRgP8C9yQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FA69F/BD859F9633A311EFA5B49B23C4F9AE02/suiO3TYbzGGUyX9oxHJRgP8C9yQ.mft Manifest number: 2D Signing time: Thu 19 Sep 2024 05:57:34 +0000 Manifest this update: Thu 19 Sep 2024 05:57:33 +0000 Manifest next update: Thu 26 Sep 2024 05:57:33 +0000 Files and hashes: 1: suiO3TYbzGGUyX9oxHJRgP8C9yQ.crl (hash: QA8tatIElXuw9hWZvVBM2mHV+VpcIHmvNuYgeVHhaws=) 2: 0D38E31833A411EF82E92524C4F9AE02.roa (hash: lY5HgP2b+DiZvOALHw+tr2ZxBjEGaK357GqXMmb0Brk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FA69F/BD859F9633A311EFA5B49B23C4F9AE02/suiO3TYbzGGUyX9oxHJRgP8C9yQ.crl rsync://rpki.apnic.net/member_repository/A91FA69F/BD859F9633A311EFA5B49B23C4F9AE02/suiO3TYbzGGUyX9oxHJRgP8C9yQ.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/suiO3TYbzGGUyX9oxHJRgP8C9yQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 26 Sep 2024 05:57:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 46 (0x2e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FA69F/serialNumber=B2E88EDD361BCC6194C97F68C4725180FF02F724 Validity Not Before: Sep 19 05:57:33 2024 GMT Not After : Sep 26 05:57:33 2024 GMT Subject: CN=66ebbd4e-8105 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:8b:73:9c:3c:da:bd:4f:a5:21:09:df:b8:56: 56:90:82:87:e3:aa:95:f5:64:fd:15:94:94:5f:ab: ce:5b:53:2b:b1:28:d2:e3:64:58:d5:e8:aa:ab:cd: 0c:c1:92:fc:28:b9:05:c5:7b:09:fe:47:4a:0d:0d: 66:df:fe:6f:3b:1e:28:a4:eb:d0:27:6b:b4:ca:b5: 84:05:59:83:44:78:fe:fe:04:e9:c0:ab:45:91:0a: 78:db:3e:44:9b:8b:a0:e7:71:40:40:ad:1e:e3:89: 68:9d:57:03:17:a5:dd:65:03:b9:01:9e:46:98:ab: 1d:74:7a:49:8c:00:40:48:68:13:44:e1:0d:08:9a: 58:88:7d:ad:24:72:ff:ac:1e:c6:33:9b:39:1c:6d: fa:80:c6:0c:17:7a:0e:66:f7:6d:d4:8d:56:51:38: 3e:df:f3:3a:99:3b:7f:c4:41:c3:5e:ac:8f:86:8f: 36:88:80:30:9a:21:77:62:46:f1:84:8a:3c:85:aa: 28:45:ce:7d:10:43:76:89:14:74:76:9a:1f:04:71: a1:97:bc:24:2e:e9:d8:aa:f9:b7:6e:e7:3a:55:21: 30:9f:b2:23:aa:1f:eb:78:5c:d7:76:66:88:3a:2d: 86:2d:90:11:61:bb:7f:1d:e7:97:4b:46:fa:db:b2: be:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:60:A1:58:13:74:C2:E0:22:4C:C7:72:D2:85:7F:4B:0D:25:B7:2E X509v3 Authority Key Identifier: keyid:B2:E8:8E:DD:36:1B:CC:61:94:C9:7F:68:C4:72:51:80:FF:02:F7:24 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FA69F/BD859F9633A311EFA5B49B23C4F9AE02/suiO3TYbzGGUyX9oxHJRgP8C9yQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/suiO3TYbzGGUyX9oxHJRgP8C9yQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FA69F/BD859F9633A311EFA5B49B23C4F9AE02/suiO3TYbzGGUyX9oxHJRgP8C9yQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8e:47:66:d7:2a:c5:2a:8d:a8:e6:49:fa:bc:be:cf:60:7e:e4: 