$ rpki-client -vvf rpki.apnic.net/member_repository/A91116E6/D7D3623831F611EF92AD8D10C4F9AE02/MkzIe8yExoFRzDczpQjHilxbSYo.mft File: MkzIe8yExoFRzDczpQjHilxbSYo.mft (raw, json) Hash identifier: QyZCEEhGlbmN39vwJWXrV+18NU6f4bX527HXVpRn6fc= Subject key identifier: C0:69:97:E2:87:A4:5A:05:FF:5F:1C:4C:FB:FD:E4:44:70:4A:0A:3E Authority key identifier: 32:4C:C8:7B:CC:84:C6:81:51:CC:37:33:A5:08:C7:8A:5C:5B:49:8A Certificate issuer: /CN=A91116E6/serialNumber=324CC87BCC84C68151CC3733A508C78A5C5B498A Certificate serial: 30 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MkzIe8yExoFRzDczpQjHilxbSYo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91116E6/D7D3623831F611EF92AD8D10C4F9AE02/MkzIe8yExoFRzDczpQjHilxbSYo.mft Manifest number: 2E Signing time: Sun 15 Sep 2024 10:06:54 +0000 Manifest this update: Sun 15 Sep 2024 10:06:53 +0000 Manifest next update: Sun 22 Sep 2024 10:06:53 +0000 Files and hashes: 1: MkzIe8yExoFRzDczpQjHilxbSYo.crl (hash: mFNqbAS8kHrf8T51YL93oSqmpW3P8a238gl2gXhgmu0=) 2: 9CE0AEFA31F711EFA9A9A54AC4F9AE02.roa (hash: GXX1SqQqnLs/QR8YWu9cJWfVt1DZZvg7YhJhKqg5IbE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91116E6/D7D3623831F611EF92AD8D10C4F9AE02/MkzIe8yExoFRzDczpQjHilxbSYo.crl rsync://rpki.apnic.net/member_repository/A91116E6/D7D3623831F611EF92AD8D10C4F9AE02/MkzIe8yExoFRzDczpQjHilxbSYo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MkzIe8yExoFRzDczpQjHilxbSYo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 22 Sep 2024 02:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 48 (0x30) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91116E6/serialNumber=324CC87BCC84C68151CC3733A508C78A5C5B498A Validity Not Before: Sep 15 10:06:53 2024 GMT Not After : Sep 22 10:06:53 2024 GMT Subject: CN=66e6b1bd-0a01 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:e6:83:ce:b4:d4:60:dd:36:6d:02:8f:d3:c2: 76:4f:c6:1f:da:43:4a:71:3c:40:7a:67:14:a1:dd: f6:c9:ca:56:bc:6a:1a:fc:59:41:91:51:9d:45:fe: 2a:bf:e6:f2:07:b4:1d:01:67:85:e4:36:68:57:8e: fc:6d:a1:e0:d3:07:84:23:ef:10:e0:50:a8:08:d1: 7c:53:d5:b5:01:f9:29:cb:6f:d6:4b:c2:5e:5b:f9: 08:3c:c3:f5:bf:75:31:ef:a2:66:26:3b:b5:bc:24: 01:3d:80:51:c1:50:61:1c:f5:cd:d8:c1:5f:d3:72: 7f:92:f8:34:96:84:c0:df:d4:2b:aa:cf:82:d7:3f: be:4e:7f:ef:b9:c5:16:3b:98:d4:fd:59:8f:a4:a7: df:b0:f4:e5:cf:65:e4:72:8a:66:d1:38:56:0a:72: b3:3a:ad:98:e4:cd:86:70:e9:4b:53:fd:91:f4:e6: 2e:89:08:29:6a:d2:2f:11:6b:16:97:3a:43:02:d0: a2:af:02:31:42:08:81:7f:58:ab:c6:b9:5c:53:c9: 9c:29:9c:51:f0:46:39:fb:e3:70:b7:2c:73:41:ac: c3:ba:e1:00:2f:f8:ee:0f:89:ef:a3:5b:60:fc:69: 3c:2e:1c:36:42:25:ab:da:db:04:04:e9:0e:dd:58: e1:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:69:97:E2:87:A4:5A:05:FF:5F:1C:4C:FB:FD:E4:44:70:4A:0A:3E X509v3 Authority Key Identifier: keyid:32:4C:C8:7B:CC:84:C6:81:51:CC:37:33:A5:08:C7:8A:5C:5B:49:8A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91116E6/D7D3623831F611EF92AD8D10C4F9AE02/MkzIe8yExoFRzDczpQjHilxbSYo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MkzIe8yExoFRzDczpQjHilxbSYo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91116E6/D7D3623831F611EF92AD8D10C4F9AE02/MkzIe8yExoFRzDczpQjHilxbSYo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4b:72:e8:8a:0d:2c:8c:2a:a6:a8:38:44:c9:60:97:c2:8c:fd: bc:9f:e8:25:c7:85:f9:23:cb:8c:eb:55:f9:7f:7d:9b:e8:49: 40:e1:5e:fa:3d:ab:4e:5a:bc:e7:27:a1:fd:17:ab:19:d6:52: 71:a3:94:34:ff:4d:3d:f8:a7:e4:cf:b6:17:d5:41:e0:76:6f: 41:d8:03:bf:50:0a:41:2c:04:74:31:17:44:38:ca:b3:6d:82: 5b:93:2c:ae:41:7e:fd:6b:a0:e9:dc:d2:75:20:94:28:15:bb: be:80:88:59:98:2d:4f:74:85:a2:fb:75:d9:c5:2d:c6:b7:ed: 28:e8:a3:7c:79:c7:09:22:2b:4e:ad:45:81:c1:57:24:64:76: 13:93:3e:9d:77:7e:b0:90:d7:00:9c:fe:f2:d1:8a:95:9b:ca: 42:9e:f7:c9:d0:9a:fa:20:fe:a8:cf:fb:41:ea:e5:b4:99:7f: c1:7e:14:2a:4a:d5:10:f7:27:41:74:d2:56:8f:a5:b8:1f:13: ae:ed:4b:31:5b:49:33:63:e2:63:c9:2b:0b:c2:f9:77:3c:a5: 0d:9f:3b:ba:86:7d:57:ac:d8:54:62:92:bb:c2:58:be:03:21: d9:98:e5:78:ec:49:63:33:12:80:8a:b3:93:99:50:74:0c:ed: 1d:74:e3:d2 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBMDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx MTZFNjExMC8GA1UEBRMoMzI0Q0M4N0JDQzg0QzY4MTUxQ0MzNzMzQTUwOEM3OEE1 QzVCNDk4QTAeFw0yNDA5MTUxMDA2NTNaFw0yNDA5MjIxMDA2NTNaMBgxFjAUBgNV BAMTDTY2ZTZiMWJkLTBhMDEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCe5oPOtNRg3TZtAo/TwnZPxh/aQ0pxPEB6ZxSh3fbJyla8ahr8WUGRUZ1F/iq/ 5vIHtB0BZ4XkNmhXjvxtoeDTB4Qj7xDgUKgI0XxT1bUB+SnLb9ZLwl5b+Qg8w/W/ dTHvomYmO7W8JAE9gFHBUGEc9c3YwV/Tcn+S+DSWhMDf1Cuqz4LXP75Of++5xRY7 mNT9WY+kp9+w9OXPZeRyimbROFYKcrM6rZjkzYZw6UtT/ZH05i6JCClq0i8RaxaX OkMC0KKvAjFCCIF/WKvGuVxTyZwpnFHwRjn743C3LHNBrMO64QAv+O4Pie+jW2D8 aTwuHDZCJava2wQE6Q7dWOGhAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUwGmX4oek WgX/XxxM+/3kRHBKCj4wHwYDVR0jBBgwFoAUMkzIe8yExoFRzDczpQjHilxbSYow DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTExNkU2L0Q3RDM2MjM4MzFG NjExRUY5MkFEOEQxMEM0RjlBRTAyL01rekllOHlFeG9GUnpEY3pwUWpIaWx4YlNZ by5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvTWt6SWU4eUV4b0ZSekRjenBRakhpbHhiU1lvLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTEx NkU2L0Q3RDM2MjM4MzFGNjExRUY5MkFEOEQxMEM0RjlBRTAyL01rekllOHlFeG9G UnpEY3pwUWpIaWx4YlNZby5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAEty6IoNLIwqpqg4RMlgl8KM/byf6CXHhfkjy4zrVfl/fZvoSUDhXvo9 q05avOcnof0XqxnWUnGjlDT/TT34p+TPthfVQeB2b0HYA79QCkEsBHQxF0Q4yrNt gluTLK5Bfv1roOnc0nUglCgVu76AiFmYLU90haL7ddnFLca37Sjoo3x5xwkiK06t RYHBVyRkdhOTPp13frCQ1wCc/vLRipWbykKe98nQmvog/qjP+0Hq5bSZf8F+FCpK 1RD3J0F00laPpbgfE67tSzFbSTNj4mPJKwvC+Xc8pQ2fO7qGfVes2FRikrvCWL4D IdmY5XjsSWMzEoCKs5OZUHQM7R1049I= -----END CERTIFICATE-----Generated at Sun Sep 15 12:30:31 2024 by rpki-client on console-ams.rpki-client.org