78:76:a7:e8:5e:24:95:2a:b0:3c:36:21:02:e5:1d:9e:01:19: ae:82:34:57:d2:8a:40:43:db:1e:70:b3:cd:7f:da:4d:fc:7e: 38:02:ad:05:bc:86:98:83:50:30:2a:4d:f7:82:9e:99:9f:64: 3e:c8:01:e3:12:4b:c6:81:d3:d5:a5:70:0d:ad:79:da:bb:33: 36:91:2f:fb:ee:03:8c:85:dd:64:87:7f:57:8e:cf:8b:5c:79: 9a:31:f2:80:83:33:d9:96:02:c9:40:3b:c5:f7:cd:87:46:9e: b1:6a:3e:36:bc:39:9b:b1:e6:66:dd:c5:c9:c9:68:59:f3:13: 62:91:78:2f:12:e2:f7:f8:b0:51:96:b0:aa:1f:ee:8a:95:03: ac:60:57:50:25:aa:3a:ef:57:26:68:e0:07:c6:0f:35:72:b2: 1e:7e:15:46:d1:a1:01:c0:37:a2:12:55:21:ae:49:16:35:30: 1f:20:8f:83:00:8c:79:ab:81:76:c4:8d:f2:a0:a4:c9:e4:75: fa:8d:d8:7d:32:5b:5c:06:16:92:e8:0b:72:fc:50:8b:56:99: 8f:20:13:43:6e:f8:5c:95:c6:01:a5:f4:e8:96:21:24:40:de: 8f:d5:20:b2 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBLjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG QTY5RjExMC8GA1UEBRMoQjJFODhFREQzNjFCQ0M2MTk0Qzk3RjY4QzQ3MjUxODBG RjAyRjcyNDAeFw0yNDA5MTkwNTU3MzNaFw0yNDA5MjYwNTU3MzNaMBgxFjAUBgNV BAMTDTY2ZWJiZDRlLTgxMDUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDhi3OcPNq9T6UhCd+4VlaQgofjqpX1ZP0VlJRfq85bUyuxKNLjZFjV6KqrzQzB kvwouQXFewn+R0oNDWbf/m87Hiik69Ana7TKtYQFWYNEeP7+BOnAq0WRCnjbPkSb i6DncUBArR7jiWidVwMXpd1lA7kBnkaYqx10ekmMAEBIaBNE4Q0ImliIfa0kcv+s HsYzmzkcbfqAxgwXeg5m923UjVZROD7f8zqZO3/EQcNerI+GjzaIgDCaIXdiRvGE ijyFqihFzn0QQ3aJFHR2mh8EcaGXvCQu6diq+bdu5zpVITCfsiOqH+t4XNd2Zog6 LYYtkBFhu38d55dLRvrbsr6rAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUD2ChWBN0 wuAiTMdy0oV/Sw0lty4wHwYDVR0jBBgwFoAUsuiO3TYbzGGUyX9oxHJRgP8C9yQw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUZBNjlGL0JEODU5Rjk2MzNB MzExRUZBNUI0OUIyM0M0RjlBRTAyL3N1aU8zVFliekdHVXlYOW94SEpSZ1A4Qzl5 US5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvc3VpTzNUWWJ6R0dVeVg5b3hISlJnUDhDOXlRLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUZB NjlGL0JEODU5Rjk2MzNBMzExRUZBNUI0OUIyM0M0RjlBRTAyL3N1aU8zVFliekdH VXlYOW94SEpSZ1A4Qzl5US5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAI5HZtcqxSqNqOZJ+ry+z2B+5Hh2p+heJJUqsDw2IQLlHZ4BGa6CNFfS ikBD2x5ws81/2k38fjgCrQW8hpiDUDAqTfeCnpmfZD7IAeMSS8aB09WlcA2tedq7 MzaRL/vuA4yF3WSHf1eOz4tceZox8oCDM9mWAslAO8X3zYdGnrFqPja8OZux5mbd xcnJaFnzE2KReC8S4vf4sFGWsKof7oqVA6xgV1AlqjrvVyZo4AfGDzVysh5+FUbR oQHAN6ISVSGuSRY1MB8gj4MAjHmrgXbEjfKgpMnkdfqN2H0yW1wGFpLoC3L8UItW mY8gE0Nu+FyVxgGl9OiWISRA3o/VILI= -----END CERTIFICATE-----Generated at Thu Sep 19 07:14:28 2024 by rpki-client on console-fra.rpki-client.org